UBSan: Undefined Behavior in compat_50_route_output

0 views
Skip to first unread message

syzbot

unread,
May 25, 2020, 11:44:15 AM5/25/20
to syzkaller-...@googlegroups.com
Hello,

syzbot found the following crash on:

HEAD commit: ed9d23d2 fix KASAN PoolUseAfterFree for async write - can'..
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=10a52972100000
kernel config: https://syzkaller.appspot.com/x/.config?x=f96f14247a94bfe
dashboard link: https://syzkaller.appspot.com/bug?extid=865f88bad4eaebcb2fb2
compiler: g++ (Ubuntu 5.4.0-6ubuntu1~16.04.12) 5.4.0 20160609

Unfortunately, I don't have any reproducer for this crash yet.

IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+865f88...@syzkaller.appspotmail.com

[ 58.2019489] panic: UBSan: Undefined Behavior in /syzkaller/managers/netbsd-kubsan/kernel/sys/net/rtsock_shared.c:667:41, member access within misaligned address 0xffff86818208a64c for type 'struct rt_msghdr50' which requires 8 byte alignment

[ 58.2319762] cpu1: Begin traceback...
[ 58.2619223] vpanic() at netbsd:vpanic+0x287 sys/kern/subr_prf.c:290
[ 58.3319148] isAlreadyReported() at netbsd:isAlreadyReported
[ 58.3919220] HandleTypeMismatch.part.1() at netbsd:HandleTypeMismatch.part.1+0xae
[ 58.4619170] HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x63 sys/../common/lib/libc/misc/ubsan.c:434
[ 58.5319215] compat_50_route_output() at netbsd:compat_50_route_output+0x1a5c sys/net/rtsock_shared.c:667
[ 58.6019294] raw_send() at netbsd:raw_send+0x1c9 sys/net/raw_usrreq.c:182
[ 58.6619140] compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0xa0 compat_50_route_send sys/net/rtsock_shared.c:500 [inline]
[ 58.6619140] compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0xa0 sys/net/rtsock_shared.c:1740
[ 58.7319173] sosend() at netbsd:sosend+0x1554 sys/kern/uipc_socket.c:1059
[ 58.7919163] soo_write() at netbsd:soo_write+0x75 sys/kern/sys_socket.c:122
[ 58.8619258] dofilewrite() at netbsd:dofilewrite+0x124 sys/kern/sys_generic.c:350
[ 58.9219183] sys_write() at netbsd:sys_write+0xc2 sys/kern/sys_generic.c:318
[ 58.9819393] sys___syscall() at netbsd:sys___syscall+0x1b5 sy_call sys/sys/syscallvar.h:65 [inline]
[ 58.9819393] sys___syscall() at netbsd:sys___syscall+0x1b5 sys/kern/sys_syscall.c:77
[ 59.0519186] syscall() at netbsd:syscall+0x287 sy_call sys/sys/syscallvar.h:65 [inline]
[ 59.0519186] syscall() at netbsd:syscall+0x287 sy_invoke sys/sys/syscallvar.h:94 [inline]
[ 59.0519186] syscall() at netbsd:syscall+0x287 sys/arch/x86/x86/syscall.c:138
[ 59.0719217] --- syscall (number 198) ---
[ 59.0919200] netbsd:syscall+0x287:
[ 59.1019170] cpu1: End traceback...
[ 59.1019170] fatal breakpoint trap in supervisor mode
[ 59.1119109] trap type 1 code 0 rip 0xffffffff80221a45 cs 0x8 rflags 0x246 cr2 0x772b2c800000 ilevel 0x4 rsp 0xffffc000c44f2540
[ 59.1219137] curlwp 0xffff86819340c780 pid 968.1877 lowest kstack 0xffffc000c44ef2c0
Stopped in pid 968.1877 (syz-executor.3) at netbsd:breakpoint+0x5: leave
?
breakpoint() at netbsd:breakpoint+0x5
db_panic() at netbsd:db_panic+0xd1 sys/ddb/db_panic.c:67
vpanic() at netbsd:vpanic+0x287 sys/kern/subr_prf.c:290
isAlreadyReported() at netbsd:isAlreadyReported
HandleTypeMismatch.part.1() at netbsd:HandleTypeMismatch.part.1+0xae
HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x63 sys/../common/lib/libc/misc/ubsan.c:434
compat_50_route_output() at netbsd:compat_50_route_output+0x1a5c sys/net/rtsock_shared.c:667
raw_send() at netbsd:raw_send+0x1c9 sys/net/raw_usrreq.c:182
compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0xa0 compat_50_route_send sys/net/rtsock_shared.c:500 [inline]
compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0xa0 sys/net/rtsock_shared.c:1740
sosend() at netbsd:sosend+0x1554 sys/kern/uipc_socket.c:1059
soo_write() at netbsd:soo_write+0x75 sys/kern/sys_socket.c:122
dofilewrite() at netbsd:dofilewrite+0x124 sys/kern/sys_generic.c:350
sys_write() at netbsd:sys_write+0xc2 sys/kern/sys_generic.c:318
sys___syscall() at netbsd:sys___syscall+0x1b5 sy_call sys/sys/syscallvar.h:65 [inline]
sys___syscall() at netbsd:sys___syscall+0x1b5 sys/kern/sys_syscall.c:77
syscall() at netbsd:syscall+0x287 sy_call sys/sys/syscallvar.h:65 [inline]
syscall() at netbsd:syscall+0x287 sy_invoke sys/sys/syscallvar.h:94 [inline]
syscall() at netbsd:syscall+0x287 sys/arch/x86/x86/syscall.c:138
--- syscall (number 198) ---
netbsd:syscall+0x287:
ds df
es 2500
fs 2550
gs 10
rdi 4
rsi 2d5
rbp ffffc000c44f2540
rbx ffffc000a65b9000
rdx ffff86818cb507f8
rcx 4
rax ffffffff
r8 ffffc000a65b9000
r9 0
r10 ffffc000c44f1ba0
r11 10
r12 ffffffff83c727f8
r13 ffffc000c44f25b8
r14 104
r15 ffffffff85b9d5a0 pool_head+0x560
rip ffffffff80221a45 breakpoint+0x5
cs 8
rflags 246
rsp ffffc000c44f2540
ss 10
netbsd:breakpoint+0x5: leave
PID LID S CPU FLAGS STRUCT LWP * NAME WAIT
1874 852 3 1 80 ffff86819340cbc0 syz-executor.5 parked
1874 851 2 0 0 ffff868196379b00 syz-executor.5
1874 1874 2 1 10000000 ffff868198f282c0 syz-executor.5
847 2000 3 0 80 ffff868193c67080 syz-executor.4 msgwait
847 > 847 7 0 10040000 ffff868192c6d940 syz-executor.4
717 717 3 0 80 ffff868193c674c0 syz-executor.3 parked
968 >1877 7 1 0 ffff86819340c780 syz-executor.3
968 1745 2 0 0 ffff868192df65c0 syz-executor.3
968 843 3 1 80 ffff86819354f140 syz-executor.3 netio
968 968 2 1 10040000 ffff868192c6d500 syz-executor.3
955 1870 3 0 80 ffff86819354f9c0 syz-executor.0 parked
955 1993 3 0 80 ffff8681819dea00 syz-executor.0 parked
955 955 2 0 10040000 ffff868193d34540 syz-executor.0
576 2244 3 1 80 ffff868193d34100 syz-executor.1 parked
576 1858 3 0 80 ffff868192fc51c0 syz-executor.1 netio
576 576 2 1 10040000 ffff8681987b0200 syz-executor.1
819 819 3 0 80 ffff868193de3b80 syz-executor.2 parked
817 817 3 0 80 ffff86819354f580 syz-executor.1 parked
2461 2461 3 0 80 ffff868192c6d0c0 syz-executor.2 parked
402 402 3 1 80 ffff8681939a6040 syz-executor.1 parked
386 386 3 1 80 ffff86819449aac0 syz-executor.0 parked
2077 2077 3 1 80 ffff868192df6a00 syz-executor.1 parked
1473 1473 3 1 80 ffff8681939a68c0 syz-executor.4 parked
1705 1705 3 0 80 ffff868182f18b00 syz-executor.1 parked
1013 1013 3 0 80 ffff868192fc5a40 syz-executor.4 parked
1746 1746 3 0 80 ffff868181bfda40 syz-executor.0 parked
1570 1570 3 0 80 ffff868195749540 syz-executor.1 parked
2230 2230 3 0 80 ffff868192fc5600 syz-executor.1 parked
2111 2111 3 0 80 ffff868182ade2c0 syz-executor.0 parked
1609 1609 3 0 80 ffff8681987b0a80 syz-executor.0 parked
2105 2105 3 0 80 ffff86819340c340 syz-executor.4 parked
1469 1469 3 0 80 ffff868193de3300 syz-executor.0 parked
1848 1848 3 0 80 ffff8681963796c0 syz-executor.0 parked
1479 1479 3 0 80 ffff8681987b0640 syz-executor.4 parked
1912 1912 3 1 80 ffff868195d79580 syz-executor.1 parked
1603 1603 3 1 80 ffff86819449a680 syz-executor.1 parked
763 763 3 1 80 ffff868195d799c0 syz-executor.4 parked
1361 1361 3 0 80 ffff868192df6180 syz-executor.4 parked
1318 1318 3 0 80 ffff868195749980 syz-executor.1 parked
1212 1212 3 0 80 ffff8681819de180 syz-executor.3 parked
1850 1850 3 0 80 ffff868195d79140 syz-executor.1 parked
1914 1914 3 0 80 ffff868195749100 syz-executor.4 parked
1401 1401 3 1 80 ffff868182f186c0 syz-executor.5 nanoslp
571 571 3 1 80 ffff868182adeb40 syz-executor.4 nanoslp
682 682 3 0 80 ffff868181d5fac0 syz-executor.3 nanoslp
692 692 3 1 40 ffff868181bfd600 syz-executor.2 biowait
601 601 3 1 80 ffff868182f18280 syz-executor.1 nanoslp
1398 1398 3 0 80 ffff868181d5f680 syz-executor.0 nanoslp
683 693 3 1 80 ffff868181f0a740 syz-fuzzer parked
683 690 3 1 80 ffff868181c9fa80 syz-fuzzer parked
683 689 3 1 c0 ffff868181f0ab80 syz-fuzzer parked
683 691 3 1 80 ffff868183555040 syz-fuzzer parked
683 1072 3 0 c0 ffff8681819de5c0 syz-fuzzer parked
683 685 3 0 80 ffff8681835558c0 syz-fuzzer parked
683 684 3 0 80 ffff8681815e49c0 syz-fuzzer kqueue
683 723 3 0 80 ffff86818044a280 syz-fuzzer parked
683 724 3 1 c0 ffff8681836ab340 syz-fuzzer parked
683 581 3 0 80 ffff868183892080 syz-fuzzer parked
683 683 3 0 c0 ffff868183892900 syz-fuzzer parked
677 677 3 1 80 ffff8681838924c0 sshd select
728 728 3 1 80 ffff868181c9f640 getty nanoslp
671 671 3 0 80 ffff86818410b500 getty nanoslp
719 719 3 0 80 ffff8681815bd100 getty nanoslp
1374 1374 3 1 c0 ffff8681815e4580 getty ttyraw
727 727 3 0 80 ffff8681836abbc0 cron nanoslp
715 715 3 0 80 ffff868183555480 inetd kqueue
584 584 3 0 80 ffff86818410b0c0 sshd select
552 552 3 0 80 ffff8681836ab780 powerd kqueue
458 458 3 0 80 ffff868181f0a300 syslogd kqueue
302 302 3 1 80 ffff868181c9f200 dhcpcd kqueue
333 333 3 1 80 ffff868181d5f240 dhcpcd kqueue
1 1 3 1 80 ffff8681804e54c0 init wait
0 448 3 0 200 ffff8681815bd540 physiod physiod
0 116 3 0 200 ffff8681815e4140 ioflush syncer
0 115 3 0 200 ffff86818044a6c0 pooldrain pooldrain
0 114 3 1 200 ffff8681815bd980 pgdaemon pgdaemon
0 111 3 1 200 ffff868181571940 usb0 usbevt
0 110 3 1 200 ffff868181571500 usbtask-dr usbtsk
0 109 3 1 200 ffff8681815710c0 usbtask-hc usbtsk
0 108 3 1 200 ffff8681804e5900 npfgc-0 npfgccv
0 107 3 1 200 ffff8681804e5080 rt_free rt_free
0 106 3 1 200 ffff8681804de8c0 unpgc unpgc
0 105 3 0 200 ffff8681804de480 key_timehandler key_timehandler
0 104 3 1 200 ffff8681804de040 icmp6_wqinput/1 icmp6_wqinput
0 103 3 0 200 ffff8681804b7bc0 icmp6_wqinput/0 icmp6_wqinput
0 102 3 0 200 ffff8681804b7780 nd6_timer nd6_timer
0 101 3 1 200 ffff8681804b7340 carp6_wqinput/1 carp6_wqinput
0 100 3 0 200 ffff868180460b80 carp6_wqinput/0 carp6_wqinput
0 99 3 1 200 ffff868180460740 carp_wqinput/1 carp_wqinput
0 98 3 0 200 ffff868180460300 carp_wqinput/0 carp_wqinput
0 97 3 1 200 ffff868180441b40 icmp_wqinput/1 icmp_wqinput
0 96 3 0 200 ffff86818044ab00 icmp_wqinput/0 icmp_wqinput
0 126 3 0 200 ffff86817d92cac0 rt_timer rt_timer
0 125 3 0 200 ffff868180441700 vmem_rehash vmem_rehash
0 95 3 0 200 ffff8681804412c0 entbutler entropy
0 27 3 0 200 ffff86817d92c680 scsibus0 sccomp
0 26 3 1 200 ffff86817d92c240 pms0 pmsreset
0 25 3 1 200 ffff86817d897a80 xcall/1 xcall
0 24 1 1 200 ffff86817d897640 softser/1
0 23 1 1 200 ffff86817d897200 softclk/1
0 22 1 1 200 ffff86817d867a40 softbio/1
0 21 1 1 200 ffff86817d867600 softnet/1
0 20 1 1 201 ffff86817d8671c0 idle/1
0 19 3 0 200 ffff86828d786a00 lnxpwrwq lnxpwrwq
0 18 3 0 200 ffff86828d7865c0 lnxlngwq lnxlngwq
0 17 3 1 200 ffff86828d786180 lnxsyswq lnxsyswq
0 16 3 0 200 ffff86828d7a19c0 lnxrcugc lnxrcugc
0 15 3 1 200 ffff86828d7a1580 sysmon smtaskq
0 14 3 0 200 ffff86828d7a1140 pmfsuspend pmfsuspend
0 13 3 1 200 ffff86828d7b0980 pmfevent pmfevent
0 12 3 1 200 ffff86828d7b0540 sopendfree sopendfr
0 11 3 0 200 ffff86828d7b0100 iflnkst iflnkst
0 10 3 0 200 ffff86828e7dd940 nfssilly nfssilly
0 9 3 0 200 ffff86828e7dd500 vdrain vdrain
0 8 3 1 200 ffff86828e7dd0c0 modunload mod_unld
0 7 3 0 200 ffff86828e80c900 xcall/0 xcall
0 6 1 0 200 ffff86828e80c4c0 softser/0
0 > 5 7 0 200 ffff86828e80c080 softclk/0
0 4 1 0 200 ffff86828e8398c0 softbio/0
0 3 1 0 200 ffff86828e839480 softnet/0
0 2 1 0 201 ffff86828e839040 idle/0
0 0 3 0 200 ffffffff85af1480 swapper uvm
[Locks tracked through LWPs]

