panic: kernel diagnostic assertion "(cnp->cn_flags & LOCKPARENT) == 0 || searchdir == NULL || VOP_ISLOCKED(se

[syzbot]

Hello,

syzbot found the following crash on:

HEAD commit: 6c9849c1 Remove double 'each of'
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=1551d4fd100000
kernel config: https://syzkaller.appspot.com/x/.config?x=fab579639ba4bf0a
dashboard link: https://syzkaller.appspot.com/bug?extid=9378f75d3ea8c3181719
compiler: g++ (Ubuntu 5.4.0-6ubuntu1~16.04.12) 5.4.0 20160609

Unfortunately, I don't have any reproducer for this crash yet.

IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+9378f7...@syzkaller.appspotmail.com

� [ 66.9697 000] panic: kernel diagnostic asserti on "(cnp- >cn_flags & LO CK PARE NT) == 0 || searchdir == NULL | | VOP_ISLOCKED( searchdir) == LK_EXCLUSIVE" f ailed: file "/syzkalle r/mana ger s/n e tb sd/ker nel / sy s/k e rn/ v fs_l ookup.c", line 175 8
[ 66 .9895392] c pu1: Begin tra ce ba ck.. .
[ 6 7.00 9 58 29] vpanic() a t netbsd:v panic+0 x22e
[ 67.0 2 95 779] _G LOBA L__ sub_D_6 5535_0 _cpu_ co nf igure() at netbsd:_GLOB AL__ s ub_D_65535_0_ cpu_ config ur e
[ 67.0695678 ] namei_tr y emulro ot() at n etbsd: namei_t ryemu lroot + 0x14f8
[ 67 .0 995444] namei( ) at ne t b sd:na mei+0x6a

[ 67.1 1954 07] comp at _43_sys_lstat () at netb s d:compat_4 3 _sys_lst at+0x194
[ 67. 14 95 441 ] sys __ _s ysca ll () at netbsd:s y s ___s y scall+0 xde
[ 67.1795410] syscal l() at netbsd:syscall+0x 553

[ 67.1895731] --- s y sc all (n u mb e r 198) ---

[ 67.19954 44] netbsd:syscall+0x 5 53:
[ 67.1995444] c pu1: End trace bac k...
[ 67.2095 5 70] fa tal breakpoin t tra p in sup er viso r mode

