NetBSD-Syzbot archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

ASan: Unauthorized Access in binuptime



Hello,

syzbot found the following issue on:

HEAD commit:    5aa7b24f7fcd doc/3RDPARTY: Fix licence and remind path cha..
git tree:       netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=153b9654980000
kernel config:  https://syzkaller.appspot.com/x/.config?x=fab579639ba4bf0a
dashboard link: https://syzkaller.appspot.com/bug?extid=5ed17cb067efe1a20ae1
compiler:       g++ (Debian 12.2.0-14) 12.2.0

Unfortunately, I don't have any reproducer for this issue yet.

Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/4add0dc3cd0a/disk-5aa7b24f.raw.xz
netbsd.gdb: https://storage.googleapis.com/syzbot-assets/65d52bdea382/netbsd-5aa7b24f.gdb.xz

IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+5ed17cb067efe1a20ae1%syzkaller.appspotmail.com@localhost

[ 610.9973010] panic: ASan: Unauthorized Access In 0xffffffff81bd2314: Addr 0xffffcb801425e138 [8 bytes, write, PoolUseAfterFree]

[ 610.9973010] cpu0: Begin traceback...
[ 610.9973010] vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
[ 610.9973010] panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
[ 610.9973010] kasan_report() at netbsd:kasan_report+0x8f kasan_code_name sys/kern/subr_asan.c:169 [inline]
[ 610.9973010] kasan_report() at netbsd:kasan_report+0x8f sys/kern/subr_asan.c:201
[ 610.9973010] __asan_store8() at netbsd:__asan_store8+0xaf kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:371 [inline]
[ 610.9973010] __asan_store8() at netbsd:__asan_store8+0xaf kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
[ 610.9973010] __asan_store8() at netbsd:__asan_store8+0xaf sys/kern/subr_asan.c:1208
[ 610.9973010] callout_hardclock() at netbsd:callout_hardclock+0xfd sys/kern/kern_timeout.c:797
[ 610.9973010] hardclock() at netbsd:hardclock+0x196 sys/kern/kern_clock.c:304
[ 610.9973010] Xresume_lapic_ltimer() at netbsd:Xresume_lapic_ltimer+0x1e
[ 610.9973010] --- interrupt ---
[ 610.9973010] __asan_load4() at netbsd:__asan_load4+0x66 kasan_shadow_4byte_isvalid sys/kern/subr_asan.c:343 [inline]
[ 610.9973010] __asan_load4() at netbsd:__asan_load4+0x66 kasan_shadow_check sys/kern/subr_asan.c:418 [inline]
[ 610.9973010] __asan_load4() at netbsd:__asan_load4+0x66 sys/kern/subr_asan.c:1207
[ 610.9973010] binuptime() at netbsd:binuptime+0x83 sys/kern/kern_tc.c:477
[ 610.9973010] nanotime() at netbsd:nanotime+0x70 bintime sys/kern/kern_tc.c:523 [inline]
[ 610.9973010] nanotime() at netbsd:nanotime+0x70 sys/kern/kern_tc.c:533
[ 610.9973010] clock_gettime1() at netbsd:clock_gettime1+0x424 sys/kern/subr_time.c:299
[ 610.9973010] ts2timo() at netbsd:ts2timo+0x2f2 sys/kern/subr_time.c:324
[ 610.9973010] lwp_park() at netbsd:lwp_park+0xed sys/kern/sys_lwp.c:524
[ 610.9973010] sys____lwp_park60() at netbsd:sys____lwp_park60+0x11c sys/kern/sys_lwp.c:597
[ 610.9973010] syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
[ 610.9973010] syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
[ 610.9973010] syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137
[ 610.9973010] --- syscall (number 478) ---
[ 610.9973010] netbsd:syscall+0x246:
[ 610.9973010] cpu0: End traceback...
[ 610.9973010] fatal breakpoint trap in supervisor mode
[ 610.9973010] trap type 1 code 0 rip 0xffffffff8023240d cs 0x8 rflags 0x246 cr2 0x20000180 ilevel 0x8 rsp 0xffffcb82563426c8
[ 610.9973010] curlwp 0xffffcb8012be91c0 pid 5865.5865 lowest kstack 0xffffcb825633b2c0
Stopped in pid 5865.5865 (syz-executor.4) at    netbsd:breakpoint+0x5:  leave
?
breakpoint() at netbsd:breakpoint+0x5
db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:71
vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
kasan_report() at netbsd:kasan_report+0x8f kasan_code_name sys/kern/subr_asan.c:169 [inline]
kasan_report() at netbsd:kasan_report+0x8f sys/kern/subr_asan.c:201
__asan_store8() at netbsd:__asan_store8+0xaf kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:371 [inline]
__asan_store8() at netbsd:__asan_store8+0xaf kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
__asan_store8() at netbsd:__asan_store8+0xaf sys/kern/subr_asan.c:1208
callout_hardclock() at netbsd:callout_hardclock+0xfd sys/kern/kern_timeout.c:797
hardclock() at netbsd:hardclock+0x196 sys/kern/kern_clock.c:304
Xresume_lapic_ltimer() at netbsd:Xresume_lapic_ltimer+0x1e
--- interrupt ---
__asan_load4() at netbsd:__asan_load4+0x66 kasan_shadow_4byte_isvalid sys/kern/subr_asan.c:343 [inline]
__asan_load4() at netbsd:__asan_load4+0x66 kasan_shadow_check sys/kern/subr_asan.c:418 [inline]
__asan_load4() at netbsd:__asan_load4+0x66 sys/kern/subr_asan.c:1207
binuptime() at netbsd:binuptime+0x83 sys/kern/kern_tc.c:477
nanotime() at netbsd:nanotime+0x70 bintime sys/kern/kern_tc.c:523 [inline]
nanotime() at netbsd:nanotime+0x70 sys/kern/kern_tc.c:533
clock_gettime1() at netbsd:clock_gettime1+0x424 sys/kern/subr_time.c:299
ts2timo() at netbsd:ts2timo+0x2f2 sys/kern/subr_time.c:324
lwp_park() at netbsd:lwp_park+0xed sys/kern/sys_lwp.c:524
sys____lwp_park60() at netbsd:sys____lwp_park60+0x11c sys/kern/sys_lwp.c:597
syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137
--- syscall (number 478) ---
netbsd:syscall+0x246:
Panic string: ASan: Unauthorized Access In 0xffffffff81bd2314: Addr 0xffffcb801425e138 [8 bytes, write, PoolUseAfterFree]