****** LWP 847.847 (syz-executor.4) @ 0xffff868192c6d940, l_stat=7

*** Locks held:

* Lock 0 (initialized at amap_alloc1)
lock address : 0xffff86818d967a80 type : sleep/adaptive
initialized : 0xffffffff82edf05b
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffff868192c6d940 last held: 0xffff868192c6d940
last locked* : 0xffffffff82f00fea unlocked : 0xffffffff82eff00a
owner/count : 0xffff868192c6d940 flags : 0x0000000000000004
Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at pmap_ctor)
lock address : 0xffff8681949ba980 type : sleep/adaptive
initialized : 0xffffffff80eee3c3
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffff868192c6d940 last held: 0xffff868192c6d940
last locked* : 0xffffffff80ef0753 unlocked : 0xffffffff80eee118
owner field : 0xffff868192c6d940 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 968.1877 (syz-executor.3) @ 0xffff86819340c780, l_stat=7

*** Locks held:

* Lock 0 (initialized at soinit)
lock address : 0xffff86828ecbc080 type : sleep/adaptive
initialized : 0xffffffff8321b08f
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffff86819340c780 last held: 0xffff86819340c780
last locked* : 0xffffffff83218ea4 unlocked : 0xffffffff83218f3f
owner field : 0xffff86819340c780 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 692.692 (syz-executor.2) @ 0xffff868181bfd600, l_stat=3

*** Locks held:

* Lock 0 (initialized at vcache_alloc)
lock address : 0xffff86818c960280 type : sleep/adaptive
initialized : 0xffffffff832b01e2
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffff868181bfd600 last held: 0xffff868181bfd600
last locked* : 0xffffffff83304f90 unlocked : 0xffffffff83304d85
owner/count : 0xffff868181bfd600 flags : 0x0000000000000004
Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at vcache_alloc)
lock address : 0xffff868199140540 type : sleep/adaptive
initialized : 0xffffffff832b01e2
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffff868181bfd600 last held: 0xffff868181bfd600
last locked* : 0xffffffff83304f90 unlocked : 000000000000000000
owner/count : 0xffff868181bfd600 flags : 0x0000000000000004
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 0.11 (iflnkst) @ 0xffff86828d7b0100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff85eee340 type : sleep/adaptive
initialized : 0xffffffff8301bc2f
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffff86828d7b0100 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffff86828e80c080, l_stat=7

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff85eee340 type : sleep/adaptive
initialized : 0xffffffff8301bc2f
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffff86828e80c080 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu1:

* Lock 0 (initialized at main)
lock address : 0xffffffff85eee240 type : spin
initialized : 0xffffffff83799cf0
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 1
relevant cpu : 1 last held: 1
relevant lwp : 0xffff86819340c780 last held: 0xffff86819340c780
last locked* : 0xffffffff821bb937 unlocked : 0xffffffff8321e1f5
curcpu holds : 1 wanted by: 000000000000000000

