panic: LOCKDEBUG: Mutex error: mutex_vector_enter,514: spin lock held

[syzbot]

Hello,

syzbot found the following crash on:

HEAD commit: 952649c9 document MKCOMPATMODULES
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=10766850100000
kernel config: https://syzkaller.appspot.com/x/.config?x=19c26c7ba7ac2db1
dashboard link: https://syzkaller.appspot.com/bug?extid=acfd688740461f7edf2f
compiler: clang version 3.8.0-2ubuntu4 (tags/RELEASE_380/final)
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=13162f90100000

IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+acfd68...@syzkaller.appspotmail.com

[ 207.9844444] panic: LOCKDEBUG: Mutex error: mutex_vector_enter,514: spin lock held
[ 207.9944657] cpu1: Begin traceback...
[ 208.0044839] vpanic() at netbsd:vpanic+0x7c1 sys/kern/subr_prf.c:288
[ 208.0245305] panic() at netbsd:panic+0x1ad sys/kern/subr_prf.c:209
[ 208.0445726] lockdebug_abort1() at netbsd:lockdebug_abort1+0xd12
[ 208.0646124] mutex_enter() at netbsd:mutex_enter+0x5e4 sys/kern/kern_mutex.c:517
[ 208.0846596] pmap_update() at netbsd:pmap_update+0x114 sys/arch/x86/x86/pmap.c:5379
[ 208.1047006] uvm_km_kmem_alloc() at netbsd:uvm_km_kmem_alloc+0x797 sys/uvm/uvm_km.c:865
[ 208.1247439] pool_page_alloc() at netbsd:pool_page_alloc+0x136 sys/kern/subr_pool.c:2860
[ 208.1548049] pool_grow() at netbsd:pool_grow+0x1fc sys/kern/subr_pool.c:1369
[ 208.1748472] pool_get() at netbsd:pool_get+0x46d sys/kern/subr_pool.c:1127
[ 208.1948879] pool_cache_get_slow() at netbsd:pool_cache_get_slow+0x982 sys/kern/subr_pool.c:2485
[ 208.2149299] pool_cache_get_paddr() at netbsd:pool_cache_get_paddr+0x8c6 sys/kern/subr_pool.c:2577
[ 208.2349804] kmem_intr_alloc() at netbsd:kmem_intr_alloc+0x1d0 sys/kern/subr_kmem.c:224
[ 208.2650349] kmem_alloc() at netbsd:kmem_alloc+0xcb sys/kern/subr_kmem.c:302
[ 208.2850794] amap_alloc1() at netbsd:amap_alloc1+0x73a sys/uvm/uvm_amap.c:194
[ 208.3051146] amap_copy() at netbsd:amap_copy+0x1687 amap_alloc sys/uvm/uvm_amap.c:243 [inline]
[ 208.3051146] amap_copy() at netbsd:amap_copy+0x1687 sys/uvm/uvm_amap.c:853
[ 208.3251626] uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b uvmfault_amapcopy sys/uvm/uvm_fault.c:243 [inline]
[ 208.3251626] uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b uvm_fault_check sys/uvm/uvm_fault.c:1058 [inline]
[ 208.3251626] uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b sys/uvm/uvm_fault.c:894
[ 208.3452008] trap() at netbsd:trap+0x1ecb
[ 208.3552242] --- trap (number 6) ---
[ 208.3552242] 786d071996bf:
[ 208.3652370] cpu1: End traceback...
[ 208.3652370] fatal breakpoint trap in supervisor mode
[ 208.3752527] trap type 1 code 0 rip 0xffffffff802227ed cs 0x8 rflags 0x246 cr2 0x20000100 ilevel 0x8 rsp 0xffffa5007abe6d50
[ 208.3852722] curlwp 0xffffa500129c4340 pid 2751.2751 lowest kstack 0xffffa5007abe02c0
Stopped in pid 2751.2751 (syz-executor.2) at netbsd:breakpoint+0x5: leave
?
breakpoint() at netbsd:breakpoint+0x5
vpanic() at netbsd:vpanic+0x7c1 sys/kern/subr_prf.c:288
panic() at netbsd:panic+0x1ad sys/kern/subr_prf.c:209
lockdebug_abort1() at netbsd:lockdebug_abort1+0xd12
mutex_enter() at netbsd:mutex_enter+0x5e4 sys/kern/kern_mutex.c:517
pmap_update() at netbsd:pmap_update+0x114 sys/arch/x86/x86/pmap.c:5379
uvm_km_kmem_alloc() at netbsd:uvm_km_kmem_alloc+0x797 sys/uvm/uvm_km.c:865
pool_page_alloc() at netbsd:pool_page_alloc+0x136 sys/kern/subr_pool.c:2860
pool_grow() at netbsd:pool_grow+0x1fc sys/kern/subr_pool.c:1369
pool_get() at netbsd:pool_get+0x46d sys/kern/subr_pool.c:1127
pool_cache_get_slow() at netbsd:pool_cache_get_slow+0x982 sys/kern/subr_pool.c:2485
pool_cache_get_paddr() at netbsd:pool_cache_get_paddr+0x8c6 sys/kern/subr_pool.c:2577
kmem_intr_alloc() at netbsd:kmem_intr_alloc+0x1d0 sys/kern/subr_kmem.c:224
kmem_alloc() at netbsd:kmem_alloc+0xcb sys/kern/subr_kmem.c:302
amap_alloc1() at netbsd:amap_alloc1+0x73a sys/uvm/uvm_amap.c:194
amap_copy() at netbsd:amap_copy+0x1687 amap_alloc sys/uvm/uvm_amap.c:243 [inline]
amap_copy() at netbsd:amap_copy+0x1687 sys/uvm/uvm_amap.c:853
uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b uvmfault_amapcopy sys/uvm/uvm_fault.c:243 [inline]
uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b uvm_fault_check sys/uvm/uvm_fault.c:1058 [inline]
uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b sys/uvm/uvm_fault.c:894
trap() at netbsd:trap+0x1ecb
--- trap (number 6) ---
786d071996bf:
ds 6d40
es 9918
fs 1
gs eb90
rdi 8000000000
rsi ffff898000000000
rbp ffffa5007abe6d50
rbx 0
rdx ffff81800594c210
rcx 1910
rax ffffa500129c4340
r8 0
r9 0
r10 0
r11 0
r12 0
r13 104
r14 69ca
r15 0
rip ffffffff802227ed breakpoint+0x5
cs 8
rflags 246
rsp ffffa5007abe6d50
ss 0
netbsd:breakpoint+0x5: leave
PID LID S CPU FLAGS STRUCT LWP * NAME WAIT
3106 >3106 7 0 0 ffffa50012aec500 syz-executor.1
2388 2492 2 0 0 ffffa50012c83200 syz-executor.3
2388 2388 2 0 0 ffffa50012c74600 syz-executor.3
2657 2973 2 0 0 ffffa50012aec940 syz-executor.4
2657 2657 2 0 0 ffffa50012aec0c0 syz-executor.4
2751 2505 3 1 80 ffffa50012c74a40 syz-executor.2 parked
2751 2391 3 1 80 ffffa50012c741c0 syz-executor.2 parked
2751 >2751 7 1 10040000 ffffa500129c4340 syz-executor.2
2626 2346 3 1 80 ffffa50012c83640 syz-executor.0 parked
2626 3170 2 1 0 ffffa50012bcc540 syz-executor.0
2626 2626 2 1 10040040 ffffa50012c83a80 syz-executor.0
2501 3005 3 1 80 ffffa50012ac5080 syz-executor.5 parked
2501 2472 2 0 0 ffffa50012bcc980 syz-executor.5
2501 2501 2 1 10040040 ffffa50012bcc100 syz-executor.5
835 835 3 1 80 ffffa50012ac54c0 syz-executor.2 nanoslp
697 697 3 1 80 ffffa500129c4780 syz-executor.3 nanoslp
699 699 3 1 80 ffffa500129b2b80 syz-executor.5 nanoslp
696 696 3 1 80 ffffa500129b2300 syz-executor.4 nanoslp
1079 1079 3 1 80 ffffa500128b7b40 syz-executor.1 nanoslp
693 693 3 1 80 ffffa500128b7700 syz-executor.0 nanoslp
686 729 3 1 80 ffffa500129c4bc0 syz-execprog parked
686 698 3 0 80 ffffa500129b2740 syz-execprog kqueue
686 560 3 1 80 ffffa500128b72c0 syz-execprog parked
686 691 3 1 80 ffffa50011a5eb00 syz-execprog parked
686 690 3 1 c0 ffffa50011a5e6c0 syz-execprog parked
686 692 3 1 c0 ffffa50011a5e280 syz-execprog parked
686 726 3 0 c0 ffffa50011a3b680 syz-execprog parked
686 685 3 1 c0 ffffa500119c2200 syz-execprog parked
686 1278 3 0 80 ffffa5001124a5c0 syz-execprog parked
686 686 3 0 80 ffffa500112189c0 syz-execprog parked
683 683 3 0 80 ffffa500113af1c0 sshd select
1183 1183 3 0 80 ffffa5001124a180 getty nanoslp
719 719 3 0 80 ffffa50011218580 getty nanoslp
1374 1374 3 1 80 ffffa50011218140 getty nanoslp
1373 1373 3 0 c0 ffffa500110fa500 getty ttyraw
887 887 3 0 80 ffffa500119c2a80 cron nanoslp
1214 1214 3 1 80 ffffa50011a3bac0 inetd kqueue
584 584 3 0 80 ffffa50011a3b240 sshd select
602 602 3 0 80 ffffa500119c2640 powerd kqueue
460 460 3 0 80 ffffa500113afa40 syslogd kqueue
303 303 3 0 80 ffffa500113af600 dhcpcd kqueue
333 333 3 1 80 ffffa5001124aa00 dhcpcd kqueue
1 1 3 0 80 ffffa50010edd080 init wait
0 590 3 0 200 ffffa500110fa940 physiod physiod
0 123 3 0 200 ffffa50011104980 pooldrain pooldrain
0 122 3 1 200 ffffa50011104540 ioflush syncer
0 121 3 1 200 ffffa50011104100 pgdaemon pgdaemon
0 118 3 0 200 ffffa500110fa0c0 usb0 usbevt
0 117 3 1 200 ffffa50010edd900 usbtask-dr usbtsk
0 116 3 1 200 ffffa50010edd4c0 usbtask-hc usbtsk
0 115 3 1 200 ffffa5000f481ac0 npfgc-0 npfgccv
0 114 3 1 200 ffffa50010ed18c0 rt_free rt_free
0 113 3 1 200 ffffa50010ed1480 unpgc unpgc
0 112 3 0 200 ffffa50010ed1040 key_timehandler key_timehandler
0 111 3 1 200 ffffa50010ecabc0 icmp6_wqinput/1 icmp6_wqinput
0 110 3 0 200 ffffa50010eca780 icmp6_wqinput/0 icmp6_wqinput
0 109 3 0 200 ffffa50010eca340 nd6_timer nd6_timer
0 108 3 1 200 ffffa50010d35b00 carp6_wqinput/1 carp6_wqinput
0 107 3 0 200 ffffa50010d356c0 carp6_wqinput/0 carp6_wqinput
0 106 3 1 200 ffffa50010d35280 carp_wqinput/1 carp_wqinput
0 105 3 0 200 ffffa50010d38b80 carp_wqinput/0 carp_wqinput
0 104 3 1 200 ffffa50010d38740 icmp_wqinput/1 icmp_wqinput
0 103 3 0 200 ffffa50010d38300 icmp_wqinput/0 icmp_wqinput
0 102 3 0 200 ffffa50010d362c0 rt_timer rt_timer
0 101 3 0 200 ffffa50010d36b40 vmem_rehash vmem_rehash
0 100 3 0 200 ffffa50010d36700 entbutler entropy
0 27 3 0 200 ffffa5000f481680 scsibus0 sccomp
0 26 3 0 200 ffffa5000f481240 pms0 pmsreset
0 25 3 1 200 ffffa5000f465a80 xcall/1 xcall
0 24 1 1 200 ffffa5000f465640 softser/1
0 23 1 1 200 ffffa5000f465200 softclk/1
0 22 1 1 200 ffffa5000f463a40 softbio/1
0 21 1 1 200 ffffa5000f463600 softnet/1
0 20 1 1 201 ffffa5000f4631c0 idle/1
0 19 3 0 200 ffffa5000e2dfa00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffffa5000e2df5c0 lnxlngwq lnxlngwq
0 17 3 0 200 ffffa5000e2df180 lnxsyswq lnxsyswq
0 16 3 0 200 ffffa5000e2d99c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffffa5000e2d9580 sysmon smtaskq
0 14 3 0 200 ffffa5000e2d9140 pmfsuspend pmfsuspend
0 13 3 0 200 ffffa5000e2d6980 pmfevent pmfevent
0 12 3 0 200 ffffa5000e2d6540 sopendfree sopendfr
0 11 3 0 200 ffffa5000e2d6100 iflnkst iflnkst
0 10 3 0 200 ffffa5000e2cc940 nfssilly nfssilly
0 9 3 0 200 ffffa5000e2cc500 vdrain vdrain
0 8 3 0 200 ffffa5000e2cc0c0 modunload mod_unld
0 7 3 0 200 ffffa5000dcc9900 xcall/0 xcall
0 6 1 0 200 ffffa5000dcc94c0 softser/0
0 5 1 0 200 ffffa5000dcc9080 softclk/0
0 4 1 0 40200 ffffa5000dcc58c0 softbio/0
0 3 1 0 200 ffffa5000dcc5480 softnet/0
0 2 1 0 201 ffffa5000dcc5040 idle/0
0 0 3 1 200 ffffffff859fabc0 swapper uvm
[Locks tracked through LWPs]