[ 67.20955 70] trap t ype 1 code 0 ri p 0 xffffffff 80220a2d cs 0x8 rflag s 0x 28 6 cr2 0x6 280 00 ile ve l 0 rsp 0x ffff9 78 19360b530
[ 67.229578 6] curlwp 0xffff978012161b00 pid 15 84.1591 lowest kstack 0x ffff 97 8 1936042c0
Stopped in pid 1584.1591 (syz-executor.2) at netbsd:breakpoint+0x5: leave
?
breakpoint() at netbsd:breakpoint+0x5
db_panic() at netbsd:db_panic+0xe9 sys/ddb/db_panic.c:67
vpanic() at netbsd:vpanic+0x22e sys/kern/subr_prf.c:290
_GLOBAL__sub_D_65535_0_cpu_configure() at netbsd:_GLOBAL__sub_D_65535_0_cpu_configure
namei_tryemulroot() at netbsd:namei_tryemulroot+0x14f8 namei_oneroot sys/kern/vfs_lookup.c:1760 [inline]
namei_tryemulroot() at netbsd:namei_tryemulroot+0x14f8 sys/kern/vfs_lookup.c:1909
namei() at netbsd:namei+0x6a sys/kern/vfs_lookup.c:1945
compat_43_sys_lstat() at netbsd:compat_43_sys_lstat+0x194 sys/compat/common/vfs_syscalls_43.c:198
sys___syscall() at netbsd:sys___syscall+0xde sy_call sys/sys/syscallvar.h:65 [inline]
sys___syscall() at netbsd:sys___syscall+0xde sys/kern/sys_syscall.c:77
syscall() at netbsd:syscall+0x553 sy_call sys/sys/syscallvar.h:65 [inline]
syscall() at netbsd:syscall+0x553 sy_invoke sys/sys/syscallvar.h:94 [inline]
syscall() at netbsd:syscall+0x553 sys/arch/x86/x86/syscall.c:138
--- syscall (number 198) ---
netbsd:syscall+0x553:
ds b5d0
es 1300
fs b510
gs b560
rdi ffffffff82bd6c40 db_onpanic
rsi 1ffffffff057ad88
rbp ffff97819360b530
rbx ffff97816e699000
rdx ffff978188790000
rcx ffffffff812645e9 db_panic+0xd5
rax 3ffff
r8 4
r9 1ffffffff057ad88
r10 ffffffff82bd6c43 db_onpanic+0x3
r11 10
r12 ffff97816e6aa000
r13 ffffffff823453e0 vfs_special_vnodeopv_descs+0x760
r14 ffff97819360b5c0
r15 ffff97816e699060
rip ffffffff80220a2d breakpoint+0x5
cs 8
rflags 286
rsp ffff97819360b530
ss 10
netbsd:breakpoint+0x5: leave
PID LID S CPU FLAGS STRUCT LWP * NAME WAIT
1760 1760 3 0 80 ffff97801392b940 syz-executor.0 parked
1362 1594 5 0 100000 ffff978013910480 syz-executor.4
1362 1362 3 0 40000 ffff978012e584c0 syz-executor.4 xclocv
1584 >1591 7 1 0 ffff978012161b00 syz-executor.2
1584 586 3 0 80 ffff978012ad4300 syz-executor.2 ttyout
1584 1584 2 0 10000000 ffff9780138fdb80 syz-executor.2
1236 1323 2 1 40000 ffff9780137c9940 syz-executor.5
1236 1236 3 0 10040000 ffff978014114580 syz-executor.5 vm_map
1356 1356 3 0 80 ffff978012d65180 syz-executor.2 parked
1480 1480 3 0 80 ffff978012cde700 syz-executor.2 parked
1245 1245 3 0 80 ffff978012d731c0 syz-executor.2 parked
1353 1353 3 1 80 ffff978012cefb80 syz-executor.2 parked
1240 1240 3 1 80 ffff978012d09340 syz-executor.2 parked
1086 1086 2 1 40 ffff978014328640 syz-executor.5
1099 1099 2 1 40 ffff978014328200 syz-executor.4
1095 1095 3 1 c0 ffff9780142cea40 syz-executor.3 pipe_rd
1083 1083 2 1 40 ffff9780142ce600 syz-executor.2
1076 1076 3 0 c0 ffff9780142ce1c0 syz-executor.1 pipe_rd
421 421 3 1 c0 ffff9780141daa00 syz-executor.0 pipe_rd
1124 1084 2 1 0 ffff978012bf4940 syz-fuzzer
1124 1081 3 1 80 ffff9780141da5c0 syz-fuzzer parked
1124 1078 2 0 0 ffff9780141da180 syz-fuzzer
1124 1066 2 1 40 ffff978013872a40 syz-fuzzer
1124 1074 3 1 80 ffff9780138dab00 syz-fuzzer parked
1124 961 3 1 80 ffff9780138da280 syz-fuzzer parked
1124 1070 3 1 c0 ffff978012a536c0 syz-fuzzer parked
1124 >1077 7 0 40 ffff978012744b40 syz-fuzzer
1124 1124 3 0 80 ffff978012b9a4c0 syz-fuzzer parked
1251 1251 3 1 80 ffff978012b9a080 sshd select
1118 1118 3 0 80 ffff978012744700 getty nanoslp
1092 1092 3 1 80 ffff97801394c540 getty nanoslp
1101 1101 3 1 80 ffff978012747740 getty nanoslp
696 696 3 1 c0 ffff978012a53b00 getty ttyraw
947 947 3 1 80 ffff978013872600 sshd select
991 991 3 0 80 ffff978012d9fb00 powerd kqueue
553 553 3 0 80 ffff978013905340 syslogd kqueue
597 597 3 0 80 ffff978012c96ac0 dhcpcd kqueue
593 593 3 0 80 ffff978012d254c0 dhcpcd kqueue
591 591 3 1 80 ffff978012c85a80 dhcpcd kqueue
578 578 3 0 80 ffff978012cef300 dhcpcd kqueue
481 481 3 1 80 ffff9780137c90c0 dhcpcd kqueue
348 348 3 0 80 ffff978012e2b8c0 dhcpcd kqueue
347 347 3 1 80 ffff978012e2b480 dhcpcd kqueue
346 346 3 1 80 ffff978012e2b040 dhcpcd kqueue
1 1 3 0 80 ffff9780128eb980 init wait
0 815 3 0 200 ffff978012a0aa80 physiod physiod
0 162 3 0 200 ffff978012a20ac0 pooldrain pooldrain
0 166 3 0 200 ffff978012a20680 ioflush syncer
0 160 3 1 240 ffff978012a20240 pgdaemon pgdaemon
0 161 3 1 200 ffff978012a0a200 usb7 usbevt
0 31 3 1 200 ffff9780129c2a40 usb6 usbevt
0 63 3 0 200 ffff9780129c2600 usb5 usbevt
0 126 3 1 200 ffff9780129c21c0 usb4 usbevt
0 125 3 1 200 ffff97801296fa00 usb3 usbevt
0 124 3 0 200 ffff97801296f5c0 usb2 usbevt
0 123 3 0 200 ffff97801296f180 usb1 usbevt
0 122 3 1 200 ffff9780128fd9c0 usb0 usbevt
0 121 3 1 200 ffff9780128fd580 usbtask-dr usbtsk
0 120 3 0 200 ffff97800fe5aac0 usbtask-hc usbtsk
0 119 3 1 200 ffff9780128fd140 npfgc0 npfgcw
0 118 3 1 200 ffff9780128eb540 rt_free rt_free
0 117 3 1 200 ffff9780128eb100 unpgc unpgc
0 116 2 1 200 ffff9780128e3940 key_timehandler
0 115 3 1 200 ffff9780128e3500 icmp6_wqinput/1 icmp6_wqinput
0 114 3 0 200 ffff9780128e30c0 icmp6_wqinput/0 icmp6_wqinput
0 113 3 0 200 ffff9780128d8900 nd6_timer nd6_timer
0 112 3 1 200 ffff9780128d84c0 carp6_wqinput/1 carp6_wqinput
0 111 3 0 200 ffff9780128d8080 carp6_wqinput/0 carp6_wqinput
0 110 3 1 200 ffff97801275b8c0 carp_wqinput/1 carp_wqinput
0 109 3 0 200 ffff97801275b480 carp_wqinput/0 carp_wqinput
0 108 3 1 200 ffff97801275b040 icmp_wqinput/1 icmp_wqinput
0 107 3 0 200 ffff978012749bc0 icmp_wqinput/0 icmp_wqinput
0 106 2 1 200 ffff978012747300 rt_timer
0 105 3 1 200 ffff978012749780 vmem_rehash vmem_rehash
0 104 3 0 200 ffff978012749340 entbutler entropy
0 30 3 1 200 ffff9780121616c0 vioif0_txrx/1 vioif0_txrx
0 29 3 0 200 ffff978012161280 vioif0_txrx/0 vioif0_txrx
0 27 3 0 200 ffff97800fe5a680 scsibus0 sccomp
0 26 3 0 200 ffff97800fe5a240 pms0 pmsreset
0 25 2 1 200 ffff97800fd9ba80 xcall/1
0 24 1 1 200 ffff97800fd9b640 softser/1
0 23 1 1 200 ffff97800fd9b200 softclk/1
0 22 1 1 200 ffff97800fd99a40 softbio/1
0 21 1 1 200 ffff97800fd99600 softnet/1
0 20 1 1 201 ffff97800fd991c0 idle/1
0 19 3 0 200 ffff97800e80aa00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffff97800e80a5c0 lnxlngwq lnxlngwq
0 17 3 0 200 ffff97800e80a180 lnxsyswq lnxsyswq
0 16 3 0 200 ffff97800e8049c0 lnxrcugc lnxrcugc
0 15 3 0 200 ffff97800e804580 sysmon smtaskq
0 14 3 0 200 ffff97800e804140 pmfsuspend pmfsuspend
0 13 3 0 200 ffff97800e7ff980 pmfevent pmfevent
0 12 3 0 200 ffff97800e7ff540 sopendfree sopendfr
0 11 3 0 200 ffff97800e7ff100 iflnkst iflnkst
0 10 3 0 200 ffff97800e7f3940 nfssilly nfssilly
0 9 3 0 200 ffff97800e7f3500 vdrain vdrain
0 8 3 0 200 ffff97800e7f30c0 modunload mod_unld
0 7 3 0 200 ffff97800e7e6900 xcall/0 xcall
0 6 1 0 200 ffff97800e7e64c0 softser/0
0 5 1 0 200 ffff97800e7e6080 softclk/0
0 4 1 0 200 ffff97800e7e48c0 softbio/0
0 3 1 0 200 ffff97800e7e4480 softnet/0
0 2 1 0 201 ffff97800e7e4040 idle/0
0 0 3 0 200 ffffffff82ca1fc0 swapper uvm
[Locks tracked through LWPs]

