Re: MSan: Uninitialized Memory in uiomove

0 views

Skip to first unread message

syzbot

unread,

Jun 28, 2022, 1:26:13 AM6/28/22

to rias...@netbsd.org, syzkaller-...@googlegroups.com

Hello,

syzbot has tested the proposed patch but the reproducer is still triggering an issue:
MSan: Uninitialized Memory in uiomove

%~ @ � syz-executor.0 ��b ? � 8 p �� syz-executor.0 � � syz-executor.1 ��b � A � [ 59.7240269] panic: MSan: Uninitialized Pool Memory From kthread_create()

[ 59.7348622] cpu0: Begin traceback...
[ 59.7440114] vpanic() at netbsd:vpanic+0xc9d
[ 59.7640140] panic() at netbsd:panic+0x1b3 sys/kern/subr_prf.c:210
[ 59.7840095] __msan_warning() at netbsd:__msan_warning+0x11e kmsan_report_inline sys/kern/subr_msan.c:234 [inline]
[ 59.7840095] __msan_warning() at netbsd:__msan_warning+0x11e sys/kern/subr_msan.c:615
[ 59.8140122] uiomove() at netbsd:uiomove+0x498
[ 59.8340093] ttwrite() at netbsd:ttwrite+0x1559 sys/kern/tty.c:2205
[ 59.8640136] comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
[ 59.9040125] cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207
[ 59.9540112] spec_write() at netbsd:spec_write+0x561
[ 60.0040126] VOP_WRITE() at netbsd:VOP_WRITE+0x39b
[ 60.0540112] vn_write() at netbsd:vn_write+0x709
[ 60.1040119] ktrace_thread() at netbsd:ktrace_thread+0xeba ktrwrite sys/kern/kern_ktrace.c:1327 [inline]
[ 60.1040119] ktrace_thread() at netbsd:ktrace_thread+0xeba sys/kern/kern_ktrace.c:1396
[ 60.1240119] cpu0: End traceback...
[ 60.1240119] fatal breakpoint trap in supervisor mode
[ 60.1347776] trap type 1 code 0 rip 0xffffffff802228ad cs 0x8 rflags 0x286 cr2 0x7f7fe38102a8 ilevel 0x5 rsp 0xffffdb0087782fc0
[ 60.1461348] curlwp 0xffffdb001356e200 pid 0.1241 lowest kstack 0xffffdb008777c2c0
Stopped in pid 0.1241 (system) at netbsd:breakpoint+0x5: leave
?
breakpoint() at netbsd:breakpoint+0x5
vpanic() at netbsd:vpanic+0xc9d
panic() at netbsd:panic+0x1b3 sys/kern/subr_prf.c:210
__msan_warning() at netbsd:__msan_warning+0x11e kmsan_report_inline sys/kern/subr_msan.c:234 [inline]
__msan_warning() at netbsd:__msan_warning+0x11e sys/kern/subr_msan.c:615
uiomove() at netbsd:uiomove+0x498
ttwrite() at netbsd:ttwrite+0x1559 sys/kern/tty.c:2205
comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207
spec_write() at netbsd:spec_write+0x561
VOP_WRITE() at netbsd:VOP_WRITE+0x39b
vn_write() at netbsd:vn_write+0x709
ktrace_thread() at netbsd:ktrace_thread+0xeba ktrwrite sys/kern/kern_ktrace.c:1327 [inline]
ktrace_thread() at netbsd:ktrace_thread+0xeba sys/kern/kern_ktrace.c:1396
Panic string: MSan: Uninitialized Pool Memory From kthread_create()

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT
1383 1212 3 0 0 ffffdb0013556a40 syz-executor.3 ktrsync
1383 1383 3 1 10040000 ffffdb00135561c0 syz-executor.3 ktrsync
1205 1210 3 0 0 ffffdb0013556600 syz-executor.1 ktrsync
1205 1205 3 0 10040000 ffffdb001336da00 syz-executor.1 ktrsync
1213 1213 3 0 0 ffffdb001336d5c0 syz-executor.5 ktrsync
1208 1350 3 1 0 ffffdb001356e640 syz-executor.0 ktrsync
1208 1208 3 0 10040000 ffffdb001336d180 syz-executor.0 ktrsync
1197 1197 3 0 40000 ffffdb001334e9c0 syz-executor.2 ktrsync
1204 1204 3 0 0 ffffdb001334e580 syz-executor.3 ktrsync
1198 1198 3 1 40000 ffffdb001334e140 syz-executor.4 ktrsync
323 323 3 1 40000 ffffdb001231e980 syz-executor.5 ktrsync
334 334 3 0 0 ffffdb001231e540 syz-executor.1 ktrsync
1096 1096 3 1 0 ffffdb001231e100 syz-executor.0 ktrsync
1104 329 3 1 0 ffffdb00122fb940 syz-execprog ktrsync
1104 330 3 1 180 ffffdb00122fb500 syz-execprog kqueue
1104 1202 3 1 180 ffffdb00122fb0c0 syz-execprog parked
1104 1200 3 1 180 ffffdb0012bb3900 syz-execprog parked
1104 1199 3 0 180 ffffdb0012bb34c0 syz-execprog parked
1104 1235 3 1 180 ffffdb0012bb3080 syz-execprog parked
1104 1380 3 0 180 ffffdb001242cb40 syz-execprog parked
1104 1381 3 0 1c0 ffffdb0012b968c0 syz-execprog parked
1104 1239 3 1 0 ffffdb00122c86c0 syz-execprog ktrsync
1104 1104 3 0 40180 ffffdb00122c8280 syz-execprog parked
972 972 3 1 180 ffffdb001229aac0 sshd select
1126 1126 3 0 180 ffffdb0012b96480 getty nanoslp
1115 1115 3 0 180 ffffdb001229a680 getty nanoslp
699 699 3 1 180 ffffdb001229a240 getty nanoslp
1068 1068 3 0 1c0 ffffdb00121a9600 getty ttyraw
1093 1093 3 0 180 ffffdb0012b96040 sshd select
953 953 3 1 180 ffffdb0012ae4780 powerd kqueue
689 689 3 0 180 ffffdb001250ab80 syslogd kqueue
602 602 3 0 180 ffffdb001242c700 dhcpcd poll
547 547 3 0 180 ffffdb0012ae4bc0 dhcpcd poll
546 546 3 0 180 ffffdb001242c2c0 dhcpcd poll
587 587 3 1 180 ffffdb0012ae4340 dhcpcd poll
289 289 3 1 180 ffffdb001250a740 dhcpcd poll
288 288 3 0 180 ffffdb00122c8b00 dhcpcd poll
351 351 3 1 180 ffffdb001250a300 dhcpcd poll
1 1 3 0 180 ffffdb0011e38940 init wait
0 >1241 7 0 240 ffffdb001356e200 ktrace
0 819 3 0 200 ffffdb00121a9a40 physiod physiod
0 194 3 0 200 ffffdb00121b5a80 pooldrain pooldrain
0 193 3 1 200 ffffdb00121b5640 ioflush syncer
0 192 3 1 200 ffffdb00121b5200 pgdaemon pgdaemon
0 169 3 1 200 ffffdb00121a91c0 usb7 usbevt
0 167 3 1 200 ffffdb00120f6a00 usb6 usbevt
0 165 3 0 200 ffffdb00120f65c0 usb5 usbevt
0 164 3 1 200 ffffdb00120f6180 usb4 usbevt
0 31 3 1 200 ffffdb001205d9c0 usb3 usbevt
0 63 3 0 200 ffffdb001205d580 usb2 usbevt
0 126 3 0 200 ffffdb001205d140 usb1 usbevt
0 125 3 1 200 ffffdb0011e49980 usb0 usbevt
0 124 3 0 200 ffffdb0011e49540 usbtask-dr usbtsk
0 123 3 0 200 ffffdb00118016c0 usbtask-hc usbtsk
0 122 3 0 200 ffffdb0011e49100 npfgc0 npfgcw
0 121 3 0 200 ffffdb0011e38500 rt_free rt_free
0 120 3 0 200 ffffdb0011e380c0 unpgc unpgc
0 119 3 0 200 ffffdb0011e35900 key_timehandler key_timehandler
0 118 3 1 200 ffffdb0011e354c0 icmp6_wqinput/1 icmp6_wqinput
0 117 3 0 200 ffffdb0011e35080 icmp6_wqinput/0 icmp6_wqinput
0 116 3 0 200 ffffdb0011cc48c0 nd6_timer nd6_timer
0 115 3 1 200 ffffdb0011cc4480 carp6_wqinput/1 carp6_wqinput
0 114 3 0 200 ffffdb0011cc4040 carp6_wqinput/0 carp6_wqinput
0 113 3 1 200 ffffdb0011cc2b80 carp_wqinput/1 carp_wqinput
0 112 3 0 200 ffffdb0011cc2740 carp_wqinput/0 carp_wqinput
0 111 3 1 200 ffffdb0011cc2300 icmp_wqinput/1 icmp_wqinput
0 110 3 0 200 ffffdb0011cc3780 icmp_wqinput/0 icmp_wqinput
0 109 3 1 200 ffffdb0011cc3bc0 rt_timer rt_timer
0 108 3 1 200 ffffdb0011cc3340 vmem_rehash vmem_rehash
0 99 3 0 200 ffffdb0011804b40 entbutler entropy
0 98 3 1 200 ffffdb0011804700 viomb balloon
0 97 3 1 200 ffffdb00118042c0 vioif0_txrx/1 vioif0_txrx
0 96 3 0 200 ffffdb0011801b00 vioif0_txrx/0 vioif0_txrx
0 29 3 0 200 ffffdb0011801280 scsibus0 sccomp
0 28 3 0 200 ffffdb00103afac0 pms0 pmsreset
0 27 3 1 200 ffffdb00103af680 xcall/1 xcall
0 26 1 1 200 ffffdb00103af240 softser/1
0 > 25 7 1 200 ffffdb00103ada80 softclk/1
0 24 1 1 200 ffffdb00103ad640 softbio/1
0 23 1 1 200 ffffdb00103ad200 softnet/1
0 > 22 1 1 201 ffffdb000f1f1a40 idle/1
0 21 3 0 200 ffffdb000f1f1600 lnxsyswq lnxsyswq
0 20 3 0 200 ffffdb000f1f11c0 lnxubdwq lnxubdwq
0 19 3 0 200 ffffdb000f1f0a00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffffdb000f1f05c0 lnxlngwq lnxlngwq
0 17 3 0 200 ffffdb000f1f0180 lnxhipwq lnxhipwq
0 16 3 0 200 ffffdb000f1eb9c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffffdb000f1eb580 sysmon smtaskq
0 14 3 0 200 ffffdb000f1eb140 pmfsuspend pmfsuspend
0 13 3 0 200 ffffdb000f1e7980 pmfevent pmfevent
0 12 3 0 200 ffffdb000f1e7540 sopendfree sopendfr
0 11 3 0 200 ffffdb000f1e7100 iflnkst iflnkst
0 10 3 0 200 ffffdb000f1dd940 nfssilly nfssilly
0 9 3 0 200 ffffdb000f1dd500 vdrain vdrain
0 8 3 1 200 ffffdb000f1dd0c0 modunload mod_unld
0 7 3 0 200 ffffdb000ebda900 xcall/0 xcall
0 6 1 0 200 ffffdb000ebda4c0 softser/0
0 5 1 0 200 ffffdb000ebda080 softclk/0
0 4 1 0 200 ffffdb000ebd88c0 softbio/0
0 3 1 0 200 ffffdb000ebd8480 softnet/0
0 2 1 0 201 ffffdb000ebd8040 idle/0
0 0 3 1 200 ffffffff86868900 swapper uvm
[Locks tracked through LWPs]

****** LWP 547.547 (dhcpcd) @ 0xffffdb0012ae4bc0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive
initialized : 0xffffffff8517f7a3
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffdb0012ae4bc0 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 546.546 (dhcpcd) @ 0xffffdb001242c2c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive
initialized : 0xffffffff8517f7a3
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffdb001242c2c0 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 288.288 (dhcpcd) @ 0xffffdb00122c8b00, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive
initialized : 0xffffffff8517f7a3
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffdb00122c8b00 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 351.351 (dhcpcd) @ 0xffffdb001250a300, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive
initialized : 0xffffffff8517f7a3
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffdb001250a300 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffdb000f1e7100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive
initialized : 0xffffffff8517f7a3
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffdb000f1e7100 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffdb000ebda080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive
initialized : 0xffffffff8517f7a3
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffdb000ebda080 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff86868900, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive
initialized : 0xffffffff8517f7a3
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffffff86868900 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin
initialized : 0xffffffff85064934
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffdb001356e200 last held: 0xffffdb001356e200
last locked* : 0xffffffff8530ba94 unlocked : 0xffffffff8522c94e
curcpu holds : 1 wanted by: 000000000000000000

* Lock 1 (initialized at kprintf_init)
lock address : 0xffffffff868a9c00 type : spin
initialized : 0xffffffff8539c5ec
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffdb001356e200 last held: 0xffffdb001356e200
last locked* : 0xffffffff8539d414 unlocked : 0xffffffff8539de1e
owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON
0xffffdb0000017180 0041 00000000 0x0 0x0
0xffffdb0000017200 0041 00000000 0x0 0x0
0xffffdb0000017280 0041 00000000 0x0 0x0
0xffffdb0000017300 0041 00000000 0x0 0x0
0xffffdb0000017380 0041 00000000 0x0 0x0
0xffffdb0000017400 0041 00000000 0x0 0x0
0xffffdb0000017480 0041 00000000 0x0 0x0
0xffffdb0000017500 0041 00000000 0x0 0x0
0xffffdb0000017580 0041 00000000 0x0 0x0
0xffffdb0000017600 0041 00000000 0x0 0x0
0xffffdb0000017680 0041 00000000 0x0 0x0
0xffffdb0000017700 0041 00000000 0x0 0x0
0xffffdb0000017780 0041 00000000 0x0 0x0
0xffffdb0000017800 0041 00000000 0x0 0x0
0xffffdb0000017880 0041 00000000 0x0 0x0
0xffffdb0000017900 0041 00000000 0x0 0x0
0xffffdb0000017980 0041 00000000 0x0 0x0
0xffffdb0000017a00 0041 00000000 0x0 0x0
0xffffdb0000017a80 0041 00000000 0x0 0x0
0xffffdb0000017b00 0041 00000000 0x0 0x0
0xffffdb0000017b80 0041 00000000 0x0 0x0
0xffffdb0000017c00 0041 00000000 0x0 0x0
0xffffdb0000017c80 0041 00000000 0x0 0x0
0xffffdb0000017d00 0041 00000000 0x0 0x0
0xffffdb0000017d80 0041 00000000 0x0 0x0
0xffffdb0000017e00 0041 00000000 0x0 0x0
0xffffdb0000017e80 0041 00000000 0x0 0x0
0xffffdb0000017f00 0041 00000000 0x0 0x0
0xffffdb0000017f80 0041 00000000 0x0 0x0
0xffffdb0000018000 0041 00000000 0x0 0x0
0xffffdb0000018080 0041 00000000 0x0 0x0
0xffffdb0000018100 0041 00000000 0x0 0x0
0xffffdb0000018180 0041 00000000 0x0 0x0
0xffffdb0000018200 0041 00000000 0x0 0x0
0xffffdb0000018280 0041 00000000 0x0 0x0
0xffffdb0000018300 0041 00000000 0x0 0x0
0xffffdb0000018380 0041 00000000 0x0 0x0
0xffffdb0000018400 0041 00000000 0x0 0x0
0xffffdb0000018480 0041 00000000 0x0 0x0
0xffffdb0000018500 0041 00000000 0x0 0x0
0xffffdb0000018580 0041 00000000 0x0 0x0
0xffffdb0000018600 0041 00000000 0x0 0x0
0xffffdb0000018680 0041 00000000 0x0 0x0
0xffffdb0000018700 0041 00000000 0x0 0x0
0xffffdb0000018780 0041 00000000 0x0 0x0
0xffffdb0000018800 0041 00000000 0x0 0x0
0xffffdb0000018880 0041 00000000 0x0 0x0
0xffffdb0000018900 0041 00000000 0x0 0x0
0xffffdb0000018980 0041 00000000 0x0 0x0
0xffffdb0000018a00 0041 00000000 0x0 0x0
0xffffdb0000018a80 0041 00000000 0x0 0x0
0xffffdb0000018b00 0041 00000000 0x0 0x0
0xffffdb0000018b80 0041 00000000 0x0 0x0
0xffffdb0000018c00 0041 00000000 0x0 0x0
0xffffdb0000018c80 0041 00000000 0x0 0x0
0xffffdb0000018d00 0041 00000000 0x0 0x0
0xffffdb0000018d80 0041 00000000 0x0 0x0
0xffffdb0000018e00 0041 00000000 0x0 0x0
0xffffdb0000018e80 0041 00000000 0x0 0x0
0xffffdb0000018f00 0041 00000000 0x0 0x0
0xffffdb0000018f80 0041 00000000 0x0 0x0
0xffffdb0000019000 0041 00000000 0x0 0x0
0xffffdb0000019080 0041 00000000 0x0 0x0
0xffffdb0000019100 0041 00000000 0x0 0x0
0xffffdb0000019180 0041 00000000 0x0 0x0
0xffffdb0000019200 0041 00000000 0x0 0x0
0xffffdb0000019280 0041 00000000 0x0 0x0
0xffffdb0000019300 0041 00000000 0x0 0x0
0xffffdb0000019380 0041 00000000 0x0 0x0
0xffffdb0000019400 0041 00000000 0x0 0x0
0xffffdb0000019480 0041 00000000 0x0 0x0
0xffffdb0000019500 0041 00000000 0x0 0x0
0xffffdb0000019580 0041 00000000 0x0 0x0
0xffffdb0000019600 0041 00000000 0x0 0x0
0xffffdb0000019680 0041 00000000 0x0 0x0
0xffffdb0000019700 0041 00000000 0x0 0x0
0xffffdb0000019780 0041 00000000 0x0 0x0
0xffffdb0000019800 0041 00000000 0x0 0x0
0xffffdb0000019880 0041 00000000 0x0 0x0
0xffffdb0000019900 0041 00000000 0x0 0x0
0xffffdb0000019980 0041 00000000 0x0 0x0
0xffffdb0000019a00 0041 00000000 0x0 0x0
0xffffdb0000019a80 0041 00000000 0x0 0x0
0xffffdb0000019b00 0041 00000000 0x0 0x0
0xffffdb0000019b80 0041 00000000 0x0 0x0
0xffffdb0000019c00 0041 00000000 0x0 0x0
0xffffdb0000019c80 0041 00000000 0x0 0x0
0xffffdb0000019d00 0041 00000000 0x0 0x0
0xffffdb0000019d80 0041 00000000 0x0 0x0
0xffffdb0000019e00 0041 00000000 0x0 0x0
0xffffdb0000019e80 0041 00000000 0x0 0x0
0xffffdb0000019f00 0041 00000000 0x0 0x0
0xffffdb0000019f80 0041 00000000 0x0 0x0
0xffffdb000001a000 0041 00000000 0x0 0x0
0xffffdb000001a080 0041 00000000 0x0 0x0
0xffffdb000001a100 0041 00000000 0x0 0x0
0xffffdb000001a180 0041 00000000 0x0 0x0
0xffffdb000001a200 0041 00000000 0x0 0x0
0xffffdb000001a280 0041 00000000 0x0 0x0
0xffffdb000001a300 0041 00000000 0x0 0x0
0xffffdb000001a380 0041 00000000 0x0 0x0
0xffffdb000001a400 0041 00000000 0x0 0x0
0xffffdb000001a480 0041 00000000 0x0 0x0
0xffffdb000001a500 0041 00000000 0x0 0x0
0xffffdb000001a580 0041 00000000 0x0 0x0
0xffffdb000001a600 0041 00000000 0x0 0x0
0xffffdb000001a680 0041 00000000 0x0 0x0
0xffffdb000001a700 0041 00000000 0x0 0x0
0xffffdb000001a780 0041 00000000 0x0 0x0
0xffffdb000001a800 0041 00000000 0x0 0x0
0xffffdb000001a880 0041 00000000 0x0 0x0
0xffffdb000001a900 0041 00000000 0x0 0x0
0xffffdb000001a980 0041 00000000 0x0 0x0
0xffffdb000001aa00 0041 00000000 0x0 0x0
0xffffdb000001aa80 0041 00000000 0x0 0x0
0xffffdb000001ab00 0041 00000000 0x0 0x0
0xffffdb000001ab80 0041 00000000 0x0 0x0
0xffffdb000001ac00 0041 00000000 0x0 0x0
0xffffdb000001ac80 0041 00000000 0x0 0x0
0xffffdb000001ad00 0041 00000000 0x0 0x0
0xffffdb000001ad80 0041 00000000 0x0 0x0
0xffffdb000001ae00 0041 00000000 0x0 0x0
0xffffdb000001ae80 0041 00000000 0x0 0x0
0xffffdb000001af00 0041 00000000 0x0 0x0
0xffffdb000001af80 0041 00000000 0x0 0x0
0xffffdb000001b000 0041 00000000 0x0 0x0
0xffffdb000001b080 0041 00000000 0x0 0x0
0xffffdb000001b100 0041 00000000 0x0 0x0
0xffffdb000001b180 0041 00000000 0x0 0x0
0xffffdb000001b200 0041 00000000 0x0 0x0
0xffffdb000001b280 0041 00000000 0x0 0x0
0xffffdb000001b300 0041 00000000 0x0 0x0
0xffffdb000001b380 0041 00000000 0x0 0x0
0xffffdb000001b400 0041 00000000 0x0 0x0
0xffffdb000001b480 0041 00000000 0x0 0x0
0xffffdb000001b500 0041 00000000 0x0 0x0
0xffffdb000001b580 0041 00000000 0x0 0x0
0xffffdb000001b600 0041 00000000 0x0 0x0
0xffffdb000001b680 0041 00000000 0x0 0x0
0xffffdb000001b700 0041 00000000 0x0 0x0
0xffffdb000001b780 0041 00000000 0x0 0x0
0xffffdb000001b800 0041 00000000 0x0 0x0
0xffffdb000001b880 0041 00000000 0x0 0x0
0xffffdb000001b900 0041 00000000 0x0 0x0
0xffffdb000001b980 0041 00000000 0x0 0x0
0xffffdb000001ba00 0041 00000000 0x0 0x0
0xffffdb000001ba80 0041 00000000 0x0 0x0
0xffffdb000001bb00 0041 00000000 0x0 0x0
0xffffdb000001bb80 0041 00000000 0x0 0x0
0xffffdb000001bc00 0041 00000000 0x0 0x0
0xffffdb000001bc80 0041 00000000 0x0 0x0
0xffffdb000001bd00 0041 00000000 0x0 0x0
0xffffdb000001bd80 0041 00000000 0x0 0x0
0xffffdb000001be00 0041 00000000 0x0 0x0
0xffffdb000001be80 0041 00000000 0x0 0x0
0xffffdb000001bf00 0041 00000000 0x0 0x0
0xffffdb000001bf80 0041 00000000 0x0 0x0
0xffffdb000001c000 0041 00000000 0x0 0x0
0xffffdb000001c080 0041 00000000 0x0 0x0
0xffffdb000001c100 0041 00000000 0x0 0x0
0xffffdb000001c180 0041 00000000 0x0 0x0
0xffffdb000001c200 0041 00000000 0x0 0x0
0xffffdb000001c280 0041 00000000 0x0 0x0
0xffffdb000001c300 0041 00000000 0x0 0x0
0xffffdb000001c380 0041 00000000 0x0 0x0
0xffffdb000001c400 0041 00000000 0x0 0x0
0xffffdb000001c480 0041 00000000 0x0 0x0
0xffffdb000001c500 0041 00000000 0x0 0x0
0xffffdb000001c580 0041 00000000 0x0 0x0
0xffffdb000001c600 0041 00000000 0x0 0x0
0xffffdb000001c680 0041 00000000 0x0 0x0
0xffffdb000001c700 0041 00000000 0x0 0x0
0xffffdb000001c780 0001 00000000 0x0 0x0
0xffffdb000001c800 0001 00000000 0x0 0x0
0xffffdb000001c880 0001 00000000 0x0 0x0
0xffffdb000001c900 0001 00000000 0x0 0x0
0xffffdb000001c980 0001 00000000 0x0 0x0
0xffffdb000001ca00 0001 00000000 0x0 0x0
0xffffdb000001ca80 0001 00000000 0x0 0x0
0xffffdb000001cb00 0001 00000000 0x0 0x0
0xffffdb000001cb80 0001 00000000 0x0 0x0
0xffffdb000001cc00 0001 00000000 0x0 0x0
0xffffdb000001cc80 0001 00000000 0x0 0x0
0xffffdb000001cd00 0001 00000000 0x0 0x0
0xffffdb000001cd80 0001 00000000 0x0 0x0
0xffffdb000001ce00 0001 00000000 0x0 0x0
0xffffdb000001ce80 0001 00000000 0x0 0x0
0xffffdb000001cf00 0001 00000000 0x0 0x0
0xffffdb000001cf80 0001 00000000 0x0 0x0
0xffffdb000001d000 0001 00000000 0x0 0x0
0xffffdb000001d080 0001 00000000 0x0 0x0
0xffffdb000001d100 0001 00000000 0x0 0x0
0xffffdb000001d180 0001 00000000 0x0 0x0
0xffffdb000001d200 0001 00000000 0x0 0x0
0xffffdb000001d280 0001 00000000 0x0 0x0
0xffffdb000001d300 0001 00000000 0x0 0x0
0xffffdb000001d380 0001 00000000 0x0 0x0
0xffffdb000001d400 0001 00000000 0x0 0x0
0xffffdb000001d480 0001 00000000 0x0 0x0
0xffffdb000001d500 0001 00000000 0x0 0x0
0xffffdb000001d580 0001 00000000 0x0 0x0
0xffffdb000001d600 0001 00000000 0x0 0x0
0xffffdb000001d680 0001 00000000 0x0 0x0
0xffffdb000001d700 0001 00000000 0x0 0x0
0xffffdb000001d780 0001 00000000 0x0 0x0
0xffffdb000001d800 0001 00000000 0x0 0x0
0xffffdb000001d880 0001 00000000 0x0 0x0
0xffffdb000001d900 0001 00000000 0x0 0x0
0xffffdb000001d980 0001 00000000 0x0 0x0
0xffffdb000001da00 0001 00000000 0x0 0x0
0xffffdb000001da80 0001 00000000 0x0 0x0
0xffffdb000001db00 0001 00000000 0x0 0x0
0xffffdb000001db80 0001 00000000 0x0 0x0
0xffffdb000001dc00 0001 00000000 0x0 0x0
0xffffdb000001dc80 0001 00000000 0x0 0x0
0xffffdb000001dd00 0001 00000000 0x0 0x0
0xffffdb000001dd80 0001 00000000 0x0 0x0
0xffffdb000001de00 0001 00000000 0x0 0x0
0xffffdb000001de80 0001 00000000 0x0 0x0
0xffffdb000001df00 0001 00000000 0x0 0x0
0xffffdb000001df80 0001 00000000 0x0 0x0
0xffffdb000001e000 0001 00000000 0x0 0x0
0xffffdb000001e080 0001 00000000 0x0 0x0
0xffffdb000001e100 0001 00000000 0x0 0x0
0xffffdb000001e180 0001 00000000 0x0 0x0
0xffffdb000001e200 0001 00000000 0x0 0x0
0xffffdb000001e280 0001 00000000 0x0 0x0
0xffffdb000001e300 0001 00000000 0x0 0x0
0xffffdb000001e380 0001 00000000 0x0 0x0
0xffffdb000001e400 0001 00000000 0x0 0x0
0xffffdb000001e480 0001 00000000 0x0 0x0
0xffffdb000001e500 0001 00000000 0x0 0x0
0xffffdb000001e580 0001 00000000 0x0 0x0
0xffffdb000001e600 0001 00000000 0x0 0x0
0xffffdb000001e680 0001 00000000 0x0 0x0
0xffffdb000001e700 0001 00000000 0x0 0x0
0xffffdb000001e780 0001 00000000 0x0 0x0
0xffffdb000001e800 0001 00000000 0x0 0x0
0xffffdb000001e880 0001 00000000 0x0 0x0
0xffffdb000001e900 0001 00000000 0x0 0x0
0xffffdb000001e980 0001 00000000 0x0 0x0
0xffffdb000001ea00 0001 00000000 0x0 0x0
0xffffdb000001ea80 0001 00000000 0x0 0x0
0xffffdb000001eb00 0001 00000000 0x0 0x0
0xffffdb000001eb80 0001 00000000 0x0 0x0
0xffffdb000001ec00 0001 00000000 0x0 0x0
0xffffdb000001ec80 0001 00000000 0x0 0x0
0xffffdb000001ed00 0001 00000000 0x0 0x0
0xffffdb000001ed80 0001 00000000 0x0 0x0
0xffffdb000001ee00 0001 00000000 0x0 0x0
0xffffdb000001ee80 0001 00000000 0x0 0x0
0xffffdb000001ef00 0001 00000000 0x0 0x0
0xffffdb000001ef80 0001 00000000 0x0 0x0
0xffffdb000001f000 0001 00000000 0x0 0x0
0xffffdb000001f080 0001 00000000 0x0 0x0
0xffffdb000001f100 0001 00000000 0x0 0x0
0xffffdb000001f180 0001 00000000 0x0 0x0
0xffffdb000001f200 0001 00000000 0x0 0x0
0xffffdb000001f280 0001 00000000 0x0 0x0
0xffffdb000001f300 0001 00000000 0x0 0x0
0xffffdb000001f380 0001 00000000 0x0 0x0
0xffffdb000001f400 0001 00000000 0x0 0x0
0xffffdb000001f480 0001 00000000 0x0 0x0
0xffffdb000001f500 0001 00000000 0x0 0x0
0xffffdb000001f580 0001 00000000 0x0 0x0
0xffffdb000001f600 0001 00000000 0x0 0x0
0xffffdb000001f680 0001 00000000 0x0 0x0
0xffffdb000001f700 0001 00000000 0x0 0x0
0xffffdb000001f780 0001 00000000 0x0 0x0
0xffffdb000001f800 0001 00000000 0x0 0x0
0xffffdb000001f880 0001 00000000 0x0 0x0
0xffffdb000001f900 0001 00000000 0x0 0x0
0xffffdb000001f980 0001 00000000 0x0 0x0
0xffffdb000001fa00 0001 00000000 0x0 0x0
0xffffdb000001fa80 0001 00000000 0x0 0x0
0xffffdb000001fb00 0001 00000000 0x0 0x0
0xffffdb000001fb80 0001 00000000 0x0 0x0
0xffffdb000001fc00 0001 00000000 0x0 0x0
0xffffdb000001fc80 0001 00000000 0x0 0x0
0xffffdb000001fd00 0001 00000000 0x0 0x0
0xffffdb000001fd80 0001 00000000 0x0 0x0
0xffffdb000001fe00 0001 00000000 0x0 0x0
0xffffdb000001fe80 0001 00000000 0x0 0x0
0xffffdb000001ff00 0001 00000000 0x0 0x0
0xffffdb000001ff80 0001 00000000 0x0 0x0
0xffffdb0000020000 0001 00000000 0x0 0x0
0xffffdb0000020080 0001 00000000 0x0 0x0
0xffffdb0000020100 0001 00000000 0x0 0x0
0xffffdb0000020180 0001 00000000 0x0 0x0
0xffffdb0000020200 0001 00000000 0x0 0x0
0xffffdb0000020280 0001 00000000 0x0 0x0
0xffffdb0000020300 0001 00000000 0x0 0x0
0xffffdb0000020380 0001 00000000 0x0 0x0
0xffffdb0000020400 0001 00000000 0x0 0x0
0xffffdb0000020480 0001 00000000 0x0 0x0
0xffffdb0000020500 0001 00000000 0x0 0x0
0xffffdb0000020580 0001 00000000 0x0 0x0
0xffffdb0000020600 0001 00000000 0x0 0x0
0xffffdb0000020680 0001 00000000 0x0 0x0
0xffffdb0000020700 0001 00000000 0x0 0x0
0xffffdb0000020780 0001 00000000 0x0 0x0
0xffffdb0000020800 0001 00000000 0x0 0x0
0xffffdb0000020880 0001 00000000 0x0 0x0
0xffffdb0000020900 0001 00000000 0x0 0x0
0xffffdb0000020980 0001 00000000 0x0 0x0
0xffffdb0000020a00 0001 00000000 0x0 0x0
0xffffdb0000020a80 0001 00000000 0x0 0x0
0xffffdb0000020b00 0001 00000000 0x0 0x0
0xffffdb0000020b80 0001 00000000 0x0 0x0
0xffffdb0000020c00 0001 00000000 0x0 0x0
0xffffdb0000020c80 0001 00000000 0x0 0x0
0xffffdb0000020d00 0001 00000000 0x0 0x0
0xffffdb0000020d80 0001 00000000 0x0 0x0
0xffffdb0000020e00 0001 00000000 0x0 0x0
0xffffdb0000020e80 0001 00000000 0x0 0x0
0xffffdb0000020f00 0001 00000000 0x0 0x0
0xffffdb0000020f80 0001 00000000 0x0 0x0
0xffffdb0000021000 0001 00000000 0x0 0x0
0xffffdb0000021080 0001 00000000 0x0 0x0
0xffffdb0000021100 0001 00000000 0x0 0x0
0xffffdb0000021180 0001 00000000 0x0 0x0
0xffffdb0000021200 0001 00000000 0x0 0x0
0xffffdb0000021280 0001 00000000 0x0 0x0
0xffffdb0000021300 0001 00000000 0x0 0x0
0xffffdb0000021380 0001 00000000 0x0 0x0
0xffffdb0000021400 0001 00000000 0x0 0x0
0xffffdb0000021480 0001 00000000 0x0 0x0
0xffffdb0000021500 0001 00000000 0x0 0x0
0xffffdb0000021580 0001 00000000 0x0 0x0
0xffffdb0000021600 0001 00000000 0x0 0x0
0xffffdb0000021680 0001 00000000 0x0 0x0
0xffffdb0000021700 0001 00000000 0x0 0x0
0xffffdb0000021780 0001 00000000 0x0 0x0
0xffffdb0000021800 0001 00000000 0x0 0x0
0xffffdb0000021880 0001 00000000 0x0 0x0
0xffffdb0000021900 0001 00000000 0x0 0x0
0xffffdb0000021980 0001 00000000 0x0 0x0
0xffffdb0000021a00 0001 00000000 0x0 0x0
0xffffdb0000021a80 0001 00000000 0x0 0x0
0xffffdb0000021b00 0001 00000000 0x0 0x0
0xffffdb0000021b80 0001 00000000 0x0 0x0
0xffffdb0000021c00 0001 00000000 0x0 0x0
0xffffdb0000021c80 0001 00000000 0x0 0x0
0xffffdb0000021d00 0001 00000000 0x0 0x0
0xffffdb0000021d80 0001 00000000 0x0 0x0
0xffffdb0000021e00 0001 00000000 0x0 0x0
0xffffdb0000021e80 0001 00000000 0x0 0x0
0xffffdb0000021f00 0001 00000000 0x0 0x0
0xffffdb0000021f80 0001 00000000 0x0 0x0
0xffffdb0000022000 0001 00000000 0x0 0x0
0xffffdb0000022080 0001 00000000 0x0 0x0
0xffffdb0000022100 0001 00000000 0x0 0x0
0xffffdb0000022180 0001 00000000 0x0 0x0
0xffffdb0000022200 0001 00000000 0x0 0x0
0xffffdb0000022280 0001 00000000 0x0 0x0
0xffffdb0000022300 0001 00000000 0x0 0x0
0xffffdb0000022380 0001 00000000 0x0 0x0
0xffffdb0000022400 0001 00000000 0x0 0x0
0xffffdb0000022480 0001 00000000 0x0 0x0
0xffffdb0000022500 0001 00000000 0x0 0x0
0xffffdb0000022580 0001 00000000 0x0 0x0
0xffffdb0000022600 0001 00000000 0x0 0x0
0xffffdb0000022680 0001 00000000 0x0 0x0
0xffffdb0000022700 0001 00000000 0x0 0x0
0xffffdb0000022780 0001 00000000 0x0 0x0
0xffffdb0000022800 0001 00000000 0x0 0x0
0xffffdb0000022880 0001 00000000 0x0 0x0
0xffffdb0000022900 0001 00000000 0x0 0x0
0xffffdb0000022980 0001 00000000 0x0 0x0
0xffffdb0000022a00 0001 00000000 0x0 0x0
0xffffdb0000022a80 0001 00000000 0x0 0x0
0xffffdb0000022b00 0001 00000000 0x0 0x0
0xffffdb0000022b80 0001 00000000 0x0 0x0
0xffffdb0000022c00 0001 00000000 0x0 0x0
0xffffdb0000022c80 0001 00000000 0x0 0x0
0xffffdb0000022d00 0001 00000000 0x0 0x0
0xffffdb0000022d80 0001 00000000 0x0 0x0
0xffffdb0000022e00 0001 00000000 0x0 0x0
0xffffdb0000022e80 0001 00000000 0x0 0x0
0xffffdb0000022f00 0001 00000000 0x0 0x0
0xffffdb0000022f80 0001 00000000 0x0 0x0
0xffffdb0000023000 0001 00000000 0x0 0x0
0xffffdb0000023080 0001 00000000 0x0 0x0
0xffffdb0000023100 0001 00000000 0x0 0x0
0xffffdb0000023180 0001 00000000 0x0 0x0
0xffffdb0000023200 0001 00000000 0x0 0x0
0xffffdb0000023280 0001 00000000 0x0 0x0
0xffffdb0000023300 0001 00000000 0x0 0x0
0xffffdb0000023380 0001 00000000 0x0 0x0
0xffffdb0000023400 0001 00000000 0x0 0x0
0xffffdb0000023480 0001 00000000 0x0 0x0
0xffffdb0000023500 0001 00000000 0x0 0x0
0xffffdb0000023580 0001 00000000 0x0 0x0
0xffffdb0000023600 0001 00000000 0x0 0x0
0xffffdb0000023680 0001 00000000 0x0 0x0
0xffffdb0000023700 0001 00000000 0x0 0x0
0xffffdb0000023780 0001 00000000 0x0 0x0
0xffffdb0000023800 0001 00000000 0x0 0x0
0xffffdb0000023880 0001 00000000 0x0 0x0
0xffffdb0000023900 0001 00000000 0x0 0x0
0xffffdb0000023980 0001 00000000 0x0 0x0
0xffffdb0000023a00 0001 00000000 0x0 0x0
0xffffdb0000023a80 0001 00000000 0x0 0x0
0xffffdb0000023b00 0001 00000000 0x0 0x0
0xffffdb0000023b80 0001 00000000 0x0 0x0
0xffffdb0000023c00 0001 00000000 0x0 0x0
0xffffdb0000023c80 0001 00000000 0x0 0x0
0xffffdb0000023d00 0001 00000000 0x0 0x0
0xffffdb0000023d80 0001 00000000 0x0 0x0
0xffffdb0000023e00 0001 00000000 0x0 0x0
0xffffdb0000023e80 0001 00000000 0x0 0x0
0xffffdb0000023f00 0001 00000000 0x0 0x0
0xffffdb0000023f80 0001 00000000 0x0 0x0
0xffffdb0000024000 0001 00000000 0x0 0x0
0xffffdb0000024080 0001 00000000 0x0 0x0
0xffffdb0000024100 0001 00000000 0x0 0x0
0xffffdb0000024180 0001 00000000 0x0 0x0
0xffffdb0000024200 0001 00000000 0x0 0x0
0xffffdb0000024280 0001 00000000 0x0 0x0
0xffffdb0000024300 0001 00000000 0x0 0x0
0xffffdb0000024380 0001 00000000 0x0 0x0
0xffffdb0000024400 0001 00000000 0x0 0x0
0xffffdb0000024480 0001 00000000 0x0 0x0
0xffffdb0000024500 0001 00000000 0x0 0x0
0xffffdb0000024580 0001 00000000 0x0 0x0
0xffffdb0000024600 0001 00000000 0x0 0x0
0xffffdb0000024680 0001 00000000 0x0 0x0
0xffffdb0000024700 0001 00000000 0x0 0x0
0xffffdb0000024780 0001 00000000 0x0 0x0
0xffffdb0000024800 0001 00000000 0x0 0x0
0xffffdb0000024880 0001 00000000 0x0 0x0
0xffffdb0000024900 0001 00000000 0x0 0x0
0xffffdb0000024980 0001 00000000 0x0 0x0
0xffffdb0000024a00 0001 00000000 0x0 0x0
0xffffdb0000024a80 0001 00000000 0x0 0x0
0xffffdb0000024b00 0001 00000000 0x0 0x0
0xffffdb0000024b80 0001 00000000 0x0 0x0
0xffffdb0000024c00 0001 00000000 0x0 0x0
0xffffdb0000024c80 0001 00000000 0x0 0x0
0xffffdb0000024d00 0001 00000000 0x0 0x0
0xffffdb0000024d80 0001 00000000 0x0 0x0
0xffffdb0000024e00 0001 00000000 0x0 0x0
0xffffdb0000024e80 0001 00000000 0x0 0x0
0xffffdb0000024f00 0001 00000000 0x0 0x0
0xffffdb0000024f80 0001 00000000 0x0 0x0
0xffffdb0000025000 0001 00000000 0x0 0x0
0xffffdb0000025080 0001 00000000 0x0 0x0
0xffffdb0000025100 0001 00000000 0x0 0x0
0xffffdb0000025180 0001 00000000 0x0 0x0
0xffffdb0000025200 0001 00000000 0x0 0x0
0xffffdb0000025280 0001 00000000 0x0 0x0
0xffffdb0000025300 0001 00000000 0x0 0x0
0xffffdb0000025380 0001 00000000 0x0 0x0
0xffffdb0000025400 0001 00000000 0x0 0x0
0xffffdb0000025480 0001 00000000 0x0 0x0
0xffffdb0000025500 0001 00000000 0x0 0x0
0xffffdb0000025580 0001 00000000 0x0 0x0
0xffffdb0000025600 0001 00000000 0x0 0x0
0xffffdb0000025680 0001 00000000 0x0 0x0
0xffffdb0000025700 0001 00000000 0x0 0x0
0xffffdb0000025780 0001 00000000 0x0 0x0
0xffffdb0000025800 0001 00000000 0x0 0x0
0xffffdb0000025880 0001 00000000 0x0 0x0
0xffffdb0000025900 0001 00000000 0x0 0x0
0xffffdb0000025980 0001 00000000 0x0 0x0
0xffffdb0000025a00 0001 00000000 0x0 0x0
0xffffdb0000025a80 0001 00000000 0x0 0x0
0xffffdb0000025b00 0001 00000000 0x0 0x0
0xffffdb0000025b80 0001 00000000 0x0 0x0
0xffffdb0000025c00 0001 00000000 0x0 0x0
0xffffdb0000025c80 0001 00000000 0x0 0x0
0xffffdb0000025d00 0001 00000000 0x0 0x0
0xffffdb0000025d80 0001 00000000 0x0 0x0
0xffffdb0000025e00 0001 00000000 0x0 0x0
0xffffdb0000025e80 0001 00000000 0x0 0x0
0xffffdb0000025f00 0001 00000000 0x0 0x0
0xffffdb0000025f80 0001 00000000 0x0 0x0
0xffffdb0000026000 0001 00000000 0x0 0x0
0xffffdb0000026080 0001 00000000 0x0 0x0
0xffffdb0000026100 0001 00000000 0x0 0x0
0xffffdb0000026180 0001 00000000 0x0 0x0
0xffffdb0000026200 0001 00000000 0x0 0x0
0xffffdb0000026280 0001 00000000 0x0 0x0
0xffffdb0000026300 0001 00000000 0x0 0x0
0xffffdb0000026380 0001 00000000 0x0 0x0
0xffffdb0000026400 0001 00000000 0x0 0x0
0xffffdb0000026480 0001 00000000 0x0 0x0
0xffffdb0000026500 0001 00000000 0x0 0x0
0xffffdb0000026580 0001 00000000 0x0 0x0
0xffffdb0000026600 0001 00000000 0x0 0x0
0xffffdb0000026680 0001 00000000 0x0 0x0
0xffffdb0000026700 0001 00000000 0x0 0x0
0xffffdb0000026780 0001 00000000 0x0 0x0
0xffffdb0000026800 0001 00000000 0x0 0x0
0xffffdb0000026880 0001 00000000 0x0 0x0
0xffffdb0000026900 0001 00000000 0x0 0x0
0xffffdb0000026980 0001 00000000 0x0 0x0
0xffffdb0000026a00 0001 00000000 0x0 0x0
0xffffdb0000026a80 0001 00000000 0x0 0x0
0xffffdb0000026b00 0001 00000000 0x0 0x0
0xffffdb0000026b80 0001 00000000 0x0 0x0
0xffffdb0000026c00 0001 00000000 0x0 0x0
0xffffdb0000026c80 0001 00000000 0x0 0x0
0xffffdb0000026d00 0001 00000000 0x0 0x0
0xffffdb0000026d80 0001 00000000 0x0 0x0
0xffffdb0000026e00 0001 00000000 0x0 0x0
0xffffdb0000026e80 0001 00000000 0x0 0x0
0xffffdb0000026f00 0001 00000000 0x0 0x0
0xffffdb0000026f80 0001 00000000 0x0 0x0
0xffffdb0000027000 0001 00000000 0x0 0x0
0xffffdb0000027080 0001 00000000 0x0 0x0
0xffffdb0000027100 0001 00000000 0x0 0x0
0xffffdb0000027180 0001 00000000 0x0 0x0
0xffffdb0000027200 0001 00000000 0x0 0x0
0xffffdb0000027280 0001 00000000 0x0 0x0
0xffffdb0000027300 0001 00000000 0x0 0x0
0xffffdb0000027380 0001 00000000 0x0 0x0
0xffffdb0000027400 0001 00000000 0x0 0x0
0xffffdb0000027480 0001 00000000 0x0 0x0
0xffffdb0000027500 0001 00000000 0x0 0x0
0xffffdb0000027580 0001 00000000 0x0 0x0
0xffffdb0000027600 0001 00000000 0x0 0x0
0xffffdb0000027680 0001 00000000 0x0 0x0
0xffffdb0000027700 0001 00000000 0x0 0x0
0xffffdb0000027780 0001 00000000 0x0 0x0
0xffffdb0000027800 0001 00000000 0x0 0x0
0xffffdb0000027880 0001 00000000 0x0 0x0
0xffffdb0000027900 0001 00000000 0x0 0x0
0xffffdb0000027980 0001 00000000 0x0 0x0
0xffffdb0000027a00 0001 00000000 0x0 0x0
0xffffdb0000027a80 0001 00000000 0x0 0x0
0xffffdb0000027b00 0001 00000000 0x0 0x0
0xffffdb0000027b80 0001 00000000 0x0 0x0
0xffffdb0000027c00 0001 00000000 0x0 0x0
0xffffdb0000027c80 0001 00000000 0x0 0x0
0xffffdb0000027d00 0001 00000000 0x0 0x0
0xffffdb0000027d80 0001 00000000 0x0 0x0
0xffffdb0000027e00 0001 00000000 0x0 0x0
0xffffdb0000027e80 0001 00000000 0x0 0x0
0xffffdb0000027f00 0001 00000000 0x0 0x0
0xffffdb0000027f80 0001 00000000 0x0 0x0
0xffffdb0000028000 0001 00000000 0x0 0x0
0xffffdb0000028080 0001 00000000 0x0 0x0
0xffffdb0000028100 0001 00000000 0x0 0x0
0xffffdb0000028180 0001 00000000 0x0 0x0
0xffffdb0000028200 0001 00000000 0x0 0x0
0xffffdb0000028280 0001 00000000 0x0 0x0
0xffffdb0000028300 0001 00000000 0x0 0x0
0xffffdb0000028380 0001 00000000 0x0 0x0
0xffffdb0000028400 0001 00000000 0x0 0x0
0xffffdb0000028480 0001 00000000 0x0 0x0
0xffffdb0000028500 0001 00000000 0x0 0x0
0xffffdb0000028580 0001 00000000 0x0 0x0
0xffffdb0000028600 0001 00000000 0x0 0x0
0xffffdb0000028680 0001 00000000 0x0 0x0
0xffffdb0000028700 0001 00000000 0x0 0x0
0xffffdb0000028780 0001 00000000 0x0 0x0
0xffffdb0000028800 0001 00000000 0x0 0x0
0xffffdb0000028880 0001 00000000 0x0 0x0
0xffffdb0000028900 0001 00000000 0x0 0x0
0xffffdb0000028980 0001 00000000 0x0 0x0
0xffffdb0000028a00 0001 00000000 0x0 0x0
0xffffdb0000028a80 0001 00000000 0x0 0x0
0xffffdb0000028b00 0001 00000000 0x0 0x0
0xffffdb0000028b80 0001 00000000 0x0 0x0
0xffffdb0000028c00 0001 00000000 0x0 0x0
0xffffdb0000028c80 0001 00000000 0x0 0x0
0xffffdb0000028d00 0001 00000000 0x0 0x0
0xffffdb0000028d80 0001 00000000 0x0 0x0
0xffffdb0000028e00 0001 00000000 0x0 0x0
0xffffdb0000028e80 0001 00000000 0x0 0x0
0xffffdb0000028f00 0001 00000000 0x0 0x0
0xffffdb0000028f80 0001 00000000 0x0 0x0
0xffffdb0000029000 0001 00000000 0x0 0x0
0xffffdb0000029080 0001 00000000 0x0 0x0
0xffffdb0000029100 0001 00000000 0x0 0x0
0xffffdb0000029180 0001 00000000 0x0 0x0
0xffffdb0000029200 0001 00000000 0x0 0x0
0xffffdb0000029280 0001 00000000 0x0 0x0
0xffffdb0000029300 0001 00000000 0x0 0x0
0xffffdb0000029380 0001 00000000 0x0 0x0
0xffffdb0000029400 0001 00000000 0x0 0x0
0xffffdb0000029480 0001 00000000 0x0 0x0
0xffffdb0000029500 0001 00000000 0x0 0x0
0xffffdb0000029580 0001 00000000 0x0 0x0
0xffffdb0000029600 0001 00000000 0x0 0x0
0xffffdb0000029680 0001 00000000 0x0 0x0
0xffffdb0000029700 0001 00000000 0x0 0x0
0xffffdb0000029780 0001 00000000 0x0 0x0
0xffffdb0000029800 0001 00000000 0x0 0x0
0xffffdb0000029880 0001 00000000 0x0 0x0
0xffffdb0000029900 0001 00000000 0x0 0x0
0xffffdb0000029980 0001 00000000 0x0 0x0
0xffffdb0000029a00 0001 00000000 0x0 0x0
0xffffdb0000029a80 0001 00000000 0x0 0x0
0xffffdb0000029b00 0001 00000000 0x0 0x0
0xffffdb0000029b80 0001 00000000 0x0 0x0
0xffffdb0000029c00 0001 00000000 0x0 0x0
0xffffdb0000029c80 0001 00000000 0x0 0x0
0xffffdb0000029d00 0001 00000000 0x0 0x0
0xffffdb0000029d80 0001 00000000 0x0 0x0
0xffffdb0000029e00 0001 00000000 0x0 0x0
0xffffdb0000029e80 0001 00000000 0x0 0x0
0xffffdb0000029f00 0001 00000000 0x0 0x0
0xffffdb0000029f80 0001 00000000 0x0 0x0
0xffffdb000002a000 0001 00000000 0x0 0x0
0xffffdb000002a080 0001 00000000 0x0 0x0
0xffffdb000002a100 0001 00000000 0x0 0x0
0xffffdb000002a180 0001 00000000 0x0 0x0
0xffffdb000002a200 0001 00000000 0x0 0x0
0xffffdb000002a280 0001 00000000 0x0 0x0
0xffffdb000002a300 0001 00000000 0x0 0x0
0xffffdb000002a380 0001 00000000 0x0 0x0
0xffffdb000002a400 0001 00000000 0x0 0x0
0xffffdb000002a480 0001 00000000 0x0 0x0
0xffffdb000002a500 0001 00000000 0x0 0x0
0xffffdb000002a580 0001 00000000 0x0 0x0
0xffffdb000002a600 0001 00000000 0x0 0x0
0xffffdb000002a680 0001 00000000 0x0 0x0
0xffffdb000002a700 0001 00000000 0x0 0x0
0xffffdb000002a780 0001 00000000 0x0 0x0
0xffffdb000002a800 0001 00000000 0x0 0x0
0xffffdb000002a880 0001 00000000 0x0 0x0
0xffffdb000002a900 0001 00000000 0x0 0x0
0xffffdb000002a980 0001 00000000 0x0 0x0
0xffffdb000002aa00 0001 00000000 0x0 0x0
0xffffdb000002aa80 0001 00000000 0x0 0x0
0xffffdb000002ab00 0001 00000000 0x0 0x0
0xffffdb000002ab80 0001 00000000 0x0 0x0
0xffffdb000002ac00 0001 00000000 0x0 0x0
0xffffdb000002ac80 0001 00000000 0x0 0x0
0xffffdb000002ad00 0001 00000000 0x0 0x0
0xffffdb000002ad80 0001 00000000 0x0 0x0
0xffffdb000002ae00 0001 00000000 0x0 0x0
0xffffdb000002ae80 0001 00000000 0x0 0x0
0xffffdb000002af00 0001 00000000 0x0 0x0
0xffffdb000002af80 0001 00000000 0x0 0x0
0xffffdb000002b000 0001 00000000 0x0 0x0
0xffffdb000002b080 0001 00000000 0x0 0x0
0xffffdb000002b100 0001 00000000 0x0 0x0
0xffffdb000002b180 0001 00000000 0x0 0x0
0xffffdb000002b200 0001 00000000 0x0 0x0
0xffffdb000002b280 0001 00000000 0x0 0x0
0xffffdb000002b300 0001 00000000 0x0 0x0
0xffffdb000002b380 0001 00000000 0x0 0x0
0xffffdb000002b400 0001 00000000 0x0 0x0
0xffffdb000002b480 0001 00000000 0x0 0x0
0xffffdb000002b500 0001 00000000 0x0 0x0
0xffffdb000002b580 0001 00000000 0x0 0x0
0xffffdb000002b600 0001 00000000 0x0 0x0
0xffffdb000002b680 0001 00000000 0x0 0x0
0xffffdb000002b700 0001 00000000 0x0 0x0
0xffffdb000002b780 0001 00000000 0x0 0x0
0xffffdb000002b800 0001 00000000 0x0 0x0
0xffffdb000002b880 0001 00000000 0x0 0x0
0xffffdb000002b900 0001 00000000 0x0 0x0
0xffffdb000002b980 0001 00000000 0x0 0x0
0xffffdb000002ba00 0001 00000000 0x0 0x0
0xffffdb000002ba80 0001 00000000 0x0 0x0
0xffffdb000002bb00 0001 00000000 0x0 0x0
0xffffdb000002bb80 0001 00000000 0x0 0x0
0xffffdb000002bc00 0001 00000000 0x0 0x0
0xffffdb000002bc80 0001 00000000 0x0 0x0
0xffffdb000002bd00 0001 00000000 0x0 0x0
0xffffdb000002bd80 0001 00000000 0x0 0x0
0xffffdb000002be00 0001 00000000 0x0 0x0
0xffffdb000002be80 0001 00000000 0x0 0x0
0xffffdb000002bf00 0001 00000000 0x0 0x0
0xffffdb000002bf80 0001 00000000 0x0 0x0
0xffffdb000002c000 0001 00000000 0x0 0x0
0xffffdb000002c080 0001 00000000 0x0 0x0
0xffffdb000002c100 0001 00000000 0x0 0x0
0xffffdb000002c180 0001 00000000 0x0 0x0
0xffffdb000002c200 0001 00000000 0x0 0x0
0xffffdb000002c280 0001 00000000 0x0 0x0
0xffffdb000002c300 0001 00000000 0x0 0x0
0xffffdb000002c380 0001 00000000 0x0 0x0
0xffffdb000002c400 0001 00000000 0x0 0x0
0xffffdb000002c480 0001 00000000 0x0 0x0
0xffffdb000002c500 0001 00000000 0x0 0x0
0xffffdb000002c580 0001 00000000 0x0 0x0
0xffffdb000002c600 0001 00000000 0x0 0x0
0xffffdb000002c680 0001 00000000 0x0 0x0
0xffffdb000002c700 0001 00000000 0x0 0x0
0xffffdb000002c780 0001 00000000 0x0 0x0
0xffffdb000002c800 0001 00000000 0x0 0x0
0xffffdb000002c880 0001 00000000 0x0 0x0
0xffffdb000002c900 0001 00000000 0x0 0x0
0xffffdb000002c980 0001 00000000 0x0 0x0
0xffffdb000002ca00 0001 00000000 0x0 0x0
0xffffdb000002ca80 0001 00000000 0x0 0x0
0xffffdb000002cb00 0001 00000000 0x0 0x0
0xffffdb000002cb80 0001 00000000 0x0 0x0
0xffffdb000002cc00 0001 00000000 0x0 0x0
0xffffdb000002cc80 0001 00000000 0x0 0x0
0xffffdb000002cd00 0001 00000000 0x0 0x0
0xffffdb000002cd80 0001 00000000 0x0 0x0
0xffffdb000002ce00 0001 00000000 0x0 0x0
0xffffdb000002ce80 0001 00000000 0x0