****** LWP 3106.3106 (syz-executor.1) @ 0xffffa50012aec500, l_stat=7

*** Locks held:

* Lock 0 (initialized at amap_ctor)
lock address : 0xffffa50012818bc0 type : sleep/adaptive
initialized : 0xffffffff8443d5b3
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffa50012aec500 last held: 0xffffa50012aec500
last locked* : 0xffffffff8446cde4 unlocked : 0xffffffff8447d6a8
owner/count : 000000000000000000 flags : 000000000000000000
Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at pool_init)
lock address : 0xffffffff8598bf70 type : sleep/adaptive
initialized : 0xffffffff847fea68
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffa50012aec500 last held: 0xffffa50012aec500
last locked* : 0xffffffff84803691 unlocked : 0xffffffff848068cd
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 2751.2751 (syz-executor.2) @ 0xffffa500129c4340, l_stat=7

*** Locks held:

* Lock 0 (initialized at uvmspace_fork)
lock address : 0xffffa50011489db8 type : sleep/adaptive
initialized : 0xffffffff844c3e37
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffffa500129c4340 last held: 0xffffa500129c4340
last locked* : 0xffffffff8449388f unlocked : 0xffffffff844711f1
owner/count : 0xffffa500129c4340 flags : 0x0000000000000004
Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at pmap_bootstrap)
lock address : 0xffffffff85a604c0 type : sleep/adaptive
initialized : 0xffffffff816b03a2
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 1
relevant cpu : 1 last held: 0
relevant lwp : 0xffffa500129c4340 last held: 000000000000000000
last locked : 0xffffffff816c4419 unlocked*: 0xffffffff816c5a50
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffa5000e2d6100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff85a628c0 type : sleep/adaptive
initialized : 0xffffffff846523a3
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffa5000e2d6100 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffa5000dcc9080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff85a628c0 type : sleep/adaptive
initialized : 0xffffffff846523a3
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffa5000dcc9080 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu1:

* Lock 0 (initialized at pool_init)
lock address : 0xffffa5000dc7b4f0 type : spin
initialized : 0xffffffff847fea68
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffffa500129c4340 last held: 0xffffa500129c4340
last locked* : 0xffffffff84803691 unlocked : 0xffffffff848068cd
owner field : 0x0000000000010600 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON
0xffffa50000017180 0041 00000000 0x0 0x0
0xffffa50000017200 0041 00000000 0x0 0x0
0xffffa50000017280 0041 00000000 0x0 0x0
0xffffa50000017300 0041 00000000 0x0 0x0
0xffffa50000017380 0041 00000000 0x0 0x0
0xffffa50000017400 0041 00000000 0x0 0x0
0xffffa50000017480 0041 00000000 0x0 0x0
0xffffa50000017500 0041 00000000 0x0 0x0
0xffffa50000017580 0041 00000000 0x0 0x0
0xffffa50000017600 0041 00000000 0x0 0x0
0xffffa50000017680 0041 00000000 0x0 0x0
0xffffa50000017700 0041 00000000 0x0 0x0
0xffffa50000017780 0041 00000000 0x0 0x0
0xffffa50000017800 0041 00000000 0x0 0x0
0xffffa50000017880 0041 00000000 0x0 0x0
0xffffa50000017900 0041 00000000 0x0 0x0
0xffffa50000017980 0041 00000000 0x0 0x0
0xffffa50000017a00 0041 00000000 0x0 0x0
0xffffa50000017a80 0041 00000000 0x0 0x0
0xffffa50000017b00 0041 00000000 0x0 0x0
0xffffa50000017b80 0041 00000000 0x0 0x0
0xffffa50000017c00 0041 00000000 0x0 0x0
0xffffa50000017c80 0041 00000000 0x0 0x0
0xffffa50000017d00 0041 00000000 0x0 0x0
0xffffa50000017d80 0041 00000000 0x0 0x0
0xffffa50000017e00 0041 00000000 0x0 0x0
0xffffa50000017e80 0041 00000000 0x0 0x0
0xffffa50000017f00 0041 00000000 0x0 0x0
0xffffa50000017f80 0041 00000000 0x0 0x0
0xffffa50000018000 0041 00000000 0x0 0x0
0xffffa50000018080 0041 00000000 0x0 0x0
0xffffa50000018100 0041 00000000 0x0 0x0
0xffffa50000018180 0041 00000000 0x0 0x0
0xffffa50000018200 0041 00000000 0x0 0x0
0xffffa50000018280 0041 00000000 0x0 0x0
0xffffa50000018300 0041 00000000 0x0 0x0
0xffffa50000018380 0041 00000000 0x0 0x0
0xffffa50000018400 0041 00000000 0x0 0x0
0xffffa50000018480 0041 00000000 0x0 0x0
0xffffa50000018500 0041 00000000 0x0 0x0
0xffffa50000018580 0041 00000000 0x0 0x0
0xffffa50000018600 0041 00000000 0x0 0x0
0xffffa50000018680 0041 00000000 0x0 0x0
0xffffa50000018700 0041 00000000 0x0 0x0
0xffffa50000018780 0041 00000000 0x0 0x0
0xffffa50000018800 0041 00000000 0x0 0x0
0xffffa50000018880 0041 00000000 0x0 0x0
0xffffa50000018900 0041 00000000 0x0 0x0
0xffffa50000018980 0041 00000000 0x0 0x0
0xffffa50000018a00 0041 00000000 0x0 0x0
0xffffa50000018a80 0041 00000000 0x0 0x0
0xffffa50000018b00 0041 00000000 0x0 0x0
0xffffa50000018b80 0041 00000000 0x0 0x0
0xffffa50000018c00 0041 00000000 0x0 0x0
0xffffa50000018c80 0041 00000000 0x0 0x0
0xffffa50000018d00 0041 00000000 0x0 0x0
0xffffa50000018d80 0041 00000000 0x0 0x0
0xffffa50000018e00 0041 00000000 0x0 0x0
0xffffa50000018e80 0041 00000000 0x0 0x0
0xffffa50000018f00 0041 00000000 0x0 0x0
0xffffa50000018f80 0041 00000000 0x0 0x0
0xffffa50000019000 0041 00000000 0x0 0x0
0xffffa50000019080 0041 00000000 0x0 0x0
0xffffa50000019100 0041 00000000 0x0 0x0
0xffffa50000019180 0041 00000000 0x0 0x0
0xffffa50000019200 0041 00000000 0x0 0x0
0xffffa50000019280 0041 00000000 0x0 0x0
0xffffa50000019300 0041 00000000 0x0 0x0
0xffffa50000019380 0041 00000000 0x0 0x0
0xffffa50000019400 0041 00000000 0x0 0x0
0xffffa50000019480 0041 00000000 0x0 0x0
0xffffa50000019500 0041 00000000 0x0 0x0
0xffffa50000019580 0041 00000000 0x0 0x0
0xffffa50000019600 0041 00000000 0x0 0x0
0xffffa50000019680 0041 00000000 0x0 0x0
0xffffa50000019700 0041 00000000 0x0 0x0
0xffffa50000019780 0041 00000000 0x0 0x0
0xffffa50000019800 0041 00000000 0x0 0x0
0xffffa50000019880 0041 00000000 0x0 0x0
0xffffa50000019900 0041 00000000 0x0 0x0
0xffffa50000019980 0041 00000000 0x0 0x0
0xffffa50000019a00 0041 00000000 0x0 0x0
0xffffa50000019a80 0041 00000000 0x0 0x0
0xffffa50000019b00 0041 00000000 0x0 0x0
0xffffa50000019b80 0041 00000000 0x0 0x0
0xffffa50000019c00 0041 00000000 0x0 0x0
0xffffa50000019c80 0041 00000000 0x0 0x0
0xffffa50000019d00 0041 00000000 0x0 0x0
0xffffa50000019d80 0041 00000000 0x0 0x0
0xffffa50000019e00 0041 00000000 0x0 0x0
0xffffa50000019e80 0041 00000000 0x0 0x0
0xffffa50000019f00 0041 00000000 0x0 0x0
0xffffa50000019f80 0041 00000000 0x0 0x0
0xffffa5000001a000 0041 00000000 0x0 0x0
0xffffa5000001a080 0041 00000000 0x0 0x0
0xffffa5000001a100 0041 00000000 0x0 0x0
0xffffa5000001a180 0041 00000000 0x0 0x0
0xffffa5000001a200 0041 00000000 0x0 0x0
0xffffa5000001a280 0041 00000000 0x0 0x0
0xffffa5000001a300 0041 00000000 0x0 0x0
0xffffa5000001a380 0041 00000000 0x0 0x0
0xffffa5000001a400 0041 00000000 0x0 0x0
0xffffa5000001a480 0041 00000000 0x0 0x0
0xffffa5000001a500 0041 00000000 0x0 0x0
0xffffa5000001a580 0041 00000000 0x0 0x0
0xffffa5000001a600 0041 00000000 0x0 0x0
0xffffa5000001a680 0041 00000000 0x0 0x0
0xffffa5000001a700 0041 00000000 0x0 0x0
0xffffa5000001a780 0041 00000000 0x0 0x0
0xffffa5000001a800 0041 00000000 0x0 0x0
0xffffa5000001a880 0041 00000000 0x0 0x0
0xffffa5000001a900 0041 00000000 0x0 0x0
0xffffa5000001a980 0041 00000000 0x0 0x0
0xffffa5000001aa00 0041 00000000 0x0 0x0
0xffffa5000001aa80 0041 00000000 0x0 0x0
0xffffa5000001ab00 0041 00000000 0x0 0x0
0xffffa5000001ab80 0041 00000000 0x0 0x0
0xffffa5000001ac00 0041 00000000 0x0 0x0
0xffffa5000001ac80 0041 00000000 0x0 0x0
0xffffa5000001ad00 0041 00000000 0x0 0x0
0xffffa5000001ad80 0041 00000000 0x0 0x0
0xffffa5000001ae00 0041 00000000 0x0 0x0
0xffffa5000001ae80 0041 00000000 0x0 0x0
0xffffa5000001af00 0041 00000000 0x0 0x0
0xffffa5000001af80 0041 00000000 0x0 0x0
0xffffa5000001b000 0041 00000000 0x0 0x0
0xffffa5000001b080 0041 00000000 0x0 0x0
0xffffa5000001b100 0041 00000000 0x0 0x0
0xffffa5000001b180 0041 00000000 0x0 0x0
0xffffa5000001b200 0041 00000000 0x0 0x0
0xffffa5000001b280 0041 00000000 0x0 0x0
0xffffa5000001b300 0041 00000000 0x0 0x0
0xffffa5000001b380 0041 00000000 0x0 0x0
0xffffa5000001b400 0041 00000000 0x0 0x0
0xffffa5000001b480 0041 00000000 0x0 0x0
0xffffa5000001b500 0041 00000000 0x0 0x0
0xffffa5000001b580 0041 00000000 0x0 0x0
0xffffa5000001b600 0041 00000000 0x0 0x0
0xffffa5000001b680 0041 00000000 0x0 0x0
0xffffa5000001b700 0041 00000000 0x0 0x0
0xffffa5000001b780 0041 00000000 0x0 0x0
0xffffa5000001b800 0041 00000000 0x0 0x0
0xffffa5000001b880 0041 00000000 0x0 0x0
0xffffa5000001b900 0041 00000000 0x0 0x0
0xffffa5000001b980 0041 00000000 0x0 0x0
0xffffa5000001ba00 0041 00000000 0x0 0x0
0xffffa5000001ba80 0041 00000000 0x0 0x0
0xffffa5000001bb00 0041 00000000 0x0 0x0
0xffffa5000001bb80 0041 00000000 0x0 0x0
0xffffa5000001bc00 0041 00000000 0x0 0x0
0xffffa5000001bc80 0041 00000000 0x0 0x0
0xffffa5000001bd00 0041 00000000 0x0 0x0
0xffffa5000001bd80 0041 00000000 0x0 0x0
0xffffa5000001be00 0041 00000000 0x0 0x0
0xffffa5000001be80 0041 00000000 0x0 0x0
0xffffa5000001bf00 0041 00000000 0x0 0x0
0xffffa5000001bf80 0041 00000000 0x0 0x0
0xffffa5000001c000 0041 00000000 0x0 0x0
0xffffa5000001c080 0041 00000000 0x0 0x0
0xffffa5000001c100 0041 00000000 0x0 0x0
0xffffa5000001c180 0041 00000000 0x0 0x0
0xffffa5000001c200 0041 00000000 0x0 0x0
0xffffa5000001c280 0041 00000000 0x0 0x0
0xffffa5000001c300 0041 00000000 0x0 0x0
0xffffa5000001c380 0041 00000000 0x0 0x0
0xffffa5000001c400 0041 00000000 0x0 0x0
0xffffa5000001c480 0041 00000000 0x0 0x0
0xffffa5000001c500 0041 00000000 0x0 0x0
0xffffa5000001c580 0041 00000000 0x0 0x0