****** LWP 1236.1323 (syz-executor.5) @ 0xffff9780137c9940, l_stat=2

*** Locks held:

* Lock 0 (initialized at uvm_obj_init)
lock address : 0xffff97801437ca80 type : sleep/adaptive
initialized : 0xffffffff8164edf0
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffff9780137c9940 last held: 0xffff9780137c9940
last locked* : 0xffffffff8163190a unlocked : 0xffffffff8162f109
owner/count : 0xffff9780137c9940 flags : 0x0000000000000004
Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at pmap_ctor)
lock address : 0xffff978012cb9980 type : sleep/adaptive
initialized : 0xffffffff80872a37
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffff9780137c9940 last held: 0xffff9780137c9940
last locked* : 0xffffffff80874566 unlocked : 0xffffffff80874d4a
owner field : 0xffff9780137c9940 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 593.593 (dhcpcd) @ 0xffff978012d254c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff82d9b480 type : sleep/adaptive
initialized : 0xffffffff816c69d2
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffff978012d254c0 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 591.591 (dhcpcd) @ 0xffff978012c85a80, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff82d9b480 type : sleep/adaptive
initialized : 0xffffffff816c69d2
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffff978012c85a80 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 347.347 (dhcpcd) @ 0xffff978012e2b480, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff82d9b480 type : sleep/adaptive
initialized : 0xffffffff816c69d2
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffff978012e2b480 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 346.346 (dhcpcd) @ 0xffff978012e2b040, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff82d9b480 type : sleep/adaptive
initialized : 0xffffffff816c69d2
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffff978012e2b040 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffff97800e7ff100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff82d9b480 type : sleep/adaptive
initialized : 0xffffffff816c69d2
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffff97800e7ff100 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffff97800e7e6080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff82d9b480 type : sleep/adaptive
initialized : 0xffffffff816c69d2
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffff97800e7e6080 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