PAGE FLAG PQ UOBJECT UANON
0xffffc00000006180 0045 00000000 0x0 0x0
0xffffc00000006200 0045 00000000 0x0 0x0
0xffffc00000006280 0045 00000000 0x0 0x0
0xffffc00000006300 0045 00000000 0x0 0x0
0xffffc00000006380 0045 00000000 0x0 0x0
0xffffc00000006400 0045 00000000 0x0 0x0
0xffffc00000006480 0045 00000000 0x0 0x0
0xffffc00000006500 0045 00000000 0x0 0x0
0xffffc00000006580 0041 00000000 0x0 0x0
0xffffc00000006600 0041 00000000 0x0 0x0
0xffffc00000006680 0041 00000000 0x0 0x0
0xffffc00000006700 0041 00000000 0x0 0x0
0xffffc00000006780 0041 00000000 0x0 0x0
0xffffc00000006800 0045 00000000 0x0 0x0
0xffffc00000006880 0041 00000000 0x0 0x0
0xffffc00000006900 0041 00000000 0x0 0x0
0xffffc00000006980 0041 00000000 0x0 0x0
0xffffc00000006a00 0041 00000000 0x0 0x0
0xffffc00000006a80 0041 00000000 0x0 0x0
0xffffc00000006b00 0041 00000000 0x0 0x0
0xffffc00000006b80 0041 00000000 0x0 0x0
0xffffc00000006c00 0041 00000000 0x0 0x0
0xffffc00000006c80 0041 00000000 0x0 0x0
0xffffc00000006d00 0041 00000000 0x0 0x0
0xffffc00000006d80 0041 00000000 0x0 0x0
0xffffc00000006e00 0041 00000000 0x0 0x0
0xffffc00000006e80 0041 00000000 0x0 0x0
0xffffc00000006f00 0041 00000000 0x0 0x0
0xffffc00000006f80 0041 00000000 0x0 0x0
0xffffc00000007000 0041 00000000 0x0 0x0
0xffffc00000007080 0041 00000000 0x0 0x0
0xffffc00000007100 0041 00000000 0x0 0x0
0xffffc00000007180 0041 00000000 0x0 0x0
0xffffc00000007200 0041 00000000 0x0 0x0
0xffffc00000007280 0041 00000000 0x0 0x0
0xffffc00000007300 0041 00000000 0x0 0x0
0xffffc00000007380 0041 00000000 0x0 0x0
0xffffc00000007400 0041 00000000 0x0 0x0
0xffffc00000007480 0041 00000000 0x0 0x0
0xffffc00000007500 0041 00000000 0x0 0x0
0xffffc00000007580 0041 00000000 0x0 0x0
0xffffc00000007600 0041 00000000 0x0 0x0
0xffffc00000007680 0041 00000000 0x0 0x0
0xffffc00000007700 0045 00000000 0x0 0x0
0xffffc00000007780 0045 00000000 0x0 0x0
0xffffc00000007800 0041 00000000 0x0 0x0
0xffffc00000007880 0041 00000000 0x0 0x0
0xffffc00000007900 0041 00000000 0x0 0x0
0xffffc00000007980 0041 00000000 0x0 0x0
0xffffc00000007a00 0041 00000000 0x0 0x0
0xffffc00000007a80 0041 00000000 0x0 0x0
0xffffc00000007b00 0041 00000000 0x0 0x0
0xffffc00000007b80 0041 00000000 0x0 0x0
0xffffc00000007c00 0041 00000000 0x0 0x0
0xffffc00000007c80 0041 00000000 0x0 0x0
0xffffc00000007d00 0041 00000000 0x0 0x0
0xffffc00000007d80 0041 00000000 0x0 0x0
0xffffc00000007e00 0041 00000000 0x0 0x0
0xffffc00000007e80 0041 00000000 0x0 0x0
0xffffc00000007f00 0041 00000000 0x0 0x0
0xffffc00000007f80 0041 00000000 0x0 0x0
0xffffc00000008000 0041 00000000 0x0 0x0
0xffffc00000008080 0041 00000000 0x0 0x0
0xffffc00000008100 0041 00000000 0x0 0x0
0xffffc00000008180 0041 00000000 0x0 0x0
0xffffc00000008200 0041 00000000 0x0 0x0
0xffffc00000008280 0041 00000000 0x0 0x0
0xffffc00000008300 0041 00000000 0x0 0x0
0xffffc00000008380 0041 00000000 0x0 0x0
0xffffc00000008400 0041 00000000 0x0 0x0
0xffffc00000008480 0041 00000000 0x0 0x0
0xffffc00000008500 0041 00000000 0x0 0x0
0xffffc00000008580 0041 00000000 0x0 0x0
0xffffc00000008600 0041 00000000 0x0 0x0
0xffffc00000008680 0041 00000000 0x0 0x0
0xffffc00000008700 0041 00000000 0x0 0x0
0xffffc00000008780 0041 00000000 0x0 0x0
0xffffc00000008800 0041 00000000 0x0 0x0
0xffffc00000008880 0041 00000000 0x0 0x0
0xffffc00000008900 0041 00000000 0x0 0x0
0xffffc00000008980 0041 00000000 0x0 0x0
0xffffc00000008a00 0041 00000000 0x0 0x0
0xffffc00000008a80 0041 00000000 0x0 0x0
0xffffc00000008b00 0041 00000000 0x0 0x0
0xffffc00000008b80 0041 00000000 0x0 0x0
0xffffc00000008c00 0041 00000000 0x0 0x0
0xffffc00000008c80 0045 00000000 0x0 0x0
0xffffc00000008d00 0041 00000000 0x0 0x0
0xffffc00000008d80 0041 00000000 0x0 0x0
0xffffc00000008e00 0041 00000000 0x0 0x0
0xffffc00000008e80 0041 00000000 0x0 0x0
0xffffc00000008f00 0045 00000000 0x0 0x0
0xffffc00000008f80 0041 00000000 0x0 0x0
0xffffc00000009000 0041 00000000 0x0 0x0
0xffffc00000009080 0041 00000000 0x0 0x0
0xffffc00000009100 0041 00000000 0x0 0x0
0xffffc00000009180 0041 00000000 0x0 0x0
0xffffc00000009200 0041 00000000 0x0 0x0
0xffffc00000009280 0041 00000000 0x0 0x0
0xffffc00000009300 0041 00000000 0x0 0x0
0xffffc00000009380 0041 00000000 0x0 0x0
0xffffc00000009400 0041 00000000 0x0 0x0
0xffffc00000009480 0041 00000000 0x0 0x0
0xffffc00000009500 0041 00000000 0x0 0x0
0xffffc00000009580 0041 00000000 0x0 0x0
0xffffc00000009600 0041 00000000 0x0 0x0
0xffffc00000009680 0041 00000000 0x0 0x0
0xffffc00000009700 0041 00000000 0x0 0x0
0xffffc00000009780 0041 00000000 0x0 0x0
0xffffc00000009800 0041 00000000 0x0 0x0
0xffffc00000009880 0041 00000000 0x0 0x0
0xffffc00000009900 0041 00000000 0x0 0x0
0xffffc00000009980 0041 00000000 0x0 0x0
0xffffc00000009a00 0045 00000000 0x0 0x0
0xffffc00000009a80 0041 00000000 0x0 0x0
0xffffc00000009b00 0041 00000000 0x0 0x0
0xffffc00000009b80 0041 00000000 0x0 0x0
0xffffc00000009c00 0041 00000000 0x0 0x0
0xffffc00000009c80 0041 00000000 0x0 0x0
0xffffc00000009d00 0041 00000000 0x0 0x0
0xffffc00000009d80 0045 00000000 0x0 0x0
0xffffc00000009e00 0045 00000000 0x0 0x0
0xffffc00000009e80 0045 00000000 0x0 0x0
0xffffc00000009f00 0041 00000000 0x0 0x0
0xffffc00000009f80 0041 00000000 0x0 0x0
0xffffc0000000a000 0041 00000000 0x0 0x0
0xffffc0000000a080 0041 00000000 0x0 0x0
0xffffc0000000a100 0045 00000000 0x0 0x0
0xffffc0000000a180 0045 00000000 0x0 0x0
0xffffc0000000a200 0045 00000000 0x0 0x0
0xffffc0000000a280 0045 00000000 0x0 0x0
0xffffc0000000a300 0041 00000000 0x0 0x0
0xffffc0000000a380 0041 00000000 0x0 0x0
0xffffc0000000a400 0041 00000000 0x0 0x0
0xffffc0000000a480 0041 00000000 0x0 0x0
0xffffc0000000a500 0045 00000000 0x0 0x0
0xffffc0000000a580 0045 00000000 0x0 0x0
0xffffc0000000a600 0045 00000000 0x0 0x0
0xffffc0000000a680 0045 00000000 0x0 0x0
0xffffc0000000a700 0045 00000000 0x0 0x0
0xffffc0000000a780 0045 00000000 0x0 0x0
0xffffc0000000a800 0045 00000000 0x0 0x0
0xffffc0000000a880 0041 00000000 0x0 0x0
0xffffc0000000a900 0045 00000000 0x0 0x0
0xffffc0000000a980 0045 00000000 0x0 0x0
0xffffc0000000aa00 0041 00000000 0x0 0x0
0xffffc0000000aa80 0045 00000000 0x0 0x0
0xffffc0000000ab00 0045 00000000 0x0 0x0
0xffffc0000000ab80 0045 00000000 0x0 0x0
0xffffc0000000ac00 0045 00000000 0x0 0x0
0xffffc0000000ac80 0045 00000000 0x0 0x0
0xffffc0000000ad00 0045 00000000 0x0 0x0
0xffffc0000000ad80 0041 00000000 0x0 0x0
0xffffc0000000ae00 0041 00000000 0x0 0x0
0xffffc0000000ae80 0041 00000000 0x0 0x0
0xffffc0000000af00 0045 00000000 0x0 0x0
0xffffc0000000af80 0045 00000000 0x0 0x0
0xffffc0000000b000 0045 00000000 0x0 0x0
0xffffc0000000b080 0045 00000000 0x0 0x0
0xffffc0000000b100 0041 00000000 0x0 0x0
0xffffc0000000b180 0041 00000000 0x0 0x0
0xffffc0000000b200 0041 00000000 0x0 0x0
0xffffc0000000b280 0041 00000000 0x0 0x0
0xffffc0000000b300 0045 00000000 0x0 0x0
0xffffc0000000b380 0045 00000000 0x0 0x0
0xffffc0000000b400 0045 00000000 0x0 0x0
0xffffc0000000b480 0045 00000000 0x0 0x0
0xffffc0000000b500 0041 00000000 0x0 0x0
0xffffc0000000b580 0041 00000000 0x0 0x0
0xffffc0000000b600 0041 00000000 0x0 0x0
0xffffc0000000b680 0041 00000000 0x0 0x0
0xffffc0000000b700 0041 00000000 0x0 0x0
0xffffc0000000b780 0041 00000000 0x0 0x0
0xffffc0000000b800 0045 00000000 0x0 0x0
0xffffc0000000b880 0045 00000000 0x0 0x0
0xffffc0000000b900 0041 00000000 0x0 0x0
0xffffc0000000b980 0041 00000000 0x0 0x0
0xffffc0000000ba00 0041 00000000 0x0 0x0
0xffffc0000000ba80 0045 00000000 0x0 0x0
0xffffc0000000bb00 0041 00000000 0x0 0x0
0xffffc0000000bb80 0041 00000000 0x0 0x0
0xffffc0000000bc00 0041 00000000 0x0 0x0
0xffffc0000000bc80 0045 00000000 0x0 0x0
0xffffc0000000bd00 0041 00000000 0x0 0x0
0xffffc0000000bd80 0041 00000000 0x0 0x0
0xffffc0000000be00 0045 00000000 0x0 0x0
0xffffc0000000be80 0041 00000000 0x0 0x0
0xffffc0000000bf00 0041 00000000 0x0 0x0
0xffffc0000000bf80 0041 00000000 0x0 0x0
0xffffc0000000c000 0041 00000000 0x0 0x0
0xffffc0000000c080 0041 00000000 0x0 0x0
0xffffc0000000c100 0041 00000000 0x0 0x0
0xffffc0000000c180 0045 00000000 0x0 0x0
0xffffc0000000c200 0045 00000000 0x0 0x0
0xffffc0000000c280 0041 00000000 0x0 0x0
0xffffc0000000c300 0045 00000000 0x0 0x0
0xffffc0000000c380 0041 00000000 0x0 0x0
0xffffc0000000c400 0041 00000000 0x0 0x0
0xffffc0000000c480 0041 00000000 0x0 0x0
0xffffc0000000c500 0045 00000000 0x0 0x0
0xffffc0000000c580 0045 00000000 0x0 0x0
0xffffc0000000c600 0045 00000000 0x0 0x0
0xffffc0000000c680 0045 00000000 0x0 0x0
0xffffc0000000c700 0041 00000000 0x0 0x0
0xffffc0000000c780 0041 00000000 0x0 0x0
0xffffc0000000c800 0041 00000000 0x0 0x0
0xffffc0000000c880 0041 00000000 0x0 0x0
0xffffc0000000c900 0045 00000000 0x0 0x0
0xffffc0000000c980 0045 00000000 0x0 0x0
0xffffc0000000ca00 0041 00000000 0x0 0x0
0xffffc0000000ca80 0045 00000000 0x0 0x0
0xffffc0000000cb00 0045 00000000 0x0 0x0
0xffffc0000000cb80 0045 00000000 0x0 0x0
0xffffc0000000cc00 0045 00000000 0x0 0x0
0xffffc0000000cc80 0041 00000000 0x0 0x0
0xffffc0000000cd00 0045 00000000 0x0 0x0
0xffffc0000000cd80 0041 00000000 0x0 0x0
0xffffc0000000ce00 0041 00000000 0x0 0x0
0xffffc0000000ce80 0045 00000000 0x0 0x0
0xffffc0000000cf00 0045 00000000 0x0 0x0
0xffffc0000000cf80 0045 00000000 0x0 0x0
0xffffc0000000d000 0045 00000000 0x0 0x0
0xffffc0000000d080 0045 00000000 0x0 0x0
0xffffc0000000d100 0041 00000000 0x0 0x0
0xffffc0000000d180 0041 00000000 0x0 0x0
0xffffc0000000d200 0041 00000000 0x0 0x0
0xffffc0000000d280 0041 00000000 0x0 0x0
0xffffc0000000d300 0045 00000000 0x0 0x0
0xffffc0000000d380 0045 00000000 0x0 0x0
0xffffc0000000d400 0045 00000000 0x0 0x0
0xffffc0000000d480 0045 00000000 0x0 0x0
0xffffc0000000d500 0041 00000000 0x0 0x0
0xffffc0000000d580 0041 00000000 0x0 0x0
0xffffc0000000d600 0041 00000000 0x0 0x0
0xffffc0000000d680 0045 00000000 0x0 0x0
0xffffc0000000d700 0045 00000000 0x0 0x0
0xffffc0000000d780 0045 00000000 0x0 0x0
0xffffc0000000d800 0045 00000000 0x0 0x0
0xffffc0000000d880 0045 00000000 0x0 0x0
0xffffc0000000d900 0041 00000000 0x0 0x0
0xffffc0000000d980 0045 00000000 0x0 0x0
0xffffc0000000da00 0041 00000000 0x0 0x0
0xffffc0000000da80 0041 00000000 0x0 0x0
0xffffc0000000db00 0045 00000000 0x0 0x0
0xffffc0000000db80 0045 00000000 0x0 0x0
0xffffc0000000dc00 0045 00000000 0x0 0x0
0xffffc0000000dc80 0041 00000000 0x0 0x0
0xffffc0000000dd00 0045 00000000 0x0 0x0
0xffffc0000000dd80 0041 00000000 0x0 0x0
0xffffc0000000de00 0045 00000000 0x0 0x0
0xffffc0000000de80 0041 00000000 0x0 0x0
0xffffc0000000df00 0041 00000000 0x0 0x0
0xffffc0000000df80 0041 00000000 0x0 0x0
0xffffc0000000e000 0041 00000000 0x0 0x0
0xffffc0000000e080 0045 00000000 0x0 0x0
0xffffc0000000e100 0041 00000000 0x0 0x0
0xffffc0000000e180 0041 00000000 0x0 0x0
0xffffc0000000e200 0041 00000000 0x0 0x0
0xffffc0000000e280 0041 00000000 0x0 0x0
0xffffc0000000e300 0041 00000000 0x0 0x0
0xffffc0000000e380 0045 00000000 0x0 0x0
0xffffc0000000e400 0045 00000000 0x0 0x0
0xffffc0000000e480 0041 00000000 0x0 0x0
0xffffc0000000e500 0041 00000000 0x0 0x0
0xffffc0000000e580 0045 00000000 0x0 0x0
0xffffc0000000e600 0041 00000000 0x0 0x0
0xffffc0000000e680 0041 00000000 0x0 0x0
0xffffc0000000e700 0041 00000000 0x0 0x0
0xffffc0000000e780 0041 00000000 0x0 0x0
0xffffc0000000e800 0041 00000000 0x0 0x0
0xffffc0000000e880 0041 00000000 0x0 0x0
0xffffc0000000e900 0045 00000000 0x0 0x0
0xffffc0000000e980 0041 00000000 0x0 0x0
0xffffc0000000ea00 0041 00000000 0x0 0x0
0xffffc0000000ea80 0041 00000000 0x0 0x0
0xffffc0000000eb00 0041 00000000 0x0 0x0
0xffffc0000000eb80 0041 00000000 0x0 0x0
0xffffc0000000ec00 0041 00000000 0x0 0x0
0xffffc0000000ec80 0041 00000000 0x0 0x0
0xffffc0000000ed00 0041 00000000 0x0 0x0
0xffffc0000000ed80 0041 00000000 0x0 0x0
0xffffc0000000ee00 0041 00000000 0x0 0x0
0xffffc0000000ee80 0045 00000000 0x0 0x0
0xffffc0000000ef00 0041 00000000 0x0 0x0
0xffffc0000000ef80 0041 00000000 0x0 0x0
0xffffc0000000f000 0041 00000000 0x0 0x0
0xffffc0000000f080 0041 00000000 0x0 0x0
0xffffc0000000f100 0041 00000000 0x0 0x0
0xffffc0000000f180 0041 00000000 0x0 0x0
0xffffc0000000f200 0041 00000000 0x0 0x0
0xffffc0000000f280 0041 00000000 0x0 0x0
0xffffc0000000f300 0041 00000000 0x0 0x0
0xffffc0000000f380 0041 00000000 0x0 0x0
0xffffc0000000f400 0041 00000000 0x0 0x0
0xffffc0000000f480 0041 00000000 0x0 0x0
0xffffc0000000f500 0041 00000000 0x0 0x0
0xffffc0000000f580 0041 00000000 0x0 0x0
0xffffc0000000f600 0041 00000000 0x0 0x0
0xffffc0000000f680 0041 00000000 0x0 0x0
0xffffc0000000f700 0041 00000000 0x0 0x0
0xffffc0000000f780 0041 00000000 0x0 0x0
0xffffc0000000f800 0041 00000000 0x0 0x0
0xffffc0000000f880 0045 00000000 0x0 0x0
0xffffc0000000f900 0041 00000000 0x0 0x0
0xffffc0000000f980 0041 00000000 0x0 0x0
0xffffc0000000fa00 0041 00000000 0x0 0x0
0xffffc0000000fa80 0041 00000000 0x0 0x0
0xffffc0000000fb00 0045 00000000 0x0 0x0
0xffffc0000000fb80 0041 00000000 0x0 0x0
0xffffc0000000fc00 0001 00000000 0x0 0x0
0xffffc0000000fc80 0001 00000000 0x0 0x0
0xffffc0000000fd00 0001 00000000 0x0 0x0
0xffffc0000000fd80 0001 00000000 0x0 0x0
0xffffc0000000fe00 0001 00000000 0x0 0x0
0xffffc0000000fe80 0001 00000000 0x0 0x0
0xffffc0000000ff00 0001 00000000 0x0 0x0
0xffffc0000000ff80 0001 00000000 0x0 0x0
0xffffc00000010000 0001 00000000 0x0 0x0
0xffffc00000010080 0001 00000000 0x0 0x0
0xffffc00000010100 0001 00000000 0x0 0x0
0xffffc00000010180 0001 00000000 0x0 0x0
0xffffc00000010200 0001 00000000 0x0 0x0
0xffffc00000010280 0001 00000000 0x0 0x0
0xffffc00000010300 0001 00000000 0x0 0x0
0xffffc00000010380 0001 00000000 0x0 0x0
0xffffc00000010400 0001 00000000 0x0 0x0
0xffffc00000010480 0001 00000000 0x0 0x0
0xffffc00000010500 0001 00000000 0x0 0x0
0xffffc00000010580 0001 00000000 0x0 0x0
0xffffc00000010600 0001 00000000 0x0 0x0
0xffffc00000010680 0001 00000000 0x0 0x0
0xffffc00000010700 0001 00000000 0x0 0x0