0xffffa5000001c600 0041 00000000 0x0 0x0
0xffffa5000001c680 0041 00000000 0x0 0x0
0xffffa5000001c700 0041 00000000 0x0 0x0
0xffffa5000001c780 0041 00000000 0x0 0x0
0xffffa5000001c800 0041 00000000 0x0 0x0
0xffffa5000001c880 0041 00000000 0x0 0x0
0xffffa5000001c900 0041 00000000 0x0 0x0
0xffffa5000001c980 0041 00000000 0x0 0x0
0xffffa5000001ca00 0041 00000000 0x0 0x0
0xffffa5000001ca80 0041 00000000 0x0 0x0
0xffffa5000001cb00 0041 00000000 0x0 0x0
0xffffa5000001cb80 0041 00000000 0x0 0x0
0xffffa5000001cc00 0041 00000000 0x0 0x0
0xffffa5000001cc80 0041 00000000 0x0 0x0
0xffffa5000001cd00 0041 00000000 0x0 0x0
0xffffa5000001cd80 0041 00000000 0x0 0x0
0xffffa5000001ce00 0041 00000000 0x0 0x0
0xffffa5000001ce80 0041 00000000 0x0 0x0
0xffffa5000001cf00 0041 00000000 0x0 0x0
0xffffa5000001cf80 0041 00000000 0x0 0x0
0xffffa5000001d000 0041 00000000 0x0 0x0
0xffffa5000001d080 0041 00000000 0x0 0x0
0xffffa5000001d100 0041 00000000 0x0 0x0
0xffffa5000001d180 0041 00000000 0x0 0x0
0xffffa5000001d200 0041 00000000 0x0 0x0
0xffffa5000001d280 0041 00000000 0x0 0x0
0xffffa5000001d300 0041 00000000 0x0 0x0
0xffffa5000001d380 0041 00000000 0x0 0x0
0xffffa5000001d400 0041 00000000 0x0 0x0
0xffffa5000001d480 0041 00000000 0x0 0x0
0xffffa5000001d500 0041 00000000 0x0 0x0
0xffffa5000001d580 0041 00000000 0x0 0x0
0xffffa5000001d600 0041 00000000 0x0 0x0
0xffffa5000001d680 0041 00000000 0x0 0x0
0xffffa5000001d700 0041 00000000 0x0 0x0
0xffffa5000001d780 0041 00000000 0x0 0x0
0xffffa5000001d800 0041 00000000 0x0 0x0
0xffffa5000001d880 0041 00000000 0x0 0x0
0xffffa5000001d900 0041 00000000 0x0 0x0
0xffffa5000001d980 0041 00000000 0x0 0x0
0xffffa5000001da00 0041 00000000 0x0 0x0
0xffffa5000001da80 0041 00000000 0x0 0x0
0xffffa5000001db00 0041 00000000 0x0 0x0
0xffffa5000001db80 0041 00000000 0x0 0x0
0xffffa5000001dc00 0041 00000000 0x0 0x0
0xffffa5000001dc80 0041 00000000 0x0 0x0
0xffffa5000001dd00 0041 00000000 0x0 0x0
0xffffa5000001dd80 0041 00000000 0x0 0x0
0xffffa5000001de00 0041 00000000 0x0 0x0
0xffffa5000001de80 0041 00000000 0x0 0x0
0xffffa5000001df00 0041 00000000 0x0 0x0
0xffffa5000001df80 0041 00000000 0x0 0x0
0xffffa5000001e000 0041 00000000 0x0 0x0
0xffffa5000001e080 0041 00000000 0x0 0x0
0xffffa5000001e100 0041 00000000 0x0 0x0
0xffffa5000001e180 0041 00000000 0x0 0x0
0xffffa5000001e200 0041 00000000 0x0 0x0
0xffffa5000001e280 0041 00000000 0x0 0x0
0xffffa5000001e300 0041 00000000 0x0 0x0
0xffffa5000001e380 0041 00000000 0x0 0x0
0xffffa5000001e400 0041 00000000 0x0 0x0
0xffffa5000001e480 0041 00000000 0x0 0x0
0xffffa5000001e500 0041 00000000 0x0 0x0
0xffffa5000001e580 0041 00000000 0x0 0x0
0xffffa5000001e600 0041 00000000 0x0 0x0
0xffffa5000001e680 0041 00000000 0x0 0x0
0xffffa5000001e700 0041 00000000 0x0 0x0
0xffffa5000001e780 0041 00000000 0x0 0x0
0xffffa5000001e800 0041 00000000 0x0 0x0
0xffffa5000001e880 0041 00000000 0x0 0x0
0xffffa5000001e900 0041 00000000 0x0 0x0
0xffffa5000001e980 0041 00000000 0x0 0x0
0xffffa5000001ea00 0041 00000000 0x0 0x0
0xffffa5000001ea80 0041 00000000 0x0 0x0
0xffffa5000001eb00 0041 00000000 0x0 0x0
0xffffa5000001eb80 0041 00000000 0x0 0x0
0xffffa5000001ec00 0041 00000000 0x0 0x0
0xffffa5000001ec80 0041 00000000 0x0 0x0
0xffffa5000001ed00 0041 00000000 0x0 0x0
0xffffa5000001ed80 0041 00000000 0x0 0x0
0xffffa5000001ee00 0041 00000000 0x0 0x0
0xffffa5000001ee80 0041 00000000 0x0 0x0
0xffffa5000001ef00 0041 00000000 0x0 0x0
0xffffa5000001ef80 0041 00000000 0x0 0x0
0xffffa5000001f000 0041 00000000 0x0 0x0
0xffffa5000001f080 0041 00000000 0x0 0x0
0xffffa5000001f100 0041 00000000 0x0 0x0
0xffffa5000001f180 0041 00000000 0x0 0x0
0xffffa5000001f200 0041 00000000 0x0 0x0
0xffffa5000001f280 0041 00000000 0x0 0x0
0xffffa5000001f300 0041 00000000 0x0 0x0
0xffffa5000001f380 0041 00000000 0x0 0x0
0xffffa5000001f400 0041 00000000 0x0 0x0
0xffffa5000001f480 0041 00000000 0x0 0x0
0xffffa5000001f500 0041 00000000 0x0 0x0
0xffffa5000001f580 0041 00000000 0x0 0x0
0xffffa5000001f600 0041 00000000 0x0 0x0
0xffffa5000001f680 0041 00000000 0x0 0x0
0xffffa5000001f700 0041 00000000 0x0 0x0
0xffffa5000001f780 0041 00000000 0x0 0x0
0xffffa5000001f800 0041 00000000 0x0 0x0
0xffffa5000001f880 0041 00000000 0x0 0x0
0xffffa5000001f900 0041 00000000 0x0 0x0
0xffffa5000001f980 0041 00000000 0x0 0x0
0xffffa5000001fa00 0041 00000000 0x0 0x0
0xffffa5000001fa80 0041 00000000 0x0 0x0
0xffffa5000001fb00 0041 00000000 0x0 0x0
0xffffa5000001fb80 0041 00000000 0x0 0x0
0xffffa5000001fc00 0041 00000000 0x0 0x0
0xffffa5000001fc80 0041 00000000 0x0 0x0
0xffffa5000001fd00 0041 00000000 0x0 0x0
0xffffa5000001fd80 0041 00000000 0x0 0x0
0xffffa5000001fe00 0041 00000000 0x0 0x0
0xffffa5000001fe80 0041 00000000 0x0 0x0
0xffffa5000001ff00 0041 00000000 0x0 0x0
0xffffa5000001ff80 0041 00000000 0x0 0x0
0xffffa50000020000 0041 00000000 0x0 0x0
0xffffa50000020080 0041 00000000 0x0 0x0
0xffffa50000020100 0041 00000000 0x0 0x0
0xffffa50000020180 0041 00000000 0x0 0x0
0xffffa50000020200 0041 00000000 0x0 0x0
0xffffa50000020280 0041 00000000 0x0 0x0
0xffffa50000020300 0041 00000000 0x0 0x0
0xffffa50000020380 0041 00000000 0x0 0x0
0xffffa50000020400 0041 00000000 0x0 0x0
0xffffa50000020480 0041 00000000 0x0 0x0
0xffffa50000020500 0041 00000000 0x0 0x0
0xffffa50000020580 0041 00000000 0x0 0x0
0xffffa50000020600 0041 00000000 0x0 0x0
0xffffa50000020680 0041 00000000 0x0 0x0
0xffffa50000020700 0041 00000000 0x0 0x0
0xffffa50000020780 0041 00000000 0x0 0x0
0xffffa50000020800 0041 00000000 0x0 0x0
0xffffa50000020880 0041 00000000 0x0 0x0
0xffffa50000020900 0041 00000000 0x0 0x0
0xffffa50000020980 0041 00000000 0x0 0x0
0xffffa50000020a00 0041 00000000 0x0 0x0
0xffffa50000020a80 0041 00000000 0x0 0x0
0xffffa50000020b00 0041 00000000 0x0 0x0
0xffffa50000020b80 0041 00000000 0x0 0x0
0xffffa50000020c00 0041 00000000 0x0 0x0
0xffffa50000020c80 0041 00000000 0x0 0x0
0xffffa50000020d00 0041 00000000 0x0 0x0
0xffffa50000020d80 0041 00000000 0x0 0x0
0xffffa50000020e00 0041 00000000 0x0 0x0
0xffffa50000020e80 0045 00000000 0x0 0x0
0xffffa50000020f00 0041 00000000 0x0 0x0
0xffffa50000020f80 0045 00000000 0x0 0x0
0xffffa50000021000 0041 00000000 0x0 0x0
0xffffa50000021080 0041 00000000 0x0 0x0
0xffffa50000021100 0041 00000000 0x0 0x0
0xffffa50000021180 0041 00000000 0x0 0x0
0xffffa50000021200 0041 00000000 0x0 0x0
0xffffa50000021280 0045 00000000 0x0 0x0
0xffffa50000021300 0045 00000000 0x0 0x0
0xffffa50000021380 0045 00000000 0x0 0x0
0xffffa50000021400 0041 00000000 0x0 0x0
0xffffa50000021480 0041 00000000 0x0 0x0
0xffffa50000021500 0041 00000000 0x0 0x0
0xffffa50000021580 0041 00000000 0x0 0x0
0xffffa50000021600 0041 00000000 0x0 0x0
0xffffa50000021680 0041 00000000 0x0 0x0
0xffffa50000021700 0045 00000000 0x0 0x0
0xffffa50000021780 0041 00000000 0x0 0x0
0xffffa50000021800 0041 00000000 0x0 0x0
0xffffa50000021880 0041 00000000 0x0 0x0
0xffffa50000021900 0045 00000000 0x0 0x0
0xffffa50000021980 0045 00000000 0x0 0x0
0xffffa50000021a00 0045 00000000 0x0 0x0
0xffffa50000021a80 0041 00000000 0x0 0x0
0xffffa50000021b00 0041 00000000 0x0 0x0
0xffffa50000021b80 0041 00000000 0x0 0x0
0xffffa50000021c00 0045 00000000 0x0 0x0
0xffffa50000021c80 0041 00000000 0x0 0x0
0xffffa50000021d00 0045 00000000 0x0 0x0
0xffffa50000021d80 0045 00000000 0x0 0x0
0xffffa50000021e00 0045 00000000 0x0 0x0
0xffffa50000021e80 0041 00000000 0x0 0x0
0xffffa50000021f00 0041 00000000 0x0 0x0