PAGE FLAG PQ UOBJECT UANON
0xffff978000017180 0041 00000000 0x0 0x0
0xffff978000017200 0041 00000000 0x0 0x0
0xffff978000017280 0041 00000000 0x0 0x0
0xffff978000017300 0041 00000000 0x0 0x0
0xffff978000017380 0041 00000000 0x0 0x0
0xffff978000017400 0041 00000000 0x0 0x0
0xffff978000017480 0041 00000000 0x0 0x0
0xffff978000017500 0041 00000000 0x0 0x0
0xffff978000017580 0041 00000000 0x0 0x0
0xffff978000017600 0041 00000000 0x0 0x0
0xffff978000017680 0041 00000000 0x0 0x0
0xffff978000017700 0041 00000000 0x0 0x0
0xffff978000017780 0041 00000000 0x0 0x0
0xffff978000017800 0041 00000000 0x0 0x0
0xffff978000017880 0041 00000000 0x0 0x0
0xffff978000017900 0041 00000000 0x0 0x0
0xffff978000017980 0041 00000000 0x0 0x0
0xffff978000017a00 0041 00000000 0x0 0x0
0xffff978000017a80 0041 00000000 0x0 0x0
0xffff978000017b00 0041 00000000 0x0 0x0
0xffff978000017b80 0041 00000000 0x0 0x0
0xffff978000017c00 0041 00000000 0x0 0x0
0xffff978000017c80 0041 00000000 0x0 0x0
0xffff978000017d00 0041 00000000 0x0 0x0
0xffff978000017d80 0041 00000000 0x0 0x0
0xffff978000017e00 0041 00000000 0x0 0x0
0xffff978000017e80 0041 00000000 0x0 0x0
0xffff978000017f00 0041 00000000 0x0 0x0
0xffff978000017f80 0041 00000000 0x0 0x0
0xffff978000018000 0041 00000000 0x0 0x0
0xffff978000018080 0041 00000000 0x0 0x0
0xffff978000018100 0041 00000000 0x0 0x0
0xffff978000018180 0041 00000000 0x0 0x0
0xffff978000018200 0041 00000000 0x0 0x0
0xffff978000018280 0041 00000000 0x0 0x0
0xffff978000018300 0041 00000000 0x0 0x0
0xffff978000018380 0041 00000000 0x0 0x0
0xffff978000018400 0041 00000000 0x0 0x0
0xffff978000018480 0041 00000000 0x0 0x0
0xffff978000018500 0041 00000000 0x0 0x0
0xffff978000018580 0041 00000000 0x0 0x0
0xffff978000018600 0041 00000000 0x0 0x0
0xffff978000018680 0041 00000000 0x0 0x0
0xffff978000018700 0041 00000000 0x0 0x0
0xffff978000018780 0041 00000000 0x0 0x0
0xffff978000018800 0041 00000000 0x0 0x0
0xffff978000018880 0041 00000000 0x0 0x0
0xffff978000018900 0041 00000000 0x0 0x0
0xffff978000018980 0041 00000000 0x0 0x0
0xffff978000018a00 0041 00000000 0x0 0x0
0xffff978000018a80 0041 00000000 0x0 0x0
0xffff978000018b00 0041 00000000 0x0 0x0
0xffff978000018b80 0041 00000000 0x0 0x0
0xffff978000018c00 0041 00000000 0x0 0x0
0xffff978000018c80 0041 00000000 0x0 0x0
0xffff978000018d00 0041 00000000 0x0 0x0
0xffff978000018d80 0041 00000000 0x0 0x0
0xffff978000018e00 0041 00000000 0x0 0x0
0xffff978000018e80 0041 00000000 0x0 0x0
0xffff978000018f00 0041 00000000 0x0 0x0
0xffff978000018f80 0041 00000000 0x0 0x0
0xffff978000019000 0041 00000000 0x0 0x0
0xffff978000019080 0041 00000000 0x0 0x0
0xffff978000019100 0041 00000000 0x0 0x0
0xffff978000019180 0041 00000000 0x0 0x0
0xffff978000019200 0041 00000000 0x0 0x0
0xffff978000019280 0041 00000000 0x0 0x0
0xffff978000019300 0041 00000000 0x0 0x0
0xffff978000019380 0041 00000000 0x0 0x0
0xffff978000019400 0041 00000000 0x0 0x0
0xffff978000019480 0041 00000000 0x0 0x0
0xffff978000019500 0041 00000000 0x0 0x0
0xffff978000019580 0041 00000000 0x0 0x0
0xffff978000019600 0041 00000000 0x0 0x0
0xffff978000019680 0041 00000000 0x0 0x0
0xffff978000019700 0041 00000000 0x0 0x0
0xffff978000019780 0041 00000000 0x0 0x0
0xffff978000019800 0041 00000000 0x0 0x0
0xffff978000019880 0041 00000000 0x0 0x0
0xffff978000019900 0041 00000000 0x0 0x0
0xffff978000019980 0041 00000000 0x0 0x0
0xffff978000019a00 0041 00000000 0x0 0x0
0xffff978000019a80 0041 00000000 0x0 0x0
0xffff978000019b00 0041 00000000 0x0 0x0
0xffff978000019b80 0041 00000000 0x0 0x0
0xffff978000019c00 0041 00000000 0x0 0x0
0xffff978000019c80 0041 00000000 0x0 0x0
0xffff978000019d00 0041 00000000 0x0 0x0
0xffff978000019d80 0041 00000000 0x0 0x0
0xffff978000019e00 0041 00000000 0x0 0x0
0xffff978000019e80 0041 00000000 0x0 0x0
0xffff978000019f00 0041 00000000 0x0 0x0
0xffff978000019f80 0041 00000000 0x0 0x0
0xffff97800001a000 0041 00000000 0x0 0x0
0xffff97800001a080 0041 00000000 0x0 0x0
0xffff97800001a100 0041 00000000 0x0 0x0
0xffff97800001a180 0041 00000000 0x0 0x0
0xffff97800001a200 0041 00000000 0x0 0x0
0xffff97800001a280 0041 00000000 0x0 0x0
0xffff97800001a300 0041 00000000 0x0 0x0
0xffff97800001a380 0041 00000000 0x0 0x0
0xffff97800001a400 0041 00000000 0x0 0x0
0xffff97800001a480 0041 00000000 0x0 0x0
0xffff97800001a500 0041 00000000 0x0 0x0
0xffff97800001a580 0041 00000000 0x0 0x0
0xffff97800001a600 0041 00000000 0x0 0x0
0xffff97800001a680 0041 00000000 0x0 0x0
0xffff97800001a700 0041 00000000 0x0 0x0
0xffff97800001a780 0041 00000000 0x0 0x0
0xffff97800001a800 0041 00000000 0x0 0x0
0xffff97800001a880 0041 00000000 0x0 0x0
0xffff97800001a900 0041 00000000 0x0 0x0
0xffff97800001a980 0041 00000000 0x0 0x0
0xffff97800001aa00 0041 00000000 0x0 0x0
0xffff97800001aa80 0041 00000000 0x0 0x0
0xffff97800001ab00 0041 00000000 0x0 0x0
0xffff97800001ab80 0041 00000000 0x0 0x0
0xffff97800001ac00 0041 00000000 0x0 0x0
0xffff97800001ac80 0041 00000000 0x0 0x0
0xffff97800001ad00 0041 00000000 0x0 0x0
0xffff97800001ad80 0041 00000000 0x0 0x0
0xffff97800001ae00 0041 00000000 0x0 0x0
0xffff97800001ae80 0041 00000000 0x0 0x0
0xffff97800001af00 0041 00000000 0x0 0x0
0xffff97800001af80 0041 00000000 0x0 0x0
0xffff97800001b000 0041 00000000 0x0 0x0
0xffff97800001b080 0041 00000000 0x0 0x0
0xffff97800001b100 0041 00000000 0x0 0x0
0xffff97800001b180 0041 00000000 0x0 0x0
0xffff97800001b200 0041 00000000 0x0 0x0
0xffff97800001b280 0041 00000000 0x0 0x0
0xffff97800001b300 0041 00000000 0x0 0x0
0xffff97800001b380 0041 00000000 0x0 0x0
0xffff97800001b400 0041 00000000 0x0 0x0
0xffff97800001b480 0041 00000000 0x0 0x0
0xffff97800001b500 0041 00000000 0x0 0x0