PID     LID S CPU     FLAGS       STRUCT LWP *               NAME WAIT
6737   6737 2   0         0   ffffcb8014532bc0     syz-executor.4
5865   3837 2   1         0   ffffcb80141cd540     syz-executor.4
5865   6230 2   0         0   ffffcb8013e28280     syz-executor.4
5865 > 5865 7   0  10000000   ffffcb8012be91c0     syz-executor.4
4129   4129 2   1         0   ffffcb8012a73480           ifconfig
4080   4080 2   0         0   ffffcb80143d4b00           ifconfig
5317   5317 2   1  10000000   ffffcb8012c4b2c0     syz-executor.3
4896   4896 3   0       180   ffffcb8012a54780     syz-executor.5 wait
4569   4569 3   0       180   ffffcb801335ba00     syz-executor.0 wait
4202   4202 2   0         0   ffffcb8014531b80     syz-executor.2
5631   5631 2   1       140   ffffcb8014532780     syz-executor.4
4032   4032 3   1         0   ffffcb8012ce4a40     syz-executor.1 mutex
3740   3740 4   1   1000000   ffffcb8013f63300     syz-executor.3
3202   3202 3   0       180   ffffcb80133bb6c0     syz-executor.2 parked
3641   3641 3   0       180   ffffcb8012bc0a00     syz-executor.1 parked
3125   3125 3   0       180   ffffcb8013f1d2c0     syz-executor.2 parked
2625   2625 3   1       180   ffffcb8012a21300     syz-executor.4 parked
2040   2040 3   0       180   ffffcb8012b9a9c0     syz-executor.5 parked
1940   2044 3   0  11100000   ffffcb8012b9a140     syz-executor.5 vfork
1940   1940 2   1  11000040   ffffcb8013deb640     syz-executor.5
1383   1383 3   0       180   ffffcb801345b500     syz-executor.2 parked
1382   1382 3   0       180   ffffcb8013e286c0     syz-executor.2 parked
2272   3308 3   0   1000000   ffffcb8012c2d280     syz-executor.2 lwpwait
2272   1381 3   0  111a0000   ffffcb8013386600     syz-executor.2 vfork
2272   2266 8   0   11a0000   ffffcb8012d32780     syz-executor.2
2272   2272 8   0  111a0000   ffffcb8012c5d300     syz-executor.2
925     925 3   0       180   ffffcb8012c4b700     syz-executor.3 parked
2000   2000 3   1       180   ffffcb80141cd980     syz-executor.5 parked
3272   2637 3   1   1100000   ffffcb80133861c0     syz-executor.5 vfork
3272   3272 2   1  11000040   ffffcb8012dcc100     syz-executor.5
506     506 3   1       180   ffffcb8012b7c980     syz-executor.0 parked
947     947 3   1       180   ffffcb8012d0db00     syz-executor.1 parked
1329   1330 3   1   1100000   ffffcb801339c200     syz-executor.1 vfork
1329   1329 2   1  11000040   ffffcb8012cf8a80     syz-executor.1
405     405 3   0       180   ffffcb80141e8180     syz-executor.4 parked
393     399 3   0   1100000   ffffcb8013f63b80     syz-executor.4 vfork
393     393 2   1  11000040   ffffcb8012c18ac0     syz-executor.4
2253   2253 3   0       180   ffffcb80133bb280     syz-executor.5 parked
2857   2857 3   0       180   ffffcb80133d0700     syz-executor.5 parked
2156   2264 3   0  11100000   ffffcb80133d02c0     syz-executor.5 vfork
2156   2156 2   1  11000040   ffffcb8013e10ac0     syz-executor.5
971     971 3   0       180   ffffcb80140b5900     syz-executor.0 parked
1751   1751 3   1       180   ffffcb801339c640     syz-executor.5 parked
1588   1588 3   1       180   ffffcb8012d25300     syz-executor.3 parked
1467   1468 3   1   1100000   ffffcb8012d192c0     syz-executor.3 vfork
1467   1467 2   1  11000040   ffffcb80133ae240     syz-executor.3
1085    904 3   0       180   ffffcb8013dbb600         syz-fuzzer parked
1085   1876 3   0       180   ffffcb8013f63740         syz-fuzzer kqueue
1085   1451 3   0       180   ffffcb8012c908c0         syz-fuzzer wait
1085   1234 3   0       180   ffffcb8012c02a80         syz-fuzzer wait
1085   1201 3   1       180   ffffcb8012c02640         syz-fuzzer wait
1085   1209 3   0       180   ffffcb8012b9a580         syz-fuzzer parked
1085   1186 3   0       180   ffffcb8013deba80         syz-fuzzer parked
1085   1202 3   1       180   ffffcb8013deb200         syz-fuzzer parked
1085   1246 3   0       180   ffffcb8013dbb1c0         syz-fuzzer wait
1085   1082 3   1       180   ffffcb8013452900         syz-fuzzer parked
1085    449 3   1       180   ffffcb80134524c0         syz-fuzzer parked
1085    929 3   0       180   ffffcb8013452080         syz-fuzzer wait
1085   1071 3   1       180   ffffcb80126d9780         syz-fuzzer wait
1085   1184 2   1       140   ffffcb8013386a40         syz-fuzzer
1085   1085 3   1       180   ffffcb8012c02200         syz-fuzzer parked
931     931 3   0       180   ffffcb8012ac70c0               sshd select
1114   1114 3   1       180   ffffcb8012a99900              getty nanoslp
1237   1237 3   1       180   ffffcb8012ac7940              getty nanoslp
949     949 3   1       180   ffffcb8012ac7500              getty nanoslp
1235   1235 3   1       180   ffffcb8012a54340              getty ttyraw
816     816 3   0       180   ffffcb80133d0b40               sshd select
1131   1131 3   0       180   ffffcb8013343580             powerd kqueue
832     832 3   0       180   ffffcb80134478c0            syslogd kqueue
566     566 3   0       180   ffffcb8012c90040             dhcpcd poll
601     601 3   0       180   ffffcb8012cda180             dhcpcd poll
746     746 3   0       180   ffffcb8012ca64c0             dhcpcd poll
487     487 3   1       180   ffffcb8012d9b940             dhcpcd poll
488     488 3   1       180   ffffcb8012d9b500             dhcpcd poll
485     485 3   0       180   ffffcb8012d9b0c0             dhcpcd poll
1         1 3   0       180   ffffcb8012870180               init wait
0      3833 5   1       200   ffffcb801335b180           (zombie)
0      5588 3   1       200   ffffcb8012cc4980         poolthread pooljob
0      1774 3   0       200   ffffcb80126d7740          acctwatch actwat
0      1120 3   0       200   ffffcb80129bf6c0            physiod physiod
0       196 3   1       200   ffffcb80129c1700          pooldrain pooldrain
0       195 3   0       200   ffffcb80129c12c0            ioflush syncer
0       194 3   0       200   ffffcb80129bfb00           pgdaemon pgdaemon
0       167 3   0       200   ffffcb8012976ac0               usb7 usbevt
0       172 3   0       200   ffffcb8012976680               usb6 usbevt
0       170 3   0       200   ffffcb8012976240               usb5 usbevt
0       168 3   0       200   ffffcb801291ea80               usb4 usbevt
0       166 3   1       200   ffffcb801291e640               usb3 usbevt
0       165 3   1       200   ffffcb801291e200               usb2 usbevt
0        31 3   1       200   ffffcb80128caa40               usb1 usbevt
0        63 3   0       200   ffffcb80128ca600               usb0 usbevt
0       126 3   0       200   ffffcb80128ca1c0         usbtask-dr usbtsk
0       125 3   1       200   ffffcb8012870a00         usbtask-hc usbtsk
0       124 3   0       200   ffffcb8010d66b00          swwreboot swwreboot
0       123 3   0       200   ffffcb80128705c0             npfgc0 npfgcw
0       122 3   0       200   ffffcb80128669c0            rt_free rt_free
0       121 3   1       200   ffffcb8012866580              unpgc unpgc
0       120 3   1       200   ffffcb8012866140    key_timehandler key_timehandler
0       119 3   1       200   ffffcb8012703980    icmp6_wqinput/1 icmp6_wqinput
0       118 3   0       200   ffffcb8012703540    icmp6_wqinput/0 icmp6_wqinput
0       117 3   0       200   ffffcb8012703100          nd6_timer nd6_timer
0       116 3   1       200   ffffcb80126fc940    carp6_wqinput/1 carp6_wqinput
0       115 3   0       200   ffffcb80126fc500    carp6_wqinput/0 carp6_wqinput
0       114 3   1       200   ffffcb80126fc0c0     carp_wqinput/1 carp_wqinput
0       113 3   0       200   ffffcb80126ed900     carp_wqinput/0 carp_wqinput
0       112 3   1       200   ffffcb80126ed4c0     icmp_wqinput/1 icmp_wqinput
0       111 3   0       200   ffffcb80126ed080     icmp_wqinput/0 icmp_wqinput
0       110 3   0       200   ffffcb80126db040           rt_timer rt_timer
0       109 3   1       200   ffffcb80126db8c0        vmem_rehash vmem_rehash
0       100 3   1       200   ffffcb80126d7300          entbutler entropy
0        99 3   0       200   ffffcb80120bdb40              viomb balloon
0        98 3   1       200   ffffcb80120bd700      vioif0_txrx/1 vioif0_txrx
0        97 3   0       200   ffffcb80120bd2c0      vioif0_txrx/0 vioif0_txrx
0        30 3   0       200   ffffcb8010d666c0           scsibus0 sccomp
0        29 3   0       200   ffffcb8010d66280               pms0 pmsreset
0        28 3   1       200   ffffcb8010cacac0            xcall/1 xcall
0        27 1   1       200   ffffcb8010cac680          softser/1
0        26 1   1       200   ffffcb8010cac240          softclk/1
0        25 1   1       200   ffffcb8010ca9a80          softbio/1
0        24 1   1       200   ffffcb8010ca9640          softnet/1
0        23 1   1       201   ffffcb8010ca9200             idle/1
0        22 3   0       200   ffffcb800fb55a40           lnxsyswq lnxsyswq
0        21 3   0       200   ffffcb800fb55600           lnxubdwq lnxubdwq
0        20 3   0       200   ffffcb800fb551c0           lnxpwrwq lnxpwrwq
0        19 3   1       200   ffffcb800fb54a00           lnxlngwq lnxlngwq
0        18 3   0       200   ffffcb800fb545c0           lnxhipwq lnxhipwq
0        17 3   0       200   ffffcb800fb54180           lnxrcugc lnxrcugc
0        16 3   0       200   ffffcb800fb4d9c0             sysmon smtaskq
0        15 3   0       200   ffffcb800fb4d580         pmfsuspend pmfsuspend
0        14 3   0       200   ffffcb800fb4d140           pmfevent pmfevent
0        13 3   0       200   ffffcb800fb4a980         sopendfree sopendfr
0        12 3   0       200   ffffcb800fb4a540             ifwdog ifwdog
0        11 3   1       200   ffffcb800fb4a100            iflnkst iflnkst
0        10 3   0       200   ffffcb800fb3b940           nfssilly nfssilly
0         9 3   0       200   ffffcb800fb3b500           pooldisp pooldisp
0         8 3   1       200   ffffcb800fb3b0c0          modunload mod_unld
0         7 3   0       200   ffffcb800fb32900            xcall/0 xcall
0         6 1   0       200   ffffcb800fb324c0          softser/0
0         5 1   0       200   ffffcb800fb32080          softclk/0
0         4 1   0       200   ffffcb800fb308c0          softbio/0
0         3 1   0       200   ffffcb800fb30480          softnet/0
0         2 1   0       201   ffffcb800fb30040             idle/0
0    >    0 7   1       240   ffffffff83350200            swapper
[Locks tracked through LWPs]