0xffffa50000021f80 0041 00000000 0x0 0x0
0xffffa50000022000 0045 00000000 0x0 0x0
0xffffa50000022080 0045 00000000 0x0 0x0
0xffffa50000022100 0041 00000000 0x0 0x0
0xffffa50000022180 0041 00000000 0x0 0x0
0xffffa50000022200 0041 00000000 0x0 0x0
0xffffa50000022280 0041 00000000 0x0 0x0
0xffffa50000022300 0041 00000000 0x0 0x0
0xffffa50000022380 0041 00000000 0x0 0x0
0xffffa50000022400 0041 00000000 0x0 0x0
0xffffa50000022480 0045 00000000 0x0 0x0
0xffffa50000022500 0041 00000000 0x0 0x0
0xffffa50000022580 0041 00000000 0x0 0x0
0xffffa50000022600 0041 00000000 0x0 0x0
0xffffa50000022680 0041 00000000 0x0 0x0
0xffffa50000022700 0041 00000000 0x0 0x0
0xffffa50000022780 0041 00000000 0x0 0x0
0xffffa50000022800 0041 00000000 0x0 0x0
0xffffa50000022880 0041 00000000 0x0 0x0
0xffffa50000022900 0041 00000000 0x0 0x0
0xffffa50000022980 0041 00000000 0x0 0x0
0xffffa50000022a00 0041 00000000 0x0 0x0
0xffffa50000022a80 0041 00000000 0x0 0x0
0xffffa50000022b00 0041 00000000 0x0 0x0
0xffffa50000022b80 0041 00000000 0x0 0x0
0xffffa50000022c00 0041 00000000 0x0 0x0
0xffffa50000022c80 0041 00000000 0x0 0x0
0xffffa50000022d00 0041 00000000 0x0 0x0
0xffffa50000022d80 0041 00000000 0x0 0x0
0xffffa50000022e00 0041 00000000 0x0 0x0
0xffffa50000022e80 0041 00000000 0x0 0x0
0xffffa50000022f00 0041 00000000 0x0 0x0
0xffffa50000022f80 0041 00000000 0x0 0x0
0xffffa50000023000 0041 00000000 0x0 0x0
0xffffa50000023080 0041 00000000 0x0 0x0
0xffffa50000023100 0041 00000000 0x0 0x0
0xffffa50000023180 0041 00000000 0x0 0x0
0xffffa50000023200 0041 00000000 0x0 0x0
0xffffa50000023280 0041 00000000 0x0 0x0
0xffffa50000023300 0041 00000000 0x0 0x0
0xffffa50000023380 0041 00000000 0x0 0x0
0xffffa50000023400 0041 00000000 0x0 0x0
0xffffa50000023480 0041 00000000 0x0 0x0
0xffffa50000023500 0041 00000000 0x0 0x0
0xffffa50000023580 0041 00000000 0x0 0x0
0xffffa50000023600 0041 00000000 0x0 0x0
0xffffa50000023680 0041 00000000 0x0 0x0
0xffffa50000023700 0041 00000000 0x0 0x0
0xffffa50000023780 0041 00000000 0x0 0x0
0xffffa50000023800 0041 00000000 0x0 0x0
0xffffa50000023880 0041 00000000 0x0 0x0
0xffffa50000023900 0041 00000000 0x0 0x0
0xffffa50000023980 0041 00000000 0x0 0x0
0xffffa50000023a00 0041 00000000 0x0 0x0
0xffffa50000023a80 0041 00000000 0x0 0x0
0xffffa50000023b00 0041 00000000 0x0 0x0
0xffffa50000023b80 0041 00000000 0x0 0x0
0xffffa50000023c00 0041 00000000 0x0 0x0
0xffffa50000023c80 0041 00000000 0x0 0x0
0xffffa50000023d00 0041 00000000 0x0 0x0
0xffffa50000023d80 0041 00000000 0x0 0x0
0xffffa50000023e00 0041 00000000 0x0 0x0
0xffffa50000023e80 0041 00000000 0x0 0x0
0xffffa50000023f00 0041 00000000 0x0 0x0
0xffffa50000023f80 0041 00000000 0x0 0x0
0xffffa50000024000 0041 00000000 0x0 0x0
0xffffa50000024080 0041 00000000 0x0 0x0
0xffffa50000024100 0041 00000000 0x0 0x0
0xffffa50000024180 0041 00000000 0x0 0x0
0xffffa50000024200 0041 00000000 0x0 0x0
0xffffa50000024280 0041 00000000 0x0 0x0
0xffffa50000024300 0041 00000000 0x0 0x0
0xffffa50000024380 0041 00000000 0x0 0x0
0xffffa50000024400 0041 00000000 0x0 0x0
0xffffa50000024480 0041 00000000 0x0 0x0
0xffffa50000024500 0041 00000000 0x0 0x0
0xffffa50000024580 0041 00000000 0x0 0x0
0xffffa50000024600 0041 00000000 0x0 0x0
0xffffa50000024680 0041 00000000 0x0 0x0
0xffffa50000024700 0041 00000000 0x0 0x0
0xffffa50000024780 0041 00000000 0x0 0x0
0xffffa50000024800 0041 00000000 0x0 0x0
0xffffa50000024880 0041 00000000 0x0 0x0
0xffffa50000024900 0041 00000000 0x0 0x0
0xffffa50000024980 0041 00000000 0x0 0x0
0xffffa50000024a00 0041 00000000 0x0 0x0
0xffffa50000024a80 0041 00000000 0x0 0x0
0xffffa50000024b00 0041 00000000 0x0 0x0
0xffffa50000024b80 0041 00000000 0x0 0x0
0xffffa50000024c00 0041 00000000 0x0 0x0
0xffffa50000024c80 0041 00000000 0x0 0x0
0xffffa50000024d00 0041 00000000 0x0 0x0
0xffffa50000024d80 0041 00000000 0x0 0x0
0xffffa50000024e00 0041 00000000 0x0 0x0
0xffffa50000024e80 0041 00000000 0x0 0x0
0xffffa50000024f00 0041 00000000 0x0 0x0
0xffffa50000024f80 0041 00000000 0x0 0x0
0xffffa50000025000 0041 00000000 0x0 0x0
0xffffa50000025080 0041 00000000 0x0 0x0
0xffffa50000025100 0041 00000000 0x0 0x0
0xffffa50000025180 0041 00000000 0x0 0x0
0xffffa50000025200 0041 00000000 0x0 0x0
0xffffa50000025280 0041 00000000 0x0 0x0
0xffffa50000025300 0041 00000000 0x0 0x0
0xffffa50000025380 0041 00000000 0x0 0x0
0xffffa50000025400 0041 00000000 0x0 0x0
0xffffa50000025480 0041 00000000 0x0 0x0
0xffffa50000025500 0041 00000000 0x0 0x0
0xffffa50000025580 0041 00000000 0x0 0x0
0xffffa50000025600 0041 00000000 0x0 0x0
0xffffa50000025680 0041 00000000 0x0 0x0
0xffffa50000025700 0041 00000000 0x0 0x0
0xffffa50000025780 0041 00000000 0x0 0x0
0xffffa50000025800 0041 00000000 0x0 0x0
0xffffa50000025880 0041 00000000 0x0 0x0
0xffffa50000025900 0041 00000000 0x0 0x0
0xffffa50000025980 0041 00000000 0x0 0x0
0xffffa50000025a00 0041 00000000 0x0 0x0
0xffffa50000025a80 0041 00000000 0x0 0x0
0xffffa50000025b00 0041 00000000 0x0 0x0
0xffffa50000025b80 0001 00000000 0x0 0x0
0xffffa50000025c00 0001 00000000 0x0 0x0
0xffffa50000025c80 0001 00000000 0x0 0x0
0xffffa50000025d00 0001 00000000 0x0 0x0
0xffffa50000025d80 0001 00000000 0x0 0x0
0xffffa50000025e00 0001 00000000 0x0 0x0
0xffffa50000025e80 0001 00000000 0x0 0x0
0xffffa50000025f00 0001 00000000 0x0 0x0
0xffffa50000025f80 0001 00000000 0x0 0x0
0xffffa50000026000 0001 00000000 0x0 0x0
0xffffa50000026080 0001 00000000 0x0 0x0
0xffffa50000026100 0001 00000000 0x0 0x0
0xffffa50000026180 0001 00000000 0x0 0x0
0xffffa50000026200 0001 00000000 0x0 0x0
0xffffa50000026280 0001 00000000 0x0 0x0
0xffffa50000026300 0001 00000000 0x0 0x0
0xffffa50000026380 0001 00000000 0x0 0x0
0xffffa50000026400 0001 00000000 0x0 0x0
0xffffa50000026480 0001 00000000 0x0 0x0
0xffffa50000026500 0001 00000000 0x0 0x0
0xffffa50000026580 0001 00000000 0x0 0x0
0xffffa50000026600 0001 00000000 0x0 0x0
0xffffa50000026680 0001 00000000 0x0 0x0
0xffffa50000026700 0001 00000000 0x0 0x0
0xffffa50000026780 0001 00000000 0x0 0x0
0xffffa50000026800 0001 00000000 0x0 0x0
0xffffa50000026880 0001 00000000 0x0 0x0
0xffffa50000026900 0001 00000000 0x0 0x0
0xffffa50000026980 0001 00000000 0x0 0x0
0xffffa50000026a00 0001 00000000 0x0 0x0
0xffffa50000026a80 0001 00000000 0x0 0x0
0xffffa50000026b00 0001 00000000 0x0 0x0
0xffffa50000026b80 0001 00000000 0x0 0x0
0xffffa50000026c00 0001 00000000 0x0 0x0
0xffffa50000026c80 0001 00000000 0x0 0x0
0xffffa50000026d00 0001 00000000 0x0 0x0
0xffffa50000026d80 0001 00000000 0x0 0x0
0xffffa50000026e00 0001 00000000 0x0 0x0
0xffffa50000026e80 0001 00000000 0x0 0x0
0xffffa50000026f00 0001 00000000 0x0 0x0
0xffffa50000026f80 0001 00000000 0x0 0x0
0xffffa50000027000 0001 00000000 0x0 0x0
0xffffa50000027080 0001 00000000 0x0 0x0
0xffffa50000027100 0001 00000000 0x0 0x0
0xffffa50000027180 0001 00000000 0x0 0x0
0xffffa50000027200 0001 00000000 0x0 0x0
0xffffa50000027280 0001 00000000 0x0 0x0
0xffffa50000027300 0001 00000000 0x0 0x0
0xffffa50000027380 0001 00000000 0x0 0x0
0xffffa50000027400 0001 00000000 0x0 0x0
0xffffa50000027480 0001 00000000 0x0 0x0
0xffffa50000027500 0001 00000000 0x0 0x0
0xffffa50000027580 0001 00000000 0x0 0x0
0xffffa50000027600 0001 00000000 0x0 0x0
0xffffa50000027680 0001 00000000 0x0 0x0
0xffffa50000027700 0001 00000000 0x0 0x0
0xffffa50000027780 0001 00000000 0x0 0x0
0xffffa50000027800 0001 00000000 0x0 0x0