0xffffc00000010780 0001 00000000 0x0 0x0
0xffffc00000010800 0001 00000000 0x0 0x0
0xffffc00000010880 0001 00000000 0x0 0x0
0xffffc00000010900 0001 00000000 0x0 0x0
0xffffc00000010980 0001 00000000 0x0 0x0
0xffffc00000010a00 0001 00000000 0x0 0x0
0xffffc00000010a80 0001 00000000 0x0 0x0
0xffffc00000010b00 0001 00000000 0x0 0x0
0xffffc00000010b80 0001 00000000 0x0 0x0
0xffffc00000010c00 0001 00000000 0x0 0x0
0xffffc00000010c80 0001 00000000 0x0 0x0
0xffffc00000010d00 0001 00000000 0x0 0x0
0xffffc00000010d80 0001 00000000 0x0 0x0
0xffffc00000010e00 0001 00000000 0x0 0x0
0xffffc00000010e80 0001 00000000 0x0 0x0
0xffffc00000010f00 0001 00000000 0x0 0x0
0xffffc00000010f80 0001 00000000 0x0 0x0
0xffffc00000011000 0001 00000000 0x0 0x0
0xffffc00000011080 0001 00000000 0x0 0x0
0xffffc00000011100 0001 00000000 0x0 0x0
0xffffc00000011180 0001 00000000 0x0 0x0
0xffffc00000011200 0001 00000000 0x0 0x0
0xffffc00000011280 0001 00000000 0x0 0x0
0xffffc00000011300 0001 00000000 0x0 0x0
0xffffc00000011380 0001 00000000 0x0 0x0
0xffffc00000011400 0001 00000000 0x0 0x0
0xffffc00000011480 0001 00000000 0x0 0x0
0xffffc00000011500 0001 00000000 0x0 0x0
0xffffc00000011580 0001 00000000 0x0 0x0
0xffffc00000011600 0001 00000000 0x0 0x0
0xffffc00000011680 0001 00000000 0x0 0x0
0xffffc00000011700 0041 00000000 0x0 0x0
0xffffc00000011780 0045 00000000 0x0 0x0
0xffffc00000011800 0041 00000000 0x0 0x0
0xffffc00000011880 0041 00000000 0x0 0x0
0xffffc00000011900 0041 00000000 0x0 0x0
0xffffc00000011980 0041 00000000 0x0 0x0
0xffffc00000011a00 0041 00000000 0x0 0x0
0xffffc00000011a80 0041 00000000 0x0 0x0
0xffffc00000011b00 0041 00000000 0x0 0x0
0xffffc00000011b80 0041 00000000 0x0 0x0
0xffffc00000011c00 0041 00000000 0x0 0x0
0xffffc00000011c80 0041 00000000 0x0 0x0
0xffffc00000011d00 0041 00000000 0x0 0x0
0xffffc00000011d80 0041 00000000 0x0 0x0
0xffffc00000011e00 0041 00000000 0x0 0x0
0xffffc00000011e80 0041 00000000 0x0 0x0
0xffffc00000011f00 0041 00000000 0x0 0x0
0xffffc00000011f80 0041 00000000 0x0 0x0
0xffffc00000012000 0041 00000000 0x0 0x0
0xffffc00000012080 0041 00000000 0x0 0x0
0xffffc00000012100 0041 00000000 0x0 0x0
0xffffc00000012180 0041 00000000 0x0 0x0
0xffffc00000012200 0041 00000000 0x0 0x0
0xffffc00000012280 0041 00000000 0x0 0x0
0xffffc00000012300 0041 00000000 0x0 0x0
0xffffc00000012380 0041 00000000 0x0 0x0
0xffffc00000012400 0041 00000000 0x0 0x0
0xffffc00000012480 0041 00000000 0x0 0x0
0xffffc00000012500 0041 00000000 0x0 0x0
0xffffc00000012580 0041 00000000 0x0 0x0
0xffffc00000012600 0041 00000000 0x0 0x0
0xffffc00000012680 0041 00000000 0x0 0x0
0xffffc00000012700 0041 00000000 0x0 0x0
0xffffc00000012780 0041 00000000 0x0 0x0
0xffffc00000012800 0041 00000000 0x0 0x0
0xffffc00000012880 0041 00000000 0x0 0x0
0xffffc00000012900 0041 00000000 0x0 0x0
0xffffc00000012980 0041 00000000 0x0 0x0
0xffffc00000012a00 0041 00000000 0x0 0x0
0xffffc00000012a80 0041 00000000 0x0 0x0
0xffffc00000012b00 0041 00000000 0x0 0x0
0xffffc00000012b80 0041 00000000 0x0 0x0
0xffffc00000012c00 0041 00000000 0x0 0x0
0xffffc00000012c80 0041 00000000 0x0 0x0
0xffffc00000012d00 0041 00000000 0x0 0x0
0xffffc00000012d80 0041 00000000 0x0 0x0
0xffffc00000012e00 0041 00000000 0x0 0x0
0xffffc00000012e80 0041 00000000 0x0 0x0
0xffffc00000012f00 0041 00000000 0x0 0x0
0xffffc00000012f80 0041 00000000 0x0 0x0
0xffffc00000013000 0001 00000000 0x0 0x0
0xffffc00000013080 0001 00000000 0x0 0x0
0xffffc00000013100 0001 00000000 0x0 0x0
0xffffc00000013180 0001 00000000 0x0 0x0
0xffffc00000013200 0001 00000000 0x0 0x0
0xffffc00000013280 0001 00000000 0x0 0x0
0xffffc00000013300 0001 00000000 0x0 0x0
0xffffc00000013380 0001 00000000 0x0 0x0
0xffffc00000013400 0001 00000000 0x0 0x0
0xffffc00000013480 0001 00000000 0x0 0x0
0xffffc00000013500 0001 00000000 0x0 0x0
0xffffc00000013580 0001 00000000 0x0 0x0
0xffffc00000013600 0001 00000000 0x0 0x0
0xffffc00000013680 0001 00000000 0x0 0x0
0xffffc00000013700 0001 00000000 0x0 0x0
0xffffc00000013780 0001 00000000 0x0 0x0
0xffffc00000013800 0001 00000000 0x0 0x0
0xffffc00000013880 0001 00000000 0x0 0x0
0xffffc00000013900 0001 00000000 0x0 0x0
0xffffc00000013980 0001 00000000 0x0 0x0
0xffffc00000013a00 0001 00000000 0x0 0x0
0xffffc00000013a80 0001 00000000 0x0 0x0
0xffffc00000013b00 0001 00000000 0x0 0x0
0xffffc00000013b80 0001 00000000 0x0 0x0
0xffffc00000013c00 0001 00000000 0x0 0x0
0xffffc00000013c80 0001 00000000 0x0 0x0
0xffffc00000013d00 0001 00000000 0x0 0x0
0xffffc00000013d80 0001 00000000 0x0 0x0
0xffffc00000013e00 0001 00000000 0x0 0x0
0xffffc00000013e80 0001 00000000 0x0 0x0
0xffffc00000013f00 0001 00000000 0x0 0x0
0xffffc00000013f80 0001 00000000 0x0 0x0
0xffffc00000014000 0001 00000000 0x0 0x0
0xffffc00000014080 0001 00000000 0x0 0x0
0xffffc00000014100 0001 00000000 0x0 0x0
0xffffc00000014180 0001 00000000 0x0 0x0
0xffffc00000014200 0001 00000000 0x0 0x0
0xffffc00000014280 0001 00000000 0x0 0x0
0xffffc00000014300 0001 00000000 0x0 0x0
0xffffc00000014380 0001 00000000 0x0 0x0
0xffffc00000014400 0001 00000000 0x0 0x0
0xffffc00000014480 0001 00000000 0x0 0x0
0xffffc00000014500 0001 00000000 0x0 0x0
0xffffc00000014580 0001 00000000 0x0 0x0
0xffffc00000014600 0001 00000000 0x0 0x0
0xffffc00000014680 0001 00000000 0x0 0x0
0xffffc00000014700 0001 00000000 0x0 0x0
0xffffc00000014780 0001 00000000 0x0 0x0
0xffffc00000014800 0001 00000000 0x0 0x0
0xffffc00000014880 0001 00000000 0x0 0x0
0xffffc00000014900 0001 00000000 0x0 0x0
0xffffc00000014980 0001 00000000 0x0 0x0
0xffffc00000014a00 0001 00000000 0x0 0x0
0xffffc00000014a80 0001 00000000 0x0 0x0
0xffffc00000014b00 0041 00000000 0x0 0x0
0xffffc00000014b80 0041 00000000 0x0 0x0
0xffffc00000014c00 0041 00000000 0x0 0x0
0xffffc00000014c80 0041 00000000 0x0 0x0
0xffffc00000014d00 0041 00000000 0x0 0x0
0xffffc00000014d80 0041 00000000 0x0 0x0
0xffffc00000014e00 0041 00000000 0x0 0x0
0xffffc00000014e80 0041 00000000 0x0 0x0
0xffffc00000014f00 0041 00000000 0x0 0x0
0xffffc00000014f80 0041 00000000 0x0 0x0
0xffffc00000015000 0041 00000000 0x0 0x0
0xffffc00000015080 0041 00000000 0x0 0x0
0xffffc00000015100 0041 00000000 0x0 0x0
0xffffc00000015180 0041 00000000 0x0 0x0
0xffffc00000015200 0041 00000000 0x0 0x0
0xffffc00000015280 0041 00000000 0x0 0x0
0xffffc00000015300 0041 00000000 0x0 0x0
0xffffc00000015380 0041 00000000 0x0 0x0
0xffffc00000015400 0041 00000000 0x0 0x0
0xffffc00000015480 0041 00000000 0x0 0x0
0xffffc00000015500 0041 00000000 0x0 0x0
0xffffc00000015580 0041 00000000 0x0 0x0
0xffffc00000015600 0041 00000000 0x0 0x0
0xffffc00000015680 0041 00000000 0x0 0x0
0xffffc00000015700 0041 00000000 0x0 0x0
0xffffc00000015780 0041 00000000 0x0 0x0
0xffffc00000015800 0041 00000000 0x0 0x0
0xffffc00000015880 0041 00000000 0x0 0x0
0xffffc00000015900 0041 00000000 0x0 0x0
0xffffc00000015980 0041 00000000 0x0 0x0
0xffffc00000015a00 0041 00000000 0x0 0x0
0xffffc00000015a80 0041 00000000 0x0 0x0
0xffffc00000015b00 0041 00000000 0x0 0x0
0xffffc00000015b80 0041 00000000 0x0 0x0
0xffffc00000015c00 0041 00000000 0x0 0x0
0xffffc00000015c80 0041 00000000 0x0 0x0
0xffffc00000015d00 0041 00000000 0x0 0x0
0xffffc00000015d80 0041 00000000 0x0 0x0
0xffffc00000015e00 0041 00000000 0x0 0x0
0xffffc00000015e80 0041 00000000 0x0 0x0
0xffffc00000015f00 0041 00000000 0x0 0x0
0xffffc00000015f80 0041 00000000 0x0 0x0
0xffffc00000016000 0041 00000000 0x0 0x0
0xffffc00000016080 0041 00000000 0x0 0x0
0xffffc00000016100 0001 00000000 0x0 0x0
0xffffc00000016180 0001 00000000 0x0 0x0
0xffffc00000016200 0001 00000000 0x0 0x0
0xffffc00000016280 0001 00000000 0x0 0x0
0xffffc00000016300 0001 00000000 0x0 0x0
0xffffc00000016380 0001 00000000 0x0 0x0
0xffffc00000016400 0001 00000000 0x0 0x0
0xffffc00000016480 0001 00000000 0x0 0x0
0xffffc00000016500 0001 00000000 0x0 0x0
0xffffc00000016580 0001 00000000 0x0 0x0
0xffffc00000016600 0001 00000000 0x0 0x0
0xffffc00000016680 0001 00000000 0x0 0x0
0xffffc00000016700 0001 00000000 0x0 0x0
0xffffc00000016780 0001 00000000 0x0 0x0
0xffffc00000016800 0001 00000000 0x0 0x0
0xffffc00000016880 0001 00000000 0x0 0x0
0xffffc00000016900 0001 00000000 0x0 0x0
0xffffc00000016980 0001 00000000 0x0 0x0
0xffffc00000016a00 0001 00000000 0x0 0x0
0xffffc00000016a80 0001 00000000 0x0 0x0
0xffffc00000016b00 0001 00000000 0x0 0x0
0xffffc00000016b80 0001 00000000 0x0 0x0
0xffffc00000016c00 0001 00000000 0x0 0x0
0xffffc00000016c80 0001 00000000 0x0 0x0
0xffffc00000016d00 0001 00000000 0x0 0x0
0xffffc00000016d80 0001 00000000 0x0 0x0
0xffffc00000016e00 0001 00000000 0x0 0x0
0xffffc00000016e80 0001 00000000 0x0 0x0
0xffffc00000016f00 0001 00000000 0x0 0x0
0xffffc00000016f80 0001 00000000 0x0 0x0
0xffffc00000017000 0001 00000000 0x0 0x0
0xffffc00000017080 0001 00000000 0x0 0x0
0xffffc00000017100 0001 00000000 0x0 0x0
0xffffc00000017180 0001 00000000 0x0 0x0
0xffffc00000017200 0001 00000000 0x0 0x0
0xffffc00000017280 0001 00000000 0x0 0x0
0xffffc00000017300 0001 00000000 0x0 0x0
0xffffc00000017380 0001 00000000 0x0 0x0
0xffffc00000017400 0001 00000000 0x0 0x0
0xffffc00000017480 0001 00000000 0x0 0x0
0xffffc00000017500 0001 00000000 0x0 0x0
0xffffc00000017580 0001 00000000 0x0 0x0
0xffffc00000017600 0001 00000000 0x0 0x0
0xffffc00000017680 0001 00000000 0x0 0x0
0xffffc00000017700 0001 00000000 0x0 0x0
0xffffc00000017780 0001 00000000 0x0 0x0
0xffffc00000017800 0001 00000000 0x0 0x0
0xffffc00000017880 0001 00000000 0x0 0x0
0xffffc00000017900 0001 00000000 0x0 0x0
0xffffc00000017980 0001 00000000 0x0 0x0
0xffffc00000017a00 0001 00000000 0x0 0x0
0xffffc00000017a80 0001 00000000 0x0 0x0
0xffffc00000017b00 0001 00000000 0x0 0x0
0xffffc00000017b80 0001 00000000 0x0 0x0
0xffffc00000017c00 0041 00000000 0x0 0x0
0xffffc00000017c80 0041 00000000 0x0 0x0
0xffffc00000017d00 0041 00000000 0x0 0x0
0xffffc00000017d80 0041 00000000 0x0 0x0
0xffffc00000017e00 0045 00000000 0x0 0x0
0xffffc00000017e80 0041 00000000 0x0 0x0
0xffffc00000017f00 0041 00000000 0x0 0x0
0xffffc00000017f80 0041 00000000 0x0 0x0
0xffffc00000018000 0041 00000000 0x0 0x0
0xffffc00000018080 0041 00000000 0x0 0x0
0xffffc00000018100 0041 00000000 0x0 0x0
0xffffc00000018180 0041 00000000 0x0 0x0
0xffffc00000018200 0045 00000000 0x0 0x0
0xffffc00000018280 0041 00000000 0x0 0x0
0xffffc00000018300 0041 00000000 0x0 0x0
0xffffc00000018380 0041 00000000 0x0 0x0
0xffffc00000018400 0041 00000000 0x0 0x0
0xffffc00000018480 0041 00000000 0x0 0x0
0xffffc00000018500 0041 00000000 0x0 0x0
0xffffc00000018580 0045 00000000 0x0 0x0
0xffffc00000018600 0045 00000000 0x0 0x0
0xffffc00000018680 0041 00000000 0x0 0x0
0xffffc00000018700 0041 00000000 0x0 0x0
0xffffc00000018780 0041 00000000 0x0 0x0
0xffffc00000018800 0041 00000000 0x0 0x0
0xffffc00000018880 0041 00000000 0x0 0x0
0xffffc00000018900 0045 00000000 0x0 0x0
0xffffc00000018980 0045 00000000 0x0 0x0
0xffffc00000018a00 0045 00000000 0x0 0x0
0xffffc00000018a80 0041 00000000 0x0 0x0
0xffffc00000018b00 0041 00000000 0x0 0x0
0xffffc00000018b80 0041 00000000 0x0 0x0
0xffffc00000018c00 0041 00000000 0x0 0x0
0xffffc00000018c80 0041 00000000 0x0 0x0
0xffffc00000018d00 0045 00000000 0x0 0x0
0xffffc00000018d80 0045 00000000 0x0 0x0
0xffffc00000018e00 0045 00000000 0x0 0x0
0xffffc00000018e80 0045 00000000 0x0 0x0
0xffffc00000018f00 0041 00000000 0x0 0x0
0xffffc00000018f80 0041 00000000 0x0 0x0
0xffffc00000019000 0041 00000000 0x0 0x0
0xffffc00000019080 0041 00000000 0x0 0x0
0xffffc00000019100 0045 00000000 0x0 0x0
0xffffc00000019180 0045 00000000 0x0 0x0
0xffffc00000019200 0045 00000000 0x0 0x0
0xffffc00000019280 0045 00000000 0x0 0x0
0xffffc00000019300 0045 00000000 0x0 0x0
0xffffc00000019380 0041 00000000 0x0 0x0
0xffffc00000019400 0001 00000000 0x0 0x0
0xffffc00000019480 0001 00000000 0x0 0x0
0xffffc00000019500 0001 00000000 0x0 0x0
0xffffc00000019580 0001 00000000 0x0 0x0
0xffffc00000019600 0001 00000000 0x0 0x0
0xffffc00000019680 0001 00000000 0x0 0x0
0xffffc00000019700 0001 00000000 0x0 0x0
0xffffc00000019780 0001 00000000 0x0 0x0
0xffffc00000019800 0001 00000000 0x0 0x0
0xffffc00000019880 0001 00000000 0x0 0x0
0xffffc00000019900 0001 00000000 0x0 0x0
0xffffc00000019980 0001 00000000 0x0 0x0
0xffffc00000019a00 0001 00000000 0x0 0x0
0xffffc00000019a80 0001 00000000 0x0 0x0
0xffffc00000019b00 0001 00000000 0x0 0x0
0xffffc00000019b80 0001 00000000 0x0 0x0
0xffffc00000019c00 0001 00000000 0x0 0x0
0xffffc00000019c80 0001 00000000 0x0 0x0
0xffffc00000019d00 0001 00000000 0x0 0x0
0xffffc00000019d80 0001 00000000 0x0 0x0
0xffffc00000019e00 0001 00000000 0x0 0x0
0xffffc00000019e80 0001 00000000 0x0 0x0
0xffffc00000019f00 0001 00000000 0x0 0x0
0xffffc00000019f80 0001 00000000 0x0 0x0
0xffffc0000001a000 0001 00000000 0x0 0x0
0xffffc0000001a080 0001 00000000 0x0 0x0
0xffffc0000001a100 0001 00000000 0x0 0x0
0xffffc0000001a180 0001 00000000 0x0 0x0
0xffffc0000001a200 0001 00000000 0x0 0x0
0xffffc0000001a280 0001 00000000 0x0 0x0
0xffffc0000001a300 0001 00000000 0x0 0x0
0xffffc0000001a380 0001 00000000 0x0 0x0
0xffffc0000001a400 0001 00000000 0x0 0x0
0xffffc0000001a480 0001 00000000 0x0 0x0
0xffffc0000001a500 0001 00000000 0x0 0x0
0xffffc0000001a580 0001 00000000 0x0 0x0
0xffffc0000001a600 0001 00000000 0x0 0x0
0xffffc0000001a680 0001 00000000 0x0 0x0
0xffffc0000001a700 0001 00000000 0x0 0x0
0xffffc0000001a780 0001 00000000 0x0 0x0
0xffffc0000001a800 0001 00000000 0x0 0x0
0xffffc0000001a880 0001 00000000 0x0 0x0
0xffffc0000001a900 0001 00000000 0x0 0x0
0xffffc0000001a980 0001 00000000 0x0 0x0
0xffffc0000001aa00 0001 00000000 0x0 0x0
0xffffc0000001aa80 0001 00000000 0x0 0x0
0xffffc0000001ab00 0001 00000000 0x0 0x0
0xffffc0000001ab80 0001 00000000 0x0 0x0
0xffffc0000001ac00 0001 00000000 0x0 0x0
0xffffc0000001ac80 0001 00000000 0x0 0x0
0xffffc0000001ad00 0001 00000000 0x0 0x0
0xffffc0000001ad80 0001 00000000 0x0 0x