Tested on:

commit: d96d91ac Remove confusable comment.
git tree: https://github.com/NetBSD/src
console output: https://syzkaller.appspot.com/x/log.txt?x=173e59a8080000
kernel config: https://syzkaller.appspot.com/x/.config?x=739e57438eb9ed9e
dashboard link: https://syzkaller.appspot.com/bug?extid=b992757b1efc6ef0de63
compiler: Debian clang version 13.0.1-++20220126092033+75e33f71c2da-1~exp1~20220126212112.63
patch: https://syzkaller.appspot.com/x/patch.diff?x=1572299bf00000

syzbot

unread,

Jun 30, 2022, 9:39:14 AM6/30/22

to rias...@netbsd.org, syzkaller-...@googlegroups.com

Hello,

syzbot has tested the proposed patch but the reproducer is still triggering an issue:
MSan: Uninitialized Memory in uiomove

� syz-executor.1 ��b Y � �� syz-executor.1 ��b � � 8 � syz-executor.1 ��b � � 0 p�� syz-executor.1 ��b � � < � syz-executor.1 ��b A � � syz-executor.1 ��b , A � syz-executor.1 ��b I � �� syz-executor.1 ��b d � 8 � syz-executor.1 ��b � � 0 p�� syz-executor.1 ��b � � �� } � syz-executor.1 ��b � � < � syz-executor.1 ��b � � � syz-executor.4 ��b �] A � � syz-exec[ 63.4361821] panic: MSan: Uninitialized Pool Memory From kthread_create()

[ 63.4516395] cpu0: Begin traceback...
[ 63.4660559] vpanic() at netbsd:vpanic+0xc9d
[ 63.5160569] panic() at netbsd:panic+0x1b3 sys/kern/subr_prf.c:210
[ 63.5560562] __msan_warning() at netbsd:__msan_warning+0x11e kmsan_report_inline sys/kern/subr_msan.c:234 [inline]
[ 63.5560562] __msan_warning() at netbsd:__msan_warning+0x11e sys/kern/subr_msan.c:615
[ 63.6060534] uiomove() at netbsd:uiomove+0x498
[ 63.6560568] ttwrite() at netbsd:ttwrite+0x1559 sys/kern/tty.c:2205
[ 63.6960580] comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
[ 63.7460565] cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207
[ 63.7960573] spec_write() at netbsd:spec_write+0x561
[ 63.8460590] VOP_WRITE() at netbsd:VOP_WRITE+0x39b
[ 63.8960585] vn_write() at netbsd:vn_write+0x709
[ 63.9460581] ktrace_thread() at netbsd:ktrace_thread+0xeba ktrwrite sys/kern/kern_ktrace.c:1333 [inline]
[ 63.9460581] ktrace_thread() at netbsd:ktrace_thread+0xeba sys/kern/kern_ktrace.c:1402
[ 63.9663995] cpu0: End traceback...
[ 63.9663995] fatal breakpoint trap in supervisor mode
[ 63.9663995] trap type 1 code 0 rip 0xffffffff802228ad cs 0x8 rflags 0x286 cr2 0x7d15d9c2dfbb ilevel 0x5 rsp 0xffffac8087782fc0
[ 63.9874714] curlwp 0xffffac801354da40 pid 0.1383 lowest kstack 0xffffac808777c2c0
Stopped in pid 0.1383 (system) at netbsd:breakpoint+0x5: leave

ktrace_thread() at netbsd:ktrace_thread+0xeba ktrwrite sys/kern/kern_ktrace.c:1333 [inline]
ktrace_thread() at netbsd:ktrace_thread+0xeba sys/kern/kern_ktrace.c:1402

Panic string: MSan: Uninitialized Pool Memory From kthread_create()

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

1214 1214 2 1 0 ffffac8013482a00 syz-executor.0
1203 1203 2 0 0 ffffac80134825c0 syz-executor.1
1207 1207 2 0 0 ffffac8013482180 syz-executor.3
1200 1200 3 1 0 ffffac801345a9c0 syz-executor.0 ktrsync
1209 1209 3 1 0 ffffac801345a580 syz-executor.4 ktrsync
1208 1208 3 0 0 ffffac801345a140 syz-executor.3 ktrsync
323 323 3 0 0 ffffac8013355980 syz-executor.2 ktrsync
334 334 2 0 140 ffffac8013355540 syz-executor.1
1054 1054 2 1 0 ffffac8013355100 syz-executor.5
1381 329 3 0 180 ffffac8013337940 syz-execprog parked
1381 330 3 1 180 ffffac8013337500 syz-execprog parked
1381 1380 3 1 0 ffffac80133370c0 syz-execprog ktrsync
1381 1199 3 1 180 ffffac8012bb2900 syz-execprog parked
1381 1243 3 1 180 ffffac8012bb24c0 syz-execprog parked
1381 827 3 0 180 ffffac8012bb2080 syz-execprog parked
1381 1254 3 0 180 ffffac80122c86c0 syz-execprog parked
1381 1235 3 1 180 ffffac80122c8280 syz-execprog parked
1381 1237 2 1 140 ffffac8012506b80 syz-execprog
1381 1381 3 0 40180 ffffac8012b968c0 syz-execprog parked
1239 1239 3 1 180 ffffac801229aac0 sshd select
1069 1069 3 1 180 ffffac8012b96480 getty nanoslp
1074 1074 3 1 180 ffffac801229a680 getty nanoslp
1070 1070 3 0 180 ffffac801229a240 getty nanoslp
1259 1259 3 0 1c0 ffffac80121a9600 getty ttyraw
1067 1067 3 1 180 ffffac8012b96040 sshd select
949 949 3 1 180 ffffac8012ae5bc0 powerd kqueue
689 689 3 1 180 ffffac801242c700 syslogd kqueue
602 602 3 0 180 ffffac8012ae5780 dhcpcd poll
547 547 3 0 180 ffffac8012506300 dhcpcd poll
546 546 3 0 180 ffffac8012ae5340 dhcpcd poll
589 589 3 0 180 ffffac80122c8b00 dhcpcd poll
289 289 3 0 180 ffffac8012506740 dhcpcd poll
288 288 3 0 180 ffffac801242c2c0 dhcpcd poll
351 351 3 0 180 ffffac801242cb40 dhcpcd poll
1 1 3 0 180 ffffac8011e39940 init wait
0 >1210 7 1 240 ffffac801354d1c0 ktrace
0 >1383 7 0 240 ffffac801354da40 ktrace
0 968 3 0 200 ffffac80121a9a40 physiod physiod
0 194 3 0 200 ffffac80121b5a80 pooldrain pooldrain
0 193 2 1 240 ffffac80121b5640 ioflush
0 192 3 1 200 ffffac80121b5200 pgdaemon pgdaemon
0 169 3 1 200 ffffac80121a91c0 usb7 usbevt
0 167 3 1 200 ffffac80120f6a00 usb6 usbevt
0 165 3 1 200 ffffac80120f65c0 usb5 usbevt
0 164 3 1 200 ffffac80120f6180 usb4 usbevt
0 31 3 0 200 ffffac801205d9c0 usb3 usbevt
0 63 3 0 200 ffffac801205d580 usb2 usbevt
0 126 3 0 200 ffffac801205d140 usb1 usbevt
0 125 3 1 200 ffffac8011e4d980 usb0 usbevt
0 124 3 1 200 ffffac8011e4d540 usbtask-dr usbtsk
0 123 3 1 200 ffffac80118016c0 usbtask-hc usbtsk
0 122 3 0 200 ffffac8011e4d100 npfgc0 npfgcw
0 121 3 1 200 ffffac8011e39500 rt_free rt_free
0 120 3 1 200 ffffac8011e390c0 unpgc unpgc
0 119 2 1 200 ffffac8011e35900 key_timehandler
0 118 3 1 200 ffffac8011e354c0 icmp6_wqinput/1 icmp6_wqinput
0 117 3 0 200 ffffac8011e35080 icmp6_wqinput/0 icmp6_wqinput
0 116 2 1 200 ffffac8011cc48c0 nd6_timer
0 115 3 1 200 ffffac8011cc4480 carp6_wqinput/1 carp6_wqinput
0 114 3 0 200 ffffac8011cc4040 carp6_wqinput/0 carp6_wqinput
0 113 3 1 200 ffffac8011cc2b80 carp_wqinput/1 carp_wqinput
0 112 3 0 200 ffffac8011cc2740 carp_wqinput/0 carp_wqinput
0 111 3 1 200 ffffac8011cc2300 icmp_wqinput/1 icmp_wqinput
0 110 3 0 200 ffffac8011cc3340 icmp_wqinput/0 icmp_wqinput
0 109 3 0 200 ffffac8011cc3bc0 rt_timer rt_timer
0 108 3 0 200 ffffac8011cc3780 vmem_rehash vmem_rehash
0 99 3 1 200 ffffac8011804b40 entbutler entropy
0 98 3 1 200 ffffac8011804700 viomb balloon
0 97 3 1 200 ffffac80118042c0 vioif0_txrx/1 vioif0_txrx
0 96 3 0 200 ffffac8011801b00 vioif0_txrx/0 vioif0_txrx
0 29 3 0 200 ffffac8011801280 scsibus0 sccomp
0 28 3 0 200 ffffac80103afac0 pms0 pmsreset
0 27 3 1 200 ffffac80103af680 xcall/1 xcall
0 26 1 1 200 ffffac80103af240 softser/1
0 25 1 1 200 ffffac80103ada80 softclk/1
0 24 1 1 200 ffffac80103ad640 softbio/1
0 23 1 1 200 ffffac80103ad200 softnet/1
0 22 1 1 201 ffffac800f1f1a40 idle/1
0 21 3 0 200 ffffac800f1f1600 lnxsyswq lnxsyswq
0 20 3 0 200 ffffac800f1f11c0 lnxubdwq lnxubdwq
0 19 3 0 200 ffffac800f1f0a00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffffac800f1f05c0 lnxlngwq lnxlngwq
0 17 3 0 200 ffffac800f1f0180 lnxhipwq lnxhipwq
0 16 3 0 200 ffffac800f1eb9c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffffac800f1eb580 sysmon smtaskq
0 14 3 0 200 ffffac800f1eb140 pmfsuspend pmfsuspend
0 13 3 0 200 ffffac800f1e7980 pmfevent pmfevent
0 12 3 0 200 ffffac800f1e7540 sopendfree sopendfr
0 11 3 1 200 ffffac800f1e7100 iflnkst iflnkst
0 10 3 0 200 ffffac800f1dd940 nfssilly nfssilly
0 9 3 0 200 ffffac800f1dd500 vdrain vdrain
0 8 3 0 200 ffffac800f1dd0c0 modunload mod_unld
0 7 3 0 200 ffffac800ebda900 xcall/0 xcall
0 6 1 0 200 ffffac800ebda4c0 softser/0
0 5 1 0 200 ffffac800ebda080 softclk/0
0 4 1 0 200 ffffac800ebd88c0 softbio/0
0 3 1 0 200 ffffac800ebd8480 softnet/0
0 2 1 0 201 ffffac800ebd8040 idle/0
0 0 3 0 200 ffffffff86868940 swapper uvm
[Locks tracked through LWPs]

****** LWP 1214.1214 (syz-executor.0) @ 0xffffac8013482a00, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at pmap_ctor)
lock address : 0xffffac8012ba1fc0 type : sleep/adaptive
initialized : 0xffffffff818e13b0

shared holds : 0 exclusive: 0

shares wanted: 0 exclusive: 1
relevant cpu : 1 last held: 1
relevant lwp : 0xffffac8013482a00 last held: 000000000000000000
last locked : 0xffffffff818ee300 unlocked*: 0xffffffff818ee8fd
owner field : 0xffffac8013482a00 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

****** LWP 1203.1203 (syz-executor.1) @ 0xffffac80134825c0, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at pmap_ctor)
lock address : 0xffffac8012ba1e00 type : sleep/adaptive
initialized : 0xffffffff818e13b0

shared holds : 0 exclusive: 0

shares wanted: 0 exclusive: 1

relevant cpu : 0 last held: 0

relevant lwp : 0xffffac80134825c0 last held: 000000000000000000
last locked : 0xffffffff818ee300 unlocked*: 0xffffffff818ee8fd
owner field : 0xffffac80134825c0 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

****** LWP 1207.1207 (syz-executor.3) @ 0xffffac8013482180, l_stat=2

*** Locks held:

* Lock 0 (initialized at pmap_ctor)
lock address : 0xffffac8012ba1a80 type : sleep/adaptive
initialized : 0xffffffff818e13b0

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffac8013482180 last held: 0xffffac8013482180
last locked* : 0xffffffff818fbb7d unlocked : 0xffffffff81901ca9
owner field : 0xffffac8013482180 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 1054.1054 (syz-executor.5) @ 0xffffac8013355100, l_stat=2

*** Locks held:

* Lock 0 (initialized at uvmspace_fork)
lock address : 0xffffac80125022f8 type : sleep/adaptive
initialized : 0xffffffff84fa73b4

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 1 last held: 1
relevant lwp : 0xffffac8013355100 last held: 0xffffac8013355100
last locked* : 0xffffffff84f69a67 unlocked : 0xffffffff84f558fe
owner/count : 0xffffac8013355100 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at amap_ctor)
lock address : 0xffffac801333a240 type : sleep/adaptive
initialized : 0xffffffff84f0b7bf

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 1 last held: 1
relevant lwp : 0xffffac8013355100 last held: 0xffffac8013355100
last locked* : 0xffffffff84f1dc81 unlocked : 0xffffffff84f555da
owner/count : 0xffffac8013355100 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 547.547 (dhcpcd) @ 0xffffac8012506300, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb93

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffac8012506300 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 546.546 (dhcpcd) @ 0xffffac8012ae5340, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb93

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffac8012ae5340 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 288.288 (dhcpcd) @ 0xffffac801242c2c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb93

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffac801242c2c0 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 351.351 (dhcpcd) @ 0xffffac801242cb40, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb93

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffac801242cb40 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.1210 (ktrace) @ 0xffffac801354d1c0, l_stat=7

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin

initialized : 0xffffffff85064a34

shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 1 last held: 0

relevant lwp : 0xffffac801354d1c0 last held: 0xffffac801354da40
last locked* : 0xffffffff8530bfa4 unlocked : 0xffffffff8522cd9e

curcpu holds : 1 wanted by: 000000000000000000

****** LWP 0.11 (iflnkst) @ 0xffffac800f1e7100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb93

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffac800f1e7100 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffac800ebda080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb93

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffac800ebda080 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff86868940, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb93

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffffff86868940 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin

initialized : 0xffffffff85064a34

shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 0 last held: 0

relevant lwp : 0xffffac801354da40 last held: 0xffffac801354da40
last locked* : 0xffffffff8530bfa4 unlocked : 0xffffffff8522cd9e

curcpu holds : 1 wanted by: 000000000000000000

* Lock 1 (initialized at kprintf_init)
lock address : 0xffffffff868a9c00 type : spin

initialized : 0xffffffff8539cafc

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffac801354da40 last held: 0xffffac801354da40
last locked* : 0xffffffff8539d924 unlocked : 0xffffffff8539e32e

owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON

0xffffac8000017180 0041 00000000 0x0 0x0
0xffffac8000017200 0041 00000000 0x0 0x0
0xffffac8000017280 0041 00000000 0x0 0x0
0xffffac8000017300 0041 00000000 0x0 0x0
0xffffac8000017380 0041 00000000 0x0 0x0
0xffffac8000017400 0041 00000000 0x0 0x0
0xffffac8000017480 0041 00000000 0x0 0x0
0xffffac8000017500 0041 00000000 0x0 0x0
0xffffac8000017580 0041 00000000 0x0 0x0
0xffffac8000017600 0041 00000000 0x0 0x0
0xffffac8000017680 0041 00000000 0x0 0x0
0xffffac8000017700 0041 00000000 0x0 0x0
0xffffac8000017780 0041 00000000 0x0 0x0
0xffffac8000017800 0041 00000000 0x0 0x0
0xffffac8000017880 0041 00000000 0x0 0x0
0xffffac8000017900 0041 00000000 0x0 0x0
0xffffac8000017980 0041 00000000 0x0 0x0
0xffffac8000017a00 0041 00000000 0x0 0x0
0xffffac8000017a80 0041 00000000 0x0 0x0
0xffffac8000017b00 0041 00000000 0x0 0x0
0xffffac8000017b80 0041 00000000 0x0 0x0
0xffffac8000017c00 0041 00000000 0x0 0x0
0xffffac8000017c80 0041 00000000 0x0 0x0
0xffffac8000017d00 0041 00000000 0x0 0x0
0xffffac8000017d80 0041 00000000 0x0 0x0
0xffffac8000017e00 0041 00000000 0x0 0x0
0xffffac8000017e80 0041 00000000 0x0 0x0
0xffffac8000017f00 0041 00000000 0x0 0x0
0xffffac8000017f80 0041 00000000 0x0 0x0
0xffffac8000018000 0041 00000000 0x0 0x0
0xffffac8000018080 0041 00000000 0x0 0x0
0xffffac8000018100 0041 00000000 0x0 0x0
0xffffac8000018180 0041 00000000 0x0 0x0
0xffffac8000018200 0041 00000000 0x0 0x0
0xffffac8000018280 0041 00000000 0x0 0x0
0xffffac8000018300 0041 00000000 0x0 0x0
0xffffac8000018380 0041 00000000 0x0 0x0
0xffffac8000018400 0041 00000000 0x0 0x0
0xffffac8000018480 0041 00000000 0x0 0x0
0xffffac8000018500 0041 00000000 0x0 0x0
0xffffac8000018580 0041 00000000 0x0 0x0
0xffffac8000018600 0041 00000000 0x0 0x0
0xffffac8000018680 0041 00000000 0x0 0x0
0xffffac8000018700 0041 00000000 0x0 0x0
0xffffac8000018780 0041 00000000 0x0 0x0
0xffffac8000018800 0041 00000000 0x0 0x0
0xffffac8000018880 0041 00000000 0x0 0x0
0xffffac8000018900 0041 00000000 0x0 0x0
0xffffac8000018980 0041 00000000 0x0 0x0
0xffffac8000018a00 0041 00000000 0x0 0x0
0xffffac8000018a80 0041 00000000 0x0 0x0
0xffffac8000018b00 0041 00000000 0x0 0x0
0xffffac8000018b80 0041 00000000 0x0 0x0
0xffffac8000018c00 0041 00000000 0x0 0x0
0xffffac8000018c80 0041 00000000 0x0 0x0
0xffffac8000018d00 0041 00000000 0x0 0x0
0xffffac8000018d80 0041 00000000 0x0 0x0
0xffffac8000018e00 0041 00000000 0x0 0x0
0xffffac8000018e80 0041 00000000 0x0 0x0
0xffffac8000018f00 0041 00000000 0x0 0x0
0xffffac8000018f80 0041 00000000 0x0 0x0
0xffffac8000019000 0041 00000000 0x0 0x0
0xffffac8000019080 0041 00000000 0x0 0x0
0xffffac8000019100 0041 00000000 0x0 0x0
0xffffac8000019180 0041 00000000 0x0 0x0
0xffffac8000019200 0041 00000000 0x0 0x0
0xffffac8000019280 0041 00000000 0x0 0x0
0xffffac8000019300 0041 00000000 0x0 0x0
0xffffac8000019380 0041 00000000 0x0 0x0
0xffffac8000019400 0041 00000000 0x0 0x0
0xffffac8000019480 0041 00000000 0x0 0x0
0xffffac8000019500 0041 00000000 0x0 0x0
0xffffac8000019580 0041 00000000 0x0 0x0
0xffffac8000019600 0041 00000000 0x0 0x0
0xffffac8000019680 0041 00000000 0x0 0x0
0xffffac8000019700 0041 00000000 0x0 0x0
0xffffac8000019780 0041 00000000 0x0 0x0
0xffffac8000019800 0041 00000000 0x0 0x0
0xffffac8000019880 0041 00000000 0x0 0x0
0xffffac8000019900 0041 00000000 0x0 0x0
0xffffac8000019980 0041 00000000 0x0 0x0
0xffffac8000019a00 0041 00000000 0x0 0x0
0xffffac8000019a80 0041 00000000 0x0 0x0
0xffffac8000019b00 0041 00000000 0x0 0x0
0xffffac8000019b80 0041 00000000 0x0 0x0
0xffffac8000019c00 0041 00000000 0x0 0x0
0xffffac8000019c80 0041 00000000 0x0 0x0
0xffffac8000019d00 0041 00000000 0x0 0x0
0xffffac8000019d80 0041 00000000 0x0 0x0
0xffffac8000019e00 0041 00000000 0x0 0x0
0xffffac8000019e80 0041 00000000 0x0 0x0
0xffffac8000019f00 0041 00000000 0x0 0x0
0xffffac8000019f80 0041 00000000 0x0 0x0
0xffffac800001a000 0041 00000000 0x0 0x0
0xffffac800001a080 0041 00000000 0x0 0x0
0xffffac800001a100 0041 00000000 0x0 0x0
0xffffac800001a180 0041 00000000 0x0 0x0
0xffffac800001a200 0041 00000000 0x0 0x0
0xffffac800001a280 0041 00000000 0x0 0x0
0xffffac800001a300 0041 00000000 0x0 0x0
0xffffac800001a380 0041 00000000 0x0 0x0
0xffffac800001a400 0041 00000000 0x0 0x0
0xffffac800001a480 0041 00000000 0x0 0x0
0xffffac800001a500 0041 00000000 0x0 0x0
0xffffac800001a580 0041 00000000 0x0 0x0
0xffffac800001a600 0041 00000000 0x0 0x0
0xffffac800001a680 0041 00000000 0x0 0x0
0xffffac800001a700 0041 00000000 0x0 0x0
0xffffac800001a780 0041 00000000 0x0 0x0
0xffffac800001a800 0041 00000000 0x0 0x0
0xffffac800001a880 0041 00000000 0x0 0x0
0xffffac800001a900 0041 00000000 0x0 0x0
0xffffac800001a980 0041 00000000 0x0 0x0
0xffffac800001aa00 0041 00000000 0x0 0x0
0xffffac800001aa80 0041 00000000 0x0 0x0
0xffffac800001ab00 0041 00000000 0x0 0x0
0xffffac800001ab80 0041 00000000 0x0 0x0
0xffffac800001ac00 0041 00000000 0x0 0x0
0xffffac800001ac80 0041 00000000 0x0 0x0
0xffffac800001ad00 0041 00000000 0x0 0x0
0xffffac800001ad80 0041 00000000 0x0 0x0
0xffffac800001ae00 0041 00000000 0x0 0x0
0xffffac800001ae80 0041 00000000 0x0 0x0
0xffffac800001af00 0041 00000000 0x0 0x0
0xffffac800001af80 0041 00000000 0x0 0x0
0xffffac800001b000 0041 00000000 0x0 0x0
0xffffac800001b080 0041 00000000 0x0 0x0
0xffffac800001b100 0041 00000000 0x0 0x0
0xffffac800001b180 0041 00000000 0x0 0x0
0xffffac800001b200 0041 00000000 0x0 0x0
0xffffac800001b280 0041 00000000 0x0 0x0
0xffffac800001b300 0041 00000000 0x0 0x0
0xffffac800001b380 0041 00000000 0x0 0x0
0xffffac800001b400 0041 00000000 0x0 0x0
0xffffac800001b480 0041 00000000 0x0 0x0
0xffffac800001b500 0041 00000000 0x0 0x0
0xffffac800001b580 0041 00000000 0x0 0x0
0xffffac800001b600 0041 00000000 0x0 0x0
0xffffac800001b680 0041 00000000 0x0 0x0
0xffffac800001b700 0041 00000000 0x0 0x0
0xffffac800001b780 0041 00000000 0x0 0x0
0xffffac800001b800 0041 00000000 0x0 0x0
0xffffac800001b880 0041 00000000 0x0 0x0
0xffffac800001b900 0041 00000000 0x0 0x0
0xffffac800001b980 0041 00000000 0x0 0x0
0xffffac800001ba00 0041 00000000 0x0 0x0
0xffffac800001ba80 0041 00000000 0x0 0x0
0xffffac800001bb00 0041 00000000 0x0 0x0
0xffffac800001bb80 0041 00000000 0x0 0x0
0xffffac800001bc00 0041 00000000 0x0 0x0
0xffffac800001bc80 0041 00000000 0x0 0x0
0xffffac800001bd00 0041 00000000 0x0 0x0
0xffffac800001bd80 0041 00000000 0x0 0x0
0xffffac800001be00 0041 00000000 0x0 0x0
0xffffac800001be80 0041 00000000 0x0 0x0
0xffffac800001bf00 0041 00000000 0x0 0x0
0xffffac800001bf80 0041 00000000 0x0 0x0
0xffffac800001c000 0041 00000000 0x0 0x0
0xffffac800001c080 0041 00000000 0x0 0x0
0xffffac800001c100 0041 00000000 0x0 0x0
0xffffac800001c180 0041 00000000 0x0 0x0
0xffffac800001c200 0041 00000000 0x0 0x0
0xffffac800001c280 0041 00000000 0x0 0x0
0xffffac800001c300 0041 00000000 0x0 0x0
0xffffac800001c380 0041 00000000 0x0 0x0
0xffffac800001c400 0041 00000000 0x0 0x0
0xffffac800001c480 0041 00000000 0x0 0x0
0xffffac800001c500 0041 00000000 0x0 0x0
0xffffac800001c580 0041 00000000 0x0 0x0
0xffffac800001c600 0041 00000000 0x0 0x0
0xffffac800001c680 0041 00000000 0x0 0x0
0xffffac800001c700 0041 00000000 0x0 0x0
0xffffac800001c780 0001 00000000 0x0 0x0
0xffffac800001c800 0001 00000000 0x0 0x0
0xffffac800001c880 0001 00000000 0x0 0x0
0xffffac800001c900 0001 00000000 0x0 0x0
0xffffac800001c980 0001 00000000 0x0 0x0
0xffffac800001ca00 0001 00000000 0x0 0x0
0xffffac800001ca80 0001 00000000 0x0 0x0
0xffffac800001cb00 0001 00000000 0x0 0x0
0xffffac800001cb80 0001 00000000 0x0 0x0
0xffffac800001cc00 0001 00000000 0x0 0x0
0xffffac800001cc80 0001 00000000 0x0 0x0
0xffffac800001cd00 0001 00000000 0x0 0x0
0xffffac800001cd80 0001 00000000 0x0 0x0
0xffffac800001ce00 0001 00000000 0x0 0x0
0xffffac800001ce80 0001 00000000 0x0 0x0
0xffffac800001cf00 0001 00000000 0x0 0x0
0xffffac800001cf80 0001 00000000 0x0 0x0
0xffffac800001d000 0001 00000000 0x0 0x0
0xffffac800001d080 0001 00000000 0x0 0x0
0xffffac800001d100 0001 00000000 0x0 0x0
0xffffac800001d180 0001 00000000 0x0 0x0
0xffffac800001d200 0001 00000000 0x0 0x0
0xffffac800001d280 0001 00000000 0x0 0x0
0xffffac800001d300 0001 00000000 0x0 0x0
0xffffac800001d380 0001 00000000 0x0 0x0
0xffffac800001d400 0001 00000000 0x0 0x0
0xffffac800001d480 0001 00000000 0x0 0x0
0xffffac800001d500 0001 00000000 0x0 0x0
0xffffac800001d580 0001 00000000 0x0 0x0
0xffffac800001d600 0001 00000000 0x0 0x0
0xffffac800001d680 0001 00000000 0x0 0x0
0xffffac800001d700 0001 00000000 0x0 0x0
0xffffac800001d780 0001 00000000 0x0 0x0
0xffffac800001d800 0001 00000000 0x0 0x0
0xffffac800001d880 0001 00000000 0x0 0x0
0xffffac800001d900 0001 00000000 0x0 0x0
0xffffac800001d980 0001 00000000 0x0 0x0
0xffffac800001da00 0001 00000000 0x0 0x0
0xffffac800001da80 0001 00000000 0x0 0x0
0xffffac800001db00 0001 00000000 0x0 0x0
0xffffac800001db80 0001 00000000 0x0 0x0
0xffffac800001dc00 0001 00000000 0x0 0x0
0xffffac800001dc80 0001 00000000 0x0 0x0
0xffffac800001dd00 0001 00000000 0x0 0x0
0xffffac800001dd80 0001 00000000 0x0 0x0
0xffffac800001de00 0001 00000000 0x0 0x0
0xffffac800001de80 0001 00000000 0x0 0x0
0xffffac800001df00 0001 00000000 0x0 0x0
0xffffac800001df80 0001 00000000 0x0 0x0
0xffffac800001e000 0001 00000000 0x0 0x0
0xffffac800001e080 0001 00000000 0x0 0x0
0xffffac800001e100 0001 00000000 0x0 0x0
0xffffac800001e180 0001 00000000 0x0 0x0
0xffffac800001e200 0001 00000000 0x0 0x0
0xffffac800001e280 0001 00000000 0x0 0x0
0xffffac800001e300 0001 00000000 0x0 0x0
0xffffac800001e380 0001 00000000 0x0 0x0
0xffffac800001e400 0001 00000000 0x0 0x0
0xffffac800001e480 0001 00000000 0x0 0x0
0xffffac800001e500 0001 00000000 0x0 0x0
0xffffac800001e580 0001 00000000 0x0 0x0
0xffffac800001e600 0001 00000000 0x0 0x0
0xffffac800001e680 0001 00000000 0x0 0x0
0xffffac800001e700 0001 00000000 0x0 0x0
0xffffac800001e780 0001 00000000 0x0 0x0
0xffffac800001e800 0001 00000000 0x0 0x0
0xffffac800001e880 0001 00000000 0x0 0x0
0xffffac800001e900 0001 00000000 0x0 0x0
0xffffac800001e980 0001 00000000 0x0 0x0
0xffffac800001ea00 0001 00000000 0x0 0x0
0xffffac800001ea80 0001 00000000 0x0 0x0
0xffffac800001eb00 0001 00000000 0x0 0x0
0xffffac800001eb80 0001 00000000 0x0 0x0
0xffffac800001ec00 0001 00000000 0x0 0x0
0xffffac800001ec80 0001 00000000 0x0 0x0
0xffffac800001ed00 0001 00000000 0x0 0x0
0xffffac800001ed80 0001 00000000 0x0 0x0
0xffffac800001ee00 0001 00000000 0x0 0x0
0xffffac800001ee80 0001 00000000 0x0 0x0
0xffffac800001ef00 0001 00000000 0x0 0x0
0xffffac800001ef80 0001 00000000 0x0 0x0
0xffffac800001f000 0001 00000000 0x0 0x0
0xffffac800001f080 0001 00000000 0x0 0x0
0xffffac800001f100 0001 00000000 0x0 0x0
0xffffac800001f180 0001 00000000 0x0 0x0
0xffffac800001f200 0001 00000000 0x0 0x0
0xffffac800001f280 0001 00000000 0x0 0x0
0xffffac800001f300 0001 00000000 0x0 0x0
0xffffac800001f380 0001 00000000 0x0 0x0
0xffffac800001f400 0001 00000000 0x0 0x0
0xffffac800001f480 0001 00000000 0x0 0x0
0xffffac800001f500 0001 00000000 0x0 0x0
0xffffac800001f580 0001 00000000 0x0 0x0
0xffffac800001f600 0001 00000000 0x0 0x0
0xffffac800001f680 0001 00000000 0x0 0x0
0xffffac800001f700 0001 00000000 0x0 0x0
0xffffac800001f780 0001 00000000 0x0 0x0
0xffffac800001f800 0001 00000000 0x0 0x0
0xffffac800001f880 0001 00000000 0x0 0x0
0xffffac800001f900 0001 00000000 0x0 0x0
0xffffac800001f980 0001 00000000 0x0 0x0
0xffffac800001fa00 0001 00000000 0x0 0x0
0xffffac800001fa80 0001 00000000 0x0 0x0
0xffffac800001fb00 0001 00000000 0x0 0x0
0xffffac800001fb80 0001 00000000 0x0 0x0
0xffffac800001fc00 0001 00000000 0x0 0x0
0xffffac800001fc80 0001 00000000 0x0 0x0
0xffffac800001fd00 0001 00000000 0x0 0x0
0xffffac800001fd80 0001 00000000 0x0 0x0
0xffffac800001fe00 0001 00000000 0x0 0x0
0xffffac800001fe80 0001 00000000 0x0 0x0
0xffffac800001ff00 0001 00000000 0x0 0x0
0xffffac800001ff80 0001 00000000 0x0 0x0
0xffffac8000020000 0001 00000000 0x0 0x0
0xffffac8000020080 0001 00000000 0x0 0x0
0xffffac8000020100 0001 00000000 0x0 0x0
0xffffac8000020180 0001 00000000 0x0 0x0
0xffffac8000020200 0001 00000000 0x0 0x0
0xffffac8000020280 0001 00000000 0x0 0x0
0xffffac8000020300 0001 00000000 0x0 0x0
0xffffac8000020380 0001 00000000 0x0 0x0
0xffffac8000020400 0001 00000000 0x0 0x0
0xffffac8000020480 0001 00000000 0x0 0x0
0xffffac8000020500 0001 00000000 0x0 0x0
0xffffac8000020580 0001 00000000 0x0 0x0
0xffffac8000020600 0001 00000000 0x0 0x0
0xffffac8000020680 0001 00000000 0x0 0x0
0xffffac8000020700 0001 00000000 0x0 0x0
0xffffac8000020780 0001 00000000 0x0 0x0
0xffffac8000020800 0001 00000000 0x0 0x0
0xffffac8000020880 0001 00000000 0x0 0x0
0xffffac8000020900 0001 00000000 0x0 0x0
0xffffac8000020980 0001 00000000 0x0 0x0
0xffffac8000020a00 0001 00000000 0x0 0x0
0xffffac8000020a80 0001 00000000 0x0 0x0
0xffffac8000020b00 0001 00000000 0x0 0x0
0xffffac8000020b80 0001 00000000 0x0 0x0
0xffffac8000020c00 0001 00000000 0x0 0x0
0xffffac8000020c80 0001 00000000 0x0 0x0
0xffffac8000020d00 0001 00000000 0x0 0x0
0xffffac8000020d80 0001 00000000 0x0 0x0
0xffffac8000020e00 0001 00000000 0x0 0x0
0xffffac8000020e80 0001 00000000 0x0 0x0
0xffffac8000020f00 0001 00000000 0x0 0x0
0xffffac8000020f80 0001 00000000 0x0 0x0
0xffffac8000021000 0001 00000000 0x0 0x0
0xffffac8000021080 0001 00000000 0x0 0x0
0xffffac8000021100 0001 00000000 0x0 0x0
0xffffac8000021180 0001 00000000 0x0 0x0
0xffffac8000021200 0001 00000000 0x0 0x0
0xffffac8000021280 0001 00000000 0x0 0x0
0xffffac8000021300 0001 00000000 0x0 0x0
0xffffac8000021380 0001 00000000 0x0 0x0
0xffffac8000021400 0001 00000000 0x0 0x0
0xffffac8000021480 0001 00000000 0x0 0x0
0xffffac8000021500 0001 00000000 0x0 0x0
0xffffac8000021580 0001 00000000 0x0 0x0
0xffffac8000021600 0001 00000000 0x0 0x0
0xffffac8000021680 0001 00000000 0x0 0x0
0xffffac8000021700 0001 00000000 0x0 0x0
0xffffac8000021780 0001 00000000 0x0 0x0
0xffffac8000021800 0001 00000000 0x0 0x0
0xffffac8000021880 0001 00000000 0x0 0x0
0xffffac8000021900 0001 00000000 0x0 0x0
0xffffac8000021980 0001 00000000 0x0 0x0
0xffffac8000021a00 0001 00000000 0x0 0x0
0xffffac8000021a80 0001 00000000 0x0 0x0
0xffffac8000021b00 0001 00000000 0x0 0x0
0xffffac8000021b80 0001 00000000 0x0 0x0
0xffffac8000021c00 0001 00000000 0x0 0x0
0xffffac8000021c80 0001 00000000 0x0 0x0
0xffffac8000021d00 0001 00000000 0x0 0x0
0xffffac8000021d80 0001 00000000 0x0 0x0
0xffffac8000021e00 0001 00000000 0x0 0x0
0xffffac8000021e80 0001 00000000 0x0 0x0
0xffffac8000021f00 0001 00000000 0x0 0x0
0xffffac8000021f80 0001 00000000 0x0 0x0
0xffffac8000022000 0001 00000000 0x0 0x0
0xffffac8000022080 0001 00000000 0x0 0x0
0xffffac8000022100 0001 00000000 0x0 0x0
0xffffac8000022180 0001 00000000 0x0 0x0
0xffffac8000022200 0001 00000000 0x0 0x0
0xffffac8000022280 0001 00000000 0x0 0x0
0xffffac8000022300 0001 00000000 0x0 0x0
0xffffac8000022380 0001 00000000 0x0 0x0
0xffffac8000022400 0001 00000000 0x0 0x0
0xffffac8000022480 0001 00000000 0x0 0x0
0xffffac8000022500 0001 00000000 0x0 0x0
0xffffac8000022580 0001 00000000 0x0 0x0
0xffffac8000022600 0001 00000000 0x0 0x0
0xffffac8000022680 0001 00000000 0x0 0x0
0xffffac8000022700 0001 00000000 0x0 0x0
0xffffac8000022780 0001 00000000 0x0 0x0
0xffffac8000022800 0001 00000000 0x0 0x0
0xffffac8000022880 0001 00000000 0x0 0x0
0xffffac8000022900 0001 00000000 0x0 0x0
0xffffac8000022980 0001 00000000 0x0 0x0
0xffffac8000022a00 0001 00000000 0x0 0x0
0xffffac8000022a80 0001 00000000 0x0 0x0
0xffffac8000022b00 0001 00000000 0x0 0x0
0xffffac8000022b80 0001 00000000 0x0 0x0
0xffffac8000022c00 0001 00000000 0x0 0x0
0xffffac8000022c80 0001 00000000 0x0 0x0
0xffffac8000022d00 0001 00000000 0x0 0x0
0xffffac8000022d80 0001 00000000 0x0 0x0
0xffffac8000022e00 0001 00000000 0x0 0x0
0xffffac8000022e80 0001 00000000 0x0 0x0
0xffffac8000022f00 0001 00000000 0x0 0x0
0xffffac8000022f80 0001 00000000 0x0 0x0
0xffffac8000023000 0001 00000000 0x0 0x0
0xffffac8000023080 0001 00000000 0x0 0x0
0xffffac8000023100 0001 00000000 0x0 0x0
0xffffac8000023180 0001 00000000 0x0 0x0
0xffffac8000023200 0001 00000000 0x0 0x0
0xffffac8000023280 0001 00000000 0x0 0x0
0xffffac8000023300 0001 00000000 0x0 0x0
0xffffac8000023380 0001 00000000 0x0 0x0
0xffffac8000023400 0001 00000000 0x0 0x0
0xffffac8000023480 0001 00000000 0x0 0x0
0xffffac8000023500 0001 00000000 0x0 0x0
0xffffac8000023580 0001 00000000 0x0 0x0
0xffffac8000023600 0001 00000000 0x0 0x0
0xffffac8000023680 0001 00000000 0x0 0x0
0xffffac8000023700 0001 00000000 0x0 0x0
0xffffac8000023780 0001 00000000 0x0 0x0
0xffffac8000023800 0001 00000000 0x0 0x0
0xffffac8000023880 0001 00000000 0x0 0x0
0xffffac8000023900 0001 00000000 0x0 0x0
0xffffac8000023980 0001 00000000 0x0 0x0
0xffffac8000023a00 0001 00000000 0x0 0x0
0xffffac8000023a80 0001 00000000 0x0 0x0
0xffffac8000023b00 0001 00000000 0x0 0x0
0xffffac8000023b80 0001 00000000 0x0 0x0
0xffffac8000023c00 0001 00000000 0x0 0x0
0xffffac8000023c80 0001 00000000 0x0 0x0
0xffffac8000023d00 0001 00000000 0x0 0x0
0xffffac8000023d80 0001 00000000 0x0 0x0
0xffffac8000023e00 0001 00000000 0x0 0x0
0xffffac8000023e80 0001 00000000 0x0 0x0
0xffffac8000023f00 0001 00000000 0x0 0x0
0xffffac8000023f80 0001 00000000 0x0 0x0
0xffffac8000024000 0001 00000000 0x0 0x0
0xffffac8000024080 0001 00000000 0x0 0x0
0xffffac8000024100 0001 00000000 0x0 0x0
0xffffac8000024180 0001 00000000 0x0 0x0
0xffffac8000024200 0001 00000000 0x0 0x0
0xffffac8000024280 0001 00000000 0x0 0x0
0xffffac8000024300 0001 00000000 0x0 0x0
0xffffac8000024380 0001 00000000 0x0 0x0
0xffffac8000024400 0001 00000000 0x0 0x0
0xffffac8000024480 0001 00000000 0x0 0x0
0xffffac8000024500 0001 00000000 0x0 0x0
0xffffac8000024580 0001 00000000 0x0 0x0
0xffffac8000024600 0001 00000000 0x0 0x0
0xffffac8000024680 0001 00000000 0x0 0x0
0xffffac8000024700 0001 00000000 0x0 0x0
0xffffac8000024780 0001 00000000 0x0 0x0
0xffffac8000024800 0001 00000000 0x0 0x0
0xffffac8000024880 0001 00000000 0x0 0x0
0xffffac8000024900 0001 00000000 0x0 0x0
0xffffac8000024980 0001 00000000 0x0 0x0

0xffffac8000024a00 0001 00000000 0x0 0x0

0xffffac8000024a80 0001 00000000 0x0 0x0

0xffffac8000024b00 0001 00000000 0x0 0x0

0xffffac8000024b80 0001 00000000 0x0 0x0

0xffffac8000024c00 0001 00000000 0x0 0x0

0xffffac8000024c80 0001 00000000 0x0 0x0

0xffffac8000024d00 0001 00000000 0x0 0x0

0xffffac8000024d80 0001 00000000 0x0 0x0

0xffffac8000024e00 0001 00000000 0x0 0x0

0xffffac8000024e80 0001 00000000 0x0 0x0

0xffffac8000024f00 0001 00000000 0x0 0x0

0xffffac8000024f80 0001 00000000 0x0 0x0
0xffffac8000025000 0001 00000000 0x0 0x0
0xffffac8000025080 0001 00000000 0x0 0x0
0xffffac8000025100 0001 00000000 0x0 0x0
0xffffac8000025180 0001 00000000 0x0 0x0
0xffffac8000025200 0001 00000000 0x0 0x0
0xffffac8000025280 0001 00000000 0x0 0x0
0xffffac8000025300 0001 00000000 0x0 0x0
0xffffac8000025380 0001 00000000 0x0 0x0
0xffffac8000025400 0001 00000000 0x0 0x0
0xffffac8000025480 0001 00000000 0x0 0x0
0xffffac8000025500 0001 00000000 0x0 0x0
0xffffac8000025580 0001 00000000 0x0 0x0
0xffffac8000025600 0001 00000000 0x0 0x0
0xffffac8000025680 0001 00000000 0x0 0x0
0xffffac8000025700 0001 00000000 0x0 0x0
0xffffac8000025780 0001 00000000 0x0 0x0
0xffffac8000025800 0001 00000000 0x0 0x0
0xffffac8000025880 0001 00000000 0x0 0x0
0xffffac8000025900 0001 00000000 0x0 0x0
0xffffac8000025980 0001 00000000 0x0 0x0

