panic:ASa n: Unauthorized Access In ADDR: Addr ADDR [NUM bytes, read, PoolUseAfterFree]

[syzbot]

Hello,

syzbot found the following issue on:

HEAD commit: 2a0cef04dc6e s/dupled/duplex/ in comments.
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=135a43fc980000
kernel config: https://syzkaller.appspot.com/x/.config?x=fab579639ba4bf0a
dashboard link: https://syzkaller.appspot.com/bug?extid=7bb3590f7d1548060f6f
compiler: g++ (Debian 12.2.0-14) 12.2.0

Unfortunately, I don't have any reproducer for this issue yet.

Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/d2ac8cc656c4/disk-2a0cef04.raw.xz
netbsd.gdb: https://storage.googleapis.com/syzbot-assets/930f88d21413/netbsd-2a0cef04.gdb.xz

IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+7bb359...@syzkaller.appspotmail.com

[ 653.2069448] panic:ASa n: Unauthorized Access In 0xffffffff81cf0551: Addr 0xffffb400153eda00 [8 bytes, read, PoolUseAfterFree]

[ 653.2169291] cpu1: Begin traceback...
[ 653.2369243] vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
[ 653.3069251] panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
[ 653.3569270] kasan_report() at netbsd:kasan_report+0x8f kasan_code_name sys/kern/subr_asan.c:169 [inline]
[ 653.3569270] kasan_report() at netbsd:kasan_report+0x8f sys/kern/subr_asan.c:201
[ 653.4069293] __asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:371 [inline]
[ 653.4069293] __asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
[ 653.4069293] __asan_load8() at netbsd:__asan_load8+0xac sys/kern/subr_asan.c:1208
[ 653.4469281] mount_domount() at netbsd:mount_domount+0x783 mount_checkdirs sys/kern/vfs_mount.c:744 [inline]
[ 653.4469281] mount_domount() at netbsd:mount_domount+0x783 sys/kern/vfs_mount.c:898
[ 653.4969288] do_sys_mount() at netbsd:do_sys_mount+0x79d sys/kern/vfs_syscalls.c:616
[ 653.5369295] compat_40_sys_mount() at netbsd:compat_40_sys_mount+0xbd sys/compat/common/vfs_syscalls_40.c:88
1970/01/01 00:07:28 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[ 653.5869375] sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
[ 653.5869375] sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90
[ 653.6269316] syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
[ 653.6269316] syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
[ 653.6269316] syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137
[ 653.6469289] --- syscall (number 21 via SYS_syscall) ---
[ 653.6569248] netbsd:syscall+0x246:
[ 653.6669555] cpu1: End traceback...
[ 653.6669555] fatal breakpoint trap in supervisor mode
[ 653.6669555] trap type 1 code 0 rip 0xffffffff8023240d cs 0x8 rflags 0x282 cr2 0x20001600 ilevel 0 rsp 0xffffb40268fe28c0
[ 653.6869261] curlwp 0xffffb400133c7b00 pid 17559.2806 lowest kstack 0xffffb40268fdb2c0
Stopped in pid 17559.2806 (syz-executor.2) at netbsd:breakpoint+0x5: leave
?
breakpoint() at netbsd:breakpoint+0x5
db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:71
vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
kasan_report() at netbsd:kasan_report+0x8f kasan_code_name sys/kern/subr_asan.c:169 [inline]
kasan_report() at netbsd:kasan_report+0x8f sys/kern/subr_asan.c:201
__asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:371 [inline]
__asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
__asan_load8() at netbsd:__asan_load8+0xac sys/kern/subr_asan.c:1208
mount_domount() at netbsd:mount_domount+0x783 mount_checkdirs sys/kern/vfs_mount.c:744 [inline]
mount_domount() at netbsd:mount_domount+0x783 sys/kern/vfs_mount.c:898
do_sys_mount() at netbsd:do_sys_mount+0x79d sys/kern/vfs_syscalls.c:616
compat_40_sys_mount() at netbsd:compat_40_sys_mount+0xbd sys/compat/common/vfs_syscalls_40.c:88
sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90
syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137
--- syscall (number 21 via SYS_syscall) ---
netbsd:syscall+0x246:
Panic string: ASan: Unauthorized Access In 0xffffffff81cf0551: Addr 0xffffb400153eda00 [8 bytes, read, PoolUseAfterFree]

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT
15494 15494 2 0 10000000 ffffb40014ac31c0 syz-executor.4
18478 18478 2 0 0 ffffb40012a6e8c0 ifconfig
2304 2304 3 1 0 ffffb40013420700 syz-executor.0 fstchg
17559 2310 3 0 1000000 ffffb400126d9340 syz-executor.2 lwpwait
17559> 2806 7 1 1a0000 ffffb400133c7b00 syz-executor.2
17559 7675 8 1 1a0000 ffffb40012cbb100 syz-executor.2
17559 17559 8 0 101a0000 ffffb40013e3fac0 syz-executor.2
2799 2799 3 0 180 ffffb4001476f480 syz-executor.5 wait
18896 18896 3 0 40 ffffb40014ad4a80 syz-executor.4 mutex
1986 1986 2 1 140 ffffb40012db3500 syz-executor.2
3284 3284 3 1 180 ffffb40015027540 syz-executor.4 parked
15498 15498 3 1 180 ffffb40012d5d340 syz-executor.5 parked
10371 2953 3 1 11100000 ffffb40012cf7200 syz-executor.5 vfork
10371 10371 2 0 11000040 ffffb4001420ca00 syz-executor.5
18776 18776 3 0 180 ffffb4001437fb00 syz-executor.4 parked
8140 8140 3 1 180 ffffb40012a98900 syz-executor.4 parked
1993 1993 3 0 180 ffffb400150e7140 syz-executor.4 parked
893 893 3 1 180 ffffb40014ad5ac0 syz-executor.2 parked
890 892 3 1 11100000 ffffb4001345a500 syz-executor.2 vfork
890 890 2 0 11000040 ffffb40013f92040 syz-executor.2
3133 3133 3 1 180 ffffb400126db480 syz-executor.0 parked
12848 12848 3 0 180 ffffb400150e7580 syz-executor.0 parked
773 773 3 1 180 ffffb400149cc580 syz-executor.5 parked
17323 17323 3 1 180 ffffb40012b77100 syz-executor.4 parked
15420 15420 3 1 180 ffffb4001501f940 syz-executor.0 parked
15435 15435 3 1 180 ffffb4001345a940 syz-executor.5 parked
13462 13462 3 1 180 ffffb400149e8a00 syz-executor.4 parked
14328 14328 3 1 180 ffffb40014d91780 syz-executor.4 parked
12895 12895 3 1 180 ffffb4001335b580 syz-executor.5 parked
14665 14665 3 1 180 ffffb40014f0b900 syz-executor.2 parked
14513 14312 3 1 11100000 ffffb400142291c0 syz-executor.2 vfork
14513 14513 2 0 11000040 ffffb4001501f500 syz-executor.2
12515 12515 3 1 180 ffffb40012bf5a80 syz-executor.5 parked
12230 12230 3 1 180 ffffb400134504c0 syz-executor.2 parked
11818 11818 3 1 180 ffffb40012d0fb00 syz-executor.5 parked
10023 10023 3 0 180 ffffb40014975100 syz-executor.4 parked
11262 11665 3 0 11100000 ffffb400149cc140 syz-executor.4 vfork
11262 11262 2 0 11000040 ffffb400133941c0 syz-executor.4
12592 12592 3 0 180 ffffb40012c19280 syz-executor.0 parked
11698 11698 3 1 180 ffffb400142ca240 syz-executor.0 parked
9357 9357 3 0 180 ffffb400129bf280 syz-executor.4 parked
7969 9459 3 0 15100000 ffffb40012cbb980 syz-executor.4 vfork
7969 7969 2 1 11000040 ffffb40012a1e300 syz-executor.4
9663 9663 3 0 180 ffffb40014c86b40 syz-executor.2 parked
10982 10982 3 0 180 ffffb400143c12c0 syz-executor.0 parked
9135 9135 3 1 180 ffffb40014c806c0 syz-executor.5 parked
7409 7674 3 1 11100000 ffffb40014c80280 syz-executor.5 vfork
7409 7409 2 0 11000040 ffffb4001401d4c0 syz-executor.5
7566 7566 3 1 180 ffffb40014ad4640 syz-executor.0 parked
7739 8922 3 1 11100000 ffffb40014ac3a40 syz-executor.0 vfork
7739 7739 2 1 11000040 ffffb400143c1700 syz-executor.0
7616 7616 3 1 180 ffffb40012c9f900 syz-executor.2 parked
6645 7252 3 1 11100000 ffffb40012c9f080 syz-executor.2 vfork
6645 6645 2 0 11000040 ffffb40012c78340 syz-executor.2
7221 7221 3 0 180 ffffb400142caac0 syz-executor.4 parked
5020 7213 3 0 11100000 ffffb40012caf940 syz-executor.4 vfork
5020 5020 2 0 11000040 ffffb40013f4e300 syz-executor.4
6993 6993 3 1 180 ffffb40012d1b2c0 syz-executor.5 parked
6597 6597 3 0 180 ffffb40012caf0c0 syz-executor.0 parked
7526 7526 3 1 180 ffffb40012d2bb80 syz-executor.0 parked
6995 6995 3 1 180 ffffb40012d9a080 syz-executor.0 parked
5533 5533 3 0 180 ffffb400146a9340 syz-executor.5 parked
5269 5269 3 0 180 ffffb40012c5d740 syz-executor.5 parked
7352 7352 3 0 180 ffffb40014894500 syz-executor.4 parked
4709 6741 3 0 11100000 ffffb4001337d180 syz-executor.4 vfork
4709 4709 2 0 11000040 ffffb400133b1240 syz-executor.4
6989 6989 3 1 180 ffffb4001346e9c0 syz-executor.5 parked
4752 5565 3 1 11100000 ffffb40012cf7640 syz-executor.5 vfork
4752 4752 2 0 11000040 ffffb40012b90140 syz-executor.5
4761 4761 3 1 180 ffffb40013430300 syz-executor.5 parked
5154 5154 3 1 180 ffffb40013f8e780 syz-executor.4 parked
5467 5467 3 0 180 ffffb400147e14c0 syz-executor.2 parked
6078 3109 3 0 11100000 ffffb400147e1080 syz-executor.2 vfork
6078 6078 2 1 11000040 ffffb4001476f8c0 syz-executor.2
6187 6187 3 1 180 ffffb400144f6300 syz-executor.0 parked
4498 4506 3 1 11100000 ffffb40013463100 syz-executor.0 vfork
4498 4498 2 1 11000040 ffffb40012cd5a00 syz-executor.0
3580 3580 3 1 180 ffffb40012c5d300 syz-executor.0 parked
5305 4445 3 1 11100000 ffffb4001335b9c0 syz-executor.0 vfork
5305 5305 2 0 11000040 ffffb400140eb140 syz-executor.0
3053 3053 3 1 180 ffffb400144f6b80 syz-executor.2 parked
3138 4700 3 1 11100000 ffffb400144f6740 syz-executor.2 vfork
3138 3138 2 0 11000040 ffffb40012c2a2c0 syz-executor.2
2548 2548 3 0 180 ffffb40012d0f280 syz-executor.0 parked
1683 1683 3 0 180 ffffb40013f4eb80 syz-executor.2 parked
2611 2611 3 1 180 ffffb40012c09240 syz-executor.4 parked
1669 1669 3 0 180 ffffb40012db3940 syz-executor.3 parked
1673 3018 3 0 10100000 ffffb40012a6e040 syz-executor.3 vfork
1673 1673 2 0 10000040 ffffb40012bb65c0 syz-executor.3
1899 1899 3 1 180 ffffb40012c78780 syz-executor.5 parked
2877 2877 3 1 180 ffffb400133c7280 syz-executor.0 parked
1897 1527 2 0 1000040 ffffb40014229a40 syz-executor.0
1897 1529 3 1 1100000 ffffb40013446040 syz-executor.0 vfork
1416 1416 3 0 180 ffffb400133a5200 syz-executor.2 parked
1612 1612 3 0 180 ffffb40013f02b40 syz-executor.4 parked
3241 3241 3 1 180 ffffb40012a52780 syz-executor.3 parked
1739 1739 3 0 180 ffffb40014237a80 syz-executor.0 parked
2097 2097 3 0 180 ffffb4001401d900 syz-executor.4 parked
874 874 3 0 180 ffffb400133b1ac0 syz-executor.2 parked
1334 1334 3 1 180 ffffb40012d0f6c0 syz-executor.3 parked
675 675 3 1 180 ffffb40012bb6a00 syz-executor.3 parked
1848 1848 3 0 180 ffffb40013430b80 syz-executor.3 parked
1864 1864 3 0 180 ffffb4001333c980 syz-executor.5 parked
581 581 3 1 180 ffffb4001401d080 syz-executor.1 parked
1640 1610 3 1 100000 ffffb40012bdba40 syz-executor.1 vfork
1640 1640 2 0 10000040 ffffb40012d01680 syz-executor.1
1499 1499 3 1 180 ffffb40012ce7a40 syz-executor.0 parked
1238 9368 2 1 100100 ffffb40014033500 syz-fuzzer
1238 2156 2 0 100100 ffffb40013f022c0 syz-fuzzer
1238 1203 2 1 100100 ffffb40012c09680 syz-fuzzer
1238 1204 2 1 100100 ffffb40013e74b00 syz-fuzzer
1238 1074 2 1 100100 ffffb40013e74280 syz-fuzzer
1238 1200 2 0 100000 ffffb40013e3f680 syz-fuzzer
1238 1376 2 1 100100 ffffb40013e3f240 syz-fuzzer
1238 1246 2 1 100100 ffffb40013dfb200 syz-fuzzer
1238 1241 2 0 40 ffffb40013dd31c0 syz-fuzzer
1238 > 991 7 0 100000 ffffb40012c5db80 syz-fuzzer
1238 449 2 1 100100 ffffb40013420b40 syz-fuzzer
1238 942 2 0 100100 ffffb400134202c0 syz-fuzzer
1238 1233 2 0 100100 ffffb40012a52340 syz-fuzzer
1238 1235 2 0 100000 ffffb400126d7b80 syz-fuzzer
1238 1238 2 0 100100 ffffb4001337da00 syz-fuzzer
1106 1106 3 0 180 ffffb40012ac5940 sshd select
1225 1225 3 1 180 ffffb400134985c0 getty nanoslp
1151 1151 3 1 180 ffffb40013498180 getty nanoslp
956 956 3 0 180 ffffb400126d9bc0 getty nanoslp
1223 1223 3 1 180 ffffb40012a1eb80 getty ttyraw
1103 1103 3 0 180 ffffb400133a5640 sshd select
1088 1088 3 0 180 ffffb40012d6c040 powerd kqueue
699 699 3 0 180 ffffb4001343dbc0 syslogd kqueue
747 747 3 0 180 ffffb40012c09ac0 dhcpcd poll
745 745 3 1 180 ffffb40012caf500 dhcpcd poll
582 582 2 1 0 ffffb40012c78bc0 dhcpcd
599 599 3 0 180 ffffb40012c196c0 dhcpcd poll
487 487 3 0 180 ffffb40012db30c0 dhcpcd poll
292 292 3 0 180 ffffb40012d9a900 dhcpcd poll
485 485 2 1 0 ffffb40012d9a4c0 dhcpcd
1 1 3 1 180 ffffb4001286f180 init wait
0 2312 2 1 240 ffffb40012cf7a80 vrele
0 19032 3 1 40200 ffffb40013450080 ktrace ktrwait
0 7413 3 0 200 ffffb40014237200 ktrace ktrwait
0 9146 3 1 200 ffffb40012c19b00 ktrace ktrwait
0 9903 3 0 200 ffffb400126d9780 ktrace ktrwait
0 9603 3 1 200 ffffb40012c2a700 ktrace ktrwait
0 6201 3 1 200 ffffb40012a984c0 ktrace ktrwait
0 2017 3 0 200 ffffb40012b90580 ktrace ktrwait
0 1163 3 1 200 ffffb400142ca680 ktrace ktrwait
0 2743 3 0 200 ffffb40012c8d8c0 ktrace ktrwait
0 2516 3 1 200 ffffb40013dfba80 ktrace ktrwait
0 1583 3 1 200 ffffb40013430740 ktrace ktrwait
0 673 3 0 200 ffffb400129bf6c0 physiod physiod
0 196 3 0 200 ffffb400129c1700 pooldrain pooldrain
0 195 2 1 240 ffffb400129c12c0 ioflush
0 194 3 0 200 ffffb400129bfb00 pgdaemon pgdaemon
0 167 3 1 200 ffffb40012976ac0 usb7 usbevt
0 172 3 0 200 ffffb40012976680 usb6 usbevt
0 170 3 0 200 ffffb40012976240 usb5 usbevt
0 168 3 0 200 ffffb4001291ea80 usb4 usbevt
0 166 3 1 200 ffffb4001291e640 usb3 usbevt
0 165 3 1 200 ffffb4001291e200 usb2 usbevt
0 31 3 1 200 ffffb400128caa40 usb1 usbevt
0 63 3 0 200 ffffb400128ca600 usb0 usbevt
0 126 3 1 200 ffffb400128ca1c0 usbtask-dr usbtsk
0 125 3 1 200 ffffb4001286fa00 usbtask-hc usbtsk
0 124 3 0 200 ffffb40010d66b00 swwreboot swwreboot
0 123 3 0 200 ffffb4001286f5c0 npfgc0 npfgcw
0 122 3 1 200 ffffb400128669c0 rt_free rt_free
0 121 3 1 200 ffffb40012866580 unpgc unpgc
0 120 3 0 200 ffffb40012866140 key_timehandler key_timehandler
0 119 3 1 200 ffffb40012703980 icmp6_wqinput/1 icmp6_wqinput
0 118 3 0 200 ffffb40012703540 icmp6_wqinput/0 icmp6_wqinput
0 117 3 1 200 ffffb40012703100 nd6_timer nd6_timer
0 116 3 1 200 ffffb400126fc940 carp6_wqinput/1 carp6_wqinput
0 115 3 0 200 ffffb400126fc500 carp6_wqinput/0 carp6_wqinput
0 114 3 1 200 ffffb400126fc0c0 carp_wqinput/1 carp_wqinput
0 113 3 0 200 ffffb400126ed900 carp_wqinput/0 carp_wqinput
0 112 3 1 200 ffffb400126ed4c0 icmp_wqinput/1 icmp_wqinput
0 111 3 0 200 ffffb400126ed080 icmp_wqinput/0 icmp_wqinput
0 110 3 0 200 ffffb400126db040 rt_timer rt_timer
0 109 3 1 200 ffffb400126db8c0 vmem_rehash vmem_rehash
0 100 3 1 200 ffffb400126d7300 entbutler entropy
0 99 3 0 200 ffffb400120bdb40 viomb balloon
0 98 3 1 200 ffffb400120bd700 vioif0_txrx/1 vioif0_txrx
0 97 3 0 200 ffffb400120bd2c0 vioif0_txrx/0 vioif0_txrx
0 30 3 0 200 ffffb40010d666c0 scsibus0 sccomp
0 29 3 0 200 ffffb40010d66280 pms0 pmsreset
0 28 3 1 200 ffffb40010cacac0 xcall/1 xcall
0 27 1 1 200 ffffb40010cac680 softser/1
0 26 1 1 200 ffffb40010cac240 softclk/1
0 25 1 1 200 ffffb40010ca9a80 softbio/1
0 24 1 1 200 ffffb40010ca9640 softnet/1
0 23 1 1 201 ffffb40010ca9200 idle/1
0 22 3 0 200 ffffb4000fb55a40 lnxsyswq lnxsyswq
0 21 3 0 200 ffffb4000fb55600 lnxubdwq lnxubdwq
0 20 3 0 200 ffffb4000fb551c0 lnxpwrwq lnxpwrwq
0 19 3 0 200 ffffb4000fb54a00 lnxlngwq lnxlngwq
0 18 3 0 200 ffffb4000fb545c0 lnxhipwq lnxhipwq
0 17 3 0 200 ffffb4000fb54180 lnxrcugc lnxrcugc
0 16 3 0 200 ffffb4000fb4d9c0 sysmon smtaskq
0 15 3 0 200 ffffb4000fb4d580 pmfsuspend pmfsuspend
0 14 3 0 200 ffffb4000fb4d140 pmfevent pmfevent
0 13 3 0 200 ffffb4000fb4a980 sopendfree sopendfr
0 12 3 0 200 ffffb4000fb4a540 ifwdog ifwdog
0 11 3 1 200 ffffb4000fb4a100 iflnkst iflnkst
0 10 3 0 200 ffffb4000fb3b940 nfssilly nfssilly
0 9 3 0 200 ffffb4000fb3b500 pooldisp pooldisp
0 8 3 1 200 ffffb4000fb3b0c0 modunload mod_unld
0 7 3 0 200 ffffb4000fb32900 xcall/0 xcall
0 6 1 0 200 ffffb4000fb324c0 softser/0
0 5 1 0 200 ffffb4000fb32080 softclk/0
0 4 1 0 200 ffffb4000fb308c0 softbio/0
0 3 1 0 200 ffffb4000fb30480 softnet/0
0 2 1 0 201 ffffb4000fb30040 idle/0
0 0 3 0 240 ffffffff83350200 swapper mutex
[Locks tracked through LWPs]

****** LWP 15494.15494 (syz-executor.4) @ 0xffffb40014ac31c0, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x365 sys/kern/kern_fork.c:366)
lock address : ffffb40014d49790
type : sleep/adaptive
initialized : netbsd:fork1+0x365
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffb40014ac31c0 last held: 0xffffb40014ac31c0
last locked* : netbsd:exit1+0x2f2
unlocked : 0
owner/count : 0xffffb40014ac31c0 flags : 0x0000000000000004
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 18478.18478 (ifconfig) @ 0xffffb40012a6e8c0, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:amap_ctor+0x39 sys/uvm/uvm_amap.c:265)
lock address : ffffb400153c3880
type : sleep/adaptive
initialized : netbsd:amap_ctor+0x39
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffb40012a6e8c0 last held: 0xffffb40012a6e8c0
last locked* : netbsd:uvm_fault_internal+0x88a
unlocked : 0
owner/count : 000000000000000000 flags : 000000000000000000
Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at netbsd:pmap_ctor+0x93 sys/arch/x86/x86/pmap.c:2872)
lock address : ffffb40013344780
type : sleep/adaptive
initialized : netbsd:pmap_ctor+0x93
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffb40012a6e8c0 last held: 0xffffb40012a6e8c0
last locked* : netbsd:pmap_enter_ma+0x386
unlocked : netbsd:pmap_enter_ma+0xe14
owner field : 0xfffffffffffffff0 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 17559.2806 (syz-executor.2) @ 0xffffb400133c7b00, l_stat=7

*** Locks held:

* Lock 0 (initialized at netbsd:fstrans_init+0x20 sys/kern/vfs_trans.c:136)
lock address : netbsd:vfs_suspend_lock
type : sleep/adaptive
initialized : netbsd:fstrans_init+0x20
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffb400133c7b00 last held: 0xffffb400133c7b00
last locked* : netbsd:vfs_suspend+0x184
unlocked : netbsd:mount_domount+0xb89
owner field : 0xffffb400133c7b00 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at netbsd:vfs_mountalloc+0xc7 sys/kern/vfs_mount.c:163)
lock address : ffffb4001503f7c0
type : sleep/adaptive
initialized : netbsd:vfs_mountalloc+0xc7
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffb400133c7b00 last held: 0xffffb400133c7b00
last locked* : netbsd:mount_domount+0x2b9
unlocked : 0
owner field : 0xffffb400133c7b00 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

* Lock 2 (initialized at netbsd:vcache_alloc+0x3e sys/kern/vfs_vnode.c:1438)
lock address : ffffb40015340200
type : sleep/adaptive
initialized : netbsd:vcache_alloc+0x3e
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffffb400133c7b00 last held: 0xffffb400133c7b00
last locked* : netbsd:genfs_lock+0x160
unlocked : netbsd:genfs_unlock+0x2a
owner/count : 0xffffb400133c7b00 flags : 0x0000000000000004
Turnstile: no active turnstile for this lock.