0xffffa50000027880 0001 00000000 0x0 0x0
0xffffa50000027900 0001 00000000 0x0 0x0
0xffffa50000027980 0001 00000000 0x0 0x0
0xffffa50000027a00 0001 00000000 0x0 0x0
0xffffa50000027a80 0001 00000000 0x0 0x0
0xffffa50000027b00 0001 00000000 0x0 0x0
0xffffa50000027b80 0001 00000000 0x0 0x0
0xffffa50000027c00 0001 00000000 0x0 0x0
0xffffa50000027c80 0001 00000000 0x0 0x0
0xffffa50000027d00 0001 00000000 0x0 0x0
0xffffa50000027d80 0001 00000000 0x0 0x0
0xffffa50000027e00 0001 00000000 0x0 0x0
0xffffa50000027e80 0001 00000000 0x0 0x0
0xffffa50000027f00 0001 00000000 0x0 0x0
0xffffa50000027f80 0001 00000000 0x0 0x0
0xffffa50000028000 0001 00000000 0x0 0x0
0xffffa50000028080 0001 00000000 0x0 0x0
0xffffa50000028100 0001 00000000 0x0 0x0
0xffffa50000028180 0001 00000000 0x0 0x0
0xffffa50000028200 0001 00000000 0x0 0x0
0xffffa50000028280 0001 00000000 0x0 0x0
0xffffa50000028300 0001 00000000 0x0 0x0
0xffffa50000028380 0001 00000000 0x0 0x0
0xffffa50000028400 0001 00000000 0x0 0x0
0xffffa50000028480 0001 00000000 0x0 0x0
0xffffa50000028500 0001 00000000 0x0 0x0
0xffffa50000028580 0001 00000000 0x0 0x0
0xffffa50000028600 0001 00000000 0x0 0x0
0xffffa50000028680 0001 00000000 0x0 0x0
0xffffa50000028700 0001 00000000 0x0 0x0
0xffffa50000028780 0001 00000000 0x0 0x0
0xffffa50000028800 0001 00000000 0x0 0x0
0xffffa50000028880 0001 00000000 0x0 0x0
0xffffa50000028900 0001 00000000 0x0 0x0
0xffffa50000028980 0001 00000000 0x0 0x0
0xffffa50000028a00 0001 00000000 0x0 0x0
0xffffa50000028a80 0001 00000000 0x0 0x0
0xffffa50000028b00 0001 00000000 0x0 0x0
0xffffa50000028b80 0001 00000000 0x0 0x0
0xffffa50000028c00 0001 00000000 0x0 0x0
0xffffa50000028c80 0001 00000000 0x0 0x0
0xffffa50000028d00 0001 00000000 0x0 0x0
0xffffa50000028d80 0001 00000000 0x0 0x0
0xffffa50000028e00 0001 00000000 0x0 0x0
0xffffa50000028e80 0001 00000000 0x0 0x0
0xffffa50000028f00 0001 00000000 0x0 0x0
0xffffa50000028f80 0001 00000000 0x0 0x0
0xffffa50000029000 0001 00000000 0x0 0x0
0xffffa50000029080 0001 00000000 0x0 0x0
0xffffa50000029100 0001 00000000 0x0 0x0
0xffffa50000029180 0001 00000000 0x0 0x0
0xffffa50000029200 0001 00000000 0x0 0x0
0xffffa50000029280 0001 00000000 0x0 0x0
0xffffa50000029300 0001 00000000 0x0 0x0
0xffffa50000029380 0001 00000000 0x0 0x0
0xffffa50000029400 0001 00000000 0x0 0x0
0xffffa50000029480 0001 00000000 0x0 0x0
0xffffa50000029500 0001 00000000 0x0 0x0
0xffffa50000029580 0001 00000000 0x0 0x0
0xffffa50000029600 0001 00000000 0x0 0x0
0xffffa50000029680 0001 00000000 0x0 0x0
0xffffa50000029700 0001 00000000 0x0 0x0
0xffffa50000029780 0001 00000000 0x0 0x0
0xffffa50000029800 0001 00000000 0x0 0x0
0xffffa50000029880 0001 00000000 0x0 0x0
0xffffa50000029900 0001 00000000 0x0 0x0
0xffffa50000029980 0001 00000000 0x0 0x0
0xffffa50000029a00 0001 00000000 0x0 0x0
0xffffa50000029a80 0001 00000000 0x0 0x0
0xffffa50000029b00 0001 00000000 0x0 0x0
0xffffa50000029b80 0001 00000000 0x0 0x0
0xffffa50000029c00 0001 00000000 0x0 0x0
0xffffa50000029c80 0001 00000000 0x0 0x0
0xffffa50000029d00 0001 00000000 0x0 0x0
0xffffa50000029d80 0001 00000000 0x0 0x0
0xffffa50000029e00 0001 00000000 0x0 0x0
0xffffa50000029e80 0001 00000000 0x0 0x0
0xffffa50000029f00 0001 00000000 0x0 0x0
0xffffa50000029f80 0001 00000000 0x0 0x0
0xffffa5000002a000 0001 00000000 0x0 0x0
0xffffa5000002a080 0001 00000000 0x0 0x0
0xffffa5000002a100 0001 00000000 0x0 0x0
0xffffa5000002a180 0001 00000000 0x0 0x0
0xffffa5000002a200 0001 00000000 0x0 0x0
0xffffa5000002a280 0001 00000000 0x0 0x0
0xffffa5000002a300 0001 00000000 0x0 0x0
0xffffa5000002a380 0001 00000000 0x0 0x0
0xffffa5000002a400 0001 00000000 0x0 0x0
0xffffa5000002a480 0001 00000000 0x0 0x0
0xffffa5000002a500 0001 00000000 0x0 0x0
0xffffa5000002a580 0001 00000000 0x0 0x0
0xffffa5000002a600 0001 00000000 0x0 0x0
0xffffa5000002a680 0001 00000000 0x0 0x0
0xffffa5000002a700 0001 00000000 0x0 0x0
0xffffa5000002a780 0001 00000000 0x0 0x0
0xffffa5000002a800 0001 00000000 0x0 0x0
0xffffa5000002a880 0001 00000000 0x0 0x0
0xffffa5000002a900 0001 00000000 0x0 0x0
0xffffa5000002a980 0001 00000000 0x0 0x0
0xffffa5000002aa00 0001 00000000 0x0 0x0
0xffffa5000002aa80 0001 00000000 0x0 0x0
0xffffa5000002ab00 0001 00000000 0x0 0x0
0xffffa5000002ab80 0001 00000000 0x0 0x0
0xffffa5000002ac00 0001 00000000 0x0 0x0
0xffffa5000002ac80 0001 00000000 0x0 0x0
0xffffa5000002ad00 0001 00000000 0x0 0x0
0xffffa5000002ad80 0001 00000000 0x0 0x0
0xffffa5000002ae00 0001 00000000 0x0 0x0
0xffffa5000002ae80 0001 00000000 0x0 0x0
0xffffa5000002af00 0001 00000000 0x0 0x0
0xffffa5000002af80 0001 00000000 0x0 0x0
0xffffa5000002b000 0001 00000000 0x0 0x0
0xffffa5000002b080 0001 00000000 0x0 0x0
0xffffa5000002b100 0001 00000000 0x0 0x0
0xffffa5000002b180 0001 00000000 0x0 0x0
0xffffa5000002b200 0001 00000000 0x0 0x0
0xffffa5000002b280 0001 00000000 0x0 0x0
0xffffa5000002b300 0001 00000000 0x0 0x0
0xffffa5000002b380 0001 00000000 0x0 0x0
0xffffa5000002b400 0001 00000000 0x0 0x0
0xffffa5000002b480 0001 00000000 0x0 0x0
0xffffa5000002b500 0001 00000000 0x0 0x0
0xffffa5000002b580 0001 00000000 0x0 0x0
0xffffa5000002b600 0001 00000000 0x0 0x0
0xffffa5000002b680 0001 00000000 0x0 0x0
0xffffa5000002b700 0001 00000000 0x0 0x0
0xffffa5000002b780 0001 00000000 0x0 0x0
0xffffa5000002b800 0001 00000000 0x0 0x0
0xffffa5000002b880 0001 00000000 0x0 0x0
0xffffa5000002b900 0001 00000000 0x0 0x0
0xffffa5000002b980 0001 00000000 0x0 0x0
0xffffa5000002ba00 0001 00000000 0x0 0x0
0xffffa5000002ba80 0001 00000000 0x0 0x0
0xffffa5000002bb00 0001 00000000 0x0 0x0
0xffffa5000002bb80 0001 00000000 0x0 0x0
0xffffa5000002bc00 0001 00000000 0x0 0x0
0xffffa5000002bc80 0001 00000000 0x0 0x0
0xffffa5000002bd00 0001 00000000 0x0 0x0
0xffffa5000002bd80 0001 00000000 0x0 0x0
0xffffa5000002be00 0001 00000000 0x0 0x0
0xffffa5000002be80 0001 00000000 0x0 0x0
0xffffa5000002bf00 0001 00000000 0x0 0x0
0xffffa5000002bf80 0001 00000000 0x0 0x0
0xffffa5000002c000 0001 00000000 0x0 0x0
0xffffa5000002c080 0001 00000000 0x0 0x0
0xffffa5000002c100 0001 00000000 0x0 0x0
0xffffa5000002c180 0001 00000000 0x0 0x0
0xffffa5000002c200 0001 00000000 0x0 0x0
0xffffa5000002c280 0001 00000000 0x0 0x0
0xffffa5000002c300 0001 00000000 0x0 0x0
0xffffa5000002c380 0001 00000000 0x0 0x0
0xffffa5000002c400 0001 00000000 0x0 0x0
0xffffa5000002c480 0001 00000000 0x0 0x0
0xffffa5000002c500 0001 00000000 0x0 0x0
0xffffa5000002c580 0001 00000000 0x0 0x0
0xffffa5000002c600 0001 00000000 0x0 0x0
0xffffa5000002c680 0001 00000000 0x0 0x0
0xffffa5000002c700 0001 00000000 0x0 0x0
0xffffa5000002c780 0001 00000000 0x0 0x0
0xffffa5000002c800 0001 00000000 0x0 0x0
0xffffa5000002c880 0001 00000000 0x0 0x0
0xffffa5000002c900 0001 00000000 0x0 0x0
0xffffa5000002c980 0001 00000000 0x0 0x0
0xffffa5000002ca00 0001 00000000 0x0 0x0
0xffffa5000002ca80 0001 00000000 0x0 0x0
0xffffa5000002cb00 0001 00000000 0x0 0x0
0xffffa5000002cb80 0001 00000000 0x0 0x0
0xffffa5000002cc00 0001 00000000 0x0 0x0
0xffffa5000002cc80 0001 00000000 0x0 0x0
0xffffa5000002cd00 0001 00000000 0x0 0x0
0xffffa5000002cd80 0001 00000000 0x0 0x0
0xffffa5000002ce00 0001 00000000 0x0 0x0
0xffffa5000002ce80 0001 00000000 0x0 0x0
0xffffa5000002cf00 0001 00000000 0x0 0x0
0xffffa5000002cf80 0001 00000000 0x0 0x0
0xffffa5000002d000 0001 00000000 0x0 0x0
0xffffa5000002d080 0001 00000000 0x0 0x0
0xffffa5000002d100 0001 00000000 0x0 0x0
0xffffa5000002d