0xffffac8000025a00 0001 00000000 0x0 0x0

0xffffac8000025a80 0001 00000000 0x0 0x0

0xffffac8000025b00 0001 00000000 0x0 0x0

0xffffac8000025b80 0001 00000000 0x0 0x0

0xffffac8000025c00 0001 00000000 0x0 0x0

0xffffac8000025c80 0001 00000000 0x0 0x0

0xffffac8000025d00 0001 00000000 0x0 0x0

0xffffac8000025d80 0001 00000000 0x0 0x0

0xffffac8000025e00 0001 00000000 0x0 0x0

0xffffac8000025e80 0001 00000000 0x0 0x0

0xffffac8000025f00 0001 00000000 0x0 0x0

0xffffac8000025f80 0001 00000000 0x0 0x0
0xffffac8000026000 0001 00000000 0x0 0x0
0xffffac8000026080 0001 00000000 0x0 0x0
0xffffac8000026100 0001 00000000 0x0 0x0
0xffffac8000026180 0001 00000000 0x0 0x0
0xffffac8000026200 0001 00000000 0x0 0x0
0xffffac8000026280 0001 00000000 0x0 0x0
0xffffac8000026300 0001 00000000 0x0 0x0
0xffffac8000026380 0001 00000000 0x0 0x0
0xffffac8000026400 0001 00000000 0x0 0x0
0xffffac8000026480 0001 00000000 0x0 0x0
0xffffac8000026500 0001 00000000 0x0 0x0
0xffffac8000026580 0001 00000000 0x0 0x0
0xffffac8000026600 0001 00000000 0x0 0x0
0xffffac8000026680 0001 00000000 0x0 0x0
0xffffac8000026700 0001 00000000 0x0 0x0
0xffffac8000026780 0001 00000000 0x0 0x0
0xffffac8000026800 0001 00000000 0x0 0x0
0xffffac8000026880 0001 00000000 0x0 0x0
0xffffac8000026900 0001 00000000 0x0 0x0
0xffffac8000026980 0001 00000000 0x0 0x0

0xffffac8000026a00 0001 00000000 0x0 0x0

0xffffac8000026a80 0001 00000000 0x0 0x0

0xffffac8000026b00 0001 00000000 0x0 0x0

0xffffac8000026b80 0001 00000000 0x0 0x0

0xffffac8000026c00 0001 00000000 0x0 0x0

0xffffac8000026c80 0001 00000000 0x0 0x0

0xffffac8000026d00 0001 00000000 0x0 0x0

0xffffac8000026d80 0001 00000000 0x0 0x0

0xffffac8000026e00 0001 00000000 0x0 0x0

0xffffac8000026e80 0001 00000000 0x0 0x0

0xffffac8000026f00 0001 00000000 0x0 0x0

0xffffac8000026f80 0001 00000000 0x0 0x0
0xffffac8000027000 0001 00000000 0x0 0x0
0xffffac8000027080 0001 00000000 0x0 0x0
0xffffac8000027100 0001 00000000 0x0 0x0
0xffffac8000027180 0001 00000000 0x0 0x0
0xffffac8000027200 0001 00000000 0x0 0x0
0xffffac8000027280 0001 00000000 0x0 0x0
0xffffac8000027300 0001 00000000 0x0 0x0
0xffffac8000027380 0001 00000000 0x0 0x0
0xffffac8000027400 0001 00000000 0x0 0x0
0xffffac8000027480 0001 00000000 0x0 0x0
0xffffac8000027500 0001 00000000 0x0 0x0
0xffffac8000027580 0001 00000000 0x0 0x0
0xffffac8000027600 0001 00000000 0x0 0x0
0xffffac8000027680 0001 00000000 0x0 0x0
0xffffac8000027700 0001 00000000 0x0 0x0
0xffffac8000027780 0001 00000000 0x0 0x0
0xffffac8000027800 0001 00000000 0x0 0x0
0xffffac8000027880 0001 00000000 0x0 0x0
0xffffac8000027900 0001 00000000 0x0 0x0
0xffffac8000027980 0001 00000000 0x0 0x0

0xffffac8000027a00 0001 00000000 0x0 0x0

0xffffac8000027a80 0001 00000000 0x0 0x0

0xffffac8000027b00 0001 00000000 0x0 0x0

0xffffac8000027b80 0001 00000000 0x0 0x0

0xffffac8000027c00 0001 00000000 0x0 0x0

0xffffac8000027c80 0001 00000000 0x0 0x0

0xffffac8000027d00 0001 00000000 0x0 0x0

0xffffac8000027d80 0001 00000000 0x0 0x0

0xffffac8000027e00 0001 00000000 0x0 0x0

0xffffac8000027e80 0001 00000000 0x0 0x0

0xffffac8000027f00 0001 00000000 0x0 0x0

0xffffac8000027f80 0001 00000000 0x0 0x0
0xffffac8000028000 0001 00000000 0x0 0x0
0xffffac8000028080 0001 00000000 0x0 0x0
0xffffac8000028100 0001 00000000 0x0 0x0
0xffffac8000028180 0001 00000000 0x0 0x0
0xffffac8000028200 0001 00000000 0x0 0x0
0xffffac8000028280 0001 00000000 0x0 0x0
0xffffac8000028300 0001 00000000 0x0 0x0
0xffffac8000028380 0001 00000000 0x0 0x0
0xffffac8000028400 0001 00000000 0x0 0x0
0xffffac8000028480 0001 00000000 0x0 0x0
0xffffac8000028500 0001 00000000 0x0 0x0
0xffffac8000028580 0001 00000000 0x0 0x0
0xffffac8000028600 0001 00000000 0x0 0x0
0xffffac8000028680 0001 00000000 0x0 0x0
0xffffac8000028700 0001 00000000 0x0 0x0
0xffffac8000028780 0001 00000000 0x0 0x0
0xffffac8000028800 0001 00000000 0x0 0x0
0xffffac8000028880 0001 00000000 0x0 0x0
0xffffac8000028900 0001 00000000 0x0 0x0
0xffffac8000028980 0001 00000000 0x0 0x0
0xffffac8000028a00 0001 00000000 0x0 0x0
0xffffac8000028a80 0001 00000000 0x0 0x0
0xffffac8000028b00 0001 00000000 0x0 0x0
0xffffac8000028b80 0001 00000000 0x0 0x0
0xffffac8000028c00 0001 00000000 0x0 0x0
0xffffac8000028c80 0001 00000000 0x0 0x0
0xffffac8000028d00 0001 00000000 0x0 0x0
0xffffac8000028d80 0001 00000000 0x0 0x0
0xffffac8000028e00 0001 00000000 0x0 0x0
0xffffac8000028e80 0001 00000000 0x0 0x0
0xffffac8000028f00 0001 00000000 0x0 0x0
0xffffac8000028f80 0001 00000000 0x0 0x0
0xffffac8000029000 0001 00000000 0x0 0x0
0xffffac8000029080 0001 00000000 0x0 0x0
0xffffac8000029100 0001 00000000 0x0 0x0
0xffffac8000029180 0001 00000000 0x0 0x0
0xffffac8000029200 0001 00000000 0x0 0x0
0xffffac8000029280 0001 00000000 0x0 0x0
0xffffac8000029300 0001 00000000 0x0 0x0
0xffffac8000029380 0001 00000000 0x0 0x0
0xffffac8000029400 0001 00000000 0x0 0x0
0xffffac8000029480 0001 00000000 0x0 0x0
0xffffac8000029500 0001 00000000 0x0 0x0
0xffffac8000029580 0001 00000000 0x0 0x0
0xffffac8000029600 0001 00000000 0x0 0x0
0xffffac8000029680 0001 00000000 0x0 0x0
0xffffac8000029700 0001 00000000 0x0 0x0
0xffffac8000029780 0001 00000000 0x0 0x0
0xffffac8000029800 0001 00000000 0x0 0x0
0xffffac8000029880 0001 00000000 0x0 0x0
0xffffac8000029900 0001 00000000 0x0 0x0
0xffffac8000029980 0001 00000000 0x0 0x0
0xffffac8000029a00 0001 00000000 0x0 0x0
0xffffac8000029a80 0001 00000000 0x0 0x0
0xffffac8000029b00 0001 00000000 0x0 0x0
0xffffac8000029b80 0001 00000000 0x0 0x0
0xffffac8000029c00 0001 00000000 0x0 0x0
0xffffac8000029c80 0001 00000000 0x0 0x0
0xffffac8000029d00 0001 00000000 0x0 0x0
0xffffac8000029d80 0001 00000000 0x0 0x0
0xffffac8000029e00 0001 00000000 0x0 0x0
0xffffac8000029e80 0001 00000000 0x0 0x0
0xffffac8000029f00 0001 00000000 0x0 0x0
0xffffac8000029f80 0001 00000000 0x0 0x0
0xffffac800002a000 0001 00000000 0x0 0x0
0xffffac800002a080 0001 00000000 0x0 0x0
0xffffac800002a100 0001 00000000 0x0 0x0
0xffffac800002a180 0001 00000000 0x0 0x0
0xffffac800002a200 0001 00000000 0x0 0x0
0xffffac800002a280 0001 00000000 0x0 0x0
0xffffac800002a300 0001 00000000 0x0 0x0
0xffffac800002a380 0001 00000000 0x0 0x0
0xffffac800002a400 0001 00000000 0x0 0x0
0xffffac800002a480 0001 00000000 0x0 0x0
0xffffac800002a500 0001 00000000 0x0 0x0
0xffffac800002a580 0001 00000000 0x0 0x0
0xffffac800002a600 0001 00000000 0x0 0x0
0xffffac800002a680 0001 00000000 0x0 0x0
0xffffac800002a700 0001 00000000 0x0 0x0
0xffffac800002a780 0001 00000000 0x0 0x0
0xffffac800002a800 0001 00000000 0x0 0x0
0xffffac800002a880 0001 00000000 0x0 0x0
0xffffac800002a900 0001 00000000 0x0 0x0
0xffffac800002a980 0001 00000000 0x0 0x0
0xffffac800002aa00 0001 00000000 0x0 0x0
0xffffac800002aa80 0001 00000000 0x0 0x0
0xffffac800002ab00 0001 00000000 0x0 0x0
0xffffac800002ab80 0001 00000000 0x0 0x0
0xffffac800002ac00 0001 00000000 0x0 0x0
0xffffac800002ac80 0001 00000000 0x0 0x0
0xffffac800002ad00 0001 00000000 0x0 0x0
0xffffac800002ad80 0001 00000000 0x0 0x0
0xffffac800002ae00 0001 00000000 0x0 0x0
0xffffac800002ae80 0001 00000000 0x0 0x0
0xffffac800002af00 0001 00000000 0x0 0x0
0xffffac800002af80 0001 000

Tested on:

commit: ad110610 Fix rump build failure after sleepq.h:r1.35.
git tree: https://github.com/NetBSD/src trunk
console output: https://syzkaller.appspot.com/x/log.txt?x=143d8b17f00000

kernel config: https://syzkaller.appspot.com/x/.config?x=739e57438eb9ed9e
dashboard link: https://syzkaller.appspot.com/bug?extid=b992757b1efc6ef0de63
compiler: Debian clang version 13.0.1-++20220126092033+75e33f71c2da-1~exp1~20220126212112.63

patch: https://syzkaller.appspot.com/x/patch.diff?x=1726194c080000

syzbot

unread,

Jun 30, 2022, 12:33:17 PM6/30/22

to rias...@netbsd.org, syzkaller-...@googlegroups.com

Hello,

syzbot has tested the proposed patch but the reproducer is still triggering an issue:
MSan: Uninitialized Memory in uiomove

� syz-executor.3 нb �� A � � syz-executor.3 нb �� A � syz-executor.3 нb ݗ � ��X� � syz-executor.3 нb �� 8 � syz-executor.3 нb (� � 0 �X� � syz-executor.3 нb Q� � < � syz-executor.3 нb o� A � � syz-executor.3 нb �� A � syz-executor.3 нb �� t � syz-executor.3 нb �� X� � syz-executor.3 нb �� syz-executor.3 нb Θ � 8 � syz-executor.3 � syz-executor.2 нb �� ">�q @ � syz-exec � syz-executor.2 нb � � syz-executor.2 нb n� � syz-executor.1 нb �� ?s� � syz-executor.1 нb *� /usr/lib/libm.so.0 � syz-executor.2 нb �� syz-executor.1 нb �� syz-executor.1 нb � � �>s� � syz-executor.1 нb E� � � syz-executor.2 нb N� /usr/lib/libpthread.s[o.1 @ � 62.0606393] panic: MSan: Uninitialized Pool Memory From ktrace_common()

[ 62.0705597] cpu1: Begin traceback...
syz-executor.1 нb r� � 8 � syz-executor.1 нb �� T��} [ 62.0905645] vpanic() at netbsd:vpanic+0xc9d
[ 62.1405522] panic() at netbsd:panic+0x1b3 sys/kern/subr_prf.c:210
[ 62.1905564] __msan_warning() at netbsd:__msan_warning+0x11e kmsan_report_inline sys/kern/subr_msan.c:234 [inline]
[ 62.1905564] __msan_warning() at netbsd:__msan_warning+0x11e sys/kern/subr_msan.c:615
[ 62.2405513] uiomove() at netbsd:uiomove+0x498
[ 62.2905507] ttwrite() at netbsd:ttwrite+0x1559 sys/kern/tty.c:2205
[ 62.3305564] comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
[ 62.3805536] cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207
[ 62.4305537] spec_write() at netbsd:spec_write+0x561
[ 62.4805514] VOP_WRITE() at netbsd:VOP_WRITE+0x39b
[ 62.5305516] vn_write() at netbsd:vn_write+0x709
[ 62.5905534] ktrace_thread() at netbsd:ktrace_thread+0xeba ktrwrite sys/kern/kern_ktrace.c:1332 [inline]
[ 62.5905534] ktrace_thread() at netbsd:ktrace_thread+0xeba sys/kern/kern_ktrace.c:1401
[ 62.6005567] cpu1: End traceback...
[ 62.6105506] fatal breakpoint trap in supervisor mode
[ 62.6105506] trap type 1 code 0 rip 0xffffffff802228ad cs 0x8 rflags 0x286 cr2 0x71853d59a5c0 ilevel 0x5 rsp 0xffffe68087782fc0
[ 62.6205410] curlwp 0xffffe68013527a40 pid 0.1212 lowest kstack 0xffffe6808777c2c0
Stopped in pid 0.1212 (system) at netbsd:breakpoint+0x5: leave

ktrace_thread() at netbsd:ktrace_thread+0xeba ktrwrite sys/kern/kern_ktrace.c:1332 [inline]
ktrace_thread() at netbsd:ktrace_thread+0xeba sys/kern/kern_ktrace.c:1401
Panic string: MSan: Uninitialized Pool Memory From ktrace_common()

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

1208 1203 2 1 100 ffffe6801339b580 syz-executor.4
1208 1208 2 1 10000000 ffffe680133bd5c0 syz-executor.4
1213 1213 2 1 0 ffffe680133bd180 syz-executor.2
1197 1197 2 0 0 ffffe6801339b9c0 syz-executor.1
1198 1198 2 0 40040 ffffe6801339b140 syz-executor.5
323 323 2 0 40140 ffffe68013315980 syz-executor.4
334 334 2 1 40000 ffffe68013315540 syz-executor.0
1109 1109 2 0 40 ffffe68013315100 syz-executor.3
1186 329 3 1 180 ffffe68012bb4900 syz-execprog parked
1186 330 3 0 180 ffffe68012bb44c0 syz-execprog parked
1186 1202 3 0 180 ffffe68012bb4080 syz-execprog parked
1186 1115 2 1 100 ffffe680132f5940 syz-execprog
1186 1200 3 1 180 ffffe680132f50c0 syz-execprog parked
1186 827 3 0 180 ffffe680132f5500 syz-execprog parked
1186 1380 2 0 100 ffffe680122c8280 syz-execprog
1186 1234 3 0 1c0 ffffe68012b978c0 syz-execprog parked
1186 1233 2 1 140 ffffe6801242c700 syz-execprog
1186 1186 3 0 40180 ffffe68012ae4bc0 syz-execprog parked
1236 1236 3 0 180 ffffe6801229aac0 sshd select
1126 1126 3 1 180 ffffe68012b97480 getty nanoslp
1000 1000 3 0 180 ffffe6801229a680 getty nanoslp
1253 1253 3 1 180 ffffe6801229a240 getty nanoslp
1068 1068 3 0 1c0 ffffe680121a9600 getty ttyraw
1093 1093 3 1 180 ffffe68012b97040 sshd select
953 953 3 1 180 ffffe680122c86c0 powerd kqueue
689 689 3 0 180 ffffe680124ebb80 syslogd kqueue
547 547 3 1 180 ffffe68012ae4780 dhcpcd poll
464 464 3 0 180 ffffe680122c8b00 dhcpcd poll
600 600 3 1 180 ffffe68012ae4340 dhcpcd poll
587 587 3 1 180 ffffe680124eb300 dhcpcd poll
289 289 3 0 180 ffffe680124eb740 dhcpcd poll
288 288 3 0 180 ffffe6801242c2c0 dhcpcd poll
351 351 3 0 180 ffffe6801242cb40 dhcpcd poll
1 1 3 0 180 ffffe68011e38940 init wait
0 1352 2 1 240 ffffe68013527600 ktrace
0 >1239 7 0 240 ffffe680135271c0 ktrace
0 >1212 7 1 240 ffffe68013527a40 ktrace
0 874 3 0 200 ffffe680121a9a40 physiod physiod
0 194 3 0 200 ffffe680121b5a80 pooldrain pooldrain
0 193 3 0 200 ffffe680121b5640 ioflush syncer
0 192 3 1 200 ffffe680121b5200 pgdaemon pgdaemon
0 169 3 1 200 ffffe680121a91c0 usb7 usbevt
0 167 3 1 200 ffffe680120f6a00 usb6 usbevt
0 165 3 1 200 ffffe680120f65c0 usb5 usbevt
0 164 3 1 200 ffffe680120f6180 usb4 usbevt
0 31 3 1 200 ffffe6801205d9c0 usb3 usbevt
0 63 3 1 200 ffffe6801205d580 usb2 usbevt
0 126 3 0 200 ffffe6801205d140 usb1 usbevt
0 125 3 1 200 ffffe68011e49980 usb0 usbevt
0 124 3 1 200 ffffe68011e49540 usbtask-dr usbtsk
0 123 3 1 200 ffffe680118016c0 usbtask-hc usbtsk
0 122 3 1 200 ffffe68011e49100 npfgc0 npfgcw
0 121 3 1 200 ffffe68011e38500 rt_free rt_free
0 120 3 1 200 ffffe68011e380c0 unpgc unpgc
0 119 3 0 200 ffffe68011e35900 key_timehandler key_timehandler
0 118 3 1 200 ffffe68011e354c0 icmp6_wqinput/1 icmp6_wqinput
0 117 3 0 200 ffffe68011e35080 icmp6_wqinput/0 icmp6_wqinput
0 116 3 0 200 ffffe68011cc48c0 nd6_timer nd6_timer
0 115 3 1 200 ffffe68011cc4480 carp6_wqinput/1 carp6_wqinput
0 114 3 0 200 ffffe68011cc4040 carp6_wqinput/0 carp6_wqinput
0 113 3 1 200 ffffe68011cc2b80 carp_wqinput/1 carp_wqinput
0 112 3 0 200 ffffe68011cc2740 carp_wqinput/0 carp_wqinput
0 111 3 1 200 ffffe68011cc2300 icmp_wqinput/1 icmp_wqinput
0 110 3 0 200 ffffe68011cc3780 icmp_wqinput/0 icmp_wqinput
0 109 3 0 200 ffffe68011cc3340 rt_timer rt_timer
0 108 3 0 200 ffffe68011cc3bc0 vmem_rehash vmem_rehash
0 99 3 0 200 ffffe68011804b40 entbutler entropy
0 98 3 0 200 ffffe68011804700 viomb balloon
0 97 3 1 200 ffffe680118042c0 vioif0_txrx/1 vioif0_txrx
0 96 3 0 200 ffffe68011801b00 vioif0_txrx/0 vioif0_txrx
0 29 3 0 200 ffffe68011801280 scsibus0 sccomp
0 28 3 0 200 ffffe680103afac0 pms0 pmsreset
0 27 3 1 200 ffffe680103af680 xcall/1 xcall
0 26 1 1 200 ffffe680103af240 softser/1
0 25 1 1 200 ffffe680103ada80 softclk/1
0 24 1 1 200 ffffe680103ad640 softbio/1
0 23 1 1 200 ffffe680103ad200 softnet/1
0 22 1 1 201 ffffe6800f1f1a40 idle/1
0 21 3 0 200 ffffe6800f1f1600 lnxsyswq lnxsyswq
0 20 3 0 200 ffffe6800f1f11c0 lnxubdwq lnxubdwq
0 19 3 0 200 ffffe6800f1f0a00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffffe6800f1f05c0 lnxlngwq lnxlngwq
0 17 3 0 200 ffffe6800f1f0180 lnxhipwq lnxhipwq
0 16 3 0 200 ffffe6800f1eb9c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffffe6800f1eb580 sysmon smtaskq
0 14 3 0 200 ffffe6800f1eb140 pmfsuspend pmfsuspend
0 13 3 0 200 ffffe6800f1e7980 pmfevent pmfevent
0 12 3 0 200 ffffe6800f1e7540 sopendfree sopendfr
0 11 3 0 200 ffffe6800f1e7100 iflnkst iflnkst
0 10 3 0 200 ffffe6800f1dd940 nfssilly nfssilly
0 9 3 0 200 ffffe6800f1dd500 vdrain vdrain
0 8 3 0 200 ffffe6800f1dd0c0 modunload mod_unld
0 7 3 0 200 ffffe6800ebda900 xcall/0 xcall
0 > 6 7 0 200 ffffe6800ebda4c0 softser/0
0 > 5 7 0 200 ffffe6800ebda080 softclk/0
0 4 1 0 200 ffffe6800ebd88c0 softbio/0
0 3 1 0 200 ffffe6800ebd8480 softnet/0
0 2 1 0 201 ffffe6800ebd8040 idle/0

0 0 3 0 200 ffffffff86868940 swapper uvm
[Locks tracked through LWPs]

****** LWP 1198.1198 (syz-executor.5) @ 0xffffe6801339b140, l_stat=2

*** Locks held:

* Lock 0 (initialized at amap_ctor)
lock address : 0xffffe680132f7f40 type : sleep/adaptive

initialized : 0xffffffff84f0b7bf
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 0 last held: 0

relevant lwp : 0xffffe6801339b140 last held: 0xffffe6801339b140
last locked* : 0xffffffff84f42779 unlocked : 0xffffffff84f1445e
owner/count : 0xffffe6801339b140 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at pmap_ctor)
lock address : 0xffffe68012ba2540 type : sleep/adaptive

initialized : 0xffffffff818e13b0
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe6801339b140 last held: 0xffffe6801339b140

last locked* : 0xffffffff818fbb7d unlocked : 0xffffffff81901ca9

owner field : 0xffffe6801339b140 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 2 (initialized at pmap_ctor)
lock address : 0xffffe68012ba2548 type : sleep/adaptive
initialized : 0xffffffff818e13c6

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe6801339b140 last held: 0xffffe6801339b140
last locked* : 0xffffffff818eb112 unlocked : 0xffffffff818eb187
owner/count : 0xffffe6801339b140 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 334.334 (syz-executor.0) @ 0xffffe68013315540, l_stat=2

*** Locks held:

* Lock 0 (initialized at vcache_alloc)
lock address : 0xffffe68013320200 type : sleep/adaptive
initialized : 0xffffffff85678376

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffe68013315540 last held: 0xffffe68013315540
last locked* : 0xffffffff857053bf unlocked : 0xffffffff857053bf
owner/count : 0xffffe68013315540 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 464.464 (dhcpcd) @ 0xffffe680122c8b00, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb83

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe680122c8b00 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 600.600 (dhcpcd) @ 0xffffe68012ae4340, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb83

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffe68012ae4340 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 288.288 (dhcpcd) @ 0xffffe6801242c2c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb83

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe6801242c2c0 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 351.351 (dhcpcd) @ 0xffffe6801242cb40, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb83

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe6801242cb40 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.1239 (ktrace) @ 0xffffe680135271c0, l_stat=7

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin
initialized : 0xffffffff85064a34
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 2
relevant cpu : 0 last held: 1
relevant lwp : 0xffffe680135271c0 last held: 0xffffe68013527a40
last locked* : 0xffffffff8530bf94 unlocked : 0xffffffff818b4f90

curcpu holds : 1 wanted by: 000000000000000000

****** LWP 0.25 (softclk/1) @ 0xffffe680103ada80, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb83

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffe680103ada80 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffe6800f1e7100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb83

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe6800f1e7100 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffe6800ebda080, l_stat=7

*** Locks held:

* Lock 0 (initialized at soinit)
lock address : 0xffffe6800ebbf080 type : sleep/adaptive
initialized : 0xffffffff8552ebc2

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe6800ebda080 last held: 0xffffe6800ebda080
last locked* : 0xffffffff83daa2cd unlocked : 0xffffffff83e360d3
owner field : 0xffffe6800ebda080 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin
initialized : 0xffffffff85064a34
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 2
relevant cpu : 0 last held: 1
relevant lwp : 0xffffe6800ebda080 last held: 0xffffe68013527a40
last locked* : 0xffffffff8530bf94 unlocked : 0xffffffff818b4f90

curcpu holds : 1 wanted by: 000000000000000000

****** LWP 0.0 (swapper) @ 0xffffffff86868940, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fb83

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffffff86868940 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at com_attach_subr)
lock address : 0xffffe680103abf68 type : spin
initialized : 0xffffffff82009bdf

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe6800ebda4c0 last held: 0xffffe6800ebda080
last locked* : 0xffffffff82019e88 unlocked : 0xffffffff8201d97f

owner field : 0x0000000000000800 wait/spin: 0/1

******* Locks held on cpu1:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin
initialized : 0xffffffff85064a34
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 2

relevant cpu : 1 last held: 1

relevant lwp : 0xffffe68013527a40 last held: 0xffffe68013527a40
last locked* : 0xffffffff8530bf94 unlocked : 0xffffffff818b4f90

curcpu holds : 1 wanted by: 000000000000000000

* Lock 1 (initialized at kprintf_init)
lock address : 0xffffffff868a9c00 type : spin

initialized : 0xffffffff8539caec

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffe68013527a40 last held: 0xffffe68013527a40
last locked* : 0xffffffff8539d914 unlocked : 0xffffffff8539e31e

owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON

0xffffe68000017180 0041 00000000 0x0 0x0
0xffffe68000017200 0041 00000000 0x0 0x0
0xffffe68000017280 0041 00000000 0x0 0x0
0xffffe68000017300 0041 00000000 0x0 0x0
0xffffe68000017380 0041 00000000 0x0 0x0
0xffffe68000017400 0041 00000000 0x0 0x0
0xffffe68000017480 0041 00000000 0x0 0x0
0xffffe68000017500 0041 00000000 0x0 0x0
0xffffe68000017580 0041 00000000 0x0 0x0
0xffffe68000017600 0041 00000000 0x0 0x0
0xffffe68000017680 0041 00000000 0x0 0x0
0xffffe68000017700 0041 00000000 0x0 0x0
0xffffe68000017780 0041 00000000 0x0 0x0
0xffffe68000017800 0041 00000000 0x0 0x0
0xffffe68000017880 0041 00000000 0x0 0x0
0xffffe68000017900 0041 00000000 0x0 0x0
0xffffe68000017980 0041 00000000 0x0 0x0
0xffffe68000017a00 0041 00000000 0x0 0x0
0xffffe68000017a80 0041 00000000 0x0 0x0
0xffffe68000017b00 0041 00000000 0x0 0x0
0xffffe68000017b80 0041 00000000 0x0 0x0
0xffffe68000017c00 0041 00000000 0x0 0x0
0xffffe68000017c80 0041 00000000 0x0 0x0
0xffffe68000017d00 0041 00000000 0x0 0x0
0xffffe68000017d80 0041 00000000 0x0 0x0
0xffffe68000017e00 0041 00000000 0x0 0x0
0xffffe68000017e80 0041 00000000 0x0 0x0
0xffffe68000017f00 0041 00000000 0x0 0x0
0xffffe68000017f80 0041 00000000 0x0 0x0
0xffffe68000018000 0041 00000000 0x0 0x0
0xffffe68000018080 0041 00000000 0x0 0x0
0xffffe68000018100 0041 00000000 0x0 0x0
0xffffe68000018180 0041 00000000 0x0 0x0
0xffffe68000018200 0041 00000000 0x0 0x0
0xffffe68000018280 0041 00000000 0x0 0x0
0xffffe68000018300 0041 00000000 0x0 0x0
0xffffe68000018380 0041 00000000 0x0 0x0
0xffffe68000018400 0041 00000000 0x0 0x0
0xffffe68000018480 0041 00000000 0x0 0x0
0xffffe68000018500 0041 00000000 0x0 0x0
0xffffe68000018580 0041 00000000 0x0 0x0
0xffffe68000018600 0041 00000000 0x0 0x0
0xffffe68000018680 0041 00000000 0x0 0x0
0xffffe68000018700 0041 00000000 0x0 0x0
0xffffe68000018780 0041 00000000 0x0 0x0
0xffffe68000018800 0041 00000000 0x0 0x0
0xffffe68000018880 0041 00000000 0x0 0x0
0xffffe68000018900 0041 00000000 0x0 0x0
0xffffe68000018980 0041 00000000 0x0 0x0
0xffffe68000018a00 0041 00000000 0x0 0x0
0xffffe68000018a80 0041 00000000 0x0 0x0
0xffffe68000018b00 0041 00000000 0x0 0x0
0xffffe68000018b80 0041 00000000 0x0 0x0
0xffffe68000018c00 0041 00000000 0x0 0x0
0xffffe68000018c80 0041 00000000 0x0 0x0
0xffffe68000018d00 0041 00000000 0x0 0x0
0xffffe68000018d80 0041 00000000 0x0 0x0
0xffffe68000018e00 0041 00000000 0x0 0x0
0xffffe68000018e80 0041 00000000 0x0 0x0
0xffffe68000018f00 0041 00000000 0x0 0x0
0xffffe68000018f80 0041 00000000 0x0 0x0
0xffffe68000019000 0041 00000000 0x0 0x0
0xffffe68000019080 0041 00000000 0x0 0x0
0xffffe68000019100 0041 00000000 0x0 0x0
0xffffe68000019180 0041 00000000 0x0 0x0
0xffffe68000019200 0041 00000000 0x0 0x0
0xffffe68000019280 0041 00000000 0x0 0x0
0xffffe68000019300 0041 00000000 0x0 0x0
0xffffe68000019380 0041 00000000 0x0 0x0
0xffffe68000019400 0041 00000000 0x0 0x0
0xffffe68000019480 0041 00000000 0x0 0x0
0xffffe68000019500 0041 00000000 0x0 0x0
0xffffe68000019580 0041 00000000 0x0 0x0
0xffffe68000019600 0041 00000000 0x0 0x0
0xffffe68000019680 0041 00000000 0x0 0x0
0xffffe68000019700 0041 00000000 0x0 0x0
0xffffe68000019780 0041 00000000 0x0 0x0
0xffffe68000019800 0041 00000000 0x0 0x0
0xffffe68000019880 0041 00000000 0x0 0x0
0xffffe68000019900 0041 00000000 0x0 0x0
0xffffe68000019980 0041 00000000 0x0 0x0
0xffffe68000019a00 0041 00000000 0x0 0x0
0xffffe68000019a80 0041 00000000 0x0 0x0
0xffffe68000019b00 0041 00000000 0x0 0x0
0xffffe68000019b80 0041 00000000 0x0 0x0
0xffffe68000019c00 0041 00000000 0x0 0x0
0xffffe68000019c80 0041 00000000 0x0 0x0
0xffffe68000019d00 0041 00000000 0x0 0x0
0xffffe68000019d80 0041 00000000 0x0 0x0
0xffffe68000019e00 0041 00000000 0x0 0x0
0xffffe68000019e80 0041 00000000 0x0 0x0
0xffffe68000019f00 0041 00000000 0x0 0x0
0xffffe68000019f80 0041 00000000 0x0 0x0
0xffffe6800001a000 0041 00000000 0x0 0x0
0xffffe6800001a080 0041 00000000 0x0 0x0
0xffffe6800001a100 0041 00000000 0x0 0x0
0xffffe6800001a180 0041 00000000 0x0 0x0
0xffffe6800001a200 0041 00000000 0x0 0x0
0xffffe6800001a280 0041 00000000 0x0 0x0
0xffffe6800001a300 0041 00000000 0x0 0x0
0xffffe6800001a380 0041 00000000 0x0 0x0
0xffffe6800001a400 0041 00000000 0x0 0x0
0xffffe6800001a480 0041 00000000 0x0 0x0
0xffffe6800001a500 0041 00000000 0x0 0x0
0xffffe6800001a580 0041 00000000 0x0 0x0
0xffffe6800001a600 0041 00000000 0x0 0x0
0xffffe6800001a680 0041 00000000 0x0 0x0
0xffffe6800001a700 0041 00000000 0x0 0x0
0xffffe6800001a780 0041 00000000 0x0 0x0
0xffffe6800001a800 0041 00000000 0x0 0x0
0xffffe6800001a880 0041 00000000 0x0 0x0
0xffffe6800001a900 0041 00000000 0x0 0x0
0xffffe6800001a980 0041 00000000 0x0 0x0
0xffffe6800001aa00 0041 00000000 0x0 0x0
0xffffe6800001aa80 0041 00000000 0x0 0x0
0xffffe6800001ab00 0041 00000000 0x0 0x0
0xffffe6800001ab80 0041 00000000 0x0 0x0
0xffffe6800001ac00 0041 00000000 0x0 0x0
0xffffe6800001ac80 0041 00000000 0x0 0x0
0xffffe6800001ad00 0041 00000000 0x0 0x0
0xffffe6800001ad80 0041 00000000 0x0 0x0
0xffffe6800001ae00 0041 00000000 0x0 0x0
0xffffe6800001ae80 0041 00000000 0x0 0x0
0xffffe6800001af00 0041 00000000 0x0 0x0
0xffffe6800001af80 0041 00000000 0x0 0x0
0xffffe6800001b000 0041 00000000 0x0 0x0
0xffffe6800001b080 0041 00000000 0x0 0x0
0xffffe6800001b100 0041 00000000 0x0 0x0
0xffffe6800001b180 0041 00000000 0x0 0x0
0xffffe6800001b200 0041 00000000 0x0 0x0
0xffffe6800001b280 0041 00000000 0x0 0x0
0xffffe6800001b300 0041 00000000 0x0 0x0
0xffffe6800001b380 0041 00000000 0x0 0x0
0xffffe6800001b400 0041 00000000 0x0 0x0
0xffffe6800001b480 0041 00000000 0x0 0x0
0xffffe6800001b500 0041 00000000 0x0 0x0
0xffffe6800001b580 0041 00000000 0x0 0x0
0xffffe6800001b600 0041 00000000 0x0 0x0
0xffffe6800001b680 0041 00000000 0x0 0x0
0xffffe6800001b700 0041 00000000 0x0 0x0
0xffffe6800001b780 0041 00000000 0x0 0x0
0xffffe6800001b800 0041 00000000 0x0 0x0
0xffffe6800001b880 0041 00000000 0x0 0x0
0xffffe6800001b900 0041 00000000 0x0 0x0
0xffffe6800001b980 0041 00000000 0x0 0x0
0xffffe6800001ba00 0041 00000000 0x0 0x0
0xffffe6800001ba80 0041 00000000 0x0 0x0
0xffffe6800001bb00 0041 00000000 0x0 0x0
0xffffe6800001bb80 0041 00000000 0x0 0x0
0xffffe6800001bc00 0041 00000000 0x0 0x0
0xffffe6800001bc80 0041 00000000 0x0 0x0
0xffffe6800001bd00 0041 00000000 0x0 0x0
0xffffe6800001bd80 0041 00000000 0x0 0x0
0xffffe6800001be00 0041 00000000 0x0 0x0
0xffffe6800001be80 0041 00000000 0x0 0x0
0xffffe6800001bf00 0041 00000000 0x0 0x0
0xffffe6800001bf80 0041 00000000 0x0 0x0
0xffffe6800001c000 0041 00000000 0x0 0x0
0xffffe6800001c080 0041 00000000 0x0 0x0
0xffffe6800001c100 0041 00000000 0x0 0x0
0xffffe6800001c180 0041 00000000 0x0 0x0
0xffffe6800001c200 0041 00000000 0x0 0x0
0xffffe6800001c280 0041 00000000 0x0 0x0
0xffffe6800001c300 0041 00000000 0x0 0x0
0xffffe6800001c380 0041 00000000 0x0 0x0
0xffffe6800001c400 0041 00000000 0x0 0x0
0xffffe6800001c480 0041 00000000 0x0 0x0
0xffffe6800001c500 0041 00000000 0x0 0x0
0xffffe6800001c580 0041 00000000 0x0 0x0
0xffffe6800001c600 0041 00000000 0x0 0x0
0xffffe6800001c680 0041 00000000 0x0 0x0
0xffffe6800001c700 0041 00000000 0x0 0x0
0xffffe6800001c780 0001 00000000 0x0 0x0
0xffffe6800001c800 0001 00000000 0x0 0x0
0xffffe6800001c880 0001 00000000 0x0 0x0
0xffffe6800001c900 0001 00000000 0x0 0x0
0xffffe6800001c980 0001 00000000 0x0 0x0
0xffffe6800001ca00 0001 00000000 0x0 0x0
0xffffe6800001ca80 0001 00000000 0x0 0x0
0xffffe6800001cb00 0001 00000000 0x0 0x0
0xffffe6800001cb80 0001 00000000 0x0 0x0
0xffffe6800001cc00 0001 00000000 0x0 0x0
0xffffe6800001cc80 0001 00000000 0x0 0x0
0xffffe6800001cd00 0001 00000000 0x0 0x0
0xffffe6800001cd80 0001 00000000 0x0 0x0
0xffffe6800001ce00 0001 00000000 0x0 0x0
0xffffe6800001ce80 0001 00000000 0x0 0x0
0xffffe6800001cf00 0001 00000000 0x0 0x0
0xffffe6800001cf80 0001 00000000 0x0 0x0
0xffffe6800001d000 0001 00000000 0x0 0x0
0xffffe6800001d080 0001 00000000 0x0 0x0
0xffffe6800001d100 0001 00000000 0x0 0x0
0xffffe6800001d180 0001 00000000 0x0 0x0
0xffffe6800001d200 0001 00000000 0x0 0x0
0xffffe6800001d280 0001 00000000 0x0 0x0
0xffffe6800001d300 0001 00000000 0x0 0x0
0xffffe6800001d380 0001 00000000 0x0 0x0
0xffffe6800001d400 0001 00000000 0x0 0x0
0xffffe6800001d480 0001 00000000 0x0 0x0
0xffffe6800001d500 0001 00000000 0x0 0x0
0xffffe6800001d580 0001 00000000 0x0 0x0
0xffffe6800001d600 0001 00000000 0x0 0x0
0xffffe6800001d680 0001 00000000 0x0 0x0
0xffffe6800001d700 0001 00000000 0x0 0x0
0xffffe6800001d780 0001 00000000 0x0 0x0
0xffffe6800001d800 0001 00000000 0x0 0x0
0xffffe6800001d880 0001 00000000 0x0 0x0
0xffffe6800001d900 0001 00000000 0x0 0x0
0xffffe6800001d980 0001 00000000 0x0 0x0
0xffffe6800001da00 0001 00000000 0x0 0x0
0xffffe6800001da80 0001 00000000 0x0 0x0
0xffffe6800001db00 0001 00000000 0x0 0x0
0xffffe6800001db80 0001 00000000 0x0 0x0
0xffffe6800001dc00 0001 00000000 0x0 0x0
0xffffe6800001dc80 0001 00000000 0x0 0x0
0xffffe6800001dd00 0001 00000000 0x0 0x0
0xffffe6800001dd80 0001 00000000 0x0 0x0
0xffffe6800001de00 0001 00000000 0x0 0x0
0xffffe6800001de80 0001 00000000 0x0 0x0
0xffffe6800001df00 0001 00000000 0x0 0x0
0xffffe6800001df80 0001 00000000 0x0 0x0
0xffffe6800001e000 0001 00000000 0x0 0x0
0xffffe6800001e080 0001 00000000 0x0 0x0
0xffffe6800001e100 0001 00000000 0x0 0x0
0xffffe6800001e180 0001 00000000 0x0 0x0
0xffffe6800001e200 0001 00000000 0x0 0x0
0xffffe6800001e280 0001 00000000 0x0 0x0
0xffffe6800001e300 0001 00000000 0x0 0x0
0xffffe6800001e380 0001 00000000 0x0 0x0
0xffffe6800001e400 0001 00000000 0x0 0x0
0xffffe6800001e480 0001 00000000 0x0 0x0
0xffffe6800001e500 0001 00000000 0x0 0x0
0xffffe6800001e580 0001 00000000 0x0 0x0
0xffffe6800001e600 0001 00000000 0x0 0x0
0xffffe6800001e680 0001 00000000 0x0 0x0
0xffffe6800001e700 0001 00000000 0x0 0x0
0xffffe6800001e780 0001 00000000 0x0 0x0
0xffffe6800001e800 0001 00000000 0x0 0x0
0xffffe6800001e880 0001 00000000 0x0 0x0
0xffffe6800001e900 0001 00000000 0x0 0x0
0xffffe6800001e980 0001 00000000 0x0 0x0
0xffffe6800001ea00 0001 00000000 0x0 0x0
0xffffe6800001ea80 0001 00000000 0x0 0x0
0xffffe6800001eb00 0001 00000000 0x0 0x0
0xffffe6800001eb80 0001 00000000 0x0 0x0
0xffffe6800001ec00 0001 00000000 0x0 0x0
0xffffe6800001ec80 0001 00000000 0x0 0x0
0xffffe6800001ed00 0001 00000000 0x0 0x0
0xffffe6800001ed80 0001 00000000 0x0 0x0
0xffffe6800001ee00 0001 00000000 0x0 0x0
0xffffe6800001ee80 0001 00000000 0x0 0x0
0xffffe6800001ef00 0001 00000000 0x0 0x0
0xffffe6800001ef80 0001 00000000 0x0 0x0
0xffffe6800001f000 0001 00000000 0x0 0x0
0xffffe6800001f080 0001 00000000 0x0 0x0
0xffffe6800001f100 0001 00000000 0x0 0x0
0xffffe6800001f180 0001 00000000 0x0 0x0
0xffffe6800001f200 0001 00000000 0x0 0x0
0xffffe6800001f280 0001 00000000 0x0 0x0
0xffffe6800001f300 0001 00000000 0x0 0x0
0xffffe6800001f380 0001 00000000 0x0 0x0
0xffffe6800001f400 0001 00000000 0x0 0x0
0xffffe6800001f480 0001 00000000 0x0 0x0
0xffffe6800001f500 0001 00000000 0x0 0x0
0xffffe6800001f580 0001 00000000 0x0 0x0
0xffffe6800001f600 0001 00000000 0x0 0x0
0xffffe6800001f680 0001 00000000 0x0 0x0
0xffffe6800001f700 0001 00000000 0x0 0x0
0xffffe6800001f780 0001 00000000 0x0 0x0
0xffffe6800001f800 0001 00000000 0x0 0x0
0xffffe6800001f880 0001 00000000 0x0 0x0
0xffffe6800001f900 0001 00000000 0x0 0x0
0xffffe6800001f980 0001 00000000 0x0 0x0
0xffffe6800001fa00 0001 00000000 0x0 0x0
0xffffe6800001fa80 0001 00000000 0x0 0x0
0xffffe6800001fb00 0001 00000000 0x0 0x0
0xffffe6800001fb80 0001 00000000 0x0 0x0
0xffffe6800001fc00 0001 00000000 0x0 0x0
0xffffe6800001fc80 0001 00000000 0x0 0x0
0xffffe6800001fd00 0001 00000000 0x0 0x0
0xffffe6800001fd80 0001 00000000 0x0 0x0
0xffffe6800001fe00 0001 00000000 0x0 0x0
0xffffe6800001fe80 0001 00000000 0x0 0x0
0xffffe6800001ff00 0001 00000000 0x0 0x0
0xffffe6800001ff80 0001 00000000 0x0 0x0
0xffffe68000020000 0001 00000000 0x0 0x0
0xffffe68000020080 0001 00000000 0x0 0x0
0xffffe68000020100 0001 00000000 0x0 0x0
0xffffe68000020180 0001 00000000 0x0 0x0
0xffffe68000020200 0001 00000000 0x0 0x0
0xffffe68000020280 0001 00000000 0x0 0x0
0xffffe68000020300 0001 00000000 0x0 0x0
0xffffe68000020380 0001 00000000 0x0 0x0
0xffffe68000020400 0001 00000000 0x0 0x0
0xffffe68000020480 0001 00000000 0x0 0x0
0xffffe68000020500 0001 00000000 0x0 0x0
0xffffe68000020580 0001 00000000 0x0 0x0
0xffffe68000020600 0001 00000000 0x0 0x0
0xffffe68000020680 0001 00000000 0x0 0x0
0xffffe68000020700 0001 00000000 0x0 0x0
0xffffe68000020780 0001 00000000 0x0 0x0
0xffffe68000020800 0001 00000000 0x0 0x0
0xffffe68000020880 0001 00000000 0x0 0x0
0xffffe68000020900 0001 00000000 0x0 0x0
0xffffe68000020980 0001 00000000 0x0 0x0
0xffffe68000020a00 0001 00000000 0x0 0x0
0xffffe68000020a80 0001 00000000 0x0 0x0
0xffffe68000020b00 0001 00000000 0x0 0x0
0xffffe68000020b80 0001 00000000 0x0 0x0
0xffffe68000020c00 0001 00000000 0x0 0x0
0xffffe68000020c80 0001 00000000 0x0 0x0
0xffffe68000020d00 0001 00000000 0x0 0x0
0xffffe68000020d80 0001 00000000 0x0 0x0
0xffffe68000020e00 0001 00000000 0x0 0x0
0xffffe68000020e80 0001 00000000 0x0 0x0
0xffffe68000020f00 0001 00000000 0x0 0x0
0xffffe68000020f80 0001 00000000 0x0 0x0
0xffffe68000021000 0001 00000000 0x0 0x0
0xffffe68000021080 0001 00000000 0x0 0x0
0xffffe68000021100 0001 00000000 0x0 0x0
0xffffe68000021180 0001 00000000 0x0 0x0
0xffffe68000021200 0001 00000000 0x0 0x0
0xffffe68000021280 0001 00000000 0x0 0x0
0xffffe68000021300 0001 00000000 0x0 0x0
0xffffe68000021380 0001 00000000 0x0 0x0
0xffffe68000021400 0001 00000000 0x0 0x0
0xffffe68000021480 0001 00000000 0x0 0x0
0xffffe68000021500 0001 00000000 0x0 0x0
0xffffe68000021580 0001 00000000 0x0 0x0
0xffffe68000021600 0001 00000000 0x0 0x0
0xffffe68000021680 0001 00000000 0x0 0x0
0xffffe68000021700 0001 00000000 0x0 0x0
0xffffe68000021780 0001 00000000 0x0 0x0
0xffffe68000021800 0001 00000000 0x0 0x0
0xffffe68000021880 0001 00000000 0x0 0x0
0xffffe68000021900 0001 00000000 0x0 0x0
0xffffe68000021980 0001 00000000 0x0 0x0
0xffffe68000021a00 0001 00000000 0x0 0x0
0xffffe68000021a80 0001 00000000 0x0 0x0
0xffffe68000021b00 0001 00000000 0x0 0x0
0xffffe68000021b80 0001 00000000 0x0 0x0
0xffffe68000021c00 0001 00000000 0x0 0x0
0xffffe68000021c80 0001 00000000 0x0 0x0
0xffffe68000021d00 0001 00000000 0x0 0x0
0xffffe68000021d80 0001 00000000 0x0 0x0
0xffffe68000021e00 0001 00000000 0x0 0x0
0xffffe68000021e80 0001 00000000 0x0 0x0
0xffffe68000021f00 0001 00000000 0x0 0x0
0xffffe68000021f80 0001 00000000 0x0 0x0
0xffffe68000022000 0001 00000000 0x0 0x0
0xffffe68000022080 0001 00000000 0x0 0x0
0xffffe68000022100 0001 00000000 0x0 0x0
0xffffe68000022180 0001 00000000 0x0 0x0
0xffffe68000022200 0001 00000000 0x0 0x0
0xffffe68000022280 0001 00000000 0x0 0x0
0xffffe68000022300 0001 00000000 0x0 0x0
0xffffe68000022380 0001 00000000 0x0 0x0
0xffffe68000022400 0001 00000000 0x0 0x0
0xffffe68000022480 0001 00000000 0x0 0x0
0xffffe68000022500 0001 00000000 0x0 0x0
0xffffe68000022580 0001 00000000 0x0 0x0
0xffffe68000022600 0001 00000000 0x0 0x0
0xffffe68000022680 0001 00000000 0x0 0x0
0xffffe68000022700 0001 00000000 0x0 0x0
0xffffe68000022780 0001 00000000 0x0 0x0
0xffffe68000022800 0001 00000000 0x0 0x0
0xffffe68000022880 0001 00000000 0x0 0x0
0xffffe68000022900 0001 00000000 0x0 0x0
0xffffe68000022980 0001 00000000 0x0 0x0
0xffffe68000022a00 0001 00000000 0x0 0x0
0xffffe68000022a80 0001 00000000 0x0 0x0
0xffffe68000022b00 0001 00000000 0x0 0x0
0xffffe68000022b80 0001 00000000 0x0 0x0
0xffffe68000022c00 0001 00000000 0x0 0x0
0xffffe68000022c80 0001 00000000 0x0 0x0
0xffffe68000022d00 0001 00000000 0x0 0x0
0xffffe68000022d80 0001 00000000 0x0 0x0
0xffffe68000022e00 0001 00000000 0x0 0x0
0xffffe68000022e80 0001 00000000 0x0 0x0
0xffffe68000022f00 0001 00000000 0x0 0x0
0xffffe68000022f80 0001 00000000 0x0 0x0
0xffffe68000023000 0001 00000000 0x0 0x0
0xffffe68000023080 0001 00000000 0x0 0x0
0xffffe68000023100 0001 00000000 0x0 0x0
0xffffe68000023180 0001 00000000 0x0 0x0
0xffffe68000023200 0001 00000000 0x0 0x0
0xffffe68000023280 0001 00000000 0x0 0x0
0xffffe68000023300 0001 00000000 0x0 0x0
0xffffe68000023380 0001 00000000 0x0 0x0
0xffffe68000023400 0001 00000000 0x0 0x0
0xffffe68000023480 0001 00000000 0x0 0x0
0xffffe68000023500 0001 00000000 0x0 0x0
0xffffe68000023580 0001 00000000 0x0 0x0
0xffffe68000023600 0001 00000000 0x0 0x0
0xffffe68000023680 0001 00000000 0x0 0x0
0xffffe68000023700 0001 00000000 0x0 0x0
0xffffe68000023780 0001 00000000 0x0 0x0
0xffffe68000023800 0001 00000000 0x0 0x0
0xffffe68000023880 0001 00000000 0x0 0x0
0xffffe68000023900 0001 00000000 0x0 0x0
0xffffe68000023980 0001 00000000 0x0 0x0
0xffffe68000023a00 0001 00000000 0x0 0x0
0xffffe68000023a80 0001 00000000 0x0 0x0
0xffffe68000023b00 0001 00000000 0x0 0x0
0xffffe68000023b80 0001 00000000 0x0 0x0
0xffffe68000023c00 0001 00000000 0x0 0x0
0xffffe68000023c80 0001 00000000 0x0 0x0
0xffffe68000023d00 0001 00000000 0x0 0x0
0xffffe68000023d80 0001 00000000 0x0 0x0
0xffffe68000023e00 0001 00000000 0x0 0x0
0xffffe68000023e80 0001 00000000 0x0 0x0
0xffffe68000023f00 0001 00000000 0x0 0x0
0xffffe68000023f80 0001 00000000 0x0 0x0
0xffffe68000024000 0001 00000000 0x0 0x0
0xffffe68000024080 0001 00000000 0x0 0x0
0xffffe68000024100 0001 00000000 0x0 0x0
0xffffe68000024180 0001 00000000 0x0 0x0
0xffffe68000024200 0001 00000000 0x0 0x0
0xffffe68000024280 0001 00000000 0x0 0x0
0xffffe68000024300 0001 00000000 0x0 0x0
0xffffe68000024380 0001 00000000 0x0 0x0
0xffffe68000024400 0001 00000000 0x0 0x0
0xffffe68000024480 0001 00000000 0x0 0x0
0xffffe68000024500 0001 00000000 0x0 0x0
0xffffe68000024580 0001 00000000 0x0 0x0
0xffffe68000024600 0001 00000000 0x0 0x0
0xffffe68000024680 0001 00000000 0x0 0x0
0xffffe68000024700 0001 00000000 0x0 0x0
0xffffe68000024780 0001 00000000 0x0 0x0
0xffffe68000024800 0001 00000000 0x0 0x0
0xffffe68000024880 0001 00000000 0x0 0x0
0xffffe68000024900 0001 00000000 0x0 0x0
0xffffe68000024980 0001 00000000 0x0 0x0
0xffffe68000024a00 0001 00000000 0x0 0x0
0xffffe68000024a80 0001 00000000 0x0 0x0
0xffffe68000024b00 0001 00000000 0x0 0x0
0xffffe68000024b80 0001 00000000 0x0 0x0
0xffffe68000024c00 0001 00000000 0x0 0x0
0xffffe68000024c80 0001 00000000 0x0 0x0
0xffffe68000024d00 0001 00000000 0x0 0x0
0xffffe68000024d80 0001 00000000 0x0 0x0
0xffffe68000024e00 0001 00000000 0x0 0x0
0xffffe68000024e80 0001 00000000 0x0 0x0
0xffffe68000024f00 0001 00000000 0x0 0x0
0xffffe68000024f80 0001 00000000 0x0 0x0
0xffffe68000025000 0001 00000000 0x0 0x0
0xffffe68000025080 0001 00000000 0x0 0x0
0xffffe68000025100 0001 00000000 0x0 0x0
0xffffe68000025180 0001 00000000 0x0 0x0
0xffffe68000025200 0001 00000000 0x0 0x0
0xffffe68000025280 0001 00000000 0x0 0x0
0xffffe68000025300 0001 00000000 0x0 0x0
0xffffe68000025380 0001 00000000 0x0 0x0
0xffffe68000025400 0001 00000000 0x0 0x0
0xffffe68000025480 0001 00000000 0x0 0x0
0xffffe68000025500 0001 00000000 0x0 0x0
0xffffe68000025580 0001 00000000 0x0 0x0
0xffffe68000025600 0001 00000000 0x0 0x0
0xffffe68000025680 0001 00000000 0x0 0x0
0xffffe68000025700 0001 00000000 0x0 0x0
0xffffe68000025780 0001 00000000 0x0 0x0
0xffffe68000025800 0001 00000000 0x0 0x0
0xffffe68000025880 0001 00000000 0x0 0x0
0xffffe68000025900 0001 00000000 0x0 0x0
0xffffe68000025980 0001 00000000 0x0 0x0
0xffffe68000025a00 0001 00000000 0x0 0x0
0xffffe68000025a80 0001 00000000 0x0 0x0
0xffffe68000025b00 0001 00000000 0x0 0x0
0xffffe68000025b80 0001 00000000 0x0 0x0
0xffffe68000025c00 0001 00000000 0x0 0x0
0xffffe68000025c80 0001 00000000 0x0 0x0
0xffffe68000025d00 0001 00000000 0x0 0x0
0xffffe68000025d80 0001 00000000 0x0 0x0
0xffffe68000025e00 0001 00000000 0x0 0x0
0xffffe68000025e80 0001 00000000 0x0 0x0
0xffffe68000025f00 0001 00000000 0x0 0x0
0xffffe68000025f80 0001 00000000 0x0 0x0
0xffffe68000026000 0001 00000000 0x0 0x0
0xffffe68000026080 0001 00000000 0x0 0x0
0xffffe68000026100 0001 00000000 0x0 0x0
0xffffe68000026180 0001 00000000 0x0 0x0
0xffffe68000026200 0001 00000000 0x0 0x0
0xffffe68000026280 0001 00000000 0x0 0x0
0xffffe68000026300 0001 00000000 0x0 0x0
0xffffe68000026380 0001 00000000 0x0 0x0
0xffffe68000026400 0001 00000000 0x0 0x0
0xffffe68000026480 0001 00000000 0x0 0x0
0xffffe68000026500 0001 00000000 0x0 0x0
0xffffe68000026580 0001 00000000 0x0 0x0
0xffffe68000026600 0001 00000000 0x0 0x0
0xffffe68000026680 0001 00000000 0x0 0x0
0xffffe68000026700 0001 00000000 0x0 0x0
0xffffe68000026780 0001 00000000 0x0 0x0
0xffffe68000026800 0001 00000000 0x0 0x0
0xffffe68000026880 0001 00000000 0x0 0x0
0xffffe68000026900 0001 00000000 0x0 0x0
0xffffe68000026980 0001 00000000 0x0 0x0
0xffffe68000026a00 0001 00000000 0x0 0x0
0xffffe68000026a80 0001 00000000 0x0 0x0
0xffffe68000026b00 0001 00000000 0x0 0x0
0xffffe68000026b80 0001 00000000 0x0 0x0
0xffffe68000026c00 0001 00000000 0x0 0x0
0xffffe68000026c80 0001 00000000 0x0 0x0
0xffffe68000026d00 0001 00000000 0x0 0x0
0xffffe68000026d80 0001 00000000 0x0 0x0
0xffffe68000026e00 0001 00000000 0x0 0x0
0xffffe68000026e80 0001 00000000 0x0 0x0
0xffffe68000026f00 0001 00000000 0x0 0x0
0xffffe68000026f80 0001 00000000 0x0 0x0
0xffffe68000027000 0001 00000000 0x0 0x0
0xffffe68000027080 0001 00000000 0x0 0x0
0xffffe68000027100 0001 00000000 0x0 0x0
0xffffe68000027180 0001 00000000 0x0 0x0
0xffffe68000027200 0001 00000000 0x0 0x0
0xffffe68000027280 0001 00000000 0x0 0x0
0xffffe68000027300 0001 00000000 0x0 0x0
0xffffe68000027380 0001 00000000 0x0 0x0
0xffffe68000027400 0001 00000000 0x0 0x0
0xffffe68000027480 0001 00000000 0x0 0x0
0xffffe68000027500 0001 00000000 0x0 0x0
0xffffe68000027580 0001 00000000 0x0 0x0
0xffffe68000027600 0001 00000000 0x0 0x0
0xffffe68000027680 0001 00000000 0x0 0x0
0xffffe68000027700 0001 00000000 0x0 0x0
0xffffe68000027780 0001 00000000 0x0 0x0
0xffffe68000027800 0001 00000000 0x0 0x0
0xffffe68000027880 0001 00000000 0x0 0x0
0xffffe68000027900 0001 00000000 0x0 0x0
0xffffe68000027980 0001 00000000 0x0 0x0
0xffffe68000027a00 0001 00000000 0x0 0x0
0xffffe68000027a80 0001 00000000 0x0 0x0
0xffffe68000027b00 0001 00000000 0x0 0x0
0xffffe68000027b80 0001 00000000 0x0 0x0
0xffffe68000027c00 0001 00000000 0x0 0x0
0xffffe68000027c80 0001 00000000 0x0 0x0
0xffffe68000027d00 0001 00000000 0x0 0x0
0xffffe68000027d80 0001 00000000 0x0 0x0
0xffffe68000027e00 0001 00000000 0x0 0x0
0xffffe68000027e80 0001 00000000 0x0 0x0
0xffffe68000027f00 0001 00000000 0x0 0x0
0xffffe68000027f80 0001 00000000 0x0 0x0
0xffffe68000028000 0001 00000000 0x0 0x0
0xffffe68000028080 0001 00000000 0x0 0x0
0xffffe68000028100 0001 00000000 0x0 0x0
0xffffe68000028180 0001 00000000 0x0 0x0
0xffffe68000028200 0001 00000000 0x0 0x0
0xffffe68000028280 0001 00000000 0x0 0x0
0xffffe68000028300 0001 00000000 0x0 0x0
0xffffe68000028380 0001 00000000 0x0 0x0
0xffffe68000028400 0001 00000000 0x0 0x0
0xffffe68000028480 0001 00000000 0x0 0x0
0xffffe68000028500 0001 00000000 0x0 0x0
0xffffe68000028580 0001 00000000 0x0 0x0
0xffffe68000028600 0001 00000000 0x0 0x0
0xffffe68000028680 0001 00000000 0x0 0x0
0xffffe68000028700 0001 00000000 0x0 0x0
0xffffe68000028780 0001 00000000 0x0 0x0
0xffffe68000028800 0001 00000000 0x0 0x0
0xffffe68000028880 0001 00000000 0x0 0x0
0xffffe68000028900 0001 00000000 0x0 0x0
0xffffe68000028980 0001 00000000 0x0 0x0
0xffffe68000028a00 0001 00000000 0x0 0x0
0xffffe68000028a80 0001 00000000 0x0 0x0
0xffffe68000028b00 0001 00000000 0x0 0x0
0xffffe68000028b80 0001 00000000 0x0 0x0
0xffffe68000028c00 0001 00000000 0x0 0x0
0xffffe68000028c80 0001 00000000 0x0 0x0
0xffffe68000028d00 0001 00000000 0x0 0x0
0xffffe68000028d80 0001 00000000 0x0 0x0
0xffffe68000028e00 0001 00000000 0x0 0x0
0xffffe68000028e80 0001 00000000 0x0 0x0
0xffffe68000028f00 0001 00000000 0x0 0x0
0xffffe68000028f80 0001 00000000 0x0 0x0
0xffffe68000029000 0001 00000000 0x0 0x0
0xffffe68000029080 0001 00000000 0x0 0x0
0xffffe68000029100 0001 00000000 0x0 0x0
0xffffe68000029180 0001 00000000 0x0 0x0
0xffffe68000029200 0001 00000000 0x0 0x0
0xffffe68000029280 0001 00000000 0x0 0x0
0xffffe68000029300 0001 00000000 0x0 0x0
0xffffe68000029380 0001 00000000 0x0 0x0
0xffffe68000029400 0001 00000000 0x0 0x0
0xffffe68000029480 0001 00000000 0x0 0x0
0xffffe68000029500 0001 00000000 0x0 0x0
0xffffe68000029580 0001 00000000 0x0 0x0
0xffffe68000029600 0001 00000000 0x0 0x0
0xffffe68000029680 0001 00000000 0x0 0x0
0xffffe68000029700 0001 00000000 0x0 0x0
0xffffe68000029780 0001 00000000 0x0 0x0
0xffffe68000029800 0001 00000000 0x0 0x0
0xffffe68000029880 0001 00000000 0x0 0x0
0xffffe68000029900 0001 00000000 0x0 0x0
0xffffe68000029980 0001 00000000 0x0 0x0
0xffffe68000029a00 0001 00000000 0x0 0x0
0xffffe68000029a80 0001 00000000 0x0 0x0
0xffffe68000029b00 0001 00000000 0x0 0x0
0xffffe68000029b80 0001 00000000 0x0 0x0
0xffffe68000029c00 0001 00000000 0x0 0x0
0xffffe68000029c80 0001 00000000 0x0 0x0
0xffffe68000029d00 0001 00000000 0x0 0x0
0xffffe68000029d80 0001 00000000 0x0 0x0
0xffffe68000029e00 0001 00000000 0x0 0x0
0xffffe68000029e80 0001 00000000 0x0 0x0
0xffffe68000029f00 0001 00000000 0x0 0x0
0xffffe68000029f80 0001 00000000 0x0 0x0
0xffffe6800002a000 0001 00000000 0x0 0x0
0xffffe6800002a080 0001 00000000 0x0 0x0
0xffffe6800002a100 0001 00000000 0x0 0x0
0xffffe6800002a180 0001 00000000 0x0 0x0
0xffffe6800002a200 0001 00000000 0x0 0x0
0xffffe6800002a280 000