****** LWP 6737.6737 (syz-executor.4) @ 0xffffcb8014532bc0, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:pmap_ctor+0x93 sys/arch/x86/x86/pmap.c:2872)
lock address : ffffcb8013496180
type         : sleep/adaptive
initialized  : netbsd:pmap_ctor+0x93
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb8014532bc0 last held: 0xffffcb8014532bc0
last locked* : netbsd:pmap_enter_ma+0x386
unlocked     : netbsd:pmap_extract+0x345
owner field  : 0xffffcb8014532bc0 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 5865.3837 (syz-executor.4) @ 0xffffcb80141cd540, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  0
relevant lwp : 0xffffcb80141cd540 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 4129.4129 (ifconfig) @ 0xffffcb8012a73480, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:pmap_ctor+0x93 sys/arch/x86/x86/pmap.c:2872)
lock address : ffffcb8012b2f180
type         : sleep/adaptive
initialized  : netbsd:pmap_ctor+0x93
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  1
relevant lwp : 0xffffcb8012a73480 last held: 0xffffcb8012a73480
last locked* : netbsd:pmap_enter_ma+0x386
unlocked     : netbsd:pmap_extract+0x345
owner field  : 0xffffcb8012a73480 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 4080.4080 (ifconfig) @ 0xffffcb80143d4b00, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:uvmspace_alloc+0x170 uvm_map_setup sys/uvm/uvm_map.c:4786 [inline])
* Lock 0 (initialized at netbsd:uvmspace_alloc+0x170 uvmspace_init sys/uvm/uvm_map.c:4129 [inline])
* Lock 0 (initialized at netbsd:uvmspace_alloc+0x170 sys/uvm/uvm_map.c:4108)
lock address : ffffcb80128d0e48
type         : sleep/adaptive
initialized  : netbsd:uvmspace_alloc+0x170
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb80143d4b00 last held: 0xffffcb80143d4b00
last locked* : netbsd:vm_map_lock+0x8f
unlocked     : netbsd:uvm_fault_internal+0x31e0
owner/count  : 0xffffcb80143d4b00 flags    : 0x0000000000000004
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 5317.5317 (syz-executor.3) @ 0xffffcb8012c4b2c0, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x365 sys/kern/kern_fork.c:366)
lock address : ffffcb8012bf3f90
type         : sleep/adaptive
initialized  : netbsd:fork1+0x365
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  1
relevant lwp : 0xffffcb8012c4b2c0 last held: 0xffffcb8012c4b2c0
last locked* : netbsd:exit1+0x2f2
unlocked     : 0
owner/count  : 0xffffcb8012c4b2c0 flags    : 0x0000000000000004
Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at netbsd:pmap_ctor+0x93 sys/arch/x86/x86/pmap.c:2872)
lock address : ffffcb8012c59180
type         : sleep/adaptive
initialized  : netbsd:pmap_ctor+0x93
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  1
relevant lwp : 0xffffcb8012c4b2c0 last held: 0xffffcb8012c4b2c0
last locked* : netbsd:pmap_update.part.0+0x30
unlocked     : netbsd:pmap_remove_all+0x85c
owner field  : 0xffffcb8012c4b2c0 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