---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.

syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.

syzbot

unread,
May 25, 2020, 12:00:14 PM5/25/20
to syzkaller-...@googlegroups.com
syzbot has found a reproducer for the following crash on:

HEAD commit: ed9d23d2 fix KASAN PoolUseAfterFree for async write - can'..
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=118490ee100000
kernel config: https://syzkaller.appspot.com/x/.config?x=f96f14247a94bfe
dashboard link: https://syzkaller.appspot.com/bug?extid=865f88bad4eaebcb2fb2
compiler: g++ (Ubuntu 5.4.0-6ubuntu1~16.04.12) 5.4.0 20160609
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=112c34ba100000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=1666d016100000

IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+865f88...@syzkaller.appspotmail.com

[ 41.5858432] panic: UBSan: Undefined Behavior in /syzkaller/managers/netbsd-kubsan/kernel/sys/net/rtsock_shared.c:667:41, member access within misaligned address 0xffff86691882918c for type 'struct rt_msghdr50' which requires 8 byte alignment

[ 41.5958314] cpu1: Begin traceback...
[ 41.6058322] vpanic() at netbsd:vpanic+0x287 sys/kern/subr_prf.c:290
[ 41.6258339] isAlreadyReported() at netbsd:isAlreadyReported
[ 41.6458342] HandleTypeMismatch.part.1() at netbsd:HandleTypeMismatch.part.1+0xae
[ 41.6758337] HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x63 sys/../common/lib/libc/misc/ubsan.c:434
[ 41.6958359] compat_50_route_output() at netbsd:compat_50_route_output+0x1a5c sys/net/rtsock_shared.c:667
[ 41.7258340] raw_send() at netbsd:raw_send+0x1c9 sys/net/raw_usrreq.c:182
[ 41.7458324] compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0xa0 compat_50_route_send sys/net/rtsock_shared.c:500 [inline]
[ 41.7458324] compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0xa0 sys/net/rtsock_shared.c:1740
[ 41.7758325] sosend() at netbsd:sosend+0x1554 sys/kern/uipc_socket.c:1059
[ 41.7958326] soo_write() at netbsd:soo_write+0x75 sys/kern/sys_socket.c:122
[ 41.8158377] dofilewrite() at netbsd:dofilewrite+0x124 sys/kern/sys_generic.c:350
[ 41.8458329] sys_write() at netbsd:sys_write+0xc2 sys/kern/sys_generic.c:318
[ 41.8658337] sys_syscall() at netbsd:sys_syscall+0x1b5 sy_call sys/sys/syscallvar.h:65 [inline]
[ 41.8658337] sys_syscall() at netbsd:sys_syscall+0x1b5 sys/kern/sys_syscall.c:77
[ 41.8958351] syscall() at netbsd:syscall+0x287 sy_call sys/sys/syscallvar.h:65 [inline]
[ 41.8958351] syscall() at netbsd:syscall+0x287 sy_invoke sys/sys/syscallvar.h:94 [inline]
[ 41.8958351] syscall() at netbsd:syscall+0x287 sys/arch/x86/x86/syscall.c:138
[ 41.8958351] --- syscall (number 0) ---
[ 41.9058326] netbsd:syscall+0x287:
[ 41.9158324] cpu1: End traceback...
[ 41.9158324] fatal breakpoint trap in supervisor mode
[ 41.9258291] trap type 1 code 0 rip 0xffffffff80221a45 cs 0x8 rflags 0x246 cr2 0x20000000 ilevel 0x4 rsp 0xffff9b00b839c540
[ 41.9358327] curlwp 0xffff86691a8f4900 pid 692.692 lowest kstack 0xffff9b00b83992c0
Stopped in pid 692.692 (syz-executor3343) at netbsd:breakpoint+0x5: leave
?
breakpoint() at netbsd:breakpoint+0x5
db_panic() at netbsd:db_panic+0xd1 sys/ddb/db_panic.c:67
vpanic() at netbsd:vpanic+0x287 sys/kern/subr_prf.c:290
isAlreadyReported() at netbsd:isAlreadyReported
HandleTypeMismatch.part.1() at netbsd:HandleTypeMismatch.part.1+0xae
HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x63 sys/../common/lib/libc/misc/ubsan.c:434
compat_50_route_output() at netbsd:compat_50_route_output+0x1a5c sys/net/rtsock_shared.c:667
raw_send() at netbsd:raw_send+0x1c9 sys/net/raw_usrreq.c:182
compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0xa0 compat_50_route_send sys/net/rtsock_shared.c:500 [inline]
compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0xa0 sys/net/rtsock_shared.c:1740
sosend() at netbsd:sosend+0x1554 sys/kern/uipc_socket.c:1059
soo_write() at netbsd:soo_write+0x75 sys/kern/sys_socket.c:122
dofilewrite() at netbsd:dofilewrite+0x124 sys/kern/sys_generic.c:350
sys_write() at netbsd:sys_write+0xc2 sys/kern/sys_generic.c:318
sys_syscall() at netbsd:sys_syscall+0x1b5 sy_call sys/sys/syscallvar.h:65 [inline]
sys_syscall() at netbsd:sys_syscall+0x1b5 sys/kern/sys_syscall.c:77
syscall() at netbsd:syscall+0x287 sy_call sys/sys/syscallvar.h:65 [inline]
syscall() at netbsd:syscall+0x287 sy_invoke sys/sys/syscallvar.h:94 [inline]
syscall() at netbsd:syscall+0x287 sys/arch/x86/x86/syscall.c:138
--- syscall (number 0) ---
netbsd:syscall+0x287:
ds df
es c500
fs c550
gs 10
rdi 4
rsi 2d5
rbp ffff9b00b839c540
rbx ffff9b00a65b9000
rdx ffff86691a8f4d08
rcx 4
rax ffffffff
r8 ffff9b00a65b9000
r9 0
r10 ffff9b00b839bba0
r11 10
r12 ffffffff83c727f8
r13 ffff9b00b839c5b8
r14 104
r15 ffffffff85b9d5a0 pool_head+0x560
rip ffffffff80221a45 breakpoint+0x5
cs 8
rflags 246
rsp ffff9b00b839c540
ss 10
netbsd:breakpoint+0x5: leave
PID LID S CPU FLAGS STRUCT LWP * NAME WAIT
692 > 692 7 1 0 ffff86691a8f4900 syz-executor3343
1400 1400 2 0 0 ffff86691a8f44c0 syz-executor3343
712 712 2 0 0 ffff866918153a80 syz-executor3343
591 591 2 0 0 ffff86691947ab80 syz-executor3343
673 673 3 1 80 ffff866917d56600 syz-executor3343 nanoslp
683 683 2 0 0 ffff86691947a740 syz-executor3343
691 691 2 0 0 ffff866917a515c0 syz-executor3343
688 688 3 1 80 ffff86691664a6c0 syz-executor3343 nanoslp
723 723 3 0 80 ffff866917a51a00 syz-executor3343 nanoslp
686 686 3 1 80 ffff86691664ab00 syz-executor3343 nanoslp
566 566 3 1 80 ffff866918d45b40 syz-executor3343 nanoslp
687 687 3 0 80 ffff86691a8f4080 syz-executor3343 nanoslp
682 > 682 7 0 40000 ffff8669195febc0 sshd
671 671 3 0 80 ffff866919e20040 getty nanoslp
1310 1310 3 1 80 ffff86691947a300 getty nanoslp
861 861 3 1 80 ffff866919e20480 getty nanoslp
668 668 3 0 c0 ffff866917a51180 getty ttyraw
709 709 3 0 80 ffff8669195fe780 cron nanoslp
716 716 3 1 80 ffff866918d45700 inetd kqueue
1271 1271 3 0 80 ffff866919e208c0 sshd select
601 601 3 0 80 ffff8669195fe340 powerd kqueue
458 458 3 0 80 ffff866917d561c0 syslogd kqueue
300 300 3 0 80 ffff866918153200 dhcpcd kqueue
333 333 3 0 80 ffff866917790980 dhcpcd kqueue
1 1 3 0 80 ffff8669166e4500 init wait
0 448 3 0 200 ffff8669177dc140 physiod physiod
0 117 3 0 200 ffff8669177dc9c0 ioflush syncer
0 116 3 0 200 ffff8669166412c0 pooldrain pooldrain
0 115 3 1 200 ffff8669177dc580 pgdaemon pgdaemon
0 112 3 0 200 ffff866917790540 usb0 usbevt
0 111 3 1 200 ffff866917790100 usbtask-dr usbtsk
0 110 3 1 200 ffff8669166e4940 usbtask-hc usbtsk
0 109 3 0 200 ffff866913b2cac0 npfgc-0 npfgccv
0 108 3 1 200 ffff8669166e40c0 rt_free rt_free
0 107 3 1 200 ffff8669166e5900 unpgc unpgc
0 106 3 0 200 ffff8669166e54c0 key_timehandler key_timehandler
0 105 3 1 200 ffff8669166e5080 icmp6_wqinput/1 icmp6_wqinput
0 104 3 0 200 ffff8669166d68c0 icmp6_wqinput/0 icmp6_wqinput
0 103 3 0 200 ffff8669166d6480 nd6_timer nd6_timer
0 102 3 1 200 ffff8669166d6040 carp6_wqinput/1 carp6_wqinput
0 101 3 0 200 ffff8669166afbc0 carp6_wqinput/0 carp6_wqinput
0 100 3 1 200 ffff8669166af780 carp_wqinput/1 carp_wqinput
0 99 3 0 200 ffff8669166af340 carp_wqinput/0 carp_wqinput
0 98 3 1 200 ffff866916690b80 icmp_wqinput/1 icmp_wqinput
0 97 3 0 200 ffff866916690740 icmp_wqinput/0 icmp_wqinput
0 96 3 0 200 ffff866916690300 rt_timer rt_timer
0 125 3 0 200 ffff866916641b40 vmem_rehash vmem_rehash
0 95 3 0 200 ffff866916641700 entbutler entropy
0 27 3 0 200 ffff866913b2c680 scsibus0 sccomp
0 26 3 1 200 ffff866913b2c240 pms0 pmsreset
0 25 3 1 200 ffff866913a97a80 xcall/1 xcall
0 24 1 1 200 ffff866913a97640 softser/1
0 23 1 1 200 ffff866913a97200 softclk/1
0 22 1 1 200 ffff866913a67a40 softbio/1
0 21 1 1 200 ffff866913a67600 softnet/1
0 20 1 1 201 ffff866913a671c0 idle/1
0 19 3 1 200 ffff866a23986a00 lnxpwrwq lnxpwrwq
0 18 3 1 200 ffff866a239865c0 lnxlngwq lnxlngwq
0 17 3 1 200 ffff866a23986180 lnxsyswq lnxsyswq
0 16 3 0 200 ffff866a239a19c0 lnxrcugc lnxrcugc
0 15 3 1 200 ffff866a239a1580 sysmon smtaskq
0 14 3 0 200 ffff866a239a1140 pmfsuspend pmfsuspend
0 13 3 1 200 ffff866a239b0980 pmfevent pmfevent
0 12 3 1 200 ffff866a239b0540 sopendfree sopendfr
0 11 3 0 200 ffff866a239b0100 iflnkst iflnkst
0 10 3 0 200 ffff866a249dd940 nfssilly nfssilly
0 9 3 0 200 ffff866a249dd500 vdrain vdrain
0 8 3 1 200 ffff866a249dd0c0 modunload mod_unld
0 7 3 0 200 ffff866a24a0c900 xcall/0 xcall
0 6 1 0 200 ffff866a24a0c4c0 softser/0
0 5 1 0 200 ffff866a24a0c080 softclk/0
0 4 1 0 200 ffff866a24a398c0 softbio/0
0 > 3 7 0 200 ffff866a24a39480 softnet/0
0 2 1 0 201 ffff866a24a39040 idle/0
0 0 3 0 200 ffffffff85af1480 swapper uvm
[Locks tracked through LWPs]

****** LWP 692.692 (syz-executor3343) @ 0xffff86691a8f4900, l_stat=7

*** Locks held:

* Lock 0 (initialized at soinit)
lock address : 0xffff866a24ebc080 type : sleep/adaptive
initialized : 0xffffffff8321b08f
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffff86691a8f4900 last held: 0xffff86691a8f4900
last locked* : 0xffffffff83218ea4 unlocked : 0xffffffff83218f3f
owner field : 0xffff86691a8f4900 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 0.11 (iflnkst) @ 0xffff866a239b0100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff85eee340 type : sleep/adaptive
initialized : 0xffffffff8301bc2f
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffff866a239b0100 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffff866a24a0c080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at module_hook_init)
lock address : 0xffffffff85eee340 type : sleep/adaptive
initialized : 0xffffffff8301bc2f
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffff866a24a0c080 last held: 000000000000000000
last locked : 000000000000000000 unlocked*: 000000000000000000
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.3 (softnet/0) @ 0xffff866a24a39480, l_stat=7

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at main)
lock address : 0xffffffff85eee240 type : spin
initialized : 0xffffffff83799cf0
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 2
relevant cpu : 0 last held: 1
relevant lwp : 0xffff866a24a39480 last held: 0xffff86691a8f4900
last locked* : 0xffffffff821bb937 unlocked : 0xffffffff80ec0b25
curcpu holds : 1 wanted by: 000000000000000000

[Locks tracked through CPUs]

******* Locks held on cpu1:

* Lock 0 (initialized at main)
lock address : 0xffffffff85eee240 type : spin
initialized : 0xffffffff83799cf0
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 2
relevant cpu : 1 last held: 1
relevant lwp : 0xffff86691a8f4900 last held: 0xffff86691a8f4900
last locked* : 0xffffffff821bb937 unlocked : 0xffffffff80ec0b25
curcpu holds : 1 wanted by: 000000000000000000