0xffff97800001b580 0041 00000000 0x0 0x0
0xffff97800001b600 0041 00000000 0x0 0x0
0xffff97800001b680 0041 00000000 0x0 0x0
0xffff97800001b700 0041 00000000 0x0 0x0
0xffff97800001b780 0041 00000000 0x0 0x0
0xffff97800001b800 0041 00000000 0x0 0x0
0xffff97800001b880 0041 00000000 0x0 0x0
0xffff97800001b900 0041 00000000 0x0 0x0
0xffff97800001b980 0041 00000000 0x0 0x0
0xffff97800001ba00 0041 00000000 0x0 0x0
0xffff97800001ba80 0041 00000000 0x0 0x0
0xffff97800001bb00 0041 00000000 0x0 0x0
0xffff97800001bb80 0041 00000000 0x0 0x0
0xffff97800001bc00 0041 00000000 0x0 0x0
0xffff97800001bc80 0041 00000000 0x0 0x0
0xffff97800001bd00 0041 00000000 0x0 0x0
0xffff97800001bd80 0041 00000000 0x0 0x0
0xffff97800001be00 0041 00000000 0x0 0x0
0xffff97800001be80 0041 00000000 0x0 0x0
0xffff97800001bf00 0041 00000000 0x0 0x0
0xffff97800001bf80 0041 00000000 0x0 0x0
0xffff97800001c000 0041 00000000 0x0 0x0
0xffff97800001c080 0041 00000000 0x0 0x0
0xffff97800001c100 0041 00000000 0x0 0x0
0xffff97800001c180 0041 00000000 0x0 0x0
0xffff97800001c200 0041 00000000 0x0 0x0
0xffff97800001c280 0041 00000000 0x0 0x0
0xffff97800001c300 0041 00000000 0x0 0x0
0xffff97800001c380 0041 00000000 0x0 0x0
0xffff97800001c400 0041 00000000 0x0 0x0
0xffff97800001c480 0041 00000000 0x0 0x0
0xffff97800001c500 0041 00000000 0x0 0x0
0xffff97800001c580 0041 00000000 0x0 0x0
0xffff97800001c600 0041 00000000 0x0 0x0
0xffff97800001c680 0041 00000000 0x0 0x0
0xffff97800001c700 0041 00000000 0x0 0x0
0xffff97800001c780 0041 00000000 0x0 0x0
0xffff97800001c800 0041 00000000 0x0 0x0
0xffff97800001c880 0041 00000000 0x0 0x0
0xffff97800001c900 0041 00000000 0x0 0x0
0xffff97800001c980 0045 00000000 0x0 0x0
0xffff97800001ca00 0045 00000000 0x0 0x0
0xffff97800001ca80 0041 00000000 0x0 0x0
0xffff97800001cb00 0045 00000000 0x0 0x0
0xffff97800001cb80 0045 00000000 0x0 0x0
0xffff97800001cc00 0045 00000000 0x0 0x0
0xffff97800001cc80 0045 00000000 0x0 0x0
0xffff97800001cd00 0045 00000000 0x0 0x0
0xffff97800001cd80 0045 00000000 0x0 0x0
0xffff97800001ce00 0045 00000000 0x0 0x0
0xffff97800001ce80 0045 00000000 0x0 0x0
0xffff97800001cf00 0045 00000000 0x0 0x0
0xffff97800001cf80 0045 00000000 0x0 0x0
0xffff97800001d000 0045 00000000 0x0 0x0
0xffff97800001d080 0045 00000000 0x0 0x0
0xffff97800001d100 0045 00000000 0x0 0x0
0xffff97800001d180 0041 00000000 0x0 0x0
0xffff97800001d200 0041 00000000 0x0 0x0
0xffff97800001d280 0045 00000000 0x0 0x0
0xffff97800001d300 0041 00000000 0x0 0x0
0xffff97800001d380 0041 00000000 0x0 0x0
0xffff97800001d400 0041 00000000 0x0 0x0
0xffff97800001d480 0041 00000000 0x0 0x0
0xffff97800001d500 0041 00000000 0x0 0x0
0xffff97800001d580 0041 00000000 0x0 0x0
0xffff97800001d600 0041 00000000 0x0 0x0
0xffff97800001d680 0041 00000000 0x0 0x0
0xffff97800001d700 0041 00000000 0x0 0x0
0xffff97800001d780 0041 00000000 0x0 0x0
0xffff97800001d800 0041 00000000 0x0 0x0
0xffff97800001d880 0041 00000000 0x0 0x0
0xffff97800001d900 0041 00000000 0x0 0x0
0xffff97800001d980 0041 00000000 0x0 0x0
0xffff97800001da00 0041 00000000 0x0 0x0
0xffff97800001da80 0041 00000000 0x0 0x0
0xffff97800001db00 0041 00000000 0x0 0x0
0xffff97800001db80 0041 00000000 0x0 0x0
0xffff97800001dc00 0041 00000000 0x0 0x0
0xffff97800001dc80 0041 00000000 0x0 0x0
0xffff97800001dd00 0041 00000000 0x0 0x0
0xffff97800001dd80 0041 00000000 0x0 0x0
0xffff97800001de00 0041 00000000 0x0 0x0
0xffff97800001de80 0041 00000000 0x0 0x0
0xffff97800001df00 0041 00000000 0x0 0x0
0xffff97800001df80 0041 00000000 0x0 0x0
0xffff97800001e000 0041 00000000 0x0 0x0
0xffff97800001e080 0041 00000000 0x0 0x0
0xffff97800001e100 0041 00000000 0x0 0x0
0xffff97800001e180 0041 00000000 0x0 0x0
0xffff97800001e200 0041 00000000 0x0 0x0
0xffff97800001e280 0041 00000000 0x0 0x0
0xffff97800001e300 0041 00000000 0x0 0x0
0xffff97800001e380 0041 00000000 0x0 0x0
0xffff97800001e400 0041 00000000 0x0 0x0
0xffff97800001e480 0041 00000000 0x0 0x0
0xffff97800001e500 0041 00000000 0x0 0x0
0xffff97800001e580 0041 00000000 0x0 0x0
0xffff97800001e600 0041 00000000 0x0 0x0
0xffff97800001e680 0041 00000000 0x0 0x0
0xffff97800001e700 0041 00000000 0x0 0x0
0xffff97800001e780 0041 00000000 0x0 0x0
0xffff97800001e800 0041 00000000 0x0 0x0
0xffff97800001e880 0041 00000000 0x0 0x0
0xffff97800001e900 0041 00000000 0x0 0x0
0xffff97800001e980 0041 00000000 0x0 0x0
0xffff97800001ea00 0041 00000000 0x0 0x0
0xffff97800001ea80 0041 00000000 0x0 0x0
0xffff97800001eb00 0041 00000000 0x0 0x0
0xffff97800001eb80 0041 00000000 0x0 0x0
0xffff97800001ec00 0041 00000000 0x0 0x0
0xffff97800001ec80 0041 00000000 0x0 0x0
0xffff97800001ed00 0041 00000000 0x0 0x0
0xffff97800001ed80 0041 00000000 0x0 0x0
0xffff97800001ee00 0041 00000000 0x0 0x0
0xffff97800001ee80 0041 00000000 0x0 0x0
0xffff97800001ef00 0041 00000000 0x0 0x0
0xffff97800001ef80 0041 00000000 0x0 0x0
0xffff97800001f000 0041 00000000 0x0 0x0
0xffff97800001f080 0041 00000000 0x0 0x0
0xffff97800001f100 0041 00000000 0x0 0x0
0xffff97800001f180 0041 00000000 0x0 0x0
0xffff97800001f200 0041 00000000 0x0 0x0
0xffff97800001f280 0041 00000000 0x0 0x0
0xffff97800001f300 0041 00000000 0x0 0x0
0xffff97800001f380 0041 00000000 0x0 0x0
0xffff97800001f400 0041 00000000 0x0 0x0
0xffff97800001f480 0041 00000000 0x0 0x0
0xffff97800001f500 0041 00000000 0x0 0x0
0xffff97800001f580 0041 00000000 0x0 0x0
0xffff97800001f600 0041 00000000 0x0 0x0
0xffff97800001f680 0041 00000000 0x0 0x0
0xffff97800001f700 0041 00000000 0x0 0x0
0xffff97800001f780 0041 00000000 0x0 0x0
0xffff97800001f800 0041 00000000 0x0 0x0
0xffff97800001f880 0041 00000000 0x0 0x0
0xffff97800001f900 0041 00000000 0x0 0x0