Tested on:

commit: 09417b2e doc: Various changes in the past week from va..

git tree: https://github.com/NetBSD/src trunk

console output: https://syzkaller.appspot.com/x/log.txt?x=1564faf4080000

patch: https://syzkaller.appspot.com/x/patch.diff?x=12071204080000

syzbot

unread,

Jul 1, 2022, 11:35:10 AM7/1/22

to rias...@netbsd.org, syzkaller-...@googlegroups.com

Hello,

syzbot has tested the proposed patch but the reproducer is still triggering an issue:
MSan: Uninitialized Memory in uiomove

V syz-executor.2 �b gH � ��w V syz-executor.2 �b �H � V syz-executor.2 �b �H A V V syz-executor.2 �b �H A 8 V syz-executor.2 �b �H � 0 C syz-executor.3 �b FI A C C syz-executor.3 �b kI A C syz-executor.3 �b �I � pK�� C syz-executor.3 �b �I � 8 C syz-executor.3 �b �I � 0 �L�� C syz-executor.3 �b �I � < C syz-executor.3 �b J A C executor.3 �b SJ � 8 C syz-executor.3 �b[ 61.0964662] panic: MSan: Uninitialized Pool Memory From kthread_create()

[ 61.1126764] cpu0: Begin traceback...
[ 61.1264548] vpanic() at netbsd:vpanic+0xc9d
[ 61.1764511] panic() at netbsd:panic+0x1b3 sys/kern/subr_prf.c:210
[ 61.2264539] __msan_warning() at netbsd:__msan_warning+0x11e kmsan_report_inline sys/kern/subr_msan.c:234 [inline]
[ 61.2264539] __msan_warning() at netbsd:__msan_warning+0x11e sys/kern/subr_msan.c:615
[ 61.2764510] uiomove() at netbsd:uiomove+0x498
[ 61.3164524] ttwrite() at netbsd:ttwrite+0x1559 sys/kern/tty.c:2205
[ 61.3664540] comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
[ 61.4164511] cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207
[ 61.4664537] spec_write() at netbsd:spec_write+0x561
[ 61.5164512] VOP_WRITE() at netbsd:VOP_WRITE+0x39b
[ 61.5664509] vn_write() at netbsd:vn_write+0x709
[ 61.6164514] ktrace_thread() at netbsd:ktrace_thread+0xeca ktrwrite sys/kern/kern_ktrace.c:1335 [inline]
[ 61.6164514] ktrace_thread() at netbsd:ktrace_thread+0xeca sys/kern/kern_ktrace.c:1404
[ 61.6381394] cpu0: End traceback...
[ 61.6381394] fatal breakpoint trap in supervisor mode
[ 61.6472449] trap type 1 code 0 rip 0xffffffff802228ad cs 0x8 rflags 0x286 cr2 0x63e060 ilevel 0x5 rsp 0xffffd10087782fc0
[ 61.6583270] curlwp 0xffffd100135f5200 pid 0.1203 lowest kstack 0xffffd1008777c2c0
Stopped in pid 0.1203 (system) at netbsd:breakpoint+0x5: leave

ktrace_thread() at netbsd:ktrace_thread+0xeca ktrwrite sys/kern/kern_ktrace.c:1335 [inline]
ktrace_thread() at netbsd:ktrace_thread+0xeca sys/kern/kern_ktrace.c:1404
Panic string: MSan: Uninitialized Pool Memory From kthread_create()

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

1207 1235 3 1 180 ffffd100135f5640 syz-executor.1 parked
1207 1207 2 0 10000000 ffffd100135e1a40 syz-executor.1
1239 1239 2 1 40000 ffffd100135e11c0 syz-executor.4
1214 1348 3 0 180 ffffd100134619c0 syz-executor.5 parked
1214 1214 2 0 10040000 ffffd10013568a00 syz-executor.5
334 334 2 0 40000 ffffd10013568180 syz-executor.0
1233 >1233 7 1 40000 ffffd10013461580 syz-executor.2
1208 1208 2 1 40140 ffffd10013461140 syz-executor.5
1202 1202 2 1 40140 ffffd10013448980 syz-executor.4
1197 1197 2 1 140 ffffd10013448540 syz-executor.1
1205 1205 2 1 40 ffffd10013448100 syz-executor.3
330 330 2 1 140 ffffd10012bb5900 syz-executor.0
957 329 3 0 180 ffffd10012bb54c0 syz-execprog kqueue
957 1129 3 1 180 ffffd10012bb5080 syz-execprog parked
957 1201 2 0 100 ffffd1001338b940 syz-execprog
957 1254 3 1 180 ffffd1001338b0c0 syz-execprog parked
957 1200 3 0 180 ffffd1001338b500 syz-execprog parked
957 1387 3 0 180 ffffd1001229aac0 syz-execprog parked
957 1380 3 0 1c0 ffffd10012b99480 syz-execprog parked
957 1128 3 0 180 ffffd10012ae4bc0 syz-execprog nanoslp
957 957 3 1 40180 ffffd100122c86c0 syz-execprog parked
1242 1242 3 0 180 ffffd100122c8280 sshd select
1070 1070 3 1 180 ffffd10012b998c0 getty nanoslp
1068 1068 3 1 180 ffffd1001229a680 getty nanoslp
1115 1115 3 0 180 ffffd1001229a240 getty nanoslp
1106 1106 3 1 1c0 ffffd100121a9600 getty ttyraw
926 926 3 1 180 ffffd10012b99040 sshd select
948 948 3 1 180 ffffd1001242d700 powerd kqueue
687 687 3 0 180 ffffd1001250ab80 syslogd kqueue
547 547 3 1 180 ffffd10012ae4780 dhcpcd poll
464 464 3 1 180 ffffd1001242db40 dhcpcd poll
600 600 3 0 180 ffffd10012ae4340 dhcpcd poll
587 587 3 1 180 ffffd1001242d2c0 dhcpcd poll
289 289 3 0 180 ffffd1001250a740 dhcpcd poll
288 288 3 1 180 ffffd100122c8b00 dhcpcd poll
351 351 3 0 180 ffffd1001250a300 dhcpcd poll
1 1 3 0 180 ffffd10011e20940 init wait
0 1323 2 0 240 ffffd10013614240 ktrace
0 1279 2 0 240 ffffd100135f5a80 ktrace
0 >1203 7 0 240 ffffd100135f5200 ktrace
0 968 3 0 200 ffffd100121a9a40 physiod physiod
0 194 3 0 200 ffffd100121b5a80 pooldrain pooldrain
0 193 3 1 200 ffffd100121b5640 ioflush syncer
0 192 3 1 200 ffffd100121b5200 pgdaemon pgdaemon
0 169 3 0 200 ffffd100121a91c0 usb7 usbevt
0 167 3 0 200 ffffd100120f6a00 usb6 usbevt
0 165 3 0 200 ffffd100120f65c0 usb5 usbevt
0 164 3 0 200 ffffd100120f6180 usb4 usbevt
0 31 3 0 200 ffffd1001205d9c0 usb3 usbevt
0 63 3 0 200 ffffd1001205d580 usb2 usbevt
0 126 3 0 200 ffffd1001205d140 usb1 usbevt
0 125 3 0 200 ffffd10011e33980 usb0 usbevt
0 124 3 1 200 ffffd10011e33540 usbtask-dr usbtsk
0 123 3 1 200 ffffd100118016c0 usbtask-hc usbtsk
0 122 3 0 200 ffffd10011e33100 npfgc0 npfgcw
0 121 3 1 200 ffffd10011e20500 rt_free rt_free
0 120 3 1 200 ffffd10011e200c0 unpgc unpgc
0 119 3 1 200 ffffd10011e1c900 key_timehandler key_timehandler
0 118 3 1 200 ffffd10011e1c4c0 icmp6_wqinput/1 icmp6_wqinput
0 117 3 0 200 ffffd10011e1c080 icmp6_wqinput/0 icmp6_wqinput
0 116 3 0 200 ffffd10011cc48c0 nd6_timer nd6_timer
0 115 3 1 200 ffffd10011cc4480 carp6_wqinput/1 carp6_wqinput
0 114 3 0 200 ffffd10011cc4040 carp6_wqinput/0 carp6_wqinput
0 113 3 1 200 ffffd10011cc2b80 carp_wqinput/1 carp_wqinput
0 112 3 0 200 ffffd10011cc2740 carp_wqinput/0 carp_wqinput
0 111 3 1 200 ffffd10011cc2300 icmp_wqinput/1 icmp_wqinput
0 110 3 0 200 ffffd10011cc3780 icmp_wqinput/0 icmp_wqinput
0 109 3 0 200 ffffd10011cc3340 rt_timer rt_timer
0 108 3 1 200 ffffd10011cc3bc0 vmem_rehash vmem_rehash
0 99 3 1 200 ffffd10011804b40 entbutler entropy
0 98 3 1 200 ffffd10011804700 viomb balloon
0 97 3 1 200 ffffd100118042c0 vioif0_txrx/1 vioif0_txrx
0 96 3 0 200 ffffd10011801b00 vioif0_txrx/0 vioif0_txrx
0 29 3 0 200 ffffd10011801280 scsibus0 sccomp
0 28 3 0 200 ffffd100103afac0 pms0 pmsreset
0 27 3 1 200 ffffd100103af680 xcall/1 xcall
0 26 1 1 200 ffffd100103af240 softser/1
0 25 1 1 200 ffffd100103ada80 softclk/1
0 24 1 1 200 ffffd100103ad640 softbio/1
0 23 1 1 200 ffffd100103ad200 softnet/1
0 22 1 1 201 ffffd1000f1f1a40 idle/1
0 21 3 0 200 ffffd1000f1f1600 lnxsyswq lnxsyswq
0 20 3 1 200 ffffd1000f1f11c0 lnxubdwq lnxubdwq
0 19 3 1 200 ffffd1000f1f0a00 lnxpwrwq lnxpwrwq
0 18 3 1 200 ffffd1000f1f05c0 lnxlngwq lnxlngwq
0 17 3 1 200 ffffd1000f1f0180 lnxhipwq lnxhipwq
0 16 3 0 200 ffffd1000f1eb9c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffffd1000f1eb580 sysmon smtaskq
0 14 3 0 200 ffffd1000f1eb140 pmfsuspend pmfsuspend
0 13 3 1 200 ffffd1000f1e7980 pmfevent pmfevent
0 12 3 0 200 ffffd1000f1e7540 sopendfree sopendfr
0 11 3 0 200 ffffd1000f1e7100 iflnkst iflnkst
0 10 3 0 200 ffffd1000f1dd940 nfssilly nfssilly
0 9 3 0 200 ffffd1000f1dd500 vdrain vdrain
0 8 3 0 200 ffffd1000f1dd0c0 modunload mod_unld
0 7 3 0 200 ffffd1000ebda900 xcall/0 xcall
0 6 1 0 200 ffffd1000ebda4c0 softser/0
0 5 1 0 200 ffffd1000ebda080 softclk/0
0 4 1 0 200 ffffd1000ebd88c0 softbio/0
0 3 1 0 200 ffffd1000ebd8480 softnet/0
0 2 1 0 201 ffffd1000ebd8040 idle/0

0 0 3 0 200 ffffffff86868940 swapper uvm
[Locks tracked through LWPs]

****** LWP 1239.1239 (syz-executor.4) @ 0xffffd100135e11c0, l_stat=2

*** Locks held:

* Lock 0 (initialized at vcache_alloc)

lock address : 0xffffd10013559440 type : sleep/adaptive
initialized : 0xffffffff856788b6

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd100135e11c0 last held: 0xffffd100135e11c0
last locked* : 0xffffffff857058ff unlocked : 0xffffffff857058ff
owner/count : 0xffffd100135e11c0 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at cache_vnode_init)
lock address : 0xffffd10013559480 type : sleep/adaptive
initialized : 0xffffffff855cd2de

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd100135e11c0 last held: 0xffffd100135e11c0
last locked* : 0xffffffff855c6633 unlocked : 0xffffffff855bb7d0
owner/count : 0xffffd100135e11c0 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at nchinit)
lock address : 0xffffffff86900c40 type : sleep/adaptive
initialized : 0xffffffff855cab08

shared holds : 0 exclusive: 0

shares wanted: 0 exclusive: 1

relevant cpu : 1 last held: 1

relevant lwp : 0xffffd100135e11c0 last held: 000000000000000000
last locked : 0xffffffff855be582 unlocked*: 0xffffffff855be7bc
owner field : 0xffffd100135e11c0 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

****** LWP 334.334 (syz-executor.0) @ 0xffffd10013568180, l_stat=2

*** Locks held:

* Lock 0 (initialized at amap_ctor)

lock address : 0xffffd100133734c0 type : sleep/adaptive

initialized : 0xffffffff84f0b7bf
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffd10013568180 last held: 0xffffd10013568180
last locked* : 0xffffffff84f42779 unlocked : 0xffffffff84f163e3
owner/count : 0xffffd10013568180 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 1233.1233 (syz-executor.2) @ 0xffffd10013461580, l_stat=7

*** Locks held:

* Lock 0 (initialized at vcache_alloc)
lock address : 0xffffd1001345ed40 type : sleep/adaptive
initialized : 0xffffffff856788b6

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd10013461580 last held: 0xffffd10013461580
last locked* : 0xffffffff85705786 unlocked : 0xffffffff85705b35
owner/count : 0xffffd10013461580 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at vcache_alloc)
lock address : 0xffffd1001345ef80 type : sleep/adaptive
initialized : 0xffffffff856788b6

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd10013461580 last held: 0xffffd10013461580
last locked* : 0xffffffff85705786 unlocked : 000000000000000000
owner/count : 0xffffd10013461580 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin
initialized : 0xffffffff85064a34
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 1 last held: 0

relevant lwp : 0xffffd10013461580 last held: 0xffffd100135f5200
last locked* : 0xffffffff8530c154 unlocked : 0xffffffff802ef9f8

curcpu holds : 1 wanted by: 000000000000000000

****** LWP 1205.1205 (syz-executor.3) @ 0xffffd10013448100, l_stat=2

*** Locks held:

* Lock 0 (initialized at vcache_alloc)

lock address : 0xffffd1001345e680 type : sleep/adaptive
initialized : 0xffffffff856788b6

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd10013448100 last held: 0xffffd10013448100
last locked* : 0xffffffff85705786 unlocked : 0xffffffff85705b35
owner/count : 0xffffd10013448100 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at vcache_alloc)
lock address : 0xffffd1001345e8c0 type : sleep/adaptive
initialized : 0xffffffff856788b6

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd10013448100 last held: 0xffffd10013448100
last locked* : 0xffffffff85705786 unlocked : 0xffffffff85705b35
owner/count : 0xffffd10013448100 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 2 (initialized at genfs_node_init)
lock address : 0xffffd10013452890 type : sleep/adaptive
initialized : 0xffffffff85705f5e

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd10013448100 last held: 0xffffd10013448100
last locked* : 0xffffffff84cd7dfa unlocked : 000000000000000000
owner/count : 0xffffd10013448100 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 464.464 (dhcpcd) @ 0xffffd1001242db40, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fd43

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffd1001242db40 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 600.600 (dhcpcd) @ 0xffffd10012ae4340, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fd43

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffd10012ae4340 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 288.288 (dhcpcd) @ 0xffffd100122c8b00, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fd43

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffd100122c8b00 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 351.351 (dhcpcd) @ 0xffffd1001250a300, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fd43

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffd1001250a300 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffd1000f1e7100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fd43

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffd1000f1e7100 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffd1000ebda080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fd43

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffd1000ebda080 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff86868940, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff8517fd43

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin
initialized : 0xffffffff85064a34
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 0 last held: 0

relevant lwp : 0xffffd100135f5200 last held: 0xffffd100135f5200
last locked* : 0xffffffff8530c154 unlocked : 0xffffffff802ef9f8

curcpu holds : 1 wanted by: 000000000000000000

* Lock 1 (initialized at kprintf_init)
lock address : 0xffffffff868a9c00 type : spin

initialized : 0xffffffff8539ccac

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffd100135f5200 last held: 0xffffd100135f5200
last locked* : 0xffffffff8539dad4 unlocked : 0xffffffff8539e4de

owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON

0xffffd10000017180 0041 00000000 0x0 0x0
0xffffd10000017200 0041 00000000 0x0 0x0
0xffffd10000017280 0041 00000000 0x0 0x0
0xffffd10000017300 0041 00000000 0x0 0x0
0xffffd10000017380 0041 00000000 0x0 0x0
0xffffd10000017400 0041 00000000 0x0 0x0
0xffffd10000017480 0041 00000000 0x0 0x0
0xffffd10000017500 0041 00000000 0x0 0x0
0xffffd10000017580 0041 00000000 0x0 0x0
0xffffd10000017600 0041 00000000 0x0 0x0
0xffffd10000017680 0041 00000000 0x0 0x0
0xffffd10000017700 0041 00000000 0x0 0x0
0xffffd10000017780 0041 00000000 0x0 0x0
0xffffd10000017800 0041 00000000 0x0 0x0
0xffffd10000017880 0041 00000000 0x0 0x0
0xffffd10000017900 0041 00000000 0x0 0x0
0xffffd10000017980 0041 00000000 0x0 0x0
0xffffd10000017a00 0041 00000000 0x0 0x0
0xffffd10000017a80 0041 00000000 0x0 0x0
0xffffd10000017b00 0041 00000000 0x0 0x0
0xffffd10000017b80 0041 00000000 0x0 0x0
0xffffd10000017c00 0041 00000000 0x0 0x0
0xffffd10000017c80 0041 00000000 0x0 0x0
0xffffd10000017d00 0041 00000000 0x0 0x0
0xffffd10000017d80 0041 00000000 0x0 0x0
0xffffd10000017e00 0041 00000000 0x0 0x0
0xffffd10000017e80 0041 00000000 0x0 0x0
0xffffd10000017f00 0041 00000000 0x0 0x0
0xffffd10000017f80 0041 00000000 0x0 0x0
0xffffd10000018000 0041 00000000 0x0 0x0
0xffffd10000018080 0041 00000000 0x0 0x0
0xffffd10000018100 0041 00000000 0x0 0x0
0xffffd10000018180 0041 00000000 0x0 0x0
0xffffd10000018200 0041 00000000 0x0 0x0
0xffffd10000018280 0041 00000000 0x0 0x0
0xffffd10000018300 0041 00000000 0x0 0x0
0xffffd10000018380 0041 00000000 0x0 0x0
0xffffd10000018400 0041 00000000 0x0 0x0
0xffffd10000018480 0041 00000000 0x0 0x0
0xffffd10000018500 0041 00000000 0x0 0x0
0xffffd10000018580 0041 00000000 0x0 0x0
0xffffd10000018600 0041 00000000 0x0 0x0
0xffffd10000018680 0041 00000000 0x0 0x0
0xffffd10000018700 0041 00000000 0x0 0x0
0xffffd10000018780 0041 00000000 0x0 0x0
0xffffd10000018800 0041 00000000 0x0 0x0
0xffffd10000018880 0041 00000000 0x0 0x0
0xffffd10000018900 0041 00000000 0x0 0x0
0xffffd10000018980 0041 00000000 0x0 0x0
0xffffd10000018a00 0041 00000000 0x0 0x0
0xffffd10000018a80 0041 00000000 0x0 0x0
0xffffd10000018b00 0041 00000000 0x0 0x0
0xffffd10000018b80 0041 00000000 0x0 0x0
0xffffd10000018c00 0041 00000000 0x0 0x0
0xffffd10000018c80 0041 00000000 0x0 0x0
0xffffd10000018d00 0041 00000000 0x0 0x0
0xffffd10000018d80 0041 00000000 0x0 0x0
0xffffd10000018e00 0041 00000000 0x0 0x0
0xffffd10000018e80 0041 00000000 0x0 0x0
0xffffd10000018f00 0041 00000000 0x0 0x0
0xffffd10000018f80 0041 00000000 0x0 0x0
0xffffd10000019000 0041 00000000 0x0 0x0
0xffffd10000019080 0041 00000000 0x0 0x0
0xffffd10000019100 0041 00000000 0x0 0x0
0xffffd10000019180 0041 00000000 0x0 0x0
0xffffd10000019200 0041 00000000 0x0 0x0
0xffffd10000019280 0041 00000000 0x0 0x0
0xffffd10000019300 0041 00000000 0x0 0x0
0xffffd10000019380 0041 00000000 0x0 0x0
0xffffd10000019400 0041 00000000 0x0 0x0
0xffffd10000019480 0041 00000000 0x0 0x0
0xffffd10000019500 0041 00000000 0x0 0x0
0xffffd10000019580 0041 00000000 0x0 0x0
0xffffd10000019600 0041 00000000 0x0 0x0
0xffffd10000019680 0041 00000000 0x0 0x0
0xffffd10000019700 0041 00000000 0x0 0x0
0xffffd10000019780 0041 00000000 0x0 0x0
0xffffd10000019800 0041 00000000 0x0 0x0
0xffffd10000019880 0041 00000000 0x0 0x0
0xffffd10000019900 0041 00000000 0x0 0x0
0xffffd10000019980 0041 00000000 0x0 0x0
0xffffd10000019a00 0041 00000000 0x0 0x0
0xffffd10000019a80 0041 00000000 0x0 0x0
0xffffd10000019b00 0041 00000000 0x0 0x0
0xffffd10000019b80 0041 00000000 0x0 0x0
0xffffd10000019c00 0041 00000000 0x0 0x0
0xffffd10000019c80 0041 00000000 0x0 0x0
0xffffd10000019d00 0041 00000000 0x0 0x0
0xffffd10000019d80 0041 00000000 0x0 0x0
0xffffd10000019e00 0041 00000000 0x0 0x0
0xffffd10000019e80 0041 00000000 0x0 0x0
0xffffd10000019f00 0041 00000000 0x0 0x0
0xffffd10000019f80 0041 00000000 0x0 0x0
0xffffd1000001a000 0041 00000000 0x0 0x0
0xffffd1000001a080 0041 00000000 0x0 0x0
0xffffd1000001a100 0041 00000000 0x0 0x0
0xffffd1000001a180 0041 00000000 0x0 0x0
0xffffd1000001a200 0041 00000000 0x0 0x0
0xffffd1000001a280 0041 00000000 0x0 0x0
0xffffd1000001a300 0041 00000000 0x0 0x0
0xffffd1000001a380 0041 00000000 0x0 0x0
0xffffd1000001a400 0041 00000000 0x0 0x0
0xffffd1000001a480 0041 00000000 0x0 0x0
0xffffd1000001a500 0041 00000000 0x0 0x0
0xffffd1000001a580 0041 00000000 0x0 0x0
0xffffd1000001a600 0041 00000000 0x0 0x0
0xffffd1000001a680 0041 00000000 0x0 0x0
0xffffd1000001a700 0041 00000000 0x0 0x0
0xffffd1000001a780 0041 00000000 0x0 0x0
0xffffd1000001a800 0041 00000000 0x0 0x0
0xffffd1000001a880 0041 00000000 0x0 0x0
0xffffd1000001a900 0041 00000000 0x0 0x0
0xffffd1000001a980 0041 00000000 0x0 0x0
0xffffd1000001aa00 0041 00000000 0x0 0x0
0xffffd1000001aa80 0041 00000000 0x0 0x0
0xffffd1000001ab00 0041 00000000 0x0 0x0
0xffffd1000001ab80 0041 00000000 0x0 0x0
0xffffd1000001ac00 0041 00000000 0x0 0x0
0xffffd1000001ac80 0041 00000000 0x0 0x0
0xffffd1000001ad00 0041 00000000 0x0 0x0
0xffffd1000001ad80 0041 00000000 0x0 0x0
0xffffd1000001ae00 0041 00000000 0x0 0x0
0xffffd1000001ae80 0041 00000000 0x0 0x0
0xffffd1000001af00 0041 00000000 0x0 0x0
0xffffd1000001af80 0041 00000000 0x0 0x0
0xffffd1000001b000 0041 00000000 0x0 0x0
0xffffd1000001b080 0041 00000000 0x0 0x0
0xffffd1000001b100 0041 00000000 0x0 0x0
0xffffd1000001b180 0041 00000000 0x0 0x0
0xffffd1000001b200 0041 00000000 0x0 0x0
0xffffd1000001b280 0041 00000000 0x0 0x0
0xffffd1000001b300 0041 00000000 0x0 0x0
0xffffd1000001b380 0041 00000000 0x0 0x0
0xffffd1000001b400 0041 00000000 0x0 0x0
0xffffd1000001b480 0041 00000000 0x0 0x0
0xffffd1000001b500 0041 00000000 0x0 0x0
0xffffd1000001b580 0041 00000000 0x0 0x0
0xffffd1000001b600 0041 00000000 0x0 0x0
0xffffd1000001b680 0041 00000000 0x0 0x0
0xffffd1000001b700 0041 00000000 0x0 0x0
0xffffd1000001b780 0041 00000000 0x0 0x0
0xffffd1000001b800 0041 00000000 0x0 0x0
0xffffd1000001b880 0041 00000000 0x0 0x0
0xffffd1000001b900 0041 00000000 0x0 0x0
0xffffd1000001b980 0041 00000000 0x0 0x0
0xffffd1000001ba00 0041 00000000 0x0 0x0
0xffffd1000001ba80 0041 00000000 0x0 0x0
0xffffd1000001bb00 0041 00000000 0x0 0x0
0xffffd1000001bb80 0041 00000000 0x0 0x0
0xffffd1000001bc00 0041 00000000 0x0 0x0
0xffffd1000001bc80 0041 00000000 0x0 0x0
0xffffd1000001bd00 0041 00000000 0x0 0x0
0xffffd1000001bd80 0041 00000000 0x0 0x0
0xffffd1000001be00 0041 00000000 0x0 0x0
0xffffd1000001be80 0041 00000000 0x0 0x0
0xffffd1000001bf00 0041 00000000 0x0 0x0
0xffffd1000001bf80 0041 00000000 0x0 0x0
0xffffd1000001c000 0041 00000000 0x0 0x0
0xffffd1000001c080 0041 00000000 0x0 0x0
0xffffd1000001c100 0041 00000000 0x0 0x0
0xffffd1000001c180 0041 00000000 0x0 0x0
0xffffd1000001c200 0041 00000000 0x0 0x0
0xffffd1000001c280 0041 00000000 0x0 0x0
0xffffd1000001c300 0041 00000000 0x0 0x0
0xffffd1000001c380 0041 00000000 0x0 0x0
0xffffd1000001c400 0041 00000000 0x0 0x0
0xffffd1000001c480 0041 00000000 0x0 0x0
0xffffd1000001c500 0041 00000000 0x0 0x0
0xffffd1000001c580 0041 00000000 0x0 0x0
0xffffd1000001c600 0041 00000000 0x0 0x0
0xffffd1000001c680 0041 00000000 0x0 0x0
0xffffd1000001c700 0041 00000000 0x0 0x0
0xffffd1000001c780 0001 00000000 0x0 0x0
0xffffd1000001c800 0001 00000000 0x0 0x0
0xffffd1000001c880 0001 00000000 0x0 0x0
0xffffd1000001c900 0001 00000000 0x0 0x0
0xffffd1000001c980 0001 00000000 0x0 0x0
0xffffd1000001ca00 0001 00000000 0x0 0x0
0xffffd1000001ca80 0001 00000000 0x0 0x0
0xffffd1000001cb00 0001 00000000 0x0 0x0
0xffffd1000001cb80 0001 00000000 0x0 0x0
0xffffd1000001cc00 0001 00000000 0x0 0x0
0xffffd1000001cc80 0001 00000000 0x0 0x0
0xffffd1000001cd00 0001 00000000 0x0 0x0
0xffffd1000001cd80 0001 00000000 0x0 0x0
0xffffd1000001ce00 0001 00000000 0x0 0x0
0xffffd1000001ce80 0001 00000000 0x0 0x0
0xffffd1000001cf00 0001 00000000 0x0 0x0
0xffffd1000001cf80 0001 00000000 0x0 0x0
0xffffd1000001d000 0001 00000000 0x0 0x0
0xffffd1000001d080 0001 00000000 0x0 0x0
0xffffd1000001d100 0001 00000000 0x0 0x0
0xffffd1000001d180 0001 00000000 0x0 0x0
0xffffd1000001d200 0001 00000000 0x0 0x0
0xffffd1000001d280 0001 00000000 0x0 0x0
0xffffd1000001d300 0001 00000000 0x0 0x0
0xffffd1000001d380 0001 00000000 0x0 0x0
0xffffd1000001d400 0001 00000000 0x0 0x0
0xffffd1000001d480 0001 00000000 0x0 0x0
0xffffd1000001d500 0001 00000000 0x0 0x0
0xffffd1000001d580 0001 00000000 0x0 0x0
0xffffd1000001d600 0001 00000000 0x0 0x0
0xffffd1000001d680 0001 00000000 0x0 0x0
0xffffd1000001d700 0001 00000000 0x0 0x0
0xffffd1000001d780 0001 00000000 0x0 0x0
0xffffd1000001d800 0001 00000000 0x0 0x0
0xffffd1000001d880 0001 00000000 0x0 0x0
0xffffd1000001d900 0001 00000000 0x0 0x0
0xffffd1000001d980 0001 00000000 0x0 0x0
0xffffd1000001da00 0001 00000000 0x0 0x0
0xffffd1000001da80 0001 00000000 0x0 0x0
0xffffd1000001db00 0001 00000000 0x0 0x0
0xffffd1000001db80 0001 00000000 0x0 0x0
0xffffd1000001dc00 0001 00000000 0x0 0x0
0xffffd1000001dc80 0001 00000000 0x0 0x0
0xffffd1000001dd00 0001 00000000 0x0 0x0
0xffffd1000001dd80 0001 00000000 0x0 0x0
0xffffd1000001de00 0001 00000000 0x0 0x0
0xffffd1000001de80 0001 00000000 0x0 0x0
0xffffd1000001df00 0001 00000000 0x0 0x0
0xffffd1000001df80 0001 00000000 0x0 0x0
0xffffd1000001e000 0001 00000000 0x0 0x0
0xffffd1000001e080 0001 00000000 0x0 0x0
0xffffd1000001e100 0001 00000000 0x0 0x0
0xffffd1000001e180 0001 00000000 0x0 0x0
0xffffd1000001e200 0001 00000000 0x0 0x0
0xffffd1000001e280 0001 00000000 0x0 0x0
0xffffd1000001e300 0001 00000000 0x0 0x0
0xffffd1000001e380 0001 00000000 0x0 0x0
0xffffd1000001e400 0001 00000000 0x0 0x0
0xffffd1000001e480 0001 00000000 0x0 0x0
0xffffd1000001e500 0001 00000000 0x0 0x0
0xffffd1000001e580 0001 00000000 0x0 0x0
0xffffd1000001e600 0001 00000000 0x0 0x0
0xffffd1000001e680 0001 00000000 0x0 0x0
0xffffd1000001e700 0001 00000000 0x0 0x0
0xffffd1000001e780 0001 00000000 0x0 0x0
0xffffd1000001e800 0001 00000000 0x0 0x0
0xffffd1000001e880 0001 00000000 0x0 0x0
0xffffd1000001e900 0001 00000000 0x0 0x0
0xffffd1000001e980 0001 00000000 0x0 0x0
0xffffd1000001ea00 0001 00000000 0x0 0x0
0xffffd1000001ea80 0001 00000000 0x0 0x0
0xffffd1000001eb00 0001 00000000 0x0 0x0
0xffffd1000001eb80 0001 00000000 0x0 0x0
0xffffd1000001ec00 0001 00000000 0x0 0x0
0xffffd1000001ec80 0001 00000000 0x0 0x0
0xffffd1000001ed00 0001 00000000 0x0 0x0
0xffffd1000001ed80 0001 00000000 0x0 0x0
0xffffd1000001ee00 0001 00000000 0x0 0x0
0xffffd1000001ee80 0001 00000000 0x0 0x0
0xffffd1000001ef00 0001 00000000 0x0 0x0
0xffffd1000001ef80 0001 00000000 0x0 0x0
0xffffd1000001f000 0001 00000000 0x0 0x0
0xffffd1000001f080 0001 00000000 0x0 0x0
0xffffd1000001f100 0001 00000000 0x0 0x0
0xffffd1000001f180 0001 00000000 0x0 0x0
0xffffd1000001f200 0001 00000000 0x0 0x0
0xffffd1000001f280 0001 00000000 0x0 0x0
0xffffd1000001f300 0001 00000000 0x0 0x0
0xffffd1000001f380 0001 00000000 0x0 0x0
0xffffd1000001f400 0001 00000000 0x0 0x0
0xffffd1000001f480 0001 00000000 0x0 0x0
0xffffd1000001f500 0001 00000000 0x0 0x0
0xffffd1000001f580 0001 00000000 0x0 0x0
0xffffd1000001f600 0001 00000000 0x0 0x0
0xffffd1000001f680 0001 00000000 0x0 0x0
0xffffd1000001f700 0001 00000000 0x0 0x0
0xffffd1000001f780 0001 00000000 0x0 0x0
0xffffd1000001f800 0001 00000000 0x0 0x0
0xffffd1000001f880 0001 00000000 0x0 0x0
0xffffd1000001f900 0001 00000000 0x0 0x0
0xffffd1000001f980 0001 00000000 0x0 0x0
0xffffd1000001fa00 0001 00000000 0x0 0x0
0xffffd1000001fa80 0001 00000000 0x0 0x0
0xffffd1000001fb00 0001 00000000 0x0 0x0
0xffffd1000001fb80 0001 00000000 0x0 0x0
0xffffd1000001fc00 0001 00000000 0x0 0x0
0xffffd1000001fc80 0001 00000000 0x0 0x0
0xffffd1000001fd00 0001 00000000 0x0 0x0
0xffffd1000001fd80 0001 00000000 0x0 0x0
0xffffd1000001fe00 0001 00000000 0x0 0x0
0xffffd1000001fe80 0001 00000000 0x0 0x0
0xffffd1000001ff00 0001 00000000 0x0 0x0
0xffffd1000001ff80 0001 00000000 0x0 0x0
0xffffd10000020000 0001 00000000 0x0 0x0
0xffffd10000020080 0001 00000000 0x0 0x0
0xffffd10000020100 0001 00000000 0x0 0x0
0xffffd10000020180 0001 00000000 0x0 0x0
0xffffd10000020200 0001 00000000 0x0 0x0
0xffffd10000020280 0001 00000000 0x0 0x0
0xffffd10000020300 0001 00000000 0x0 0x0
0xffffd10000020380 0001 00000000 0x0 0x0
0xffffd10000020400 0001 00000000 0x0 0x0
0xffffd10000020480 0001 00000000 0x0 0x0
0xffffd10000020500 0001 00000000 0x0 0x0
0xffffd10000020580 0001 00000000 0x0 0x0
0xffffd10000020600 0001 00000000 0x0 0x0
0xffffd10000020680 0001 00000000 0x0 0x0
0xffffd10000020700 0001 00000000 0x0 0x0
0xffffd10000020780 0001 00000000 0x0 0x0
0xffffd10000020800 0001 00000000 0x0 0x0
0xffffd10000020880 0001 00000000 0x0 0x0
0xffffd10000020900 0001 00000000 0x0 0x0
0xffffd10000020980 0001 00000000 0x0 0x0
0xffffd10000020a00 0001 00000000 0x0 0x0
0xffffd10000020a80 0001 00000000 0x0 0x0
0xffffd10000020b00 0001 00000000 0x0 0x0
0xffffd10000020b80 0001 00000000 0x0 0x0
0xffffd10000020c00 0001 00000000 0x0 0x0
0xffffd10000020c80 0001 00000000 0x0 0x0
0xffffd10000020d00 0001 00000000 0x0 0x0
0xffffd10000020d80 0001 00000000 0x0 0x0
0xffffd10000020e00 0001 00000000 0x0 0x0
0xffffd10000020e80 0001 00000000 0x0 0x0
0xffffd10000020f00 0001 00000000 0x0 0x0
0xffffd10000020f80 0001 00000000 0x0 0x0
0xffffd10000021000 0001 00000000 0x0 0x0
0xffffd10000021080 0001 00000000 0x0 0x0
0xffffd10000021100 0001 00000000 0x0 0x0
0xffffd10000021180 0001 00000000 0x0 0x0
0xffffd10000021200 0001 00000000 0x0 0x0
0xffffd10000021280 0001 00000000 0x0 0x0
0xffffd10000021300 0001 00000000 0x0 0x0
0xffffd10000021380 0001 00000000 0x0 0x0
0xffffd10000021400 0001 00000000 0x0 0x0
0xffffd10000021480 0001 00000000 0x0 0x0
0xffffd10000021500 0001 00000000 0x0 0x0
0xffffd10000021580 0001 00000000 0x0 0x0
0xffffd10000021600 0001 00000000 0x0 0x0
0xffffd10000021680 0001 00000000 0x0 0x0
0xffffd10000021700 0001 00000000 0x0 0x0
0xffffd10000021780 0001 00000000 0x0 0x0
0xffffd10000021800 0001 00000000 0x0 0x0
0xffffd10000021880 0001 00000000 0x0 0x0
0xffffd10000021900 0001 00000000 0x0 0x0
0xffffd10000021980 0001 00000000 0x0 0x0
0xffffd10000021a00 0001 00000000 0x0 0x0
0xffffd10000021a80 0001 00000000 0x0 0x0
0xffffd10000021b00 0001 00000000 0x0 0x0
0xffffd10000021b80 0001 00000000 0x0 0x0
0xffffd10000021c00 0001 00000000 0x0 0x0
0xffffd10000021c80 0001 00000000 0x0 0x0
0xffffd10000021d00 0001 00000000 0x0 0x0
0xffffd10000021d80 0001 00000000 0x0 0x0
0xffffd10000021e00 0001 00000000 0x0 0x0
0xffffd10000021e80 0001 00000000 0x0 0x0
0xffffd10000021f00 0001 00000000 0x0 0x0
0xffffd10000021f80 0001 00000000 0x0 0x0
0xffffd10000022000 0001 00000000 0x0 0x0
0xffffd10000022080 0001 00000000 0x0 0x0
0xffffd10000022100 0001 00000000 0x0 0x0
0xffffd10000022180 0001 00000000 0x0 0x0
0xffffd10000022200 0001 00000000 0x0 0x0
0xffffd10000022280 0001 00000000 0x0 0x0
0xffffd10000022300 0001 00000000 0x0 0x0
0xffffd10000022380 0001 00000000 0x0 0x0
0xffffd10000022400 0001 00000000 0x0 0x0
0xffffd10000022480 0001 00000000 0x0 0x0
0xffffd10000022500 0001 00000000 0x0 0x0
0xffffd10000022580 0001 00000000 0x0 0x0
0xffffd10000022600 0001 00000000 0x0 0x0
0xffffd10000022680 0001 00000000 0x0 0x0
0xffffd10000022700 0001 00000000 0x0 0x0
0xffffd10000022780 0001 00000000 0x0 0x0
0xffffd10000022800 0001 00000000 0x0 0x0
0xffffd10000022880 0001 00000000 0x0 0x0
0xffffd10000022900 0001 00000000 0x0 0x0
0xffffd10000022980 0001 00000000 0x0 0x0
0xffffd10000022a00 0001 00000000 0x0 0x0
0xffffd10000022a80 0001 00000000 0x0 0x0
0xffffd10000022b00 0001 00000000 0x0 0x0
0xffffd10000022b80 0001 00000000 0x0 0x0
0xffffd10000022c00 0001 00000000 0x0 0x0
0xffffd10000022c80 0001 00000000 0x0 0x0
0xffffd10000022d00 0001 00000000 0x0 0x0
0xffffd10000022d80 0001 00000000 0x0 0x0
0xffffd10000022e00 0001 00000000 0x0 0x0
0xffffd10000022e80 0001 00000000 0x0 0x0
0xffffd10000022f00 0001 00000000 0x0 0x0
0xffffd10000022f80 0001 00000000 0x0 0x0
0xffffd10000023000 0001 00000000 0x0 0x0
0xffffd10000023080 0001 00000000 0x0 0x0
0xffffd10000023100 0001 00000000 0x0 0x0
0xffffd10000023180 0001 00000000 0x0 0x0
0xffffd10000023200 0001 00000000 0x0 0x0
0xffffd10000023280 0001 00000000 0x0 0x0
0xffffd10000023300 0001 00000000 0x0 0x0
0xffffd10000023380 0001 00000000 0x0 0x0
0xffffd10000023400 0001 00000000 0x0 0x0
0xffffd10000023480 0001 00000000 0x0 0x0
0xffffd10000023500 0001 00000000 0x0 0x0
0xffffd10000023580 0001 00000000 0x0 0x0
0xffffd10000023600 0001 00000000 0x0 0x0
0xffffd10000023680 0001 00000000 0x0 0x0
0xffffd10000023700 0001 00000000 0x0 0x0
0xffffd10000023780 0001 00000000 0x0 0x0
0xffffd10000023800 0001 00000000 0x0 0x0
0xffffd10000023880 0001 00000000 0x0 0x0
0xffffd10000023900 0001 00000000 0x0 0x0
0xffffd10000023980 0001 00000000 0x0 0x0
0xffffd10000023a00 0001 00000000 0x0 0x0
0xffffd10000023a80 0001 00000000 0x0 0x0
0xffffd10000023b00 0001 00000000 0x0 0x0
0xffffd10000023b80 0001 00000000 0x0 0x0
0xffffd10000023c00 0001 00000000 0x0 0x0
0xffffd10000023c80 0001 00000000 0x0 0x0
0xffffd10000023d00 0001 00000000 0x0 0x0
0xffffd10000023d80 0001 00000000 0x0 0x0
0xffffd10000023e00 0001 00000000 0x0 0x0
0xffffd10000023e80 0001 00000000 0x0 0x0
0xffffd10000023f00 0001 00000000 0x0 0x0
0xffffd10000023f80 0001 00000000 0x0 0x0
0xffffd10000024000 0001 00000000 0x0 0x0
0xffffd10000024080 0001 00000000 0x0 0x0
0xffffd10000024100 0001 00000000 0x0 0x0
0xffffd10000024180 0001 00000000 0x0 0x0
0xffffd10000024200 0001 00000000 0x0 0x0
0xffffd10000024280 0001 00000000 0x0 0x0
0xffffd10000024300 0001 00000000 0x0 0x0
0xffffd10000024380 0001 00000000 0x0 0x0
0xffffd10000024400 0001 00000000 0x0 0x0
0xffffd10000024480 0001 00000000 0x0 0x0
0xffffd10000024500 0001 00000000 0x0 0x0
0xffffd10000024580 0001 00000000 0x0 0x0
0xffffd10000024600 0001 00000000 0x0 0x0
0xffffd10000024680 0001 00000000 0x0 0x0
0xffffd10000024700 0001 00000000 0x0 0x0
0xffffd10000024780 0001 00000000 0x0 0x0
0xffffd10000024800 0001 00000000 0x0 0x0
0xffffd10000024880 0001 00000000 0x0 0x0
0xffffd10000024900 0001 00000000 0x0 0x0
0xffffd10000024980 0001 00000000 0x0 0x0
0xffffd10000024a00 0001 00000000 0x0 0x0
0xffffd10000024a80 0001 00000000 0x0 0x0
0xffffd10000024b00 0001 00000000 0x0 0x0
0xffffd10000024b80 0001 00000000 0x0 0x0
0xffffd10000024c00 0001 00000000 0x0 0x0
0xffffd10000024c80 0001 00000000 0x0 0x0
0xffffd10000024d00 0001 00000000 0x0 0x0
0xffffd10000024d80 0001 00000000 0x0 0x0
0xffffd10000024e00 0001 00000000 0x0 0x0
0xffffd10000024e80 0001 00000000 0x0 0x0
0xffffd10000024f00 0001 00000000 0x0 0x0
0xffffd10000024f80 0001 00000000 0x0 0x0
0xffffd10000025000 0001 00000000 0x0 0x0
0xffffd10000025080 0001 00000000 0x0 0x0
0xffffd10000025100 0001 00000000 0x0 0x0
0xffffd10000025180 0001 00000000 0x0 0x0
0xffffd10000025200 0001 00000000 0x0 0x0
0xffffd10000025280 0001 00000000 0x0 0x0
0xffffd10000025300 0001 00000000 0x0 0x0
0xffffd10000025380 0001 00000000 0x0 0x0
0xffffd10000025400 0001 00000000 0x0 0x0
0xffffd10000025480 0001 00000000 0x0 0x0
0xffffd10000025500 0001 00000000 0x0 0x0
0xffffd10000025580 0001 00000000 0x0 0x0
0xffffd10000025600 0001 00000000 0x0 0x0
0xffffd10000025680 0001 00000000 0x0 0x0
0xffffd10000025700 0001 00000000 0x0 0x0
0xffffd10000025780 0001 00000000 0x0 0x0
0xffffd10000025800 0001 00000000 0x0 0x0
0xffffd10000025880 0001 00000000 0x0 0x0
0xffffd10000025900 0001 00000000 0x0 0x0
0xffffd10000025980 0001 00000000 0x0 0x0
0xffffd10000025a00 0001 00000000 0x0 0x0
0xffffd10000025a80 0001 00000000 0x0 0x0
0xffffd10000025b00 0001 00000000 0x0 0x0
0xffffd10000025b80 0001 00000000 0x0 0x0
0xffffd10000025c00 0001 00000000 0x0 0x0
0xffffd10000025c80 0001 00000000 0x0 0x0
0xffffd10000025d00 0001 00000000 0x0 0x0
0xffffd10000025d80 0001 00000000 0x0 0x0
0xffffd10000025e00 0001 00000000 0x0 0x0
0xffffd10000025e80 0001 00000000 0x0 0x0
0xffffd10000025f00 0001 00000000 0x0 0x0
0xffffd10000025f80 0001 00000000 0x0 0x0
0xffffd10000026000 0001 00000000 0x0 0x0
0xffffd10000026080 0001 00000000 0x0 0x0
0xffffd10000026100 0001 00000000 0x0 0x0
0xffffd10000026180 0001 00000000 0x0 0x0
0xffffd10000026200 0001 00000000 0x0 0x0
0xffffd10000026280 0001 00000000 0x0 0x0
0xffffd10000026300 0001 00000000 0x0 0x0
0xffffd10000026380 0001 00000000 0x0 0x0
0xffffd10000026400 0001 00000000 0x0 0x0
0xffffd10000026480 0001 00000000 0x0 0x0
0xffffd10000026500 0001 00000000 0x0 0x0
0xffffd10000026580 0001 00000000 0x0 0x0
0xffffd10000026600 0001 00000000 0x0 0x0
0xffffd10000026680 0001 00000000 0x0 0x0
0xffffd10000026700 0001 00000000 0x0 0x0
0xffffd10000026780 0001 00000000 0x0 0x0
0xffffd10000026800 0001 00000000 0x0 0x0
0xffffd10000026880 0001 00000000 0x0 0x0
0xffffd10000026900 0001 00000000 0x0 0x0
0xffffd10000026980 0001 00000000 0x0 0x0
0xffffd10000026a00 0001 00000000 0x0 0x0
0xffffd10000026a80 0001 00000000 0x0 0x0
0xffffd10000026b00 0001 00000000 0x0 0x0
0xffffd10000026b80 0001 00000000 0x0 0x0
0xffffd10000026c00 0001 00000000 0x0 0x0
0xffffd10000026c80 0001 00000000 0x0 0x0
0xffffd10000026d00 0001 00000000 0x0 0x0
0xffffd10000026d80 0001 00000000 0x0 0x0
0xffffd10000026e00 0001 00000000 0x0 0x0
0xffffd10000026e80 0001 00000000 0x0 0x0
0xffffd10000026f00 0001 00000000 0x0 0x0
0xffffd10000026f80 0001 00000000 0x0 0x0
0xffffd10000027000 0001 00000000 0x0 0x0
0xffffd10000027080 0001 00000000 0x0 0x0
0xffffd10000027100 0001 00000000 0x0 0x0
0xffffd10000027180 0001 00000000 0x0 0x0
0xffffd10000027200 0001 00000000 0x0 0x0
0xffffd10000027280 0001 00000000 0x0 0x0
0xffffd10000027300 0001 00000000 0x0 0x0
0xffffd10000027380 0001 00000000 0x0 0x0
0xffffd10000027400 0001 00000000 0x0 0x0
0xffffd10000027480 0001 00000000 0x0 0x0
0xffffd10000027500 0001 00000000 0x0 0x0
0xffffd10000027580 0001 00000000 0x0 0x0
0xffffd10000027600 0001 00000000 0x0 0x0
0xffffd10000027680 0001 00000000 0x0 0x0
0xffffd10000027700 0001 00000000 0x0 0x0
0xffffd10000027780 0001 00000000 0x0 0x0
0xffffd10000027800 0001 00000000 0x0 0x0
0xffffd10000027880 0001 00000000 0x0 0x0
0xffffd10000027900 0001 00000000 0x0 0x0
0xffffd10000027980 0001 00000000 0x0 0x0
0xffffd10000027a00 0001 00000000 0x0 0x0
0xffffd10000027a80 0001 00000000 0x0 0x0
0xffffd10000027b00 0001 00000000 0x0 0x0
0xffffd10000027b80 0001 00000000 0x0 0x0
0xffffd10000027c00 0001 00000000 0x0 0x0
0xffffd10000027c80 0001 00000000 0x0 0x0
0xffffd10000027d00 0001 00000000 0x0 0x0
0xffffd10000027d80 0001 00000000 0x0 0x0
0xffffd10000027e00 0001 00000000 0x0 0x0
0xffffd10000027e80 0001 00000000 0x0 0x0
0xffffd10000027f00 0001 00000000 0x0 0x0
0xffffd10000027f80 0001 00000000 0x0 0x0
0xffffd10000028000 0001 00000000 0x0 0x0
0xffffd10000028080 0001 00000000 0x0 0x0
0xffffd10000028100 0001 00000000 0x0 0x0
0xffffd10000028180 0001 00000000 0x0 0x0
0xffffd10000028200 0001 00000000 0x0 0x0
0xffffd10000028280 0001 00000000 0x0 0x0
0xffffd10000028300 0001 00000000 0x0 0x0
0xffffd10000028380 0001 00000000 0x0 0x0
0xffffd10000028400 0001 00000000 0x0 0x0
0xffffd10000028480 0001 00000000 0x0 0x0
0xffffd10000028500 0001 00000000 0x0 0x0
0xffffd10000028580 0001 00000000 0x0 0x0
0xffffd10000028600 0001 00000000 0x0 0x0
0xffffd10000028680 0001 00000000 0x0 0x0
0xffffd10000028700 0001 00000000 0x0 0x0
0xffffd10000028780 0001 00000000 0x0 0x0
0xffffd10000028800 0001 00000000 0x0 0x0
0xffffd10000028880 0001 00000000 0x0 0x0
0xffffd10000028900 0001 00000000 0x0 0x0
0xffffd10000028980 0001 00000000 0x0 0x0
0xffffd10000028a00 0001 00000000 0x0 0x0
0xffffd10000028a80 0001 00000000 0x0 0x0
0xffffd10000028b00 0001 00000000 0x0 0x0
0xffffd10000028b80 0001 00000000 0x0 0x0
0xffffd10000028c00 0001 00000000 0x0 0x0
0xffffd10000028c80 0001 00000000 0x0 0x0
0xffffd10000028d00 0001 00000000 0x0 0x0
0xffffd10000028d80 0001 00000000 0x0 0x0
0xffffd10000028e00 0001 00000000 0x0 0x0
0xffffd10000028e80 0001 00000000 0x0 0x0
0xffffd10000028f00 0001 00000000 0x0 0x0
0xffffd10000028f80 0001 00000000 0x0 0x0
0xffffd10000029000 0001 00000000 0x0 0x0
0xffffd10000029080 0001 00000000 0x0 0x0
0xffffd10000029100 0001 00000000 0x0 0x0
0xffffd10000029180 0001 00000000 0x0 0x0
0xffffd10000029200 0001 00000000 0x0 0x0
0xffffd10000029280 0001 00000000 0x0 0x0
0xffffd10000029300 0001 00000000 0x0 0x0
0xffffd10000029380 0001 00000000 0x0 0x0
0xffffd10000029400 0001 00000000 0x0 0x0
0xffffd10000029480 0001 00000000 0x0 0x0
0xffffd10000029500 0001 00000000 0x0 0x0
0xffffd10000029580 0001 00000000 0x0 0x0
0xffffd10000029600 0001 00000000 0x0 0x0
0xffffd10000029680 0001 00000000 0x0 0x0
0xffffd10000029700 0001 00000000 0x0 0x0
0xffffd10000029780 0001 00000000 0x0 0x0
0xffffd10000029800 0001 00000000 0x0 0x0
0xffffd10000029880 0001 00000000 0x0 0x0
0xffffd10000029900 0001 00000000 0x0 0x0
0xffffd10000029980 0001 00000000 0x0 0x0
0xffffd10000029a00 0001 00000000 0x0 0x0
0xffffd10000029a80 0001 00000000 0x0 0x0
0xffffd10000029b00 0001 00000000 0x0 0x0
0xffffd10000029b80 0001 00000000 0x0 0x0
0xffffd10000029c00 0001 00000000 0x0 0x0
0xffffd10000029c80 0001 00000000 0x0 0x0
0xffffd10000029d00 0001 00000000 0x0 0x0
0xffffd10000029d80 0001 00000000 0x0 0x0
0xffffd10000029e00 0001 00000000 0x0 0x0
0xffffd10000029e80 0001 00000000 0x0