* Lock 2 (initialized at netbsd:pmap_ctor+0x9f sys/arch/x86/x86/pmap.c:2873)
lock address : ffffcb8012c59188
type         : sleep/adaptive
initialized  : netbsd:pmap_ctor+0x9f
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  1
relevant lwp : 0xffffcb8012c4b2c0 last held: 0xffffcb8012c4b2c0
last locked* : netbsd:pmap_update.part.0+0x140
unlocked     : netbsd:pmap_update.part.0+0x154
owner/count  : 0xffffcb8012c4b2c0 flags    : 0x0000000000000004
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 4202.4202 (syz-executor.2) @ 0xffffcb8014531b80, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x365 sys/kern/kern_fork.c:366)
lock address : ffffcb80141886d0
type         : sleep/adaptive
initialized  : netbsd:fork1+0x365
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  1
relevant lwp : 0xffffcb8014531b80 last held: 0xffffcb8014531b80
last locked* : netbsd:exit1+0x2f2
unlocked     : netbsd:execve_runproc+0x2211
owner/count  : 0xffffcb8014531b80 flags    : 0x0000000000000004
Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at netbsd:uao_init+0x4e sys/uvm/uvm_aobj.c:564)
lock address : netbsd:uao_list_lock
type         : sleep/adaptive
initialized  : netbsd:uao_init+0x4e
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  2
relevant cpu :                  0 last held:                  1
relevant lwp : 0xffffcb8014531b80 last held: 000000000000000000
last locked  : netbsd:uao_detach+0x16a
unlocked*    : netbsd:uao_detach+0x219
owner field  : 0xffffcb8014531b80 wait/spin:                1/0
Turnstile:
=> 0 waiting readers:
=> 1 waiting writers: 0xffffcb8012ce4a40

****** LWP 4032.4032 (syz-executor.1) @ 0xffffcb8012ce4a40, l_stat=3

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x365 sys/kern/kern_fork.c:366)
lock address : ffffcb80133813d0
type         : sleep/adaptive
initialized  : netbsd:fork1+0x365
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  0
relevant lwp : 0xffffcb8012ce4a40 last held: 0xffffcb8012ce4a40
last locked* : netbsd:exit1+0x2f2
unlocked     : netbsd:execve_runproc+0x2211
owner/count  : 0xffffcb8012ce4a40 flags    : 0x0000000000000004
Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at netbsd:uao_init+0x4e sys/uvm/uvm_aobj.c:564)
lock address : netbsd:uao_list_lock
type         : sleep/adaptive
initialized  : netbsd:uao_init+0x4e
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  2
relevant cpu :                  1 last held:                  1
relevant lwp : 0xffffcb8012ce4a40 last held: 000000000000000000
last locked  : netbsd:uao_detach+0x16a
unlocked*    : netbsd:uao_detach+0x219
owner field  : 0xffffcb8014531b80 wait/spin:                1/0
Turnstile:
=> 0 waiting readers:
=> 1 waiting writers: 0xffffcb8012ce4a40

****** LWP 393.393 (syz-executor.4) @ 0xffffcb8012c18ac0, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x1230 sys/kern/kern_fork.c:377)
lock address : ffffcb8013d66940
type         : sleep/adaptive
initialized  : netbsd:fork1+0x1230
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  1
relevant lwp : 0xffffcb8012c18ac0 last held: 0xffffcb8012c18ac0
last locked* : netbsd:cv_timedwait+0x181
unlocked     : netbsd:cv_timedwait+0x14b
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at netbsd:sched_cpuattach+0x1ae sys/kern/kern_runq.c:147)
lock address : ffffcb8010ca7040
type         : spin
initialized  : netbsd:sched_cpuattach+0x1ae
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  1
relevant cpu :                  1 last held:                  1
relevant lwp : 0xffffcb8012c18ac0 last held: 000000000000000000
last locked  : netbsd:lwp_lock+0xbf
unlocked*    : netbsd:lwp_unlock_to+0x107
owner field  : 0x0000000000000700 wait/spin:                0/1

****** LWP 2156.2264 (syz-executor.5) @ 0xffffcb80133d02c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb80133d02c0 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 971.971 (syz-executor.0) @ 0xffffcb80140b5900, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb80140b5900 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 601.601 (dhcpcd) @ 0xffffcb8012cda180, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb8012cda180 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 746.746 (dhcpcd) @ 0xffffcb8012ca64c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb8012ca64c0 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 488.488 (dhcpcd) @ 0xffffcb8012d9b500, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  0
relevant lwp : 0xffffcb8012d9b500 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 485.485 (dhcpcd) @ 0xffffcb8012d9b0c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb8012d9b0c0 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.26 (softclk/1) @ 0xffffcb8010cac240, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  0
relevant lwp : 0xffffcb8010cac240 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffcb800fb4a100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  0
relevant lwp : 0xffffcb800fb4a100 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffcb800fb32080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb800fb32080 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff83350200, l_stat=7

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type         : sleep/adaptive
initialized  : netbsd:module_hook_init+0x1c
shared holds :                  0 exclusive:                  0
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  0
relevant lwp : 0xffffffff83350200 last held: 000000000000000000
last locked  : 0
unlocked*    : 0
owner field  : 000000000000000000 wait/spin:                0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at netbsd:callout_startup+0x43 sys/kern/kern_timeout.c:301)
lock address : ffffcb800f652100
type         : spin
initialized  : netbsd:callout_startup+0x43
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb8012be91c0 last held: 0xffffcb8012be91c0
last locked* : netbsd:callout_hardclock+0x42
unlocked     : netbsd:callout_hardclock+0x297
owner field  : 0x0000000000010700 wait/spin:                0/1

* Lock 1 (initialized at netbsd:kprintf_init+0x61 sys/kern/subr_prf.c:156)
lock address : netbsd:kprintf_mtx
type         : spin
initialized  : netbsd:kprintf_init+0x61
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  0 last held:                  0
relevant lwp : 0xffffcb8012be91c0 last held: 0xffffcb8012be91c0
last locked* : netbsd:kprintf_lock+0x33
unlocked     : netbsd:kprintf_unlock+0x53
owner field  : 0x0000000000000800 wait/spin:                0/1

******* Locks held on cpu1:

* Lock 0 (initialized at netbsd:sleeptab_init+0x85 sys/kern/kern_sleepq.c:87)
lock address : netbsd:sleepq_locks+0xd00
type         : spin
initialized  : netbsd:sleeptab_init+0x85
shared holds :                  0 exclusive:                  1
shares wanted:                  0 exclusive:                  0
relevant cpu :                  1 last held:                  1
relevant lwp : 0xffffffff83350200 last held: 0xffffcb8012c18ac0
last locked* : netbsd:cv_timedwait+0x110
unlocked     : netbsd:sleepq_unsleep+0xbb
owner field  : 0x0000000000000700 wait/spin:                0/1