0xffff97800001f980 0041 00000000 0x0 0x0
0xffff97800001fa00 0041 00000000 0x0 0x0
0xffff97800001fa80 0041 00000000 0x0 0x0
0xffff97800001fb00 0041 00000000 0x0 0x0
0xffff97800001fb80 0041 00000000 0x0 0x0
0xffff97800001fc00 0041 00000000 0x0 0x0
0xffff97800001fc80 0041 00000000 0x0 0x0
0xffff97800001fd00 0041 00000000 0x0 0x0
0xffff97800001fd80 0041 00000000 0x0 0x0
0xffff97800001fe00 0041 00000000 0x0 0x0
0xffff97800001fe80 0041 00000000 0x0 0x0
0xffff97800001ff00 0041 00000000 0x0 0x0
0xffff97800001ff80 0041 00000000 0x0 0x0
0xffff978000020000 0041 00000000 0x0 0x0
0xffff978000020080 0041 00000000 0x0 0x0
0xffff978000020100 0041 00000000 0x0 0x0
0xffff978000020180 0041 00000000 0x0 0x0
0xffff978000020200 0041 00000000 0x0 0x0
0xffff978000020280 0041 00000000 0x0 0x0
0xffff978000020300 0041 00000000 0x0 0x0
0xffff978000020380 0041 00000000 0x0 0x0
0xffff978000020400 0041 00000000 0x0 0x0
0xffff978000020480 0041 00000000 0x0 0x0
0xffff978000020500 0041 00000000 0x0 0x0
0xffff978000020580 0041 00000000 0x0 0x0
0xffff978000020600 0041 00000000 0x0 0x0
0xffff978000020680 0041 00000000 0x0 0x0
0xffff978000020700 0041 00000000 0x0 0x0
0xffff978000020780 0041 00000000 0x0 0x0
0xffff978000020800 0041 00000000 0x0 0x0
0xffff978000020880 0041 00000000 0x0 0x0
0xffff978000020900 0041 00000000 0x0 0x0
0xffff978000020980 0041 00000000 0x0 0x0
0xffff978000020a00 0041 00000000 0x0 0x0
0xffff978000020a80 0041 00000000 0x0 0x0
0xffff978000020b00 0041 00000000 0x0 0x0
0xffff978000020b80 0041 00000000 0x0 0x0
0xffff978000020c00 0041 00000000 0x0 0x0
0xffff978000020c80 0041 00000000 0x0 0x0
0xffff978000020d00 0041 00000000 0x0 0x0
0xffff978000020d80 0041 00000000 0x0 0x0
0xffff978000020e00 0041 00000000 0x0 0x0
0xffff978000020e80 0041 00000000 0x0 0x0
0xffff978000020f00 0041 00000000 0x0 0x0
0xffff978000020f80 0041 00000000 0x0 0x0
0xffff978000021000 0041 00000000 0x0 0x0
0xffff978000021080 0041 00000000 0x0 0x0
0xffff978000021100 0041 00000000 0x0 0x0
0xffff978000021180 0041 00000000 0x0 0x0
0xffff978000021200 0041 00000000 0x0 0x0
0xffff978000021280 0041 00000000 0x0 0x0
0xffff978000021300 0041 00000000 0x0 0x0
0xffff978000021380 0041 00000000 0x0 0x0
0xffff978000021400 0041 00000000 0x0 0x0
0xffff978000021480 0041 00000000 0x0 0x0
0xffff978000021500 0041 00000000 0x0 0x0
0xffff978000021580 0041 00000000 0x0 0x0
0xffff978000021600 0041 00000000 0x0 0x0
0xffff978000021680 0041 00000000 0x0 0x0
0xffff978000021700 0041 00000000 0x0 0x0
0xffff978000021780 0041 00000000 0x0 0x0
0xffff978000021800 0041 00000000 0x0 0x0
0xffff978000021880 0041 00000000 0x0 0x0
0xffff978000021900 0041 00000000 0x0 0x0
0xffff978000021980 0041 00000000 0x0 0x0
0xffff978000021a00 0041 00000000 0x0 0x0
0xffff978000021a80 0041 00000000 0x0 0x0
0xffff978000021b00 0041 00000000 0x0 0x0
0xffff978000021b80 0041 00000000 0x0 0x0
0xffff978000021c00 0041 00000000 0x0 0x0
0xffff978000021c80 0041 00000000 0x0 0x0
0xffff978000021d00 0041 00000000 0x0 0x0
0xffff978000021d80 0041 00000000 0x0 0x0
0xffff978000021e00 0041 00000000 0x0 0x0
0xffff978000021e80 0041 00000000 0x0 0x0
0xffff978000021f00 0041 00000000 0x0 0x0
0xffff978000021f80 0041 00000000 0x0 0x0
0xffff978000022000 0041 00000000 0x0 0x0
0xffff978000022080 0041 00000000 0x0 0x0
0xffff978000022100 0041 00000000 0x0 0x0
0xffff978000022180 0041 00000000 0x0 0x0
0xffff978000022200 0041 00000000 0x0 0x0
0xffff978000022280 0041 00000000 0x0 0x0
0xffff978000022300 0041 00000000 0x0 0x0
0xffff978000022380 0041 00000000 0x0 0x0
0xffff978000022400 0041 00000000 0x0 0x0
0xffff978000022480 0041 00000000 0x0 0x0
0xffff978000022500 0041 00000000 0x0 0x0
0xffff978000022580 0041 00000000 0x0 0x0
0xffff978000022600 0041 00000000 0x0 0x0
0xffff978000022680 0041 00000000 0x0 0x0
0xffff978000022700 0041 00000000 0x0 0x0
0xffff978000022780 0041 00000000 0x0 0x0
0xffff978000022800 0041 00000000 0x0 0x0
0xffff978000022880 0041 00000000 0x0 0x0
0xffff978000022900 0041 00000000 0x0 0x0
0xffff978000022980 0041 00000000 0x0 0x0
0xffff978000022a00 0041 00000000 0x0 0x0
0xffff978000022a80 0041 00000000 0x0 0x0
0xffff978000022b00 0041 00000000 0x0 0x0
0xffff978000022b80 0041 00000000 0x0 0x0
0xffff978000022c00 0041 00000000 0x0 0x0
0xffff978000022c80 0041 00000000 0x0 0x0
0xffff978000022d00 0041 00000000 0x0 0x0
0xffff978000022d80 0041 00000000 0x0 0x0
0xffff978000022e00 0041 00000000 0x0 0x0
0xffff978000022e80 0041 00000000 0x0 0x0
0xffff978000022f00 0041 00000000 0x0 0x0
0xffff978000022f80 0041 00000000 0x0 0x0
0xffff978000023000 0041 00000000 0x0 0x0
0xffff978000023080 0041 00000000 0x0 0x0
0xffff978000023100 0041 00000000 0x0 0x0
0xffff978000023180 0041 00000000 0x0 0x0
0xffff978000023200 0041 00000000 0x0 0x0
0xffff978000023280 0041 00000000 0x0 0x0
0xffff978000023300 0041 00000000 0x0 0x0
0xffff978000023380 0041 00000000 0x0 0x0
0xffff978000023400 0041 00000000 0x0 0x0
0xffff978000023480 0041 00000000 0x0 0x0
0xffff978000023500 0041 00000000 0x0 0x0
0xffff978000023580 0041 00000000 0x0 0x0
0xffff978000023600 0041 00000000 0x0 0x0
0xffff978000023680 0041 00000000 0x0 0x0
0xffff978000023700 0041 00000000 0x0 0x0
0xffff978000023780 0041 00000000 0x0 0x0
0xffff978000023800 0041 00000000 0x0 0x0
0xffff978000023880 0041 00000000 0x0 0x0
0xffff978000023900 0041 00000000 0x0 0x0
0xffff978000023980 0041 00000000 0x0 0x0
0xffff978000023a00 0041 00000000 0x0 0x0
0xffff978000023a80 0041 00000000 0x0 0x0
0xffff978000023b00 0041 00000000 0x0 0x0
0xffff978000023b80 0041 00000000 0x0 0x0
0xffff978000023c00 0041 00000000 0x0 0x0
0xffff978000023c80 0041 00000000 0x0 0x0
0xffff978000023d00 0041 00000000 0x0 0x0
0xffff978000023d80 0041 00000000 0x0 0x0