---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.

syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot can test patches for this bug, for details see:
https://goo.gl/tpsmEJ#testing-patches

[syzbot]

syzbot has found a reproducer for the following crash on:

HEAD commit: 2d7b70f9 Add a linker map to hide all the symbols the this..
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=174552ffe00000

kernel config: https://syzkaller.appspot.com/x/.config?x=19c26c7ba7ac2db1
dashboard link: https://syzkaller.appspot.com/bug?extid=acfd688740461f7edf2f
compiler: clang version 3.8.0-2ubuntu4 (tags/RELEASE_380/final)

syz repro: https://syzkaller.appspot.com/x/repro.syz?x=17968888100000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=1744c1a8100000

IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+acfd68...@syzkaller.appspotmail.com

[ 50.8506667] panic: LOCKDEBUG: Mutex error: mutex_vector_enter,514: spin lock held
[ 50.8506667] cpu0: Begin traceback...
[ 50.8506667] vpanic() at netbsd:vpanic+0x7c1 sys/kern/subr_prf.c:288
[ 50.8506667] panic() at netbsd:panic+0x1ad sys/kern/subr_prf.c:209
[ 50.8506667] lockdebug_abort1() at netbsd:lockdebug_abort1+0xd12
[ 50.8506667] mutex_enter() at netbsd:mutex_enter+0x5e4 sys/kern/kern_mutex.c:517
[ 50.8506667] pmap_update() at netbsd:pmap_update+0x114 sys/arch/x86/x86/pmap.c:5379
[ 50.8506667] uvm_km_kmem_alloc() at netbsd:uvm_km_kmem_alloc+0x797 sys/uvm/uvm_km.c:865
[ 50.8506667] pool_page_alloc() at netbsd:pool_page_alloc+0x136 sys/kern/subr_pool.c:2860
[ 50.8506667] pool_grow() at netbsd:pool_grow+0x1fc sys/kern/subr_pool.c:1369
[ 50.8506667] pool_get() at netbsd:pool_get+0x46d sys/kern/subr_pool.c:1127
[ 50.8506667] pool_cache_get_slow() at netbsd:pool_cache_get_slow+0x982 sys/kern/subr_pool.c:2485
[ 50.8506667] pool_cache_get_paddr() at netbsd:pool_cache_get_paddr+0x8c6 sys/kern/subr_pool.c:2577
[ 50.8506667] kmem_intr_alloc() at netbsd:kmem_intr_alloc+0x1d0 sys/kern/subr_kmem.c:224
[ 50.8506667] kmem_alloc() at netbsd:kmem_alloc+0xcb sys/kern/subr_kmem.c:302
[ 50.8506667] amap_alloc1() at netbsd:amap_alloc1+0x696 sys/uvm/uvm_amap.c:190
[ 50.8506667] amap_copy() at netbsd:amap_copy+0x1687 amap_alloc sys/uvm/uvm_amap.c:243 [inline]
[ 50.8506667] amap_copy() at netbsd:amap_copy+0x1687 sys/uvm/uvm_amap.c:853
[ 50.8506667] uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b uvmfault_amapcopy sys/uvm/uvm_fault.c:243 [inline]
[ 50.8506667] uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b uvm_fault_check sys/uvm/uvm_fault.c:1058 [inline]
[ 50.8506667] uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b sys/uvm/uvm_fault.c:894
[ 50.8506667] trap() at netbsd:trap+0x1ecb
[ 50.8506667] --- trap (number 6) ---
[ 50.8506667] 401ccb:
[ 50.8506667] cpu0: End traceback...
[ 50.8506667] fatal breakpoint trap in supervisor mode
[ 50.8506667] trap type 1 code 0 rip 0xffffffff802227ed cs 0x8 rflags 0x246 cr2 0x20000100 ilevel 0x8 rsp 0xffffa5007ab06d50
[ 50.8506667] curlwp 0xffffa500129e94c0 pid 682.1087 lowest kstack 0xffffa5007ab002c0
Stopped in pid 682.1087 (syz-executor0894) at netbsd:breakpoint+0x5: leave

?
breakpoint() at netbsd:breakpoint+0x5
vpanic() at netbsd:vpanic+0x7c1 sys/kern/subr_prf.c:288
panic() at netbsd:panic+0x1ad sys/kern/subr_prf.c:209
lockdebug_abort1() at netbsd:lockdebug_abort1+0xd12
mutex_enter() at netbsd:mutex_enter+0x5e4 sys/kern/kern_mutex.c:517
pmap_update() at netbsd:pmap_update+0x114 sys/arch/x86/x86/pmap.c:5379
uvm_km_kmem_alloc() at netbsd:uvm_km_kmem_alloc+0x797 sys/uvm/uvm_km.c:865
pool_page_alloc() at netbsd:pool_page_alloc+0x136 sys/kern/subr_pool.c:2860
pool_grow() at netbsd:pool_grow+0x1fc sys/kern/subr_pool.c:1369
pool_get() at netbsd:pool_get+0x46d sys/kern/subr_pool.c:1127
pool_cache_get_slow() at netbsd:pool_cache_get_slow+0x982 sys/kern/subr_pool.c:2485
pool_cache_get_paddr() at netbsd:pool_cache_get_paddr+0x8c6 sys/kern/subr_pool.c:2577
kmem_intr_alloc() at netbsd:kmem_intr_alloc+0x1d0 sys/kern/subr_kmem.c:224
kmem_alloc() at netbsd:kmem_alloc+0xcb sys/kern/subr_kmem.c:302

amap_alloc1() at netbsd:amap_alloc1+0x696 sys/uvm/uvm_amap.c:190

amap_copy() at netbsd:amap_copy+0x1687 amap_alloc sys/uvm/uvm_amap.c:243 [inline]
amap_copy() at netbsd:amap_copy+0x1687 sys/uvm/uvm_amap.c:853
uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b uvmfault_amapcopy sys/uvm/uvm_fault.c:243 [inline]
uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b uvm_fault_check sys/uvm/uvm_fault.c:1058 [inline]
uvm_fault_internal() at netbsd:uvm_fault_internal+0x631b sys/uvm/uvm_fault.c:894
trap() at netbsd:trap+0x1ecb
--- trap (number 6) ---

401ccb:
ds 6d40
es d918
fs 1
gs 850
rdi 8000000000
rsi ffff898000000000
rbp ffffa5007ab06d50
rbx 0
rdx ffff81800594cc50
rcx 1910
rax ffffa500129e94c0

r8 0
r9 0
r10 0
r11 0
r12 0
r13 104

r14 21bf

r15 0
rip ffffffff802227ed breakpoint+0x5
cs 8
rflags 246

rsp ffffa5007ab06d50

ss 0
netbsd:breakpoint+0x5: leave
PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