Tested on:

commit: 0e011ed7 Uglify code to fix build.

git tree: https://github.com/NetBSD/src trunk

console output: https://syzkaller.appspot.com/x/log.txt?x=15794a48080000

patch: https://syzkaller.appspot.com/x/patch.diff?x=17ae67d4080000

syzbot

unread,

Jul 1, 2022, 12:04:10 PM7/1/22

to rias...@netbsd.org, syzkaller-...@googlegroups.com

Hello,

syzbot has tested the proposed patch but the reproducer is still triggering an issue:
MSan: Uninitialized Memory in uiomove

N syz-executor.0 � �b �E � � �9p � syz-executor.0 � �b �E � 0 �� N syz-executor.0 � �b �E � h syz-execprog � �b F � � � 8 N syz-executor.0 � �b +F � 0 h syz-execprog � �b :F � h syz-execprog � �b [F � � � ; syz-executor.3 � �b jF � � 7� ; syz-executor.3 � �b �F � N syz-executor.0 � �b �F � P �� N syz-executor.0 � �b �F � N syz-executor.0 � �b �F N syz-executor.0 � �b A ; syz-executor.3 � �b I � � 7�[ 59.7824489] panic: MSan: Uninitialized Pool Memory From kthread_create()

[ 59.7942725] cpu0: Begin traceback...
[ 59.8024285] vpanic() at netbsd:vpanic+0xc9d
[ 59.8324321] panic() at netbsd:panic+0x1b3 sys/kern/subr_prf.c:210
[ 59.8624286] __msan_warning() at netbsd:__msan_warning+0x11e kmsan_report_inline sys/kern/subr_msan.c:234 [inline]
[ 59.8624286] __msan_warning() at netbsd:__msan_warning+0x11e sys/kern/subr_msan.c:615
[ 59.8924279] uiomove() at netbsd:uiomove+0x498
[ 59.9124268] ttwrite() at netbsd:ttwrite+0x1559 sys/kern/tty.c:2205
[ 59.9624243] comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
[ 60.0224276] cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207
[ 60.0724271] spec_write() at netbsd:spec_write+0x561
[ 60.1224263] VOP_WRITE() at netbsd:VOP_WRITE+0x39b
[ 60.1824266] vn_write() at netbsd:vn_write+0x709
[ 60.2324256] ktrace_thread() at netbsd:ktrace_thread+0xeca ktrwrite sys/kern/kern_ktrace.c:1335 [inline]
[ 60.2324256] ktrace_thread() at netbsd:ktrace_thread+0xeca sys/kern/kern_ktrace.c:1404
[ 60.2524282] cpu0: End traceback...
[ 60.2524282] fatal breakpoint trap in supervisor mode
[ 60.2633574] trap type 1 code 0 rip 0xffffffff802228ad cs 0x8 rflags 0x286 cr2 0x7e702f184ff8 ilevel 0x5 rsp 0xffffa70087782fc0
[ 60.2768109] curlwp 0xffffa7001356a1c0 pid 0.1210 lowest kstack 0xffffa7008777c2c0
Stopped in pid 0.1210 (system) at netbsd:breakpoint+0x5: leave

?
breakpoint() at netbsd:breakpoint+0x5
vpanic() at netbsd:vpanic+0xc9d
panic() at netbsd:panic+0x1b3 sys/kern/subr_prf.c:210
__msan_warning() at netbsd:__msan_warning+0x11e kmsan_report_inline sys/kern/subr_msan.c:234 [inline]
__msan_warning() at netbsd:__msan_warning+0x11e sys/kern/subr_msan.c:615
uiomove() at netbsd:uiomove+0x498
ttwrite() at netbsd:ttwrite+0x1559 sys/kern/tty.c:2205
comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207
spec_write() at netbsd:spec_write+0x561
VOP_WRITE() at netbsd:VOP_WRITE+0x39b
vn_write() at netbsd:vn_write+0x709
ktrace_thread() at netbsd:ktrace_thread+0xeca ktrwrite sys/kern/kern_ktrace.c:1335 [inline]
ktrace_thread() at netbsd:ktrace_thread+0xeca sys/kern/kern_ktrace.c:1404
Panic string: MSan: Uninitialized Pool Memory From kthread_create()

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

323 323 3 0 0 ffffa70013486180 syz-executor.1 ktrsync
827 1212 3 1 0 ffffa700134865c0 syz-executor.3 ktrsync
827 827 3 0 10000000 ffffa70013472580 syz-executor.3 ktrsync
1213 1213 3 0 0 ffffa70013472140 syz-execprog ktrsync
1202 1202 3 1 0 ffffa7001345e980 syz-executor.5 ktrsync
1205 1205 3 0 0 ffffa7001345e540 syz-executor.4 ktrsync
1204 1204 3 0 0 ffffa7001345e100 syz-executor.0 ktrsync
329 329 3 1 0 ffffa7001338b940 syz-executor.3 ktrsync
1128 330 3 1 180 ffffa7001338b500 syz-execprog parked
1128 1094 2 1 140 ffffa7001338b0c0 syz-execprog
1128 1196 3 1 180 ffffa70012b6b900 syz-execprog pipe_rd
1128 1200 3 0 180 ffffa70012b6b4c0 syz-execprog parked
1128 1199 3 1 180 ffffa70012b6b080 syz-execprog parked
1128 1387 3 0 180 ffffa70012ab6780 syz-execprog parked
1128 1380 3 1 1c0 ffffa700122cb6c0 syz-execprog parked
1128 1381 3 0 180 ffffa70012b508c0 syz-execprog parked
1128 1128 3 0 180 ffffa70012b50480 syz-execprog parked
1233 1233 3 1 180 ffffa7001229aac0 sshd select
1070 1070 3 0 180 ffffa700122cb280 getty nanoslp
1069 1069 3 1 180 ffffa7001229a680 getty nanoslp
1126 1126 3 1 180 ffffa7001229a240 getty nanoslp
1115 1115 3 0 1c0 ffffa700121a9600 getty ttyraw
855 855 3 1 180 ffffa70012b50040 sshd select
953 953 3 0 180 ffffa70012416b40 powerd kqueue
689 689 3 0 180 ffffa700124dbb80 syslogd kqueue
602 602 3 0 180 ffffa70012416700 dhcpcd poll
547 547 3 0 180 ffffa70012ab6bc0 dhcpcd poll
546 546 3 0 180 ffffa700124162c0 dhcpcd poll
587 587 3 0 180 ffffa70012ab6340 dhcpcd poll
289 289 3 0 180 ffffa700124db740 dhcpcd poll
288 288 3 0 180 ffffa700122cbb00 dhcpcd poll
351 351 3 0 180 ffffa700124db300 dhcpcd poll
1 1 3 1 180 ffffa70011e39940 init wait
0 >1210 7 0 240 ffffa7001356a1c0 ktrace
0 968 3 0 200 ffffa700121a9a40 physiod physiod
0 194 3 0 200 ffffa700121b5a80 pooldrain pooldrain
0 193 3 0 200 ffffa700121b5640 ioflush syncer
0 192 3 1 200 ffffa700121b5200 pgdaemon pgdaemon
0 169 3 0 200 ffffa700121a91c0 usb7 usbevt
0 167 3 0 200 ffffa700120f6a00 usb6 usbevt
0 165 3 0 200 ffffa700120f65c0 usb5 usbevt
0 164 3 0 200 ffffa700120f6180 usb4 usbevt
0 31 3 0 200 ffffa7001205d9c0 usb3 usbevt
0 63 3 0 200 ffffa7001205d580 usb2 usbevt
0 126 3 0 200 ffffa7001205d140 usb1 usbevt
0 125 3 1 200 ffffa70011e49980 usb0 usbevt
0 124 3 1 200 ffffa70011e49540 usbtask-dr usbtsk
0 123 3 1 200 ffffa700118016c0 usbtask-hc usbtsk
0 122 3 0 200 ffffa70011e49100 npfgc0 npfgcw
0 121 3 1 200 ffffa70011e39500 rt_free rt_free
0 120 3 1 200 ffffa70011e390c0 unpgc unpgc
0 119 3 0 200 ffffa70011e36900 key_timehandler key_timehandler
0 118 3 1 200 ffffa70011e364c0 icmp6_wqinput/1 icmp6_wqinput
0 117 3 0 200 ffffa70011e36080 icmp6_wqinput/0 icmp6_wqinput
0 116 3 0 200 ffffa70011cc48c0 nd6_timer nd6_timer
0 115 3 1 200 ffffa70011cc4480 carp6_wqinput/1 carp6_wqinput
0 114 3 0 200 ffffa70011cc4040 carp6_wqinput/0 carp6_wqinput
0 113 3 1 200 ffffa70011cc2b80 carp_wqinput/1 carp_wqinput
0 112 3 0 200 ffffa70011cc2740 carp_wqinput/0 carp_wqinput
0 111 3 1 200 ffffa70011cc3780 icmp_wqinput/1 icmp_wqinput
0 110 3 0 200 ffffa70011cc3340 icmp_wqinput/0 icmp_wqinput
0 109 3 0 200 ffffa70011cc3bc0 rt_timer rt_timer
0 108 3 0 200 ffffa70011cc2300 vmem_rehash vmem_rehash
0 99 3 0 200 ffffa70011804b40 entbutler entropy
0 98 3 0 200 ffffa70011804700 viomb balloon
0 97 3 1 200 ffffa700118042c0 vioif0_txrx/1 vioif0_txrx
0 96 3 0 200 ffffa70011801b00 vioif0_txrx/0 vioif0_txrx
0 29 3 0 200 ffffa70011801280 scsibus0 sccomp
0 28 3 0 200 ffffa700103afac0 pms0 pmsreset
0 27 3 1 200 ffffa700103af680 xcall/1 xcall
0 26 1 1 200 ffffa700103af240 softser/1
0 25 1 1 200 ffffa700103ada80 softclk/1
0 24 1 1 200 ffffa700103ad640 softbio/1
0 23 1 1 200 ffffa700103ad200 softnet/1
0 22 1 1 201 ffffa7000f1f1a40 idle/1
0 21 3 0 200 ffffa7000f1f1600 lnxsyswq lnxsyswq
0 20 3 0 200 ffffa7000f1f11c0 lnxubdwq lnxubdwq
0 19 3 0 200 ffffa7000f1f0a00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffffa7000f1f05c0 lnxlngwq lnxlngwq
0 17 3 0 200 ffffa7000f1f0180 lnxhipwq lnxhipwq
0 16 3 0 200 ffffa7000f1eb9c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffffa7000f1eb580 sysmon smtaskq
0 14 3 0 200 ffffa7000f1eb140 pmfsuspend pmfsuspend
0 13 3 0 200 ffffa7000f1e7980 pmfevent pmfevent
0 12 3 0 200 ffffa7000f1e7540 sopendfree sopendfr
0 11 3 0 200 ffffa7000f1e7100 iflnkst iflnkst
0 10 3 0 200 ffffa7000f1dd940 nfssilly nfssilly
0 9 3 0 200 ffffa7000f1dd500 vdrain vdrain
0 8 3 0 200 ffffa7000f1dd0c0 modunload mod_unld
0 7 3 0 200 ffffa7000ebda900 xcall/0 xcall
0 6 1 0 200 ffffa7000ebda4c0 softser/0
0 5 1 0 200 ffffa7000ebda080 softclk/0
0 4 1 0 200 ffffa7000ebd88c0 softbio/0
0 3 1 0 200 ffffa7000ebd8480 softnet/0
0 2 1 0 201 ffffa7000ebd8040 idle/0
0 > 0 7 1 240 ffffffff86868940 swapper
[Locks tracked through LWPs]

****** LWP 547.547 (dhcpcd) @ 0xffffa70012ab6bc0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive
initialized : 0xffffffff8517fd43
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa70012ab6bc0 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 546.546 (dhcpcd) @ 0xffffa700124162c0, l_stat=3

relevant lwp : 0xffffa700124162c0 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 288.288 (dhcpcd) @ 0xffffa700122cbb00, l_stat=3

relevant lwp : 0xffffa700122cbb00 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 351.351 (dhcpcd) @ 0xffffa700124db300, l_stat=3

relevant lwp : 0xffffa700124db300 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffa7000f1e7100, l_stat=3

relevant lwp : 0xffffa7000f1e7100 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffa7000ebda080, l_stat=1

relevant lwp : 0xffffa7000ebda080 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff86868940, l_stat=7

relevant lwp : 0xffffffff86868940 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin
initialized : 0xffffffff85064a34
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa7001356a1c0 last held: 0xffffa7001356a1c0
last locked* : 0xffffffff8530c154 unlocked : 0xffffffff83f42f47

curcpu holds : 1 wanted by: 000000000000000000

* Lock 1 (initialized at kprintf_init)
lock address : 0xffffffff868a9c00 type : spin
initialized : 0xffffffff8539ccac
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa7001356a1c0 last held: 0xffffa7001356a1c0

last locked* : 0xffffffff8539dad4 unlocked : 0xffffffff8539e4de
owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON

0xffffa70000017180 0041 00000000 0x0 0x0
0xffffa70000017200 0041 00000000 0x0 0x0
0xffffa70000017280 0041 00000000 0x0 0x0

0xffffa70000017300 0041 00000000 0x0 0x0
0xffffa70000017380 0041 00000000 0x0 0x0
0xffffa70000017400 0041 00000000 0x0 0x0
0xffffa70000017480 0041 00000000 0x0 0x0
0xffffa70000017500 0041 00000000 0x0 0x0
0xffffa70000017580 0041 00000000 0x0 0x0
0xffffa70000017600 0041 00000000 0x0 0x0
0xffffa70000017680 0041 00000000 0x0 0x0
0xffffa70000017700 0041 00000000 0x0 0x0
0xffffa70000017780 0041 00000000 0x0 0x0
0xffffa70000017800 0041 00000000 0x0 0x0
0xffffa70000017880 0041 00000000 0x0 0x0
0xffffa70000017900 0041 00000000 0x0 0x0
0xffffa70000017980 0041 00000000 0x0 0x0
0xffffa70000017a00 0041 00000000 0x0 0x0
0xffffa70000017a80 0041 00000000 0x0 0x0
0xffffa70000017b00 0041 00000000 0x0 0x0
0xffffa70000017b80 0041 00000000 0x0 0x0
0xffffa70000017c00 0041 00000000 0x0 0x0
0xffffa70000017c80 0041 00000000 0x0 0x0
0xffffa70000017d00 0041 00000000 0x0 0x0
0xffffa70000017d80 0041 00000000 0x0 0x0
0xffffa70000017e00 0041 00000000 0x0 0x0
0xffffa70000017e80 0041 00000000 0x0 0x0
0xffffa70000017f00 0041 00000000 0x0 0x0
0xffffa70000017f80 0041 00000000 0x0 0x0

0xffffa70000018000 0041 00000000 0x0 0x0
0xffffa70000018080 0041 00000000 0x0 0x0
0xffffa70000018100 0041 00000000 0x0 0x0
0xffffa70000018180 0041 00000000 0x0 0x0
0xffffa70000018200 0041 00000000 0x0 0x0
0xffffa70000018280 0041 00000000 0x0 0x0

0xffffa70000018300 0041 00000000 0x0 0x0
0xffffa70000018380 0041 00000000 0x0 0x0
0xffffa70000018400 0041 00000000 0x0 0x0
0xffffa70000018480 0041 00000000 0x0 0x0
0xffffa70000018500 0041 00000000 0x0 0x0
0xffffa70000018580 0041 00000000 0x0 0x0
0xffffa70000018600 0041 00000000 0x0 0x0
0xffffa70000018680 0041 00000000 0x0 0x0
0xffffa70000018700 0041 00000000 0x0 0x0
0xffffa70000018780 0041 00000000 0x0 0x0
0xffffa70000018800 0041 00000000 0x0 0x0
0xffffa70000018880 0041 00000000 0x0 0x0
0xffffa70000018900 0041 00000000 0x0 0x0
0xffffa70000018980 0041 00000000 0x0 0x0
0xffffa70000018a00 0041 00000000 0x0 0x0
0xffffa70000018a80 0041 00000000 0x0 0x0
0xffffa70000018b00 0041 00000000 0x0 0x0
0xffffa70000018b80 0041 00000000 0x0 0x0
0xffffa70000018c00 0041 00000000 0x0 0x0
0xffffa70000018c80 0041 00000000 0x0 0x0
0xffffa70000018d00 0041 00000000 0x0 0x0
0xffffa70000018d80 0041 00000000 0x0 0x0
0xffffa70000018e00 0041 00000000 0x0 0x0
0xffffa70000018e80 0041 00000000 0x0 0x0
0xffffa70000018f00 0041 00000000 0x0 0x0
0xffffa70000018f80 0041 00000000 0x0 0x0

0xffffa70000019000 0041 00000000 0x0 0x0
0xffffa70000019080 0041 00000000 0x0 0x0
0xffffa70000019100 0041 00000000 0x0 0x0
0xffffa70000019180 0041 00000000 0x0 0x0
0xffffa70000019200 0041 00000000 0x0 0x0
0xffffa70000019280 0041 00000000 0x0 0x0

0xffffa70000019300 0041 00000000 0x0 0x0
0xffffa70000019380 0041 00000000 0x0 0x0
0xffffa70000019400 0041 00000000 0x0 0x0
0xffffa70000019480 0041 00000000 0x0 0x0
0xffffa70000019500 0041 00000000 0x0 0x0
0xffffa70000019580 0041 00000000 0x0 0x0
0xffffa70000019600 0041 00000000 0x0 0x0
0xffffa70000019680 0041 00000000 0x0 0x0
0xffffa70000019700 0041 00000000 0x0 0x0
0xffffa70000019780 0041 00000000 0x0 0x0
0xffffa70000019800 0041 00000000 0x0 0x0
0xffffa70000019880 0041 00000000 0x0 0x0
0xffffa70000019900 0041 00000000 0x0 0x0
0xffffa70000019980 0041 00000000 0x0 0x0
0xffffa70000019a00 0041 00000000 0x0 0x0
0xffffa70000019a80 0041 00000000 0x0 0x0
0xffffa70000019b00 0041 00000000 0x0 0x0
0xffffa70000019b80 0041 00000000 0x0 0x0
0xffffa70000019c00 0041 00000000 0x0 0x0
0xffffa70000019c80 0041 00000000 0x0 0x0
0xffffa70000019d00 0041 00000000 0x0 0x0
0xffffa70000019d80 0041 00000000 0x0 0x0
0xffffa70000019e00 0041 00000000 0x0 0x0
0xffffa70000019e80 0041 00000000 0x0 0x0
0xffffa70000019f00 0041 00000000 0x0 0x0
0xffffa70000019f80 0041 00000000 0x0 0x0
0xffffa7000001a000 0041 00000000 0x0 0x0
0xffffa7000001a080 0041 00000000 0x0 0x0
0xffffa7000001a100 0041 00000000 0x0 0x0
0xffffa7000001a180 0041 00000000 0x0 0x0
0xffffa7000001a200 0041 00000000 0x0 0x0
0xffffa7000001a280 0041 00000000 0x0 0x0
0xffffa7000001a300 0041 00000000 0x0 0x0
0xffffa7000001a380 0041 00000000 0x0 0x0
0xffffa7000001a400 0041 00000000 0x0 0x0
0xffffa7000001a480 0041 00000000 0x0 0x0
0xffffa7000001a500 0041 00000000 0x0 0x0
0xffffa7000001a580 0041 00000000 0x0 0x0
0xffffa7000001a600 0041 00000000 0x0 0x0
0xffffa7000001a680 0041 00000000 0x0 0x0
0xffffa7000001a700 0041 00000000 0x0 0x0
0xffffa7000001a780 0041 00000000 0x0 0x0
0xffffa7000001a800 0041 00000000 0x0 0x0
0xffffa7000001a880 0041 00000000 0x0 0x0
0xffffa7000001a900 0041 00000000 0x0 0x0
0xffffa7000001a980 0041 00000000 0x0 0x0
0xffffa7000001aa00 0041 00000000 0x0 0x0
0xffffa7000001aa80 0041 00000000 0x0 0x0
0xffffa7000001ab00 0041 00000000 0x0 0x0
0xffffa7000001ab80 0041 00000000 0x0 0x0
0xffffa7000001ac00 0041 00000000 0x0 0x0
0xffffa7000001ac80 0041 00000000 0x0 0x0
0xffffa7000001ad00 0041 00000000 0x0 0x0
0xffffa7000001ad80 0041 00000000 0x0 0x0
0xffffa7000001ae00 0041 00000000 0x0 0x0
0xffffa7000001ae80 0041 00000000 0x0 0x0
0xffffa7000001af00 0041 00000000 0x0 0x0
0xffffa7000001af80 0041 00000000 0x0 0x0
0xffffa7000001b000 0041 00000000 0x0 0x0
0xffffa7000001b080 0041 00000000 0x0 0x0
0xffffa7000001b100 0041 00000000 0x0 0x0

0xffffa7000001b180 0041 00000000 0x0 0x0
0xffffa7000001b200 0041 00000000 0x0 0x0
0xffffa7000001b280 0041 00000000 0x0 0x0
0xffffa7000001b300 0041 00000000 0x0 0x0
0xffffa7000001b380 0041 00000000 0x0 0x0

0xffffa7000001b400 0041 00000000 0x0 0x0
0xffffa7000001b480 0041 00000000 0x0 0x0
0xffffa7000001b500 0041 00000000 0x0 0x0
0xffffa7000001b580 0041 00000000 0x0 0x0
0xffffa7000001b600 0041 00000000 0x0 0x0
0xffffa7000001b680 0041 00000000 0x0 0x0
0xffffa7000001b700 0041 00000000 0x0 0x0
0xffffa7000001b780 0041 00000000 0x0 0x0
0xffffa7000001b800 0041 00000000 0x0 0x0
0xffffa7000001b880 0041 00000000 0x0 0x0
0xffffa7000001b900 0041 00000000 0x0 0x0
0xffffa7000001b980 0041 00000000 0x0 0x0
0xffffa7000001ba00 0041 00000000 0x0 0x0
0xffffa7000001ba80 0041 00000000 0x0 0x0
0xffffa7000001bb00 0041 00000000 0x0 0x0
0xffffa7000001bb80 0041 00000000 0x0 0x0
0xffffa7000001bc00 0041 00000000 0x0 0x0
0xffffa7000001bc80 0041 00000000 0x0 0x0
0xffffa7000001bd00 0041 00000000 0x0 0x0
0xffffa7000001bd80 0041 00000000 0x0 0x0
0xffffa7000001be00 0041 00000000 0x0 0x0
0xffffa7000001be80 0041 00000000 0x0 0x0
0xffffa7000001bf00 0041 00000000 0x0 0x0
0xffffa7000001bf80 0041 00000000 0x0 0x0

0xffffa7000001c000 0041 00000000 0x0 0x0
0xffffa7000001c080 0041 00000000 0x0 0x0
0xffffa7000001c100 0041 00000000 0x0 0x0
0xffffa7000001c180 0041 00000000 0x0 0x0
0xffffa7000001c200 0041 00000000 0x0 0x0
0xffffa7000001c280 0041 00000000 0x0 0x0
0xffffa7000001c300 0041 00000000 0x0 0x0
0xffffa7000001c380 0041 00000000 0x0 0x0

0xffffa7000001c400 0041 00000000 0x0 0x0
0xffffa7000001c480 0041 00000000 0x0 0x0
0xffffa7000001c500 0041 00000000 0x0 0x0
0xffffa7000001c580 0041 00000000 0x0 0x0
0xffffa7000001c600 0041 00000000 0x0 0x0
0xffffa7000001c680 0041 00000000 0x0 0x0
0xffffa7000001c700 0041 00000000 0x0 0x0
0xffffa7000001c780 0001 00000000 0x0 0x0
0xffffa7000001c800 0001 00000000 0x0 0x0
0xffffa7000001c880 0001 00000000 0x0 0x0
0xffffa7000001c900 0001 00000000 0x0 0x0
0xffffa7000001c980 0001 00000000 0x0 0x0
0xffffa7000001ca00 0001 00000000 0x0 0x0
0xffffa7000001ca80 0001 00000000 0x0 0x0
0xffffa7000001cb00 0001 00000000 0x0 0x0
0xffffa7000001cb80 0001 00000000 0x0 0x0
0xffffa7000001cc00 0001 00000000 0x0 0x0
0xffffa7000001cc80 0001 00000000 0x0 0x0
0xffffa7000001cd00 0001 00000000 0x0 0x0
0xffffa7000001cd80 0001 00000000 0x0 0x0
0xffffa7000001ce00 0001 00000000 0x0 0x0
0xffffa7000001ce80 0001 00000000 0x0 0x0
0xffffa7000001cf00 0001 00000000 0x0 0x0
0xffffa7000001cf80 0001 00000000 0x0 0x0
0xffffa7000001d000 0001 00000000 0x0 0x0
0xffffa7000001d080 0001 00000000 0x0 0x0
0xffffa7000001d100 0001 00000000 0x0 0x0
0xffffa7000001d180 0001 00000000 0x0 0x0
0xffffa7000001d200 0001 00000000 0x0 0x0
0xffffa7000001d280 0001 00000000 0x0 0x0
0xffffa7000001d300 0001 00000000 0x0 0x0
0xffffa7000001d380 0001 00000000 0x0 0x0
0xffffa7000001d400 0001 00000000 0x0 0x0
0xffffa7000001d480 0001 00000000 0x0 0x0
0xffffa7000001d500 0001 00000000 0x0 0x0
0xffffa7000001d580 0001 00000000 0x0 0x0
0xffffa7000001d600 0001 00000000 0x0 0x0
0xffffa7000001d680 0001 00000000 0x0 0x0
0xffffa7000001d700 0001 00000000 0x0 0x0
0xffffa7000001d780 0001 00000000 0x0 0x0
0xffffa7000001d800 0001 00000000 0x0 0x0
0xffffa7000001d880 0001 00000000 0x0 0x0
0xffffa7000001d900 0001 00000000 0x0 0x0
0xffffa7000001d980 0001 00000000 0x0 0x0
0xffffa7000001da00 0001 00000000 0x0 0x0
0xffffa7000001da80 0001 00000000 0x0 0x0
0xffffa7000001db00 0001 00000000 0x0 0x0
0xffffa7000001db80 0001 00000000 0x0 0x0
0xffffa7000001dc00 0001 00000000 0x0 0x0
0xffffa7000001dc80 0001 00000000 0x0 0x0
0xffffa7000001dd00 0001 00000000 0x0 0x0
0xffffa7000001dd80 0001 00000000 0x0 0x0
0xffffa7000001de00 0001 00000000 0x0 0x0
0xffffa7000001de80 0001 00000000 0x0 0x0
0xffffa7000001df00 0001 00000000 0x0 0x0
0xffffa7000001df80 0001 00000000 0x0 0x0
0xffffa7000001e000 0001 00000000 0x0 0x0
0xffffa7000001e080 0001 00000000 0x0 0x0
0xffffa7000001e100 0001 00000000 0x0 0x0
0xffffa7000001e180 0001 00000000 0x0 0x0
0xffffa7000001e200 0001 00000000 0x0 0x0
0xffffa7000001e280 0001 00000000 0x0 0x0
0xffffa7000001e300 0001 00000000 0x0 0x0
0xffffa7000001e380 0001 00000000 0x0 0x0
0xffffa7000001e400 0001 00000000 0x0 0x0
0xffffa7000001e480 0001 00000000 0x0 0x0
0xffffa7000001e500 0001 00000000 0x0 0x0
0xffffa7000001e580 0001 00000000 0x0 0x0
0xffffa7000001e600 0001 00000000 0x0 0x0
0xffffa7000001e680 0001 00000000 0x0 0x0
0xffffa7000001e700 0001 00000000 0x0 0x0
0xffffa7000001e780 0001 00000000 0x0 0x0
0xffffa7000001e800 0001 00000000 0x0 0x0
0xffffa7000001e880 0001 00000000 0x0 0x0
0xffffa7000001e900 0001 00000000 0x0 0x0
0xffffa7000001e980 0001 00000000 0x0 0x0
0xffffa7000001ea00 0001 00000000 0x0 0x0
0xffffa7000001ea80 0001 00000000 0x0 0x0
0xffffa7000001eb00 0001 00000000 0x0 0x0
0xffffa7000001eb80 0001 00000000 0x0 0x0
0xffffa7000001ec00 0001 00000000 0x0 0x0
0xffffa7000001ec80 0001 00000000 0x0 0x0
0xffffa7000001ed00 0001 00000000 0x0 0x0
0xffffa7000001ed80 0001 00000000 0x0 0x0
0xffffa7000001ee00 0001 00000000 0x0 0x0
0xffffa7000001ee80 0001 00000000 0x0 0x0
0xffffa7000001ef00 0001 00000000 0x0 0x0
0xffffa7000001ef80 0001 00000000 0x0 0x0
0xffffa7000001f000 0001 00000000 0x0 0x0
0xffffa7000001f080 0001 00000000 0x0 0x0
0xffffa7000001f100 0001 00000000 0x0 0x0
0xffffa7000001f180 0001 00000000 0x0 0x0
0xffffa7000001f200 0001 00000000 0x0 0x0
0xffffa7000001f280 0001 00000000 0x0 0x0
0xffffa7000001f300 0001 00000000 0x0 0x0
0xffffa7000001f380 0001 00000000 0x0 0x0
0xffffa7000001f400 0001 00000000 0x0 0x0
0xffffa7000001f480 0001 00000000 0x0 0x0
0xffffa7000001f500 0001 00000000 0x0 0x0
0xffffa7000001f580 0001 00000000 0x0 0x0
0xffffa7000001f600 0001 00000000 0x0 0x0
0xffffa7000001f680 0001 00000000 0x0 0x0
0xffffa7000001f700 0001 00000000 0x0 0x0
0xffffa7000001f780 0001 00000000 0x0 0x0
0xffffa7000001f800 0001 00000000 0x0 0x0
0xffffa7000001f880 0001 00000000 0x0 0x0
0xffffa7000001f900 0001 00000000 0x0 0x0
0xffffa7000001f980 0001 00000000 0x0 0x0
0xffffa7000001fa00 0001 00000000 0x0 0x0
0xffffa7000001fa80 0001 00000000 0x0 0x0
0xffffa7000001fb00 0001 00000000 0x0 0x0
0xffffa7000001fb80 0001 00000000 0x0 0x0
0xffffa7000001fc00 0001 00000000 0x0 0x0
0xffffa7000001fc80 0001 00000000 0x0 0x0
0xffffa7000001fd00 0001 00000000 0x0 0x0
0xffffa7000001fd80 0001 00000000 0x0 0x0
0xffffa7000001fe00 0001 00000000 0x0 0x0
0xffffa7000001fe80 0001 00000000 0x0 0x0
0xffffa7000001ff00 0001 00000000 0x0 0x0
0xffffa7000001ff80 0001 00000000 0x0 0x0
0xffffa70000020000 0001 00000000 0x0 0x0
0xffffa70000020080 0001 00000000 0x0 0x0
0xffffa70000020100 0001 00000000 0x0 0x0
0xffffa70000020180 0001 00000000 0x0 0x0
0xffffa70000020200 0001 00000000 0x0 0x0
0xffffa70000020280 0001 00000000 0x0 0x0
0xffffa70000020300 0001 00000000 0x0 0x0
0xffffa70000020380 0001 00000000 0x0 0x0
0xffffa70000020400 0001 00000000 0x0 0x0
0xffffa70000020480 0001 00000000 0x0 0x0
0xffffa70000020500 0001 00000000 0x0 0x0
0xffffa70000020580 0001 00000000 0x0 0x0
0xffffa70000020600 0001 00000000 0x0 0x0
0xffffa70000020680 0001 00000000 0x0 0x0
0xffffa70000020700 0001 00000000 0x0 0x0
0xffffa70000020780 0001 00000000 0x0 0x0
0xffffa70000020800 0001 00000000 0x0 0x0
0xffffa70000020880 0001 00000000 0x0 0x0
0xffffa70000020900 0001 00000000 0x0 0x0
0xffffa70000020980 0001 00000000 0x0 0x0
0xffffa70000020a00 0001 00000000 0x0 0x0
0xffffa70000020a80 0001 00000000 0x0 0x0
0xffffa70000020b00 0001 00000000 0x0 0x0
0xffffa70000020b80 0001 00000000 0x0 0x0
0xffffa70000020c00 0001 00000000 0x0 0x0
0xffffa70000020c80 0001 00000000 0x0 0x0
0xffffa70000020d00 0001 00000000 0x0 0x0
0xffffa70000020d80 0001 00000000 0x0 0x0
0xffffa70000020e00 0001 00000000 0x0 0x0
0xffffa70000020e80 0001 00000000 0x0 0x0
0xffffa70000020f00 0001 00000000 0x0 0x0
0xffffa70000020f80 0001 00000000 0x0 0x0
0xffffa70000021000 0001 00000000 0x0 0x0
0xffffa70000021080 0001 00000000 0x0 0x0
0xffffa70000021100 0001 00000000 0x0 0x0
0xffffa70000021180 0001 00000000 0x0 0x0
0xffffa70000021200 0001 00000000 0x0 0x0
0xffffa70000021280 0001 00000000 0x0 0x0
0xffffa70000021300 0001 00000000 0x0 0x0
0xffffa70000021380 0001 00000000 0x0 0x0
0xffffa70000021400 0001 00000000 0x0 0x0
0xffffa70000021480 0001 00000000 0x0 0x0
0xffffa70000021500 0001 00000000 0x0 0x0
0xffffa70000021580 0001 00000000 0x0 0x0
0xffffa70000021600 0001 00000000 0x0 0x0
0xffffa70000021680 0001 00000000 0x0 0x0
0xffffa70000021700 0001 00000000 0x0 0x0
0xffffa70000021780 0001 00000000 0x0 0x0
0xffffa70000021800 0001 00000000 0x0 0x0
0xffffa70000021880 0001 00000000 0x0 0x0
0xffffa70000021900 0001 00000000 0x0 0x0
0xffffa70000021980 0001 00000000 0x0 0x0
0xffffa70000021a00 0001 00000000 0x0 0x0
0xffffa70000021a80 0001 00000000 0x0 0x0
0xffffa70000021b00 0001 00000000 0x0 0x0
0xffffa70000021b80 0001 00000000 0x0 0x0
0xffffa70000021c00 0001 00000000 0x0 0x0
0xffffa70000021c80 0001 00000000 0x0 0x0
0xffffa70000021d00 0001 00000000 0x0 0x0
0xffffa70000021d80 0001 00000000 0x0 0x0
0xffffa70000021e00 0001 00000000 0x0 0x0
0xffffa70000021e80 0001 00000000 0x0 0x0
0xffffa70000021f00 0001 00000000 0x0 0x0
0xffffa70000021f80 0001 00000000 0x0 0x0
0xffffa70000022000 0001 00000000 0x0 0x0
0xffffa70000022080 0001 00000000 0x0 0x0
0xffffa70000022100 0001 00000000 0x0 0x0
0xffffa70000022180 0001 00000000 0x0 0x0
0xffffa70000022200 0001 00000000 0x0 0x0
0xffffa70000022280 0001 00000000 0x0 0x0
0xffffa70000022300 0001 00000000 0x0 0x0
0xffffa70000022380 0001 00000000 0x0 0x0
0xffffa70000022400 0001 00000000 0x0 0x0
0xffffa70000022480 0001 00000000 0x0 0x0
0xffffa70000022500 0001 00000000 0x0 0x0
0xffffa70000022580 0001 00000000 0x0 0x0
0xffffa70000022600 0001 00000000 0x0 0x0
0xffffa70000022680 0001 00000000 0x0 0x0
0xffffa70000022700 0001 00000000 0x0 0x0
0xffffa70000022780 0001 00000000 0x0 0x0
0xffffa70000022800 0001 00000000 0x0 0x0
0xffffa70000022880 0001 00000000 0x0 0x0
0xffffa70000022900 0001 00000000 0x0 0x0
0xffffa70000022980 0001 00000000 0x0 0x0
0xffffa70000022a00 0001 00000000 0x0 0x0
0xffffa70000022a80 0001 00000000 0x0 0x0
0xffffa70000022b00 0001 00000000 0x0 0x0
0xffffa70000022b80 0001 00000000 0x0 0x0
0xffffa70000022c00 0001 00000000 0x0 0x0
0xffffa70000022c80 0001 00000000 0x0 0x0
0xffffa70000022d00 0001 00000000 0x0 0x0
0xffffa70000022d80 0001 00000000 0x0 0x0
0xffffa70000022e00 0001 00000000 0x0 0x0
0xffffa70000022e80 0001 00000000 0x0 0x0
0xffffa70000022f00 0001 00000000 0x0 0x0
0xffffa70000022f80 0001 00000000 0x0 0x0
0xffffa70000023000 0001 00000000 0x0 0x0
0xffffa70000023080 0001 00000000 0x0 0x0
0xffffa70000023100 0001 00000000 0x0 0x0
0xffffa70000023180 0001 00000000 0x0 0x0
0xffffa70000023200 0001 00000000 0x0 0x0
0xffffa70000023280 0001 00000000 0x0 0x0
0xffffa70000023300 0001 00000000 0x0 0x0
0xffffa70000023380 0001 00000000 0x0 0x0
0xffffa70000023400 0001 00000000 0x0 0x0
0xffffa70000023480 0001 00000000 0x0 0x0
0xffffa70000023500 0001 00000000 0x0 0x0
0xffffa70000023580 0001 00000000 0x0 0x0
0xffffa70000023600 0001 00000000 0x0 0x0
0xffffa70000023680 0001 00000000 0x0 0x0
0xffffa70000023700 0001 00000000 0x0 0x0
0xffffa70000023780 0001 00000000 0x0 0x0
0xffffa70000023800 0001 00000000 0x0 0x0
0xffffa70000023880 0001 00000000 0x0 0x0
0xffffa70000023900 0001 00000000 0x0 0x0
0xffffa70000023980 0001 00000000 0x0 0x0
0xffffa70000023a00 0001 00000000 0x0 0x0
0xffffa70000023a80 0001 00000000 0x0 0x0
0xffffa70000023b00 0001 00000000 0x0 0x0
0xffffa70000023b80 0001 00000000 0x0 0x0
0xffffa70000023c00 0001 00000000 0x0 0x0
0xffffa70000023c80 0001 00000000 0x0 0x0
0xffffa70000023d00 0001 00000000 0x0 0x0
0xffffa70000023d80 0001 00000000 0x0 0x0
0xffffa70000023e00 0001 00000000 0x0 0x0
0xffffa70000023e80 0001 00000000 0x0 0x0
0xffffa70000023f00 0001 00000000 0x0 0x0
0xffffa70000023f80 0001 00000000 0x0 0x0
0xffffa70000024000 0001 00000000 0x0 0x0
0xffffa70000024080 0001 00000000 0x0 0x0
0xffffa70000024100 0001 00000000 0x0 0x0
0xffffa70000024180 0001 00000000 0x0 0x0
0xffffa70000024200 0001 00000000 0x0 0x0
0xffffa70000024280 0001 00000000 0x0 0x0
0xffffa70000024300 0001 00000000 0x0 0x0
0xffffa70000024380 0001 00000000 0x0 0x0
0xffffa70000024400 0001 00000000 0x0 0x0
0xffffa70000024480 0001 00000000 0x0 0x0
0xffffa70000024500 0001 00000000 0x0 0x0
0xffffa70000024580 0001 00000000 0x0 0x0
0xffffa70000024600 0001 00000000 0x0 0x0
0xffffa70000024680 0001 00000000 0x0 0x0
0xffffa70000024700 0001 00000000 0x0 0x0
0xffffa70000024780 0001 00000000 0x0 0x0
0xffffa70000024800 0001 00000000 0x0 0x0
0xffffa70000024880 0001 00000000 0x0 0x0
0xffffa70000024900 0001 00000000 0x0 0x0
0xffffa70000024980 0001 00000000 0x0 0x0
0xffffa70000024a00 0001 00000000 0x0 0x0
0xffffa70000024a80 0001 00000000 0x0 0x0
0xffffa70000024b00 0001 00000000 0x0 0x0
0xffffa70000024b80 0001 00000000 0x0 0x0
0xffffa70000024c00 0001 00000000 0x0 0x0
0xffffa70000024c80 0001 00000000 0x0 0x0
0xffffa70000024d00 0001 00000000 0x0 0x0
0xffffa70000024d80 0001 00000000 0x0 0x0
0xffffa70000024e00 0001 00000000 0x0 0x0
0xffffa70000024e80 0001 00000000 0x0 0x0
0xffffa70000024f00 0001 00000000 0x0 0x0
0xffffa70000024f80 0001 00000000 0x0 0x0
0xffffa70000025000 0001 00000000 0x0 0x0
0xffffa70000025080 0001 00000000 0x0 0x0
0xffffa70000025100 0001 00000000 0x0 0x0
0xffffa70000025180 0001 00000000 0x0 0x0
0xffffa70000025200 0001 00000000 0x0 0x0
0xffffa70000025280 0001 00000000 0x0 0x0
0xffffa70000025300 0001 00000000 0x0 0x0
0xffffa70000025380 0001 00000000 0x0 0x0
0xffffa70000025400 0001 00000000 0x0 0x0
0xffffa70000025480 0001 00000000 0x0 0x0
0xffffa70000025500 0001 00000000 0x0 0x0
0xffffa70000025580 0001 00000000 0x0 0x0
0xffffa70000025600 0001 00000000 0x0 0x0
0xffffa70000025680 0001 00000000 0x0 0x0
0xffffa70000025700 0001 00000000 0x0 0x0
0xffffa70000025780 0001 00000000 0x0 0x0
0xffffa70000025800 0001 00000000 0x0 0x0
0xffffa70000025880 0001 00000000 0x0 0x0
0xffffa70000025900 0001 00000000 0x0 0x0
0xffffa70000025980 0001 00000000 0x0 0x0
0xffffa70000025a00 0001 00000000 0x0 0x0
0xffffa70000025a80 0001 00000000 0x0 0x0
0xffffa70000025b00 0001 00000000 0x0 0x0
0xffffa70000025b80 0001 00000000 0x0 0x0
0xffffa70000025c00 0001 00000000 0x0 0x0
0xffffa70000025c80 0001 00000000 0x0 0x0
0xffffa70000025d00 0001 00000000 0x0 0x0
0xffffa70000025d80 0001 00000000 0x0 0x0
0xffffa70000025e00 0001 00000000 0x0 0x0
0xffffa70000025e80 0001 00000000 0x0 0x0
0xffffa70000025f00 0001 00000000 0x0 0x0
0xffffa70000025f80 0001 00000000 0x0 0x0
0xffffa70000026000 0001 00000000 0x0 0x0
0xffffa70000026080 0001 00000000 0x0 0x0
0xffffa70000026100 0001 00000000 0x0 0x0
0xffffa70000026180 0001 00000000 0x0 0x0
0xffffa70000026200 0001 00000000 0x0 0x0
0xffffa70000026280 0001 00000000 0x0 0x0
0xffffa70000026300 0001 00000000 0x0 0x0
0xffffa70000026380 0001 00000000 0x0 0x0
0xffffa70000026400 0001 00000000 0x0 0x0
0xffffa70000026480 0001 00000000 0x0 0x0
0xffffa70000026500 0001 00000000 0x0 0x0
0xffffa70000026580 0001 00000000 0x0 0x0
0xffffa70000026600 0001 00000000 0x0 0x0
0xffffa70000026680 0001 00000000 0x0 0x0
0xffffa70000026700 0001 00000000 0x0 0x0
0xffffa70000026780 0001 00000000 0x0 0x0
0xffffa70000026800 0001 00000000 0x0 0x0
0xffffa70000026880 0001 00000000 0x0 0x0
0xffffa70000026900 0001 00000000 0x0 0x0
0xffffa70000026980 0001 00000000 0x0 0x0