PAGE FLAG PQ UOBJECT UANON
0xffff9b0000006180 0045 00000000 0x0 0x0
0xffff9b0000006200 0045 00000000 0x0 0x0
0xffff9b0000006280 0045 00000000 0x0 0x0
0xffff9b0000006300 0045 00000000 0x0 0x0
0xffff9b0000006380 0045 00000000 0x0 0x0
0xffff9b0000006400 0045 00000000 0x0 0x0
0xffff9b0000006480 0045 00000000 0x0 0x0
0xffff9b0000006500 0045 00000000 0x0 0x0
0xffff9b0000006580 0041 00000000 0x0 0x0
0xffff9b0000006600 0041 00000000 0x0 0x0
0xffff9b0000006680 0041 00000000 0x0 0x0
0xffff9b0000006700 0041 00000000 0x0 0x0
0xffff9b0000006780 0041 00000000 0x0 0x0
0xffff9b0000006800 0045 00000000 0x0 0x0
0xffff9b0000006880 0041 00000000 0x0 0x0
0xffff9b0000006900 0041 00000000 0x0 0x0
0xffff9b0000006980 0041 00000000 0x0 0x0
0xffff9b0000006a00 0041 00000000 0x0 0x0
0xffff9b0000006a80 0041 00000000 0x0 0x0
0xffff9b0000006b00 0041 00000000 0x0 0x0
0xffff9b0000006b80 0041 00000000 0x0 0x0
0xffff9b0000006c00 0041 00000000 0x0 0x0
0xffff9b0000006c80 0041 00000000 0x0 0x0
0xffff9b0000006d00 0041 00000000 0x0 0x0
0xffff9b0000006d80 0041 00000000 0x0 0x0
0xffff9b0000006e00 0041 00000000 0x0 0x0
0xffff9b0000006e80 0041 00000000 0x0 0x0
0xffff9b0000006f00 0041 00000000 0x0 0x0
0xffff9b0000006f80 0041 00000000 0x0 0x0
0xffff9b0000007000 0041 00000000 0x0 0x0
0xffff9b0000007080 0041 00000000 0x0 0x0
0xffff9b0000007100 0041 00000000 0x0 0x0
0xffff9b0000007180 0041 00000000 0x0 0x0
0xffff9b0000007200 0041 00000000 0x0 0x0
0xffff9b0000007280 0041 00000000 0x0 0x0
0xffff9b0000007300 0041 00000000 0x0 0x0
0xffff9b0000007380 0041 00000000 0x0 0x0
0xffff9b0000007400 0041 00000000 0x0 0x0
0xffff9b0000007480 0041 00000000 0x0 0x0
0xffff9b0000007500 0041 00000000 0x0 0x0
0xffff9b0000007580 0041 00000000 0x0 0x0
0xffff9b0000007600 0041 00000000 0x0 0x0
0xffff9b0000007680 0041 00000000 0x0 0x0
0xffff9b0000007700 0045 00000000 0x0 0x0
0xffff9b0000007780 0045 00000000 0x0 0x0
0xffff9b0000007800 0041 00000000 0x0 0x0
0xffff9b0000007880 0041 00000000 0x0 0x0
0xffff9b0000007900 0041 00000000 0x0 0x0
0xffff9b0000007980 0041 00000000 0x0 0x0
0xffff9b0000007a00 0041 00000000 0x0 0x0
0xffff9b0000007a80 0041 00000000 0x0 0x0
0xffff9b0000007b00 0041 00000000 0x0 0x0
0xffff9b0000007b80 0041 00000000 0x0 0x0
0xffff9b0000007c00 0041 00000000 0x0 0x0
0xffff9b0000007c80 0041 00000000 0x0 0x0
0xffff9b0000007d00 0041 00000000 0x0 0x0
0xffff9b0000007d80 0041 00000000 0x0 0x0
0xffff9b0000007e00 0041 00000000 0x0 0x0
0xffff9b0000007e80 0041 00000000 0x0 0x0
0xffff9b0000007f00 0041 00000000 0x0 0x0
0xffff9b0000007f80 0041 00000000 0x0 0x0
0xffff9b0000008000 0041 00000000 0x0 0x0
0xffff9b0000008080 0041 00000000 0x0 0x0
0xffff9b0000008100 0041 00000000 0x0 0x0
0xffff9b0000008180 0041 00000000 0x0 0x0
0xffff9b0000008200 0041 00000000 0x0 0x0
0xffff9b0000008280 0041 00000000 0x0 0x0
0xffff9b0000008300 0041 00000000 0x0 0x0
0xffff9b0000008380 0041 00000000 0x0 0x0
0xffff9b0000008400 0041 00000000 0x0 0x0
0xffff9b0000008480 0041 00000000 0x0 0x0
0xffff9b0000008500 0041 00000000 0x0 0x0
0xffff9b0000008580 0041 00000000 0x0 0x0
0xffff9b0000008600 0041 00000000 0x0 0x0
0xffff9b0000008680 0041 00000000 0x0 0x0
0xffff9b0000008700 0041 00000000 0x0 0x0
0xffff9b0000008780 0041 00000000 0x0 0x0
0xffff9b0000008800 0041 00000000 0x0 0x0
0xffff9b0000008880 0041 00000000 0x0 0x0
0xffff9b0000008900 0041 00000000 0x0 0x0
0xffff9b0000008980 0041 00000000 0x0 0x0
0xffff9b0000008a00 0041 00000000 0x0 0x0
0xffff9b0000008a80 0041 00000000 0x0 0x0
0xffff9b0000008b00 0041 00000000 0x0 0x0
0xffff9b0000008b80 0041 00000000 0x0 0x0
0xffff9b0000008c00 0041 00000000 0x0 0x0
0xffff9b0000008c80 0045 00000000 0x0 0x0
0xffff9b0000008d00 0041 00000000 0x0 0x0
0xffff9b0000008d80 0041 00000000 0x0 0x0
0xffff9b0000008e00 0041 00000000 0x0 0x0
0xffff9b0000008e80 0041 00000000 0x0 0x0
0xffff9b0000008f00 0045 00000000 0x0 0x0
0xffff9b0000008f80 0041 00000000 0x0 0x0
0xffff9b0000009000 0041 00000000 0x0 0x0
0xffff9b0000009080 0041 00000000 0x0 0x0
0xffff9b0000009100 0041 00000000 0x0 0x0
0xffff9b0000009180 0041 00000000 0x0 0x0
0xffff9b0000009200 0041 00000000 0x0 0x0
0xffff9b0000009280 0041 00000000 0x0 0x0
0xffff9b0000009300 0041 00000000 0x0 0x0
0xffff9b0000009380 0041 00000000 0x0 0x0
0xffff9b0000009400 0041 00000000 0x0 0x0
0xffff9b0000009480 0041 00000000 0x0 0x0
0xffff9b0000009500 0041 00000000 0x0 0x0
0xffff9b0000009580 0041 00000000 0x0 0x0
0xffff9b0000009600 0041 00000000 0x0 0x0
0xffff9b0000009680 0041 00000000 0x0 0x0
0xffff9b0000009700 0041 00000000 0x0 0x0
0xffff9b0000009780 0041 00000000 0x0 0x0
0xffff9b0000009800 0041 00000000 0x0 0x0
0xffff9b0000009880 0041 00000000 0x0 0x0
0xffff9b0000009900 0041 00000000 0x0 0x0
0xffff9b0000009980 0041 00000000 0x0 0x0
0xffff9b0000009a00 0045 00000000 0x0 0x0
0xffff9b0000009a80 0041 00000000 0x0 0x0
0xffff9b0000009b00 0041 00000000 0x0 0x0
0xffff9b0000009b80 0041 00000000 0x0 0x0
0xffff9b0000009c00 0041 00000000 0x0 0x0
0xffff9b0000009c80 0041 00000000 0x0 0x0
0xffff9b0000009d00 0041 00000000 0x0 0x0
0xffff9b0000009d80 0045 00000000 0x0 0x0
0xffff9b0000009e00 0045 00000000 0x0 0x0
0xffff9b0000009e80 0045 00000000 0x0 0x0
0xffff9b0000009f00 0041 00000000 0x0 0x0
0xffff9b0000009f80 0041 00000000 0x0 0x0
0xffff9b000000a000 0041 00000000 0x0 0x0
0xffff9b000000a080 0041 00000000 0x0 0x0
0xffff9b000000a100 0045 00000000 0x0 0x0
0xffff9b000000a180 0045 00000000 0x0 0x0
0xffff9b000000a200 0045 00000000 0x0 0x0
0xffff9b000000a280 0045 00000000 0x0 0x0
0xffff9b000000a300 0041 00000000 0x0 0x0
0xffff9b000000a380 0041 00000000 0x0 0x0
0xffff9b000000a400 0041 00000000 0x0 0x0
0xffff9b000000a480 0041 00000000 0x0 0x0
0xffff9b000000a500 0045 00000000 0x0 0x0
0xffff9b000000a580 0045 00000000 0x0 0x0
0xffff9b000000a600 0045 00000000 0x0 0x0
0xffff9b000000a680 0045 00000000 0x0 0x0
0xffff9b000000a700 0045 00000000 0x0 0x0
0xffff9b000000a780 0045 00000000 0x0 0x0
0xffff9b000000a800 0045 00000000 0x0 0x0
0xffff9b000000a880 0041 00000000 0x0 0x0
0xffff9b000000a900 0045 00000000 0x0 0x0
0xffff9b000000a980 0045 00000000 0x0 0x0
0xffff9b000000aa00 0041 00000000 0x0 0x0
0xffff9b000000aa80 0045 00000000 0x0 0x0
0xffff9b000000ab00 0045 00000000 0x0 0x0
0xffff9b000000ab80 0045 00000000 0x0 0x0
0xffff9b000000ac00 0045 00000000 0x0 0x0
0xffff9b000000ac80 0045 00000000 0x0 0x0
0xffff9b000000ad00 0045 00000000 0x0 0x0
0xffff9b000000ad80 0041 00000000 0x0 0x0
0xffff9b000000ae00 0041 00000000 0x0 0x0
0xffff9b000000ae80 0041 00000000 0x0 0x0
0xffff9b000000af00 0045 00000000 0x0 0x0
0xffff9b000000af80 0045 00000000 0x0 0x0
0xffff9b000000b000 0045 00000000 0x0 0x0
0xffff9b000000b080 0045 00000000 0x0 0x0
0xffff9b000000b100 0041 00000000 0x0 0x0
0xffff9b000000b180 0041 00000000 0x0 0x0
0xffff9b000000b200 0041 00000000 0x0 0x0
0xffff9b000000b280 0041 00000000 0x0 0x0
0xffff9b000000b300 0045 00000000 0x0 0x0
0xffff9b000000b380 0045 00000000 0x0 0x0
0xffff9b000000b400 0045 00000000 0x0 0x0
0xffff9b000000b480 0045 00000000 0x0 0x0
0xffff9b000000b500 0041 00000000 0x0 0x0
0xffff9b000000b580 0041 00000000 0x0 0x0
0xffff9b000000b600 0041 00000000 0x0 0x0
0xffff9b000000b680 0041 00000000 0x0 0x0
0xffff9b000000b700 0041 00000000 0x0 0x0
0xffff9b000000b780 0041 00000000 0x0 0x0
0xffff9b000000b800 0045 00000000 0x0 0x0
0xffff9b000000b880 0045 00000000 0x0 0x0
0xffff9b000000b900 0041 00000000 0x0 0x0
0xffff9b000000b980 0041 00000000 0x0 0x0
0xffff9b000000ba00 0041 00000000 0x0 0x0
0xffff9b000000ba80 0045 00000000 0x0 0x0
0xffff9b000000bb00 0041 00000000 0x0 0x0
0xffff9b000000bb80 0041 00000000 0x0 0x0
0xffff9b000000bc00 0041 00000000 0x0 0x0
0xffff9b000000bc80 0045 00000000 0x0 0x0
0xffff9b000000bd00 0041 00000000 0x0 0x0
0xffff9b000000bd80 0041 00000000 0x0 0x0
0xffff9b000000be00 0045 00000000 0x0 0x0
0xffff9b000000be80 0041 00000000 0x0 0x0
0xffff9b000000bf00 0041 00000000 0x0 0x0
0xffff9b000000bf80 0041 00000000 0x0 0x0
0xffff9b000000c000 0041 00000000 0x0 0x0
0xffff9b000000c080 0041 00000000 0x0 0x0
0xffff9b000000c100 0041 00000000 0x0 0x0
0xffff9b000000c180 0045 00000000 0x0 0x0
0xffff9b000000c200 0045 00000000 0x0 0x0
0xffff9b000000c280 0041 00000000 0x0 0x0
0xffff9b000000c300 0045 00000000 0x0 0x0
0xffff9b000000c380 0041 00000000 0x0 0x0
0xffff9b000000c400 0041 00000000 0x0 0x0
0xffff9b000000c480 0041 00000000 0x0 0x0
0xffff9b000000c500 0045 00000000 0x0 0x0
0xffff9b000000c580 0045 00000000 0x0 0x0
0xffff9b000000c600 0045 00000000 0x0 0x0
0xffff9b000000c680 0045 00000000 0x0 0x0
0xffff9b000000c700 0041 00000000 0x0 0x0
0xffff9b000000c780 0041 00000000 0x0 0x0
0xffff9b000000c800 0041 00000000 0x0 0x0
0xffff9b000000c880 0041 00000000 0x0 0x0
0xffff9b000000c900 0045 00000000 0x0 0x0
0xffff9b000000c980 0045 00000000 0x0 0x0
0xffff9b000000ca00 0041 00000000 0x0 0x0
0xffff9b000000ca80 0045 00000000 0x0 0x0
0xffff9b000000cb00 0045 00000000 0x0 0x0
0xffff9b000000cb80 0045 00000000 0x0 0x0
0xffff9b000000cc00 0045 00000000 0x0 0x0
0xffff9b000000cc80 0041 00000000 0x0 0x0
0xffff9b000000cd00 0045 00000000 0x0 0x0
0xffff9b000000cd80 0041 00000000 0x0 0x0
0xffff9b000000ce00 0041 00000000 0x0 0x0
0xffff9b000000ce80 0045 00000000 0x0 0x0
0xffff9b000000cf00 0045 00000000 0x0 0x0
0xffff9b000000cf80 0045 00000000 0x0 0x0
0xffff9b000000d000 0045 00000000 0x0 0x0
0xffff9b000000d080 0045 00000000 0x0 0x0
0xffff9b000000d100 0041 00000000 0x0 0x0
0xffff9b000000d180 0041 00000000 0x0 0x0
0xffff9b000000d200 0041 00000000 0x0 0x0
0xffff9b000000d280 0041 00000000 0x0 0x0
0xffff9b000000d300 0045 00000000 0x0 0x0
0xffff9b000000d380 0045 00000000 0x0 0x0
0xffff9b000000d400 0045 00000000 0x0 0x0
0xffff9b000000d480 0045 00000000 0x0 0x0
0xffff9b000000d500 0041 00000000 0x0 0x0
0xffff9b000000d580 0041 00000000 0x0 0x0
0xffff9b000000d600 0041 00000000 0x0 0x0
0xffff9b000000d680 0045 00000000 0x0 0x0
0xffff9b000000d700 0045 00000000 0x0 0x0
0xffff9b000000d780 0045 00000000 0x0 0x0
0xffff9b000000d800 0045 00000000 0x0 0x0
0xffff9b000000d880 0045 00000000 0x0 0x0
0xffff9b000000d900 0041 00000000 0x0 0x0
0xffff9b000000d980 0045 00000000 0x0 0x0
0xffff9b000000da00 0041 00000000 0x0 0x0
0xffff9b000000da80 0041 00000000 0x0 0x0
0xffff9b000000db00 0045 00000000 0x0 0x0
0xffff9b000000db80 0045 00000000 0x0 0x0
0xffff9b000000dc00 0045 00000000 0x0 0x0
0xffff9b000000dc80 0041 00000000 0x0 0x0
0xffff9b000000dd00 0045 00000000 0x0 0x0
0xffff9b000000dd80 0041 00000000 0x0 0x0
0xffff9b000000de00 0045 00000000 0x0 0x0
0xffff9b000000de80 0041 00000000 0x0 0x0