              PAGE FLAG   PQ            UOBJECT              UANON
0xffffcb8000017180 0041 00000000                0x0                0x0
0xffffcb8000017200 0041 00000000                0x0                0x0
0xffffcb8000017280 0041 00000000                0x0                0x0
0xffffcb8000017300 0041 00000000                0x0                0x0
0xffffcb8000017380 0041 00000000                0x0                0x0
0xffffcb8000017400 0041 00000000                0x0                0x0
0xffffcb8000017480 0041 00000000                0x0                0x0
0xffffcb8000017500 0041 00000000                0x0                0x0
0xffffcb8000017580 0041 00000000                0x0                0x0
0xffffcb8000017600 0041 00000000                0x0                0x0
0xffffcb8000017680 0041 00000000                0x0                0x0
0xffffcb8000017700 0041 00000000                0x0                0x0
0xffffcb8000017780 0041 00000000                0x0                0x0
0xffffcb8000017800 0041 00000000                0x0                0x0
0xffffcb8000017880 0041 00000000                0x0                0x0
0xffffcb8000017900 0041 00000000                0x0                0x0
0xffffcb8000017980 0041 00000000                0x0                0x0
0xffffcb8000017a00 0041 00000000                0x0                0x0
0xffffcb8000017a80 0041 00000000                0x0                0x0
0xffffcb8000017b00 0041 00000000                0x0                0x0
0xffffcb8000017b80 0041 00000000                0x0                0x0
0xffffcb8000017c00 0041 00000000                0x0                0x0
0xffffcb8000017c80 0041 00000000                0x0                0x0
0xffffcb8000017d00 0041 00000000                0x0                0x0
0xffffcb8000017d80 0041 00000000                0x0                0x0
0xffffcb8000017e00 0041 00000000                0x0                0x0
0xffffcb8000017e80 0041 00000000                0x0                0x0
0xffffcb8000017f00 0041 00000000                0x0                0x0
0xffffcb8000017f80 0041 00000000                0x0                0x0
0xffffcb8000018000 0041 00000000                0x0                0x0
0xffffcb8000018080 0041 00000000                0x0                0x0
0xffffcb8000018100 0041 00000000                0x0                0x0
0xffffcb8000018180 0041 00000000                0x0                0x0
0xffffcb8000018200 0041 00000000                0x0                0x0
0xffffcb8000018280 0041 00000000                0x0                0x0
0xffffcb8000018300 0041 00000000                0x0                0x0
0xffffcb8000018380 0041 00000000                0x0                0x0
0xffffcb8000018400 0041 00000000                0x0                0x0
0xffffcb8000018480 0041 00000000                0x0                0x0
0xffffcb8000018500 0041 00000000                0x0                0x0
0xffffcb8000018580 0041 00000000                0x0                0x0
0xffffcb8000018600 0041 00000000                0x0                0x0
0xffffcb8000018680 0041 00000000                0x0                0x0
0xffffcb8000018700 0041 00000000                0x0                0x0
0xffffcb8000018780 0041 00000000                0x0                0x0
0xffffcb8000018800 0041 00000000                0x0                0x0
0xffffcb8000018880 0041 00000000                0x0                0x0
0xffffcb8000018900 0041 00000000                0x0                0x0
0xffffcb8000018980 0041 00000000                0x0                0x0
0xffffcb8000018a00 0041 00000000                0x0                0x0
0xffffcb8000018a80 0041 00000000                0x0                0x0
0xffffcb8000018b00 0041 00000000                0x0                0x0
0xffffcb8000018b80 0041 00000000                0x0                0x0
0xffffcb8000018c00 0041 00000000                0x0                0x0
0xffffcb8000018c80 0041 00000000                0x0                0x0
0xffffcb8000018d00 0041 00000000                0x0                0x0
0xffffcb8000018d80 0041 00000000                0x0                0x0
0xffffcb8000018e00 0041 00000000                0x0                0x0
0xffffcb8000018e80 0041 00000000                0x0                0x0
0xffffcb8000018f00 0041 00000000                0x0                0x0
0xffffcb8000018f80 0041 00000000                0x0                0x0
0xffffcb8000019000 0041 00000000                0x0                0x0
0xffffcb8000019080 0041 00000000                0x0                0x0
0xffffcb8000019100 0041 00000000                0x0                0x0
0xffffcb8000019180 0041 00000000                0x0                0x0
0xffffcb8000019200 0041 00000000                0x0                0x0
0xffffcb8000019280 0041 00000000                0x0                0x0
0xffffcb8000019300 0041 00000000                0x0                0x0
0xffffcb8000019380 0041 00000000                0x0                0x0
0xffffcb8000019400 0041 00000000                0x0                0x0
0xffffcb8000019480 0041 00000000                0x0                0x0
0xffffcb8000019500 0041 00000000                0x0                0x0
0xffffcb8000019580 0041 00000000                0x0                0x0
0xffffcb8000019600 0041 00000000                0x0                0x0
0xffffcb8000019680 0041 00000000                0x0                0x0
0xffffcb8000019700 0041 00000000                0x0                0x0
0xffffcb8000019780 0041 00000000                0x0                0x0
0xffffcb8000019800 0041 00000000                0x0                0x0
0xffffcb8000019880 0041 00000000                0x0                0x0
0xffffcb8000019900 0041 00000000                0x0                0x0
0xffffcb8000019980 0041 00000000                0x0                0x0
0xffffcb8000019a00 0041 00000000                0x0                0x0
0xffffcb8000019a80 0041 00000000                0x0                0x0
0xffffcb8000019b00 0041 00000000                0x0                0x0
0xffffcb8000019b80 0041 00000000                0x0                0x0
0xffffcb8000019c00 0041 00000000                0x0                0x0
0xffffcb8000019c80 0041 00000000                0x0                0x0
0xffffcb8000019d00 0041 00000000                0x0                0x0
0xffffcb8000019d80 0041 00000000                0x0                0x0
0xffffcb8000019e00 0041 00000000                0x0                0x0
0xffffcb8000019e80 0041 00000000                0x0                0x0
0xffffcb8000019f00 0041 00000000                0x0                0x0
0xffffcb8000019f80 0041 00000000                0x0                0x0
0xffffcb800001a000 0041 00000000                0x0                0x0
0xffffcb800001a080 0041 00000000                0x0                0x0
0xffffcb800001a100 0041 00000000                0x0                0x0
0xffffcb800001a180 0041 00000000                0x0                0x0
0xffffcb800001a200 0041 00000000                0x0                0x0
0xffffcb800001a280 0041 00000000                0x0                0x0
0xffffcb800001a300 0041 00000000                0x0                0x0
0xffffcb800001a380 0041 00000000                0x0                0x0
0xffffcb800001a400 0041 00000000                0x0                0x0
0xffffcb800001a480 0041 00000000                0x0                0x0
0xffffcb800001a500 0041 00000000                0x0                0x0
0xffffcb800001a580 0041 00000000                0x0                0x0
0xffffcb800001a600 0041 00000000                0x0                0x0
0xffffcb800001a680 0041 00000000                0x0                0x0
0xffffcb800001a700 0041 00000000                0x0                0x0