1079 839 2 0 0 ffffa500129f5540 syz-executor0894
1079 834 2 0 0 ffffa500129f5100 syz-executor0894
1079 699 2 0 0 ffffa500129ee500 syz-executor0894
1079 1310 2 1 40000 ffffa500129e9080 syz-executor0894
1079 >1079 7 1 10040000 ffffa500128e3780 syz-executor0894
707 709 3 1 0 ffffa500129e9900 syz-executor0894 tstile
707 1342 3 1 40000 ffffa500129e48c0 syz-executor0894 biowait
707 707 2 0 10040000 ffffa500128d9740 syz-executor0894
694 1406 3 0 80 ffffa500129ee940 syz-executor0894 parked
694 1405 2 0 0 ffffa500129e4480 syz-executor0894
694 694 2 0 40000 ffffa500128d9300 syz-executor0894
693 696 3 1 80 ffffa500128e3bc0 syz-executor0894 parked
693 700 3 1 40080 ffffa500128e3340 syz-executor0894 parked
693 693 2 1 10040040 ffffa500128b9b40 syz-executor0894
692 1341 3 1 80 ffffa500129ee0c0 syz-executor0894 parked
692 1376 2 0 0 ffffa500129e4040 syz-executor0894
692 692 2 1 10040040 ffffa500128b9700 syz-executor0894
682 >1087 7 0 0 ffffa500129e94c0 syz-executor0894
682 697 3 0 80 ffffa500128d9b80 syz-executor0894 parked
682 682 2 0 10040000 ffffa500128b92c0 syz-executor0894
690 690 3 0 80 ffffa50011a79b00 syz-executor0894 nanoslp
689 689 3 0 80 ffffa50011a796c0 syz-executor0894 nanoslp
1312 1312 2 0 40 ffffa50011a79280 syz-executor0894
691 691 3 0 80 ffffa500113b0a40 syz-executor0894 nanoslp
688 688 3 0 80 ffffa500113b0600 syz-executor0894 nanoslp
687 687 3 0 80 ffffa500113b01c0 syz-executor0894 nanoslp
684 684 3 0 40080 ffffa50011a56ac0 syz-executor0894 nanoslp
729 729 3 0 80 ffffa500112199c0 sshd select
1183 1183 3 0 80 ffffa50011a56680 getty nanoslp
719 719 3 0 80 ffffa50011219580 getty nanoslp
1373 1373 3 1 80 ffffa50011219140 getty nanoslp
570 570 3 0 c0 ffffa500110fa500 getty ttyraw
725 725 3 0 80 ffffa5001148da80 cron nanoslp
716 716 3 1 80 ffffa5001148d200 inetd kqueue
584 584 3 1 80 ffffa50011a56240 sshd select
596 596 3 1 80 ffffa5001148d640 powerd kqueue
458 458 3 0 80 ffffa5001124ba00 syslogd kqueue
302 302 3 0 80 ffffa5001124b180 dhcpcd kqueue
333 333 3 1 80 ffffa5001124b5c0 dhcpcd kqueue
1 1 3 0 80 ffffa50010edc080 init wait
0 448 3 0 200 ffffa500110fa940 physiod physiod

0 123 3 0 200 ffffa50011104980 pooldrain pooldrain

0 122 3 0 200 ffffa50011104540 ioflush syncer

0 121 3 1 200 ffffa50011104100 pgdaemon pgdaemon
0 118 3 0 200 ffffa500110fa0c0 usb0 usbevt

0 117 3 0 200 ffffa50010edc900 usbtask-dr usbtsk
0 116 3 0 200 ffffa5000f481ac0 usbtask-hc usbtsk
0 115 3 0 200 ffffa50010edc4c0 npfgc-0 npfgccv
0 114 3 1 200 ffffa50010ecf8c0 rt_free rt_free
0 113 3 1 200 ffffa50010ecf480 unpgc unpgc
0 112 3 0 200 ffffa50010ecf040 key_timehandler key_timehandler

0 111 3 1 200 ffffa50010ecabc0 icmp6_wqinput/1 icmp6_wqinput
0 110 3 0 200 ffffa50010eca780 icmp6_wqinput/0 icmp6_wqinput
0 109 3 0 200 ffffa50010eca340 nd6_timer nd6_timer

0 108 3 1 200 ffffa50010d38b80 carp6_wqinput/1 carp6_wqinput
0 107 3 0 200 ffffa50010d38740 carp6_wqinput/0 carp6_wqinput
0 106 3 1 200 ffffa50010d38300 carp_wqinput/1 carp_wqinput
0 105 3 0 200 ffffa50010d35b00 carp_wqinput/0 carp_wqinput
0 104 3 1 200 ffffa50010d356c0 icmp_wqinput/1 icmp_wqinput
0 103 3 0 200 ffffa50010d35280 icmp_wqinput/0 icmp_wqinput
0 102 3 0 200 ffffa50010d36b40 rt_timer rt_timer
0 101 3 0 200 ffffa50010d36700 vmem_rehash vmem_rehash
0 100 3 1 200 ffffa50010d362c0 entbutler entropy

0 27 3 0 200 ffffa5000f481680 scsibus0 sccomp
0 26 3 0 200 ffffa5000f481240 pms0 pmsreset
0 25 3 1 200 ffffa5000f465a80 xcall/1 xcall
0 24 1 1 200 ffffa5000f465640 softser/1
0 23 1 1 200 ffffa5000f465200 softclk/1
0 22 1 1 200 ffffa5000f463a40 softbio/1
0 21 1 1 200 ffffa5000f463600 softnet/1
0 20 1 1 201 ffffa5000f4631c0 idle/1
0 19 3 0 200 ffffa5000e2dfa00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffffa5000e2df5c0 lnxlngwq lnxlngwq
0 17 3 0 200 ffffa5000e2df180 lnxsyswq lnxsyswq
0 16 3 0 200 ffffa5000e2d99c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffffa5000e2d9580 sysmon smtaskq
0 14 3 0 200 ffffa5000e2d9140 pmfsuspend pmfsuspend
0 13 3 0 200 ffffa5000e2d6980 pmfevent pmfevent
0 12 3 0 200 ffffa5000e2d6540 sopendfree sopendfr
0 11 3 0 200 ffffa5000e2d6100 iflnkst iflnkst
0 10 3 0 200 ffffa5000e2cc940 nfssilly nfssilly
0 9 3 0 200 ffffa5000e2cc500 vdrain vdrain

0 8 3 1 200 ffffa5000e2cc0c0 modunload mod_unld

0 7 3 0 200 ffffa5000dcc9900 xcall/0 xcall
0 6 1 0 200 ffffa5000dcc94c0 softser/0
0 5 1 0 200 ffffa5000dcc9080 softclk/0

0 4 1 0 200 ffffa5000dcc58c0 softbio/0

0 3 1 0 200 ffffa5000dcc5480 softnet/0
0 2 1 0 201 ffffa5000dcc5040 idle/0

0 0 3 0 200 ffffffff859fb680 swapper uvm
[Locks tracked through LWPs]

****** LWP 707.709 (syz-executor0894) @ 0xffffa500129e9900, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at vcache_new)
lock address : 0xffffa500128cfd40 type : sleep/adaptive
initialized : 0xffffffff84a93a5f

shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 1 last held: 1
relevant lwp : 0xffffa500129e9900 last held: 0xffffa500129e48c0
last locked* : 0xffffffff84b0bb13 unlocked : 0xffffffff84b0be75
owner/count : 0xffffa500129e48c0 flags : 0x0000000000000007
Turnstile:
=> 0 waiting readers:
=> 1 waiting writers: 0xffffa500129e9900

****** LWP 707.1342 (syz-executor0894) @ 0xffffa500129e48c0, l_stat=3

*** Locks held:

* Lock 0 (initialized at vcache_new)
lock address : 0xffffa500128cfd40 type : sleep/adaptive
initialized : 0xffffffff84a93a5f

shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 1 last held: 1
relevant lwp : 0xffffa500129e48c0 last held: 0xffffa500129e48c0
last locked* : 0xffffffff84b0bb13 unlocked : 0xffffffff84b0be75
owner/count : 0xffffa500129e48c0 flags : 0x0000000000000007
Turnstile:
=> 0 waiting readers:
=> 1 waiting writers: 0xffffa500129e9900

* Lock 1 (initialized at genfs_node_init)
lock address : 0xffffa500128b3ef0 type : sleep/adaptive
initialized : 0xffffffff84b0c2ce

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffa500129e48c0 last held: 0xffffa500129e48c0
last locked* : 0xffffffff8424ee16 unlocked : 0xffffffff843e3370
owner/count : 0xffffa500129e48c0 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 2 (initialized at uvm_obj_init)
lock address : 0xffffa500127d28c0 type : sleep/adaptive
initialized : 0xffffffff844df918

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffa500129e48c0 last held: 0xffffa500129e48c0
last locked* : 0xffffffff84533c3f unlocked : 0xffffffff84500f43

owner/count : 000000000000000000 flags : 000000000000000000
Turnstile: no active turnstile for this lock.

* Lock 3 (initialized at pmap_bootstrap)
lock address : 0xffffffff85a614c0 type : sleep/adaptive
initialized : 0xffffffff816b06b2

shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 1 last held: 1
relevant lwp : 0xffffa500129e48c0 last held: 0xffffa500129e48c0
last locked* : 0xffffffff816c4729 unlocked : 0xffffffff816c5d60

owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 682.1087 (syz-executor0894) @ 0xffffa500129e94c0, l_stat=7

*** Locks held:

* Lock 0 (initialized at uvmspace_fork)

lock address : 0xffffa5001148ac60 type : sleep/adaptive
initialized : 0xffffffff844c4727

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa500129e94c0 last held: 0xffffa500129e94c0
last locked* : 0xffffffff8449417f unlocked : 0xffffffff84471ae1
owner/count : 0xffffa500129e94c0 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at pmap_bootstrap)

lock address : 0xffffffff85a614c0 type : sleep/adaptive
initialized : 0xffffffff816b06b2

shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1
relevant cpu : 0 last held: 1
relevant lwp : 0xffffa500129e94c0 last held: 0xffffa500129e48c0
last locked* : 0xffffffff816c4729 unlocked : 0xffffffff816c5d60

owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 1312.1312 (syz-executor0894) @ 0xffffa50011a79280, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at procinit)
lock address : 0xffffffff85a63980 type : sleep/adaptive
initialized : 0xffffffff84679b94

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 1

relevant cpu : 0 last held: 0

relevant lwp : 0xffffa50011a79280 last held: 000000000000000000
last locked : 0xffffffff845fadf5 unlocked*: 0xffffffff845fd220

owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffa5000e2d6100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)

lock address : 0xffffffff85a638c0 type : sleep/adaptive
initialized : 0xffffffff84654063

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffa5000e2d6100 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffa5000dcc9080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)

lock address : 0xffffffff85a638c0 type : sleep/adaptive
initialized : 0xffffffff84654063

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffa5000dcc9080 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at pool_init)
lock address : 0xffffa5000dc7b4f0 type : spin

initialized : 0xffffffff84800728

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffa500129e94c0 last held: 0xffffa500129e94c0
last locked* : 0xffffffff84805351 unlocked : 0xffffffff8480858d