0xffff9b000000df00 0041 00000000 0x0 0x0
0xffff9b000000df80 0041 00000000 0x0 0x0
0xffff9b000000e000 0041 00000000 0x0 0x0
0xffff9b000000e080 0045 00000000 0x0 0x0
0xffff9b000000e100 0041 00000000 0x0 0x0
0xffff9b000000e180 0041 00000000 0x0 0x0
0xffff9b000000e200 0041 00000000 0x0 0x0
0xffff9b000000e280 0041 00000000 0x0 0x0
0xffff9b000000e300 0041 00000000 0x0 0x0
0xffff9b000000e380 0045 00000000 0x0 0x0
0xffff9b000000e400 0045 00000000 0x0 0x0
0xffff9b000000e480 0041 00000000 0x0 0x0
0xffff9b000000e500 0041 00000000 0x0 0x0
0xffff9b000000e580 0045 00000000 0x0 0x0
0xffff9b000000e600 0041 00000000 0x0 0x0
0xffff9b000000e680 0041 00000000 0x0 0x0
0xffff9b000000e700 0041 00000000 0x0 0x0
0xffff9b000000e780 0041 00000000 0x0 0x0
0xffff9b000000e800 0041 00000000 0x0 0x0
0xffff9b000000e880 0041 00000000 0x0 0x0
0xffff9b000000e900 0045 00000000 0x0 0x0
0xffff9b000000e980 0041 00000000 0x0 0x0
0xffff9b000000ea00 0041 00000000 0x0 0x0
0xffff9b000000ea80 0041 00000000 0x0 0x0
0xffff9b000000eb00 0041 00000000 0x0 0x0
0xffff9b000000eb80 0041 00000000 0x0 0x0
0xffff9b000000ec00 0041 00000000 0x0 0x0
0xffff9b000000ec80 0041 00000000 0x0 0x0
0xffff9b000000ed00 0041 00000000 0x0 0x0
0xffff9b000000ed80 0041 00000000 0x0 0x0
0xffff9b000000ee00 0041 00000000 0x0 0x0
0xffff9b000000ee80 0045 00000000 0x0 0x0
0xffff9b000000ef00 0041 00000000 0x0 0x0
0xffff9b000000ef80 0041 00000000 0x0 0x0
0xffff9b000000f000 0041 00000000 0x0 0x0
0xffff9b000000f080 0041 00000000 0x0 0x0
0xffff9b000000f100 0041 00000000 0x0 0x0
0xffff9b000000f180 0041 00000000 0x0 0x0
0xffff9b000000f200 0041 00000000 0x0 0x0
0xffff9b000000f280 0041 00000000 0x0 0x0
0xffff9b000000f300 0041 00000000 0x0 0x0
0xffff9b000000f380 0041 00000000 0x0 0x0
0xffff9b000000f400 0041 00000000 0x0 0x0
0xffff9b000000f480 0041 00000000 0x0 0x0
0xffff9b000000f500 0041 00000000 0x0 0x0
0xffff9b000000f580 0041 00000000 0x0 0x0
0xffff9b000000f600 0041 00000000 0x0 0x0
0xffff9b000000f680 0041 00000000 0x0 0x0
0xffff9b000000f700 0041 00000000 0x0 0x0
0xffff9b000000f780 0041 00000000 0x0 0x0
0xffff9b000000f800 0041 00000000 0x0 0x0
0xffff9b000000f880 0045 00000000 0x0 0x0
0xffff9b000000f900 0041 00000000 0x0 0x0
0xffff9b000000f980 0041 00000000 0x0 0x0
0xffff9b000000fa00 0041 00000000 0x0 0x0
0xffff9b000000fa80 0041 00000000 0x0 0x0
0xffff9b000000fb00 0045 00000000 0x0 0x0
0xffff9b000000fb80 0041 00000000 0x0 0x0
0xffff9b000000fc00 0001 00000000 0x0 0x0
0xffff9b000000fc80 0001 00000000 0x0 0x0
0xffff9b000000fd00 0001 00000000 0x0 0x0
0xffff9b000000fd80 0001 00000000 0x0 0x0
0xffff9b000000fe00 0001 00000000 0x0 0x0
0xffff9b000000fe80 0001 00000000 0x0 0x0
0xffff9b000000ff00 0001 00000000 0x0 0x0
0xffff9b000000ff80 0001 00000000 0x0 0x0
0xffff9b0000010000 0001 00000000 0x0 0x0
0xffff9b0000010080 0001 00000000 0x0 0x0
0xffff9b0000010100 0001 00000000 0x0 0x0
0xffff9b0000010180 0001 00000000 0x0 0x0
0xffff9b0000010200 0001 00000000 0x0 0x0
0xffff9b0000010280 0001 00000000 0x0 0x0
0xffff9b0000010300 0001 00000000 0x0 0x0
0xffff9b0000010380 0001 00000000 0x0 0x0
0xffff9b0000010400 0001 00000000 0x0 0x0
0xffff9b0000010480 0001 00000000 0x0 0x0
0xffff9b0000010500 0001 00000000 0x0 0x0
0xffff9b0000010580 0001 00000000 0x0 0x0
0xffff9b0000010600 0001 00000000 0x0 0x0
0xffff9b0000010680 0001 00000000 0x0 0x0
0xffff9b0000010700 0001 00000000 0x0 0x0
0xffff9b0000010780 0001 00000000 0x0 0x0
0xffff9b0000010800 0001 00000000 0x0 0x0
0xffff9b0000010880 0001 00000000 0x0 0x0
0xffff9b0000010900 0001 00000000 0x0 0x0
0xffff9b0000010980 0001 00000000 0x0 0x0
0xffff9b0000010a00 0001 00000000 0x0 0x0
0xffff9b0000010a80 0001 00000000 0x0 0x0
0xffff9b0000010b00 0001 00000000 0x0 0x0
0xffff9b0000010b80 0001 00000000 0x0 0x0
0xffff9b0000010c00 0001 00000000 0x0 0x0
0xffff9b0000010c80 0001 00000000 0x0 0x0
0xffff9b0000010d00 0001 00000000 0x0 0x0
0xffff9b0000010d80 0001 00000000 0x0 0x0
0xffff9b0000010e00 0001 00000000 0x0 0x0
0xffff9b0000010e80 0001 00000000 0x0 0x0
0xffff9b0000010f00 0001 00000000 0x0 0x0
0xffff9b0000010f80 0001 00000000 0x0 0x0
0xffff9b0000011000 0001 00000000 0x0 0x0
0xffff9b0000011080 0001 00000000 0x0 0x0
0xffff9b0000011100 0001 00000000 0x0 0x0
0xffff9b0000011180 0001 00000000 0x0 0x0
0xffff9b0000011200 0001 00000000 0x0 0x0
0xffff9b0000011280 0001 00000000 0x0 0x0
0xffff9b0000011300 0001 00000000 0x0 0x0
0xffff9b0000011380 0001 00000000 0x0 0x0
0xffff9b0000011400 0001 00000000 0x0 0x0
0xffff9b0000011480 0001 00000000 0x0 0x0
0xffff9b0000011500 0001 00000000 0x0 0x0
0xffff9b0000011580 0001 00000000 0x0 0x0
0xffff9b0000011600 0001 00000000 0x0 0x0
0xffff9b0000011680 0001 00000000 0x0 0x0
0xffff9b0000011700 0041 00000000 0x0 0x0
0xffff9b0000011780 0045 00000000 0x0 0x0
0xffff9b0000011800 0041 00000000 0x0 0x0
0xffff9b0000011880 0041 00000000 0x0 0x0
0xffff9b0000011900 0041 00000000 0x0 0x0
0xffff9b0000011980 0041 00000000 0x0 0x0
0xffff9b0000011a00 0041 00000000 0x0 0x0
0xffff9b0000011a80 0041 00000000 0x0 0x0
0xffff9b0000011b00 0041 00000000 0x0 0x0
0xffff9b0000011b80 0041 00000000 0x0 0x0
0xffff9b0000011c00 0041 00000000 0x0 0x0
0xffff9b0000011c80 0041 00000000 0x0 0x0
0xffff9b0000011d00 0041 00000000 0x0 0x0
0xffff9b0000011d80 0041 00000000 0x0 0x0
0xffff9b0000011e00 0041 00000000 0x0 0x0
0xffff9b0000011e80 0041 00000000 0x0 0x0
0xffff9b0000011f00 0041 00000000 0x0 0x0
0xffff9b0000011f80 0041 00000000 0x0 0x0
0xffff9b0000012000 0041 00000000 0x0 0x0
0xffff9b0000012080 0041 00000000 0x0 0x0
0xffff9b0000012100 0041 00000000 0x0 0x0
0xffff9b0000012180 0041 00000000 0x0 0x0
0xffff9b0000012200 0041 00000000 0x0 0x0
0xffff9b0000012280 0041 00000000 0x0 0x0
0xffff9b0000012300 0041 00000000 0x0 0x0
0xffff9b0000012380 0041 00000000 0x0 0x0
0xffff9b0000012400 0041 00000000 0x0 0x0
0xffff9b0000012480 0041 00000000 0x0 0x0
0xffff9b0000012500 0041 00000000 0x0 0x0
0xffff9b0000012580 0041 00000000 0x0 0x0
0xffff9b0000012600 0041 00000000 0x0 0x0
0xffff9b0000012680 0041 00000000 0x0 0x0
0xffff9b0000012700 0041 00000000 0x0 0x0
0xffff9b0000012780 0041 00000000 0x0 0x0
0xffff9b0000012800 0041 00000000 0x0 0x0
0xffff9b0000012880 0041 00000000 0x0 0x0
0xffff9b0000012900 0041 00000000 0x0 0x0
0xffff9b0000012980 0041 00000000 0x0 0x0
0xffff9b0000012a00 0041 00000000 0x0 0x0
0xffff9b0000012a80 0041 00000000 0x0 0x0
0xffff9b0000012b00 0041 00000000 0x0 0x0
0xffff9b0000012b80 0041 00000000 0x0 0x0
0xffff9b0000012c00 0041 00000000 0x0 0x0
0xffff9b0000012c80 0041 00000000 0x0 0x0
0xffff9b0000012d00 0041 00000000 0x0 0x0
0xffff9b0000012d80 0041 00000000 0x0 0x0
0xffff9b0000012e00 0041 00000000 0x0 0x0
0xffff9b0000012e80 0041 00000000 0x0 0x0
0xffff9b0000012f00 0041 00000000 0x0 0x0
0xffff9b0000012f80 0041 00000000 0x0 0x0
0xffff9b0000013000 0001 00000000 0x0 0x0
0xffff9b0000013080 0001 00000000 0x0 0x0
0xffff9b0000013100 0001 00000000 0x0 0x0
0xffff9b0000013180 0001 00000000 0x0 0x0
0xffff9b0000013200 0001 00000000 0x0 0x0
0xffff9b0000013280 0001 00000000 0x0 0x0
0xffff9b0000013300 0001 00000000 0x0 0x0
0xffff9b0000013380 0001 00000000 0x0 0x0
0xffff9b0000013400 0001 00000000 0x0 0x0
0xffff9b0000013480 0001 00000000 0x0 0x0
0xffff9b0000013500 0001 00000000 0x0 0x0
0xffff9b0000013580 0001 00000000 0x0 0x0
0xffff9b0000013600 0001 00000000 0x0 0x0
0xffff9b0000013680 0001 00000000 0x0 0x0
0xffff9b0000013700 0001 00000000 0x0 0x0
0xffff9b0000013780 0001 00000000 0x0 0x0
0xffff9b0000013800 0001 00000000 0x0 0x0
0xffff9b0000013880 0001 00000000 0x0 0x0
0xffff9b0000013900 0001 00000000 0x0 0x0
0xffff9b0000013980 0001 00000000 0x0 0x0
0xffff9b0000013a00 0001 00000000 0x0 0x0
0xffff9b0000013a80 0001 00000000 0x0 0x0
0xffff9b0000013b00 0001 00000000 0x0 0x0
0xffff9b0000013b80 0001 00000000 0x0 0x0
0xffff9b0000013c00 0001 00000000 0x0 0x0
0xffff9b0000013c80 0001 00000000 0x0 0x0
0xffff9b0000013d00 0001 00000000 0x0 0x0
0xffff9b0000013d80 0001 00000000 0x0 0x0
0xffff9b0000013e00 0001 00000000 0x0 0x0
0xffff9b0000013e80 0001 00000000 0x0 0x0
0xffff9b0000013f00 0001 00000000 0x0 0x0
0xffff9b0000013f80 0001 00000000 0x0 0x0
0xffff9b0000014000 0001 00000000 0x0 0x0
0xffff9b0000014080 0001 00000000 0x0 0x0
0xffff9b0000014100 0001 00000000 0x0 0x0
0xffff9b0000014180 0001 00000000 0x0 0x0
0xffff9b0000014200 0001 00000000 0x0 0x0
0xffff9b0000014280 0001 00000000 0x0 0x0
0xffff9b0000014300 0001 00000000 0x0 0x0
0xffff9b0000014380 0001 00000000 0x0 0x0
0xffff9b0000014400 0001 00000000 0x0 0x0
0xffff9b0000014480 0001 00000000 0x0 0x0
0xffff9b0000014500 0001 00000000 0x0 0x0
0xffff9b0000014580 0001 00000000 0x0 0x0
0xffff9b0000014600 0001 00000000 0x0 0x0
0xffff9b0000014680 0001 00000000 0x0 0x0
0xffff9b0000014700 0001 00000000 0x0 0x0
0xffff9b0000014780 0001 00000000 0x0 0x0
0xffff9b0000014800 0001 00000000 0x0 0x0
0xffff9b0000014880 0001 00000000 0x0 0x0
0xffff9b0000014900 0001 00000000 0x0 0x0
0xffff9b0000014980 0001 00000000 0x0 0x0
0xffff9b0000014a00 0001 00000000 0x0 0x0
0xffff9b0000014a80 0001 00000000 0x0 0x0
0xffff9b0000014b00 0041 00000000 0x0 0x0
0xffff9b0000014b80 0041 00000000 0x0 0x0
0xffff9b0000014c00 0041 00000000 0x0 0x0
0xffff9b0000014c80 0041 00000000 0x0 0x0
0xffff9b0000014d00 0041 00000000 0x0 0x0
0xffff9b0000014d80 0041 00000000 0x0 0x0
0xffff9b0000014e00 0041 00000000 0x0 0x0
0xffff9b0000014e80 0041 00000000 0x0 0x0
0xffff9b0000014f00 0041 00000000 0x0 0x0
0xffff9b0000014f80 0041 00000000 0x0 0x0
0xffff9b0000015000 0041 00000000 0x0 0x0
0xffff9b0000015080 0041 00000000 0x0 0x0
0xffff9b0000015100 0041 00000000 0x0 0x0
0xffff9b0000015180 0041 00000000 0x0 0x0
0xffff9b0000015200 0041 00000000 0x0 0x0
0xffff9b0000015280 0041 00000000 0x0 0x0
0xffff9b0000015300 0041 00000000 0x0 0x0
0xffff9b0000015380 0041 00000000 0x0 0x0
0xffff9b0000015400 0041 00000000 0x0 0x0
0xffff9b0000015480 0041 00000000 0x0 0x0
0xffff9b0000015500 0041 00000000 0x0 0x0
0xffff9b0000015580 0041 00000000 0x0 0x0
0xffff9b0000015600 0041 00000000 0x0 0x0
0xffff9b0000015680 0041 00000000 0x0 0x0
0xffff9b0000015700 0041 00000000 0x0 0x0
0xffff9b0000015780 0041 00000000 0x0 0x0
0xffff9b0000015800 0041 00000000 0x0 0x0
0xffff9b0000015880 0041 00000000 0x0 0x0
0xffff9b0000015900 0041 00000000 0x0 0x0
0xffff9b0000015980 0041 00000000 0x0 0x0
0xffff9b0000015a00 0041 00000000 0x0 0x0
0xffff9b0000015a80 0041 00000000 0x0 0x0
0xffff9b0000015b00 0041 00000000 0x0 0x0
0xffff9b0000015b80 0041 00000000 0x0 0x0
0xffff9b0000015c00 0041 00000000 0x0 0x0