0xffffcb800001a780 0041 00000000                0x0                0x0
0xffffcb800001a800 0041 00000000                0x0                0x0
0xffffcb800001a880 0041 00000000                0x0                0x0
0xffffcb800001a900 0041 00000000                0x0                0x0
0xffffcb800001a980 0041 00000000                0x0                0x0
0xffffcb800001aa00 0041 00000000                0x0                0x0
0xffffcb800001aa80 0041 00000000                0x0                0x0
0xffffcb800001ab00 0041 00000000                0x0                0x0
0xffffcb800001ab80 0041 00000000                0x0                0x0
0xffffcb800001ac00 0041 00000000                0x0                0x0
0xffffcb800001ac80 0041 00000000                0x0                0x0
0xffffcb800001ad00 0041 00000000                0x0                0x0
0xffffcb800001ad80 0041 00000000                0x0                0x0
0xffffcb800001ae00 0041 00000000                0x0                0x0
0xffffcb800001ae80 0041 00000000                0x0                0x0
0xffffcb800001af00 0041 00000000                0x0                0x0
0xffffcb800001af80 0041 00000000                0x0                0x0
0xffffcb800001b000 0041 00000000                0x0                0x0
0xffffcb800001b080 0041 00000000                0x0                0x0
0xffffcb800001b100 0041 00000000                0x0                0x0
0xffffcb800001b180 0041 00000000                0x0                0x0
0xffffcb800001b200 0041 00000000                0x0                0x0
0xffffcb800001b280 0041 00000000                0x0                0x0
0xffffcb800001b300 0041 00000000                0x0                0x0
0xffffcb800001b380 0041 00000000                0x0                0x0
0xffffcb800001b400 0041 00000000                0x0                0x0
0xffffcb800001b480 0041 00000000                0x0                0x0
0xffffcb800001b500 0041 00000000                0x0                0x0
0xffffcb800001b580 0041 00000000                0x0                0x0
0xffffcb800001b600 0041 00000000                0x0                0x0
0xffffcb800001b680 0041 00000000                0x0                0x0
0xffffcb800001b700 0041 00000000                0x0                0x0
0xffffcb800001b780 0041 00000000                0x0                0x0
0xffffcb800001b800 0041 00000000                0x0                0x0
0xffffcb800001b880 0041 00000000                0x0                0x0
0xffffcb800001b900 0041 00000000                0x0                0x0
0xffffcb800001b980 0041 00000000                0x0                0x0
0xffffcb800001ba00 0041 00000000                0x0                0x0
0xffffcb800001ba80 0041 00000000                0x0                0x0
0xffffcb800001bb00 0001 00000000                0x0                0x0
0xffffcb800001bb80 0001 00000000                0x0                0x0
0xffffcb800001bc00 0001 00000000                0x0                0x0
0xffffcb800001bc80 0001 00000000                0x0                0x0
0xffffcb800001bd00 0001 00000000                0x0                0x0
0xffffcb800001bd80 0001 00000000                0x0                0x0
0xffffcb800001be00 0001 00000000                0x0                0x0
0xffffcb800001be80 0001 00000000                0x0                0x0
0xffffcb800001bf00 0001 00000000                0x0                0x0
0xffffcb800001bf80 0001 00000000                0x0                0x0
0xffffcb800001c000 0001 00000000                0x0                0x0
0xffffcb800001c080 0001 00000000                0x0                0x0
0xffffcb800001c100 0001 00000000                0x0                0x0
0xffffcb800001c180 0001 00000000                0x0                0x0
0xffffcb800001c200 0001 00000000                0x0                0x0
0xffffcb800001c280 0001 00000000                0x0                0x0
0xffffcb800001c300 0001 00000000                0x0                0x0
0xffffcb800001c380 0001 00000000                0x0                0x0
0xffffcb800001c400 0001 00000000                0x0                0x0
0xffffcb800001c480 0001 00000000                0x0                0x0
0xffffcb800001c500 0001 00000000                0x0                0x0
0xffffcb800001c580 0001 00000000                0x0                0x0
0xffffcb800001c600 0001 00000000                0x0                0x0
0xffffcb800001c680 0001 00000000                0x0                0x0
0xffffcb800001c700 0001 00000000                0x0                0x0
0xffffcb800001c780 0001 00000000                0x0                0x0
0xffffcb800001c800 0001 00000000                0x0                0x0
0xffffcb800001c880 0001 00000000                0x0                0x0
0xffffcb800001c900 0001 00000000                0x0                0x0
0xffffcb800001c980 0001 00000000                0x0                0x0
0xffffcb800001ca00 0001 00000000                0x0                0x0
0xffffcb800001ca80 0001 00000000                0x0                0x0
0xffffcb800001cb00 0001 00000000                0x0                0x0
0xffffcb800001cb80 0001 00000000                0x0                0x0
0xffffcb800001cc00 0001 00000000                0x0                0x0
0xffffcb800001cc80 0001 00000000                0x0                0x0
0xffffcb800001cd00 0001 00000000                0x0                0x0
0xffffcb800001cd80 0001 00000000                0x0                0x0
0xffffcb800001ce00 0001 00000000                0x0                0x0
0xffffcb800001ce80 0001 00000000                0x0                0x0
0xffffcb800001cf00 0001 00000000                0x0                0x0
0xffffcb800001cf80 0001 00000000                0x0                0x0
0xffffcb800001d000 0001 00000000                0x0                0x0
0xffffcb800001d080 0001 00000000                0x0                0x0
0xffffcb800001d100 0001 00000000                0x0                0x0
0xffffcb800001d180 0001 00000000                0x0                0x0
0xffffcb800001d200 0001 00000000                0x0                0x0
0xffffcb800001d280 0001 00000000                0x0                0x0
0xffffcb800001d300 0001 00000000                0x0                0x0
0xffffcb800001d380 0001 00000000                0x0                0x0
0xffffcb800001d400 0001 00000000                0x0                0x0
0xffffcb800001d480 0001 00000000                0x0                0x0
0xffffcb800001d500 0001 00000000                0x0                0x0
0xffffcb800001d580 0001 00000000                0x0                0x0
0xffffcb800001d600 0001 00000000                0x0                0x0
0xffffcb800001d680 0001 00000000                0x0                0x0
0xffffcb800001d700 0001 00000000                0x0                0x0
0xffffcb800001d780 0001 00000000                0x0                0x0
0xffffcb800001d800 0001 00000000                0x0                0x0
0xffffcb800001d880 0001 00000000                0x0                0x0
0xffffcb800001d900 0001 00000000                0x0                0x0
0xffffcb800001d980 0001 00000000                0x0                0x0
0xffffcb800001da00 0001 00000000                0x0                0x0
0xffffcb800001da80 0001 00000000                0x0                0x0
0xffffcb800001db00 0001 00000000                0x0                0x0
0xffffcb800001db80 0001 00000000                0x0                0x0
0xffffcb800001dc00 0001 00000000                0x0                0x0
0xffffcb800001dc80 0001 00000000                0x0                0x0
0xffffcb800001dd00 0001 00000000                0x0                0x0
0xffffcb800001dd80 0001 00000000                0x0                0x0
0xffffcb800001de00 0001 00000000                0x0                0x0