0xffffa70000026a00 0001 00000000 0x0 0x0
0xffffa70000026a80 0001 00000000 0x0 0x0
0xffffa70000026b00 0001 00000000 0x0 0x0
0xffffa70000026b80 0001 00000000 0x0 0x0
0xffffa70000026c00 0001 00000000 0x0 0x0
0xffffa70000026c80 0001 00000000 0x0 0x0
0xffffa70000026d00 0001 00000000 0x0 0x0
0xffffa70000026d80 0001 00000000 0x0 0x0

0xffffa70000026e00 0001 00000000 0x0 0x0
0xffffa70000026e80 0001 00000000 0x0 0x0
0xffffa70000026f00 0001 00000000 0x0 0x0
0xffffa70000026f80 0001 00000000 0x0 0x0
0xffffa70000027000 0001 00000000 0x0 0x0
0xffffa70000027080 0001 00000000 0x0 0x0
0xffffa70000027100 0001 00000000 0x0 0x0
0xffffa70000027180 0001 00000000 0x0 0x0
0xffffa70000027200 0001 00000000 0x0 0x0
0xffffa70000027280 0001 00000000 0x0 0x0
0xffffa70000027300 0001 00000000 0x0 0x0
0xffffa70000027380 0001 00000000 0x0 0x0
0xffffa70000027400 0001 00000000 0x0 0x0
0xffffa70000027480 0001 00000000 0x0 0x0
0xffffa70000027500 0001 00000000 0x0 0x0
0xffffa70000027580 0001 00000000 0x0 0x0
0xffffa70000027600 0001 00000000 0x0 0x0
0xffffa70000027680 0001 00000000 0x0 0x0
0xffffa70000027700 0001 00000000 0x0 0x0
0xffffa70000027780 0001 00000000 0x0 0x0
0xffffa70000027800 0001 00000000 0x0 0x0
0xffffa70000027880 0001 00000000 0x0 0x0
0xffffa70000027900 0001 00000000 0x0 0x0
0xffffa70000027980 0001 00000000 0x0 0x0

0xffffa70000027a00 0001 00000000 0x0 0x0
0xffffa70000027a80 0001 00000000 0x0 0x0
0xffffa70000027b00 0001 00000000 0x0 0x0
0xffffa70000027b80 0001 00000000 0x0 0x0
0xffffa70000027c00 0001 00000000 0x0 0x0
0xffffa70000027c80 0001 00000000 0x0 0x0
0xffffa70000027d00 0001 00000000 0x0 0x0
0xffffa70000027d80 0001 00000000 0x0 0x0

0xffffa70000027e00 0001 00000000 0x0 0x0
0xffffa70000027e80 0001 00000000 0x0 0x0
0xffffa70000027f00 0001 00000000 0x0 0x0
0xffffa70000027f80 0001 00000000 0x0 0x0
0xffffa70000028000 0001 00000000 0x0 0x0
0xffffa70000028080 0001 00000000 0x0 0x0
0xffffa70000028100 0001 00000000 0x0 0x0
0xffffa70000028180 0001 00000000 0x0 0x0
0xffffa70000028200 0001 00000000 0x0 0x0
0xffffa70000028280 0001 00000000 0x0 0x0
0xffffa70000028300 0001 00000000 0x0 0x0
0xffffa70000028380 0001 00000000 0x0 0x0
0xffffa70000028400 0001 00000000 0x0 0x0
0xffffa70000028480 0001 00000000 0x0 0x0
0xffffa70000028500 0001 00000000 0x0 0x0
0xffffa70000028580 0001 00000000 0x0 0x0
0xffffa70000028600 0001 00000000 0x0 0x0
0xffffa70000028680 0001 00000000 0x0 0x0
0xffffa70000028700 0001 00000000 0x0 0x0
0xffffa70000028780 0001 00000000 0x0 0x0
0xffffa70000028800 0001 00000000 0x0 0x0
0xffffa70000028880 0001 00000000 0x0 0x0
0xffffa70000028900 0001 00000000 0x0 0x0
0xffffa70000028980 0001 00000000 0x0 0x0

0xffffa70000028a00 0001 00000000 0x0 0x0
0xffffa70000028a80 0001 00000000 0x0 0x0
0xffffa70000028b00 0001 00000000 0x0 0x0

0xffffa70000028b80 0001 00000000 0x0 0x0
0xffffa70000028c00 0001 00000000 0x0 0x0
0xffffa70000028c80 0001 00000000 0x0 0x0
0xffffa70000028d00 0001 00000000 0x0 0x0
0xffffa70000028d80 0001 00000000 0x0 0x0
0xffffa70000028e00 0001 00000000 0x0 0x0
0xffffa70000028e80 0001 00000000 0x0 0x0
0xffffa70000028f00 0001 00000000 0x0 0x0
0xffffa70000028f80 0001 00000000 0x0 0x0
0xffffa70000029000 0001 00000000 0x0 0x0
0xffffa70000029080 0001 00000000 0x0 0x0
0xffffa70000029100 0001 00000000 0x0 0x0
0xffffa70000029180 0001 00000000 0x0 0x0
0xffffa70000029200 0001 00000000 0x0 0x0
0xffffa70000029280 0001 00000000 0x0 0x0
0xffffa70000029300 0001 00000000 0x0 0x0
0xffffa70000029380 0001 00000000 0x0 0x0
0xffffa70000029400 0001 00000000 0x0 0x0
0xffffa70000029480 0001 00000000 0x0 0x0
0xffffa70000029500 0001 00000000 0x0 0x0
0xffffa70000029580 0001 00000000 0x0 0x0
0xffffa70000029600 0001 00000000 0x0 0x0
0xffffa70000029680 0001 00000000 0x0 0x0
0xffffa70000029700 0001 00000000 0x0 0x0
0xffffa70000029780 0001 00000000 0x0 0x0
0xffffa70000029800 0001 00000000 0x0 0x0
0xffffa70000029880 0001 00000000 0x0 0x0
0xffffa70000029900 0001 00000000 0x0 0x0
0xffffa70000029980 0001 00000000 0x0 0x0
0xffffa70000029a00 0001 00000000 0x0 0x0
0xffffa70000029a80 0001 00000000 0x0 0x0
0xffffa70000029b00 0001 00000000 0x0 0x0
0xffffa70000029b80 0001 00000000 0x0 0x0
0xffffa70000029c00 0001 00000000 0x0 0x0
0xffffa70000029c80 0001 00000000 0x0 0x0
0xffffa70000029d00 0001 00000000 0x0 0x0
0xffffa70000029d80 0001 00000000 0x0 0x0
0xffffa70000029e00 0001 00000000 0x0 0x0
0xffffa70000029e80 0001 00000000 0x0 0x0
0xffffa70000029f00 0001 00000000 0x0 0x0
0xffffa70000029f80 0001 00000000 0x0 0x0
0xffffa7000002a000 0001 00000000 0x0 0x0
0xffffa7000002a080 0001 00000000 0x0 0x0
0xffffa7000002a100 0001 00000000 0x0 0x0
0xffffa7000002a180 0001 00000000 0x0 0x0
0xffffa7000002a200 0001 00000000 0x0 0x0
0xffffa7000002a280 0001 00000000 0x0 0x0
0xffffa7000002a300 0001 00000000 0x0 0x0
0xffffa7000002a380 0001 00000000 0x0 0x0
0xffffa7000002a400 0001 00000000 0x0 0x0
0xffffa7000002a480 0001 00000000 0x0 0x0
0xffffa7000002a500 0001 00000000 0x0 0x0
0xffffa7000002a580 0001 00000000 0x0 0x0
0xffffa7000002a600 0001 00000000 0x0 0x0
0xffffa7000002a680 0001 00000000 0x0 0x0
0xffffa7000002a700 0001 00000000 0x0 0x0
0xffffa7000002a780 0001 00000000 0x0 0x0
0xffffa7000002a800 0001 00000000 0x0 0x0
0xffffa7000002a880 0001 00000000 0x0 0x0
0xffffa7000002a900 0001 00000000 0x0 0x0
0xffffa7000002a980 0001 00000000 0x0 0x0
0xffffa7000002aa00 0001 00000000 0x0 0x0
0xffffa7000002aa80 0001 00000000 0x0 0x0
0xffffa7000002ab00 0001 00000000 0x0 0x0
0xffffa7000002ab80 0001 00000000 0x0 0x0
0xffffa7000002ac00 0001 00000000 0x0 0x0
0xffffa7000002ac80 0001 00000000 0x0 0x0
0xffffa7000002ad00 0001 00000000 0x0 0x0
0xffffa7000002ad80 0001 00000000 0x0 0x0
0xffffa7000002ae00 0001 00000000 0x0 0x0
0xffffa7000002ae80 0001 00000000 0x0 0x0
0xffffa7000002af00 0001 00000000 0x0 0x0
0xffffa7000002af80 0001 00000000 0x0 0x0
0xffffa7000002b000 0001 00000000 0x0 0x0
0xffffa7000002b080 0001 00000000 0x0 0x0
0xffffa7000002b100 0001 00000000 0x0 0x0
0xffffa7000002b180 0001 00000000 0x0 0x0
0xffffa7000002b200 0001 00000000 0x0 0x0
0xffffa7000002b280 0001 00000000 0x0 0x0
0xffffa7000002b300 0001 00000000 0x0 0x0
0xffffa7000002b380 0001 00000000 0x0 0x0
0xffffa7000002b400 0001 00000000 0x0 0x0
0xffffa7000002b480 0001 00000000 0x0 0x0
0xffffa7000002b500 0001 00000000 0x0 0x0
0xffffa7000002b580 0001 00000000 0x0 0x0
0xffffa7000002b600 0001 00000000 0x0 0x0
0xffffa7000002b680 0001 00000000 0x0 0x0
0xffffa7000002b700 0001 00000000 0x0 0x0
0xffffa7000002b780 0001 00000000 0x0 0x0
0xffffa7000002b800 0001 00000000 0x0 0x0
0xffffa7000002b880 0001 00000000 0x0 0x0
0xffffa7000002b900 0001 00000000 0x0 0x0
0xffffa7000002b980 0001 00000000 0x0 0x0
0xffffa7000002ba00 0001 00000000 0x0 0x0
0xffffa7000002ba80 0001 00000000 0x0 0x0
0xffffa7000002bb00 0001 00000000 0x0 0x0
0xffffa7000002bb80 0001 00000000 0x0 0x0
0xffffa7000002bc00 0001 00000000 0x0 0x0
0xffffa7000002bc80 0001 00000000 0x0 0x0
0xffffa7000002bd00 0001 00000000 0x0 0x0
0xffffa7000002bd80 0001 00000000 0x0 0x0
0xffffa7000002be00 0001 00000000 0x0 0x0
0xffffa7000002be80 0001 00000000 0x0 0x0
0xffffa7000002bf00 0001 00000000 0x0 0x0
0xffffa7000002bf80 0001 00000000 0x0 0x0
0xffffa7000002c000 0001 00000000 0x0 0x0
0xffffa7000002c080 0001 00000000 0x0 0x0
0xffffa7000002c100 0001 00000000 0x0 0x0
0xffffa7000002c180 0001 00000000 0x0 0x0
0xffffa7000002c200 0001 00000000 0x0 0x0
0xffffa7000002c280 0001 00000000 0x0 0x0
0xffffa7000002c300 0001 00000000 0x0 0x0
0xffffa7000002c380 0001 00000000 0x0 0x0
0xffffa7000002c400 0001 00000000 0x0 0x0
0xffffa7000002c480 0001 00000000 0x0 0x0
0xffffa7000002c500 0001 00000000 0x0 0x0
0xffffa7000002c580 0001 00000000 0x0 0x0
0xffffa7000002c600 0001 00000000 0x0 0x0
0xffffa7000002c680 0001 00000000 0x0 0x0
0xffffa7000002c700 0001 00000000 0x0 0x0
0xffffa7000002c780 0001 00000000 0x0 0x0
0xffffa7000002c800 0001 00000000 0x0 0x0
0xffffa7000002c880 0001 00000000 0x0 0x0
0xffffa7000002c900 0001 00000000 0x0 0x0
0xffffa7000002c980 0001 00000000 0x0 0x0
0xffffa7000002ca00 0001 00000000 0x0 0x0
0xffffa7000002ca80 0001 00000000 0x0 0x0
0xffffa7000002cb00 0001 00000000 0x0 0x0
0xffffa7000002cb80 0001 00000000 0x0 0x0

Tested on:

commit: 0e011ed7 Uglify code to fix build.
git tree: https://github.com/NetBSD/src trunk

console output: https://syzkaller.appspot.com/x/log.txt?x=1771eef4080000

patch: https://syzkaller.appspot.com/x/patch.diff?x=1181bf98080000

syzbot

unread,

Jul 1, 2022, 3:10:08 PM7/1/22

to rias...@netbsd.org, syzkaller-...@googlegroups.com

Hello,

syzbot has tested the proposed patch but the reproducer is still triggering an issue:
MSan: Uninitialized Memory in uiomove

� syz-executor.3 HF�b M� � � �~ � syz-executor.3 HF�b r� � � syz-executor.3 HF�b �� A � � syz-execprog HF�b �� A � �' � � syz-executor.3 HF�b �� A 8 � syz-executor.3 HF�b � � 0 � syz-execprog HF�b � A � syz-executor.3 HF�b � � 0�� syz-executor.3 HF�b =� � � syz-executor.3 HF�b d� � syz-execprog HF�b G� � `� � ȗ � " � syz-execprog HF�b �� /root/syzkaller-testdir3776721112 � syz-execprog � � syz-execprog HF�b �� \ $ [ 50.1767558] panic: MSan: Uninitialized Pool Memory From kthread_create()

[ 50.1923704] cpu0: Begin traceback...
[ 50.2067444] vpanic() at netbsd:vpanic+0xc9d
[ 50.2567443] panic() at netbsd:panic+0x1b3 sys/kern/subr_prf.c:210
[ 50.2967493] __msan_warning() at netbsd:__msan_warning+0x11e kmsan_report_inline sys/kern/subr_msan.c:234 [inline]
[ 50.2967493] __msan_warning() at netbsd:__msan_warning+0x11e sys/kern/subr_msan.c:615
[ 50.3467436] uiomove() at netbsd:uiomove+0x498
[ 50.3971552] ttwrite() at netbsd:ttwrite+0x1559 sys/kern/tty.c:2205
[ 50.4467413] comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
[ 50.4867426] cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207
[ 50.5367450] spec_write() at netbsd:spec_write+0x561
[ 50.5867429] VOP_WRITE() at netbsd:VOP_WRITE+0x39b
[ 50.6467457] vn_write() at netbsd:vn_write+0x709
[ 50.6967451] ktrace_thread() at netbsd:ktrace_thread+0x135c ktrwrite sys/kern/kern_ktrace.c:1341 [inline]
[ 50.6967451] ktrace_thread() at netbsd:ktrace_thread+0x135c sys/kern/kern_ktrace.c:1410
[ 50.7167483] cpu0: End traceback...
[ 50.7167483] fatal breakpoint trap in supervisor mode
[ 50.7280964] trap type 1 code 0 rip 0xffffffff802228ad cs 0x8 rflags 0x286 cr2 0x73169f00cebc ilevel 0x5 rsp 0xffffe30087782fc0
[ 50.7411312] curlwp 0xffffe300134889c0 pid 0.323 lowest kstack 0xffffe3008777c2c0
Stopped in pid 0.323 (system) at netbsd:breakpoint+0x5: leave

ktrace_thread() at netbsd:ktrace_thread+0x135c ktrwrite sys/kern/kern_ktrace.c:1341 [inline]
ktrace_thread() at netbsd:ktrace_thread+0x135c sys/kern/kern_ktrace.c:1410

Panic string: MSan: Uninitialized Pool Memory From kthread_create()

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

1054 1054 2 0 0 ffffe30013471980 syz-executor.4
1207 >1207 7 1 0 ffffe3001349b180 syz-executor.2
334 334 3 1 0 ffffe30013488580 syz-executor.5 ktrsync
1223 1223 2 0 0 ffffe30013488140 syz-executor.1
329 329 3 0 0 ffffe30013471100 syz-executor.0 ktrsync
330 330 3 0 180 ffffe300133b8940 syz-executor.4 nanoslp
1129 1129 3 0 40000 ffffe300133b8500 syz-executor.3 ktrsync
1235 1387 3 0 180 ffffe300133b80c0 syz-execprog parked
1235 1229 3 0 180 ffffe30012b97900 syz-execprog parked
1235 1380 3 1 180 ffffe30012b97080 syz-execprog parked
1235 1199 3 0 180 ffffe30012b974c0 syz-execprog parked
1235 827 3 1 180 ffffe3001229aac0 syz-execprog kqueue
1235 1196 3 1 0 ffffe3001229a240 syz-execprog ktrsync
1235 1254 2 1 140 ffffe30012ae2bc0 syz-execprog
1235 1235 3 1 40180 ffffe3001242d700 syz-execprog parked
1381 1381 3 1 180 ffffe300122c86c0 sshd select
1076 1076 3 0 180 ffffe30012b7a8c0 getty nanoslp
1080 1080 3 1 180 ffffe30012b7a480 getty nanoslp
1072 1072 3 0 180 ffffe3001229a680 getty nanoslp
1070 1070 3 0 1c0 ffffe300121a9600 getty ttyraw
1066 1066 3 1 180 ffffe30012b7a040 sshd select
941 941 3 1 180 ffffe300122c8280 powerd kqueue
689 689 3 1 180 ffffe30012505b80 syslogd kqueue
602 602 3 0 180 ffffe30012ae2780 dhcpcd poll
547 547 3 0 180 ffffe30012505300 dhcpcd poll
546 546 3 0 180 ffffe30012ae2340 dhcpcd poll
591 591 3 0 180 ffffe300122c8b00 dhcpcd poll
289 289 3 0 180 ffffe30012505740 dhcpcd poll
288 288 3 0 180 ffffe3001242d2c0 dhcpcd poll
351 351 3 0 180 ffffe3001242db40 dhcpcd poll
1 1 3 1 180 ffffe30011e39940 init wait
0 > 323 7 0 240 ffffe300134889c0 ktrace
0 895 3 0 200 ffffe300121a9a40 physiod physiod
0 194 3 0 200 ffffe300121b5a80 pooldrain pooldrain
0 193 3 1 200 ffffe300121b5640 ioflush syncer
0 192 3 1 200 ffffe300121b5200 pgdaemon pgdaemon
0 168 3 0 200 ffffe300121a91c0 usb7 usbevt
0 167 3 0 200 ffffe300120f6a00 usb6 usbevt
0 165 3 0 200 ffffe300120f65c0 usb5 usbevt
0 164 3 0 200 ffffe300120f6180 usb4 usbevt
0 31 3 0 200 ffffe3001205d9c0 usb3 usbevt
0 63 3 0 200 ffffe3001205d580 usb2 usbevt
0 126 3 0 200 ffffe3001205d140 usb1 usbevt
0 125 3 1 200 ffffe30011e4d980 usb0 usbevt
0 124 3 1 200 ffffe30011e4d540 usbtask-dr usbtsk
0 123 3 1 200 ffffe300118016c0 usbtask-hc usbtsk
0 122 3 0 200 ffffe30011e4d100 npfgc0 npfgcw
0 121 3 1 200 ffffe30011e39500 rt_free rt_free
0 120 3 1 200 ffffe30011e390c0 unpgc unpgc
0 119 3 0 200 ffffe30011e35900 key_timehandler key_timehandler
0 118 3 1 200 ffffe30011e354c0 icmp6_wqinput/1 icmp6_wqinput
0 117 3 0 200 ffffe30011e35080 icmp6_wqinput/0 icmp6_wqinput
0 116 3 0 200 ffffe30011e2e8c0 nd6_timer nd6_timer
0 115 3 1 200 ffffe30011e2e480 carp6_wqinput/1 carp6_wqinput
0 114 3 0 200 ffffe30011e2e040 carp6_wqinput/0 carp6_wqinput
0 113 3 1 200 ffffe30011cc2b80 carp_wqinput/1 carp_wqinput
0 112 3 0 200 ffffe30011cc2740 carp_wqinput/0 carp_wqinput
0 111 3 1 200 ffffe30011cc2300 icmp_wqinput/1 icmp_wqinput
0 110 3 0 200 ffffe30011cc3bc0 icmp_wqinput/0 icmp_wqinput
0 109 3 0 200 ffffe30011cc3780 rt_timer rt_timer
0 108 3 1 200 ffffe30011cc3340 vmem_rehash vmem_rehash
0 99 3 0 200 ffffe30011804b40 entbutler entropy
0 98 3 1 200 ffffe30011804700 viomb balloon
0 97 3 1 200 ffffe300118042c0 vioif0_txrx/1 vioif0_txrx
0 96 3 0 200 ffffe30011801b00 vioif0_txrx/0 vioif0_txrx
0 29 3 0 200 ffffe30011801280 scsibus0 sccomp
0 28 3 0 200 ffffe300103afac0 pms0 pmsreset
0 27 3 1 200 ffffe300103af680 xcall/1 xcall
0 26 1 1 200 ffffe300103af240 softser/1
0 25 1 1 200 ffffe300103ada80 softclk/1
0 24 1 1 200 ffffe300103ad640 softbio/1
0 23 1 1 200 ffffe300103ad200 softnet/1
0 22 1 1 201 ffffe3000f1f1a40 idle/1
0 21 3 0 200 ffffe3000f1f1600 lnxsyswq lnxsyswq
0 20 3 0 200 ffffe3000f1f11c0 lnxubdwq lnxubdwq
0 19 3 0 200 ffffe3000f1f0a00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffffe3000f1f05c0 lnxlngwq lnxlngwq
0 17 3 0 200 ffffe3000f1f0180 lnxhipwq lnxhipwq
0 16 3 1 200 ffffe3000f1eb9c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffffe3000f1eb580 sysmon smtaskq
0 14 3 0 200 ffffe3000f1eb140 pmfsuspend pmfsuspend
0 13 3 1 200 ffffe3000f1e7980 pmfevent pmfevent
0 12 3 0 200 ffffe3000f1e7540 sopendfree sopendfr
0 11 3 0 200 ffffe3000f1e7100 iflnkst iflnkst
0 10 3 0 200 ffffe3000f1dd940 nfssilly nfssilly
0 9 3 0 200 ffffe3000f1dd500 vdrain vdrain
0 8 3 0 200 ffffe3000f1dd0c0 modunload mod_unld
0 7 3 0 200 ffffe3000ebda900 xcall/0 xcall
0 6 1 0 200 ffffe3000ebda4c0 softser/0
0 5 1 0 200 ffffe3000ebda080 softclk/0
0 4 1 0 200 ffffe3000ebd88c0 softbio/0
0 3 1 0 200 ffffe3000ebd8480 softnet/0
0 2 1 0 201 ffffe3000ebd8040 idle/0
0 0 3 1 200 ffffffff86868940 swapper uvm
[Locks tracked through LWPs]

****** LWP 1054.1054 (syz-executor.4) @ 0xffffe30013471980, l_stat=2

*** Locks held:

* Lock 0 (initialized at pmap_ctor)
lock address : 0xffffe30012b85c40 type : sleep/adaptive
initialized : 0xffffffff818e13b0

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe30013471980 last held: 0xffffe30013471980

last locked* : 0xffffffff818fbb7d unlocked : 0xffffffff81901ca9

owner field : 0xffffe30013471980 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 1207.1207 (syz-executor.2) @ 0xffffe3001349b180, l_stat=7

*** Locks held:

* Lock 0 (initialized at vcache_alloc)
lock address : 0xffffe3001347fb00 type : sleep/adaptive
initialized : 0xffffffff85678e46

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 1 last held: 1

relevant lwp : 0xffffe3001349b180 last held: 0xffffe3001349b180
last locked* : 0xffffffff85705d16 unlocked : 0xffffffff857060c5
owner/count : 0xffffe3001349b180 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at vcache_alloc)
lock address : 0xffffe3001347ff80 type : sleep/adaptive
initialized : 0xffffffff85678e46

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 1 last held: 1

relevant lwp : 0xffffe3001349b180 last held: 0xffffe3001349b180
last locked* : 0xffffffff85705d16 unlocked : 000000000000000000
owner/count : 0xffffe3001349b180 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin
initialized : 0xffffffff85064a34
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 1 last held: 0

relevant lwp : 0xffffe3001349b180 last held: 0xffffe300134889c0
last locked* : 0xffffffff8530c6e4 unlocked : 0xffffffff818b4f90

curcpu holds : 1 wanted by: 000000000000000000

****** LWP 547.547 (dhcpcd) @ 0xffffe30012505300, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff851802d3

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe30012505300 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 546.546 (dhcpcd) @ 0xffffe30012ae2340, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff851802d3

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe30012ae2340 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 288.288 (dhcpcd) @ 0xffffe3001242d2c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff851802d3

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe3001242d2c0 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 351.351 (dhcpcd) @ 0xffffe3001242db40, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff851802d3

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe3001242db40 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffe3000f1e7100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff851802d3

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe3000f1e7100 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffe3000ebda080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff851802d3

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe3000ebda080 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff86868940, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff868f6cc0 type : sleep/adaptive

initialized : 0xffffffff851802d3

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffffff86868940 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at main)
lock address : 0xffffffff868f6bc0 type : spin
initialized : 0xffffffff85064a34
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 0 last held: 0

relevant lwp : 0xffffe300134889c0 last held: 0xffffe300134889c0
last locked* : 0xffffffff8530c6e4 unlocked : 0xffffffff818b4f90

curcpu holds : 1 wanted by: 000000000000000000

* Lock 1 (initialized at kprintf_init)
lock address : 0xffffffff868a9c00 type : spin

initialized : 0xffffffff8539d23c

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffe300134889c0 last held: 0xffffe300134889c0
last locked* : 0xffffffff8539e064 unlocked : 0xffffffff8539ea6e

owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON

0xffffe30000017180 0041 00000000 0x0 0x0
0xffffe30000017200 0041 00000000 0x0 0x0
0xffffe30000017280 0041 00000000 0x0 0x0
0xffffe30000017300 0041 00000000 0x0 0x0
0xffffe30000017380 0041 00000000 0x0 0x0
0xffffe30000017400 0041 00000000 0x0 0x0
0xffffe30000017480 0041 00000000 0x0 0x0
0xffffe30000017500 0041 00000000 0x0 0x0
0xffffe30000017580 0041 00000000 0x0 0x0
0xffffe30000017600 0041 00000000 0x0 0x0
0xffffe30000017680 0041 00000000 0x0 0x0
0xffffe30000017700 0041 00000000 0x0 0x0
0xffffe30000017780 0041 00000000 0x0 0x0
0xffffe30000017800 0041 00000000 0x0 0x0
0xffffe30000017880 0041 00000000 0x0 0x0
0xffffe30000017900 0041 00000000 0x0 0x0
0xffffe30000017980 0041 00000000 0x0 0x0
0xffffe30000017a00 0041 00000000 0x0 0x0
0xffffe30000017a80 0041 00000000 0x0 0x0
0xffffe30000017b00 0041 00000000 0x0 0x0
0xffffe30000017b80 0041 00000000 0x0 0x0
0xffffe30000017c00 0041 00000000 0x0 0x0
0xffffe30000017c80 0041 00000000 0x0 0x0
0xffffe30000017d00 0041 00000000 0x0 0x0
0xffffe30000017d80 0041 00000000 0x0 0x0
0xffffe30000017e00 0041 00000000 0x0 0x0
0xffffe30000017e80 0041 00000000 0x0 0x0
0xffffe30000017f00 0041 00000000 0x0 0x0
0xffffe30000017f80 0041 00000000 0x0 0x0
0xffffe30000018000 0041 00000000 0x0 0x0
0xffffe30000018080 0041 00000000 0x0 0x0
0xffffe30000018100 0041 00000000 0x0 0x0
0xffffe30000018180 0041 00000000 0x0 0x0
0xffffe30000018200 0041 00000000 0x0 0x0
0xffffe30000018280 0041 00000000 0x0 0x0
0xffffe30000018300 0041 00000000 0x0 0x0
0xffffe30000018380 0041 00000000 0x0 0x0
0xffffe30000018400 0041 00000000 0x0 0x0
0xffffe30000018480 0041 00000000 0x0 0x0
0xffffe30000018500 0041 00000000 0x0 0x0
0xffffe30000018580 0041 00000000 0x0 0x0
0xffffe30000018600 0041 00000000 0x0 0x0
0xffffe30000018680 0041 00000000 0x0 0x0
0xffffe30000018700 0041 00000000 0x0 0x0
0xffffe30000018780 0041 00000000 0x0 0x0
0xffffe30000018800 0041 00000000 0x0 0x0
0xffffe30000018880 0041 00000000 0x0 0x0
0xffffe30000018900 0041 00000000 0x0 0x0
0xffffe30000018980 0041 00000000 0x0 0x0
0xffffe30000018a00 0041 00000000 0x0 0x0
0xffffe30000018a80 0041 00000000 0x0 0x0
0xffffe30000018b00 0041 00000000 0x0 0x0
0xffffe30000018b80 0041 00000000 0x0 0x0
0xffffe30000018c00 0041 00000000 0x0 0x0
0xffffe30000018c80 0041 00000000 0x0 0x0
0xffffe30000018d00 0041 00000000 0x0 0x0
0xffffe30000018d80 0041 00000000 0x0 0x0
0xffffe30000018e00 0041 00000000 0x0 0x0
0xffffe30000018e80 0041 00000000 0x0 0x0
0xffffe30000018f00 0041 00000000 0x0 0x0
0xffffe30000018f80 0041 00000000 0x0 0x0
0xffffe30000019000 0041 00000000 0x0 0x0
0xffffe30000019080 0041 00000000 0x0 0x0
0xffffe30000019100 0041 00000000 0x0 0x0
0xffffe30000019180 0041 00000000 0x0 0x0
0xffffe30000019200 0041 00000000 0x0 0x0
0xffffe30000019280 0041 00000000 0x0 0x0
0xffffe30000019300 0041 00000000 0x0 0x0
0xffffe30000019380 0041 00000000 0x0 0x0
0xffffe30000019400 0041 00000000 0x0 0x0
0xffffe30000019480 0041 00000000 0x0 0x0
0xffffe30000019500 0041 00000000 0x0 0x0
0xffffe30000019580 0041 00000000 0x0 0x0
0xffffe30000019600 0041 00000000 0x0 0x0
0xffffe30000019680 0041 00000000 0x0 0x0
0xffffe30000019700 0041 00000000 0x0 0x0
0xffffe30000019780 0041 00000000 0x0 0x0
0xffffe30000019800 0041 00000000 0x0 0x0
0xffffe30000019880 0041 00000000 0x0 0x0
0xffffe30000019900 0041 00000000 0x0 0x0
0xffffe30000019980 0041 00000000 0x0 0x0
0xffffe30000019a00 0041 00000000 0x0 0x0
0xffffe30000019a80 0041 00000000 0x0 0x0
0xffffe30000019b00 0041 00000000 0x0 0x0
0xffffe30000019b80 0041 00000000 0x0 0x0
0xffffe30000019c00 0041 00000000 0x0 0x0
0xffffe30000019c80 0041 00000000 0x0 0x0
0xffffe30000019d00 0041 00000000 0x0 0x0
0xffffe30000019d80 0041 00000000 0x0 0x0
0xffffe30000019e00 0041 00000000 0x0 0x0
0xffffe30000019e80 0041 00000000 0x0 0x0
0xffffe30000019f00 0041 00000000 0x0 0x0
0xffffe30000019f80 0041 00000000 0x0 0x0

0xffffe3000001a000 0041 00000000 0x0 0x0
0xffffe3000001a080 0041 00000000 0x0 0x0
0xffffe3000001a100 0041 00000000 0x0 0x0
0xffffe3000001a180 0041 00000000 0x0 0x0
0xffffe3000001a200 0041 00000000 0x0 0x0
0xffffe3000001a280 0041 00000000 0x0 0x0
0xffffe3000001a300 0041 00000000 0x0 0x0
0xffffe3000001a380 0041 00000000 0x0 0x0
0xffffe3000001a400 0041 00000000 0x0 0x0
0xffffe3000001a480 0041 00000000 0x0 0x0
0xffffe3000001a500 0041 00000000 0x0 0x0
0xffffe3000001a580 0041 00000000 0x0 0x0
0xffffe3000001a600 0041 00000000 0x0 0x0
0xffffe3000001a680 0041 00000000 0x0 0x0
0xffffe3000001a700 0041 00000000 0x0 0x0
0xffffe3000001a780 0041 00000000 0x0 0x0

0xffffe3000001a800 0041 00000000 0x0 0x0
0xffffe3000001a880 0041 00000000 0x0 0x0
0xffffe3000001a900 0041 00000000 0x0 0x0
0xffffe3000001a980 0041 00000000 0x0 0x0

0xffffe3000001aa00 0041 00000000 0x0 0x0
0xffffe3000001aa80 0041 00000000 0x0 0x0
0xffffe3000001ab00 0041 00000000 0x0 0x0
0xffffe3000001ab80 0041 00000000 0x0 0x0
0xffffe3000001ac00 0041 00000000 0x0 0x0
0xffffe3000001ac80 0041 00000000 0x0 0x0
0xffffe3000001ad00 0041 00000000 0x0 0x0
0xffffe3000001ad80 0041 00000000 0x0 0x0

0xffffe3000001ae00 0041 00000000 0x0 0x0
0xffffe3000001ae80 0041 00000000 0x0 0x0
0xffffe3000001af00 0041 00000000 0x0 0x0
0xffffe3000001af80 0041 00000000 0x0 0x0
0xffffe3000001b000 0041 00000000 0x0 0x0
0xffffe3000001b080 0041 00000000 0x0 0x0
0xffffe3000001b100 0041 00000000 0x0 0x0
0xffffe3000001b180 0041 00000000 0x0 0x0
0xffffe3000001b200 0041 00000000 0x0 0x0
0xffffe3000001b280 0041 00000000 0x0 0x0
0xffffe3000001b300 0041 00000000 0x0 0x0
0xffffe3000001b380 0041 00000000 0x0 0x0
0xffffe3000001b400 0041 00000000 0x0 0x0
0xffffe3000001b480 0041 00000000 0x0 0x0
0xffffe3000001b500 0041 00000000 0x0 0x0
0xffffe3000001b580 0041 00000000 0x0 0x0
0xffffe3000001b600 0041 00000000 0x0 0x0
0xffffe3000001b680 0041 00000000 0x0 0x0
0xffffe3000001b700 0041 00000000 0x0 0x0
0xffffe3000001b780 0041 00000000 0x0 0x0
0xffffe3000001b800 0041 00000000 0x0 0x0
0xffffe3000001b880 0041 00000000 0x0 0x0
0xffffe3000001b900 0041 00000000 0x0 0x0
0xffffe3000001b980 0041 00000000 0x0 0x0
0xffffe3000001ba00 0041 00000000 0x0 0x0
0xffffe3000001ba80 0041 00000000 0x0 0x0
0xffffe3000001bb00 0041 00000000 0x0 0x0
0xffffe3000001bb80 0041 00000000 0x0 0x0
0xffffe3000001bc00 0041 00000000 0x0 0x0
0xffffe3000001bc80 0041 00000000 0x0 0x0
0xffffe3000001bd00 0041 00000000 0x0 0x0
0xffffe3000001bd80 0041 00000000 0x0 0x0
0xffffe3000001be00 0041 00000000 0x0 0x0
0xffffe3000001be80 0041 00000000 0x0 0x0
0xffffe3000001bf00 0041 00000000 0x0 0x0
0xffffe3000001bf80 0041 00000000 0x0 0x0
0xffffe3000001c000 0041 00000000 0x0 0x0
0xffffe3000001c080 0041 00000000 0x0 0x0
0xffffe3000001c100 0041 00000000 0x0 0x0
0xffffe3000001c180 0041 00000000 0x0 0x0
0xffffe3000001c200 0041 00000000 0x0 0x0
0xffffe3000001c280 0041 00000000 0x0 0x0
0xffffe3000001c300 0041 00000000 0x0 0x0
0xffffe3000001c380 0041 00000000 0x0 0x0
0xffffe3000001c400 0041 00000000 0x0 0x0
0xffffe3000001c480 0041 00000000 0x0 0x0
0xffffe3000001c500 0041 00000000 0x0 0x0
0xffffe3000001c580 0041 00000000 0x0 0x0
0xffffe3000001c600 0041 00000000 0x0 0x0
0xffffe3000001c680 0041 00000000 0x0 0x0
0xffffe3000001c700 0041 00000000 0x0 0x0
0xffffe3000001c780 0001 00000000 0x0 0x0
0xffffe3000001c800 0001 00000000 0x0 0x0
0xffffe3000001c880 0001 00000000 0x0 0x0
0xffffe3000001c900 0001 00000000 0x0 0x0
0xffffe3000001c980 0001 00000000 0x0 0x0
0xffffe3000001ca00 0001 00000000 0x0 0x0
0xffffe3000001ca80 0001 00000000 0x0 0x0
0xffffe3000001cb00 0001 00000000 0x0 0x0
0xffffe3000001cb80 0001 00000000 0x0 0x0
0xffffe3000001cc00 0001 00000000 0x0 0x0
0xffffe3000001cc80 0001 00000000 0x0 0x0
0xffffe3000001cd00 0001 00000000 0x0 0x0
0xffffe3000001cd80 0001 00000000 0x0 0x0
0xffffe3000001ce00 0001 00000000 0x0 0x0
0xffffe3000001ce80 0001 00000000 0x0 0x0
0xffffe3000001cf00 0001 00000000 0x0 0x0
0xffffe3000001cf80 0001 00000000 0x0 0x0
0xffffe3000001d000 0001 00000000 0x0 0x0
0xffffe3000001d080 0001 00000000 0x0 0x0
0xffffe3000001d100 0001 00000000 0x0 0x0
0xffffe3000001d180 0001 00000000 0x0 0x0
0xffffe3000001d200 0001 00000000 0x0 0x0
0xffffe3000001d280 0001 00000000 0x0 0x0
0xffffe3000001d300 0001 00000000 0x0 0x0
0xffffe3000001d380 0001 00000000 0x0 0x0
0xffffe3000001d400 0001 00000000 0x0 0x0
0xffffe3000001d480 0001 00000000 0x0 0x0
0xffffe3000001d500 0001 00000000 0x0 0x0
0xffffe3000001d580 0001 00000000 0x0 0x0
0xffffe3000001d600 0001 00000000 0x0 0x0
0xffffe3000001d680 0001 00000000 0x0 0x0
0xffffe3000001d700 0001 00000000 0x0 0x0
0xffffe3000001d780 0001 00000000 0x0 0x0
0xffffe3000001d800 0001 00000000 0x0 0x0
0xffffe3000001d880 0001 00000000 0x0 0x0
0xffffe3000001d900 0001 00000000 0x0 0x0
0xffffe3000001d980 0001 00000000 0x0 0x0
0xffffe3000001da00 0001 00000000 0x0 0x0
0xffffe3000001da80 0001 00000000 0x0 0x0
0xffffe3000001db00 0001 00000000 0x0 0x0
0xffffe3000001db80 0001 00000000 0x0 0x0
0xffffe3000001dc00 0001 00000000 0x0 0x0
0xffffe3000001dc80 0001 00000000 0x0 0x0
0xffffe3000001dd00 0001 00000000 0x0 0x0
0xffffe3000001dd80 0001 00000000 0x0 0x0
0xffffe3000001de00 0001 00000000 0x0 0x0
0xffffe3000001de80 0001 00000000 0x0 0x0
0xffffe3000001df00 0001 00000000 0x0 0x0
0xffffe3000001df80 0001 00000000 0x0 0x0
0xffffe3000001e000 0001 00000000 0x0 0x0
0xffffe3000001e080 0001 00000000 0x0 0x0
0xffffe3000001e100 0001 00000000 0x0 0x0
0xffffe3000001e180 0001 00000000 0x0 0x0
0xffffe3000001e200 0001 00000000 0x0 0x0
0xffffe3000001e280 0001 00000000 0x0 0x0
0xffffe3000001e300 0001 00000000 0x0 0x0
0xffffe3000001e380 0001 00000000 0x0 0x0
0xffffe3000001e400 0001 00000000 0x0 0x0
0xffffe3000001e480 0001 00000000 0x0 0x0
0xffffe3000001e500 0001 00000000 0x0 0x0
0xffffe3000001e580 0001 00000000 0x0 0x0
0xffffe3000001e600 0001 00000000 0x0 0x0
0xffffe3000001e680 0001 00000000 0x0 0x0
0xffffe3000001e700 0001 00000000 0x0 0x0
0xffffe3000001e780 0001 00000000 0x0 0x0
0xffffe3000001e800 0001 00000000 0x0 0x0
0xffffe3000001e880 0001 00000000 0x0 0x0
0xffffe3000001e900 0001 00000000 0x0 0x0
0xffffe3000001e980 0001 00000000 0x0 0x0
0xffffe3000001ea00 0001 00000000 0x0 0x0
0xffffe3000001ea80 0001 00000000 0x0 0x0
0xffffe3000001eb00 0001 00000000 0x0 0x0
0xffffe3000001eb80 0001 00000000 0x0 0x0
0xffffe3000001ec00 0001 00000000 0x0 0x0
0xffffe3000001ec80 0001 00000000 0x0 0x0
0xffffe3000001ed00 0001 00000000 0x0 0x0
0xffffe3000001ed80 0001 00000000 0x0 0x0
0xffffe3000001ee00 0001 00000000 0x0 0x0
0xffffe3000001ee80 0001 00000000 0x0 0x0
0xffffe3000001ef00 0001 00000000 0x0 0x0
0xffffe3000001ef80 0001 00000000 0x0 0x0
0xffffe3000001f000 0001 00000000 0x0 0x0
0xffffe3000001f080 0001 00000000 0x0 0x0
0xffffe3000001f100 0001 00000000 0x0 0x0
0xffffe3000001f180 0001 00000000 0x0 0x0
0xffffe3000001f200 0001 00000000 0x0 0x0
0xffffe3000001f280 0001 00000000 0x0 0x0
0xffffe3000001f300 0001 00000000 0x0 0x0
0xffffe3000001f380 0001 00000000 0x0 0x0
0xffffe3000001f400 0001 00000000 0x0 0x0
0xffffe3000001f480 0001 00000000 0x0 0x0
0xffffe3000001f500 0001 00000000 0x0 0x0
0xffffe3000001f580 0001 00000000 0x0 0x0
0xffffe3000001f600 0001 00000000 0x0 0x0
0xffffe3000001f680 0001 00000000 0x0 0x0
0xffffe3000001f700 0001 00000000 0x0 0x0
0xffffe3000001f780 0001 00000000 0x0 0x0
0xffffe3000001f800 0001 00000000 0x0 0x0
0xffffe3000001f880 0001 00000000 0x0 0x0
0xffffe3000001f900 0001 00000000 0x0 0x0
0xffffe3000001f980 0001 00000000 0x0 0x0
0xffffe3000001fa00 0001 00000000 0x0 0x0
0xffffe3000001fa80 0001 00000000 0x0 0x0
0xffffe3000001fb00 0001 00000000 0x0 0x0
0xffffe3000001fb80 0001 00000000 0x0 0x0
0xffffe3000001fc00 0001 00000000 0x0 0x0
0xffffe3000001fc80 0001 00000000 0x0 0x0
0xffffe3000001fd00 0001 00000000 0x0 0x0
0xffffe3000001fd80 0001 00000000 0x0 0x0
0xffffe3000001fe00 0001 00000000 0x0 0x0
0xffffe3000001fe80 0001 00000000 0x0 0x0
0xffffe3000001ff00 0001 00000000 0x0 0x0
0xffffe3000001ff80 0001 00000000 0x0 0x0
0xffffe30000020000 0001 00000000 0x0 0x0
0xffffe30000020080 0001 00000000 0x0 0x0
0xffffe30000020100 0001 00000000 0x0 0x0
0xffffe30000020180 0001 00000000 0x0 0x0
0xffffe30000020200 0001 00000000 0x0 0x0
0xffffe30000020280 0001 00000000 0x0 0x0
0xffffe30000020300 0001 00000000 0x0 0x0
0xffffe30000020380 0001 00000000 0x0 0x0