* Lock 3 (initialized at netbsd:procinit+0x5c sys/kern/kern_proc.c:387)
lock address : netbsd:proc_lock
type : sleep/adaptive
initialized : netbsd:procinit+0x5c
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffffb400133c7b00 last held: 0xffffb400133c7b00
last locked* : netbsd:mount_domount+0x6f4
unlocked : netbsd:lwp_create+0xa6b
owner field : 0xffffb400133c7b00 wait/spin: 1/0
Turnstile:
=> 0 waiting readers:
=> 2 waiting writers: 0xffffffff83350200 0xffffb40014ad4a80

*** Locks wanted: none

****** LWP 745.745 (dhcpcd) @ 0xffffb40012caf500, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffb40012caf500 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 582.582 (dhcpcd) @ 0xffffb40012c78bc0, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffb40012c78bc0 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 292.292 (dhcpcd) @ 0xffffb40012d9a900, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffb40012d9a900 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 485.485 (dhcpcd) @ 0xffffb40012d9a4c0, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffb40012d9a4c0 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.26 (softclk/1) @ 0xffffb40010cac240, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffb40010cac240 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffb4000fb4a100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffb4000fb4a100 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffffb4000fb32080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffb4000fb32080 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff83350200, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffffff83350200 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at netbsd:main+0x11e sys/kern/init_main.c:304)
lock address : netbsd:kernel_lock
type : spin
initialized : netbsd:main+0x11e
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffb40012c5db80 last held: 0xffffb4000fb324c0
last locked* : netbsd:softint_dispatch+0x8ae
unlocked : netbsd:softint_dispatch+0x8df
curcpu holds : 0 wanted by: 000000000000000000

* Lock 1 (initialized at netbsd:com_attach_subr+0x12e sys/dev/ic/com.c:565)
lock address : ffffb40010c03d20
type : spin
initialized : netbsd:com_attach_subr+0x12e
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0
relevant lwp : 0xffffb40012c5db80 last held: 0xffffb4000fb324c0
last locked* : netbsd:comstart+0x171
unlocked : netbsd:comintr+0xbd6
owner field : 0x0000000000000800 wait/spin: 0/1

******* Locks held on cpu1:

* Lock 0 (initialized at netbsd:kprintf_init+0x61 sys/kern/subr_prf.c:156)
lock address : netbsd:kprintf_mtx
type : spin
initialized : netbsd:kprintf_init+0x61
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1
relevant lwp : 0xffffb400133c7b00 last held: 0xffffb400133c7b00
last locked* : netbsd:kprintf_lock+0x33
unlocked : netbsd:kprintf_unlock+0x53
owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON
0xffffb40000017180 0041 00000000 0x0 0x0
0xffffb40000017200 0041 00000000 0x0 0x0
0xffffb40000017280 0041 00000000 0x0 0x0
0xffffb40000017300 0041 00000000 0x0 0x0
0xffffb40000017380 0041 00000000 0x0 0x0
0xffffb40000017400 0041 00000000 0x0 0x0
0xffffb40000017480 0041 00000000 0x0 0x0
0xffffb40000017500 0041 00000000 0x0 0x0
0xffffb40000017580 0041 00000000 0x0 0x0
0xffffb40000017600 0041 00000000 0x0 0x0
0xffffb40000017680 0041 00000000 0x0 0x0
0xffffb40000017700 0041 00000000 0x0 0x0
0xffffb40000017780 0041 00000000 0x0 0x0
0xffffb40000017800 0041 00000000 0x0 0x0
0xffffb40000017880 0041 00000000 0x0 0x0
0xffffb40000017900 0041 00000000 0x0 0x0
0xffffb40000017980 0041 00000000 0x0 0x0
0xffffb40000017a00 0041 00000000 0x0 0x0
0xffffb40000017a80 0041 00000000 0x0 0x0
0xffffb40000017b00 0041 00000000 0x0 0x0
0xffffb40000017b80 0041 00000000 0x0 0x0
0xffffb40000017c00 0041 00000000 0x0 0x0
0xffffb40000017c80 0041 00000000 0x0 0x0
0xffffb40000017d00 0041 00000000 0x0 0x0
0xffffb40000017d80 0041 00000000 0x0 0x0
0xffffb40000017e00 0041 00000000 0x0 0x0
0xffffb40000017e80 0041 00000000 0x0 0x0
0xffffb40000017f00 0041 00000000 0x0 0x0
0xffffb40000017f80 0041 00000000 0x0 0x0
0xffffb40000018000 0041 00000000 0x0 0x0
0xffffb40000018080 0041 00000000 0x0 0x0
0xffffb40000018100 0041 00000000 0x0 0x0
0xffffb40000018180 0041 00000000 0x0 0x0
0xffffb40000018200 0041 00000000 0x0 0x0
0xffffb40000018280 0041 00000000 0x0 0x0
0xffffb40000018300 0041 00000000 0x0 0x0
0xffffb40000018380 0041 00000000 0x0 0x0
0xffffb40000018400 0041 00000000 0x0 0x0
0xffffb40000018480 0041 00000000 0x0 0x0
0xffffb40000018500 0041 00000000 0x0 0x0
0xffffb40000018580 0041 00000000 0x0 0x0
0xffffb40000018600 0041 00000000 0x0 0x0
0xffffb40000018680 0041 00000000 0x0 0x0
0xffffb40000018700 0041 00000000 0x0 0x0
0xffffb40000018780 0041 00000000 0x0 0x0
0xffffb40000018800 0041 00000000 0x0 0x0
0xffffb40000018880 0041 00000000 0x0 0x0
0xffffb40000018900 0041 00000000 0x0 0x0
0xffffb40000018980 0041 00000000 0x0 0x0
0xffffb40000018a00 0041 00000000 0x0 0x0
0xffffb40000018a80 0041 00000000 0x0 0x0
0xffffb40000018b00 0041 00000000 0x0 0x0
0xffffb40000018b80 0041 00000000 0x0 0x0
0xffffb40000018c00 0041 00000000 0x0 0x0
0xffffb40000018c80 0041 00000000 0x0 0x0
0xffffb40000018d00 0041 00000000 0x0 0x0
0xffffb40000018d80 0041 00000000 0x0 0x0
0xffffb40000018e00 0041 00000000 0x0 0x0
0xffffb40000018e80 0041 00000000 0x0 0x0
0xffffb40000018f00 0041 00000000 0x0 0x0
0xffffb40000018f80 0041 00000000 0x0 0x0
0xffffb40000019000 0041 00000000 0x0 0x0
0xffffb40000019080 0041 00000000 0x0 0x0
0xffffb40000019100 0041 00000000 0x0 0x0
0xffffb40000019180 0041 00000000 0x0 0x0
0xffffb40000019200 0041 00000000 0x0 0x0
0xffffb40000019280 0041 00000000 0x0 0x0
0xffffb40000019300 0041 00000000 0x0 0x0
0xffffb40000019380 0041 00000000 0x0 0x0
0xffffb40000019400 0041 00000000 0x0 0x0
0xffffb40000019480 0041 00000000 0x0 0x0
0xffffb40000019500 0041 00000000 0x0 0x0
0xffffb40000019580 0041 00000000 0x0 0x0
0xffffb40000019600 0041 00000000 0x0 0x0
0xffffb40000019680 0041 00000000 0x0 0x0
0xffffb40000019700 0041 00000000 0x0 0x0
0xffffb40000019780 0041 00000000 0x0 0x0
0xffffb40000019800 0041 00000000 0x0 0x0
0xffffb40000019880 0041 00000000 0x0 0x0
0xffffb40000019900 0041 00000000 0x0 0x0
0xffffb40000019980 0041 00000000 0x0 0x0
0xffffb40000019a00 0041 00000000 0x0 0x0
0xffffb40000019a80 0041 00000000 0x0 0x0
0xffffb40000019b00 0041 00000000 0x0 0x0
0xffffb40000019b80 0041 00000000 0x0 0x0
0xffffb40000019c00 0041 00000000 0x0 0x0
0xffffb40000019c80 0041 00000000 0x0 0x0
0xffffb40000019d00 0041 00000000 0x0 0x0
0xffffb40000019d80 0041 00000000 0x0 0x0
0xffffb40000019e00 0041 00000000 0x0 0x0
0xffffb40000019e80 0041 00000000 0x0 0x0
0xffffb40000019f00 0041 00000000 0x0 0x0
0xffffb40000019f80 0041 00000000 0x0 0x0
0xffffb4000001a000 0041 00000000 0x0 0x0
0xffffb4000001a080 0041 00000000 0x0 0x0
0xffffb4000001a100 0041 00000000 0x0 0x0
0xffffb4000001a180 0041 00000000 0x0 0x0
0xffffb4000001a200 0041 00000000 0x0 0x0
0xffffb4000001a280 0041 00000000 0x0 0x0
0xffffb4000001a300 0041 00000000 0x0 0x0
0xffffb4000001a380 0041 00000000 0x0 0x0
0xffffb4000001a400 0041 00000000 0x0 0x0
0xffffb4000001a480 0041 00000000 0x0 0x0
0xffffb4000001a500 0041 00000000 0x0 0x0
0xffffb4000001a580 0041 00000000 0x0 0x0
0xffffb4000001a600 0041 00000000 0x0 0x0
0xffffb4000001a680 0041 00000000 0x0 0x0
0xffffb4000001a700 0041 00000000 0x0 0x0
0xffffb4000001a780 0041 00000000 0x0 0x0
0xffffb4000001a800 0041 00000000 0x0 0x0
0xffffb4000001a880 0041 00000000 0x0 0x0
0xffffb4000001a900 0041 00000000 0x0 0x0
0xffffb4000001a980 0041 00000000 0x0 0x0
0xffffb4000001aa00 0041 00000000 0x0 0x0
0xffffb4000001aa80 0041 00000000 0x0 0x0
0xffffb4000001ab00 0041 00000000 0x0 0x0
0xffffb4000001ab80 0041 00000000 0x0 0x0
0xffffb4000001ac00 0041 00000000 0x0 0x0
0xffffb4000001ac80 0041 00000000 0x0 0x0
0xffffb4000001ad00 0041 00000000 0x0 0x0
0xffffb4000001ad80 0041 00000000 0x0 0x0
0xffffb4000001ae00 0041 00000000 0x0 0x0
0xffffb4000001ae80 0041 00000000 0x0 0x0
0xffffb4000001af00 0041 00000000 0x0 0x0
0xffffb4000001af80 0041 00000000 0x0 0x0
0xffffb4000001b000 0041 00000000 0x0 0x0
0xffffb4000001b080 0041 00000000 0x0 0x0
0xffffb4000001b100 0041 00000000 0x0 0x0
0xffffb4000001b180 0041 00000000 0x0 0x0
0xffffb4000001b200 0041 00000000 0x0 0x0
0xffffb4000001b280 0041 00000000 0x0 0x0
0xffffb4000001b300 0041 00000000 0x0 0x0
0xffffb4000001b380 0041 00000000 0x0 0x0
0xffffb4000001b400 0041 00000000 0x0 0x0
0xffffb4000001b480 0041 00000000 0x0 0x0
0xffffb4000001b500 0041 00000000 0x0 0x0
0xffffb4000001b580 0041 00000000 0x0 0x0
0xffffb4000001b600 0041 00000000 0x0 0x0
0xffffb4000001b680 0041 00000000 0x0 0x0
0xffffb4000001b700 0041 00000000 0x0 0x0
0xffffb4000001b780 0041 00000000 0x0 0x0
0xffffb4000001b800 0041 00000000 0x0 0x0
0xffffb4000001b880 0041 00000000 0x0 0x0
0xffffb4000001b900 0041 00000000 0x0 0x0
0xffffb4000001b980 0041 00000000 0x0 0x0
0xffffb4000001ba00 0041 00000000 0x0 0x0
0xffffb4000001ba80 0041 00000000 0x0 0x0
0xffffb4000001bb00 0001 00000000 0x0 0x0
0xffffb4000001bb80 0001 00000000 0x0 0x0
0xffffb4000001bc00 0001 00000000 0x0 0x0
0xffffb4000001bc80 0001 00000000 0x0 0x0
0xffffb4000001bd00 0001 00000000 0x0 0x0
0xffffb4000001bd80 0001 00000000 0x0 0x0
0xffffb4000001be00 0001 00000000 0x0 0x0
0xffffb4000001be80 0001 00000000 0x0 0x0
0xffffb4000001bf00 0001 00000000 0x0 0x0
0xffffb4000001bf80 0001 00000000 0x0 0x0
0xffffb4000001c000 0001 00000000 0x0 0x0
0xffffb4000001c080 0001 00000000 0x0 0x0
0xffffb4000001c100 0001 00000000 0x0 0x0
0xffffb4000001c180 0001 00000000 0x0 0x0
0xffffb4000001c200 0001 00000000 0x0 0x0
0xffffb4000001c280 0001 00000000 0x0 0x0
0xffffb4000001c300 0001 00000000 0x0 0x0
0xffffb4000001c380 0001 00000000 0x0 0x0
0xffffb4000001c400 0001 00000000 0x0 0x0
0xffffb4000001c480 0001 00000000 0x0 0x0
0xffffb4000001c500 0001 00000000 0x0 0x0
0xffffb4000001c580 0001 00000000 0x0 0x0
0xffffb4000001c600 0001 00000000 0x0 0x0
0xffffb4000001c680 0001 00000000 0x0 0x0
0xffffb4000001c700 0001 00000000 0x0 0x0
0xffffb4000001c780 0001 00000000 0x0 0x0
0xffffb4000001c800 0001 00000000 0x0 0x0
0xffffb4000001c880 0001 00000000 0x0 0x0
0xffffb4000001c900 0001 00000000 0x0 0x0
0xffffb4000001c980 0001 00000000 0x0 0x0
0xffffb4000001ca00 0001 00000000 0x0 0x0
0xffffb4000001ca80 0001 00000000 0x0 0x0
0xffffb4000001cb00 0001 00000000 0x0 0x0
0xffffb4000001cb80 0001 00000000 0x0 0x0
0xffffb4000001cc00 0001 00000000 0x0 0x0
0xffffb4000001cc80 0001 00000000 0x0 0x0
0xffffb4000001cd00 0001 00000000 0x0 0x0
0xffffb4000001cd80 0001 00000000 0x0 0x0
0xffffb4000001ce00 0001 00000000 0x0 0x0
0xffffb4000001ce80 0001 00000000 0x0 0x0
0xffffb4000001cf00 0001 00000000 0x0 0x0
0xffffb4000001cf80 0001 00000000 0x0 0x0
0xffffb4000001d000 0001 00000000 0x0 0x0
0xffffb4000001d080 0001 00000000 0x0 0x0
0xffffb4000001d100 0001 00000000 0x0 0x0
0xffffb4000001d180 0001 00000000 0x0 0x0
0xffffb4000001d200 0001 00000000 0x0 0x0
0xffffb4000001d280 0001 00000000 0x0 0x0
0xffffb4000001d300 0001 00000000 0x0 0x0
0xffffb4000001d380 0001 00000000 0x0 0x0
0xffffb4000001d400 0001 00000000 0x0 0x0
0xffffb4000001d480 0001 00000000 0x0 0x0
0xffffb4000001d500 0001 00000000 0x0 0x0
0xffffb4000001d580 0001 00000000 0x0 0x0
0xffffb4000001d600 0001 00000000 0x0 0x0
0xffffb4000001d680 0001 00000000 0x0 0x0
0xffffb4000001d700 0001 00000000 0x0 0x0
0xffffb4000001d780 0001 00000000 0x0 0x0
0xffffb4000001d800 0001 00000000 0x0 0x0
0xffffb4000001d880 0001 00000000 0x0 0x0
0xffffb4000001d900 0001 00000000 0x0 0x0
0xffffb4000001d980 0001 00000000 0x0 0x0
0xffffb4000001da00 0001 00000000 0x0 0x0
0xffffb4000001da80 0001 00000000 0x0 0x0
0xffffb4000001db00 0001 00000000 0x0 0x0
0xffffb4000001db80 0001 00000000 0x0 0x0
0xffffb4000001dc00 0001 00000000 0x0 0x0
0xffffb4000001dc80 0001 00000000 0x0 0x0
0xffffb4000001dd00 0001 00000000 0x0 0x0
0xffffb4000001dd80 0001 00000000 0x0 0x0
0xffffb4000001de00 0001 00000000 0x0 0x0
0xffffb4000001de80 0001 00000000 0x0 0x0
0xffffb4000001df00 0001 00000000 0x0 0x0
0xffffb4000001df80 0001 00000000 0x0 0x0
0xffffb4000001e000 0001 00000000 0x0 0x0
0xffffb4000001e080 0001 00000000 0x0 0x0
0xffffb4000001e100 0001 00000000 0x0 0x0
0xffffb4000001e180 0001 00000000 0x0 0x0
0xffffb4000001e200 0001 00000000 0x0 0x0
0xffffb4000001e280 0001 00000000 0x0 0x0
0xffffb4000001e300 0001 00000000 0x0 0x0
0xffffb4000001e380 0001 00000000 0x0 0x0
0xffffb4000001e400 0001 00000000 0x0 0x0
0xffffb4000001e480 0001 00000000 0x0 0x0
0xffffb4000001e500 0001 00000000 0x0 0x0
0xffffb4000001e580 0001 00000000 0x0 0x0
0xffffb4000001e600 0001 00000000 0x0 0x0
0xffffb4000001e680 0001 00000000 0x0 0x0
0xffffb4000001e700 0001 00000000 0x0 0x0
0xffffb4000001e780 0001 00000000 0x0 0x0
0xffffb4000001e800 0001 00000000 0x0 0x0
0xffffb4000001e880 0001 00000000 0x0 0x0
0xffffb4000001e900 0001 00000000 0x0 0x0
0xffffb4000001e980 0001 00000000 0x0 0x0
0xffffb4000001ea00 0001 00000000 0x0 0x0
0xffffb4000001ea80 0001 00000000 0x0 0x0
0xffffb4000001eb00 0001 00000000 0x0 0x0
0xffffb4000001eb80 0001 00000000 0x0 0x0
0xffffb4000001ec00 0001 00000000 0x0 0x0
0xffffb4000001ec80 0001 00000000 0x0 0x0
0xffffb4000001ed00 0001 00000000 0x0 0x0
0xffffb4000001ed80 0001 00000000 0x0 0x0
0xffffb4000001ee00 0001 00000000 0x0 0x0
0xffffb4000001ee80 0001 00000000 0x0 0x0
0xffffb4000001ef00 0001 00000000 0x0 0x0
0xffffb4000001ef80 0001 00000000 0x0 0x0
0xffffb4000001f000 0001 00000000 0x0 0x0
0xffffb4000001f080 0001 00000000 0x0 0x0
0xffffb4000001f100 0001 00000000 0x0 0x0
0xffffb4000001f180 0001 00000000 0x0 0x0
0xffffb4000001f200 0001 00000000 0x0 0x0
0xffffb4000001f280 0001 00000000 0x0 0x0
0xffffb4000001f300 0001 00000000 0x0 0x0
0xffffb4000001f380 0001 00000000 0x0 0x0
0xffffb4000001f400 0001 00000000 0x0 0x0
0xffffb4000001f480 0001 00000000 0x0 0x0
0xffffb4000001f500 0001 00000000 0x0 0x0
0xffffb4000001f580 0001 00000000 0x0 0x0
0xffffb4000001f600 0001 00000000 0x0 0x0
0xffffb4000001f680 0001 00000000 0x0 0x0
0xffffb4000001f700 0001 00000000 0x0 0x0
0xffffb4000001f780 0001 00000000 0x0 0x0
0xffffb4000001f800 0001 00000000 0x0 0x0
0xffffb4000001f880 0001 00000000 0x0 0x0
0xffffb4000001f900 0001 00000000 0x0 0x0
0xffffb4000001f980 0001 00000000 0x0 0x0
0xffffb4000001fa00 0001 00000000 0x0 0x0
0xffffb4000001fa80 0001 00000000 0x0 0x0
0xffffb4000001fb00 0001 00000000 0x0 0x0
0xffffb4000001fb80 0001 00000000 0x0 0x0
0xffffb4000001fc00 0001 00000000 0x0 0x0
0xffffb4000001fc80 0001 00000000 0x0 0x0
0xffffb4000001fd00 0001 00000000 0x0 0x0
0xffffb4000001fd80 0001 00000000 0x0 0x0
0xffffb4000001fe00 0001 00000000 0x0 0x0
0xffffb4000001fe80 0001 00000000 0x0 0x0
0xffffb4000001ff00 0001 00000000 0x0 0x0
0xffffb4000001ff80 0001 00000000 0x0 0x0
0xffffb40000020000 0001 00000000 0x0 0x0
0xffffb40000020080 0001 00000000 0x0 0x0
0xffffb40000020100 0001 00000000 0x0 0x0
0xffffb40000020180 0001 00000000 0x0 0x0
0xffffb40000020200 0001 00000000 0x0 0x0
0xffffb40000020280 0001 00000000 0x0 0x0
0xffffb40000020300 0001 00000000 0x0 0x0
0xffffb40000020380 0001 00000000 0x0 0x0
0xffffb40000020400 0001 00000000 0x0 0x0
0xffffb40000020480 0001 00000000 0x0 0x0
0xffffb40000020500 0001 00000000 0x0 0x0
0xffffb40000020580 0001 00000000 0x0 0x0
0xffffb40000020600 0001 00000000 0x0 0x0
0xffffb40000020680 0001 00000000 0x0 0x0
0xffffb40000020700 0001 00000000 0x0 0x0
0xffffb40000020780 0001 00000000 0x0 0x0
0xffffb40000020800 0001 00000000 0x0 0x0
0xffffb40000020880 0001 00000000 0x0 0x0
0xffffb40000020900 0001 00000000 0x0 0x0
0xffffb40000020980 0001 00000000 0x0 0x0
0xffffb40000020a00 0001 00000000 0x0 0x0
0xffffb40000020a80 0001 00000000 0x0 0x0
0xffffb40000020b00 0001 00000000 0x0 0x0
0xffffb40000020b80 0001 00000000 0x0 0x0
0xffffb40000020c00 0001 00000000 0x0 0x0
0xffffb40000020c80 0001 00000000 0x0 0x0
0xffffb40000020d00 0001 00000000 0x0 0x0
0xffffb40000020d80 0001 00000000 0x0 0x0
0xffffb40000020e00 0001 00000000 0x0 0x0
0xffffb40000020e80 0001 00000000 0x0 0x0
0xffffb40000020f00 0001 00000000 0x0 0x0
0xffffb40000020f80 0001 00000000 0x0 0x0
0xffffb40000021000 0001 00000000 0x0 0x0
0xffffb40000021080 0001 00000000 0x0 0x0
0xffffb40000021100 0001 00000000 0x0 0x0
0xffffb40000021180 0001 00000000 0x0 0x0
0xffffb40000021200 0001 00000000 0x0 0x0
0xffffb40000021280 0001 00000000 0x0 0x0
0xffffb40000021300 0001 00000000 0x0 0x0
0xffffb40000021380 0001 00000000 0x0 0x0
0xffffb40000021400 0001 00000000 0x0 0x0
0xffffb40000021480 0001 00000000 0x0 0x0
0xffffb40000021500 0001 00000000 0x0 0x0
0xffffb40000021580 0001 00000000 0x0 0x0
0xffffb40000021600 0001 00000000 0x0 0x0
0xffffb40000021680 0001 00000000 0x0 0x0
0xffffb40000021700 0001 00000000 0x0 0x0
0xffffb40000021780 0001 00000000 0x0 0x0
0xffffb40000021800 0001 00000000 0x0 0x0
0xffffb40000021880 0001 00000000 0x0 0x0
0xffffb40000021900 0001 00000000 0x0 0x0
0xffffb40000021980 0001 00000000 0x0 0x0
0xffffb40000021a00 0001 00000000 0x0 0x0
0xffffb40000021a80 0001 00000000 0x0 0x0
0xffffb40000021b00 0001 00000000 0x0 0x0
0xffffb40000021b80 0001 00000000 0x0 0x0
0xffffb40000021c00 0001 00000000 0x0 0x0
0xffffb40000021c80 0001 00000000 0x0 0x0
0xffffb40000021d00 0001 00000000 0x0 0x0
0xffffb40000021d80 0001 00000000 0x0 0x0
0xffffb40000021e00 0001 00000000 0x0 0x0
0xffffb40000021e80 0001 00000000 0x0 0x0
0xffffb40000021f00 0001 00000000 0x0 0x0
0xffffb40000021f80 0001 00000000 0x0 0x0
0xffffb40000022000 0001 00000000 0x0 0x0
0xffffb40000022080 0001 00000000 0x0 0x0
0xffffb40000022100 0001 00000000 0x0 0x0
0xffffb40000022180 0001 00000000 0x0 0x0
0xffffb40000022200 0001 00000000 0x0 0x0
0xffffb40000022280 0001 00000000 0x0 0x0
0xffffb40000022300 0001 00000000 0x0 0x0
0xffffb40000022380 0001 00000000 0x0 0x0
0xffffb40000022400 0001 00000000 0x0 0x0
0xffffb40000022480 0001 00000000 0x0 0x0
0xffffb40000022500 0001 00000000 0x0 0x0
0xffffb40000022580 0001 00000000 0x0 0x0
0xffffb40000022600 0001 00000000 0x0 0x0
0xffffb40000022680 0001 00000000 0x0 0x0
0xffffb40000022700 0001 00000000 0x0 0x0
0xffffb40000022780 0001 00000000 0x0 0x0
0xffffb40000022800 0001 00000000 0x0 0x0
0xffffb40000022880 0001 00000000 0x0 0x0
0xffffb40000022900 0001 00000000 0x0 0x0
0xffffb40000022980 0001 00000000 0x0 0x0
0xffffb40000022a00 0001 00000000 0x0 0x0
0xffffb40000022a80 0001 00000000 0x0 0x0
0xffffb40000022b00 0001 00000000 0x0 0x0
0xffffb40000022b80 0001 00000000 0x0 0x0
0xffffb40000022c00 0001 00000000 0x0 0x0
0xffffb40000022c80 0001 00000000 0x0 0x0
0xffffb40000022d00 0001 00000000 0x0 0x0
0xffffb40000022d80 0001 00000000 0x0 0x0
0xffffb40000022e00 0001 00000000 0x0 0x0
0xffffb40000022e80 0001 00000000 0x0 0x0
0xffffb40000022f00 0001 00000000 0x0 0x0
0xffffb40000022f80 0001 00000000 0x0 0x0
0xffffb40000023000 0001 00000000 0x0 0x0
0xffffb40000023080 0001 00000000 0x0 0x0
0xffffb40000023100 0001 00000000 0x0 0x0
0xffffb40000023180 0001 00000000 0x0 0x0
0xffffb40000023200 0001 00000000 0x0 0x0
0xffffb40000023280 0001 00000000 0x0 0x0
0xffffb40000023300 0001 00000000 0x0 0x0
0xffffb40000023380 0001 00000000 0x0 0x0
0xffffb40000023400 0001 00000000 0x0 0x0
0xffffb40000023480 0001 00000000 0x0 0x0
0xffffb40000023500 0001 00000000 0x0 0x0
0xffffb40000023580 0001 00000000 0x0 0x0
0xffffb40000023600 0001 00000000 0x0 0x0
0xffffb40000023680 0001 00000000 0x0 0x0
0xffffb40000023700 0001 00000000 0x0 0x0
0xffffb40000023780 0001 00000000 0x0 0x0
0xffffb40000023800 0001 00000000 0x0 0x0
0xffffb40000023880 0001 00000000 0x0 0x0
0xffffb40000023900 0001 00000000 0x0 0x0
0xffffb40000023980 0001 00000000 0x0 0x0
0xffffb40000023a00 0001 00000000 0x0 0x0
0xffffb40000023a80 0001 00000000 0x0 0x0
0xffffb40000023b00 0001 00000000 0x0 0x0
0xffffb40000023b80 0001 00000000 0x0 0x0
0xffffb40000023c00 0001 00000000 0x0 0x0
0xffffb40000023c80 0001 00000000 0x0 0x0
0xffffb40000023d00 0001 00000000 0x0 0x0
0xffffb40000023d80 0001 00000000 0x0 0x0
0xffffb40000023e00 0001 00000000 0x0 0x0
0xffffb40000023e80 0001 00000000 0x0 0x0
0xffffb40000023f00 0001 00000000 0x0 0x0
0xffffb40000023f80 0001 00000000 0x0 0x0
0xffffb40000024000 0001 00000000 0x0 0x0
0xffffb40000024080 0001 00000000 0x0 0x0
0xffffb40000024100 0001 00000000 0x0 0x0
0xffffb40000024180 0001 00000000 0x0 0x0
0xffffb40000024200 0001 00000000 0x0 0x0
0xffffb40000024280 0001 00000000 0x0 0x0
0xffffb40000024300 0001 00000000 0x0 0x0
0xffffb40000024380 0001 00000000 0x0 0x0
0xffffb40000024400 0001 00000000 0x0 0x0
0xffffb40000024480 0001 00000000 0x0 0x0
0xffffb40000024500 0001 00000000 0x0 0x0
0xffffb40000024580 0001 00000000 0x0 0x0
0xffffb40000024600 0001 00000000 0x0 0x0
0xffffb40000024680 0001 00000000 0x0 0x0
0xffffb40000024700 0001 00000000 0x0 0x0
0xffffb40000024780 0001 00000000 0x0 0x0
0xffffb40000024800 0001 00000000 0x0 0x0
0xffffb40000024880 0001 00000000 0x0 0x0
0xffffb40000024900 0001 00000000 0x0 0x0
0xffffb40000024980 0001 00000000 0x0 0x0
0xffffb40000024a00 0001 00000000 0x0 0x0
0xffffb40000024a80 0001 00000000 0x0 0x0
0xffffb40000024b00 0001 00000000 0x0 0x0
0xffffb40000024b80 0001 00000000 0x0 0x0
0xffffb40000024c00 0001 00000000 0x0 0x0
0xffffb40000024c80 0001 00000000 0x0 0x0
0xffffb40000024d00 0001 00000000 0x0 0x0
0xffffb40000024d80 0001 00000000 0x0 0x0
0xffffb40000024e00 0001 00000000 0x0 0x0
0xffffb40000024e80 0001 00000000 0x0 0x0
0xffffb40000024f00 0001 00000000 0x0 0x0
0xffffb40000024f80 0001 00000000 0x0 0x0
0xffffb40000025000 0001 00000000 0x0 0x0
0xffffb40000025080 0001 00000000 0x0 0x0
0xffffb40000025100 0001 00000000 0x0 0x0
0xffffb40000025180 0001 00000000 0x0 0x0
0xffffb40000025200 0001 00000000 0x0 0x0
0xffffb40000025280 0001 00000000 0x0 0x0
0xffffb40000025300 0001 00000000 0x0 0x0
0xffffb40000025380 0001 00000000 0x0 0x0
0xffffb40000025400 0001 00000000 0x0 0x0
0xffffb40000025480 0001 00000000 0x0 0x0
0xffffb40000025500 0001 00000000 0x0 0x0
0xffffb40000025580 0001 00000000 0x0 0x0
0xffffb40000025600 0001 00000000 0x0 0x0
0xffffb40000025680 0001 00000000 0x0 0x0
0xffffb40000025700 0001 00000000 0x0 0x0
0xffffb40000025780 0001 00000000 0x0 0x0
0xffffb40000025800 0001 00000000 0x0 0x0
0xffffb40000025880 0001 00000000 0x0 0x0
0xffffb40000025900 0001 00000000 0x0 0x0
0xffffb40000025980 0001 00000000 0x0 0x0
0xffffb40000025a00 0001 00000000 0x0 0x0
0xffffb40000025a80 0001 00000000 0x0 0x0
0xffffb40000025b00 0001 00000000 0x0 0x0
0xffffb40000025b80 0001 00000000 0x0 0x0
0xffffb40000025c00 0001 00000000 0x0 0x0
0xffffb40000025c80 0001 00000000 0x0 0x0
0xffffb40000025d00 0001 00000000 0x0 0x0
0xffffb40000025d80 0001 00000000 0x0 0x0
0xffffb40000025e00 0001 00000000 0x0 0x0
0xffffb40000025e80 0001 00000000 0x0 0x0
0xffffb40000025f00 0001 00000000 0x0 0x0
0xffffb40000025f80 0001 00000000 0x0 0x0
0xffffb40000026000 0001 00000000 0x0 0x0
0xffffb40000026080 0001 00000000 0x0 0x0
0xffffb40000026100 0001 00000000 0x0 0x0
0xffffb40000026180 0001 00000000 0x0 0x0
0xffffb40000026200 0001 00000000 0x0 0x0
0x

---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.

syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.