0xffff978000023e00 0041 00000000 0x0 0x0
0xffff978000023e80 0041 00000000 0x0 0x0
0xffff978000023f00 0041 00000000 0x0 0x0
0xffff978000023f80 0041 00000000 0x0 0x0
0xffff978000024000 0041 00000000 0x0 0x0
0xffff978000024080 0041 00000000 0x0 0x0
0xffff978000024100 0041 00000000 0x0 0x0
0xffff978000024180 0041 00000000 0x0 0x0
0xffff978000024200 0041 00000000 0x0 0x0
0xffff978000024280 0041 00000000 0x0 0x0
0xffff978000024300 0041 00000000 0x0 0x0
0xffff978000024380 0041 00000000 0x0 0x0
0xffff978000024400 0041 00000000 0x0 0x0
0xffff978000024480 0041 00000000 0x0 0x0
0xffff978000024500 0041 00000000 0x0 0x0
0xffff978000024580 0041 00000000 0x0 0x0
0xffff978000024600 0041 00000000 0x0 0x0
0xffff978000024680 0041 00000000 0x0 0x0
0xffff978000024700 0041 00000000 0x0 0x0
0xffff978000024780 0041 00000000 0x0 0x0
0xffff978000024800 0041 00000000 0x0 0x0
0xffff978000024880 0041 00000000 0x0 0x0
0xffff978000024900 0041 00000000 0x0 0x0
0xffff978000024980 0041 00000000 0x0 0x0
0xffff978000024a00 0041 00000000 0x0 0x0
0xffff978000024a80 0041 00000000 0x0 0x0
0xffff978000024b00 0041 00000000 0x0 0x0
0xffff978000024b80 0041 00000000 0x0 0x0
0xffff978000024c00 0041 00000000 0x0 0x0
0xffff978000024c80 0041 00000000 0x0 0x0
0xffff978000024d00 0041 00000000 0x0 0x0
0xffff978000024d80 0041 00000000 0x0 0x0
0xffff978000024e00 0041 00000000 0x0 0x0
0xffff978000024e80 0041 00000000 0x0 0x0
0xffff978000024f00 0041 00000000 0x0 0x0
0xffff978000024f80 0041 00000000 0x0 0x0
0xffff978000025000 0041 00000000 0x0 0x0
0xffff978000025080 0041 00000000 0x0 0x0
0xffff978000025100 0041 00000000 0x0 0x0
0xffff978000025180 0041 00000000 0x0 0x0
0xffff978000025200 0041 00000000 0x0 0x0
0xffff978000025280 0041 00000000 0x0 0x0
0xffff978000025300 0041 00000000 0x0 0x0
0xffff978000025380 0041 00000000 0x0 0x0
0xffff978000025400 0041 00000000 0x0 0x0
0xffff978000025480 0041 00000000 0x0 0x0
0xffff978000025500 0041 00000000 0x0 0x0
0xffff978000025580 0041 00000000 0x0 0x0
0xffff978000025600 0041 00000000 0x0 0x0
0xffff978000025680 0041 00000000 0x0 0x0
0xffff978000025700 0041 00000000 0x0 0x0
0xffff978000025780 0041 00000000 0x0 0x0
0xffff978000025800 0041 00000000 0x0 0x0
0xffff978000025880 0041 00000000 0x0 0x0
0xffff978000025900 0041 00000000 0x0 0x0
0xffff978000025980 0041 00000000 0x0 0x0
0xffff978000025a00 0041 00000000 0x0 0x0
0xffff978000025a80 0041 00000000 0x0 0x0
0xffff978000025b00 0041 00000000 0x0 0x0
0xffff978000025b80 0041 00000000 0x0 0x0
0xffff978000025c00 0041 00000000 0x0 0x0
0xffff978000025c80 0041 00000000 0x0 0x0
0xffff978000025d00 0041 00000000 0x0 0x0
0xffff978000025d80 0041 00000000 0x0 0x0
0xffff978000025e00 0041 00000000 0x0 0x0
0xffff978000025e80 0041 00000000 0x0 0x0
0xffff978000025f00 0041 00000000 0x0 0x0
0xffff978000025f80 0041 00000000 0x0 0x0
0xffff978000026000 0041 00000000 0x0 0x0
0xffff978000026080 0041 00000000 0x0 0x0
0xffff978000026100 0041 00000000 0x0 0x0
0xffff978000026180 0041 00000000 0x0 0x0
0xffff978000026200 0041 00000000 0x0 0x0
0xffff978000026280 0041 00000000 0x0 0x0
0xffff978000026300 0041 00000000 0x0 0x0
0xffff978000026380 0041 00000000 0x0 0x0
0xffff978000026400 0041 00000000 0x0 0x0
0xffff978000026480 0041 00000000 0x0 0x0
0xffff978000026500 0041 00000000 0x0 0x0
0xffff978000026580 0041 00000000 0x0 0x0
0xffff978000026600 0041 00000000 0x0 0x0
0xffff978000026680 0041 00000000 0x0 0x0
0xffff978000026700 0041 00000000 0x0 0x0
0xffff978000026780 0041 00000000 0x0 0x0
0xffff978000026800 0041 00000000 0x0 0x0
0xffff978000026880 0041 00000000 0x0 0x0
0xffff978000026900 0041 00000000 0x0 0x0
0xffff978000026980 0041 00000000 0x0 0x0
0xffff978000026a00 0001 00000000 0x0 0x0
0xffff978000026a80 0001 00000000 0x0 0x0
0xffff978000026b00 0001 00000000 0x0 0x0
0xffff978000026b80 0001 00000000 0x0 0x0
0xffff978000026c00 0001 00000000 0x0 0x0
0xffff978000026c80 0001 00000000 0x0 0x0
0xffff978000026d00 0001 00000000 0x0 0x0
0xffff978000026d80 0001 00000000 0x0 0x0
0xffff978000026e00 0001 00000000 0x0 0x0
0xffff978000026e80 0001 00000000 0x0 0x0
0xffff978000026f00 0001 00000000 0x0 0x0
0xffff978000026f80 0001 00000000 0x0 0x0
0xffff978000027000 0001 00000000 0x0 0x0
0xffff978000027080 0001 00000000 0x0 0x0
0xffff978000027100 0001 00000000 0x0 0x0
0xffff978000027180 0001 00000000 0x0 0x0
0xffff978000027200 0001 00000000 0x0 0x0
0xffff978000027280 0001 00000000 0x0 0x0
0xffff978000027300 0001 00000000 0x0 0x0
0xffff978000027380 0001 00000000 0x0 0x0
0xffff978000027400 0001 00000000 0x0 0x0
0xffff978000027480 0001 00000000 0x0 0x0
0xffff978000027500 0001 00000000 0x0 0x0
0xffff978000027580 0001 00000000 0x0 0x0
0xffff978000027600 0001 00000000 0x0 0x0
0xffff978000027680 0001 00000000 0x0 0x0
0xffff978000027700 0001 00000000 0x0 0x0
0xffff978000027780 0001 00000000 0x0 0x0
0xffff978000027800 0001 00000000 0x0 0x0
0xffff978000027880 0001 00000000 0x0 0x0
0xffff978000027900 0001 00000000 0x0 0x0
0xffff978000027980 0001 00000000 0x0 0x0
0xffff978000027a00 0001 00000000 0x0 0x0
0xffff978000027a80 0001 00000000 0x0 0x0
0xffff978000027b00 0001 00000000 0x0 0x0
0xffff978000027b80 0001 00000000 0x0 0x0
0xffff978000027c00 0001 00000000 0x0 0x0
0xffff978000027c80 0001 00000000 0x0 0x0
0xffff978000027d00 0001 00000000 0x0 0x0
0xffff978000027d80 0001 00000000 0x0 0x0
0xffff978000027e00 0001 00000000 0x0 0x0
0xffff978000027e80 0001 00000000 0x0 0x0
0xffff978000027f00 0001 00000000 0x0 0x0
0xffff978000027f80 0001 00000000 0x0 0x0
0xffff978000028000 0001 00000000 0x0 0x0
0xffff978000028080 0001 00000000 0x0 0x0
0xffff978000028100 0001 00000000 0x0 0x0
0xffff978000028180 0001 00000000 0x0 0x0