0xffffe30000020400 0001 00000000 0x0 0x0
0xffffe30000020480 0001 00000000 0x0 0x0
0xffffe30000020500 0001 00000000 0x0 0x0
0xffffe30000020580 0001 00000000 0x0 0x0
0xffffe30000020600 0001 00000000 0x0 0x0
0xffffe30000020680 0001 00000000 0x0 0x0
0xffffe30000020700 0001 00000000 0x0 0x0
0xffffe30000020780 0001 00000000 0x0 0x0
0xffffe30000020800 0001 00000000 0x0 0x0
0xffffe30000020880 0001 00000000 0x0 0x0
0xffffe30000020900 0001 00000000 0x0 0x0
0xffffe30000020980 0001 00000000 0x0 0x0

0xffffe30000020a00 0001 00000000 0x0 0x0
0xffffe30000020a80 0001 00000000 0x0 0x0
0xffffe30000020b00 0001 00000000 0x0 0x0
0xffffe30000020b80 0001 00000000 0x0 0x0
0xffffe30000020c00 0001 00000000 0x0 0x0
0xffffe30000020c80 0001 00000000 0x0 0x0
0xffffe30000020d00 0001 00000000 0x0 0x0
0xffffe30000020d80 0001 00000000 0x0 0x0

0xffffe30000020e00 0001 00000000 0x0 0x0
0xffffe30000020e80 0001 00000000 0x0 0x0
0xffffe30000020f00 0001 00000000 0x0 0x0
0xffffe30000020f80 0001 00000000 0x0 0x0

0xffffe30000021000 0001 00000000 0x0 0x0
0xffffe30000021080 0001 00000000 0x0 0x0
0xffffe30000021100 0001 00000000 0x0 0x0
0xffffe30000021180 0001 00000000 0x0 0x0
0xffffe30000021200 0001 00000000 0x0 0x0
0xffffe30000021280 0001 00000000 0x0 0x0
0xffffe30000021300 0001 00000000 0x0 0x0
0xffffe30000021380 0001 00000000 0x0 0x0

0xffffe30000021400 0001 00000000 0x0 0x0
0xffffe30000021480 0001 00000000 0x0 0x0
0xffffe30000021500 0001 00000000 0x0 0x0
0xffffe30000021580 0001 00000000 0x0 0x0
0xffffe30000021600 0001 00000000 0x0 0x0
0xffffe30000021680 0001 00000000 0x0 0x0
0xffffe30000021700 0001 00000000 0x0 0x0
0xffffe30000021780 0001 00000000 0x0 0x0
0xffffe30000021800 0001 00000000 0x0 0x0
0xffffe30000021880 0001 00000000 0x0 0x0
0xffffe30000021900 0001 00000000 0x0 0x0
0xffffe30000021980 0001 00000000 0x0 0x0

0xffffe30000021a00 0001 00000000 0x0 0x0
0xffffe30000021a80 0001 00000000 0x0 0x0
0xffffe30000021b00 0001 00000000 0x0 0x0
0xffffe30000021b80 0001 00000000 0x0 0x0
0xffffe30000021c00 0001 00000000 0x0 0x0
0xffffe30000021c80 0001 00000000 0x0 0x0
0xffffe30000021d00 0001 00000000 0x0 0x0
0xffffe30000021d80 0001 00000000 0x0 0x0

0xffffe30000021e00 0001 00000000 0x0 0x0
0xffffe30000021e80 0001 00000000 0x0 0x0
0xffffe30000021f00 0001 00000000 0x0 0x0
0xffffe30000021f80 0001 00000000 0x0 0x0

0xffffe30000022000 0001 00000000 0x0 0x0
0xffffe30000022080 0001 00000000 0x0 0x0
0xffffe30000022100 0001 00000000 0x0 0x0
0xffffe30000022180 0001 00000000 0x0 0x0
0xffffe30000022200 0001 00000000 0x0 0x0
0xffffe30000022280 0001 00000000 0x0 0x0
0xffffe30000022300 0001 00000000 0x0 0x0
0xffffe30000022380 0001 00000000 0x0 0x0

0xffffe30000022400 0001 00000000 0x0 0x0
0xffffe30000022480 0001 00000000 0x0 0x0
0xffffe30000022500 0001 00000000 0x0 0x0
0xffffe30000022580 0001 00000000 0x0 0x0
0xffffe30000022600 0001 00000000 0x0 0x0
0xffffe30000022680 0001 00000000 0x0 0x0
0xffffe30000022700 0001 00000000 0x0 0x0
0xffffe30000022780 0001 00000000 0x0 0x0
0xffffe30000022800 0001 00000000 0x0 0x0
0xffffe30000022880 0001 00000000 0x0 0x0
0xffffe30000022900 0001 00000000 0x0 0x0
0xffffe30000022980 0001 00000000 0x0 0x0

0xffffe30000022a00 0001 00000000 0x0 0x0
0xffffe30000022a80 0001 00000000 0x0 0x0
0xffffe30000022b00 0001 00000000 0x0 0x0
0xffffe30000022b80 0001 00000000 0x0 0x0
0xffffe30000022c00 0001 00000000 0x0 0x0
0xffffe30000022c80 0001 00000000 0x0 0x0
0xffffe30000022d00 0001 00000000 0x0 0x0

0xffffe30000022d80 0001 00000000 0x0 0x0

0xffffe30000022e00 0001 00000000 0x0 0x0
0xffffe30000022e80 0001 00000000 0x0 0x0
0xffffe30000022f00 0001 00000000 0x0 0x0
0xffffe30000022f80 0001 00000000 0x0 0x0

0xffffe30000023000 0001 00000000 0x0 0x0
0xffffe30000023080 0001 00000000 0x0 0x0
0xffffe30000023100 0001 00000000 0x0 0x0
0xffffe30000023180 0001 00000000 0x0 0x0
0xffffe30000023200 0001 00000000 0x0 0x0
0xffffe30000023280 0001 00000000 0x0 0x0
0xffffe30000023300 0001 00000000 0x0 0x0
0xffffe30000023380 0001 00000000 0x0 0x0

0xffffe30000023400 0001 00000000 0x0 0x0
0xffffe30000023480 0001 00000000 0x0 0x0
0xffffe30000023500 0001 00000000 0x0 0x0
0xffffe30000023580 0001 00000000 0x0 0x0
0xffffe30000023600 0001 00000000 0x0 0x0
0xffffe30000023680 0001 00000000 0x0 0x0
0xffffe30000023700 0001 00000000 0x0 0x0
0xffffe30000023780 0001 00000000 0x0 0x0
0xffffe30000023800 0001 00000000 0x0 0x0
0xffffe30000023880 0001 00000000 0x0 0x0
0xffffe30000023900 0001 00000000 0x0 0x0
0xffffe30000023980 0001 00000000 0x0 0x0

0xffffe30000023a00 0001 00000000 0x0 0x0
0xffffe30000023a80 0001 00000000 0x0 0x0
0xffffe30000023b00 0001 00000000 0x0 0x0
0xffffe30000023b80 0001 00000000 0x0 0x0
0xffffe30000023c00 0001 00000000 0x0 0x0
0xffffe30000023c80 0001 00000000 0x0 0x0
0xffffe30000023d00 0001 00000000 0x0 0x0

0xffffe30000023d80 0001 00000000 0x0 0x0

0xffffe30000023e00 0001 00000000 0x0 0x0
0xffffe30000023e80 0001 00000000 0x0 0x0
0xffffe30000023f00 0001 00000000 0x0 0x0
0xffffe30000023f80 0001 00000000 0x0 0x0

0xffffe30000024000 0001 00000000 0x0 0x0
0xffffe30000024080 0001 00000000 0x0 0x0
0xffffe30000024100 0001 00000000 0x0 0x0
0xffffe30000024180 0001 00000000 0x0 0x0
0xffffe30000024200 0001 00000000 0x0 0x0
0xffffe30000024280 0001 00000000 0x0 0x0
0xffffe30000024300 0001 00000000 0x0 0x0
0xffffe30000024380 0001 00000000 0x0 0x0

0xffffe30000024400 0001 00000000 0x0 0x0
0xffffe30000024480 0001 00000000 0x0 0x0
0xffffe30000024500 0001 00000000 0x0 0x0
0xffffe30000024580 0001 00000000 0x0 0x0
0xffffe30000024600 0001 00000000 0x0 0x0
0xffffe30000024680 0001 00000000 0x0 0x0
0xffffe30000024700 0001 00000000 0x0 0x0
0xffffe30000024780 0001 00000000 0x0 0x0
0xffffe30000024800 0001 00000000 0x0 0x0
0xffffe30000024880 0001 00000000 0x0 0x0
0xffffe30000024900 0001 00000000 0x0 0x0
0xffffe30000024980 0001 00000000 0x0 0x0

0xffffe30000024a00 0001 00000000 0x0 0x0
0xffffe30000024a80 0001 00000000 0x0 0x0
0xffffe30000024b00 0001 00000000 0x0 0x0
0xffffe30000024b80 0001 00000000 0x0 0x0
0xffffe30000024c00 0001 00000000 0x0 0x0
0xffffe30000024c80 0001 00000000 0x0 0x0
0xffffe30000024d00 0001 00000000 0x0 0x0

0xffffe30000024d80 0001 00000000 0x0 0x0

0xffffe30000024e00 0001 00000000 0x0 0x0
0xffffe30000024e80 0001 00000000 0x0 0x0
0xffffe30000024f00 0001 00000000 0x0 0x0
0xffffe30000024f80 0001 00000000 0x0 0x0

0xffffe30000025000 0001 00000000 0x0 0x0
0xffffe30000025080 0001 00000000 0x0 0x0
0xffffe30000025100 0001 00000000 0x0 0x0
0xffffe30000025180 0001 00000000 0x0 0x0
0xffffe30000025200 0001 00000000 0x0 0x0
0xffffe30000025280 0001 00000000 0x0 0x0
0xffffe30000025300 0001 00000000 0x0 0x0
0xffffe30000025380 0001 00000000 0x0 0x0

0xffffe30000025400 0001 00000000 0x0 0x0
0xffffe30000025480 0001 00000000 0x0 0x0
0xffffe30000025500 0001 00000000 0x0 0x0
0xffffe30000025580 0001 00000000 0x0 0x0
0xffffe30000025600 0001 00000000 0x0 0x0
0xffffe30000025680 0001 00000000 0x0 0x0
0xffffe30000025700 0001 00000000 0x0 0x0
0xffffe30000025780 0001 00000000 0x0 0x0
0xffffe30000025800 0001 00000000 0x0 0x0
0xffffe30000025880 0001 00000000 0x0 0x0
0xffffe30000025900 0001 00000000 0x0 0x0
0xffffe30000025980 0001 00000000 0x0 0x0

0xffffe30000025a00 0001 00000000 0x0 0x0
0xffffe30000025a80 0001 00000000 0x0 0x0
0xffffe30000025b00 0001 00000000 0x0 0x0
0xffffe30000025b80 0001 00000000 0x0 0x0
0xffffe30000025c00 0001 00000000 0x0 0x0
0xffffe30000025c80 0001 00000000 0x0 0x0
0xffffe30000025d00 0001 00000000 0x0 0x0
0xffffe30000025d80 0001 00000000 0x0 0x0

0xffffe30000025e00 0001 00000000 0x0 0x0
0xffffe30000025e80 0001 00000000 0x0 0x0
0xffffe30000025f00 0001 00000000 0x0 0x0
0xffffe30000025f80 0001 00000000 0x0 0x0

0xffffe30000026000 0001 00000000 0x0 0x0
0xffffe30000026080 0001 00000000 0x0 0x0
0xffffe30000026100 0001 00000000 0x0 0x0
0xffffe30000026180 0001 00000000 0x0 0x0
0xffffe30000026200 0001 00000000 0x0 0x0
0xffffe30000026280 0001 00000000 0x0 0x0
0xffffe30000026300 0001 00000000 0x0 0x0
0xffffe30000026380 0001 00000000 0x0 0x0
0xffffe30000026400 0001 00000000 0x0 0x0
0xffffe30000026480 0001 00000000 0x0 0x0
0xffffe30000026500 0001 00000000 0x0 0x0
0xffffe30000026580 0001 00000000 0x0 0x0
0xffffe30000026600 0001 00000000 0x0 0x0
0xffffe30000026680 0001 00000000 0x0 0x0
0xffffe30000026700 0001 00000000 0x0 0x0
0xffffe30000026780 0001 00000000 0x0 0x0
0xffffe30000026800 0001 00000000 0x0 0x0
0xffffe30000026880 0001 00000000 0x0 0x0
0xffffe30000026900 0001 00000000 0x0 0x0
0xffffe30000026980 0001 00000000 0x0 0x0
0xffffe30000026a00 0001 00000000 0x0 0x0
0xffffe30000026a80 0001 00000000 0x0 0x0
0xffffe30000026b00 0001 00000000 0x0 0x0
0xffffe30000026b80 0001 00000000 0x0 0x0
0xffffe30000026c00 0001 00000000 0x0 0x0
0xffffe30000026c80 0001 00000000 0x0 0x0
0xffffe30000026d00 0001 00000000 0x0 0x0
0xffffe30000026d80 0001 00000000 0x0 0x0
0xffffe30000026e00 0001 00000000 0x0 0x0
0xffffe30000026e80 0001 00000000 0x0 0x0
0xffffe30000026f00 0001 00000000 0x0 0x0
0xffffe30000026f80 0001 00000000 0x0 0x0
0xffffe30000027000 0001 00000000 0x0 0x0
0xffffe30000027080 0001 00000000 0x0 0x0
0xffffe30000027100 0001 00000000 0x0 0x0
0xffffe30000027180 0001 00000000 0x0 0x0
0xffffe30000027200 0001 00000000 0x0 0x0
0xffffe30000027280 0001 00000000 0x0 0x0
0xffffe30000027300 0001 00000000 0x0 0x0
0xffffe30000027380 0001 00000000 0x0 0x0
0xffffe30000027400 0001 00000000 0x0 0x0
0xffffe30000027480 0001 00000000 0x0 0x0
0xffffe30000027500 0001 00000000 0x0 0x0
0xffffe30000027580 0001 00000000 0x0 0x0
0xffffe30000027600 0001 00000000 0x0 0x0
0xffffe30000027680 0001 00000000 0x0 0x0
0xffffe30000027700 0001 00000000 0x0 0x0
0xffffe30000027780 0001 00000000 0x0 0x0
0xffffe30000027800 0001 00000000 0x0 0x0
0xffffe30000027880 0001 00000000 0x0 0x0
0xffffe30000027900 0001 00000000 0x0 0x0
0xffffe30000027980 0001 00000000 0x0 0x0
0xffffe30000027a00 0001 00000000 0x0 0x0
0xffffe30000027a80 0001 00000000 0x0 0x0
0xffffe30000027b00 0001 00000000 0x0 0x0
0xffffe30000027b80 0001 00000000 0x0 0x0
0xffffe30000027c00 0001 00000000 0x0 0x0
0xffffe30000027c80 0001 00000000 0x0 0x0
0xffffe30000027d00 0001 00000000 0x0 0x0
0xffffe30000027d80 0001 00000000 0x0 0x0
0xffffe30000027e00 0001 00000000 0x0 0x0
0xffffe30000027e80 0001 00000000 0x0 0x0
0xffffe30000027f00 0001 00000000 0x0 0x0
0xffffe30000027f80 0001 00000000 0x0 0x0
0xffffe30000028000 0001 00000000 0x0 0x0
0xffffe30000028080 0001 00000000 0x0 0x0
0xffffe30000028100 0001 00000000 0x0 0x0
0xffffe30000028180 0001 00000000 0x0 0x0
0xffffe30000028200 0001 00000000 0x0 0x0
0xffffe30000028280 0001 00000000 0x0 0x0
0xffffe30000028300 0001 00000000 0x0 0x0
0xffffe30000028380 0001 00000000 0x0 0x0
0xffffe30000028400 0001 00000000 0x0 0x0
0xffffe30000028480 0001 00000000 0x0 0x0
0xffffe30000028500 0001 00000000 0x0 0x0
0xffffe30000028580 0001 00000000 0x0 0x0
0xffffe30000028600 0001 00000000 0x0 0x0
0xffffe30000028680 0001 00000000 0x0 0x0
0xffffe30000028700 0001 00000000 0x0 0x0
0xffffe30000028780 0001 00000000 0x0 0x0
0xffffe30000028800 0001 00000000 0x0 0x0
0xffffe30000028880 0001 00000000 0x0 0x0
0xffffe30000028900 0001 00000000 0x0 0x0
0xffffe30000028980 0001 00000000 0x0 0x0
0xffffe30000028a00 0001 00000000 0x0 0x0
0xffffe30000028a80 0001 00000000 0x0 0x0
0xffffe30000028b00 0001 00000000 0x0 0x0
0xffffe30000028b80 0001 00000000 0x0 0x0
0xffffe30000028c00 0001 00000000 0x0 0x0
0xffffe30000028c80 0001 00000000 0x0 0x0
0xffffe30000028d00 0001 00000000 0x0 0x0
0xffffe30000028d80 0001 00000000 0x0 0x0
0xffffe30000028e00 0001 00000000 0x0 0x0
0xffffe30000028e80 0001 00000000 0x0 0x0
0xffffe30000028f00 0001 00000000 0x0 0x0
0xffffe30000028f80 0001 00000000 0x0 0x0
0xffffe30000029000 0001 00000000 0x0 0x0
0xffffe30000029080 0001 00000000 0x0 0x0
0xffffe30000029100 0001 00000000 0x0 0x0
0xffffe30000029180 0001 00000000 0x0 0x0
0xffffe30000029200 0001 00000000 0x0 0x0
0xffffe30000029280 0001 00000000 0x0 0x0
0xffffe30000029300 0001 00000000 0x0 0x0
0xffffe30000029380 0001 00000000 0x0 0x0
0xffffe30000029400 0001 00000000 0x0 0x0
0xffffe30000029480 0001 00000000 0x0 0x0
0xffffe30000029500 0001 00000000 0x0 0x0
0xffffe30000029580 0001 00000000 0x0 0x0
0xffffe30000029600 0001 00000000 0x0 0x0
0xffffe30000029680 0001 00000000 0x0 0x0
0xffffe30000029700 0001 00000000 0x0 0x0
0xffffe30000029780 0001 00000000 0x0 0x0
0xffffe30000029800 0001 00000000 0x0 0x0
0xffffe30000029880 0001 00000000 0x0 0x0
0xffffe30000029900 0001 00000000 0x0 0x0
0xffffe30000029980 0001 00000000 0x0 0x0
0xffffe30000029a00 0001 00000000 0x0 0x0
0xffffe30000029a80 0001 00000000 0x0 0x0
0xffffe30000029b00 0001 00000000 0x0 0x0
0xffffe30000029b80 0001 00000000 0x0 0x0
0xffffe30000029c00 0001 00000000 0x0 0x0
0xffffe30000029c80 0001 00000000 0x0 0x0
0xffffe30000029d00 0001 00000000 0x0 0x0
0xffffe30000029d80 0001 00000000 0x0 0x0
0xffffe30000029e00 0001 00000000 0x0 0x0
0xffffe30000029e80 0001 00000000 0x0 0x0
0xffffe30000029f00 0001 00000000 0x0 0x0
0xffffe30000029f80 0001 00000000 0x0 0x0
0xffffe3000002a000 0001 00000000 0x0 0x0
0xffffe3000002a080 0001 00000000 0x0 0x0
0xffffe3000002a100 0001 00000000 0x0 0x0
0xffffe3000002a180 0001 00000000 0x0 0x0
0xffffe3000002a200 0001 00000000 0x0 0x0
0xffffe3000002a280 0001 00000000 0x0 0x0
0xffffe3000002a300 0001 00000000 0x0 0x0
0xffffe3000002a380 0001 00000000 0x0 0x0
0xffffe3000002a400 0001 00000000 0x0 0x0
0xffffe3000002a480 0001 00000000 0x0 0x0
0xffffe3000002a500 0001 00000000 0x0 0x0
0xffffe3000002a580 0001 00000000 0x0 0x0
0xffffe3000002a600 0001 00000000 0x0 0x0
0xffffe3000002a680 0001 00000000 0x0 0x0
0xffffe3000002a700 0001 00000000 0x0 0x0
0xffffe3000002a780 0001 00000000 0x0 0x0
0xffffe3000002a800 0001 00000000 0x0 0x0
0xffffe3000002a880 0001 00000000 0x0 0x0
0xffffe3000002a900 0001 00000000 0x0 0x0
0xffffe3000002a980 0001 00000000 0x0 0x0
0xffffe3000002aa00 0001 00000000 0x0 0x0
0xffffe3000002aa80 0001 00000000 0x0 0x0
0xffffe3000002ab00 0001 00000000 0x0 0x0
0xffffe3000002ab80 0001 00000000 0x0 0x0
0xffffe3000002ac00 0001 00000000 0x0 0x0
0xffffe3000002ac80 0001 00000000 0x0 0x0
0xffffe3000002ad00 0001 00000000 0x0 0x0
0xffffe3000002ad80 0001 00000000 0x0 0x0
0xffffe3000002ae00 0001 00000000 0x0 0x0
0xffffe3000002ae80 0001 00000000 0x0 0x0
0xffffe3000002af00 0001 00000000 0x0 0x0
0xffffe3000002af80 0001 00000000 0x0 0x0
0xffffe3000002b000 0001 00000000 0x0 0x0
0xffffe3000002b080 0001 00000000 0x0 0x0
0xffffe3000002b100 0001 00000000 0x0 0x0
0xffffe3000002b180 0001 00000000 0x0 0x0
0xffffe3000002b200 0001 00000000 0x0 0x0
0xffffe3000002b280 0001 00000000 0x0 0x0
0xffffe3000002b300 0001 00000000 0x0 0x0
0xffffe3000002b380 0001 00000000 0x0 0x0
0xffffe3000002b400 0001 00000000 0x0 0x0
0xffffe3000002b480 0001 00000000 0x0 0x0
0xffffe3000002b500 0001 00000000 0x0 0x0
0xffffe3000002b580 0001 00000000 0x0 0x0
0xffffe3000002b600 0001 00000000 0x0 0x0
0xffffe3000002b680 0001 00000000 0x0 0x0
0xffffe3000002b700 0001 00000000 0x0 0x0
0xffffe3000002b780 0001 00000000 0x0 0x0
0xffffe3000002b800 0001 00000000 0x0 0x0
0xffffe3000002b880 0001 00000000 0x0 0x0
0xffffe3000002b900 0001 00000000 0x0 0x0
0xffffe3000002b980 0001 00000000 0x0 0x0
0xffffe3000002ba00 0001 00000000 0x0 0x0
0xffffe3000002ba80 0001 00000000 0x0 0x0
0xffffe3000002bb00 0001 00000000 0x0 0x0
0xffffe3000002bb80 0001 00000000 0x0 0x0
0x

Tested on:

commit: 0e011ed7 Uglify code to fix build.
git tree: https://github.com/NetBSD/src trunk

console output: https://syzkaller.appspot.com/x/log.txt?x=12cf4bd4080000

patch: https://syzkaller.appspot.com/x/patch.diff?x=13f1eef4080000

syzbot

unread,

Jul 4, 2022, 12:16:17 PM7/4/22

to rias...@netbsd.org, syzkaller-...@googlegroups.com

Hello,

syzbot tried to test the proposed patch but the build/boot failed:

| / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | +3159712/ - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ +1034592| / - \ | / [1510368- \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ +976997| / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | / - \ | ]=0x6a5feb0
/ - \ | / - \ | / - \ | / - \ | / - \ | / - \ | Loading /var/db/entropy-file
[ 1.0000000] cpu_rng: rdrand/rdseed
[ 1.0000000] entropy: ready
[ 1.0000000] entropy: entering seed from bootloader with 256 bits of entropy
[ 1.0000000] ksyms: checking .text
[ 1.0000000] ksyms: checking .rodata.hotpatch
[ 1.0000000] ksyms: checking .rodata
[ 1.0000000] ksyms: checking link_set_x86_hotpatch_descriptors
[ 1.0000000] ksyms: checking link_set_sdt_providers_set
[ 1.0000000] ksyms: checking link_set_sdt_probes_set
[ 1.0000000] ksyms: checking link_set_sdt_argtypes_set
[ 1.0000000] ksyms: checking link_set_modules
[ 1.0000000] ksyms: checking link_set_sysctl_funcs
[ 1.0000000] ksyms: checking link_set_acpi_device_calls
[ 1.0000000] ksyms: checking link_set_evcnts
[ 1.0000000] ksyms: checking link_set_linux_module_param_info
[ 1.0000000] ksyms: checking link_set_linux_module_param_desc
[ 1.0000000] ksyms: checking link_set_domains
[ 1.0000000] ksyms: checking link_set_ieee80211_funcs
[ 1.0000000] ksyms: checking link_set_ah_chips
[ 1.0000000] ksyms: checking link_set_ah_rfs
[ 1.0000000] ksyms: checking link_set_dkwedge_methods
[ 1.0000000] ksyms: checking link_set_prop_linkpools
[ 1.0000000] ksyms: checking .data
[ 1.0000000] ksyms: checking .data.cacheline_aligned
[ 1.0000000] ksyms: checking .data.read_mostly
[ 1.0000000] ksyms: checking .bss
[ 1.0000000] ksyms: checking .note.netbsd.ident
[ 1.0000000] ksyms: checking .note.Xen
[ 1.0000000] ksyms: checking .ident
[ 1.0000000] ksyms: checking .comment
[ 1.0000000] ksyms: checking .gnu_debuglink
[ 1.0000000] ksyms: checking .symtab
[ 1.0000000] ksyms: checking .strtab
[ 1.0000000] ksyms: checking .shstrtab
[ 1.0000000] Loaded initial symtab at 0xffffffff86a00a68, strtab at 0xffffffff86b71648, # entries 62932
[ 1.0000000] Copyright (c) 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005,
[ 1.0000000] 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017,
[ 1.0000000] 2018, 2019, 2020, 2021, 2022
[ 1.0000000] The NetBSD Foundation, Inc. All rights reserved.
[ 1.0000000] Copyright (c) 1982, 1986, 1989, 1991, 1993
[ 1.0000000] The Regents of the University of California. All rights reserved.

[ 1.0000000] NetBSD 9.99.98 (GENERIC_SYZKALLER) #0: Mon Jul 4 16:03:54 UTC 2022
[ 1.0000000] root@ci2:/syzkaller/jobs/netbsd/kernel/sys/arch/amd64/compile/obj/GENERIC_SYZKALLER
[ 1.0000000] total memory = 8191 MB
[ 1.0000000] avail memory = 4044 MB
[ 1.0000030] mainbus0 (root)
[ 1.0000030] ACPI: RSDP 0x00000000000F2740 000014 (v00 Google)
[ 1.0000030] ACPI: RSDT 0x00000000BFFFFF90 000038 (v01 Google GOOGRSDT 00000001 GOOG 00000001)
[ 1.0000030] ACPI: FACP 0x00000000BFFFF330 0000F4 (v02 Google GOOGFACP 00000001 GOOG 00000001)
[ 1.0000030] ACPI: DSDT 0x00000000BFFFD8C0 001A64 (v01 Google GOOGDSDT 00000001 GOOG 00000001)
[ 1.0000030] ACPI: FACS 0x00000000BFFFD880 000040
[ 1.0000030] ACPI: SRAT 0x00000000BFFFFE60 0000C8 (v03 Google GOOGSRAT 00000001 GOOG 00000001)
[ 1.0000030] ACPI: APIC 0x00000000BFFFFDB0 000076 (v05 Google GOOGAPIC 00000001 GOOG 00000001)
[ 1.0000030] ACPI: SSDT 0x00000000BFFFF430 000980 (v01 Google GOOGSSDT 00000001 GOOG 00000001)
[ 1.0000030] ACPI: WAET 0x00000000BFFFFE30 000028 (v01 Google GOOGWAET 00000001 GOOG 00000001)
[ 1.0000030] ACPI: 2 ACPI AML tables successfully acquired and loaded
[ 1.0000030] ioapic0 at mainbus0 apid 0
[ 1.0000030] cpu0 at mainbus0 apid 0
[ 1.0000030] cpu0: Intel(R) Xeon(R) CPU @ 2.20GHz, id 0x406f0
[ 1.0000030] cpu0: node 0, package 0, core 0, smt 0
[ 1.0000030] cpu1 at mainbus0 apid 1
[ 1.0000030] cpu1: Intel(R) Xeon(R) CPU @ 2.20GHz, id 0x406f0
[ 1.0000030] cpu1: node 0, package 0, core 0, smt 1
[ 1.0000030] acpi0 at mainbus0: Intel ACPICA 20211217
[ 1.0000030] acpi0: fixed power button present
[ 1.0000030] acpi0: fixed sleep button present
[ 1.0061940] pckbc1 at acpi0 (KBD, PNP0303) (kbd port): io 0x60,0x64 irq 1
[ 1.0061940] pckbc2 at acpi0 (MOU, PNP0F13) (aux port): irq 12
[ 1.0061940] com0 at acpi0 (COM1, PNP0501-1): io 0x3f8-0x3ff irq 4
[ 1.0061940] com: ns16550a, 16-byte FIFO
[ 1.0061940] com0: console
[ 1.0061940] com1 at acpi0 (COM2, PNP0501-2): io 0x2f8-0x2ff irq 3
[ 1.0061940] com1: ns16550a, 16-byte FIFO
[ 1.0061940] com2 at acpi0 (COM3, PNP0501-3): io 0x3e8-0x3ef irq 6
[ 1.0061940] com2: ns16550a, 16-byte FIFO
[ 1.0061940] com3 at acpi0 (COM4, PNP0501-4): io 0x2e8-0x2ef irq 7
[ 1.0061940] com3: ns16550a, 16-byte FIFO
[ 1.0061940] PEVT (QEMU0001) at acpi0 not configured
[ 1.0061940] ACPI: Enabled 16 GPEs in block 00 to 0F
[ 1.0061940] pckbd0 at pckbc1 (kbd slot)
[ 1.0061940] pckbc1: using irq 1 for kbd slot
[ 1.0061940] wskbd0 at pckbd0 mux 1
[ 1.0061940] pms0 at pckbc1 (aux slot)
[ 1.0061940] pckbc1: using irq 12 for aux slot
[ 1.0061940] wsmouse0 at pms0 mux 0
[ 1.0061940] pci0 at mainbus0 bus 0: configuration mode 1
[ 1.0061940] pchb0 at pci0 dev 0 function 0: Intel 82441FX (PMC) PCI and Memory Controller (rev. 0x02)
[ 1.0061940] pcib0 at pci0 dev 1 function 0: Intel 82371AB (PIIX4) PCI-ISA Bridge (rev. 0x03)
[ 1.0061940] piixpm0 at pci0 dev 1 function 3: Intel 82371AB (PIIX4) Power Management Controller (rev. 0x03)
[ 1.0061940] piixpm0: SMBus disabled
[ 1.0061940] virtio0 at pci0 dev 3 function 0
[ 1.0061940] virtio0: SCSI device (rev. 0x00)
[ 1.0061940] vioscsi0 at virtio0: features: 0
[ 1.0061940] vioscsi0: cmd_per_lun 256 qsize 8192 seg_max 64 max_target 253 max_lun 1
[ 1.0061940] virtio0: config interrupting at msix0 vec 0
[ 1.0061940] virtio0: queues interrupting at msix0 vec 1
[ 1.0061940] scsibus0 at vioscsi0: 254 targets, 2 luns per target
[ 1.0061940] virtio1 at pci0 dev 4 function 0
[ 1.0061940] virtio1: network device (rev. 0x00)
[ 1.0061940] vioif0 at virtio1: features: 0x20030020<EVENT_IDX,CTRL_VQ,STATUS,MAC>
[ 1.0061940] vioif0: Ethernet address 42:01:0a:80:00:98
[ 1.0061940] virtio1: config interrupting at msix1 vec 0
[ 1.0061940] virtio1: queues interrupting at msix1 vec 1
[ 1.0061940] genfb0 at pci0 dev 5 function 0: vendor 1ae0 product a002 (rev. 0x01)
[ 1.0061940] virtio2 at pci0 dev 6 function 0
[ 1.0061940] virtio2: memory balloon device (rev. 0x00)
[ 1.0061940] viomb0 at virtio2: features: 0x1<MUST_TELL_HOST>
[ 1.0061940] virtio2: interrupting at ioapic0 pin 10
[ 1.0061940] virtio3 at pci0 dev 7 function 0
[ 1.0061940] virtio3: entropy device (rev. 0x00)
[ 1.0061940] viornd0 at virtio3: features: 0
[ 1.0061940] virtio3: interrupting at ioapic0 pin 11
[ 1.0061940] isa0 at pcib0
[ 1.0061940] attimer0 at isa0 port 0x40-0x43
[ 1.0061940] pcppi0 at isa0 port 0x61
[ 1.0061940] spkr0 at pcppi0: PC Speaker
[ 1.0061940] wsbell at spkr0 not configured
[ 1.0061940] midi0 at pcppi0: PC speaker
[ 1.0061940] sysbeep0 at pcppi0
[ 1.0061940] attimer0: attached to pcppi0
[ 1.0061940] acpicpu0 at cpu0: ACPI CPU
[ 1.0061940] acpicpu1 at cpu1: ACPI CPU
[ 1.8657991] cpu0 has 2 core siblings: cpu1 cpu0
[ 1.8657991] cpu0 has 2 pkg siblings: cpu1 cpu0
[ 1.8773360] cpu0 has 1 1st siblings: cpu0
[ 1.8773360] cpu0 first in package: cpu0
[ 1.8861910] cpu1 has 2 core siblings: cpu0 cpu1
[ 1.8861910] cpu1 has 2 pkg siblings: cpu0 cpu1
[ 1.8861910] cpu1 has 1 1st siblings: cpu0
[ 1.8985379] cpu1 first in package: cpu0
[ 2.0633039] sd0 at scsibus0 target 1 lun 0: <Google, PersistentDisk, 1> disk fixed
[ 2.0733235] sd0: fabricating a geometry
[ 2.0733235] sd0: 2048 MB, 2048 cyl, 64 head, 32 sec, 512 bytes/sect x 4194304 sectors
[ 2.0861913] sd0: fabricating a geometry
[ 2.1333010] dk0 at sd0: "49b813d1-8009-4c4f-b3e1-2cc288366ecc", 2097085 blocks at 64, type: ffs
[ 2.1511581] dk1 at sd0: "2a5f9479-33b7-499d-8cc4-f8d9ae0937b7", 2097119 blocks at 2097152, type: swap
[ 2.1609583] sd0: async, 8-bit transfers, tagged queueing
[ 2.7632953] usb0 at vhci0: USB revision 2.0
[ 2.7933584] uhub0 at usb0: NetBSD (0x0000) VHCI root hub (0x0000), class 9/0, rev 2.00/1.00, addr 1
[ 3.3132991] usb1 at vhci1: USB revision 2.0
[ 3.3433339] uhub1 at usb1: NetBSD (0x0000) VHCI root hub (0x0000), class 9/0, rev 2.00/1.00, addr 1
[ 3.8733058] usb2 at vhci2: USB revision 2.0
[ 3.8933469] uhub2 at usb2: NetBSD (0x0000) VHCI root hub (0x0000), class 9/0, rev 2.00/1.00, addr 1
[ 4.4132953] usb3 at vhci3: USB revision 2.0
[ 4.4333479] uhub3 at usb3: NetBSD (0x0000) VHCI root hub (0x0000), class 9/0, rev 2.00/1.00, addr 1
[ 4.9632941] usb4 at vhci4: USB revision 2.0
[ 4.9833434] uhub4 at usb4: NetBSD (0x0000) VHCI root hub (0x0000), class 9/0, rev 2.00/1.00, addr 1
[ 5.5032994] usb5 at vhci5: USB revision 2.0
[ 5.5333316] uhub5 at usb5: NetBSD (0x0000) VHCI root hub (0x0000), class 9/0, rev 2.00/1.00, addr 1
[ 6.0633000] usb6 at vhci6: USB revision 2.0
[ 6.0833583] uhub6 at usb6: NetBSD (0x0000) VHCI root hub (0x0000), class 9/0, rev 2.00/1.00, addr 1
[ 6.6032874] usb7 at vhci7: USB revision 2.0
[ 6.6333317] uhub7 at usb7: NetBSD (0x0000) VHCI root hub (0x0000), class 9/0, rev 2.00/1.00, addr 1
[ 6.7732826] boot device: sd0
[ 6.7732826] root on dk0 dumps on dk1
[ 6.7833127] dump_misc_init: max_paddr = 0x240000000
[ 6.7952901] mountroot: trying lfs...
[ 6.8036204] mountroot: trying ffs...
[ 6.8233213] root file system type: ffs
[ 6.8332830] kern.module.path=/stand/amd64/9.99.98/modules
[ 6.8332830] clock: unknown CMOS layout
[ 6.8833491] init: copying out path `/sbin/init' 11
Mon Jul 4 16:07[ 7.7633331] panic: kernel diagnostic assertion "error" failed: file "/syzkaller/jobs/netbsd/kernel/sys/kern/tty.c", line 2281
:44 UTC 2022
[ 7.7799243] cpu0: Begin traceback...
[ 7.7832739] vpanic() at netbsd:vpanic+0xc9d
[ 7.8132774] kern_assert() at netbsd:kern_assert+0x228
[ 7.8332779] ttwrite() at netbsd:ttwrite+0x28f9
[ 7.8632806] comwrite() at netbsd:comwrite+0x208
[ 7.8932835] cdev_write() at netbsd:cdev_write+0x2e0
[ 7.9132782] cnwrite() at netbsd:cnwrite+0x1bf
[ 7.9432799] cdev_write() at netbsd:cdev_write+0x2e0
[ 7.9632774] spec_write() at netbsd:spec_write+0x561
[ 7.9932819] VOP_WRITE() at netbsd:VOP_WRITE+0x39b
[ 8.0232792] vn_write() at netbsd:vn_write+0x709
[ 8.0532781] dofilewrite() at netbsd:dofilewrite+0x360
[ 8.0732792] sys_write() at netbsd:sys_write+0x259
[ 8.1032777] syscall() at netbsd:syscall+0x60c
[ 8.1132733] --- syscall (number 4) ---
[ 8.1232790] netbsd:syscall+0x60c:
[ 8.1232790] cpu0: End traceback...
[ 8.1232790] fatal breakpoint trap in supervisor mode
[ 8.1232790] trap type 1 code 0 rip 0xffffffff802228ad cs 0x8 rflags 0x282 cr2 0x761eaf81e496 ilevel 0 rsp 0xffffe180877f43d0
[ 8.1232790] curlwp 0xffffe1801229a680 pid 202.202 lowest kstack 0xffffe180877ed2c0
Stopped in pid 202.202 (sh) at netbsd:breakpoint+0x5: leave

breakpoint() at netbsd:breakpoint+0x5
vpanic() at netbsd:vpanic+0xc9d

kern_assert() at netbsd:kern_assert+0x228
ttwrite() at netbsd:ttwrite+0x28f9
comwrite() at netbsd:comwrite+0x208
cdev_write() at netbsd:cdev_write+0x2e0
cnwrite() at netbsd:cnwrite+0x1bf
cdev_write() at netbsd:cdev_write+0x2e0

spec_write() at netbsd:spec_write+0x561
VOP_WRITE() at netbsd:VOP_WRITE+0x39b
vn_write() at netbsd:vn_write+0x709

dofilewrite() at netbsd:dofilewrite+0x360
sys_write() at netbsd:sys_write+0x259
syscall() at netbsd:syscall+0x60c
--- syscall (number 4) ---
netbsd:syscall+0x60c:
ds a918
es 40f3
fs 43c0
gs 0
rdi 5
rsi 0
--db_more--

syzkaller build log:
go env (err=<nil>)
GO111MODULE="auto"
GOARCH="amd64"
GOBIN=""
GOCACHE="/syzkaller/.cache/go-build"
GOENV="/syzkaller/.config/go/env"
GOEXE=""
GOEXPERIMENT=""
GOFLAGS=""
GOHOSTARCH="amd64"
GOHOSTOS="linux"
GOINSECURE=""
GOMODCACHE="/syzkaller/jobs/netbsd/gopath/pkg/mod"
GONOPROXY=""
GONOSUMDB=""
GOOS="linux"
GOPATH="/syzkaller/jobs/netbsd/gopath"
GOPRIVATE=""
GOPROXY="https://proxy.golang.org,direct"
GOROOT="/usr/local/go"
GOSUMDB="sum.golang.org"
GOTMPDIR=""
GOTOOLDIR="/usr/local/go/pkg/tool/linux_amd64"
GOVCS=""
GOVERSION="go1.17"
GCCGO="gccgo"
AR="ar"
CC="gcc"
CXX="g++"
CGO_ENABLED="1"
GOMOD="/syzkaller/jobs/netbsd/gopath/src/github.com/google/syzkaller/go.mod"
CGO_CFLAGS="-g -O2"
CGO_CPPFLAGS=""
CGO_CXXFLAGS="-g -O2"
CGO_FFLAGS="-g -O2"
CGO_LDFLAGS="-g -O2"
PKG_CONFIG="pkg-config"
GOGCCFLAGS="-fPIC -m64 -pthread -fmessage-length=0 -fdebug-prefix-map=/tmp/go-build2755801767=/tmp/go-build -gno-record-gcc-switches"

git status (err=<nil>)
HEAD detached at a7dab6385
nothing to commit, working tree clean

go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen
make .descriptions
bin/syz-sysgen
touch .descriptions
GOOS=netbsd GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=a7dab6385c1d95547a88e22577fb56fbcd5c37eb -X 'github.com/google/syzkaller/prog.gitRevisionDate=20220205-085958'" "-tags=syz_target syz_os_netbsd syz_arch_amd64 " -o ./bin/netbsd_amd64/syz-fuzzer github.com/google/syzkaller/syz-fuzzer
GOOS=netbsd GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=a7dab6385c1d95547a88e22577fb56fbcd5c37eb -X 'github.com/google/syzkaller/prog.gitRevisionDate=20220205-085958'" "-tags=syz_target syz_os_netbsd syz_arch_amd64 " -o ./bin/netbsd_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog
GOOS=netbsd GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=a7dab6385c1d95547a88e22577fb56fbcd5c37eb -X 'github.com/google/syzkaller/prog.gitRevisionDate=20220205-085958'" "-tags=syz_target syz_os_netbsd syz_arch_amd64 " -o ./bin/netbsd_amd64/syz-stress github.com/google/syzkaller/tools/syz-stress
mkdir -p ./bin/netbsd_amd64
/syzkaller/shared/netbsd/tools/bin/x86_64--netbsd-g++ -o ./bin/netbsd_amd64/syz-executor executor/executor.cc \
-m64 --sysroot /syzkaller/shared/netbsd/dest/ -O2 -pthread -Wall -Werror -Wparentheses -Wframe-larger-than=16384 -fpermissive -w -DGOOS_netbsd=1 -DGOARCH_amd64=1 \
-DHOSTGOOS_linux=1 -DGIT_REVISION=\"a7dab6385c1d95547a88e22577fb56fbcd5c37eb\"

Error text is too large and was truncated, full error text is at:
https://syzkaller.appspot.com/x/error.txt?x=12b27810080000

Tested on:

commit: 330a6f8f lint: do not treat message IDs as arithmetic ..

git tree: https://github.com/NetBSD/src trunk

patch: https://syzkaller.appspot.com/x/patch.diff?x=1533cf04080000

syzbot

unread,

Jul 4, 2022, 12:55:10 PM7/4/22

to rias...@netbsd.org, syzkaller-...@googlegroups.com

Hello,

syzbot has tested the proposed patch but the reproducer is still triggering an issue:

panic: kernpel diagnostic assertion "uio->uio_iovcnt > NUM" failed: file "/syzkaler/jobs/

@ g syz-executor.2 > �b �; � 8 P �� syz-executor.1 > �b D< � �R p g syz-executor.2 > �b L< � p��8u � syz-executor.1 > �b b< � 8 � syz-executor.1 > �b �< � 0 � syz-executor.1 > �b �< � ��F� � syz-executor.1 > �b �< � � syz-executor.1 > �b = � syz-executor.5 > �b �= @ g syz-executor.2 > �b �A � 8 p �� g syz-executor.2 > �b B � ��8u @ g syz-executor.2 > �b executor.2 > �b HD [ 59 � 8 .3129658] panic: kern p el diagnostic assertion "uio->uio_iovcnt > 1" failed: file "/syzkal er/jobs/netbsd/kernel/sys/kern/subr_copy.c", line 119
[ 59.3229756] cpu1: Begin traceback...
�� [ 59.3529616] vpanic() at netbsd:vpanic+0xc9d
[ 59.3929647] kern_assert() at netbsd:kern_assert+0x228
[ 59.4429592] uiomove() at netbsd:uiomove+0x6b7 sys/kern/subr_copy.c:105
[ 59.4829609] ttwrite() at netbsd:ttwrite+0x1596 sys/kern/tty.c:2205
[ 59.5329673] comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
[ 59.5829609] cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207
[ 59.6229622] spec_write() at netbsd:spec_write+0x561
[ 59.6729648] VOP_WRITE() at netbsd:VOP_WRITE+0x39b
[ 59.7229614] vn_write() at netbsd:vn_write+0x709
[ 59.7729656] ktrace_thread() at netbsd:ktrace_thread+0x135c ktrwrite sys/kern/kern_ktrace.c:1341 [inline]
[ 59.7729656] ktrace_thread() at netbsd:ktrace_thread+0x135c sys/kern/kern_ktrace.c:1410
[ 59.7929659] cpu1: End traceback...
[ 59.7929659] fatal breakpoint trap in supervisor mode
[ 59.7929659] trap type 1 code 0 rip 0xffffffff802228ad cs 0x8 rflags 0x282 cr2 0x701d51a0e338 ilevel 0 rsp 0xffffa80087783070
[ 59.8129607] curlwp 0xffffa800135a3640 pid 0.1203 lowest kstack 0xffffa8008777c2c0
Stopped in pid 0.1203 (system) at netbsd:breakpoint+0x5: leave
?

breakpoint() at netbsd:breakpoint+0x5
vpanic() at netbsd:vpanic+0xc9d
kern_assert() at netbsd:kern_assert+0x228

uiomove() at netbsd:uiomove+0x6b7 sys/kern/subr_copy.c:105
ttwrite() at netbsd:ttwrite+0x1596 sys/kern/tty.c:2205

comwrite() at netbsd:comwrite+0x208 sys/dev/ic/com.c:1260
cdev_write() at netbsd:cdev_write+0x2e0 sys/kern/subr_devsw.c:1207

spec_write() at netbsd:spec_write+0x561
VOP_WRITE() at netbsd:VOP_WRITE+0x39b
vn_write() at netbsd:vn_write+0x709

ktrace_thread() at netbsd:ktrace_thread+0x135c ktrwrite sys/kern/kern_ktrace.c:1341 [inline]
ktrace_thread() at netbsd:ktrace_thread+0x135c sys/kern/kern_ktrace.c:1410

Panic string: kernel diagnostic assertion "uio->uio_iovcnt > 1" failed: file "/syzkaller/jobs/netbsd/kernel/sys/kern/subr_copy.c", line 119