If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title

If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)

If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report

If you want to undo deduplication, reply with:
#syz undup

[syzbot]

Hello,

syzbot found the following issue on:

HEAD commit: e9cd92281172 Ignore unit attention caused EIO errors when ..
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=17ab9156980000
kernel config: https://syzkaller.appspot.com/x/.config?x=fab579639ba4bf0a
dashboard link: https://syzkaller.appspot.com/bug?extid=be20f67bc6ca3581d94e

compiler: g++ (Debian 12.2.0-14) 12.2.0

Unfortunately, I don't have any reproducer for this issue yet.

Downloadable assets:

disk image: https://storage.googleapis.com/syzbot-assets/7031dddde2e2/disk-e9cd9228.raw.xz
netbsd.gdb: https://storage.googleapis.com/syzbot-assets/d2bcb5e76758/netbsd-e9cd9228.gdb.xz

IMPORTANT: if you fix the issue, please add the following tag to the commit:

Reported-by: syzbot+be20f6...@syzkaller.appspotmail.com

[ 451.5980157] panic:ASan: Unau thorized Access In 0xffffffff81cf0551: Addr 0xffff9e00143eee00 [8 bytes, read, PoolUseAfterFree]

[ 451.6080667] cpu1: Begin traceback...
[ 451.6281523] vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
[ 451.6884524] panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
[ 451.7487699] kasan_report() at netbsd:kasan_report+0x8f kasan_code_name sys/kern/subr_asan.c:169 [inline]
[ 451.7487699] kasan_report() at netbsd:kasan_report+0x8f sys/kern/subr_asan.c:201
[ 451.7990359] __asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:371 [inline]
[ 451.7990359] __asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
[ 451.7990359] __asan_load8() at netbsd:__asan_load8+0xac sys/kern/subr_asan.c:1208
[ 451.8492480] mount_domount() at netbsd:mount_domount+0x783 mount_checkdirs sys/kern/vfs_mount.c:744 [inline]
[ 451.8492480] mount_domount() at netbsd:mount_domount+0x783 sys/kern/vfs_mount.c:898
[ 451.8894477] do_sys_mount() at netbsd:do_sys_mount+0x79d sys/kern/vfs_syscalls.c:616
[ 451.9396982] sys___mount50() at netbsd:sys___mount50+0x8f sys/kern/vfs_syscalls.c:537
[ 451.9899489] sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
[ 451.9899489] sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90
[ 452.0502669] syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
[ 452.0502669] syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
[ 452.0502669] syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137
[ 452.0602992] --- syscall (number 410 via SYS_syscall) ---
[ 452.0804155] netbsd:syscall+0x246:
[ 452.0804155] cpu1: End traceback...
[ 452.0804155] fatal breakpoint trap in supervisor mode
[ 452.0904487] trap type 1 code 0 rip 0xffffffff8023240d cs 0x8 rflags 0x286 cr2 0x7090eb56fff8 ilevel 0 rsp 0xffff9e02489a7900
[ 452.1005155] curlwp 0xffff9e0013494a00 pid 7525.7825 lowest kstack 0xffff9e02489a02c0
Stopped in pid 7525.7825 (syz-executor.4) at netbsd:breakpoint+0x5: leave

?
breakpoint() at netbsd:breakpoint+0x5
db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:71
vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
kasan_report() at netbsd:kasan_report+0x8f kasan_code_name sys/kern/subr_asan.c:169 [inline]
kasan_report() at netbsd:kasan_report+0x8f sys/kern/subr_asan.c:201
__asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:371 [inline]
__asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
__asan_load8() at netbsd:__asan_load8+0xac sys/kern/subr_asan.c:1208
mount_domount() at netbsd:mount_domount+0x783 mount_checkdirs sys/kern/vfs_mount.c:744 [inline]
mount_domount() at netbsd:mount_domount+0x783 sys/kern/vfs_mount.c:898
do_sys_mount() at netbsd:do_sys_mount+0x79d sys/kern/vfs_syscalls.c:616

sys___mount50() at netbsd:sys___mount50+0x8f sys/kern/vfs_syscalls.c:537

sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90
syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137

--- syscall (number 410 via SYS_syscall) ---
netbsd:syscall+0x246:
Panic string: ASan: Unauthorized Access In 0xffffffff81cf0551: Addr 0xffff9e00143eee00 [8 bytes, read, PoolUseAfterFree]

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

7525 8525 2 1 0 ffff9e00133cd6c0 syz-executor.4
7525 8043 3 0 0 ffff9e0012ab3080 syz-executor.4 fstchg
7525 7677 3 0 0 ffff9e001409e500 syz-executor.4 fstchg
7525 > 7825 7 1 0 ffff9e0013494a00 syz-executor.4
7525 7525 2 1 10040000 ffff9e0013f6c740 syz-executor.4
10034 10034 2 1 40000 ffff9e0012d0d280 syz-executor.0
11092 11092 2 1 40000 ffff9e0012b86980 sh
10986 10986 2 1 40000 ffff9e0012cc4540 syz-executor.1
8263 7326 2 0 100000 ffff9e00133cd280 syz-executor.5
8263 11834 2 1 140000 ffff9e0013faf780 syz-executor.5
8263 11700 3 0 140000 ffff9e00133b3680 syz-executor.5 fstchg
8263 8263 2 0 10040040 ffff9e0013e67280 syz-executor.5
7302 7302 3 1 180 ffff9e0012cf5a80 syz-executor.3 wait
10665 10665 2 1 0 ffff9e0012cb3500 syz-executor.2
7562 7562 2 1 140 ffff9e0013446480 syz-executor.1
11370 11370 2 1 140 ffff9e0014414a80 syz-executor.5
10827 10827 2 1 140 ffff9e0012d16700 syz-executor.4
7660 7660 3 1 180 ffff9e0012ab3900 init nanoslp
7060 7060 3 0 180 ffff9e0012cd65c0 syz-executor.3 parked
9048 7456 3 0 11100000 ffff9e0012cd6180 syz-executor.3 vfork
9048 9048 2 1 11000040 ffff9e001347f140 syz-executor.3
1416 1416 3 0 180 ffff9e0013fafbc0 syz-executor.5 parked
920 920 3 0 180 ffff9e00133991c0 syz-executor.3 parked
2152 2152 3 1 180 ffff9e0013f12b40 syz-executor.3 parked
2355 2485 2 1 1000040 ffff9e00134468c0 syz-executor.3
2355 2363 3 1 1100000 ffff9e0013fd2900 syz-executor.3 vfork
1106 1342 3 1 180 ffff9e0012d7c040 syz-fuzzer wait
1106 1337 3 1 180 ffff9e0012c99040 syz-fuzzer parked
1106 1207 3 1 180 ffff9e0013e67b00 syz-fuzzer parked
1106 991 3 1 180 ffff9e0012ad50c0 syz-fuzzer parked
1106 1241 3 0 180 ffff9e0012b86540 syz-fuzzer wait
1106 1246 3 1 180 ffff9e0012b86100 syz-fuzzer wait
1106 1243 3 1 180 ffff9e0013de8200 syz-fuzzer wait
1106 829 2 1 0 ffff9e0013db91c0 syz-fuzzer
1106 1223 3 1 180 ffff9e0013429b40 syz-fuzzer parked
1106 449 3 1 180 ffff9e0013429700 syz-fuzzer parked
1106 1111 3 0 180 ffff9e00134292c0 syz-fuzzer parked
1106 1229 3 1 180 ffff9e00133a6a80 syz-fuzzer wait
1106 1080 3 1 180 ffff9e00133a6640 syz-fuzzer parked
1106 1106 3 0 180 ffff9e0012ad5500 syz-fuzzer wait
1237 1237 3 0 180 ffff9e0012a76480 sshd select
1151 1151 3 0 180 ffff9e001347f9c0 getty nanoslp
1225 1225 3 1 180 ffff9e00134945c0 getty nanoslp
1184 1184 3 1 180 ffff9e0013494180 getty nanoslp
1105 1105 3 0 180 ffff9e00133a6200 sshd select
1088 1088 3 1 180 ffff9e0012d59bc0 powerd kqueue
700 700 3 0 180 ffff9e001343d780 syslogd kqueue
747 747 3 0 180 ffff9e0012c6a300 dhcpcd poll
620 620 3 0 180 ffff9e0012c16680 dhcpcd poll
742 742 3 0 180 ffff9e0012c4bb40 dhcpcd poll
487 487 3 0 180 ffff9e0012d8e900 dhcpcd poll
292 292 3 0 180 ffff9e0012d8e4c0 dhcpcd poll
485 485 3 0 180 ffff9e0012d8e080 dhcpcd poll
1 1 3 0 180 ffff9e00128689c0 init wait
0 8703 2 1 240 ffff9e00133b3ac0 vrele
0 7462 2 1 200 ffff9e0012ca9080 ktrace
0 7553 3 0 200 ffff9e001345c500 ktrace ktrwait
0 6356 3 1 200 ffff9e0012dc1940 ktrace ktrwait
0 2240 3 0 200 ffff9e0012c16ac0 ktrace ktrwait
0 300 3 0 200 ffff9e001337ba00 ktrace ktrwait
0 2400 3 1 200 ffff9e0012cb3940 ktrace ktrwait
0 2506 3 1 200 ffff9e0012cf5200 ktrace ktrwait
0 1608 2 0 240 ffff9e0012cd6a00 acctwatch
0 673 3 0 200 ffff9e00129c0280 physiod physiod
0 196 3 0 200 ffff9e00129c12c0 pooldrain pooldrain
0 > 195 7 0 240 ffff9e00129c0b00 ioflush
0 194 3 0 200 ffff9e00129c06c0 pgdaemon pgdaemon
0 167 3 1 200 ffff9e0012990680 usb7 usbevt
0 172 3 0 200 ffff9e0012990240 usb6 usbevt
0 170 3 0 200 ffff9e001293ba80 usb5 usbevt
0 168 3 0 200 ffff9e001293b640 usb4 usbevt
0 166 3 1 200 ffff9e001293b200 usb3 usbevt
0 165 3 0 200 ffff9e00128d1a40 usb2 usbevt
0 31 3 1 200 ffff9e00128d1600 usb1 usbevt
0 63 3 1 200 ffff9e00128d11c0 usb0 usbevt
0 126 3 0 200 ffff9e001287ca00 usbtask-dr usbtsk
0 125 3 1 200 ffff9e001287c5c0 usbtask-hc usbtsk
0 124 3 0 200 ffff9e0010d66b00 swwreboot swwreboot
0 123 3 0 200 ffff9e001287c180 npfgc0 npfgcw
0 122 3 0 200 ffff9e0012868580 rt_free rt_free
0 121 3 0 200 ffff9e0012868140 unpgc unpgc
0 120 3 0 200 ffff9e001270b980 key_timehandler key_timehandler
0 119 3 1 200 ffff9e001270b540 icmp6_wqinput/1 icmp6_wqinput
0 118 3 0 200 ffff9e001270b100 icmp6_wqinput/0 icmp6_wqinput
0 117 3 0 200 ffff9e00126fd940 nd6_timer nd6_timer
0 116 3 1 200 ffff9e00126fd500 carp6_wqinput/1 carp6_wqinput
0 115 3 0 200 ffff9e00126fd0c0 carp6_wqinput/0 carp6_wqinput
0 114 3 1 200 ffff9e00126ed900 carp_wqinput/1 carp_wqinput
0 113 3 0 200 ffff9e00126ed4c0 carp_wqinput/0 carp_wqinput
0 112 3 1 200 ffff9e00126ed080 icmp_wqinput/1 icmp_wqinput
0 111 3 0 200 ffff9e00126db8c0 icmp_wqinput/0 icmp_wqinput
0 110 3 0 200 ffff9e00126db040 rt_timer rt_timer
0 109 3 0 200 ffff9e00126d9780 vmem_rehash vmem_rehash
0 100 3 0 200 ffff9e00126d7300 entbutler entropy
0 99 3 0 200 ffff9e00120bdb40 viomb balloon
0 98 3 1 200 ffff9e00120bd700 vioif0_txrx/1 vioif0_txrx
0 97 3 0 200 ffff9e00120bd2c0 vioif0_txrx/0 vioif0_txrx
0 30 3 0 200 ffff9e0010d666c0 scsibus0 sccomp
0 29 3 0 200 ffff9e0010d66280 pms0 pmsreset
0 28 3 1 200 ffff9e0010cacac0 xcall/1 xcall
0 27 1 1 200 ffff9e0010cac680 softser/1
0 26 1 1 200 ffff9e0010cac240 softclk/1
0 25 1 1 200 ffff9e0010ca9a80 softbio/1
0 24 1 1 200 ffff9e0010ca9640 softnet/1
0 23 1 1 201 ffff9e0010ca9200 idle/1
0 22 3 0 200 ffff9e000fb55a40 lnxsyswq lnxsyswq
0 21 3 0 200 ffff9e000fb55600 lnxubdwq lnxubdwq
0 20 3 0 200 ffff9e000fb551c0 lnxpwrwq lnxpwrwq
0 19 3 0 200 ffff9e000fb54a00 lnxlngwq lnxlngwq
0 18 3 0 200 ffff9e000fb545c0 lnxhipwq lnxhipwq
0 17 3 0 200 ffff9e000fb54180 lnxrcugc lnxrcugc
0 16 3 0 200 ffff9e000fb4d9c0 sysmon smtaskq
0 15 3 0 200 ffff9e000fb4d580 pmfsuspend pmfsuspend
0 14 3 0 200 ffff9e000fb4d140 pmfevent pmfevent
0 13 3 0 200 ffff9e000fb4a980 sopendfree sopendfr
0 12 3 0 200 ffff9e000fb4a540 ifwdog ifwdog
0 11 3 1 200 ffff9e000fb4a100 iflnkst iflnkst
0 10 3 0 200 ffff9e000fb3b940 nfssilly nfssilly
0 9 3 1 200 ffff9e000fb3b500 pooldisp pooldisp
0 8 3 1 200 ffff9e000fb3b0c0 modunload mod_unld
0 7 3 0 200 ffff9e000fb32900 xcall/0 xcall
0 6 1 0 200 ffff9e000fb324c0 softser/0
0 5 1 0 200 ffff9e000fb32080 softclk/0
0 4 1 0 200 ffff9e000fb308c0 softbio/0
0 3 1 0 200 ffff9e000fb30480 softnet/0
0 2 1 0 201 ffff9e000fb30040 idle/0
0 0 3 1 200 ffffffff83350200 swapper uvm
[Locks tracked through LWPs]

****** LWP 7525.7825 (syz-executor.4) @ 0xffff9e0013494a00, l_stat=7

*** Locks held:

* Lock 0 (initialized at netbsd:fstrans_init+0x20 sys/kern/vfs_trans.c:136)
lock address : netbsd:vfs_suspend_lock
type : sleep/adaptive
initialized : netbsd:fstrans_init+0x20
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 1 last held: 1
relevant lwp : 0xffff9e0013494a00 last held: 0xffff9e0013494a00

last locked* : netbsd:vfs_suspend+0x184
unlocked : netbsd:mount_domount+0xb89

owner field : 0xffff9e0013494a00 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at netbsd:vfs_mountalloc+0xc7 sys/kern/vfs_mount.c:163)

lock address : ffff9e00144cef40

type : sleep/adaptive
initialized : netbsd:vfs_mountalloc+0xc7
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 1 last held: 1
relevant lwp : 0xffff9e0013494a00 last held: 0xffff9e0013494a00

last locked* : netbsd:mount_domount+0x2b9
unlocked : 0

owner field : 0xffff9e0013494a00 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 2 (initialized at netbsd:vcache_alloc+0x3e sys/kern/vfs_vnode.c:1438)

lock address : ffff9e00146582c0

type : sleep/adaptive
initialized : netbsd:vcache_alloc+0x3e
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffff9e0013494a00 last held: 0xffff9e0013494a00

last locked* : netbsd:genfs_lock+0x160
unlocked : netbsd:genfs_unlock+0x2a

owner/count : 0xffff9e0013494a00 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 3 (initialized at netbsd:procinit+0x5c sys/kern/kern_proc.c:387)
lock address : netbsd:proc_lock
type : sleep/adaptive
initialized : netbsd:procinit+0x5c
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffff9e0013494a00 last held: 0xffff9e0013494a00
last locked* : netbsd:mount_domount+0x6f4
unlocked : netbsd:mount_domount+0x98d
owner field : 0xffff9e0013494a00 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 10665.10665 (syz-executor.2) @ 0xffff9e0012cb3500, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x365 sys/kern/kern_fork.c:366)

lock address : ffff9e0012ccaf90

type : sleep/adaptive
initialized : netbsd:fork1+0x365
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 1 last held: 0

relevant lwp : 0xffff9e0012cb3500 last held: 0xffff9e0012cb3500
last locked* : netbsd:exit1+0x2f2
unlocked : netbsd:execve_runproc+0x2211
owner/count : 0xffff9e0012cb3500 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 620.620 (dhcpcd) @ 0xffff9e0012c16680, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffff9e0012c16680 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 742.742 (dhcpcd) @ 0xffff9e0012c4bb40, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffff9e0012c4bb40 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 292.292 (dhcpcd) @ 0xffff9e0012d8e4c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffff9e0012d8e4c0 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 485.485 (dhcpcd) @ 0xffff9e0012d8e080, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffff9e0012d8e080 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.7462 (ktrace) @ 0xffff9e0012ca9080, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:fstrans_init+0x33 sys/kern/vfs_trans.c:137)
lock address : netbsd:fstrans_lock
type : sleep/adaptive
initialized : netbsd:fstrans_init+0x33

shared holds : 0 exclusive: 0

shares wanted: 0 exclusive: 1

relevant cpu : 1 last held: 1

relevant lwp : 0xffff9e0012ca9080 last held: 000000000000000000
last locked : netbsd:fstrans_done+0x452
unlocked* : netbsd:fstrans_done+0x479

owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.26 (softclk/1) @ 0xffff9e0010cac240, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffff9e0010cac240 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffff9e000fb4a100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffff9e000fb4a100 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.5 (softclk/0) @ 0xffff9e000fb32080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffff9e000fb32080 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.4 (softbio/0) @ 0xffff9e000fb308c0, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:vcache_alloc+0x4a sys/kern/vfs_vnode.c:1438)
lock address : ffff9e0010d4b4c0
type : sleep/adaptive
initialized : netbsd:vcache_alloc+0x4a

shared holds : 0 exclusive: 0

shares wanted: 0 exclusive: 1

relevant cpu : 0 last held: 0

relevant lwp : 0xffff9e000fb308c0 last held: 000000000000000000
last locked : netbsd:biodone2+0x55
unlocked* : netbsd:biodone2+0x159

owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff83350200, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0

relevant cpu : 1 last held: 0

relevant lwp : 0xffffffff83350200 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at netbsd:main+0x11e sys/kern/init_main.c:304)
lock address : netbsd:kernel_lock
type : spin
initialized : netbsd:main+0x11e
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffff9e00129c0b00 last held: 0xffff9e000fb324c0

last locked* : netbsd:softint_dispatch+0x8ae
unlocked : netbsd:softint_dispatch+0x8df
curcpu holds : 0 wanted by: 000000000000000000

* Lock 1 (initialized at netbsd:com_attach_subr+0x12e sys/dev/ic/com.c:565)

lock address : ffff9e0010c03d20

type : spin
initialized : netbsd:com_attach_subr+0x12e
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffff9e00129c0b00 last held: 0xffff9e000fb324c0

last locked* : netbsd:comstart+0x171
unlocked : netbsd:comintr+0xbd6
owner field : 0x0000000000000800 wait/spin: 0/1

******* Locks held on cpu1:

* Lock 0 (initialized at netbsd:kprintf_init+0x61 sys/kern/subr_prf.c:156)
lock address : netbsd:kprintf_mtx
type : spin
initialized : netbsd:kprintf_init+0x61
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffff9e0013494a00 last held: 0xffff9e0013494a00

last locked* : netbsd:kprintf_lock+0x33
unlocked : netbsd:kprintf_unlock+0x53
owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON

0xffff9e0000017180 0041 00000000 0x0 0x0
0xffff9e0000017200 0041 00000000 0x0 0x0
0xffff9e0000017280 0041 00000000 0x0 0x0
0xffff9e0000017300 0041 00000000 0x0 0x0
0xffff9e0000017380 0041 00000000 0x0 0x0
0xffff9e0000017400 0041 00000000 0x0 0x0
0xffff9e0000017480 0041 00000000 0x0 0x0
0xffff9e0000017500 0041 00000000 0x0 0x0
0xffff9e0000017580 0041 00000000 0x0 0x0
0xffff9e0000017600 0041 00000000 0x0 0x0
0xffff9e0000017680 0041 00000000 0x0 0x0
0xffff9e0000017700 0041 00000000 0x0 0x0
0xffff9e0000017780 0041 00000000 0x0 0x0
0xffff9e0000017800 0041 00000000 0x0 0x0
0xffff9e0000017880 0041 00000000 0x0 0x0
0xffff9e0000017900 0041 00000000 0x0 0x0
0xffff9e0000017980 0041 00000000 0x0 0x0
0xffff9e0000017a00 0041 00000000 0x0 0x0
0xffff9e0000017a80 0041 00000000 0x0 0x0
0xffff9e0000017b00 0041 00000000 0x0 0x0
0xffff9e0000017b80 0041 00000000 0x0 0x0
0xffff9e0000017c00 0041 00000000 0x0 0x0
0xffff9e0000017c80 0041 00000000 0x0 0x0
0xffff9e0000017d00 0041 00000000 0x0 0x0
0xffff9e0000017d80 0041 00000000 0x0 0x0
0xffff9e0000017e00 0041 00000000 0x0 0x0
0xffff9e0000017e80 0041 00000000 0x0 0x0
0xffff9e0000017f00 0041 00000000 0x0 0x0
0xffff9e0000017f80 0041 00000000 0x0 0x0
0xffff9e0000018000 0041 00000000 0x0 0x0
0xffff9e0000018080 0041 00000000 0x0 0x0
0xffff9e0000018100 0041 00000000 0x0 0x0
0xffff9e0000018180 0041 00000000 0x0 0x0
0xffff9e0000018200 0041 00000000 0x0 0x0
0xffff9e0000018280 0041 00000000 0x0 0x0
0xffff9e0000018300 0041 00000000 0x0 0x0
0xffff9e0000018380 0041 00000000 0x0 0x0
0xffff9e0000018400 0041 00000000 0x0 0x0
0xffff9e0000018480 0041 00000000 0x0 0x0
0xffff9e0000018500 0041 00000000 0x0 0x0
0xffff9e0000018580 0041 00000000 0x0 0x0
0xffff9e0000018600 0041 00000000 0x0 0x0
0xffff9e0000018680 0041 00000000 0x0 0x0
0xffff9e0000018700 0041 00000000 0x0 0x0
0xffff9e0000018780 0041 00000000 0x0 0x0
0xffff9e0000018800 0041 00000000 0x0 0x0
0xffff9e0000018880 0041 00000000 0x0 0x0
0xffff9e0000018900 0041 00000000 0x0 0x0
0xffff9e0000018980 0041 00000000 0x0 0x0
0xffff9e0000018a00 0041 00000000 0x0 0x0
0xffff9e0000018a80 0041 00000000 0x0 0x0
0xffff9e0000018b00 0041 00000000 0x0 0x0
0xffff9e0000018b80 0041 00000000 0x0 0x0
0xffff9e0000018c00 0041 00000000 0x0 0x0
0xffff9e0000018c80 0041 00000000 0x0 0x0
0xffff9e0000018d00 0041 00000000 0x0 0x0
0xffff9e0000018d80 0041 00000000 0x0 0x0
0xffff9e0000018e00 0041 00000000 0x0 0x0
0xffff9e0000018e80 0041 00000000 0x0 0x0
0xffff9e0000018f00 0041 00000000 0x0 0x0
0xffff9e0000018f80 0041 00000000 0x0 0x0
0xffff9e0000019000 0041 00000000 0x0 0x0
0xffff9e0000019080 0041 00000000 0x0 0x0
0xffff9e0000019100 0041 00000000 0x0 0x0
0xffff9e0000019180 0041 00000000 0x0 0x0
0xffff9e0000019200 0041 00000000 0x0 0x0
0xffff9e0000019280 0041 00000000 0x0 0x0
0xffff9e0000019300 0041 00000000 0x0 0x0
0xffff9e0000019380 0041 00000000 0x0 0x0
0xffff9e0000019400 0041 00000000 0x0 0x0
0xffff9e0000019480 0041 00000000 0x0 0x0
0xffff9e0000019500 0041 00000000 0x0 0x0
0xffff9e0000019580 0041 00000000 0x0 0x0
0xffff9e0000019600 0041 00000000 0x0 0x0
0xffff9e0000019680 0041 00000000 0x0 0x0
0xffff9e0000019700 0041 00000000 0x0 0x0
0xffff9e0000019780 0041 00000000 0x0 0x0
0xffff9e0000019800 0041 00000000 0x0 0x0
0xffff9e0000019880 0041 00000000 0x0 0x0
0xffff9e0000019900 0041 00000000 0x0 0x0
0xffff9e0000019980 0041 00000000 0x0 0x0
0xffff9e0000019a00 0041 00000000 0x0 0x0
0xffff9e0000019a80 0041 00000000 0x0 0x0
0xffff9e0000019b00 0041 00000000 0x0 0x0
0xffff9e0000019b80 0041 00000000 0x0 0x0
0xffff9e0000019c00 0041 00000000 0x0 0x0
0xffff9e0000019c80 0041 00000000 0x0 0x0
0xffff9e0000019d00 0041 00000000 0x0 0x0
0xffff9e0000019d80 0041 00000000 0x0 0x0
0xffff9e0000019e00 0041 00000000 0x0 0x0
0xffff9e0000019e80 0041 00000000 0x0 0x0
0xffff9e0000019f00 0041 00000000 0x0 0x0
0xffff9e0000019f80 0041 00000000 0x0 0x0

0xffff9e000001a000 0041 00000000 0x0 0x0
0xffff9e000001a080 0041 00000000 0x0 0x0