0xffffcb800001de80 0001 00000000                0x0                0x0
0xffffcb800001df00 0001 00000000                0x0                0x0
0xffffcb800001df80 0001 00000000                0x0                0x0
0xffffcb800001e000 0001 00000000                0x0                0x0
0xffffcb800001e080 0001 00000000                0x0                0x0
0xffffcb800001e100 0001 00000000                0x0                0x0
0xffffcb800001e180 0001 00000000                0x0                0x0
0xffffcb800001e200 0001 00000000                0x0                0x0
0xffffcb800001e280 0001 00000000                0x0                0x0
0xffffcb800001e300 0001 00000000                0x0                0x0
0xffffcb800001e380 0001 00000000                0x0                0x0
0xffffcb800001e400 0001 00000000                0x0                0x0
0xffffcb800001e480 0001 00000000                0x0                0x0
0xffffcb800001e500 0001 00000000                0x0                0x0
0xffffcb800001e580 0001 00000000                0x0                0x0
0xffffcb800001e600 0001 00000000                0x0                0x0
0xffffcb800001e680 0001 00000000                0x0                0x0
0xffffcb800001e700 0001 00000000                0x0                0x0
0xffffcb800001e780 0001 00000000                0x0                0x0
0xffffcb800001e800 0001 00000000                0x0                0x0
0xffffcb800001e880 0001 00000000                0x0                0x0
0xffffcb800001e900 0001 00000000                0x0                0x0
0xffffcb800001e980 0001 00000000                0x0                0x0
0xffffcb800001ea00 0001 00000000                0x0                0x0
0xffffcb800001ea80 0001 00000000                0x0                0x0
0xffffcb800001eb00 0001 00000000                0x0                0x0
0xffffcb800001eb80 0001 00000000                0x0                0x0
0xffffcb800001ec00 0001 00000000                0x0                0x0
0xffffcb800001ec80 0001 00000000                0x0                0x0
0xffffcb800001ed00 0001 00000000                0x0                0x0
0xffffcb800001ed80 0001 00000000                0x0                0x0
0xffffcb800001ee00 0001 00000000                0x0                0x0
0xffffcb800001ee80 0001 00000000                0x0                0x0
0xffffcb800001ef00 0001 00000000                0x0                0x0
0xffffcb800001ef80 0001 00000000                0x0                0x0
0xffffcb800001f000 0001 00000000                0x0                0x0
0xffffcb800001f080 0001 00000000                0x0                0x0
0xffffcb800001f100 0001 00000000                0x0                0x0
0xffffcb800001f180 0001 00000000                0x0                0x0
0xffffcb800001f200 0001 00000000                0x0                0x0
0xffffcb800001f280 0001 00000000                0x0                0x0
0xffffcb800001f300 0001 00000000                0x0                0x0
0xffffcb800001f380 0001 00000000                0x0                0x0
0xffffcb800001f400 0001 00000000                0x0                0x0
0xffffcb800001f480 0001 00000000                0x0                0x0
0xffffcb800001f500 0001 00000000                0x0                0x0
0xffffcb800001f580 0001 00000000                0x0                0x0
0xffffcb800001f600 0001 00000000                0x0                0x0
0xffffcb800001f680 0001 00000000                0x0                0x0
0xffffcb800001f700 0001 00000000                0x0                0x0
0xffffcb800001f780 0001 00000000                0x0                0x0
0xffffcb800001f800 0001 00000000                0x0                0x0
0xffffcb800001f880 0001 00000000                0x0                0x0
0xffffcb800001f900 0001 00000000                0x0                0x0
0xffffcb800001f980 0001 00000000                0x0                0x0
0xffffcb800001fa00 0001 00000000                0x0                0x0
0xffffcb800001fa80 0001 00000000                0x0                0x0
0xffffcb800001fb00 0001 00000000                0x0                0x0
0xffffcb800001fb80 0001 00000000                0x0                0x0
0xffffcb800001fc00 0001 00000000                0x0                0x0
0xffffcb800001fc80 0001 00000000                0x0                0x0
0xffffcb800001fd00 0001 00000000                0x0                0x0
0xffffcb800001fd80 0001 00000000                0x0                0x0
0xffffcb800001fe00 0001 00000000                0x0                0x0
0xffffcb800001fe80 0001 00000000                0x0                0x0
0xffffcb800001ff00 0001 00000000                0x0                0x0
0xffffcb800001ff80 0001 00000000                0x0                0x0
0xffffcb8000020000 0001 00000000                0x0                0x0
0xffffcb8000020080 0001 00000000                0x0                0x0
0xffffcb8000020100 0001 00000000                0x0                0x0
0xffffcb8000020180 0001 00000000                0x0                0x0
0xffffcb8000020200 0001 00000000                0x0                0x0
0xffffcb8000020280 0001 00000000                0x0                0x0
0xffffcb8000020300 0001 00000000                0x0                0x0
0xffffcb8000020380 0001 00000000                0x0                0x0
0xffffcb8000020400 0001 00000000                0x0                0x0
0xffffcb8000020480 0001 00000000                0x0                0x0
0xffffcb8000020500 0001 00000000                0x0                0x0
0xffffcb8000020580 0001 00000000                0x0                0x0
0xffffcb8000020600 0001 00000000                0x0                0x0
0xffffcb8000020680 0001 00000000                0x0                0x0
0xffffcb8000020700 0001 00000000                0x0                0x0
0xffffcb8000020780 0001 00000000                0x0                0x0
0xffffcb8000020800 0001 00000000                0x0                0x0
0xffffcb8000020880 0001 00000000                0x0                0x0
0xffffcb8000020900 0001 00000000                0x0                0x0
0xffffcb8000020980 0001 00000000                0x0                0x0
0xffffcb8000020a00 0001 00000000                0x0                0x0
0xffffcb8000020a80 0001 00000000                0x0                0x0
0xffffcb8000020b00 0001 00000000                0x0                0x0
0xffffcb8000020b80 0001 00000000                0x0                0x0
0xffffcb8000020c00 0001 00000000                0x0                0x0
0xffffcb8000020c80 0001 00000000                0x0                0x0
0xffffcb8000020d00 0001 00000000                0x0                0x0
0xffffcb8000020d80 0001 00000000                0x0                0x0
0xffffcb8000020e00 0001 00000000                0x0                0x0
0xffffcb8000020e80 0001 00000000                0x0                0x0
0xffffcb8000020f00 0001 00000000                0x0                0x0
0xffffcb8000020f80 0001 00000000                0x0                0x0
0xffffcb8000021000 0001 00000000                0x0                0x0
0xffffcb8000021080 0001 00000000                0x0                0x0
0xffffcb8000021100 0001 00000000                0x0                0x0
0xffffcb8000021180 0001 00000000                0x0                0x0
0xffffcb8000021200 0001 00000000                0x0                0x0
0xffffcb8000021280 0001 00000000                0x0                0x0
0xffffcb8000021300 0001 00000000                0x0                0x0
0xffffcb8000021380 0001 00000000                0x0                0x0
0xffffcb8000021400 0001 00000000                0x0                0x0
0xffffcb8000021480 0001 00000000                0x0                0x0