0xffff9b0000015c80 0041 00000000 0x0 0x0
0xffff9b0000015d00 0041 00000000 0x0 0x0
0xffff9b0000015d80 0041 00000000 0x0 0x0
0xffff9b0000015e00 0041 00000000 0x0 0x0
0xffff9b0000015e80 0041 00000000 0x0 0x0
0xffff9b0000015f00 0041 00000000 0x0 0x0
0xffff9b0000015f80 0041 00000000 0x0 0x0
0xffff9b0000016000 0041 00000000 0x0 0x0
0xffff9b0000016080 0041 00000000 0x0 0x0
0xffff9b0000016100 0001 00000000 0x0 0x0
0xffff9b0000016180 0001 00000000 0x0 0x0
0xffff9b0000016200 0001 00000000 0x0 0x0
0xffff9b0000016280 0001 00000000 0x0 0x0
0xffff9b0000016300 0001 00000000 0x0 0x0
0xffff9b0000016380 0001 00000000 0x0 0x0
0xffff9b0000016400 0001 00000000 0x0 0x0
0xffff9b0000016480 0001 00000000 0x0 0x0
0xffff9b0000016500 0001 00000000 0x0 0x0
0xffff9b0000016580 0001 00000000 0x0 0x0
0xffff9b0000016600 0001 00000000 0x0 0x0
0xffff9b0000016680 0001 00000000 0x0 0x0
0xffff9b0000016700 0001 00000000 0x0 0x0
0xffff9b0000016780 0001 00000000 0x0 0x0
0xffff9b0000016800 0001 00000000 0x0 0x0
0xffff9b0000016880 0001 00000000 0x0 0x0
0xffff9b0000016900 0001 00000000 0x0 0x0
0xffff9b0000016980 0001 00000000 0x0 0x0
0xffff9b0000016a00 0001 00000000 0x0 0x0
0xffff9b0000016a80 0001 00000000 0x0 0x0
0xffff9b0000016b00 0001 00000000 0x0 0x0
0xffff9b0000016b80 0001 00000000 0x0 0x0
0xffff9b0000016c00 0001 00000000 0x0 0x0
0xffff9b0000016c80 0001 00000000 0x0 0x0
0xffff9b0000016d00 0001 00000000 0x0 0x0
0xffff9b0000016d80 0001 00000000 0x0 0x0
0xffff9b0000016e00 0001 00000000 0x0 0x0
0xffff9b0000016e80 0001 00000000 0x0 0x0
0xffff9b0000016f00 0001 00000000 0x0 0x0
0xffff9b0000016f80 0001 00000000 0x0 0x0
0xffff9b0000017000 0001 00000000 0x0 0x0
0xffff9b0000017080 0001 00000000 0x0 0x0
0xffff9b0000017100 0001 00000000 0x0 0x0
0xffff9b0000017180 0001 00000000 0x0 0x0
0xffff9b0000017200 0001 00000000 0x0 0x0
0xffff9b0000017280 0001 00000000 0x0 0x0
0xffff9b0000017300 0001 00000000 0x0 0x0
0xffff9b0000017380 0001 00000000 0x0 0x0
0xffff9b0000017400 0001 00000000 0x0 0x0
0xffff9b0000017480 0001 00000000 0x0 0x0
0xffff9b0000017500 0001 00000000 0x0 0x0
0xffff9b0000017580 0001 00000000 0x0 0x0
0xffff9b0000017600 0001 00000000 0x0 0x0
0xffff9b0000017680 0001 00000000 0x0 0x0
0xffff9b0000017700 0001 00000000 0x0 0x0
0xffff9b0000017780 0001 00000000 0x0 0x0
0xffff9b0000017800 0001 00000000 0x0 0x0
0xffff9b0000017880 0001 00000000 0x0 0x0
0xffff9b0000017900 0001 00000000 0x0 0x0
0xffff9b0000017980 0001 00000000 0x0 0x0
0xffff9b0000017a00 0001 00000000 0x0 0x0
0xffff9b0000017a80 0001 00000000 0x0 0x0
0xffff9b0000017b00 0001 00000000 0x0 0x0
0xffff9b0000017b80 0001 00000000 0x0 0x0
0xffff9b0000017c00 0041 00000000 0x0 0x0
0xffff9b0000017c80 0041 00000000 0x0 0x0
0xffff9b0000017d00 0041 00000000 0x0 0x0
0xffff9b0000017d80 0041 00000000 0x0 0x0
0xffff9b0000017e00 0045 00000000 0x0 0x0
0xffff9b0000017e80 0041 00000000 0x0 0x0
0xffff9b0000017f00 0041 00000000 0x0 0x0
0xffff9b0000017f80 0041 00000000 0x0 0x0
0xffff9b0000018000 0041 00000000 0x0 0x0
0xffff9b0000018080 0041 00000000 0x0 0x0
0xffff9b0000018100 0041 00000000 0x0 0x0
0xffff9b0000018180 0041 00000000 0x0 0x0
0xffff9b0000018200 0045 00000000 0x0 0x0
0xffff9b0000018280 0041 00000000 0x0 0x0
0xffff9b0000018300 0041 00000000 0x0 0x0
0xffff9b0000018380 0041 00000000 0x0 0x0
0xffff9b0000018400 0041 00000000 0x0 0x0
0xffff9b0000018480 0041 00000000 0x0 0x0
0xffff9b0000018500 0041 00000000 0x0 0x0
0xffff9b0000018580 0045 00000000 0x0 0x0
0xffff9b0000018600 0045 00000000 0x0 0x0
0xffff9b0000018680 0041 00000000 0x0 0x0
0xffff9b0000018700 0041 00000000 0x0 0x0
0xffff9b0000018780 0041 00000000 0x0 0x0
0xffff9b0000018800 0041 00000000 0x0 0x0
0xffff9b0000018880 0041 00000000 0x0 0x0
0xffff9b0000018900 0045 00000000 0x0 0x0
0xffff9b0000018980 0045 00000000 0x0 0x0
0xffff9b0000018a00 0045 00000000 0x0 0x0
0xffff9b0000018a80 0041 00000000 0x0 0x0
0xffff9b0000018b00 0041 00000000 0x0 0x0
0xffff9b0000018b80 0041 00000000 0x0 0x0
0xffff9b0000018c00 0041 00000000 0x0 0x0
0xffff9b0000018c80 0041 00000000 0x0 0x0
0xffff9b0000018d00 0045 00000000 0x0 0x0
0xffff9b0000018d80 0045 00000000 0x0 0x0
0xffff9b0000018e00 0045 00000000 0x0 0x0
0xffff9b0000018e80 0045 00000000 0x0 0x0
0xffff9b0000018f00 0041 00000000 0x0 0x0
0xffff9b0000018f80 0041 00000000 0x0 0x0
0xffff9b0000019000 0041 00000000 0x0 0x0
0xffff9b0000019080 0041 00000000 0x0 0x0
0xffff9b0000019100 0045 00000000 0x0 0x0
0xffff9b0000019180 0045 00000000 0x0 0x0
0xffff9b0000019200 0045 00000000 0x0 0x0
0xffff9b0000019280 0045 00000000 0x0 0x0
0xffff9b0000019300 0045 00000000 0x0 0x0
0xffff9b0000019380 0041 00000000 0x0 0x0
0xffff9b0000019400 0001 00000000 0x0 0x0
0xffff9b0000019480 0001 00000000 0x0 0x0
0xffff9b0000019500 0001 00000000 0x0 0x0
0xffff9b0000019580 0001 00000000 0x0 0x0
0xffff9b0000019600 0001 00000000 0x0 0x0
0xffff9b0000019680 0001 00000000 0x0 0x0
0xffff9b0000019700 0001 00000000 0x0 0x0
0xffff9b0000019780 0001 00000000 0x0 0x0
0xffff9b0000019800 0001 00000000 0x0 0x0
0xffff9b0000019880 0001 00000000 0x0 0x0
0xffff9b0000019900 0001 00000000 0x0 0x0
0xffff9b0000019980 0001 00000000 0x0 0x0
0xffff9b0000019a00 0001 00000000 0x0 0x0
0xffff9b0000019a80 0001 00000000 0x0 0x0
0xffff9b0000019b00 0001 00000000 0x0 0x0
0xffff9b0000019b80 0001 00000000 0x0 0x0
0xffff9b0000019c00 0001 00000000 0x0 0x0
0xffff9b0000019c80 0001 00000000 0x0 0x0
0xffff9b0000019d00 0001 00000000 0x0 0x0
0xffff9b0000019d80 0001 00000000 0x0 0x0
0xffff9b0000019e00 0001 00000000 0x0 0x0
0xffff9b0000019e80 0001 00000000 0x0 0x0
0xffff9b0000019f00 0001 00000000 0x0 0x0
0xffff9b0000019f80 0001 00000000 0x0 0x0
0xffff9b000001a000 0001 00000000 0x0 0x0
0xffff9b000001a080 0001 00000000 0x0 0x0
0xffff9b000001a100 0001 00000000 0x0 0x0
0xffff9b000001a180 0001 00000000 0x0 0x0
0xffff9b000001a200 0001 00000000 0x0 0x0
0xffff9b000001a280 0001 00000000 0x0 0x0
0xffff9b000001a300 0001 00000000 0x0 0x0
0xffff9b000001a380 0001 00000000 0x0 0x0
0xffff9b000001a400 0001 00000000 0x0 0x0
0xffff9b000001a480 0001 00000000 0x0 0x0
0xffff9b000001a500 0001 00000000 0x0 0x0
0xffff9b000001a580 0001 00000000 0x0 0x0
0xffff9b000001a600 0001 00000000 0x0 0x0
0xffff9b000001a680 0001 00000000 0x0 0x0
0xffff9b000001a700 0001 00000000 0x0 0x0
0xffff9b000001a780 0001 00000000 0x0 0x0
0xffff9b000001a800 0001 00000000 0x0 0x0
0xffff9b000001a880 0001 00000000 0x0 0x0
0xffff9b000001a900 0001 00000000 0x0 0x0
0xffff9b000001a980 0001 00000000 0x0 0x0
0xffff9b000001aa00 0001 00000000 0x0 0x0
0xffff9b000001aa80 0001 00000000 0x0 0x0
0xffff9b000001ab00 0001 00000000 0x0 0x0
0xffff9b000001ab80 0001 00000000 0x0 0x0
0xffff9b000001ac00 0001 00000000 0x0 0x0
0xffff9b000001ac80 0001 00000000 0x0 0x0
0xffff9b000001ad00 0001 00000000 0x0 0x0
0xffff9b000001ad80 0001 00000000 0x0 0x0
0xffff9b000001ae00 0001 00000000 0x0 0x0
0xffff9b000001ae80 0001 00000000 0x0 0x0
0xffff9b000001af00 0001 00000000 0x0 0x0
0xffff9b000001af80 0001 00000000 0x0 0x0
0xffff9b000001b000 0001 00000000 0x0 0x0
0xffff9b000001b080 0001 00000000 0x0 0x0
0xffff9b000001b100 0001 00000000 0x0 0x0
0xffff9b000001b180 0001 00000000 0x0 0x0
0xffff9b000001b200 0001 00000000 0x0 0x0
0xffff9b000001b280 0001 00000000 0x0 0x0
0xffff9b000001b300 0001 00000000 0x0 0x0
0xffff9b000001b380 0001 00000000 0x0 0x0
0xffff9b000001b400 0001 00000000 0x0 0x0
0xffff9b000001b480 0001 00000000 0x0 0x0
0xffff9b000001b500 0001 00000000 0x0 0x0
0xffff9b000001b580 0001 00000000 0x0 0x0
0xffff9b000001b600 0001 00000000 0x0 0x0
0xffff9b000001b680 0001 00000000 0x0 0x0
0xffff9b000001b700 0001 00000000 0x0 0x0
0xffff9b000001b780 0001 00000000 0x0 0x0
0xffff9b000001b800 0001 00000000 0x0 0x0
0xffff9b000001b880 0001 00000000 0x0 0x0
0xffff9b000001b900 0001 00000000 0x0 0x0
0xffff9b000001b980 0001 00000000 0x0 0x0
0xffff9b000001ba00 0001 00000000 0x0 0x0
0xffff9b000001ba80 0001 00000000 0x0 0x0
0xffff9b000001bb00 0001 00000000 0x0 0x0
0xffff9b000001bb80 0001 00000000 0x0 0x0
0xffff9b000001bc00 0001 00000000 0x0 0x0
0xffff9b000001bc80 0001 00000000 0x0 0x0
0xffff9b000001bd00 0001 00000000 0x0 0x0
0xffff9b000001bd80 0001 00000000 0x0 0x0
0xffff9b000001be00 0001 00000000 0x0 0x0
0xffff9b000001be80 0001 00000000 0x0 0x0
0xffff9b000001bf00 0001 00000000 0x0 0x0
0xffff9b000001bf80 0001 00000000 0x0 0x0
0xffff9b000001c000 0001 00000000 0x0 0x0
0xffff9b000001c080 0001 00000000 0x0 0x0
0xffff9b000001c100 0001 00000000 0x0 0x0
0xffff9b000001c180 0001 00000000 0x0 0x0
0xffff9b000001c200 0001 00000000 0x0 0x0
0xffff9b000001c280 0001 00000000 0x0 0x0
0xffff9b000001c300 0001 00000000 0x0 0x0
0xffff9b000001c380 0001 00000000 0x0 0x0
0xffff9b000001c400 0001 00000000 0x0 0x0
0xffff9b000001c480 0001 00000000 0x0 0x0
0xffff9b000001c500 0001 00000000 0x0 0x0
0xffff9b000001c580 0001 00000000 0x0 0x0
0xffff9b000001c600 0001 00000000 0x0 0x0
0xffff9b000001c680 0001 00000000 0x0 0x0
0xffff9b000001c700 0001 00000000 0x0 0x0
0xffff9b000001c780 0001 00000000 0x0 0x0
0xffff9b000001c800 0001 00000000 0x0 0x0
0xffff9b000001c880 0001 00000000 0x0 0x0
0xffff9b000001c900 0001 00000000 0x0 0x0
0xffff9b000001c980 0001 00000000 0x0 0x0
0xffff9b000001ca00 0001 00000000 0x0 0x0
0xffff9b000001ca80 0001 00000000 0x0 0x0
0xffff9b000001cb00 0001 00000000 0x0 0x0
0xffff9b000001cb80 0001 00000000 0x0 0x0
0xffff9b000001cc00 0001 00000000 0x0 0x0
0xffff9b000001cc80 0001 00000000 0x0 0x0
0xffff9b000001cd00 0001 00000000 0x0 0x0
0xffff9b000001cd80 0001 00000000 0x0 0x0
0xffff9b000001ce00 0001 00000000 0x0 0x0
0xffff9b000001ce80 0001 00000000 0x0 0x0
0xffff9b000001cf00 0001 00000000 0x0 0x0
0xffff9b000001cf80 0001 00000000 0x0 0x0
0xffff9b000001d000 0001 00000000 0x0 0x0
0xffff9b000001d080 0001 00000000 0x0 0x0
0xffff9b000001d100 0001 00000000 0x0 0x0
0xffff9b000001d180 0001 00000000 0x0 0x0
0xffff9b000001d200 0001 00000000 0x0 0x0
0xffff9b000001d280 0001 00000000 0x0 0x0
0xffff9b000001d3

Jaromír Doleček

unread,
Jun 24, 2020, 2:38:13 PM6/24/20
to syzbot, syzkaller-...@googlegroups.com
#syz dup: UBSan: Undefined Behavior in route_output

Le lun. 25 mai 2020 à 17:44, syzbot
<syzbot+865f88...@syzkaller.appspotmail.com> a écrit :
> --
> You received this message because you are subscribed to the Google Groups "syzkaller-netbsd-bugs" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to syzkaller-netbsd...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/syzkaller-netbsd-bugs/000000000000d9e77705a67ad92b%40google.com.
Reply all
Reply to author
Forward
0 new messages