0xffff9e000001a100 0041 00000000 0x0 0x0
0xffff9e000001a180 0041 00000000 0x0 0x0
0xffff9e000001a200 0041 00000000 0x0 0x0
0xffff9e000001a280 0041 00000000 0x0 0x0
0xffff9e000001a300 0041 00000000 0x0 0x0
0xffff9e000001a380 0041 00000000 0x0 0x0
0xffff9e000001a400 0041 00000000 0x0 0x0
0xffff9e000001a480 0041 00000000 0x0 0x0
0xffff9e000001a500 0041 00000000 0x0 0x0
0xffff9e000001a580 0041 00000000 0x0 0x0
0xffff9e000001a600 0041 00000000 0x0 0x0
0xffff9e000001a680 0041 00000000 0x0 0x0
0xffff9e000001a700 0041 00000000 0x0 0x0
0xffff9e000001a780 0041 00000000 0x0 0x0
0xffff9e000001a800 0041 00000000 0x0 0x0
0xffff9e000001a880 0041 00000000 0x0 0x0
0xffff9e000001a900 0041 00000000 0x0 0x0
0xffff9e000001a980 0041 00000000 0x0 0x0
0xffff9e000001aa00 0041 00000000 0x0 0x0
0xffff9e000001aa80 0041 00000000 0x0 0x0
0xffff9e000001ab00 0041 00000000 0x0 0x0
0xffff9e000001ab80 0041 00000000 0x0 0x0
0xffff9e000001ac00 0041 00000000 0x0 0x0
0xffff9e000001ac80 0041 00000000 0x0 0x0
0xffff9e000001ad00 0041 00000000 0x0 0x0
0xffff9e000001ad80 0041 00000000 0x0 0x0
0xffff9e000001ae00 0041 00000000 0x0 0x0
0xffff9e000001ae80 0041 00000000 0x0 0x0
0xffff9e000001af00 0041 00000000 0x0 0x0
0xffff9e000001af80 0041 00000000 0x0 0x0

0xffff9e000001b000 0041 00000000 0x0 0x0
0xffff9e000001b080 0041 00000000 0x0 0x0

0xffff9e000001b100 0041 00000000 0x0 0x0
0xffff9e000001b180 0041 00000000 0x0 0x0
0xffff9e000001b200 0041 00000000 0x0 0x0
0xffff9e000001b280 0041 00000000 0x0 0x0
0xffff9e000001b300 0041 00000000 0x0 0x0
0xffff9e000001b380 0041 00000000 0x0 0x0
0xffff9e000001b400 0041 00000000 0x0 0x0
0xffff9e000001b480 0041 00000000 0x0 0x0
0xffff9e000001b500 0041 00000000 0x0 0x0
0xffff9e000001b580 0041 00000000 0x0 0x0
0xffff9e000001b600 0041 00000000 0x0 0x0
0xffff9e000001b680 0041 00000000 0x0 0x0
0xffff9e000001b700 0041 00000000 0x0 0x0
0xffff9e000001b780 0041 00000000 0x0 0x0
0xffff9e000001b800 0041 00000000 0x0 0x0
0xffff9e000001b880 0041 00000000 0x0 0x0
0xffff9e000001b900 0041 00000000 0x0 0x0
0xffff9e000001b980 0041 00000000 0x0 0x0
0xffff9e000001ba00 0041 00000000 0x0 0x0
0xffff9e000001ba80 0041 00000000 0x0 0x0
0xffff9e000001bb00 0001 00000000 0x0 0x0
0xffff9e000001bb80 0001 00000000 0x0 0x0
0xffff9e000001bc00 0001 00000000 0x0 0x0
0xffff9e000001bc80 0001 00000000 0x0 0x0
0xffff9e000001bd00 0001 00000000 0x0 0x0
0xffff9e000001bd80 0001 00000000 0x0 0x0
0xffff9e000001be00 0001 00000000 0x0 0x0
0xffff9e000001be80 0001 00000000 0x0 0x0
0xffff9e000001bf00 0001 00000000 0x0 0x0
0xffff9e000001bf80 0001 00000000 0x0 0x0
0xffff9e000001c000 0001 00000000 0x0 0x0
0xffff9e000001c080 0001 00000000 0x0 0x0
0xffff9e000001c100 0001 00000000 0x0 0x0
0xffff9e000001c180 0001 00000000 0x0 0x0
0xffff9e000001c200 0001 00000000 0x0 0x0
0xffff9e000001c280 0001 00000000 0x0 0x0
0xffff9e000001c300 0001 00000000 0x0 0x0
0xffff9e000001c380 0001 00000000 0x0 0x0
0xffff9e000001c400 0001 00000000 0x0 0x0
0xffff9e000001c480 0001 00000000 0x0 0x0
0xffff9e000001c500 0001 00000000 0x0 0x0
0xffff9e000001c580 0001 00000000 0x0 0x0
0xffff9e000001c600 0001 00000000 0x0 0x0
0xffff9e000001c680 0001 00000000 0x0 0x0
0xffff9e000001c700 0001 00000000 0x0 0x0
0xffff9e000001c780 0001 00000000 0x0 0x0
0xffff9e000001c800 0001 00000000 0x0 0x0
0xffff9e000001c880 0001 00000000 0x0 0x0
0xffff9e000001c900 0001 00000000 0x0 0x0
0xffff9e000001c980 0001 00000000 0x0 0x0
0xffff9e000001ca00 0001 00000000 0x0 0x0
0xffff9e000001ca80 0001 00000000 0x0 0x0
0xffff9e000001cb00 0001 00000000 0x0 0x0
0xffff9e000001cb80 0001 00000000 0x0 0x0
0xffff9e000001cc00 0001 00000000 0x0 0x0
0xffff9e000001cc80 0001 00000000 0x0 0x0
0xffff9e000001cd00 0001 00000000 0x0 0x0
0xffff9e000001cd80 0001 00000000 0x0 0x0
0xffff9e000001ce00 0001 00000000 0x0 0x0
0xffff9e000001ce80 0001 00000000 0x0 0x0
0xffff9e000001cf00 0001 00000000 0x0 0x0
0xffff9e000001cf80 0001 00000000 0x0 0x0
0xffff9e000001d000 0001 00000000 0x0 0x0
0xffff9e000001d080 0001 00000000 0x0 0x0
0xffff9e000001d100 0001 00000000 0x0 0x0
0xffff9e000001d180 0001 00000000 0x0 0x0
0xffff9e000001d200 0001 00000000 0x0 0x0
0xffff9e000001d280 0001 00000000 0x0 0x0
0xffff9e000001d300 0001 00000000 0x0 0x0
0xffff9e000001d380 0001 00000000 0x0 0x0
0xffff9e000001d400 0001 00000000 0x0 0x0
0xffff9e000001d480 0001 00000000 0x0 0x0
0xffff9e000001d500 0001 00000000 0x0 0x0
0xffff9e000001d580 0001 00000000 0x0 0x0
0xffff9e000001d600 0001 00000000 0x0 0x0
0xffff9e000001d680 0001 00000000 0x0 0x0
0xffff9e000001d700 0001 00000000 0x0 0x0
0xffff9e000001d780 0001 00000000 0x0 0x0
0xffff9e000001d800 0001 00000000 0x0 0x0
0xffff9e000001d880 0001 00000000 0x0 0x0
0xffff9e000001d900 0001 00000000 0x0 0x0
0xffff9e000001d980 0001 00000000 0x0 0x0
0xffff9e000001da00 0001 00000000 0x0 0x0
0xffff9e000001da80 0001 00000000 0x0 0x0
0xffff9e000001db00 0001 00000000 0x0 0x0
0xffff9e000001db80 0001 00000000 0x0 0x0
0xffff9e000001dc00 0001 00000000 0x0 0x0
0xffff9e000001dc80 0001 00000000 0x0 0x0
0xffff9e000001dd00 0001 00000000 0x0 0x0
0xffff9e000001dd80 0001 00000000 0x0 0x0
0xffff9e000001de00 0001 00000000 0x0 0x0
0xffff9e000001de80 0001 00000000 0x0 0x0
0xffff9e000001df00 0001 00000000 0x0 0x0
0xffff9e000001df80 0001 00000000 0x0 0x0
0xffff9e000001e000 0001 00000000 0x0 0x0
0xffff9e000001e080 0001 00000000 0x0 0x0
0xffff9e000001e100 0001 00000000 0x0 0x0
0xffff9e000001e180 0001 00000000 0x0 0x0
0xffff9e000001e200 0001 00000000 0x0 0x0
0xffff9e000001e280 0001 00000000 0x0 0x0
0xffff9e000001e300 0001 00000000 0x0 0x0
0xffff9e000001e380 0001 00000000 0x0 0x0
0xffff9e000001e400 0001 00000000 0x0 0x0
0xffff9e000001e480 0001 00000000 0x0 0x0
0xffff9e000001e500 0001 00000000 0x0 0x0
0xffff9e000001e580 0001 00000000 0x0 0x0
0xffff9e000001e600 0001 00000000 0x0 0x0
0xffff9e000001e680 0001 00000000 0x0 0x0
0xffff9e000001e700 0001 00000000 0x0 0x0
0xffff9e000001e780 0001 00000000 0x0 0x0
0xffff9e000001e800 0001 00000000 0x0 0x0
0xffff9e000001e880 0001 00000000 0x0 0x0
0xffff9e000001e900 0001 00000000 0x0 0x0
0xffff9e000001e980 0001 00000000 0x0 0x0
0xffff9e000001ea00 0001 00000000 0x0 0x0
0xffff9e000001ea80 0001 00000000 0x0 0x0
0xffff9e000001eb00 0001 00000000 0x0 0x0
0xffff9e000001eb80 0001 00000000 0x0 0x0
0xffff9e000001ec00 0001 00000000 0x0 0x0
0xffff9e000001ec80 0001 00000000 0x0 0x0
0xffff9e000001ed00 0001 00000000 0x0 0x0
0xffff9e000001ed80 0001 00000000 0x0 0x0
0xffff9e000001ee00 0001 00000000 0x0 0x0
0xffff9e000001ee80 0001 00000000 0x0 0x0
0xffff9e000001ef00 0001 00000000 0x0 0x0
0xffff9e000001ef80 0001 00000000 0x0 0x0
0xffff9e000001f000 0001 00000000 0x0 0x0
0xffff9e000001f080 0001 00000000 0x0 0x0
0xffff9e000001f100 0001 00000000 0x0 0x0
0xffff9e000001f180 0001 00000000 0x0 0x0
0xffff9e000001f200 0001 00000000 0x0 0x0
0xffff9e000001f280 0001 00000000 0x0 0x0
0xffff9e000001f300 0001 00000000 0x0 0x0
0xffff9e000001f380 0001 00000000 0x0 0x0
0xffff9e000001f400 0001 00000000 0x0 0x0
0xffff9e000001f480 0001 00000000 0x0 0x0
0xffff9e000001f500 0001 00000000 0x0 0x0
0xffff9e000001f580 0001 00000000 0x0 0x0
0xffff9e000001f600 0001 00000000 0x0 0x0
0xffff9e000001f680 0001 00000000 0x0 0x0
0xffff9e000001f700 0001 00000000 0x0 0x0
0xffff9e000001f780 0001 00000000 0x0 0x0
0xffff9e000001f800 0001 00000000 0x0 0x0
0xffff9e000001f880 0001 00000000 0x0 0x0
0xffff9e000001f900 0001 00000000 0x0 0x0
0xffff9e000001f980 0001 00000000 0x0 0x0
0xffff9e000001fa00 0001 00000000 0x0 0x0
0xffff9e000001fa80 0001 00000000 0x0 0x0
0xffff9e000001fb00 0001 00000000 0x0 0x0
0xffff9e000001fb80 0001 00000000 0x0 0x0
0xffff9e000001fc00 0001 00000000 0x0 0x0
0xffff9e000001fc80 0001 00000000 0x0 0x0
0xffff9e000001fd00 0001 00000000 0x0 0x0
0xffff9e000001fd80 0001 00000000 0x0 0x0
0xffff9e000001fe00 0001 00000000 0x0 0x0
0xffff9e000001fe80 0001 00000000 0x0 0x0
0xffff9e000001ff00 0001 00000000 0x0 0x0
0xffff9e000001ff80 0001 00000000 0x0 0x0
0xffff9e0000020000 0001 00000000 0x0 0x0
0xffff9e0000020080 0001 00000000 0x0 0x0
0xffff9e0000020100 0001 00000000 0x0 0x0
0xffff9e0000020180 0001 00000000 0x0 0x0
0xffff9e0000020200 0001 00000000 0x0 0x0
0xffff9e0000020280 0001 00000000 0x0 0x0
0xffff9e0000020300 0001 00000000 0x0 0x0
0xffff9e0000020380 0001 00000000 0x0 0x0
0xffff9e0000020400 0001 00000000 0x0 0x0
0xffff9e0000020480 0001 00000000 0x0 0x0
0xffff9e0000020500 0001 00000000 0x0 0x0
0xffff9e0000020580 0001 00000000 0x0 0x0
0xffff9e0000020600 0001 00000000 0x0 0x0
0xffff9e0000020680 0001 00000000 0x0 0x0
0xffff9e0000020700 0001 00000000 0x0 0x0
0xffff9e0000020780 0001 00000000 0x0 0x0
0xffff9e0000020800 0001 00000000 0x0 0x0
0xffff9e0000020880 0001 00000000 0x0 0x0
0xffff9e0000020900 0001 00000000 0x0 0x0
0xffff9e0000020980 0001 00000000 0x0 0x0
0xffff9e0000020a00 0001 00000000 0x0 0x0
0xffff9e0000020a80 0001 00000000 0x0 0x0
0xffff9e0000020b00 0001 00000000 0x0 0x0
0xffff9e0000020b80 0001 00000000 0x0 0x0
0xffff9e0000020c00 0001 00000000 0x0 0x0
0xffff9e0000020c80 0001 00000000 0x0 0x0
0xffff9e0000020d00 0001 00000000 0x0 0x0
0xffff9e0000020d80 0001 00000000 0x0 0x0
0xffff9e0000020e00 0001 00000000 0x0 0x0
0xffff9e0000020e80 0001 00000000 0x0 0x0
0xffff9e0000020f00 0001 00000000 0x0 0x0
0xffff9e0000020f80 0001 00000000 0x0 0x0
0xffff9e0000021000 0001 00000000 0x0 0x0
0xffff9e0000021080 0001 00000000 0x0 0x0
0xffff9e0000021100 0001 00000000 0x0 0x0
0xffff9e0000021180 0001 00000000 0x0 0x0
0xffff9e0000021200 0001 00000000 0x0 0x0
0xffff9e0000021280 0001 00000000 0x0 0x0
0xffff9e0000021300 0001 00000000 0x0 0x0
0xffff9e0000021380 0001 00000000 0x0 0x0
0xffff9e0000021400 0001 00000000 0x0 0x0
0xffff9e0000021480 0001 00000000 0x0 0x0
0xffff9e0000021500 0001 00000000 0x0 0x0
0xffff9e0000021580 0001 00000000 0x0 0x0
0xffff9e0000021600 0001 00000000 0x0 0x0
0xffff9e0000021680 0001 00000000 0x0 0x0
0xffff9e0000021700 0001 00000000 0x0 0x0
0xffff9e0000021780 0001 00000000 0x0 0x0
0xffff9e0000021800 0001 00000000 0x0 0x0
0xffff9e0000021880 0001 00000000 0x0 0x0
0xffff9e0000021900 0001 00000000 0x0 0x0
0xffff9e0000021980 0001 00000000 0x0 0x0
0xffff9e0000021a00 0001 00000000 0x0 0x0
0xffff9e0000021a80 0001 00000000 0x0 0x0
0xffff9e0000021b00 0001 00000000 0x0 0x0
0xffff9e0000021b80 0001 00000000 0x0 0x0
0xffff9e0000021c00 0001 00000000 0x0 0x0
0xffff9e0000021c80 0001 00000000 0x0 0x0
0xffff9e0000021d00 0001 00000000 0x0 0x0
0xffff9e0000021d80 0001 00000000 0x0 0x0
0xffff9e0000021e00 0001 00000000 0x0 0x0
0xffff9e0000021e80 0001 00000000 0x0 0x0
0xffff9e0000021f00 0001 00000000 0x0 0x0
0xffff9e0000021f80 0001 00000000 0x0 0x0
0xffff9e0000022000 0001 00000000 0x0 0x0
0xffff9e0000022080 0001 00000000 0x0 0x0
0xffff9e0000022100 0001 00000000 0x0 0x0
0xffff9e0000022180 0001 00000000 0x0 0x0
0xffff9e0000022200 0001 00000000 0x0 0x0
0xffff9e0000022280 0001 00000000 0x0 0x0
0xffff9e0000022300 0001 00000000 0x0 0x0
0xffff9e0000022380 0001 00000000 0x0 0x0
0xffff9e0000022400 0001 00000000 0x0 0x0
0xffff9e0000022480 0001 00000000 0x0 0x0
0xffff9e0000022500 0001 00000000 0x0 0x0
0xffff9e0000022580 0001 00000000 0x0 0x0
0xffff9e0000022600 0001 00000000 0x0 0x0
0xffff9e0000022680 0001 00000000 0x0 0x0
0xffff9e0000022700 0001 00000000 0x0 0x0
0xffff9e0000022780 0001 00000000 0x0 0x0
0xffff9e0000022800 0001 00000000 0x0 0x0
0xffff9e0000022880 0001 00000000 0x0 0x0
0xffff9e0000022900 0001 00000000 0x0 0x0
0xffff9e0000022980 0001 00000000 0x0 0x0
0xffff9e0000022a00 0001 00000000 0x0 0x0
0xffff9e0000022a80 0001 00000000 0x0 0x0
0xffff9e0000022b00 0001 00000000 0x0 0x0
0xffff9e0000022b80 0001 00000000 0x0 0x0
0xffff9e0000022c00 0001 00000000 0x0 0x0
0xffff9e0000022c80 0001 00000000 0x0 0x0
0xffff9e0000022d00 0001 00000000 0x0 0x0
0xffff9e0000022d80 0001 00000000 0x0 0x0
0xffff9e0000022e00 0001 00000000 0x0 0x0
0xffff9e0000022e80 0001 00000000 0x0 0x0
0xffff9e0000022f00 0001 00000000 0x0 0x0
0xffff9e0000022f80 0001 00000000 0x0 0x0
0xffff9e0000023000 0001 00000000 0x0 0x0
0xffff9e0000023080 0001 00000000 0x0 0x0
0xffff9e0000023100 0001 00000000 0x0 0x0
0xffff9e0000023180 0001 00000000 0x0 0x0
0xffff9e0000023200 0001 00000000 0x0 0x0
0xffff9e0000023280 0001 00000000 0x0 0x0
0xffff9e0000023300 0001 00000000 0x0 0x0
0xffff9e0000023380 0001 00000000 0x0 0x0
0xffff9e0000023400 0001 00000000 0x0 0x0
0xffff9e0000023480 0001 00000000 0x0 0x0
0xffff9e0000023500 0001 00000000 0x0 0x0
0xffff9e0000023580 0001 00000000 0x0 0x0
0xffff9e0000023600 0001 00000000 0x0 0x0
0xffff9e0000023680 0001 00000000 0x0 0x0
0xffff9e0000023700 0001 00000000 0x0 0x0
0xffff9e0000023780 0001 00000000 0x0 0x0
0xffff9e0000023800 0001 00000000 0x0 0x0
0xffff9e0000023880 0001 00000000 0x0 0x0
0xffff9e0000023900 0001 00000000 0x0 0x0
0xffff9e0000023980 0001 00000000 0x0 0x0
0xffff9e0000023a00 0001 00000000 0x0 0x0
0xffff9e0000023a80 0001 00000000 0x0 0x0
0xffff9e0000023b00 0001 00000000 0x0 0x0
0xffff9e0000023b80 0001 00000000 0x0 0x0
0xffff9e0000023c00 0001 00000000 0x0 0x0
0xffff9e0000023c80 0001 00000000 0x0 0x0
0xffff9e0000023d00 0001 00000000 0x0 0x0
0xffff9e0000023d80 0001 00000000 0x0 0x0
0xffff9e0000023e00 0001 00000000 0x0 0x0
0xffff9e0000023e80 0001 00000000 0x0 0x0
0xffff9e0000023f00 0001 00000000 0x0 0x0
0xffff9e0000023f80 0001 00000000 0x0 0x0
0xffff9e0000024000 0001 00000000 0x0 0x0
0xffff9e0000024080 0001 00000000 0x0 0x0
0xffff9e0000024100 0001 00000000 0x0 0x0
0xffff9e0000024180 0001 00000000 0x0 0x0
0xffff9e0000024200 0001 00000000 0x0 0x0
0xffff9e0000024280 0001 00000000 0x0 0x0
0xffff9e0000024300 0001 00000000 0x0 0x0
0xffff9e0000024380 0001 00000000 0x0 0x0
0xffff9e0000024400 0001 00000000 0x0 0x0
0xffff9e0000024480 0001 00000000 0x0 0x0
0xffff9e0000024500 0001 00000000 0x0 0x0
0xffff9e0000024580 0001 00000000 0x0 0x0
0xffff9e0000024600 0001 00000000 0x0 0x0
0xffff9e0000024680 0001 00000000 0x0 0x0
0xffff9e0000024700 0001 00000000 0x0 0x0
0xffff9e0000024780 0001 00000000 0x0 0x0
0xffff9e0000024800 0001 00000000 0x0 0x0
0xffff9e0000024880 0001 00000000 0x0 0x0
0xffff9e0000024900 0001 00000000 0x0 0x0
0xffff9e0000024980 0001 00000000 0x0 0x0

0xffff9e0000024a00 0001 00000000 0x0 0x0
0xffff9e0000024a80 0001 00000000 0x0 0x0

0xffff9e0000024b00 0001 00000000 0x0 0x0
0xffff9e0000024b80 0001 00000000 0x0 0x0
0xffff9e0000024c00 0001 00000000 0x0 0x0
0xffff9e0000024c80 0001 00000000 0x0 0x0
0xffff9e0000024d00 0001 00000000 0x0 0x0
0xffff9e0000024d80 0001 00000000 0x0 0x0
0xffff9e0000024e00 0001 00000000 0x0 0x0
0xffff9e0000024e80 0001 00000000 0x0 0x0
0xffff9e0000024f00 0001 00000000 0x0 0x0
0xffff9e0000024f80 0001 00000000 0x0 0x0
0xffff9e0000025000 0001 00000000 0x0 0x0
0xffff9e0000025080 0001 00000000 0x0 0x0
0xffff9e0000025100 0001 00000000 0x0 0x0
0xffff9e0000025180 0001 00000000 0x0 0x0
0xffff9e0000025200 0001 00000000 0x0 0x0
0xffff9e0000025280 0001 00000000 0x0 0x0
0xffff9e0000025300 0001 00000000 0x0 0x0
0xffff9e0000025380 0001 00000000 0x0 0x0
0xffff9e0000025400 0001 00000000 0x0 0x0
0xffff9e0000025480 0001 00000000 0x0 0x0
0xffff9e0000025500 0001 00000000 0x0 0x0
0xffff9e0000025580 0001 00000000 0x0 0x0
0xffff9e0000025600 0001 00000000 0x0 0x0
0xffff9e0000025680 0001 00000000 0x0 0x0
0xffff9e0000025700 0001 00000000 0x0 0x0
0xffff9e0000025780 0001 00000000 0x0 0x0
0xffff9e0000025800 0001 00000000 0x0 0x0
0xffff9e0000025880 0001 00000000 0x0 0x0
0xffff9e0000025900 0001 00000000 0x0 0x0
0xffff9e0000025980 0001 00000000 0x0 0x0

0xffff9e0000025a00 0001 00000000 0x0 0x0
0xffff9e0000025a80 0001 00000000 0x0 0x0

0xffff9e0000025b00 0001 00000000 0x0 0x0
0xffff9e0000025b80 0001 00000000 0x0 0x0
0xffff9e0000025c00 0001 00000000 0x0 0x0
0xffff9e0000025c80 0001 00000000 0x0 0x0
0xffff9e0000025d00 0001 00000000 0x0 0x0
0xffff9e0000025d80 0001 00000000 0x0 0x0
0xffff9e0000025e00 0001 00000000 0x0 0x0
0xffff9e0000025e80 0001 00000000 0x0 0x0
0xffff9e0000025f00 0001 00000000 0x0 0x0
0xffff9e0000025f80 0001 00000000 0x0 0x0
0xffff9e0000026000 0001 00000000 0x0 0x0
0xffff9e0000026080 0001 00000000 0x0 0x0
0xffff9e0000026100 0001 00000000 0x0 0x0
0xffff9e0000026180 0001 00000000 0x0 0x0
0xffff9e0000026200 0001 00000000 0x0 0x0
0xffff9e0000026280 0001 00000000 0x0 0x0
0xffff9e0000026300 0001 00000000 0x0 0x0
0xffff9e0000026380 0001 00000000 0x0 0x0
0xffff9e0000026400 0001 00000000 0x0 0x0
0xffff9e0000026480 0001 00000000 0x0 0x0
0xffff9e0000026500 0001 00000000 0x0 0x0
0xffff9e0000026580 0001 00000000 0x0 0x0
0xffff9e0000026600 0001 00000000 0x0 0x0
0xffff9e0000026680 0001 00000000 0x0 0x0
0xffff9e0000026700 0001 00000000 0x0 0x0
0xffff9e0000026780 0001 00000000 0x0 0x0
0xffff9e0000026800 0001 00000000 0x0 0x0
0xffff9e0000026880 0001 00000000 0x0 0x0
0xffff9e0000026900 0001 00000000 0x0 0x0
0xffff9e0000026980 0001 00000000 0x0 0x0
0xffff9e0000026a00 0001 00000000 0x0 0x0
0xffff9e0000026a80 0001 00000000 0x0 0x0
0xffff9e0000026b00 0001 00000000 0x0 0x0
0xffff9e0000026b80 0001 00000000 0x0 0x0
0xffff9e0000026c00 0001 00000000 0x0 0x0
0xffff9e0000026c80 0001 00000000 0x0 0x0
0xffff9e0000026d00 0001 00000000 0x0 0x0
0xffff9e0000026d80 0001 00000000 0x0 0x0
0xffff9e0000026e00 0001 00000000 0x0 0x0
0xffff9e0000026e80 0001 00000000 0x0 0x0
0xffff9e0000026f00 0001 00000000 0x0 0x0
0xffff9e0000026f80 0001 00000000 0x0 0x0
0xffff9e0000027000 0001 00000000 0x0 0x0
0xffff9e0000027080 0001 00000000 0x0 0x0
0xffff9e0000027100 0001 00000000 0x0 0x0
0xffff9e0000027180 0001 00000000 0x0 0x0
0xffff9e0000027200 0001 00000000 0x0 0x0
0xffff9e0000027280 0001 00000000 0x0 0x0
0xffff9e0000027300 0001 00000000 0x0 0x0
0xffff9e0000027380 0001 00000000 0x0 0x0
0xffff9e0000027400 0001 00000000 0x0 0x0
0xffff9e0000027480 0001 00000000 0x0 0x0
0xffff9e0000027500 0001 00000000 0x0 0x0
0xffff9e0000027580 0001 00000000 0x0 0x0
0xffff9e0000027600 0001 00000000 0x0 0x0
0xffff9e0000027680 0001 00000000 0x0 0x0
0xffff9e0000027700 0001 00000000 0x0 0x0
0xffff9e0000027780 0001 00000000 0x0 0x0
0xffff9e0000027800 0001 00000000 0x0 0x0
0xffff9e0000027880 0001 00000000 0x0 0x0
0xffff9e0000027900 0001 00000000 0x0 0x0
0xffff9e0000027980 0001 00000000 0x0 0x0
0xffff9e0000027a00 0001 00000000 0x0 0x0
0xffff9e0000027a80 0001 00000000 0x0 0x0
0xffff9e0000027b00 0001 00000000 0x0 0x0
0xffff9e0000027b80 0001 00000000 0x0 0x0
0xffff9e0000027c00 0001 00000000 0x0 0x0
0xffff9e0000027c80 0001 00000000 0x0 0x0
0xffff9e0000027d00 0001 00000000 0x0 0x0
0xffff9e0000027d80 0001 00000000 0x0 0x0
0xffff9e0000027e00 0001 00000000 0x0 0x0
0xffff9e0000027e80 0001 00000000 0x0 0x0
0xffff9e0000027f00 0001 00000000 0x0 0x0
0xffff9e0000027f80 0001 00000000 0x0 0x0
0xffff9e0000028000 0001 00000000 0x0 0x0
0xffff9e0000028080 0001 00000000 0x0 0x0
0xffff9e0000028100 0001 00000000 0x0 0x0
0xffff9e0000028180 0001 00000000 0x0 0x0
0xffff9e0000028200 0001 00000000 0x0 0x0
0xffff9e0000028280 0001 00000000 0x0 0x0
0xffff9e0000028300 0001 00000000 0x0 0x0
0xffff9e0000028380 0001 00000000 0x0 0x0
0xffff9e0000028400 0001 00000000 0x0 0x0
0xffff9e0000028480 0001 00000000 0x0 0x0
0xffff9e0000028500 0001 00000000 0x0 0x0
0xffff9e0000028580 0001 00000000 0x0 0x0
0xffff9e0000028600 0001 00000000 0x0 0x0
0xffff9e0000028680 0001 00000000 0x0 0x0
0xffff9e0000028700 0001 00000000 0x0 0x0
0xffff9e0000028780 0001 00000000 0x0 0x0
0xffff9e0000028800 0001 00000000 0x0 0x0
0xffff9e0000028880 0001 00000000 0x0 0x0
0xffff9e0000028900 0001 00000000 0x0 0x0
0xffff9e0000028980 0001 00000000 0x0 0x0
0xffff9e0000028a00 0001 00000000 0x0 0x0
0xffff9e0000028a80 0001 00000000 0x0 0x0
0xffff9e0000028b00 0001 00000000 0x0 0x0
0xffff9e0000028b80 0001 00000000 0x0 0x0
0xffff9e0000028c00 0001 00000000 0x0 0x0
0xffff9e0000028c80 0001 00000000 0x0 0x0
0xffff9e0000028d00 0001 00000000 0x0 0x0
0xffff9e0000028d80 0001 00000000 0x0 0x0
0xffff9e0000028e00 0001 00000000

[syzbot]

Hello,

syzbot found the following issue on:

HEAD commit: e9cd92281172 Ignore unit attention caused EIO errors when ..
git tree: netbsd

console output: https://syzkaller.appspot.com/x/log.txt?x=16564bca980000
kernel config: https://syzkaller.appspot.com/x/.config?x=fab579639ba4bf0a
dashboard link: https://syzkaller.appspot.com/bug?extid=dd01b202d5607968ea44

compiler: g++ (Debian 12.2.0-14) 12.2.0

Unfortunately, I don't have any reproducer for this issue yet.

Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/7031dddde2e2/disk-e9cd9228.raw.xz
netbsd.gdb: https://storage.googleapis.com/syzbot-assets/d2bcb5e76758/netbsd-e9cd9228.gdb.xz

IMPORTANT: if you fix the issue, please add the following tag to the commit:

Reported-by: syzbot+dd01b2...@syzkaller.appspotmail.com

[ 1110.0995350] panic:ASan: Unauthorized Ac cess In 0xffffffff81cf0551: Addr 0xffffae001572f800 [8 bytes, read, PoolUseAfterFree]

[ 1110.1095692] cpu1: Begin traceback...
[ 1110.1296756] vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
[ 1110.2000191] panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
[ 1110.2603171] kasan_report() at netbsd:kasan_report+0x8f kasan_code_name sys/kern/subr_asan.c:169 [inline]
[ 1110.2603171] kasan_report() at netbsd:kasan_report+0x8f sys/kern/subr_asan.c:201
[ 1110.3206173] __asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:371 [inline]
[ 1110.3206173] __asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
[ 1110.3206173] __asan_load8() at netbsd:__asan_load8+0xac sys/kern/subr_asan.c:1208
[ 1110.3708687] mount_domount() at netbsd:mount_domount+0x783 mount_checkdirs sys/kern/vfs_mount.c:744 [inline]
[ 1110.3708687] mount_domount() at netbsd:mount_domount+0x783 sys/kern/vfs_mount.c:898
[ 1110.4211167] do_sys_mount() at netbsd:do_sys_mount+0x79d sys/kern/vfs_syscalls.c:616
[ 1110.4713663] sys___mount50() at netbsd:sys___mount50+0x8f sys/kern/vfs_syscalls.c:537
[ 1110.5316661] sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
[ 1110.5316661] sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90
[ 1110.5819156] syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
[ 1110.5819156] syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
[ 1110.5819156] syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137
[ 1110.6020171] --- syscall (number 410 via SYS_syscall) ---
[ 1110.6221177] netbsd:syscall+0x246:
[ 1110.6221177] cpu1: End traceback...
[ 1110.6221177] fatal breakpoint trap in supervisor mode
[ 1110.6321664] trap type 1 code 0 rip 0xffffffff8023240d cs 0x8 rflags 0x286 cr2 0x416608 ilevel 0 rsp 0xffffae026cfdb900
[ 1110.6422198] curlwp 0xffffae00133c2b00 pid 28579.22123 lowest kstack 0xffffae026cfd42c0
Stopped in pid 28579.22123 (syz-executor.1) at netbsd:breakpoint+0x5: leave

?
breakpoint() at netbsd:breakpoint+0x5
db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:71
vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
kasan_report() at netbsd:kasan_report+0x8f kasan_code_name sys/kern/subr_asan.c:169 [inline]
kasan_report() at netbsd:kasan_report+0x8f sys/kern/subr_asan.c:201
__asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:371 [inline]
__asan_load8() at netbsd:__asan_load8+0xac kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
__asan_load8() at netbsd:__asan_load8+0xac sys/kern/subr_asan.c:1208
mount_domount() at netbsd:mount_domount+0x783 mount_checkdirs sys/kern/vfs_mount.c:744 [inline]
mount_domount() at netbsd:mount_domount+0x783 sys/kern/vfs_mount.c:898
do_sys_mount() at netbsd:do_sys_mount+0x79d sys/kern/vfs_syscalls.c:616
sys___mount50() at netbsd:sys___mount50+0x8f sys/kern/vfs_syscalls.c:537
sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90
syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137
--- syscall (number 410 via SYS_syscall) ---
netbsd:syscall+0x246:

Panic string: ASan: Unauthorized Access In 0xffffffff81cf0551: Addr 0xffffae001572f800 [8 bytes, read, PoolUseAfterFree]

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

28579>22123 7 1 0 ffffae00133c2b00 syz-executor.1
28579 28579 2 1 10000000 ffffae0012b99140 syz-executor.1
2770 2770 2 1 0 ffffae00153fd300 syz-executor.0
27270 27270 2 0 10000000 ffffae001417a9c0 syz-executor.3
453 453 3 1 40180 ffffae0012a72480 syz-executor.0 parked
3385 3385 3 0 40000 ffffae0014c370c0 syz-executor.5 fstchg
3935 3935 2 1 140 ffffae001492c740 syz-executor.1
3028 3028 2 1 140 ffffae0013de3640 syz-executor.0
28051 28051 2 1 140 ffffae0014005480 syz-executor.3
25585 25585 2 1 0 ffffae001492c300 syz-executor.4
477 477 3 0 180 ffffae0013e24680 syz-executor.2 parked
27778 26519 3 0 1100000 ffffae0012d0bb00 syz-executor.2 vfork
27778 27778 2 1 11000040 ffffae0012d54bc0 syz-executor.2
26107 26107 3 0 1c0 ffffae0012a21300 syz-executor.2 wait
24643 24643 3 1 180 ffffae00151346c0 syz-executor.0 parked
26158 24731 3 1 1100000 ffffae0012d61480 syz-executor.0 vfork
26158 26158 2 1 11000040 ffffae0015134280 syz-executor.0
28512 28512 3 1 180 ffffae00140058c0 syz-executor.1 parked
25547 23533 3 1 1100000 ffffae0013feabc0 syz-executor.1 vfork
25547 25547 2 1 11000040 ffffae0012b7b540 syz-executor.1
21924 21924 3 1 180 ffffae0014005040 syz-executor.4 parked
21121 26162 3 1 11100000 ffffae0012c48700 )^ vfork
21121 21121 2 1 11000040 ffffae0012c482c0 syz-executor.4
23328 23328 3 1 180 ffffae0014da7140 syz-executor.5 parked
24480 24480 3 1 180 ffffae0012d15700 syz-executor.4 parked
23658 23658 3 1 180 ffffae00133941c0 syz-executor.2 parked
24288 24518 3 1 11100000 ffffae0012d54340 )^ vfork
24288 24288 2 1 11000040 ffffae0012cfd240 syz-executor.2
21235 21235 3 1 180 ffffae001346c9c0 syz-executor.0 parked
19783 19783 3 1 180 ffffae0012be7600 syz-executor.3 parked
15249 15249 3 1 180 ffffae0014ee81c0 syz-executor.0 parked
15766 15766 3 1 180 ffffae00141f2600 syz-executor.0 parked
15835 15835 3 0 180 ffffae0012c03640 syz-executor.3 parked
14744 14744 3 0 180 ffffae0014a1b480 syz-executor.5 parked
16691 16691 3 0 180 ffffae0013444480 syz-executor.1 parked
15078 15078 3 0 180 ffffae00133b0680 syz-executor.4 parked
14409 14409 3 0 180 ffffae00133ecb40 syz-executor.1 parked
14648 14648 3 1 180 ffffae0012cd6180 syz-executor.0 parked
13525 13525 3 1 180 ffffae001343abc0 syz-executor.2 parked
10021 10021 3 0 180 ffffae001342e300 syz-executor.4 parked
14030 14030 3 0 180 ffffae0013de3200 syz-executor.5 parked
9611 12587 3 0 1100000 ffffae0012ce7a40 syz-executor.5 vfork
9611 9611 2 1 11000040 ffffae0013e24ac0 syz-executor.5
14079 14079 3 1 180 ffffae0013e24240 syz-executor.5 parked
14389 14389 3 0 180 ffffae0012b7b100 syz-executor.3 parked
9019 9019 3 0 180 ffffae00141e7180 syz-executor.1 parked
8604 11955 3 0 11100000 ffffae00133a4640 syz-executor.1 vfork
8604 8604 2 1 11000040 ffffae0013fea780 syz-executor.1
12216 12216 3 1 180 ffffae0014a1abc0 syz-executor.1 parked
7555 7555 3 0 180 ffffae0012cd65c0 syz-executor.2 parked
7829 8540 3 0 1100000 ffffae0012ca54c0 syz-executor.2 vfork
7829 7829 2 1 11000040 ffffae0012ccb580 syz-executor.2
6717 6717 3 0 180 ffffae0013fea340 syz-executor.2 parked
6533 6533 3 1 180 ffffae0012ac90c0 syz-executor.3 parked
6297 6297 3 0 180 ffffae0014146980 syz-executor.3 parked
9951 9951 3 1 180 ffffae0014889700 syz-executor.5 parked
4688 4688 3 0 180 ffffae0013dbda40 syz-executor.3 parked
7016 7016 3 0 180 ffffae0012ca5080 syz-executor.2 parked
3978 3978 3 0 180 ffffae00146e5240 syz-executor.4 parked
3943 3943 3 1 180 ffffae0012c16680 syz-executor.0 parked
7039 7039 3 1 180 ffffae0012cf2a80 syz-executor.2 parked
6604 6604 3 1 180 ffffae0012ca5900 syz-executor.1 parked
3366 3366 3 1 180 ffffae0013f14b40 syz-executor.1 parked
6990 6990 3 0 180 ffffae0013f63740 syz-executor.3 parked
7602 7602 3 0 180 ffffae0012c95040 syz-executor.5 parked
3116 3116 3 0 180 ffffae0012cb3940 syz-executor.3 parked
3638 3638 3 1 180 ffffae00134448c0 syz-executor.5 parked
5681 5681 3 0 180 ffffae0012bc05c0 syz-executor.5 parked
3070 3070 3 1 180 ffffae0012d24300 syz-executor.0 parked
3287 3287 3 0 180 ffffae001346c140 syz-executor.2 parked
2953 2953 3 0 180 ffffae0012b999c0 syz-executor.1 parked
2228 2228 3 0 180 ffffae0012be71c0 syz-executor.2 parked
2373 2373 3 0 180 ffffae0013461540 syz-executor.4 parked
720 720 3 1 180 ffffae0012d15b40 syz-executor.3 parked
1115 5006 3 1 180 ffffae00146e5ac0 syz-fuzzer parked
1115 1332 2 0 0 ffffae00133ec700 syz-fuzzer
1115 1368 3 0 180 ffffae0013353580 syz-fuzzer parked
1115 1206 3 1 180 ffffae0013e71b00 syz-fuzzer wait
1115 1207 3 1 180 ffffae0013e716c0 syz-fuzzer wait
1115 1246 3 1 180 ffffae0012bc0180 syz-fuzzer wait
1115 930 3 1 180 ffffae001343a340 syz-fuzzer wait
1115 956 3 1 180 ffffae0013dbd600 syz-fuzzer wait
1115 1241 3 1 180 ffffae0013dbd1c0 syz-fuzzer parked
1115 830 3 1 180 ffffae0012d24b80 syz-fuzzer parked
1115 1244 3 1 180 ffffae0013334540 syz-fuzzer parked
1115 449 3 1 180 ffffae00133a4a80 syz-fuzzer parked
1115 942 3 1 180 ffffae0012a21740 syz-fuzzer wait
1115 1233 2 1 140 ffffae00126d9340 syz-fuzzer
1115 1115 3 1 180 ffffae0012ac9500 syz-fuzzer parked
1238 1238 3 0 180 ffffae001337ba00 sshd select
1193 1193 3 0 180 ffffae00134965c0 getty nanoslp
1225 1225 3 0 180 ffffae0013496180 getty nanoslp
1082 1082 3 1 180 ffffae00126d9bc0 getty nanoslp
1216 1216 3 1 180 ffffae0012a21b80 getty ttyraw
1103 1103 3 0 180 ffffae0013394600 sshd select
1096 1096 3 1 180 ffffae0012d54780 powerd kqueue
699 699 2 0 140 ffffae0012c67b80 syslogd
559 559 3 0 180 ffffae0012c16ac0 dhcpcd poll
747 747 3 0 180 ffffae0012cbe100 dhcpcd poll
745 745 3 1 180 ffffae0012c82bc0 dhcpcd poll
599 599 3 0 180 ffffae0012c266c0 dhcpcd poll
487 487 3 0 180 ffffae0012da20c0 dhcpcd poll
292 292 3 0 180 ffffae0012d8a900 dhcpcd poll
485 485 3 0 180 ffffae0012d8a4c0 dhcpcd poll
1 1 3 0 180 ffffae0012870180 init wait
0 602 3 0 200 ffffae0012a54780 ktrace fstchg
0 25313 3 0 200 ffffae0014ee8a40 ktrace ktrwait
0 25591 3 0 200 ffffae0013444040 ktrace ktrwait
0 27591 3 0 200 ffffae0012da2500 ktrace ktrwait
0 17850 3 1 200 ffffae0012d0b280 ktrace ktrwait
0 17071 3 0 200 ffffae0015134b00 ktrace ktrwait
0 16116 3 0 200 ffffae0013334980 ktrace ktrwait
0 13309 3 0 200 ffffae0014146540 ktrace ktrwait
0 13608 3 0 200 ffffae0012a99900 ktrace ktrwait
0 12371 3 1 200 ffffae0012da2940 ktrace ktrwait
0 12461 3 0 200 ffffae0012d24740 ktrace ktrwait
0 8231 3 1 200 ffffae0013353140 ktrace ktrwait
0 5874 3 1 200 ffffae0012d618c0 acctwatch actwat
0 4642 3 0 200 ffffae0013461100 ktrace ktrwait
0 7370 3 0 200 ffffae0012ccb140 ktrace ktrwait
0 2275 3 1 200 ffffae0013334100 ktrace ktrwait
0 4909 3 0 200 ffffae0012cfdac0 ktrace ktrwait
0 2737 3 0 200 ffffae0012cd6a00 ktrace ktrwait
0 3692 3 0 200 ffffae00133539c0 ktrace ktrwait
0 2538 3 0 200 ffffae00126d9780 ktrace ktrwait
0 673 3 0 200 ffffae00129bf6c0 physiod physiod
0 196 3 0 200 ffffae00129c1700 pooldrain pooldrain
0 > 195 7 0 240 ffffae00129c12c0 ioflush
0 194 3 1 200 ffffae00129bfb00 pgdaemon pgdaemon
0 167 3 1 200 ffffae0012976ac0 usb7 usbevt
0 172 3 1 200 ffffae0012976680 usb6 usbevt
0 170 3 0 200 ffffae0012976240 usb5 usbevt
0 168 3 0 200 ffffae001291ea80 usb4 usbevt
0 166 3 1 200 ffffae001291e640 usb3 usbevt
0 165 3 1 200 ffffae001291e200 usb2 usbevt
0 31 3 0 200 ffffae00128caa40 usb1 usbevt
0 63 3 0 200 ffffae00128ca600 usb0 usbevt
0 126 3 0 200 ffffae00128ca1c0 usbtask-dr usbtsk
0 125 3 1 200 ffffae0012870a00 usbtask-hc usbtsk
0 124 3 0 200 ffffae0010d66b00 swwreboot swwreboot
0 123 3 1 200 ffffae00128705c0 npfgc0 npfgcw
0 122 3 1 200 ffffae00128669c0 rt_free rt_free
0 121 3 0 200 ffffae0012866580 unpgc unpgc
0 120 3 1 200 ffffae0012866140 key_timehandler key_timehandler
0 119 3 1 200 ffffae0012703980 icmp6_wqinput/1 icmp6_wqinput
0 118 3 0 200 ffffae0012703540 icmp6_wqinput/0 icmp6_wqinput
0 117 3 0 200 ffffae0012703100 nd6_timer nd6_timer
0 116 3 1 200 ffffae00126fc940 carp6_wqinput/1 carp6_wqinput
0 115 3 0 200 ffffae00126fc500 carp6_wqinput/0 carp6_wqinput
0 114 3 1 200 ffffae00126fc0c0 carp_wqinput/1 carp_wqinput
0 113 3 0 200 ffffae00126ed900 carp_wqinput/0 carp_wqinput
0 112 3 1 200 ffffae00126ed4c0 icmp_wqinput/1 icmp_wqinput
0 111 3 0 200 ffffae00126ed080 icmp_wqinput/0 icmp_wqinput
0 110 3 0 200 ffffae00126db040 rt_timer rt_timer
0 109 3 0 200 ffffae00126db8c0 vmem_rehash vmem_rehash
0 100 3 1 200 ffffae00126d7300 entbutler entropy
0 99 3 0 200 ffffae00120bdb40 viomb balloon
0 98 3 1 200 ffffae00120bd700 vioif0_txrx/1 vioif0_txrx
0 97 3 0 200 ffffae00120bd2c0 vioif0_txrx/0 vioif0_txrx
0 30 3 0 200 ffffae0010d666c0 scsibus0 sccomp
0 29 3 0 200 ffffae0010d66280 pms0 pmsreset
0 28 3 1 200 ffffae0010cacac0 xcall/1 xcall
0 27 1 1 200 ffffae0010cac680 softser/1
0 26 1 1 200 ffffae0010cac240 softclk/1
0 25 1 1 200 ffffae0010ca9a80 softbio/1
0 24 1 1 200 ffffae0010ca9640 softnet/1
0 23 1 1 201 ffffae0010ca9200 idle/1
0 22 3 0 200 ffffae000fb55a40 lnxsyswq lnxsyswq
0 21 3 0 200 ffffae000fb55600 lnxubdwq lnxubdwq
0 20 3 0 200 ffffae000fb551c0 lnxpwrwq lnxpwrwq
0 19 3 0 200 ffffae000fb54a00 lnxlngwq lnxlngwq
0 18 3 0 200 ffffae000fb545c0 lnxhipwq lnxhipwq
0 17 3 0 200 ffffae000fb54180 lnxrcugc lnxrcugc
0 16 3 0 200 ffffae000fb4d9c0 sysmon smtaskq
0 15 3 0 200 ffffae000fb4d580 pmfsuspend pmfsuspend
0 14 3 0 200 ffffae000fb4d140 pmfevent pmfevent
0 13 3 0 200 ffffae000fb4a980 sopendfree sopendfr
0 12 3 0 200 ffffae000fb4a540 ifwdog ifwdog
0 11 3 1 200 ffffae000fb4a100 iflnkst iflnkst
0 10 3 0 200 ffffae000fb3b940 nfssilly nfssilly
0 9 3 0 200 ffffae000fb3b500 pooldisp mutex
0 8 3 1 200 ffffae000fb3b0c0 modunload mod_unld
0 7 3 0 200 ffffae000fb32900 xcall/0 xcall
0 6 1 0 200 ffffae000fb324c0 softser/0
0 5 1 0 200 ffffae000fb32080 softclk/0
0 4 1 0 200 ffffae000fb308c0 softbio/0
0 3 1 0 200 ffffae000fb30480 softnet/0
0 2 1 0 201 ffffae000fb30040 idle/0
0 0 2 1 240 ffffffff83350200 swapper
[Locks tracked through LWPs]

****** LWP 28579.22123 (syz-executor.1) @ 0xffffae00133c2b00, l_stat=7

*** Locks held:

* Lock 0 (initialized at netbsd:fstrans_init+0x20 sys/kern/vfs_trans.c:136)
lock address : netbsd:vfs_suspend_lock
type : sleep/adaptive
initialized : netbsd:fstrans_init+0x20
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffae00133c2b00 last held: 0xffffae00133c2b00

last locked* : netbsd:vfs_suspend+0x184
unlocked : netbsd:mount_domount+0xb89

owner field : 0xffffae00133c2b00 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at netbsd:vfs_mountalloc+0xc7 sys/kern/vfs_mount.c:163)

lock address : ffffae001573c880

type : sleep/adaptive
initialized : netbsd:vfs_mountalloc+0xc7
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffae00133c2b00 last held: 0xffffae00133c2b00

last locked* : netbsd:mount_domount+0x2b9
unlocked : 0

owner field : 0xffffae00133c2b00 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 2 (initialized at netbsd:vcache_alloc+0x3e sys/kern/vfs_vnode.c:1438)

lock address : ffffae0015748200

type : sleep/adaptive
initialized : netbsd:vcache_alloc+0x3e
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffae00133c2b00 last held: 0xffffae00133c2b00

last locked* : netbsd:genfs_lock+0x160
unlocked : netbsd:genfs_unlock+0x2a

owner/count : 0xffffae00133c2b00 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 3 (initialized at netbsd:procinit+0x5c sys/kern/kern_proc.c:387)
lock address : netbsd:proc_lock
type : sleep/adaptive
initialized : netbsd:procinit+0x5c
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1
relevant cpu : 1 last held: 1

relevant lwp : 0xffffae00133c2b00 last held: 0xffffae00133c2b00

last locked* : netbsd:mount_domount+0x6f4
unlocked : netbsd:mount_domount+0x98d

owner field : 0xffffae00133c2b00 wait/spin: 1/0

Turnstile:
=> 0 waiting readers:

=> 1 waiting writers: 0xffffae000fb3b500

*** Locks wanted: none

****** LWP 2770.2770 (syz-executor.0) @ 0xffffae00153fd300, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:pmap_ctor+0x93 sys/arch/x86/x86/pmap.c:2872)
lock address : ffffae0012c9d980

type : sleep/adaptive
initialized : netbsd:pmap_ctor+0x93

shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 1
relevant cpu : 1 last held: 1

relevant lwp : 0xffffae00153fd300 last held: 000000000000000000
last locked : netbsd:pmap_extract+0xde
unlocked* : netbsd:pmap_extract+0x345
owner field : 0xffffae00153fd300 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

****** LWP 27270.27270 (syz-executor.3) @ 0xffffae001417a9c0, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x365 sys/kern/kern_fork.c:366)

lock address : ffffae0013459a90

type : sleep/adaptive
initialized : netbsd:fork1+0x365
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 0 last held: 1
relevant lwp : 0xffffae001417a9c0 last held: 0xffffae001417a9c0
last locked* : netbsd:exit1+0x2f2
unlocked : 0
owner/count : 0xffffae001417a9c0 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 25585.25585 (syz-executor.4) @ 0xffffae001492c300, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:fstrans_init+0x33 sys/kern/vfs_trans.c:137)
lock address : netbsd:fstrans_lock
type : sleep/adaptive
initialized : netbsd:fstrans_init+0x33
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 1
relevant cpu : 1 last held: 1

relevant lwp : 0xffffae001492c300 last held: 000000000000000000

last locked : netbsd:fstrans_done+0x452
unlocked* : netbsd:fstrans_done+0x479
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 747.747 (dhcpcd) @ 0xffffae0012cbe100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffae0012cbe100 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 745.745 (dhcpcd) @ 0xffffae0012c82bc0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffae0012c82bc0 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 292.292 (dhcpcd) @ 0xffffae0012d8a900, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffae0012d8a900 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 485.485 (dhcpcd) @ 0xffffae0012d8a4c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffae0012d8a4c0 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.26 (softclk/1) @ 0xffffae0010cac240, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffae0010cac240 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffae000fb4a100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffae000fb4a100 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.9 (pooldisp) @ 0xffffae000fb3b500, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:procinit+0x5c sys/kern/kern_proc.c:387)

lock address : netbsd:proc_lock
type : sleep/adaptive
initialized : netbsd:procinit+0x5c
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 1

relevant cpu : 0 last held: 1
relevant lwp : 0xffffae000fb3b500 last held: 0xffffae00133c2b00

last locked* : netbsd:mount_domount+0x6f4
unlocked : netbsd:mount_domount+0x98d

owner field : 0xffffae00133c2b00 wait/spin: 1/0

Turnstile:
=> 0 waiting readers:

=> 1 waiting writers: 0xffffae000fb3b500

****** LWP 0.5 (softclk/0) @ 0xffffae000fb32080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffae000fb32080 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff83350200, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0
relevant lwp : 0xffffffff83350200 last held: 000000000000000000
last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu1:

* Lock 0 (initialized at netbsd:kprintf_init+0x61 sys/kern/subr_prf.c:156)
lock address : netbsd:kprintf_mtx
type : spin
initialized : netbsd:kprintf_init+0x61
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffae00133c2b00 last held: 0xffffae00133c2b00

last locked* : netbsd:kprintf_lock+0x33
unlocked : netbsd:kprintf_unlock+0x53
owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON

0xffffae0000017180 0041 00000000 0x0 0x0
0xffffae0000017200 0041 00000000 0x0 0x0
0xffffae0000017280 0041 00000000 0x0 0x0
0xffffae0000017300 0041 00000000 0x0 0x0
0xffffae0000017380 0041 00000000 0x0 0x0
0xffffae0000017400 0041 00000000 0x0 0x0
0xffffae0000017480 0041 00000000 0x0 0x0
0xffffae0000017500 0041 00000000 0x0 0x0
0xffffae0000017580 0041 00000000 0x0 0x0
0xffffae0000017600 0041 00000000 0x0 0x0
0xffffae0000017680 0041 00000000 0x0 0x0
0xffffae0000017700 0041 00000000 0x0 0x0
0xffffae0000017780 0041 00000000 0x0 0x0
0xffffae0000017800 0041 00000000 0x0 0x0
0xffffae0000017880 0041 00000000 0x0 0x0
0xffffae0000017900 0041 00000000 0x0 0x0
0xffffae0000017980 0041 00000000 0x0 0x0
0xffffae0000017a00 0041 00000000 0x0 0x0
0xffffae0000017a80 0041 00000000 0x0 0x0
0xffffae0000017b00 0041 00000000 0x0 0x0
0xffffae0000017b80 0041 00000000 0x0 0x0
0xffffae0000017c00 0041 00000000 0x0 0x0
0xffffae0000017c80 0041 00000000 0x0 0x0
0xffffae0000017d00 0041 00000000 0x0 0x0
0xffffae0000017d80 0041 00000000 0x0 0x0
0xffffae0000017e00 0041 00000000 0x0 0x0
0xffffae0000017e80 0041 00000000 0x0 0x0
0xffffae0000017f00 0041 00000000 0x0 0x0
0xffffae0000017f80 0041 00000000 0x0 0x0
0xffffae0000018000 0041 00000000 0x0 0x0
0xffffae0000018080 0041 00000000 0x0 0x0
0xffffae0000018100 0041 00000000 0x0 0x0
0xffffae0000018180 0041 00000000 0x0 0x0
0xffffae0000018200 0041 00000000 0x0 0x0
0xffffae0000018280 0041 00000000 0x0 0x0
0xffffae0000018300 0041 00000000 0x0 0x0
0xffffae0000018380 0041 00000000 0x0 0x0
0xffffae0000018400 0041 00000000 0x0 0x0
0xffffae0000018480 0041 00000000 0x0 0x0
0xffffae0000018500 0041 00000000 0x0 0x0
0xffffae0000018580 0041 00000000 0x0 0x0
0xffffae0000018600 0041 00000000 0x0 0x0
0xffffae0000018680 0041 00000000 0x0 0x0
0xffffae0000018700 0041 00000000 0x0 0x0
0xffffae0000018780 0041 00000000 0x0 0x0
0xffffae0000018800 0041 00000000 0x0 0x0
0xffffae0000018880 0041 00000000 0x0 0x0
0xffffae0000018900 0041 00000000 0x0 0x0
0xffffae0000018980 0041 00000000 0x0 0x0
0xffffae0000018a00 0041 00000000 0x0 0x0
0xffffae0000018a80 0041 00000000 0x0 0x0
0xffffae0000018b00 0041 00000000 0x0 0x0
0xffffae0000018b80 0041 00000000 0x0 0x0
0xffffae0000018c00 0041 00000000 0x0 0x0
0xffffae0000018c80 0041 00000000 0x0 0x0
0xffffae0000018d00 0041 00000000 0x0 0x0
0xffffae0000018d80 0041 00000000 0x0 0x0
0xffffae0000018e00 0041 00000000 0x0 0x0
0xffffae0000018e80 0041 00000000 0x0 0x0
0xffffae0000018f00 0041 00000000 0x0 0x0
0xffffae0000018f80 0041 00000000 0x0 0x0
0xffffae0000019000 0041 00000000 0x0 0x0
0xffffae0000019080 0041 00000000 0x0 0x0
0xffffae0000019100 0041 00000000 0x0 0x0
0xffffae0000019180 0041 00000000 0x0 0x0
0xffffae0000019200 0041 00000000 0x0 0x0
0xffffae0000019280 0041 00000000 0x0 0x0
0xffffae0000019300 0041 00000000 0x0 0x0
0xffffae0000019380 0041 00000000 0x0 0x0
0xffffae0000019400 0041 00000000 0x0 0x0
0xffffae0000019480 0041 00000000 0x0 0x0
0xffffae0000019500 0041 00000000 0x0 0x0
0xffffae0000019580 0041 00000000 0x0 0x0
0xffffae0000019600 0041 00000000 0x0 0x0
0xffffae0000019680 0041 00000000 0x0 0x0
0xffffae0000019700 0041 00000000 0x0 0x0
0xffffae0000019780 0041 00000000 0x0 0x0
0xffffae0000019800 0041 00000000 0x0 0x0
0xffffae0000019880 0041 00000000 0x0 0x0
0xffffae0000019900 0041 00000000 0x0 0x0
0xffffae0000019980 0041 00000000 0x0 0x0
0xffffae0000019a00 0041 00000000 0x0 0x0
0xffffae0000019a80 0041 00000000 0x0 0x0
0xffffae0000019b00 0041 00000000 0x0 0x0
0xffffae0000019b80 0041 00000000 0x0 0x0
0xffffae0000019c00 0041 00000000 0x0 0x0
0xffffae0000019c80 0041 00000000 0x0 0x0
0xffffae0000019d00 0041 00000000 0x0 0x0
0xffffae0000019d80 0041 00000000 0x0 0x0
0xffffae0000019e00 0041 00000000 0x0 0x0
0xffffae0000019e80 0041 00000000 0x0 0x0
0xffffae0000019f00 0041 00000000 0x0 0x0
0xffffae0000019f80 0041 00000000 0x0 0x0
0xffffae000001a000 0041 00000000 0x0 0x0
0xffffae000001a080 0041 00000000 0x0 0x0
0xffffae000001a100 0041 00000000 0x0 0x0
0xffffae000001a180 0041 00000000 0x0 0x0
0xffffae000001a200 0041 00000000 0x0 0x0
0xffffae000001a280 0041 00000000 0x0 0x0
0xffffae000001a300 0041 00000000 0x0 0x0
0xffffae000001a380 0041 00000000 0x0 0x0
0xffffae000001a400 0041 00000000 0x0 0x0
0xffffae000001a480 0041 00000000 0x0 0x0
0xffffae000001a500 0041 00000000 0x0 0x0
0xffffae000001a580 0041 00000000 0x0 0x0
0xffffae000001a600 0041 00000000 0x0 0x0
0xffffae000001a680 0041 00000000 0x0 0x0
0xffffae000001a700 0041 00000000 0x0 0x0
0xffffae000001a780 0041 00000000 0x0 0x0
0xffffae000001a800 0041 00000000 0x0 0x0
0xffffae000001a880 0041 00000000 0x0 0x0
0xffffae000001a900 0041 00000000 0x0 0x0
0xffffae000001a980 0041 00000000 0x0 0x0
0xffffae000001aa00 0041 00000000 0x0 0x0
0xffffae000001aa80 0041 00000000 0x0 0x0
0xffffae000001ab00 0041 00000000 0x0 0x0
0xffffae000001ab80 0041 00000000 0x0 0x0
0xffffae000001ac00 0041 00000000 0x0 0x0
0xffffae000001ac80 0041 00000000 0x0 0x0
0xffffae000001ad00 0041 00000000 0x0 0x0
0xffffae000001ad80 0041 00000000 0x0 0x0
0xffffae000001ae00 0041 00000000 0x0 0x0
0xffffae000001ae80 0041 00000000 0x0 0x0
0xffffae000001af00 0041 00000000 0x0 0x0
0xffffae000001af80 0041 00000000 0x0 0x0
0xffffae000001b000 0041 00000000 0x0 0x0
0xffffae000001b080 0041 00000000 0x0 0x0
0xffffae000001b100 0041 00000000 0x0 0x0
0xffffae000001b180 0041 00000000 0x0 0x0
0xffffae000001b200 0041 00000000 0x0 0x0
0xffffae000001b280 0041 00000000 0x0 0x0
0xffffae000001b300 0041 00000000 0x0 0x0
0xffffae000001b380 0041 00000000 0x0 0x0
0xffffae000001b400 0041 00000000 0x0 0x0
0xffffae000001b480 0041 00000000 0x0 0x0
0xffffae000001b500 0041 00000000 0x0 0x0
0xffffae000001b580 0041 00000000 0x0 0x0
0xffffae000001b600 0041 00000000 0x0 0x0
0xffffae000001b680 0041 00000000 0x0 0x0
0xffffae000001b700 0041 00000000 0x0 0x0
0xffffae000001b780 0041 00000000 0x0 0x0
0xffffae000001b800 0041 00000000 0x0 0x0
0xffffae000001b880 0041 00000000 0x0 0x0
0xffffae000001b900 0041 00000000 0x0 0x0
0xffffae000001b980 0041 00000000 0x0 0x0
0xffffae000001ba00 0041 00000000 0x0 0x0
0xffffae000001ba80 0041 00000000 0x0 0x0
0xffffae000001bb00 0001 00000000 0x0 0x0
0xffffae000001bb80 0001 00000000 0x0 0x0
0xffffae000001bc00 0001 00000000 0x0 0x0
0xffffae000001bc80 0001 00000000 0x0 0x0
0xffffae000001bd00 0001 00000000 0x0 0x0
0xffffae000001bd80 0001 00000000 0x0 0x0
0xffffae000001be00 0001 00000000 0x0 0x0
0xffffae000001be80 0001 00000000 0x0 0x0
0xffffae000001bf00 0001 00000000 0x0 0x0
0xffffae000001bf80 0001 00000000 0x0 0x0
0xffffae000001c000 0001 00000000 0x0 0x0
0xffffae000001c080 0001 00000000 0x0 0x0
0xffffae000001c100 0001 00000000 0x0 0x0
0xffffae000001c180 0001 00000000 0x0 0x0
0xffffae000001c200 0001 00000000 0x0 0x0
0xffffae000001c280 0001 00000000 0x0 0x0
0xffffae000001c300 0001 00000000 0x0 0x0
0xffffae000001c380 0001 00000000 0x0 0x0
0xffffae000001c400 0001 00000000 0x0 0x0
0xffffae000001c480 0001 00000000 0x0 0x0
0xffffae000001c500 0001 00000000 0x0 0x0
0xffffae000001c580 0001 00000000 0x0 0x0
0xffffae000001c600 0001 00000000 0x0 0x0
0xffffae000001c680 0001 00000000 0x0 0x0
0xffffae000001c700 0001 00000000 0x0 0x0
0xffffae000001c780 0001 00000000 0x0 0x0
0xffffae000001c800 0001 00000000 0x0 0x0
0xffffae000001c880 0001 00000000 0x0 0x0
0xffffae000001c900 0001 00000000 0x0 0x0
0xffffae000001c980 0001 00000000 0x0 0x0
0xffffae000001ca00 0001 00000000 0x0 0x0
0xffffae000001ca80 0001 00000000 0x0 0x0
0xffffae000001cb00 0001 00000000 0x0 0x0
0xffffae000001cb80 0001 00000000 0x0 0x0
0xffffae000001cc00 0001 00000000 0x0 0x0
0xffffae000001cc80 0001 00000000 0x0 0x0
0xffffae000001cd00 0001 00000000 0x0 0x0
0xffffae000001cd80 0001 00000000 0x0 0x0
0xffffae000001ce00 0001 00000000 0x0 0x0
0xffffae000001ce80 0001 00000000 0x0 0x0
0xffffae000001cf00 0001 00000000 0x0 0x0
0xffffae000001cf80 0001 00000000 0x0 0x0
0xffffae000001d000 0001 00000000 0x0 0x0
0xffffae000001d080 0001 00000000 0x0 0x0
0xffffae000001d100 0001 00000000 0x0 0x0
0xffffae000001d180 0001 00000000 0x0 0x0
0xffffae000001d200 0001 00000000 0x0 0x0
0xffffae000001d280 0001 00000000 0x0 0x0
0xffffae000001d300 0001 00000000 0x0 0x0
0xffffae000001d380 0001 00000000 0x0 0x0
0xffffae000001d400 0001 00000000 0x0 0x0
0xffffae000001d480 0001 00000000 0x0 0x0
0xffffae000001d500 0001 00000000 0x0 0x0
0xffffae000001d580 0001 00000000 0x0 0x0
0xffffae000001d600 0001 00000000 0x0 0x0
0xffffae000001d680 0001 00000000 0x0 0x0
0xffffae000001d700 0001 00000000 0x0 0x0
0xffffae000001d780 0001 00000000 0x0 0x0
0xffffae000001d800 0001 00000000 0x0 0x0
0xffffae000001d880 0001 00000000 0x0 0x0
0xffffae000001d900 0001 00000000 0x0 0x0
0xffffae000001d980 0001 00000000 0x0 0x0
0xffffae000001da00 0001 00000000 0x0 0x0
0xffffae000001da80 0001 00000000 0x0 0x0
0xffffae000001db00 0001 00000000 0x0 0x0
0xffffae000001db80 0001 00000000 0x0 0x0
0xffffae000001dc00 0001 00000000 0x0 0x0
0xffffae000001dc80 0001 00000000 0x0 0x0
0xffffae000001dd00 0001 00000000 0x0 0x0
0xffffae000001dd80 0001 00000000 0x0 0x0
0xffffae000001de00 0001 00000000 0x0 0x0
0xffffae000001de80 0001 00000000 0x0 0x0
0xffffae000001df00 0001 00000000 0x0 0x0
0xffffae000001df80 0001 00000000 0x0 0x0
0xffffae000001e000 0001 00000000 0x0 0x0
0xffffae000001e080 0001 00000000 0x0 0x0
0xffffae000001e100 0001 00000000 0x0 0x0
0xffffae000001e180 0001 00000000 0x0 0x0
0xffffae000001e200 0001 00000000 0x0 0x0
0xffffae000001e280 0001 00000000 0x0 0x0
0xffffae000001e300 0001 00000000 0x0 0x0
0xffffae000001e380 0001 00000000 0x0 0x0
0xffffae000001e400 0001 00000000 0x0 0x0
0xffffae000001e480 0001 00000000 0x0 0x0
0xffffae000001e500 0001 00000000 0x0 0x0
0xffffae000001e580 0001 00000000 0x0 0x0
0xffffae000001e600 0001 00000000 0x0 0x0
0xffffae000001e680 0001 00000000 0x0 0x0
0xffffae000001e700 0001 00000000 0x0 0x0
0xffffae000001e780 0001 00000000 0x0 0x0
0xffffae000001e800 0001 00000000 0x0 0x0
0xffffae000001e880 0001 00000000 0x0 0x0
0xffffae000001e900 0001 00000000 0x0 0x0
0xffffae000001e980 0001 00000000 0x0 0x0
0xffffae000001ea00 0001 00000000 0x0 0x0
0xffffae000001ea80 0001 00000000 0x0 0x0
0xffffae000001eb00 0001 00000000 0x0 0x0
0xffffae000001eb80 0001 00000000 0x0 0x0
0xffffae000001ec00 0001 00000000 0x0 0x0
0xffffae000001ec80 0001 00000000 0x0 0x0
0xffffae000001ed00 0001 00000000 0x0 0x0
0xffffae000001ed80 0001 00000000 0x0 0x0
0xffffae000001ee00 0001 00000000 0x0 0x0
0xffffae000001ee80 0001 00000000 0x0 0x0
0xffffae000001ef00 0001 00000000 0x0 0x0
0xffffae000001ef80 0001 00000000 0x0 0x0
0xffffae000001f000 0001 00000000 0x0 0x0
0xffffae000001f080 0001 00000000 0x0 0x0
0xffffae000001f100 0001 00000000 0x0 0x0
0xffffae000001f180 0001 00000000 0x0 0x0
0xffffae000001f200 0001 00000000 0x0 0x0
0xffffae000001f280 0001 00000000 0x0 0x0
0xffffae000001f300 0001 00000000 0x0 0x0
0xffffae000001f380 0001 00000000 0x0 0x0
0xffffae000001f400 0001 00000000 0x0 0x0
0xffffae000001f480 0001 00000000 0x0 0x0
0xffffae000001f500 0001 00000000 0x0 0x0
0xffffae000001f580 0001 00000000 0x0 0x0
0xffffae000001f600 0001 00000000 0x0 0x0
0xffffae000001f680 0001 00000000 0x0 0x0
0xffffae000001f700 0001 00000000 0x0 0x0
0xffffae000001f780 0001 00000000 0x0 0x0
0xffffae000001f800 0001 00000000 0x0 0x0
0xffffae000001f880 0001 00000000 0x0 0x0
0xffffae000001f900 0001 00000000 0x0 0x0
0xffffae000001f980 0001 00000000 0x0 0x0
0xffffae000001fa00 0001 00000000 0x0 0x0
0xffffae000001fa80 0001 00000000 0x0 0x0
0xffffae000001fb00 0001 00000000 0x0 0x0
0xffffae000001fb80 0001 00000000 0x0 0x0
0xffffae000001fc00 0001 00000000 0x0 0x0
0xffffae000001fc80 0001 00000000 0x0 0x0
0xffffae000001fd00 0001 00000000 0x0 0x0
0xffffae000001fd80 0001 00000000 0x0 0x0
0xffffae000001fe00 0001 00000000 0x0 0x0
0xffffae000001fe80 0001 00000000 0x0 0x0
0xffffae000001ff00 0001 00000000 0x0 0x0
0xffffae000001ff80 0001 00000000 0x0 0x0
0xffffae0000020000 0001 00000000 0x0 0x0
0xffffae0000020080 0001 00000000 0x0 0x0
0xffffae0000020100 0001 00000000 0x0 0x0
0xffffae0000020180 0001 00000000 0x0 0x0
0xffffae0000020200 0001 00000000 0x0 0x0
0xffffae0000020280 0001 00000000 0x0 0x0
0xffffae0000020300 0001 00000000 0x0 0x0
0xffffae0000020380 0001 00000000 0x0 0x0
0xffffae0000020400 0001 00000000 0x0 0x0
0xffffae0000020480 0001 00000000 0x0 0x0
0xffffae0000020500 0001 00000000 0x0 0x0
0xffffae0000020580 0001 00000000 0x0 0x0
0xffffae0000020600 0001 00000000 0x0 0x0
0xffffae0000020680 0001 00000000 0x0 0x0
0xffffae0000020700 0001 00000000 0x0 0x0
0xffffae0000020780 0001 00000000 0x0 0x0
0xffffae0000020800 0001 00000000 0x0 0x0
0xffffae0000020880 0001 00000000 0x0 0x0
0xffffae0000020900 0001 00000000 0x0 0x0
0xffffae0000020980 0001 00000000 0x0 0x0
0xffffae0000020a00 0001 00000000 0x0 0x0
0xffffae0000020a80 0001 00000000 0x0 0x0
0xffffae0000020b00 0001 00000000 0x0 0x0
0xffffae0000020b80 0001 00000000 0x0 0x0
0xffffae0000020c00 0001 00000000 0x0 0x0
0xffffae0000020c80 0001 00000000 0x0 0x0
0xffffae0000020d00 0001 00000000 0x0 0x0
0xffffae0000020d80 0001 00000000 0x0 0x0
0xffffae0000020e00 0001 00000000 0x0 0x0
0xffffae0000020e80 0001 00000000 0x0 0x0
0xffffae0000020f00 0001 00000000 0x0 0x0
0xffffae0000020f80 0001 00000000 0x0 0x0
0xffffae0000021000 0001 00000000 0x0 0x0
0xffffae0000021080 0001 00000000 0x0 0x0
0xffffae0000021100 0001 00000000 0x0 0x0
0xffffae0000021180 0001 00000000 0x0 0x0
0xffffae0000021200 0001 00000000 0x0 0x0
0xffffae0000021280 0001 00000000 0x0 0x0
0xffffae0000021300 0001 00000000 0x0 0x0
0xffffae0000021380 0001 00000000 0x0 0x0
0xffffae0000021400 0001 00000000 0x0 0x0
0xffffae0000021480 0001 00000000 0x0 0x0
0xffffae0000021500 0001 00000000 0x0 0x0
0xffffae0000021580 0001 00000000 0x0 0x0
0xffffae0000021600 0001 00000000 0x0 0x0
0xffffae0000021680 0001 00000000 0x0 0x0
0xffffae0000021700 0001 00000000 0x0 0x0
0xffffae0000021780 0001 00000000 0x0 0x0
0xffffae0000021800 0001 00000000 0x0 0x0
0xffffae0000021880 0001 00000000 0x0 0x0
0xffffae0000021900 0001 00000000 0x0 0x0
0xffffae0000021980 0001 00000000 0x0 0x0
0xffffae0000021a00 0001 00000000 0x0 0x0
0xffffae0000021a80 0001 00000000 0x0 0x0
0xffffae0000021b00 0001 00000000 0x0 0x0
0xffffae0000021b80 0001 00000000 0x0 0x0
0xffffae0000021c00 0001 00000000 0x0 0x0
0xffffae0000021c80 0001 00000000 0x0 0x0
0xffffae0000021d00 0001 00000000 0x0 0x0
0xffffae0000021d80 0001 00000000 0x0 0x0
0xffffae0000021e00 0001 00000000 0x0 0x0
0xffffae0000021e80 0001 00000000 0x0 0x0
0xffffae0000021f00 0001 00000000 0x0 0x0
0xffffae0000021f80 0001 00000000 0x0 0x0
0xffffae0000022000 0001 00000000 0x0 0x0
0xffffae0000022080 0001 00000000 0x0 0x0
0xffffae0000022100 0001 00000000 0x0 0x0
0xffffae0000022180 0001 00000000 0x0 0x0
0xffffae0000022200 0001 00000000 0x0 0x0
0xffffae0000022280 0001 00000000 0x0 0x0
0xffffae0000022300 0001 00000000 0x0 0x0
0xffffae0000022380 0001 00000000 0x0 0x0
0xffffae0000022400 0001 00000000 0x0 0x0
0xffffae0000022480 0001 00000000 0x0 0x0
0xffffae0000022500 0001 00000000 0x0 0x0
0xffffae0000022580 0001 00000000 0x0 0x0
0xffffae0000022600 0001 00000000 0x0 0x0
0xffffae0000022680 0001 00000000 0x0 0x0
0xffffae0000022700 0001 00000000 0x0 0x0
0xffffae0000022780 0001 00000000 0x0 0x0
0xffffae0000022800 0001 00000000 0x0 0x0
0xffffae0000022880 0001 00000000 0x0 0x0
0xffffae0000022900 0001 00000000 0x0 0x0
0xffffae0000022980 0001 00000000 0x0 0x0
0xffffae0000022a00 0001 00000000 0x0 0x0
0xffffae0000022a80 0001 00000000 0x0 0x0
0xffffae0000022b00 0001 00000000 0x0 0x0
0xffffae0000022b80 0001 00000000 0x0 0x0
0xffffae0000022c00 0001 00000000 0x0 0x0
0xffffae0000022c80 0001 00000000 0x0 0x0
0xffffae0000022d00 0001 00000000 0x0 0x0
0xffffae0000022d80 0001 00000000 0x0 0x0
0xffffae0000022e00 0001 00000000 0x0 0x0
0xffffae0000022e80 0001 00000000 0x0 0x0
0xffffae0000022f00 0001 00000000 0x0 0x0
0xffffae0000022f80 0001 00000000 0x0 0x0
0xffffae0000023000 0001 00000000 0x0 0x0
0xffffae0000023080 0001 00000000 0x0 0x0
0xffffae0000023100 0001 00000000 0x0 0x0
0xffffae0000023180 0001 00000000 0x0 0x0
0xffffae0000023200 0001 00000000 0x0 0x0
0xffffae0000023280 0001 00000000 0x0 0x0
0xffffae0000023300 0001 00000000 0x0 0x0
0xffffae0000023380 0001 00000000 0x0 0x0
0xffffae0000023400 0001 00000000 0x0 0x0
0xffffae0000023480 0001 00000000 0x0 0x0
0xffffae0000023500 0001 00000000 0x0 0x0
0xffffae0000023580 0001 00000000 0x0 0x0
0xffffae0000023600 0001 00000000 0x0 0x0
0xffffae0000023680 0001 00000000 0x0 0x0
0xffffae0000023700 0001 00000000 0x0 0x0
0xffffae0000023780 0001 00000000 0x0 0x0
0xffffae0000023800 0001 00000000 0x0 0x0
0xffffae0000023880 0001 00000000 0x0 0x0
0xffffae0000023900 0001 00000000 0x0 0x0
0xffffae0000023980 0001 00000000 0x0 0x0
0xffffae0000023a00 0001 00000000 0x0 0x0
0xffffae0000023a80 0001 00000000 0x0 0x0
0xffffae0000023b00 0001 00000000 0x0 0x0
0xffffae0000023b80 0001 00000000 0x0 0x0
0xffffae0000023c00 0001 00000000 0x0 0x0
0xffffae0000023c80 0001 00000000 0x0 0x0
0xffffae0000023d00 0001 00000000 0x0 0x0
0xffffae0000023d80 0001 00000000 0x0 0x0
0xffffae0000023e00 0001 00000000 0x0 0x0
0xffffae0000023e80 0001 00000000 0x0 0x0
0xffffae0000023f00 0001 00000000 0x0 0x0
0xffffae0000023f80 0001 00000000 0x0 0x0
0xffffae0000024000 0001 00000000 0x0 0x0
0xffffae0000024080 0001 00000000 0x0 0x0
0xffffae0000024100 0001 00000000 0x0 0x0
0xffffae0000024180 0001 00000000 0x0 0x0
0xffffae0000024200 0001 00000000 0x0 0x0
0xffffae0000024280 0001 00000000 0x0 0x0
0xffffae0000024300 0001 00000000 0x0 0x0
0xffffae0000024380 0001 00000000 0x0 0x0
0xffffae0000024400 0001 00000000 0x0 0x0
0xffffae0000024480 0001 00000000 0x0 0x0
0xffffae0000024500 0001 00000000 0x0 0x0
0xffffae0000024580 0001 00000000 0x0 0x0
0xffffae0000024600 0001 00000000 0x0 0x0
0xffffae0000024680 0001 00000000 0x0 0x0
0xffffae0000024700 0001 00000000 0x0 0x0
0xffffae0000024780 0001 00000000 0x0 0x0
0xffffae0000024800 0001 00000000 0x0 0x0
0xffffae0000024880 0001 00000000 0x0 0x0
0xffffae0000024900 0001 00000000 0x0 0x0
0xffffae0000024980 0001 00000000 0x0 0x0
0xffffae0000024a00 0001 00000000 0x0 0x0
0xffffae0000024a80 0001 00000000 0x0 0x0
0xffffae0000024b00 0001 00000000 0x0 0x0
0xffffae0000024b80 0001 00000000 0x0 0x0
0xffffae0000024c00 0001 00000000 0x0 0x0
0xffffae0000024c80 0001 00000000 0x0 0x0
0xffffae0000024d00 0001 00000000 0x0 0x0
0xffffae0000024d80 0001 00000000 0x0 0x0
0xffffae0000024e00 0001 00000000 0x0 0x0
0xffffae0000024e80 0001 00000000 0x0 0x0
0xffffae0000024f00 0001 00000000 0x0 0x0
0xffffae0000024f80 0001 00000000 0x0 0x0
0xffffae0000025000 0001 00000000 0x0 0x0
0xffffae0000025080 0001 00000000 0x0 0x0
0xffffae0000025100 0001 00000000 0x0 0x0
0xffffae0000025180 0001 00000000 0x0 0x0
0xffffae0000025200 0001 00000000 0x0 0x0
0xffffae0000025280 0001 00000000 0x0 0x0
0xffffae0000025300 0001 00000000 0x0 0x0
0xffffae0000025380 0001 00000000 0x0 0x0
0xffffae0000025400 0001 00000000 0x0 0x0
0xffffae0000025480 0001 00000000 0x0 0x0
0xffffae0000025500 0001 00000000 0x0 0x0
0xffffae0000025580 0001 00000000 0x0 0x0
0xffffae0000025600 0001 00000000 0x0 0x0
0xffffae0000025680 0001 00000000 0x0 0x0
0xffffae0000025700 0001 00000000 0x0 0x0
0xffffae0000025780 0001 00000000 0x0 0x0
0xffffae0000025800 0001 00000000 0x0 0x0
0xffffae0000025880 0001 00000000 0x0 0x0
0xffffae0000025900 0001 00000000 0x0 0x0
0xffffae0000025980 0001 00000000 0x0 0x0
0xffffae0000025a00 0001 00000000 0x0 0x0
0xffffae0000025a80 0001 00000000 0x0 0x0
0xffffae0000025b00 0001 00000000 0x0 0x0
0xffffae0000025b80 0001 00000000 0x0 0x0
0xffffae0000025c00 0001 00000000 0x0 0x0
0xffffae0000025c80 0001 00000000 0x0 0x0
0xffffae0000025d00 0001 00000000 0x0 0x0
0xffffae0000025d80 0001 00000000 0x0 0x0
0xffffae0000025e00 0001 00000000 0x0 0x0
0xffffae0000025e80 0001 00000000 0x0 0x0
0xffffae0000025f00 0001 00000000 0x0 0x0
0xffffae0000025f80 0001 00000000 0x0 0x0
0xffffae0000026000 0001 00000000 0x0 0x0
0xffffae0000026080 0001 00000000 0x0 0x0
0xffffae0000026100 0001 00000000 0x0 0x0
0xffffae0000026180 0001 00000000 0x0 0x0
0xffffae0000026200 0001 00000000 0x0 0x0
0xffffae0000026280 0001 00000000 0x0 0x0
0xffffae0000026300 0001 00000000 0x0 0x0
0xffffae0000026380 0001 00000000 0x0 0x0
0xffffae0000026400 0001 00000000 0x0 0x0
0xffffae0000026480 0001 00000000 0x0 0x0
0xffffae0000026500 0001 00000000 0x0 0x0
0xffffae0000026580 0001 00000000 0x0 0x0
0xffffae0000026600 0001 00000000 0x0 0x0
0xffffae0000026680 0001 00000000 0x0 0x0
0xffffae0000026700 0001 00000000 0x0 0x0
0xffffae0000026780 0001 00000000 0x0 0x0
0xffffae0000026800 0001 00000000 0x0 0x0
0xffffae0000026880 0001 00000000 0x0 0x0
0xffffae0000026900 0001 00000000 0x0 0x0
0xffffae0000026980 0001 00000000 0x0 0x0
0xffffae0000026a00 0001 00000000 0x0 0x0
0xffffae0000026a80 0001 00000000 0x0 0x0
0xffffae0000026b00 0001 00000000 0x0 0x0
0xffffae0000026b80 0001 00000000 0x0 0x0
0xffffae0000026c00 0001 00000000 0x0 0x0
0xffffae0000026c80 0001 00000000 0x0 0x0
0xffffae0000026d00 0001 00000000 0x0 0x0
0xffffae0000026d80 0001 00000000 0x0 0x0
0xffffae0000026e00 0001 00000000 0x0 0x0
0xffffae0000026e80 0001 00000000 0x0 0x0
0xffffae0000026f00 0001 00000000 0x0 0x0
0xffffae0000026f80 0001 00000000 0x0 0x0
0xffffae0000027000 0001 00000000 0x0 0x0
0xffffae0000027080 0001 00000000 0x0

[syzbot]

Hello,

syzbot found the following issue on:

HEAD commit: d5a34bf380e9 linux_pci: Nix pci enumeration kludges.
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=144d0fb1980000
kernel config: https://syzkaller.appspot.com/x/.config?x=fab579639ba4bf0a
dashboard link: https://syzkaller.appspot.com/bug?extid=cce1d4cba338ac977a16

compiler: g++ (Debian 12.2.0-14) 12.2.0

Unfortunately, I don't have any reproducer for this issue yet.