0xffff978000028200 0001 00000000 0x0 0x0
0xffff978000028280 0001 00000000 0x0 0x0
0xffff978000028300 0001 00000000 0x0 0x0
0xffff978000028380 0001 00000000 0x0 0x0
0xffff978000028400 0001 00000000 0x0 0x0
0xffff978000028480 0001 00000000 0x0 0x0
0xffff978000028500 0001 00000000 0x0 0x0
0xffff978000028580 0001 00000000 0x0 0x0
0xffff978000028600 0001 00000000 0x0 0x0
0xffff978000028680 0001 00000000 0x0 0x0
0xffff978000028700 0001 00000000 0x0 0x0
0xffff978000028780 0001 00000000 0x0 0x0
0xffff978000028800 0001 00000000 0x0 0x0
0xffff978000028880 0001 00000000 0x0 0x0
0xffff978000028900 0001 00000000 0x0 0x0
0xffff978000028980 0001 00000000 0x0 0x0
0xffff978000028a00 0001 00000000 0x0 0x0
0xffff978000028a80 0001 00000000 0x0 0x0
0xffff978000028b00 0001 00000000 0x0 0x0
0xffff978000028b80 0001 00000000 0x0 0x0
0xffff978000028c00 0001 00000000 0x0 0x0
0xffff978000028c80 0001 00000000 0x0 0x0
0xffff978000028d00 0001 00000000 0x0 0x0
0xffff978000028d80 0001 00000000 0x0 0x0
0xffff978000028e00 0001 00000000 0x0 0x0
0xffff978000028e80 0001 00000000 0x0 0x0
0xffff978000028f00 0001 00000000 0x0 0x0
0xffff978000028f80 0001 00000000 0x0 0x0
0xffff978000029000 0001 00000000 0x0 0x0
0xffff978000029080 0001 00000000 0x0 0x0
0xffff978000029100 0001 00000000 0x0 0x0
0xffff978000029180 0001 00000000 0x0 0x0
0xffff978000029200 0001 00000000 0x0 0x0
0xffff978000029280 0001 00000000 0x0 0x0
0xffff978000029300 0001 00000000 0x0 0x0
0xffff978000029380 0001 00000000 0x0 0x0
0xffff978000029400 0001 00000000 0x0 0x0
0xffff978000029480 0001 00000000 0x0 0x0
0xffff978000029500 0001 00000000 0x0 0x0
0xffff978000029580 0001 00000000 0x0 0x0
0xffff978000029600 0001 00000000 0x0 0x0
0xffff978000029680 0001 00000000 0x0 0x0
0xffff978000029700 0001 00000000 0x0 0x0
0xffff978000029780 0001 00000000 0x0 0x0
0xffff978000029800 0001 00000000 0x0 0x0
0xffff978000029880 0001 00000000 0x0 0x0
0xffff978000029900 0001 00000000 0x0 0x0
0xffff978000029980 0001 00000000 0x0 0x0
0xffff978000029a00 0001 00000000 0x0 0x0
0xffff978000029a80 0001 00000000 0x0 0x0
0xffff978000029b00 0001 00000000 0x0 0x0
0xffff978000029b80 0001 00000000 0x0 0x0
0xffff978000029c00 0001 00000000 0x0 0x0
0xffff978000029c80 0001 00000000 0x0 0x0
0xffff978000029d00 0001 00000000 0x0 0x0
0xffff978000029d80 0001 00000000 0x0 0x0
0xffff978000029e00 0001 00000000 0x0 0x0
0xffff978000029e80 0001 00000000 0x0 0x0
0xffff978000029f00 0001 00000000 0x0 0x0
0xffff978000029f80 0001 00000000 0x0 0x0
0xffff97800002a000 0001 00000000 0x0 0x0
0xffff97800002a080 0001 00000000 0x0 0x0
0xffff97800002a100 0001 00000000 0x0 0x0
0xffff97800002a180 0001 00000000 0x0 0x0
0xffff97800002a200 0001 00000000 0x0 0x0
0xffff97800002a280 0001 00000000 0x0 0x0
0xffff97800002a300 0001 00000000 0x0 0x0
0xffff97800002a380 0001 00000000 0x0 0x0
0xffff97800002a400 0001 00000000 0x0 0x0
0xffff97800002a480 0001 00000000 0x0 0x0
0xffff97800002a500 0001 00000000 0x0 0x0
0xffff97800002a580 0001 00000000 0x0 0x0
0xffff97800002a600 0001 00000000 0x0 0x0
0xffff97800002a680 0001 00000000 0x0 0x0
0xffff97800002a700 0001 00000000 0x0 0x0
0xffff97800002a780 0001 00000000 0x0 0x0
0xffff97800002a800 0001 00000000 0x0 0x0
0xffff97800002a880 0001 00000000 0x0 0x0
0xffff97800002a900 0001 00000000 0x0 0x0
0xffff97800002a980 0001 00000000 0x0 0x0
0xffff97800002aa00 0001 00000000 0x0 0x0
0xffff97800002aa80 0001 00000000 0x0 0x0
0xffff97800002ab00 0001 00000000 0x0 0x0
0xffff97800002ab80 0001 00000000 0x0 0x0
0xffff97800002ac00 0001 00000000 0x0 0x0
0xffff97800002ac80 0001 00000000 0x0 0x0
0xffff97800002ad00 0001 00000000 0x0 0x0
0xffff97800002ad80 0001 00000000 0x0 0x0
0xffff97800002ae00 0001 00000000 0x0 0x0
0xffff97800002ae80 0001 00000000 0x0 0x0
0xffff97800002af00 0001 00000000 0x0 0x0
0xffff97800002af80 0001 00000000 0x0 0x0
0xffff97800002b000 0001 00000000 0x0 0x0
0xffff97800002b080 0001 00000000 0x0 0x0
0xffff97800002b100 0001 00000000 0x0 0x0
0xffff97800002b180 0001 00000000 0x0 0x0
0xffff97800002b200 0001 00000000 0x0 0x0
0xffff97800002b280 0001 00000000 0x0 0x0
0xffff97800002b300 0001 00000000 0x0 0x0
0xffff97800002b380 0001 00000000 0x0 0x0
0xffff97800002b400 0001 00000000 0x0 0x0
0xffff97800002b480 0001 00000000 0x0 0x0
0xffff97800002b500 0001 00000000 0x0 0x0
0xffff97800002b580 0001 00000000 0x0 0x0
0xffff97800002b600 0001 00000000 0x0 0x0
0xffff97800002b680 0001 00000000 0x0 0x0
0xffff97800002b700 0001 00000000 0x0 0x0
0xffff97800002b780 0001 00000000 0x0 0x0
0xffff97800002b800 0001 00000000 0x0 0x0
0xffff97800002b880 0001 00000000 0x0 0x0
0xffff97800002b900 0001 00000000 0x0 0x0
0xffff97800002b980 0001 00000000 0x0 0x0
0xffff97800002ba00 0001 00000000 0x0 0x0
0xffff97800002ba80 0001 00000000 0x0 0x0
0x

---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.

syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.

[Jaromír Doleček]

Reproducer for this is very simple, just call the compat_43 lstat on a symlink:

1. ln -s /etc/passwd /tmp/passwd
2. execute the attached program

I've pinged a...@netbsd.org since it's likely related to the latest name
cache changes.

Jaromir

Le sam. 20 juin 2020 à 22:41, syzbot
<syzbot+9378f7...@syzkaller.appspotmail.com> a écrit :

> --
> You received this message because you are subscribed to the Google Groups "syzkaller-netbsd-bugs" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to syzkaller-netbsd...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/syzkaller-netbsd-bugs/000000000000c6523405a88a0703%40google.com.

[Maxime Villard]

#syz dup: assert failed: (cnp->cn_flags & LOCKPARENT) == 0 || searchdir == NULL || VOP_ISLOCKED(searchdir) == LK_EXCLUSIVE