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

1349 1349 2 0 0 ffffa8001366b240 syz-executor.4
1348 1348 2 1 0 ffffa800135a3a80 syz-executor.1
1239 1239 2 0 0 ffffa800135a3200 syz-executor.5
1350 1350 2 0 0 ffffa80013587a40 syz-executor.0
1383 550 3 1 180 ffffa800135871c0 syz-executor.2 parked
1383 1383 2 1 10000000 ffffa80013587600 syz-executor.2
1213 1213 2 0 0 ffffa800134665c0 syz-executor.3
1208 1208 2 0 140 ffffa80013466180 syz-executor.2
1229 >1229 7 0 40140 ffffa8001345a9c0 syz-executor.5
1204 1204 2 0 140 ffffa8001345a580 syz-executor.0
323 323 2 1 40140 ffffa8001345a140 syz-executor.1
334 334 2 0 40140 ffffa8001344f980 syz-executor.4
1128 861 3 1 180 ffffa8001344f540 syz-execprog parked
1128 1237 3 0 180 ffffa8001344f100 syz-execprog kqueue
1128 330 3 0 180 ffffa80013362940 syz-execprog parked
1128 329 3 1 180 ffffa80013362500 syz-execprog parked
1128 827 3 0 180 ffffa800133620c0 syz-execprog parked
1128 1196 3 0 180 ffffa80012bb5900 syz-execprog parked
1128 1202 3 0 180 ffffa80012bb54c0 syz-execprog parked
1128 1200 3 1 180 ffffa80012bb5080 syz-execprog parked
1128 1234 3 0 180 ffffa8001229aac0 syz-execprog parked
1128 1387 3 1 180 ffffa800122c96c0 syz-execprog parked
1128 1380 2 1 140 ffffa800122c9280 syz-execprog
1128 1128 3 0 40180 ffffa80012b9b8c0 syz-execprog parked
1253 1253 3 1 180 ffffa80012ac9340 sshd select
1070 1070 3 1 180 ffffa80012b9b480 getty nanoslp
1069 1069 3 1 180 ffffa8001229a680 getty nanoslp
1126 1126 3 1 180 ffffa8001229a240 getty nanoslp
1115 1115 3 1 1c0 ffffa800121a9600 getty ttyraw
873 873 3 1 180 ffffa80012b9b040 sshd select
953 953 3 1 180 ffffa80012ac9bc0 powerd kqueue
689 689 3 0 180 ffffa8001242f700 syslogd kqueue
547 547 3 0 180 ffffa80012ac9780 dhcpcd poll
546 546 3 0 180 ffffa8001242fb40 dhcpcd poll
600 600 3 1 180 ffffa800124f2b80 dhcpcd poll
587 587 3 1 180 ffffa8001242f2c0 dhcpcd poll
289 289 3 1 180 ffffa800124f2740 dhcpcd poll
288 288 3 0 180 ffffa800122c9b00 dhcpcd poll
351 351 3 0 180 ffffa800124f2300 dhcpcd poll
1 1 3 1 180 ffffa80011e39940 init wait
0 1323 2 1 240 ffffa80013466a00 ktrace
0 >1203 7 1 240 ffffa800135a3640 ktrace
0 968 3 0 200 ffffa800121a9a40 physiod physiod
0 194 3 0 200 ffffa800121b5a80 pooldrain pooldrain
0 193 3 1 200 ffffa800121b5640 ioflush syncer
0 192 3 1 200 ffffa800121b5200 pgdaemon pgdaemon
0 169 3 1 200 ffffa800121a91c0 usb7 usbevt
0 167 3 1 200 ffffa800120f6a00 usb6 usbevt
0 165 3 1 200 ffffa800120f65c0 usb5 usbevt
0 164 3 1 200 ffffa800120f6180 usb4 usbevt
0 31 3 1 200 ffffa8001205d9c0 usb3 usbevt
0 63 3 1 200 ffffa8001205d580 usb2 usbevt
0 126 3 0 200 ffffa8001205d140 usb1 usbevt
0 125 3 1 200 ffffa80011e49980 usb0 usbevt
0 124 3 1 200 ffffa80011e49540 usbtask-dr usbtsk
0 123 3 1 200 ffffa800118016c0 usbtask-hc usbtsk
0 122 3 1 200 ffffa80011e49100 npfgc0 npfgcw
0 121 3 1 200 ffffa80011e39500 rt_free rt_free
0 120 3 1 200 ffffa80011e390c0 unpgc unpgc
0 119 3 0 200 ffffa80011e36900 key_timehandler key_timehandler
0 118 3 1 200 ffffa80011e364c0 icmp6_wqinput/1 icmp6_wqinput
0 117 3 0 200 ffffa80011e36080 icmp6_wqinput/0 icmp6_wqinput
0 116 3 0 200 ffffa80011cc48c0 nd6_timer nd6_timer
0 115 3 1 200 ffffa80011cc4480 carp6_wqinput/1 carp6_wqinput
0 114 3 0 200 ffffa80011cc4040 carp6_wqinput/0 carp6_wqinput
0 113 3 1 200 ffffa80011cc2b80 carp_wqinput/1 carp_wqinput
0 112 3 0 200 ffffa80011cc2740 carp_wqinput/0 carp_wqinput
0 111 3 1 200 ffffa80011cc2300 icmp_wqinput/1 icmp_wqinput
0 110 3 0 200 ffffa80011cc3780 icmp_wqinput/0 icmp_wqinput
0 109 3 0 200 ffffa80011cc3340 rt_timer rt_timer
0 108 3 0 200 ffffa80011cc3bc0 vmem_rehash vmem_rehash
0 99 3 1 200 ffffa80011804b40 entbutler entropy
0 98 3 1 200 ffffa80011804700 viomb balloon
0 97 3 1 200 ffffa800118042c0 vioif0_txrx/1 vioif0_txrx
0 96 3 0 200 ffffa80011801b00 vioif0_txrx/0 vioif0_txrx
0 29 3 0 200 ffffa80011801280 scsibus0 sccomp
0 28 3 0 200 ffffa800103afac0 pms0 pmsreset
0 27 3 1 200 ffffa800103af680 xcall/1 xcall
0 26 1 1 200 ffffa800103af240 softser/1
0 25 1 1 200 ffffa800103ada80 softclk/1
0 24 1 1 200 ffffa800103ad640 softbio/1
0 23 1 1 200 ffffa800103ad200 softnet/1
0 22 1 1 201 ffffa8000f1f1a40 idle/1
0 21 3 0 200 ffffa8000f1f1600 lnxsyswq lnxsyswq
0 20 3 0 200 ffffa8000f1f11c0 lnxubdwq lnxubdwq
0 19 3 0 200 ffffa8000f1f0a00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffffa8000f1f05c0 lnxlngwq lnxlngwq
0 17 3 0 200 ffffa8000f1f0180 lnxhipwq lnxhipwq
0 16 3 1 200 ffffa8000f1eb9c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffffa8000f1eb580 sysmon smtaskq
0 14 3 1 200 ffffa8000f1eb140 pmfsuspend pmfsuspend
0 13 3 0 200 ffffa8000f1e7980 pmfevent pmfevent
0 12 3 0 200 ffffa8000f1e7540 sopendfree sopendfr
0 11 3 0 200 ffffa8000f1e7100 iflnkst iflnkst
0 10 3 0 200 ffffa8000f1dd940 nfssilly nfssilly
0 9 3 0 200 ffffa8000f1dd500 vdrain vdrain
0 8 3 0 200 ffffa8000f1dd0c0 modunload mod_unld
0 7 3 0 200 ffffa8000ebda900 xcall/0 xcall
0 > 6 7 0 200 ffffa8000ebda4c0 softser/0
0 5 1 0 200 ffffa8000ebda080 softclk/0
0 4 1 0 200 ffffa8000ebd88c0 softbio/0
0 3 1 0 200 ffffa8000ebd8480 softnet/0
0 2 1 0 201 ffffa8000ebd8040 idle/0
0 0 3 0 200 ffffffff86868980 swapper uvm
[Locks tracked through LWPs]

****** LWP 1349.1349 (syz-executor.4) @ 0xffffa8001366b240, l_stat=2

*** Locks held:

* Lock 0 (initialized at amap_ctor)
lock address : 0xffffa80013361380 type : sleep/adaptive
initialized : 0xffffffff84f0c7ff

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa8001366b240 last held: 0xffffa8001366b240
last locked* : 0xffffffff84f437b9 unlocked : 0xffffffff84f53ac6
owner/count : 000000000000000000 flags : 000000000000000000

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 1239.1239 (syz-executor.5) @ 0xffffa800135a3200, l_stat=2

*** Locks held:

* Lock 0 (initialized at pmap_ctor)

lock address : 0xffffa80012ba5fc0 type : sleep/adaptive
initialized : 0xffffffff818e23b0

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa800135a3200 last held: 0xffffa800135a3200
last locked* : 0xffffffff818fcb7d unlocked : 0xffffffff818ef8fd
owner field : 0xffffa800135a3200 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 1350.1350 (syz-executor.0) @ 0xffffa80013587a40, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at pmap_ctor)
lock address : 0xffffa80012ba5e00 type : sleep/adaptive
initialized : 0xffffffff818e23b0

shared holds : 0 exclusive: 0

shares wanted: 0 exclusive: 1
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa80013587a40 last held: 000000000000000000
last locked : 0xffffffff818fcb7d unlocked*: 0xffffffff81902ca9
owner field : 0xffffa80013587a40 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

****** LWP 1213.1213 (syz-executor.3) @ 0xffffa800134665c0, l_stat=2

*** Locks held:

* Lock 0 (initialized at pmap_ctor)

lock address : 0xffffa80012ba58c0 type : sleep/adaptive
initialized : 0xffffffff818e23b0

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa800134665c0 last held: 0xffffa800134665c0
last locked* : 0xffffffff818fcb7d unlocked : 0xffffffff81902ca9
owner field : 0xffffa800134665c0 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 546.546 (dhcpcd) @ 0xffffa8001242fb40, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)

lock address : 0xffffffff868f6d00 type : sleep/adaptive
initialized : 0xffffffff85181313

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa8001242fb40 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 600.600 (dhcpcd) @ 0xffffa800124f2b80, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)

lock address : 0xffffffff868f6d00 type : sleep/adaptive
initialized : 0xffffffff85181313

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffa800124f2b80 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 288.288 (dhcpcd) @ 0xffffa800122c9b00, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)

lock address : 0xffffffff868f6d00 type : sleep/adaptive
initialized : 0xffffffff85181313

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa800122c9b00 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 351.351 (dhcpcd) @ 0xffffa800124f2300, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)

lock address : 0xffffffff868f6d00 type : sleep/adaptive
initialized : 0xffffffff85181313

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa800124f2300 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffa8000f1e7100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)

lock address : 0xffffffff868f6d00 type : sleep/adaptive
initialized : 0xffffffff85181313

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa8000f1e7100 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffa8000ebda080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)

lock address : 0xffffffff868f6d00 type : sleep/adaptive
initialized : 0xffffffff85181313

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa8000ebda080 last held: 000000000000000000

last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff86868980, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)

lock address : 0xffffffff868f6d00 type : sleep/adaptive
initialized : 0xffffffff85181313

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffffff86868980 last held: 000000000000000000

* Lock 0 (initialized at com_attach_subr)
lock address : 0xffffa800103abf68 type : spin
initialized : 0xffffffff8200abdf

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa8000ebda4c0 last held: 0xffffa8001366b240
last locked* : 0xffffffff8201ae88 unlocked : 0xffffffff8201c41e

owner field : 0x0000000000000800 wait/spin: 0/1

******* Locks held on cpu1:

* Lock 0 (initialized at main)

lock address : 0xffffffff868f6c00 type : spin
initialized : 0xffffffff85065a74

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffa800135a3640 last held: 0xffffa800135a3640
last locked* : 0xffffffff8530d894 unlocked : 0xffffffff8522e51e

curcpu holds : 1 wanted by: 000000000000000000

* Lock 1 (initialized at kprintf_init)
lock address : 0xffffffff868a9c00 type : spin

initialized : 0xffffffff8539e3ec

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffa800135a3640 last held: 0xffffa800135a3640
last locked* : 0xffffffff8539f214 unlocked : 0xffffffff8539fc1e

owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON

0xffffa80000017180 0041 00000000 0x0 0x0

0xffffa80000017200 0041 00000000 0x0 0x0

0xffffa80000017280 0041 00000000 0x0 0x0

0xffffa80000017300 0041 00000000 0x0 0x0

0xffffa80000017380 0041 00000000 0x0 0x0

0xffffa80000017400 0041 00000000 0x0 0x0

0xffffa80000017480 0041 00000000 0x0 0x0

0xffffa80000017500 0041 00000000 0x0 0x0

0xffffa80000017580 0041 00000000 0x0 0x0

0xffffa80000017600 0041 00000000 0x0 0x0

0xffffa80000017680 0041 00000000 0x0 0x0

0xffffa80000017700 0041 00000000 0x0 0x0

0xffffa80000017780 0041 00000000 0x0 0x0
0xffffa80000017800 0041 00000000 0x0 0x0
0xffffa80000017880 0041 00000000 0x0 0x0
0xffffa80000017900 0041 00000000 0x0 0x0
0xffffa80000017980 0041 00000000 0x0 0x0

0xffffa80000017a00 0041 00000000 0x0 0x0

0xffffa80000017a80 0041 00000000 0x0 0x0

0xffffa80000017b00 0041 00000000 0x0 0x0

0xffffa80000017b80 0041 00000000 0x0 0x0

0xffffa80000017c00 0041 00000000 0x0 0x0

0xffffa80000017c80 0041 00000000 0x0 0x0

0xffffa80000017d00 0041 00000000 0x0 0x0

0xffffa80000017d80 0041 00000000 0x0 0x0
0xffffa80000017e00 0041 00000000 0x0 0x0
0xffffa80000017e80 0041 00000000 0x0 0x0
0xffffa80000017f00 0041 00000000 0x0 0x0
0xffffa80000017f80 0041 00000000 0x0 0x0

0xffffa80000018000 0041 00000000 0x0 0x0

0xffffa80000018080 0041 00000000 0x0 0x0

0xffffa80000018100 0041 00000000 0x0 0x0

0xffffa80000018180 0041 00000000 0x0 0x0

0xffffa80000018200 0041 00000000 0x0 0x0

0xffffa80000018280 0041 00000000 0x0 0x0

0xffffa80000018300 0041 00000000 0x0 0x0

0xffffa80000018380 0041 00000000 0x0 0x0

0xffffa80000018400 0041 00000000 0x0 0x0

0xffffa80000018480 0041 00000000 0x0 0x0

0xffffa80000018500 0041 00000000 0x0 0x0

0xffffa80000018580 0041 00000000 0x0 0x0

0xffffa80000018600 0041 00000000 0x0 0x0

0xffffa80000018680 0041 00000000 0x0 0x0

0xffffa80000018700 0041 00000000 0x0 0x0

0xffffa80000018780 0041 00000000 0x0 0x0
0xffffa80000018800 0041 00000000 0x0 0x0
0xffffa80000018880 0041 00000000 0x0 0x0
0xffffa80000018900 0041 00000000 0x0 0x0
0xffffa80000018980 0041 00000000 0x0 0x0

0xffffa80000018a00 0041 00000000 0x0 0x0

0xffffa80000018a80 0041 00000000 0x0 0x0

0xffffa80000018b00 0041 00000000 0x0 0x0

0xffffa80000018b80 0041 00000000 0x0 0x0

0xffffa80000018c00 0041 00000000 0x0 0x0

0xffffa80000018c80 0041 00000000 0x0 0x0

0xffffa80000018d00 0041 00000000 0x0 0x0

0xffffa80000018d80 0041 00000000 0x0 0x0
0xffffa80000018e00 0041 00000000 0x0 0x0
0xffffa80000018e80 0041 00000000 0x0 0x0
0xffffa80000018f00 0041 00000000 0x0 0x0
0xffffa80000018f80 0041 00000000 0x0 0x0

0xffffa80000019000 0041 00000000 0x0 0x0

0xffffa80000019080 0041 00000000 0x0 0x0

0xffffa80000019100 0041 00000000 0x0 0x0

0xffffa80000019180 0041 00000000 0x0 0x0

0xffffa80000019200 0041 00000000 0x0 0x0

0xffffa80000019280 0041 00000000 0x0 0x0

0xffffa80000019300 0041 00000000 0x0 0x0

0xffffa80000019380 0041 00000000 0x0 0x0

0xffffa80000019400 0041 00000000 0x0 0x0

0xffffa80000019480 0041 00000000 0x0 0x0

0xffffa80000019500 0041 00000000 0x0 0x0

0xffffa80000019580 0041 00000000 0x0 0x0

0xffffa80000019600 0041 00000000 0x0 0x0

0xffffa80000019680 0041 00000000 0x0 0x0

0xffffa80000019700 0041 00000000 0x0 0x0

0xffffa80000019780 0041 00000000 0x0 0x0
0xffffa80000019800 0041 00000000 0x0 0x0
0xffffa80000019880 0041 00000000 0x0 0x0
0xffffa80000019900 0041 00000000 0x0 0x0
0xffffa80000019980 0041 00000000 0x0 0x0

0xffffa80000019a00 0041 00000000 0x0 0x0

0xffffa80000019a80 0041 00000000 0x0 0x0

0xffffa80000019b00 0041 00000000 0x0 0x0

0xffffa80000019b80 0041 00000000 0x0 0x0

0xffffa80000019c00 0041 00000000 0x0 0x0

0xffffa80000019c80 0041 00000000 0x0 0x0

0xffffa80000019d00 0041 00000000 0x0 0x0

0xffffa80000019d80 0041 00000000 0x0 0x0
0xffffa80000019e00 0041 00000000 0x0 0x0
0xffffa80000019e80 0041 00000000 0x0 0x0
0xffffa80000019f00 0041 00000000 0x0 0x0
0xffffa80000019f80 0041 00000000 0x0 0x0
0xffffa8000001a000 0041 00000000 0x0 0x0

0xffffa8000001a080 0041 00000000 0x0 0x0

0xffffa8000001a100 0041 00000000 0x0 0x0
0xffffa8000001a180 0041 00000000 0x0 0x0
0xffffa8000001a200 0041 00000000 0x0 0x0
0xffffa8000001a280 0041 00000000 0x0 0x0
0xffffa8000001a300 0041 00000000 0x0 0x0
0xffffa8000001a380 0041 00000000 0x0 0x0
0xffffa8000001a400 0041 00000000 0x0 0x0
0xffffa8000001a480 0041 00000000 0x0 0x0
0xffffa8000001a500 0041 00000000 0x0 0x0
0xffffa8000001a580 0041 00000000 0x0 0x0
0xffffa8000001a600 0041 00000000 0x0 0x0
0xffffa8000001a680 0041 00000000 0x0 0x0
0xffffa8000001a700 0041 00000000 0x0 0x0
0xffffa8000001a780 0041 00000000 0x0 0x0
0xffffa8000001a800 0041 00000000 0x0 0x0
0xffffa8000001a880 0041 00000000 0x0 0x0
0xffffa8000001a900 0041 00000000 0x0 0x0
0xffffa8000001a980 0041 00000000 0x0 0x0
0xffffa8000001aa00 0041 00000000 0x0 0x0
0xffffa8000001aa80 0041 00000000 0x0 0x0
0xffffa8000001ab00 0041 00000000 0x0 0x0
0xffffa8000001ab80 0041 00000000 0x0 0x0
0xffffa8000001ac00 0041 00000000 0x0 0x0
0xffffa8000001ac80 0041 00000000 0x0 0x0
0xffffa8000001ad00 0041 00000000 0x0 0x0
0xffffa8000001ad80 0041 00000000 0x0 0x0
0xffffa8000001ae00 0041 00000000 0x0 0x0
0xffffa8000001ae80 0041 00000000 0x0 0x0
0xffffa8000001af00 0041 00000000 0x0 0x0
0xffffa8000001af80 0041 00000000 0x0 0x0
0xffffa8000001b000 0041 00000000 0x0 0x0

0xffffa8000001b080 0041 00000000 0x0 0x0

0xffffa8000001b100 0041 00000000 0x0 0x0
0xffffa8000001b180 0041 00000000 0x0 0x0
0xffffa8000001b200 0041 00000000 0x0 0x0
0xffffa8000001b280 0041 00000000 0x0 0x0
0xffffa8000001b300 0041 00000000 0x0 0x0
0xffffa8000001b380 0041 00000000 0x0 0x0
0xffffa8000001b400 0041 00000000 0x0 0x0
0xffffa8000001b480 0041 00000000 0x0 0x0
0xffffa8000001b500 0041 00000000 0x0 0x0
0xffffa8000001b580 0041 00000000 0x0 0x0
0xffffa8000001b600 0041 00000000 0x0 0x0
0xffffa8000001b680 0041 00000000 0x0 0x0
0xffffa8000001b700 0041 00000000 0x0 0x0
0xffffa8000001b780 0041 00000000 0x0 0x0
0xffffa8000001b800 0041 00000000 0x0 0x0
0xffffa8000001b880 0041 00000000 0x0 0x0
0xffffa8000001b900 0041 00000000 0x0 0x0
0xffffa8000001b980 0041 00000000 0x0 0x0
0xffffa8000001ba00 0041 00000000 0x0 0x0
0xffffa8000001ba80 0041 00000000 0x0 0x0
0xffffa8000001bb00 0041 00000000 0x0 0x0
0xffffa8000001bb80 0041 00000000 0x0 0x0
0xffffa8000001bc00 0041 00000000 0x0 0x0
0xffffa8000001bc80 0041 00000000 0x0 0x0
0xffffa8000001bd00 0041 00000000 0x0 0x0
0xffffa8000001bd80 0041 00000000 0x0 0x0
0xffffa8000001be00 0041 00000000 0x0 0x0
0xffffa8000001be80 0041 00000000 0x0 0x0
0xffffa8000001bf00 0041 00000000 0x0 0x0
0xffffa8000001bf80 0041 00000000 0x0 0x0
0xffffa8000001c000 0041 00000000 0x0 0x0
0xffffa8000001c080 0041 00000000 0x0 0x0
0xffffa8000001c100 0041 00000000 0x0 0x0
0xffffa8000001c180 0041 00000000 0x0 0x0
0xffffa8000001c200 0041 00000000 0x0 0x0
0xffffa8000001c280 0041 00000000 0x0 0x0
0xffffa8000001c300 0041 00000000 0x0 0x0
0xffffa8000001c380 0041 00000000 0x0 0x0
0xffffa8000001c400 0041 00000000 0x0 0x0
0xffffa8000001c480 0041 00000000 0x0 0x0
0xffffa8000001c500 0041 00000000 0x0 0x0
0xffffa8000001c580 0041 00000000 0x0 0x0
0xffffa8000001c600 0041 00000000 0x0 0x0
0xffffa8000001c680 0041 00000000 0x0 0x0
0xffffa8000001c700 0041 00000000 0x0 0x0
0xffffa8000001c780 0001 00000000 0x0 0x0
0xffffa8000001c800 0001 00000000 0x0 0x0
0xffffa8000001c880 0001 00000000 0x0 0x0
0xffffa8000001c900 0001 00000000 0x0 0x0
0xffffa8000001c980 0001 00000000 0x0 0x0
0xffffa8000001ca00 0001 00000000 0x0 0x0
0xffffa8000001ca80 0001 00000000 0x0 0x0
0xffffa8000001cb00 0001 00000000 0x0 0x0
0xffffa8000001cb80 0001 00000000 0x0 0x0
0xffffa8000001cc00 0001 00000000 0x0 0x0
0xffffa8000001cc80 0001 00000000 0x0 0x0
0xffffa8000001cd00 0001 00000000 0x0 0x0
0xffffa8000001cd80 0001 00000000 0x0 0x0
0xffffa8000001ce00 0001 00000000 0x0 0x0
0xffffa8000001ce80 0001 00000000 0x0 0x0
0xffffa8000001cf00 0001 00000000 0x0 0x0
0xffffa8000001cf80 0001 00000000 0x0 0x0
0xffffa8000001d000 0001 00000000 0x0 0x0

0xffffa8000001d080 0001 00000000 0x0 0x0

0xffffa8000001d100 0001 00000000 0x0 0x0
0xffffa8000001d180 0001 00000000 0x0 0x0
0xffffa8000001d200 0001 00000000 0x0 0x0
0xffffa8000001d280 0001 00000000 0x0 0x0
0xffffa8000001d300 0001 00000000 0x0 0x0
0xffffa8000001d380 0001 00000000 0x0 0x0
0xffffa8000001d400 0001 00000000 0x0 0x0
0xffffa8000001d480 0001 00000000 0x0 0x0
0xffffa8000001d500 0001 00000000 0x0 0x0
0xffffa8000001d580 0001 00000000 0x0 0x0
0xffffa8000001d600 0001 00000000 0x0 0x0
0xffffa8000001d680 0001 00000000 0x0 0x0
0xffffa8000001d700 0001 00000000 0x0 0x0
0xffffa8000001d780 0001 00000000 0x0 0x0
0xffffa8000001d800 0001 00000000 0x0 0x0
0xffffa8000001d880 0001 00000000 0x0 0x0
0xffffa8000001d900 0001 00000000 0x0 0x0
0xffffa8000001d980 0001 00000000 0x0 0x0
0xffffa8000001da00 0001 00000000 0x0 0x0
0xffffa8000001da80 0001 00000000 0x0 0x0
0xffffa8000001db00 0001 00000000 0x0 0x0
0xffffa8000001db80 0001 00000000 0x0 0x0
0xffffa8000001dc00 0001 00000000 0x0 0x0
0xffffa8000001dc80 0001 00000000 0x0 0x0
0xffffa8000001dd00 0001 00000000 0x0 0x0
0xffffa8000001dd80 0001 00000000 0x0 0x0
0xffffa8000001de00 0001 00000000 0x0 0x0
0xffffa8000001de80 0001 00000000 0x0 0x0
0xffffa8000001df00 0001 00000000 0x0 0x0
0xffffa8000001df80 0001 00000000 0x0 0x0
0xffffa8000001e000 0001 00000000 0x0 0x0

0xffffa8000001e080 0001 00000000 0x0 0x0

0xffffa8000001e100 0001 00000000 0x0 0x0
0xffffa8000001e180 0001 00000000 0x0 0x0
0xffffa8000001e200 0001 00000000 0x0 0x0
0xffffa8000001e280 0001 00000000 0x0 0x0
0xffffa8000001e300 0001 00000000 0x0 0x0
0xffffa8000001e380 0001 00000000 0x0 0x0
0xffffa8000001e400 0001 00000000 0x0 0x0
0xffffa8000001e480 0001 00000000 0x0 0x0
0xffffa8000001e500 0001 00000000 0x0 0x0
0xffffa8000001e580 0001 00000000 0x0 0x0
0xffffa8000001e600 0001 00000000 0x0 0x0
0xffffa8000001e680 0001 00000000 0x0 0x0
0xffffa8000001e700 0001 00000000 0x0 0x0
0xffffa8000001e780 0001 00000000 0x0 0x0
0xffffa8000001e800 0001 00000000 0x0 0x0
0xffffa8000001e880 0001 00000000 0x0 0x0
0xffffa8000001e900 0001 00000000 0x0 0x0
0xffffa8000001e980 0001 00000000 0x0 0x0
0xffffa8000001ea00 0001 00000000 0x0 0x0
0xffffa8000001ea80 0001 00000000 0x0 0x0
0xffffa8000001eb00 0001 00000000 0x0 0x0
0xffffa8000001eb80 0001 00000000 0x0 0x0
0xffffa8000001ec00 0001 00000000 0x0 0x0
0xffffa8000001ec80 0001 00000000 0x0 0x0
0xffffa8000001ed00 0001 00000000 0x0 0x0
0xffffa8000001ed80 0001 00000000 0x0 0x0
0xffffa8000001ee00 0001 00000000 0x0 0x0
0xffffa8000001ee80 0001 00000000 0x0 0x0
0xffffa8000001ef00 0001 00000000 0x0 0x0
0xffffa8000001ef80 0001 00000000 0x0 0x0
0xffffa8000001f000 0001 00000000 0x0 0x0

0xffffa8000001f080 0001 00000000 0x0 0x0

0xffffa8000001f100 0001 00000000 0x0 0x0
0xffffa8000001f180 0001 00000000 0x0 0x0
0xffffa8000001f200 0001 00000000 0x0 0x0
0xffffa8000001f280 0001 00000000 0x0 0x0
0xffffa8000001f300 0001 00000000 0x0 0x0
0xffffa8000001f380 0001 00000000 0x0 0x0
0xffffa8000001f400 0001 00000000 0x0 0x0
0xffffa8000001f480 0001 00000000 0x0 0x0
0xffffa8000001f500 0001 00000000 0x0 0x0
0xffffa8000001f580 0001 00000000 0x0 0x0
0xffffa8000001f600 0001 00000000 0x0 0x0
0xffffa8000001f680 0001 00000000 0x0 0x0
0xffffa8000001f700 0001 00000000 0x0 0x0
0xffffa8000001f780 0001 00000000 0x0 0x0
0xffffa8000001f800 0001 00000000 0x0 0x0
0xffffa8000001f880 0001 00000000 0x0 0x0
0xffffa8000001f900 0001 00000000 0x0 0x0
0xffffa8000001f980 0001 00000000 0x0 0x0
0xffffa8000001fa00 0001 00000000 0x0 0x0
0xffffa8000001fa80 0001 00000000 0x0 0x0
0xffffa8000001fb00 0001 00000000 0x0 0x0
0xffffa8000001fb80 0001 00000000 0x0 0x0
0xffffa8000001fc00 0001 00000000 0x0 0x0
0xffffa8000001fc80 0001 00000000 0x0 0x0
0xffffa8000001fd00 0001 00000000 0x0 0x0
0xffffa8000001fd80 0001 00000000 0x0 0x0
0xffffa8000001fe00 0001 00000000 0x0 0x0
0xffffa8000001fe80 0001 00000000 0x0 0x0
0xffffa8000001ff00 0001 00000000 0x0 0x0
0xffffa8000001ff80 0001 00000000 0x0 0x0
0xffffa80000020000 0001 00000000 0x0 0x0

0xffffa80000020080 0001 00000000 0x0 0x0

0xffffa80000020100 0001 00000000 0x0 0x0
0xffffa80000020180 0001 00000000 0x0 0x0
0xffffa80000020200 0001 00000000 0x0 0x0
0xffffa80000020280 0001 00000000 0x0 0x0

0xffffa80000020300 0001 00000000 0x0 0x0
0xffffa80000020380 0001 00000000 0x0 0x0
0xffffa80000020400 0001 00000000 0x0 0x0
0xffffa80000020480 0001 00000000 0x0 0x0
0xffffa80000020500 0001 00000000 0x0 0x0
0xffffa80000020580 0001 00000000 0x0 0x0
0xffffa80000020600 0001 00000000 0x0 0x0
0xffffa80000020680 0001 00000000 0x0 0x0
0xffffa80000020700 0001 00000000 0x0 0x0
0xffffa80000020780 0001 00000000 0x0 0x0
0xffffa80000020800 0001 00000000 0x0 0x0
0xffffa80000020880 0001 00000000 0x0 0x0
0xffffa80000020900 0001 00000000 0x0 0x0
0xffffa80000020980 0001 00000000 0x0 0x0

0xffffa80000020a00 0001 00000000 0x0 0x0
0xffffa80000020a80 0001 00000000 0x0 0x0

0xffffa80000020b00 0001 00000000 0x0 0x0
0xffffa80000020b80 0001 00000000 0x0 0x0
0xffffa80000020c00 0001 00000000 0x0 0x0

0xffffa80000020c80 0001 00000000 0x0 0x0

0xffffa80000020d00 0001 00000000 0x0 0x0
0xffffa80000020d80 0001 00000000 0x0 0x0
0xffffa80000020e00 0001 00000000 0x0 0x0
0xffffa80000020e80 0001 00000000 0x0 0x0
0xffffa80000020f00 0001 00000000 0x0 0x0
0xffffa80000020f80 0001 00000000 0x0 0x0

0xffffa80000021000 0001 00000000 0x0 0x0

0xffffa80000021080 0001 00000000 0x0 0x0

0xffffa80000021100 0001 00000000 0x0 0x0
0xffffa80000021180 0001 00000000 0x0 0x0
0xffffa80000021200 0001 00000000 0x0 0x0
0xffffa80000021280 0001 00000000 0x0 0x0

0xffffa80000021300 0001 00000000 0x0 0x0
0xffffa80000021380 0001 00000000 0x0 0x0
0xffffa80000021400 0001 00000000 0x0 0x0
0xffffa80000021480 0001 00000000 0x0 0x0
0xffffa80000021500 0001 00000000 0x0 0x0
0xffffa80000021580 0001 00000000 0x0 0x0
0xffffa80000021600 0001 00000000 0x0 0x0
0xffffa80000021680 0001 00000000 0x0 0x0
0xffffa80000021700 0001 00000000 0x0 0x0
0xffffa80000021780 0001 00000000 0x0 0x0
0xffffa80000021800 0001 00000000 0x0 0x0
0xffffa80000021880 0001 00000000 0x0 0x0
0xffffa80000021900 0001 00000000 0x0 0x0
0xffffa80000021980 0001 00000000 0x0 0x0

0xffffa80000021a00 0001 00000000 0x0 0x0
0xffffa80000021a80 0001 00000000 0x0 0x0
0xffffa80000021b00 0001 00000000 0x0 0x0
0xffffa80000021b80 0001 00000000 0x0 0x0
0xffffa80000021c00 0001 00000000 0x0 0x0
0xffffa80000021c80 0001 00000000 0x0 0x0

0xffffa80000021d00 0001 00000000 0x0 0x0
0xffffa80000021d80 0001 00000000 0x0 0x0
0xffffa80000021e00 0001 00000000 0x0 0x0
0xffffa80000021e80 0001 00000000 0x0 0x0
0xffffa80000021f00 0001 00000000 0x0 0x0
0xffffa80000021f80 0001 00000000 0x0 0x0

0xffffa80000022000 0001 00000000 0x0 0x0

0xffffa80000022080 0001 00000000 0x0 0x0

0xffffa80000022100 0001 00000000 0x0 0x0
0xffffa80000022180 0001 00000000 0x0 0x0
0xffffa80000022200 0001 00000000 0x0 0x0
0xffffa80000022280 0001 00000000 0x0 0x0

0xffffa80000022300 0001 00000000 0x0 0x0
0xffffa80000022380 0001 00000000 0x0 0x0
0xffffa80000022400 0001 00000000 0x0 0x0
0xffffa80000022480 0001 00000000 0x0 0x0
0xffffa80000022500 0001 00000000 0x0 0x0
0xffffa80000022580 0001 00000000 0x0 0x0
0xffffa80000022600 0001 00000000 0x0 0x0
0xffffa80000022680 0001 00000000 0x0 0x0
0xffffa80000022700 0001 00000000 0x0 0x0
0xffffa80000022780 0001 00000000 0x0 0x0
0xffffa80000022800 0001 00000000 0x0 0x0
0xffffa80000022880 0001 00000000 0x0 0x0
0xffffa80000022900 0001 00000000 0x0 0x0
0xffffa80000022980 0001 00000000 0x0 0x0

0xffffa80000022a00 0001 00000000 0x0 0x0
0xffffa80000022a80 0001 00000000 0x0 0x0
0xffffa80000022b00 0001 00000000 0x0 0x0
0xffffa80000022b80 0001 00000000 0x0 0x0
0xffffa80000022c00 0001 00000000 0x0 0x0
0xffffa80000022c80 0001 00000000 0x0 0x0

0xffffa80000022d00 0001 00000000 0x0 0x0
0xffffa80000022d80 0001 00000000 0x0 0x0
0xffffa80000022e00 0001 00000000 0x0 0x0
0xffffa80000022e80 0001 00000000 0x0 0x0
0xffffa80000022f00 0001 00000000 0x0 0x0
0xffffa80000022f80 0001 00000000 0x0 0x0

0xffffa80000023000 0001 00000000 0x0 0x0

0xffffa80000023080 0001 00000000 0x0 0x0

0xffffa80000023100 0001 00000000 0x0 0x0
0xffffa80000023180 0001 00000000 0x0 0x0
0xffffa80000023200 0001 00000000 0x0 0x0
0xffffa80000023280 0001 00000000 0x0 0x0

0xffffa80000023300 0001 00000000 0x0 0x0
0xffffa80000023380 0001 00000000 0x0 0x0
0xffffa80000023400 0001 00000000 0x0 0x0
0xffffa80000023480 0001 00000000 0x0 0x0
0xffffa80000023500 0001 00000000 0x0 0x0
0xffffa80000023580 0001 00000000 0x0 0x0
0xffffa80000023600 0001 00000000 0x0 0x0
0xffffa80000023680 0001 00000000 0x0 0x0
0xffffa80000023700 0001 00000000 0x0 0x0
0xffffa80000023780 0001 00000000 0x0 0x0
0xffffa80000023800 0001 00000000 0x0 0x0
0xffffa80000023880 0001 00000000 0x0 0x0
0xffffa80000023900 0001 00000000 0x0 0x0
0xffffa80000023980 0001 00000000 0x0 0x0

0xffffa80000023a00 0001 00000000 0x0 0x0
0xffffa80000023a80 0001 00000000 0x0 0x0
0xffffa80000023b00 0001 00000000 0x0 0x0
0xffffa80000023b80 0001 00000000 0x0 0x0
0xffffa80000023c00 0001 00000000 0x0 0x0
0xffffa80000023c80 0001 00000000 0x0 0x0

0xffffa80000023d00 0001 00000000 0x0 0x0
0xffffa80000023d80 0001 00000000 0x0 0x0
0xffffa80000023e00 0001 00000000 0x0 0x0
0xffffa80000023e80 0001 00000000 0x0 0x0
0xffffa80000023f00 0001 00000000 0x0 0x0
0xffffa80000023f80 0001 00000000 0x0 0x0

0xffffa80000024000 0001 00000000 0x0 0x0

0xffffa80000024080 0001 00000000 0x0 0x0

0xffffa80000024100 0001 00000000 0x0 0x0
0xffffa80000024180 0001 00000000 0x0 0x0
0xffffa80000024200 0001 00000000 0x0 0x0
0xffffa80000024280 0001 00000000 0x0 0x0

0xffffa80000024300 0001 00000000 0x0 0x0
0xffffa80000024380 0001 00000000 0x0 0x0
0xffffa80000024400 0001 00000000 0x0 0x0
0xffffa80000024480 0001 00000000 0x0 0x0
0xffffa80000024500 0001 00000000 0x0 0x0
0xffffa80000024580 0001 00000000 0x0 0x0
0xffffa80000024600 0001 00000000 0x0 0x0
0xffffa80000024680 0001 00000000 0x0 0x0
0xffffa80000024700 0001 00000000 0x0 0x0
0xffffa80000024780 0001 00000000 0x0 0x0
0xffffa80000024800 0001 00000000 0x0 0x0
0xffffa80000024880 0001 00000000 0x0 0x0
0xffffa80000024900 0001 00000000 0x0 0x0
0xffffa80000024980 0001 00000000 0x0 0x0

0xffffa80000024a00 0001 00000000 0x0 0x0
0xffffa80000024a80 0001 00000000 0x0 0x0
0xffffa80000024b00 0001 00000000 0x0 0x0
0xffffa80000024b80 0001 00000000 0x0 0x0
0xffffa80000024c00 0001 00000000 0x0 0x0
0xffffa80000024c80 0001 00000000 0x0 0x0

0xffffa80000024d00 0001 00000000 0x0 0x0
0xffffa80000024d80 0001 00000000 0x0 0x0
0xffffa80000024e00 0001 00000000 0x0 0x0
0xffffa80000024e80 0001 00000000 0x0 0x0
0xffffa80000024f00 0001 00000000 0x0 0x0
0xffffa80000024f80 0001 00000000 0x0 0x0

0xffffa80000025000 0001 00000000 0x0 0x0

0xffffa80000025080 0001 00000000 0x0 0x0

0xffffa80000025100 0001 00000000 0x0 0x0
0xffffa80000025180 0001 00000000 0x0 0x0
0xffffa80000025200 0001 00000000 0x0 0x0
0xffffa80000025280 0001 00000000 0x0 0x0

0xffffa80000025300 0001 00000000 0x0 0x0
0xffffa80000025380 0001 00000000 0x0 0x0
0xffffa80000025400 0001 00000000 0x0 0x0
0xffffa80000025480 0001 00000000 0x0 0x0
0xffffa80000025500 0001 00000000 0x0 0x0
0xffffa80000025580 0001 00000000 0x0 0x0
0xffffa80000025600 0001 00000000 0x0 0x0
0xffffa80000025680 0001 00000000 0x0 0x0
0xffffa80000025700 0001 00000000 0x0 0x0
0xffffa80000025780 0001 00000000 0x0 0x0
0xffffa80000025800 0001 00000000 0x0 0x0
0xffffa80000025880 0001 00000000 0x0 0x0
0xffffa80000025900 0001 00000000 0x0 0x0
0xffffa80000025980 0001 00000000 0x0 0x0

0xffffa80000025a00 0001 00000000 0x0 0x0
0xffffa80000025a80 0001 00000000 0x0 0x0
0xffffa80000025b00 0001 00000000 0x0 0x0
0xffffa80000025b80 0001 00000000 0x0 0x0
0xffffa80000025c00 0001 00000000 0x0 0x0
0xffffa80000025c80 0001 00000000 0x0 0x0

0xffffa80000025d00 0001 00000000 0x0 0x0
0xffffa80000025d80 0001 00000000 0x0 0x0
0xffffa80000025e00 0001 00000000 0x0 0x0
0xffffa80000025e80 0001 00000000 0x0 0x0
0xffffa80000025f00 0001 00000000 0x0 0x0
0xffffa80000025f80 0001 00000000 0x0 0x0

0xffffa80000026000 0001 00000000 0x0 0x0

0xffffa80000026080 0001 00000000 0x0 0x0

0xffffa80000026100 0001 00000000 0x0 0x0
0xffffa80000026180 0001 00000000 0x0 0x0
0xffffa80000026200 0001 00000000 0x0 0x0
0xffffa80000026280 0001 00000000 0x0 0x0
0xffffa80000026300 0001 00000000 0x0 0x0
0xffffa80000026380 0001 00000000 0x0 0x0
0xffffa80000026400 0001 00000000 0x0 0x0
0xffffa80000026480 0001 00000000 0x0 0x0
0xffffa80000026500 0001 00000000 0x0 0x0
0xffffa80000026580 0001 00000000 0x0 0x0
0xffffa80000026600 0001 00000000 0x0 0x0
0xffffa80000026680 0001 00000000 0x0 0x0
0xffffa80000026700 0001 00000000 0x0 0x0
0xffffa80000026780 0001 00000000 0x0 0x0
0xffffa80000026800 0001 00000000 0x0 0x0
0xffffa80000026880 0001 00000000 0x0 0x0
0xffffa80000026900 0001 00000000 0x0 0x0
0xffffa80000026980 0001 00000000 0x0 0x0
0xffffa80000026a00 0001 00000000 0x0 0x0
0xffffa80000026a80 0001 00000000 0x0 0x0
0xffffa80000026b00 0001 00000000 0x0 0x0
0xffffa80000026b80 0001 00000000 0x0 0x0
0xffffa80000026c00 0001 00000000 0x0 0x0
0xffffa80000026c80 0001 00000000 0x0 0x0
0xffffa80000026d00 0001 00000000 0x0 0x0
0xffffa80000026d80 0001 00000000 0x0 0x0
0xffffa80000026e00 0001 00000000 0x0 0x0
0xffffa80000026e80 0001 00000000 0x0 0x0
0xffffa80000026f00 0001 00000000 0x0 0x0
0xffffa80000026f80 0001 00000000 0x0 0x0
0xffffa80000027000 0001 00000000 0x0 0x0

0xffffa80000027080 0001 00000000 0x0 0x0

0xffffa80000027100 0001 00000000 0x0 0x0
0xffffa80000027180 0001 00000000 0x0 0x0
0xffffa80000027200 0001 00000000 0x0 0x0
0xffffa80000027280 0001 00000000 0x0 0x0
0xffffa80000027300 0001 00000000 0x0 0x0
0xffffa80000027380 0001 00000000 0x0 0x0
0xffffa80000027400 0001 00000000 0x0 0x0
0xffffa80000027480 0001 00000000 0x0 0x0
0xffffa80000027500 0001 00000000 0x0 0x0
0xffffa80000027580 0001 00000000 0x0 0x0
0xffffa80000027600 0001 00000000 0x0 0x0
0xffffa80000027680 0001 00000000 0x0 0x0
0xffffa80000027700 0001 00000000 0x0 0x0
0xffffa80000027780 0001 00000000 0x0 0x0
0xffffa80000027800 0001 00000000 0x0 0x0
0xffffa80000027880 0001 00000000 0x0 0x0
0xffffa80000027900 0001 00000000 0x0 0x0
0xffffa80000027980 0001 00000000 0x0 0x0
0xffffa80000027a00 0001 00000000 0x0 0x0
0xffffa80000027a80 0001 00000000 0x0 0x0
0xffffa80000027b00 0001 00000000 0x0 0x0
0xffffa80000027b80 0001 00000000 0x0 0x0
0xffffa80000027c00 0001 00000000 0x0 0x0
0xffffa80000027c80 0001 00000000 0x0 0x0
0xffffa80000027d00 0001 00000000 0x0 0x0
0xffffa80000027d80 0001 00000000 0x0 0x0
0xffffa80000027e00 0001 00000000 0x0 0x0
0xffffa80000027e80 0001 00000000 0x0 0x0
0xffffa80000027f00 0001 00000000 0x0 0x0
0xffffa80000027f80 0001 00000000 0x0 0x0
0xffffa80000028000 0001 00000000 0x0 0x0

0xffffa80000028080 0001 00000000 0x0 0x0

0xffffa80000028100 0001 00000000 0x0 0x0
0xffffa80000028180 0001 00000000 0x0 0x0
0xffffa80000028200 0001 00000000 0x0 0x0
0xffffa80000028280 0001 00000000 0x0 0x0
0xffffa80000028300 0001 00000000 0x0 0x0
0xffffa80000028380 0001 00000000 0x0 0x0
0xffffa80000028400 0001 00000000 0x0 0x0
0xffffa80000028480 0001 00000000 0x0 0x0
0xffffa80000028500 0001 00000000 0x0 0x0
0xffffa80000028580 0001 00000000 0x0 0x0
0xffffa80000028600 0001 00000000 0x0 0x0
0xffffa80000028680 0001 00000000 0x0 0x0
0xffffa80000028700 0001 00000000 0x0 0x0
0xffffa80000028780 0001 00000000 0x0 0x0
0xffffa80000028800 0001 00000000 0x0 0x0
0xffffa80000028880 0001 00000000 0x0 0x0
0xffffa80000028900 0001 00000000 0x0 0x0
0xffffa80000028980 0001 00000000 0x0 0x0
0xffffa80000028a00 0001 00000000 0x0 0x0
0xffffa80000028a80 0001 00000000 0x0 0x0
0xffffa80000028b00 0001 00000000 0x0 0x0
0xffffa80000028b80 0001 00000000 0x0 0x0
0xffffa80000028c00 0001 00000000 0x0 0x0
0xffffa80000028c80 0001 00000000 0x0 0x0
0xffffa80000028d00 0001 00000000 0x0 0x0
0xffffa80000028d80 0001 00000000 0x0 0x0
0xffffa80000028e00 0001 00000000 0x0 0x0
0xffffa80000028e80 0001 00000000 0x0 0x0
0xffffa80000028f00 0001 00000000 0x0 0x0
0xffffa80000028f80 0001 00000000 0x0 0x0
0xffffa80000029000 0001 00000000 0x0 0x0

0xffffa80000029080 0001 00000000 0x0 0x0

0xffffa80000029100 0001 00000000 0x0 0x0
0xffffa80000029180 0001 00000000 0x0 0x0
0xffffa80000029200 0001 00000000 0x0 0x0
0xffffa80000029280 0001 00000000 0x0 0x0
0xffffa80000029300 0001 00000000 0x0 0x0
0xffffa80000029380 0001 00000000 0x0 0x0
0xffffa80000029400 0001 00000000 0x0 0x0
0xffffa80000029480 0001 00000000 0x0 0x0
0xffffa80000029500 0001 00000000 0x0 0x0
0xffffa80000029580 0001 00000000 0x0 0x0
0xffffa80000029600 0001 00000000 0x0 0x0
0xffffa80000029680 0001 00000000 0x0 0x0
0xffffa80000029700 0001 00000000 0x0 0x0
0xffffa80000029780 0001 00000000 0x0 0x0
0xffffa80000029800 0001 00000000 0x0 0x0
0xffffa80000029880 0001 00000000 0x0 0x0
0xffffa80000029900 0001 00000000 0x0 0x0
0xffffa80000029980 0001 00000000 0x0 0x0
0xffffa80000029a00 0001 00000000 0x0 0x0
0xffffa80000029a80 0001 00000000 0x0 0x0
0xffffa80000029b00 0001 00000000 0x0 0x0
0xffffa80000029b80 0001 00000000 0x0 0x0
0xffffa80000029c00 0001 00000000 0x0 0x0
0xffffa80000029c80 0001 00000000 0x0 0x0
0xffffa80000029d00 0001 00000000 0x0 0x0
0xffffa80000029d80 0001 00000000 0x0 0x0
0xffffa80000029e00 0001 00000000 0x0 0x0
0xffffa80000029e80 0001 00000000 0x0 0x0
0xffffa80000029f00 0001 00000000 0x0 0x0
0xffffa80000029f80 0001 00000000 0x0 0x0
0xffffa8000002a000 0001 00000000 0x0 0x0

0xffffa8000002a080 0001 00000000 0x0 0x0

0xffffa8000002a100 0001 00000000 0x0 0x0

0xffffa8000002a180 0001 00000000 0x0 0x0

0xffffa8000002a200 0001 00000000 0x0 0x0
0xffffa8000002a280 0001 00000000 0x0 0x0
0xffffa8000002a300 0001 00000000 0x0 0x0
0xffffa8000002a380 0001 00000000 0x0 0x0
0xffffa8000002a400 0001 00000000 0x0 0x0
0xffffa8000002a480 0001 00000000 0x0 0x0
0xffffa8000002a500 0001 00000000 0x0 0x0
0xffffa8000002a580 0001 00000000 0x0 0x0
0xffffa8000002a600 0001 00000000 0x0 0x0
0xffffa8000002a680 0001 00000000 0x0 0x0
0xffffa8000002a700 0001 00000000 0x0 0x0
0xffffa8000002a780 0001 00000000 0x0 0x0
0xffffa8000002a800 0001 00000000 0x0 0x0
0xffffa8000002a880 0001 00000000 0x0 0x0
0xffffa8000002a900 0001 00000000 0x0 0x0
0xffffa8000002a980 0001 00000000 0x0 0x0
0xffffa8000002aa00 0001 00000000 0x0 0x0
0xffffa8000002aa80 0001 00000000 0x0 0x0
0xffffa8000002ab00 0001 00000000 0x0 0x0
0xffffa8000002ab80 0001 00000000 0x0 0x0
0xffffa8000002ac00 0001 00000000 0x0 0x0
0xffffa8000002ac80 0001 00000000 0x0 0x0
0xffffa8000002ad00 0001 00000000 0x0 0x0
0xffffa8000002ad80 0001 00000000 0x0 0x0
0xffffa8000002ae00 0001 00000000 0x0 0x0
0xffffa8000002ae80 0001 00000000 0x0 0x0
0xffffa8000002af00 0001 00000000 0x0 0x0
0xffffa8000002af80 0001 00000000 0x0 0x0
0xffffa8000002b000 0001 00000000 0x0 0x0

0xffffa8000002b080 0001 00000000 0x0 0x0

0xffffa8000002b100 0001 00000000 0x0 0x0

0xffffa8000002b180 0001 00000000 0x0 0x0

0xffffa8000002b200 0001 00000000 0x0 0x0
0xffffa8000002b280 0001 00000000 0x0 0x0
0xffffa8000002b

Tested on:

commit: 330a6f8f lint: do not treat message IDs as arithmetic ..
git tree: https://github.com/NetBSD/src trunk

console output: https://syzkaller.appspot.com/x/log.txt?x=118fd568080000

patch: https://syzkaller.appspot.com/x/patch.diff?x=13c7a7fff00000

Reply all

Reply to author

Forward

0 new messages