Downloadable assets:

disk image: https://storage.googleapis.com/syzbot-assets/720f3b618853/disk-d5a34bf3.raw.xz
netbsd.gdb: https://storage.googleapis.com/syzbot-assets/6de66a98b615/netbsd-d5a34bf3.gdb.xz

IMPORTANT: if you fix the issue, please add the following tag to the commit:

Reported-by: syzbot+cce1d4...@syzkaller.appspotmail.com

[ 720.2643121] panic:ASan: Unauthorize d Access In 0xffffffff81cc0c34: Addr 0xffffd68014c4bb00 [8 bytes, read, PoolUseAfterFree]

[ 720.2742961] cpu1: Begin traceback...
[ 720.2943237] vpanic() at netbsd:vpanic+0x27a sys/kern/subr_prf.c:288
[ 720.3542942] panic() at netbsd:panic+0x9d sys/kern/subr_prf.c:1084
[ 720.3943107] kasan_report() at netbsd:kasan_report+0x8c kasan_code_name sys/kern/subr_asan.c:169 [inline]
[ 720.3943107] kasan_report() at netbsd:kasan_report+0x8c sys/kern/subr_asan.c:201
[ 720.4442968] __asan_load8() at netbsd:__asan_load8+0x251 kasan_shadow_4byte_isvalid sys/kern/subr_asan.c:351 [inline]
[ 720.4442968] __asan_load8() at netbsd:__asan_load8+0x251 kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:364 [inline]
[ 720.4442968] __asan_load8() at netbsd:__asan_load8+0x251 kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
[ 720.4442968] __asan_load8() at netbsd:__asan_load8+0x251 sys/kern/subr_asan.c:1208
[ 720.4842958] mount_domount() at netbsd:mount_domount+0x77e mount_checkdirs sys/kern/vfs_mount.c:744 [inline]
[ 720.4842958] mount_domount() at netbsd:mount_domount+0x77e sys/kern/vfs_mount.c:898
[ 720.5243103] do_sys_mount() at netbsd:do_sys_mount+0x749 sys/kern/vfs_syscalls.c:616
[ 720.5642955] compat_40_sys_mount() at netbsd:compat_40_sys_mount+0xbd sys/compat/common/vfs_syscalls_40.c:88
[ 720.6043080] sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
[ 720.6043080] sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90
[ 720.6443200] syscall() at netbsd:syscall+0x35c sy_call sys/sys/syscallvar.h:65 [inline]
[ 720.6443200] syscall() at netbsd:syscall+0x35c sy_invoke sys/sys/syscallvar.h:94 [inline]
[ 720.6443200] syscall() at netbsd:syscall+0x35c sys/arch/x86/x86/syscall.c:137
[ 720.6543142] --- syscall (number 21 via SYS_syscall) ---
[ 720.6742980] netbsd:syscall+0x35c:
[ 720.6742980] cpu1: End traceback...
[ 720.6842949] fatal breakpoint trap in supervisor mode
[ 720.6842949] trap type 1 code 0 rip 0xffffffff8023240d cs 0x8 rflags 0x286 cr2 0x73a89982f000 ilevel 0 rsp 0xffffd682490f08d0
[ 720.6942933] curlwp 0xffffd68014da8140 pid 12645.11924 lowest kstack 0xffffd682490e92c0
Stopped in pid 12645.11924 (syz-executor.3) at netbsd:breakpoint+0x5: leave

?
breakpoint() at netbsd:breakpoint+0x5
db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:71

vpanic() at netbsd:vpanic+0x27a sys/kern/subr_prf.c:288
panic() at netbsd:panic+0x9d sys/kern/subr_prf.c:1084
kasan_report() at netbsd:kasan_report+0x8c kasan_code_name sys/kern/subr_asan.c:169 [inline]
kasan_report() at netbsd:kasan_report+0x8c sys/kern/subr_asan.c:201
__asan_load8() at netbsd:__asan_load8+0x251 kasan_shadow_4byte_isvalid sys/kern/subr_asan.c:351 [inline]
__asan_load8() at netbsd:__asan_load8+0x251 kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:364 [inline]
__asan_load8() at netbsd:__asan_load8+0x251 kasan_shadow_check sys/kern/subr_asan.c:421 [inline]
__asan_load8() at netbsd:__asan_load8+0x251 sys/kern/subr_asan.c:1208
mount_domount() at netbsd:mount_domount+0x77e mount_checkdirs sys/kern/vfs_mount.c:744 [inline]
mount_domount() at netbsd:mount_domount+0x77e sys/kern/vfs_mount.c:898
do_sys_mount() at netbsd:do_sys_mount+0x749 sys/kern/vfs_syscalls.c:616

compat_40_sys_mount() at netbsd:compat_40_sys_mount+0xbd sys/compat/common/vfs_syscalls_40.c:88

sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90

syscall() at netbsd:syscall+0x35c sy_call sys/sys/syscallvar.h:65 [inline]
syscall() at netbsd:syscall+0x35c sy_invoke sys/sys/syscallvar.h:94 [inline]
syscall() at netbsd:syscall+0x35c sys/arch/x86/x86/syscall.c:137

--- syscall (number 21 via SYS_syscall) ---

netbsd:syscall+0x35c:
Panic string: ASan: Unauthorized Access In 0xffffffff81cc0c34: Addr 0xffffd68014c4bb00 [8 bytes, read, PoolUseAfterFree]

PID LID S CPU FLAGS STRUCT LWP * NAME WAIT

12242 12242 3 0 0 ffffd68014be1940 syz-executor.0 mutex
14769 14522 3 0 180 ffffd68013f7f740 syz-executor.1 parked
14769 14769 3 0 10000000 ffffd68014da1540 syz-executor.1 mutex
12645 10740 3 0 180 ffffd6801403f040 syz-executor.3 parked
12645>11924 7 1 0 ffffd68014da8140 syz-executor.3
12645 12645 2 1 10040000 ffffd6801345c940 syz-executor.3
12674 12674 3 0 10040000 ffffd68014819b00 syz-executor.2 mutex
15050 15050 2 1 10040000 ffffd6801414d180 syz-executor.4
12854 12854 3 0 40 ffffd680133c9b00 syz-executor.3 mutex
12685 12685 3 0 0 ffffd68012cfeac0 syz-executor.1 mutex
14129 14129 3 0 40 ffffd6801403f8c0 syz-executor.4 mutex
13000 13000 3 0 0 ffffd68014844700 syz-executor.0 vfork
13616 13616 3 0 40 ffffd68013452900 syz-executor.2 mutex
13134 10563 3 0 1140000 ffffd68014498a80 syz-executor.3 mutex
13134 13134 3 0 11000000 ffffd68013dc9a40 syz-executor.3 lwpwait
13218 13218 3 0 180 ffffd68012d5f8c0 syz-executor.1 parked
11406 11406 3 0 180 ffffd6801337d5c0 syz-executor.2 parked
11141 11141 3 1 180 ffffd68012cca580 syz-executor.1 parked
11197 11197 3 0 180 ffffd68012d16700 syz-executor.4 parked
10299 10844 3 0 11100000 ffffd68012c16680 syz-executor.4 vfork
10299 10299 3 0 11000000 ffffd68012be7600 syz-executor.4 lwpwait
11216 11216 3 0 180 ffffd68012cd45c0 syz-executor.3 parked
10384 10384 3 1 180 ffffd68012ac8500 syz-executor.0 parked
9261 9261 3 1 180 ffffd68012c938c0 syz-executor.3 parked
11424 11424 3 0 180 ffffd68014061900 syz-executor.3 parked
7413 10470 3 1 11100000 ffffd68014498640 syz-executor.3 vfork
7413 7413 3 0 11000000 ffffd68012bc0a00 syz-executor.3 lwpwait
10703 10703 3 0 180 ffffd68012b7b100 syz-executor.4 parked
9319 9319 3 0 180 ffffd68012bc0180 syz-executor.2 parked
7407 9574 3 0 1140000 ffffd68012c80780 syz-executor.2 mutex
7407 7407 3 0 11000000 ffffd68012b99140 syz-executor.2 lwpwait
7276 > 6908 7 0 1140000 ffffd68012d0ab00 syz-executor.2
7276 7276 3 0 11000000 ffffd6801343e780 syz-executor.2 lwpwait
7776 7776 3 1 180 ffffd68012a98080 syz-executor.5 parked
6113 7486 3 1 1100000 ffffd68012c66300 syz-executor.5 vfork
6113 6113 3 0 11000000 ffffd68014498200 syz-executor.5 lwpwait
6982 6982 3 1 180 ffffd6801413b100 syz-executor.1 parked
6731 6731 3 1 180 ffffd68012cbc980 syz-executor.1 parked
7500 7500 3 1 180 ffffd680140fb0c0 syz-executor.0 parked
5786 5786 3 1 180 ffffd68012a20300 syz-executor.0 parked
5682 5682 3 1 180 ffffd68012a20b80 syz-executor.2 parked
4235 4235 3 0 180 ffffd68012c03200 syz-executor.0 parked
4067 4067 3 0 180 ffffd680140fb500 syz-executor.1 parked
4915 4915 3 1 180 ffffd68013337980 dhcpcd poll
4320 4320 3 0 180 ffffd68012a71480 syz-executor.5 parked
1063 1063 3 0 180 ffffd68013f452c0 syz-executor.3 parked
2047 2047 3 0 180 ffffd68013df3640 syz-executor.1 parked
1970 1970 3 1 180 ffffd68013337540 syz-executor.0 parked
647 648 3 1 15100000 ffffd68012da5500 syz-executor.0 vfork
647 647 3 0 11000000 ffffd6801343e340 syz-executor.0 lwpwait
1235 8150 3 1 180 ffffd68013465980 syz-fuzzer wait
1235 1456 3 1 1c0 ffffd68012ca3080 syz-fuzzer parked
1235 1451 3 1 180 ffffd68012c93480 syz-fuzzer parked
1235 1207 3 1 180 ffffd68013e55b00 syz-fuzzer wait
1235 1209 3 0 180 ffffd68013e556c0 syz-fuzzer wait
1235 1204 2 1 0 ffffd68013e30ac0 syz-fuzzer
1235 1384 3 0 180 ffffd68013df3a80 syz-fuzzer parked
1235 1101 3 0 180 ffffd68013df3200 syz-fuzzer wait
1235 1109 3 1 180 ffffd68013dc91c0 syz-fuzzer wait
1235 829 3 0 180 ffffd68012d23b80 syz-fuzzer parked
1235 942 3 1 180 ffffd680133a5a80 syz-fuzzer parked
1235 449 3 0 180 ffffd68013420b40 syz-fuzzer wait
1235 1260 3 1 180 ffffd680126d9340 syz-fuzzer parked
1235 1233 3 1 180 ffffd68012a54340 syz-fuzzer parked
1235 1235 3 1 180 ffffd6801337da00 syz-fuzzer parked
1236 1236 3 0 180 ffffd68012ac8940 sshd select
1222 1222 3 1 180 ffffd680126d7740 getty nanoslp
1151 1151 3 1 180 ffffd6801349c5c0 getty nanoslp
1225 1225 3 0 180 ffffd6801349c180 getty nanoslp
1106 1106 3 0 180 ffffd680126d9bc0 getty ttyraw
1095 1095 3 1 180 ffffd680133a5640 sshd select
685 685 3 1 180 ffffd68012d5f040 powerd kqueue
699 699 3 0 180 ffffd6801343ebc0 syslogd kqueue
747 747 3 0 180 ffffd68012c16ac0 dhcpcd poll
745 745 3 0 180 ffffd68012cb2500 dhcpcd poll
584 584 2 1 0 ffffd68012c80bc0 dhcpcd
487 487 3 0 180 ffffd68012da50c0 dhcpcd poll
292 292 3 1 180 ffffd68012d88900 dhcpcd poll
485 485 2 1 0 ffffd68012d884c0 dhcpcd
1 1 3 1 180 ffffd68012870180 init wait
0 14394 3 1 200 ffffd680126d7b80 ktrace ktrwait
0 9969 3 0 200 ffffd6801403f480 ktrace ktrwait
0 10702 3 0 200 ffffd68012cca140 ktrace ktrwait
0 8225 3 1 200 ffffd68012be7a40 ktrace ktrwait
0 5209 3 0 200 ffffd68012cf4a80 ktrace ktrwait
0 3807 3 0 200 ffffd68012cbc540 ktrace ktrwait
0 2779 3 0 200 ffffd68013fd1bc0 swapiod swapiod
0 673 3 0 200 ffffd680129bf6c0 physiod physiod
0 196 3 1 200 ffffd680129c1700 pooldrain pooldrain
0 195 3 1 200 ffffd680129c12c0 ioflush syncer
0 194 3 0 200 ffffd680129bfb00 pgdaemon pgdaemon
0 167 3 1 200 ffffd68012976ac0 usb7 usbevt
0 172 3 1 200 ffffd68012976680 usb6 usbevt
0 170 3 0 200 ffffd68012976240 usb5 usbevt
0 168 3 1 200 ffffd6801291ea80 usb4 usbevt
0 166 3 1 200 ffffd6801291e640 usb3 usbevt
0 165 3 1 200 ffffd6801291e200 usb2 usbevt
0 31 3 1 200 ffffd680128caa40 usb1 usbevt
0 63 3 0 200 ffffd680128ca600 usb0 usbevt
0 126 3 1 200 ffffd680128ca1c0 usbtask-dr usbtsk
0 125 3 1 200 ffffd68012870a00 usbtask-hc usbtsk
0 124 3 0 200 ffffd68010d66b00 swwreboot swwreboot
0 123 3 1 200 ffffd680128705c0 npfgc0 npfgcw
0 122 3 1 200 ffffd680128669c0 rt_free rt_free
0 121 3 0 200 ffffd68012866580 unpgc unpgc
0 120 2 1 200 ffffd68012866140 key_timehandler
0 119 3 1 200 ffffd68012703980 icmp6_wqinput/1 icmp6_wqinput
0 118 3 0 200 ffffd68012703540 icmp6_wqinput/0 icmp6_wqinput
0 117 3 0 200 ffffd68012703100 nd6_timer nd6_timer
0 116 3 1 200 ffffd680126fc940 carp6_wqinput/1 carp6_wqinput
0 115 3 0 200 ffffd680126fc500 carp6_wqinput/0 carp6_wqinput
0 114 3 1 200 ffffd680126fc0c0 carp_wqinput/1 carp_wqinput
0 113 3 0 200 ffffd680126ed900 carp_wqinput/0 carp_wqinput
0 112 3 1 200 ffffd680126ed4c0 icmp_wqinput/1 icmp_wqinput
0 111 3 0 200 ffffd680126ed080 icmp_wqinput/0 icmp_wqinput
0 110 3 1 200 ffffd680126db8c0 rt_timer rt_timer
0 109 3 0 200 ffffd680126db040 vmem_rehash vmem_rehash
0 100 3 1 200 ffffd680126d7300 entbutler entropy
0 99 3 1 200 ffffd680120bdb40 viomb balloon
0 98 3 1 200 ffffd680120bd700 vioif0_txrx/1 vioif0_txrx
0 97 3 0 200 ffffd680120bd2c0 vioif0_txrx/0 vioif0_txrx
0 30 3 0 200 ffffd68010d666c0 scsibus0 sccomp
0 29 3 0 200 ffffd68010d66280 pms0 pmsreset
0 28 3 1 200 ffffd68010cacac0 xcall/1 xcall
0 27 1 1 200 ffffd68010cac680 softser/1
0 26 1 1 200 ffffd68010cac240 softclk/1
0 25 1 1 200 ffffd68010ca9a80 softbio/1
0 24 1 1 200 ffffd68010ca9640 softnet/1
0 23 1 1 201 ffffd68010ca9200 idle/1
0 22 3 0 200 ffffd6800fb55a40 lnxsyswq lnxsyswq
0 21 3 0 200 ffffd6800fb55600 lnxubdwq lnxubdwq
0 20 3 1 200 ffffd6800fb551c0 lnxpwrwq lnxpwrwq
0 19 3 1 200 ffffd6800fb54a00 lnxlngwq lnxlngwq
0 18 3 1 200 ffffd6800fb545c0 lnxhipwq lnxhipwq
0 17 3 0 200 ffffd6800fb54180 lnxrcugc lnxrcugc
0 16 3 0 200 ffffd6800fb4d9c0 sysmon smtaskq
0 15 3 0 200 ffffd6800fb4d580 pmfsuspend pmfsuspend
0 14 3 0 200 ffffd6800fb4d140 pmfevent pmfevent
0 13 3 0 200 ffffd6800fb4a980 sopendfree sopendfr
0 12 3 0 200 ffffd6800fb4a540 ifwdog ifwdog
0 11 3 1 200 ffffd6800fb4a100 iflnkst iflnkst
0 10 3 0 200 ffffd6800fb3b940 nfssilly nfssilly
0 9 3 0 200 ffffd6800fb3b500 pooldisp mutex
0 8 3 1 200 ffffd6800fb3b0c0 modunload mod_unld
0 7 3 0 200 ffffd6800fb32900 xcall/0 xcall
0 6 1 0 200 ffffd6800fb324c0 softser/0
0 5 1 0 200 ffffd6800fb32080 softclk/0
0 4 1 0 200 ffffd6800fb308c0 softbio/0
0 3 1 0 200 ffffd6800fb30480 softnet/0
0 2 1 0 201 ffffd6800fb30040 idle/0
0 0 3 1 200 ffffffff833501c0 swapper uvm
[Locks tracked through LWPs]

****** LWP 12242.12242 (syz-executor.0) @ 0xffffd68014be1940, l_stat=3

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x369 sys/kern/kern_fork.c:366)
lock address : ffffd68013f56bd0
type : sleep/adaptive
initialized : netbsd:fork1+0x369

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 0 last held: 0
relevant lwp : 0xffffd68014be1940 last held: 0xffffd68014be1940
last locked* : netbsd:execve_loadvm+0x31a
unlocked : 0
owner/count : 0xffffd68014be1940 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at netbsd:procinit+0x5c sys/kern/kern_proc.c:387)
lock address : netbsd:proc_lock
type : sleep/adaptive
initialized : netbsd:procinit+0x5c
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 4

relevant cpu : 0 last held: 1

relevant lwp : 0xffffd68014be1940 last held: 0xffffd68014da8140
last locked* : netbsd:mount_domount+0x6ec
unlocked : netbsd:mount_domount+0x98e
owner field : 0xffffd68014da8140 wait/spin: 1/0

Turnstile:
=> 0 waiting readers:

=> 10 waiting writers: 0xffffd6800fb3b500 0xffffd680133c9b00 0xffffd68014da1540 0xffffd68014498a80 0xffffd68014be1940 0xffffd68012cfeac0 0xffffd68012c80780 0xffffd68014819b00 0xffffd6801403f8c0 0xffffd68013452900

****** LWP 12645.11924 (syz-executor.3) @ 0xffffd68014da8140, l_stat=7

*** Locks held:

* Lock 0 (initialized at netbsd:fstrans_init+0x20 sys/kern/vfs_trans.c:136)
lock address : netbsd:vfs_suspend_lock
type : sleep/adaptive
initialized : netbsd:fstrans_init+0x20
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd68014da8140 last held: 0xffffd68014da8140
last locked* : netbsd:vfs_suspend+0x1a7
unlocked : netbsd:mount_domount+0xb91
owner field : 0xffffd68014da8140 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at netbsd:vfs_mountalloc+0xbc sys/kern/vfs_mount.c:163)
lock address : ffffd68014db9700
type : sleep/adaptive
initialized : netbsd:vfs_mountalloc+0xbc

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd68014da8140 last held: 0xffffd68014da8140
last locked* : netbsd:mount_domount+0x2c2
unlocked : 0
owner field : 0xffffd68014da8140 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 2 (initialized at netbsd:vcache_alloc+0x3d sys/kern/vfs_vnode.c:1438)
lock address : ffffd68014b50740
type : sleep/adaptive
initialized : netbsd:vcache_alloc+0x3d

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd68014da8140 last held: 0xffffd68014da8140
last locked* : netbsd:genfs_lock+0x15a
unlocked : netbsd:genfs_unlock+0x2a
owner/count : 0xffffd68014da8140 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

* Lock 3 (initialized at netbsd:procinit+0x5c sys/kern/kern_proc.c:387)
lock address : netbsd:proc_lock
type : sleep/adaptive
initialized : netbsd:procinit+0x5c
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 4

relevant cpu : 1 last held: 1

relevant lwp : 0xffffd68014da8140 last held: 0xffffd68014da8140
last locked* : netbsd:mount_domount+0x6ec
unlocked : netbsd:mount_domount+0x98e
owner field : 0xffffd68014da8140 wait/spin: 1/0

Turnstile:
=> 0 waiting readers:

=> 10 waiting writers: 0xffffd6800fb3b500 0xffffd680133c9b00 0xffffd68014da1540 0xffffd68014498a80 0xffffd68014be1940 0xffffd68012cfeac0 0xffffd68012c80780 0xffffd68014819b00 0xffffd6801403f8c0 0xffffd68013452900

*** Locks wanted: none

****** LWP 12674.12674 (syz-executor.2) @ 0xffffd68014819b00, l_stat=3

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x369 sys/kern/kern_fork.c:366)
lock address : ffffd68012d57f10
type : sleep/adaptive
initialized : netbsd:fork1+0x369

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 0 last held: 0
relevant lwp : 0xffffd68014819b00 last held: 0xffffd68014819b00
last locked* : netbsd:exit1+0x2e3
unlocked : 0
owner/count : 0xffffd68014819b00 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 15050.15050 (syz-executor.4) @ 0xffffd6801414d180, l_stat=2

*** Locks held:

* Lock 0 (initialized at netbsd:fork1+0x369 sys/kern/kern_fork.c:366)
lock address : ffffd68012d9ef90
type : sleep/adaptive
initialized : netbsd:fork1+0x369

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd6801414d180 last held: 0xffffd6801414d180
last locked* : netbsd:exit1+0x2e3
unlocked : 0
owner/count : 0xffffd6801414d180 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 12685.12685 (syz-executor.1) @ 0xffffd68012cfeac0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:procinit+0x5c sys/kern/kern_proc.c:387)
lock address : netbsd:proc_lock
type : sleep/adaptive
initialized : netbsd:procinit+0x5c
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 4

relevant cpu : 0 last held: 1

relevant lwp : 0xffffd68012cfeac0 last held: 0xffffd68014da8140
last locked* : netbsd:mount_domount+0x6ec
unlocked : netbsd:mount_domount+0x98e
owner field : 0xffffd68014da8140 wait/spin: 1/0

Turnstile:
=> 0 waiting readers:

=> 10 waiting writers: 0xffffd6800fb3b500 0xffffd680133c9b00 0xffffd68014da1540 0xffffd68014498a80 0xffffd68014be1940 0xffffd68012cfeac0 0xffffd68012c80780 0xffffd68014819b00 0xffffd6801403f8c0 0xffffd68013452900

****** LWP 13134.10563 (syz-executor.3) @ 0xffffd68014498a80, l_stat=3

*** Locks held:

* Lock 0 (initialized at netbsd:do_posix_spawn+0xfb sys/kern/kern_exec.c:2580)
lock address : ffffd68010c03600
type : sleep/adaptive
initialized : netbsd:do_posix_spawn+0xfb

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 0 last held: 0
relevant lwp : 0xffffd68014498a80 last held: 0xffffd68014498a80
last locked* : netbsd:do_posix_spawn+0x103
unlocked : 0
owner field : 0xffffd68014498a80 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at netbsd:fork1+0x369 sys/kern/kern_fork.c:366)
lock address : ffffd68012c11a50
type : sleep/adaptive
initialized : netbsd:fork1+0x369

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 0 last held: 0
relevant lwp : 0xffffd68014498a80 last held: 0xffffd68014498a80
last locked* : netbsd:execve_loadvm+0x31a
unlocked : 0
owner/count : 0xffffd68014498a80 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 10299.10844 (syz-executor.4) @ 0xffffd68012c16680, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffd68012c16680 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 7407.9574 (syz-executor.2) @ 0xffffd68012c80780, l_stat=3

*** Locks held:

* Lock 0 (initialized at netbsd:do_posix_spawn+0xfb sys/kern/kern_exec.c:2580)
lock address : ffffd6801444a700
type : sleep/adaptive
initialized : netbsd:do_posix_spawn+0xfb

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 1

relevant lwp : 0xffffd68012c80780 last held: 0xffffd68012c80780
last locked* : netbsd:do_posix_spawn+0x103
unlocked : 0
owner field : 0xffffd68012c80780 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at netbsd:fork1+0x369 sys/kern/kern_fork.c:366)
lock address : ffffd68013393ad0
type : sleep/adaptive
initialized : netbsd:fork1+0x369

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 1

relevant lwp : 0xffffd68012c80780 last held: 0xffffd68012c80780
last locked* : netbsd:execve_loadvm+0x31a
unlocked : 0
owner/count : 0xffffd68012c80780 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted:

* Lock 0 (initialized at netbsd:procinit+0x5c sys/kern/kern_proc.c:387)
lock address : netbsd:proc_lock
type : sleep/adaptive
initialized : netbsd:procinit+0x5c
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 4

relevant cpu : 0 last held: 1

relevant lwp : 0xffffd68012c80780 last held: 0xffffd68014da8140
last locked* : netbsd:mount_domount+0x6ec
unlocked : netbsd:mount_domount+0x98e
owner field : 0xffffd68014da8140 wait/spin: 1/0

Turnstile:
=> 0 waiting readers:

=> 10 waiting writers: 0xffffd6800fb3b500 0xffffd680133c9b00 0xffffd68014da1540 0xffffd68014498a80 0xffffd68014be1940 0xffffd68012cfeac0 0xffffd68012c80780 0xffffd68014819b00 0xffffd6801403f8c0 0xffffd68013452900

****** LWP 7276.6908 (syz-executor.2) @ 0xffffd68012d0ab00, l_stat=7

*** Locks held:

* Lock 0 (initialized at netbsd:do_posix_spawn+0xfb sys/kern/kern_exec.c:2580)
lock address : ffffd680134a2a80
type : sleep/adaptive
initialized : netbsd:do_posix_spawn+0xfb

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 1

relevant lwp : 0xffffd68012d0ab00 last held: 0xffffd68012d0ab00
last locked* : netbsd:do_posix_spawn+0x103
unlocked : 0
owner field : 0xffffd68012d0ab00 wait/spin: 0/0

Turnstile: no active turnstile for this lock.