0xffffcb8000021500 0001 00000000                0x0                0x0
0xffffcb8000021580 0001 00000000                0x0                0x0
0xffffcb8000021600 0001 00000000                0x0                0x0
0xffffcb8000021680 0001 00000000                0x0                0x0
0xffffcb8000021700 0001 00000000                0x0                0x0
0xffffcb8000021780 0001 00000000                0x0                0x0
0xffffcb8000021800 0001 00000000                0x0                0x0
0xffffcb8000021880 0001 00000000                0x0                0x0
0xffffcb8000021900 0001 00000000                0x0                0x0
0xffffcb8000021980 0001 00000000                0x0                0x0
0xffffcb8000021a00 0001 00000000                0x0                0x0
0xffffcb8000021a80 0001 00000000                0x0                0x0
0xffffcb8000021b00 0001 00000000                0x0                0x0
0xffffcb8000021b80 0001 00000000                0x0                0x0
0xffffcb8000021c00 0001 00000000                0x0                0x0
0xffffcb8000021c80 0001 00000000                0x0                0x0
0xffffcb8000021d00 0001 00000000                0x0                0x0
0xffffcb8000021d80 0001 00000000                0x0                0x0
0xffffcb8000021e00 0001 00000000                0x0                0x0
0xffffcb8000021e80 0001 00000000                0x0                0x0
0xffffcb8000021f00 0001 00000000                0x0                0x0
0xffffcb8000021f80 0001 00000000                0x0                0x0
0xffffcb8000022000 0001 00000000                0x0                0x0
0xffffcb8000022080 0001 00000000                0x0                0x0
0xffffcb8000022100 0001 00000000                0x0                0x0
0xffffcb8000022180 0001 00000000                0x0                0x0
0xffffcb8000022200 0001 00000000                0x0                0x0
0xffffcb8000022280 0001 00000000                0x0                0x0
0xffffcb8000022300 0001 00000000                0x0                0x0
0xffffcb8000022380 0001 00000000                0x0                0x0
0xffffcb8000022400 0001 00000000                0x0                0x0
0xffffcb8000022480 0001 00000000                0x0                0x0
0xffffcb8000022500 0001 00000000                0x0                0x0
0xffffcb8000022580 0001 00000000                0x0                0x0
0xffffcb8000022600 0001 00000000                0x0                0x0
0xffffcb8000022680 0001 00000000                0x0                0x0
0xffffcb8000022700 0001 00000000                0x0                0x0
0xffffcb8000022780 0001 00000000                0x0                0x0
0xffffcb8000022800 0001 00000000                0x0                0x0
0xffffcb8000022880 0001 00000000                0x0                0x0
0xffffcb8000022900 0001 00000000                0x0                0x0
0xffffcb8000022980 0001 00000000                0x0                0x0
0xffffcb8000022a00 0001 00000000                0x0                0x0
0xffffcb8000022a80 0001 00000000                0x0                0x0
0xffffcb8000022b00 0001 00000000                0x0                0x0
0xffffcb8000022b80 0001 00000000                0x0                0x0
0xffffcb8000022c00 0001 00000000                0x0                0x0
0xffffcb8000022c80 0001 00000000                0x0                0x0
0xffffcb8000022d00 0001 00000000                0x0                0x0
0xffffcb8000022d80 0001 00000000                0x0                0x0
0xffffcb8000022e00 0001 00000000                0x0                0x0
0xffffcb8000022e80 0001 00000000                0x0                0x0
0xffffcb8000022f00 0001 00000000                0x0                0x0
0xffffcb8000022f80 0001 00000000                0x0                0x0
0xffffcb8000023000 0001 00000000                0x0                0x0
0xffffcb8000023080 0001 00000000                0x0                0x0
0xffffcb8000023100 0001 00000000                0x0                0x0
0xffffcb8000023180 0001 00000000                0x0                0x0
0xffffcb8000023200 0001 00000000                0x0                0x0
0xffffcb8000023280 0001 00000000                0x0                0x0
0xffffcb8000023300 0001 00000000                0x0                0x0
0xffffcb8000023380 0001 00000000                0x0                0x0
0xffffcb8000023400 0001 00000000                0x0                0x0
0xffffcb8000023480 0001 00000000                0x0                0x0
0xffffcb8000023500 0001 00000000                0x0                0x0
0xffffcb8000023580 0001 00000000                0x0                0x0
0xffffcb8000023600 0001 00000000                0x0                0x0
0xffffcb8000023680 0001 00000000                0x0                0x0
0xffffcb8000023700 0001 00000000                0x0                0x0
0xffffcb8000023780 0001 00000000                0x0                0x0
0xffffcb8000023800 0001 00000000                0x0                0x0
0xffffcb8000023880 0001 00000000                0x0                0x0
0xffffcb8000023900 0001 00000000                0x0                0x0
0xffffcb8000023980 0001 00000000                0x0                0x0
0xffffcb8000023a00 0001 00000000                0x0                0x0
0xffffcb8000023a80 0001 00000000                0x0                0x0
0xffffcb8000023b00 0001 00000000                0x0                0x0
0xffffcb8000023b80 0001 00000000                0x0                0x0
0xffffcb8000023c00 0001 00000000                0x0                0x0
0xffffcb8000023c80 0001 00000000                0x0                0x0
0xffffcb8000023d00 0001 00000000                0x0                0x0
0xffffcb8000023d80 0001 00000000                0x0                0x0
0xffffcb8000023e00 0001 00000000                0x0                0x0
0xffffcb8000023e80 0001 00000000                0x0                0x0
0xffffcb8000023f00 0001 00000000                0x0                0x0
0xffffcb8000023f80 0001 00000000                0x0                0x0
0xffffcb8000024000 0001 00000000                0x0                0x0
0xffffcb8000024080 0001 00000000                0x0                0x0
0xffffcb8000024100 0001 00000000                0x0                0x0
0xffffcb8000024180 0001 00000000                0x0                0x0
0xffffcb8000024200 0001 00000000                0x0                0x0
0xffffcb8000024280 0001 00000000                0x0                0x0
0xffffcb8000024300 0001 00000000                0x0                0x0
0xffffcb8000024380 0001 00000000                0x0                0x0
0xffffcb8000024400 0001 00000000                0x0                0x0
0xffffcb8000024480 0001 00000000                0x0                0x0
0xffffcb8000024500 0001 00000000                0x0                0x0
0xffffcb8000024580 0001 00000000                0x0                0x0


---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzkaller%googlegroups.com@localhost.

syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.

If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title

If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)

If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report

If you want to undo deduplication, reply with:
#syz undup

-- 
You received this message because you are subscribed to the Google Groups "syzkaller-netbsd-bugs" group.
To unsubscribe from this group and stop receiving emails from it, send an email to syzkaller-netbsd-bugs+unsubscribe%googlegroups.com@localhost.
To view this discussion on the web visit https://groups.google.com/d/msgid/syzkaller-netbsd-bugs/000000000000c16af6061ae26e49%40google.com.


Home | Main Index | Thread Index | Old Index