* Lock 1 (initialized at netbsd:fork1+0x369 sys/kern/kern_fork.c:366)
lock address : ffffd68012c4d3d0
type : sleep/adaptive
initialized : netbsd:fork1+0x369

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 1

relevant lwp : 0xffffd68012d0ab00 last held: 0xffffd68012d0ab00
last locked* : netbsd:execve_loadvm+0x31a
unlocked : 0
owner/count : 0xffffd68012d0ab00 flags : 0x0000000000000004

Turnstile: no active turnstile for this lock.

*** Locks wanted: none

****** LWP 745.745 (dhcpcd) @ 0xffffd68012cb2500, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffd68012cb2500 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 584.584 (dhcpcd) @ 0xffffd68012c80bc0, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffd68012c80bc0 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 292.292 (dhcpcd) @ 0xffffd68012d88900, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffd68012d88900 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 485.485 (dhcpcd) @ 0xffffd68012d884c0, l_stat=2

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffd68012d884c0 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.26 (softclk/1) @ 0xffffd68010cac240, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffd68010cac240 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.11 (iflnkst) @ 0xffffd6800fb4a100, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffd6800fb4a100 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.9 (pooldisp) @ 0xffffd6800fb3b500, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:procinit+0x5c sys/kern/kern_proc.c:387)
lock address : netbsd:proc_lock
type : sleep/adaptive
initialized : netbsd:procinit+0x5c
shared holds : 0 exclusive: 1

shares wanted: 0 exclusive: 4

relevant cpu : 0 last held: 1

relevant lwp : 0xffffd6800fb3b500 last held: 0xffffd68014da8140
last locked* : netbsd:mount_domount+0x6ec
unlocked : netbsd:mount_domount+0x98e
owner field : 0xffffd68014da8140 wait/spin: 1/0

Turnstile:
=> 0 waiting readers:

=> 10 waiting writers: 0xffffd6800fb3b500 0xffffd680133c9b00 0xffffd68014da1540 0xffffd68014498a80 0xffffd68014be1940 0xffffd68012cfeac0 0xffffd68012c80780 0xffffd68014819b00 0xffffd6801403f8c0 0xffffd68013452900

****** LWP 0.5 (softclk/0) @ 0xffffd6800fb32080, l_stat=1

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 0 last held: 0

relevant lwp : 0xffffd6800fb32080 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

****** LWP 0.0 (swapper) @ 0xffffffff833501c0, l_stat=3

*** Locks held: none

*** Locks wanted:

* Lock 0 (initialized at netbsd:module_hook_init+0x1c sys/kern/kern_module_hook.c:132)
lock address : netbsd:module_hook
type : sleep/adaptive
initialized : netbsd:module_hook_init+0x1c
shared holds : 0 exclusive: 0
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 0

relevant lwp : 0xffffffff833501c0 last held: 000000000000000000

last locked : 0
unlocked* : 0
owner field : 000000000000000000 wait/spin: 0/0
Turnstile: no active turnstile for this lock.

[Locks tracked through CPUs]

******* Locks held on cpu0:

* Lock 0 (initialized at netbsd:main+0x11e sys/kern/init_main.c:304)
lock address : netbsd:kernel_lock
type : spin
initialized : netbsd:main+0x11e

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 0 last held: 0
relevant lwp : 0xffffd68012d0ab00 last held: 0xffffd6800fb324c0
last locked* : netbsd:softint_dispatch+0x865
unlocked : netbsd:softint_dispatch+0x890

curcpu holds : 0 wanted by: 000000000000000000

* Lock 1 (initialized at netbsd:com_attach_subr+0x127 sys/dev/ic/com.c:565)
lock address : ffffd68010c03d20
type : spin
initialized : netbsd:com_attach_subr+0x127

shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0

relevant cpu : 0 last held: 0
relevant lwp : 0xffffd68012d0ab00 last held: 0xffffd6800fb324c0
last locked* : netbsd:comstart+0x171
unlocked : netbsd:comintr+0x73c

owner field : 0x0000000000000800 wait/spin: 0/1

******* Locks held on cpu1:

* Lock 0 (initialized at netbsd:kprintf_init+0x61 sys/kern/subr_prf.c:156)
lock address : netbsd:kprintf_mtx
type : spin
initialized : netbsd:kprintf_init+0x61
shared holds : 0 exclusive: 1
shares wanted: 0 exclusive: 0
relevant cpu : 1 last held: 1

relevant lwp : 0xffffd68014da8140 last held: 0xffffd68014da8140

last locked* : netbsd:kprintf_lock+0x33
unlocked : netbsd:kprintf_unlock+0x53
owner field : 0x0000000000000800 wait/spin: 0/1

PAGE FLAG PQ UOBJECT UANON

0xffffd68000017180 0041 00000000 0x0 0x0
0xffffd68000017200 0041 00000000 0x0 0x0
0xffffd68000017280 0041 00000000 0x0 0x0
0xffffd68000017300 0041 00000000 0x0 0x0
0xffffd68000017380 0041 00000000 0x0 0x0
0xffffd68000017400 0041 00000000 0x0 0x0
0xffffd68000017480 0041 00000000 0x0 0x0
0xffffd68000017500 0041 00000000 0x0 0x0
0xffffd68000017580 0041 00000000 0x0 0x0
0xffffd68000017600 0041 00000000 0x0 0x0
0xffffd68000017680 0041 00000000 0x0 0x0
0xffffd68000017700 0041 00000000 0x0 0x0
0xffffd68000017780 0041 00000000 0x0 0x0
0xffffd68000017800 0041 00000000 0x0 0x0
0xffffd68000017880 0041 00000000 0x0 0x0
0xffffd68000017900 0041 00000000 0x0 0x0
0xffffd68000017980 0041 00000000 0x0 0x0
0xffffd68000017a00 0041 00000000 0x0 0x0
0xffffd68000017a80 0041 00000000 0x0 0x0
0xffffd68000017b00 0041 00000000 0x0 0x0
0xffffd68000017b80 0041 00000000 0x0 0x0
0xffffd68000017c00 0041 00000000 0x0 0x0
0xffffd68000017c80 0041 00000000 0x0 0x0
0xffffd68000017d00 0041 00000000 0x0 0x0
0xffffd68000017d80 0041 00000000 0x0 0x0
0xffffd68000017e00 0041 00000000 0x0 0x0
0xffffd68000017e80 0041 00000000 0x0 0x0
0xffffd68000017f00 0041 00000000 0x0 0x0
0xffffd68000017f80 0041 00000000 0x0 0x0
0xffffd68000018000 0041 00000000 0x0 0x0
0xffffd68000018080 0041 00000000 0x0 0x0
0xffffd68000018100 0041 00000000 0x0 0x0
0xffffd68000018180 0041 00000000 0x0 0x0
0xffffd68000018200 0041 00000000 0x0 0x0
0xffffd68000018280 0041 00000000 0x0 0x0
0xffffd68000018300 0041 00000000 0x0 0x0
0xffffd68000018380 0041 00000000 0x0 0x0
0xffffd68000018400 0041 00000000 0x0 0x0
0xffffd68000018480 0041 00000000 0x0 0x0
0xffffd68000018500 0041 00000000 0x0 0x0
0xffffd68000018580 0041 00000000 0x0 0x0
0xffffd68000018600 0041 00000000 0x0 0x0
0xffffd68000018680 0041 00000000 0x0 0x0
0xffffd68000018700 0041 00000000 0x0 0x0
0xffffd68000018780 0041 00000000 0x0 0x0
0xffffd68000018800 0041 00000000 0x0 0x0
0xffffd68000018880 0041 00000000 0x0 0x0
0xffffd68000018900 0041 00000000 0x0 0x0
0xffffd68000018980 0041 00000000 0x0 0x0
0xffffd68000018a00 0041 00000000 0x0 0x0
0xffffd68000018a80 0041 00000000 0x0 0x0
0xffffd68000018b00 0041 00000000 0x0 0x0
0xffffd68000018b80 0041 00000000 0x0 0x0
0xffffd68000018c00 0041 00000000 0x0 0x0
0xffffd68000018c80 0041 00000000 0x0 0x0
0xffffd68000018d00 0041 00000000 0x0 0x0
0xffffd68000018d80 0041 00000000 0x0 0x0
0xffffd68000018e00 0041 00000000 0x0 0x0
0xffffd68000018e80 0041 00000000 0x0 0x0
0xffffd68000018f00 0041 00000000 0x0 0x0
0xffffd68000018f80 0041 00000000 0x0 0x0
0xffffd68000019000 0041 00000000 0x0 0x0
0xffffd68000019080 0041 00000000 0x0 0x0
0xffffd68000019100 0041 00000000 0x0 0x0
0xffffd68000019180 0041 00000000 0x0 0x0
0xffffd68000019200 0041 00000000 0x0 0x0
0xffffd68000019280 0041 00000000 0x0 0x0
0xffffd68000019300 0041 00000000 0x0 0x0
0xffffd68000019380 0041 00000000 0x0 0x0
0xffffd68000019400 0041 00000000 0x0 0x0
0xffffd68000019480 0041 00000000 0x0 0x0
0xffffd68000019500 0041 00000000 0x0 0x0
0xffffd68000019580 0041 00000000 0x0 0x0
0xffffd68000019600 0041 00000000 0x0 0x0
0xffffd68000019680 0041 00000000 0x0 0x0
0xffffd68000019700 0041 00000000 0x0 0x0
0xffffd68000019780 0041 00000000 0x0 0x0
0xffffd68000019800 0041 00000000 0x0 0x0
0xffffd68000019880 0041 00000000 0x0 0x0
0xffffd68000019900 0041 00000000 0x0 0x0
0xffffd68000019980 0041 00000000 0x0 0x0
0xffffd68000019a00 0041 00000000 0x0 0x0
0xffffd68000019a80 0041 00000000 0x0 0x0
0xffffd68000019b00 0041 00000000 0x0 0x0
0xffffd68000019b80 0041 00000000 0x0 0x0
0xffffd68000019c00 0041 00000000 0x0 0x0
0xffffd68000019c80 0041 00000000 0x0 0x0
0xffffd68000019d00 0041 00000000 0x0 0x0
0xffffd68000019d80 0041 00000000 0x0 0x0
0xffffd68000019e00 0041 00000000 0x0 0x0
0xffffd68000019e80 0041 00000000 0x0 0x0
0xffffd68000019f00 0041 00000000 0x0 0x0
0xffffd68000019f80 0041 00000000 0x0 0x0
0xffffd6800001a000 0041 00000000 0x0 0x0
0xffffd6800001a080 0041 00000000 0x0 0x0
0xffffd6800001a100 0041 00000000 0x0 0x0
0xffffd6800001a180 0041 00000000 0x0 0x0
0xffffd6800001a200 0041 00000000 0x0 0x0
0xffffd6800001a280 0041 00000000 0x0 0x0
0xffffd6800001a300 0041 00000000 0x0 0x0
0xffffd6800001a380 0041 00000000 0x0 0x0
0xffffd6800001a400 0041 00000000 0x0 0x0
0xffffd6800001a480 0041 00000000 0x0 0x0
0xffffd6800001a500 0041 00000000 0x0 0x0
0xffffd6800001a580 0041 00000000 0x0 0x0
0xffffd6800001a600 0041 00000000 0x0 0x0
0xffffd6800001a680 0041 00000000 0x0 0x0
0xffffd6800001a700 0041 00000000 0x0 0x0
0xffffd6800001a780 0041 00000000 0x0 0x0
0xffffd6800001a800 0041 00000000 0x0 0x0
0xffffd6800001a880 0041 00000000 0x0 0x0
0xffffd6800001a900 0041 00000000 0x0 0x0
0xffffd6800001a980 0041 00000000 0x0 0x0
0xffffd6800001aa00 0041 00000000 0x0 0x0
0xffffd6800001aa80 0041 00000000 0x0 0x0
0xffffd6800001ab00 0041 00000000 0x0 0x0
0xffffd6800001ab80 0041 00000000 0x0 0x0
0xffffd6800001ac00 0041 00000000 0x0 0x0
0xffffd6800001ac80 0041 00000000 0x0 0x0
0xffffd6800001ad00 0041 00000000 0x0 0x0
0xffffd6800001ad80 0041 00000000 0x0 0x0
0xffffd6800001ae00 0041 00000000 0x0 0x0
0xffffd6800001ae80 0041 00000000 0x0 0x0
0xffffd6800001af00 0041 00000000 0x0 0x0
0xffffd6800001af80 0041 00000000 0x0 0x0
0xffffd6800001b000 0041 00000000 0x0 0x0
0xffffd6800001b080 0041 00000000 0x0 0x0
0xffffd6800001b100 0041 00000000 0x0 0x0
0xffffd6800001b180 0041 00000000 0x0 0x0
0xffffd6800001b200 0041 00000000 0x0 0x0
0xffffd6800001b280 0041 00000000 0x0 0x0
0xffffd6800001b300 0041 00000000 0x0 0x0
0xffffd6800001b380 0041 00000000 0x0 0x0
0xffffd6800001b400 0041 00000000 0x0 0x0
0xffffd6800001b480 0041 00000000 0x0 0x0
0xffffd6800001b500 0041 00000000 0x0 0x0
0xffffd6800001b580 0041 00000000 0x0 0x0
0xffffd6800001b600 0041 00000000 0x0 0x0
0xffffd6800001b680 0041 00000000 0x0 0x0
0xffffd6800001b700 0041 00000000 0x0 0x0
0xffffd6800001b780 0041 00000000 0x0 0x0
0xffffd6800001b800 0041 00000000 0x0 0x0
0xffffd6800001b880 0041 00000000 0x0 0x0
0xffffd6800001b900 0041 00000000 0x0 0x0
0xffffd6800001b980 0041 00000000 0x0 0x0
0xffffd6800001ba00 0041 00000000 0x0 0x0
0xffffd6800001ba80 0041 00000000 0x0 0x0
0xffffd6800001bb00 0041 00000000 0x0 0x0
0xffffd6800001bb80 0001 00000000 0x0 0x0
0xffffd6800001bc00 0001 00000000 0x0 0x0
0xffffd6800001bc80 0001 00000000 0x0 0x0
0xffffd6800001bd00 0001 00000000 0x0 0x0
0xffffd6800001bd80 0001 00000000 0x0 0x0
0xffffd6800001be00 0001 00000000 0x0 0x0
0xffffd6800001be80 0001 00000000 0x0 0x0
0xffffd6800001bf00 0001 00000000 0x0 0x0
0xffffd6800001bf80 0001 00000000 0x0 0x0
0xffffd6800001c000 0001 00000000 0x0 0x0
0xffffd6800001c080 0001 00000000 0x0 0x0
0xffffd6800001c100 0001 00000000 0x0 0x0
0xffffd6800001c180 0001 00000000 0x0 0x0
0xffffd6800001c200 0001 00000000 0x0 0x0
0xffffd6800001c280 0001 00000000 0x0 0x0
0xffffd6800001c300 0001 00000000 0x0 0x0
0xffffd6800001c380 0001 00000000 0x0 0x0
0xffffd6800001c400 0001 00000000 0x0 0x0
0xffffd6800001c480 0001 00000000 0x0 0x0
0xffffd6800001c500 0001 00000000 0x0 0x0
0xffffd6800001c580 0001 00000000 0x0 0x0
0xffffd6800001c600 0001 00000000 0x0 0x0
0xffffd6800001c680 0001 00000000 0x0 0x0
0xffffd6800001c700 0001 00000000 0x0 0x0
0xffffd6800001c780 0001 00000000 0x0 0x0
0xffffd6800001c800 0001 00000000 0x0 0x0
0xffffd6800001c880 0001 00000000 0x0 0x0
0xffffd6800001c900 0001 00000000 0x0 0x0
0xffffd6800001c980 0001 00000000 0x0 0x0
0xffffd6800001ca00 0001 00000000 0x0 0x0
0xffffd6800001ca80 0001 00000000 0x0 0x0
0xffffd6800001cb00 0001 00000000 0x0 0x0
0xffffd6800001cb80 0001 00000000 0x0 0x0
0xffffd6800001cc00 0001 00000000 0x0 0x0
0xffffd6800001cc80 0001 00000000 0x0 0x0
0xffffd6800001cd00 0001 00000000 0x0 0x0
0xffffd6800001cd80 0001 00000000 0x0 0x0
0xffffd6800001ce00 0001 00000000 0x0 0x0
0xffffd6800001ce80 0001 00000000 0x0 0x0
0xffffd6800001cf00 0001 00000000 0x0 0x0
0xffffd6800001cf80 0001 00000000 0x0 0x0
0xffffd6800001d000 0001 00000000 0x0 0x0
0xffffd6800001d080 0001 00000000 0x0 0x0
0xffffd6800001d100 0001 00000000 0x0 0x0
0xffffd6800001d180 0001 00000000 0x0 0x0
0xffffd6800001d200 0001 00000000 0x0 0x0
0xffffd6800001d280 0001 00000000 0x0 0x0
0xffffd6800001d300 0001 00000000 0x0 0x0
0xffffd6800001d380 0001 00000000 0x0 0x0
0xffffd6800001d400 0001 00000000 0x0 0x0
0xffffd6800001d480 0001 00000000 0x0 0x0
0xffffd6800001d500 0001 00000000 0x0 0x0
0xffffd6800001d580 0001 00000000 0x0 0x0
0xffffd6800001d600 0001 00000000 0x0 0x0
0xffffd6800001d680 0001 00000000 0x0 0x0
0xffffd6800001d700 0001 00000000 0x0 0x0
0xffffd6800001d780 0001 00000000 0x0 0x0
0xffffd6800001d800 0001 00000000 0x0 0x0
0xffffd6800001d880 0001 00000000 0x0 0x0
0xffffd6800001d900 0001 00000000 0x0 0x0
0xffffd6800001d980 0001 00000000 0x0 0x0
0xffffd6800001da00 0001 00000000 0x0 0x0
0xffffd6800001da80 0001 00000000 0x0 0x0
0xffffd6800001db00 0001 00000000 0x0 0x0
0xffffd6800001db80 0001 00000000 0x0 0x0
0xffffd6800001dc00 0001 00000000 0x0 0x0
0xffffd6800001dc80 0001 00000000 0x0 0x0
0xffffd6800001dd00 0001 00000000 0x0 0x0
0xffffd6800001dd80 0001 00000000 0x0 0x0
0xffffd6800001de00 0001 00000000 0x0 0x0
0xffffd6800001de80 0001 00000000 0x0 0x0
0xffffd6800001df00 0001 00000000 0x0 0x0
0xffffd6800001df80 0001 00000000 0x0 0x0
0xffffd6800001e000 0001 00000000 0x0 0x0
0xffffd6800001e080 0001 00000000 0x0 0x0
0xffffd6800001e100 0001 00000000 0x0 0x0
0xffffd6800001e180 0001 00000000 0x0 0x0
0xffffd6800001e200 0001 00000000 0x0 0x0
0xffffd6800001e280 0001 00000000 0x0 0x0
0xffffd6800001e300 0001 00000000 0x0 0x0
0xffffd6800001e380 0001 00000000 0x0 0x0
0xffffd6800001e400 0001 00000000 0x0 0x0
0xffffd6800001e480 0001 00000000 0x0 0x0
0xffffd6800001e500 0001 00000000 0x0 0x0
0xffffd6800001e580 0001 00000000 0x0 0x0
0xffffd6800001e600 0001 00000000 0x0 0x0
0xffffd6800001e680 0001 00000000 0x0 0x0
0xffffd6800001e700 0001 00000000 0x0 0x0
0xffffd6800001e780 0001 00000000 0x0 0x0
0xffffd6800001e800 0001 00000000 0x0 0x0
0xffffd6800001e880 0001 00000000 0x0 0x0
0xffffd6800001e900 0001 00000000 0x0 0x0
0xffffd6800001e980 0001 00000000 0x0 0x0
0xffffd6800001ea00 0001 00000000 0x0 0x0
0xffffd6800001ea80 0001 00000000 0x0 0x0
0xffffd6800001eb00 0001 00000000 0x0 0x0
0xffffd6800001eb80 0001 00000000 0x0 0x0
0xffffd6800001ec00 0001 00000000 0x0 0x0
0xffffd6800001ec80 0001 00000000 0x0 0x0
0xffffd6800001ed00 0001 00000000 0x0 0x0
0xffffd6800001ed80 0001 00000000 0x0 0x0
0xffffd6800001ee00 0001 00000000 0x0 0x0
0xffffd6800001ee80 0001 00000000 0x0 0x0
0xffffd6800001ef00 0001 00000000 0x0 0x0
0xffffd6800001ef80 0001 00000000 0x0 0x0
0xffffd6800001f000 0001 00000000 0x0 0x0
0xffffd6800001f080 0001 00000000 0x0 0x0
0xffffd6800001f100 0001 00000000 0x0 0x0
0xffffd6800001f180 0001 00000000 0x0 0x0
0xffffd6800001f200 0001 00000000 0x0 0x0
0xffffd6800001f280 0001 00000000 0x0 0x0
0xffffd6800001f300 0001 00000000 0x0 0x0
0xffffd6800001f380 0001 00000000 0x0 0x0
0xffffd6800001f400 0001 00000000 0x0 0x0
0xffffd6800001f480 0001 00000000 0x0 0x0
0xffffd6800001f500 0001 00000000 0x0 0x0
0xffffd6800001f580 0001 00000000 0x0 0x0
0xffffd6800001f600 0001 00000000 0x0 0x0
0xffffd6800001f680 0001 00000000 0x0 0x0
0xffffd6800001f700 0001 00000000 0x0 0x0
0xffffd6800001f780 0001 00000000 0x0 0x0
0xffffd6800001f800 0001 00000000 0x0 0x0
0xffffd6800001f880 0001 00000000 0x0 0x0
0xffffd6800001f900 0001 00000000 0x0 0x0
0xffffd6800001f980 0001 00000000 0x0 0x0
0xffffd6800001fa00 0001 00000000 0x0 0x0
0xffffd6800001fa80 0001 00000000 0x0 0x0
0xffffd6800001fb00 0001 00000000 0x0 0x0
0xffffd6800001fb80 0001 00000000 0x0 0x0
0xffffd6800001fc00 0001 00000000 0x0 0x0
0xffffd6800001fc80 0001 00000000 0x0 0x0
0xffffd6800001fd00 0001 00000000 0x0 0x0
0xffffd6800001fd80 0001 00000000 0x0 0x0
0xffffd6800001fe00 0001 00000000 0x0 0x0
0xffffd6800001fe80 0001 00000000 0x0 0x0
0xffffd6800001ff00 0001 00000000 0x0 0x0
0xffffd6800001ff80 0001 00000000 0x0 0x0
0xffffd68000020000 0001 00000000 0x0 0x0
0xffffd68000020080 0001 00000000 0x0 0x0
0xffffd68000020100 0001 00000000 0x0 0x0
0xffffd68000020180 0001 00000000 0x0 0x0
0xffffd68000020200 0001 00000000 0x0 0x0
0xffffd68000020280 0001 00000000 0x0 0x0
0xffffd68000020300 0001 00000000 0x0 0x0
0xffffd68000020380 0001 00000000 0x0 0x0
0xffffd68000020400 0001 00000000 0x0 0x0
0xffffd68000020480 0001 00000000 0x0 0x0
0xffffd68000020500 0001 00000000 0x0 0x0
0xffffd68000020580 0001 00000000 0x0 0x0
0xffffd68000020600 0001 00000000 0x0 0x0
0xffffd68000020680 0001 00000000 0x0 0x0
0xffffd68000020700 0001 00000000 0x0 0x0
0xffffd68000020780 0001 00000000 0x0 0x0
0xffffd68000020800 0001 00000000 0x0 0x0
0xffffd68000020880 0001 00000000 0x0 0x0
0xffffd68000020900 0001 00000000 0x0 0x0
0xffffd68000020980 0001 00000000 0x0 0x0
0xffffd68000020a00 0001 00000000 0x0 0x0
0xffffd68000020a80 0001 00000000 0x0 0x0
0xffffd68000020b00 0001 00000000 0x0 0x0
0xffffd68000020b80 0001 00000000 0x0 0x0
0xffffd68000020c00 0001 00000000 0x0 0x0
0xffffd68000020c80 0001 00000000 0x0 0x0
0xffffd68000020d00 0001 00000000 0x0 0x0
0xffffd68000020d80 0001 00000000 0x0 0x0
0xffffd68000020e00 0001 00000000 0x0 0x0
0xffffd68000020e80 0001 00000000 0x0 0x0
0xffffd68000020f00 0001 00000000 0x0 0x0
0xffffd68000020f80 0001 00000000 0x0 0x0
0xffffd68000021000 0001 00000000 0x0 0x0
0xffffd68000021080 0001 00000000 0x0 0x0
0xffffd68000021100 0001 00000000 0x0 0x0
0xffffd68000021180 0001 00000000 0x0 0x0
0xffffd68000021200 0001 00000000 0x0 0x0
0xffffd68000021280 0001 00000000 0x0 0x0
0xffffd68000021300 0001 00000000 0x0 0x0
0xffffd68000021380 0001 00000000 0x0 0x0
0xffffd68000021400 0001 00000000 0x0 0x0
0xffffd68000021480 0001 00000000 0x0 0x0
0xffffd68000021500 0001 00000000 0x0 0x0
0xffffd68000021580 0001 00000000 0x0 0x0
0xffffd68000021600 0001 00000000 0x0 0x0
0xffffd68000021680 0001 00000000 0x0 0x0
0xffffd68000021700 0001 00000000 0x0 0x0
0xffffd68000021780 0001 00000000 0x0 0x0
0xffffd68000021800 0001 00000000 0x0 0x0
0xffffd68000021880 0001 00000000 0x0 0x0
0xffffd68000021900 0001 00000000 0x0 0x0
0xffffd68000021980 0001 00000000 0x0 0x0
0xffffd68000021a00 0001 00000000 0x0 0x0
0xffffd68000021a80 0001 00000000 0x0 0x0
0xffffd68000021b00 0001 00000000 0x0 0x0
0xffffd68000021b80 0001 00000000 0x0 0x0
0xffffd68000021c00 0001 00000000 0x0 0x0
0xffffd68000021c80 0001 00000000 0x0 0x0
0xffffd68000021d00 0001 00000000 0x0 0x0
0xffffd68000021d80 0001 00000000 0x0 0x0
0xffffd68000021e00 0001 00000000 0x0 0x0
0xffffd68000021e80 0001 00000000 0x0 0x0
0xffffd68000021f00 0001 00000000 0x0 0x0
0xffffd68000021f80 0001 00000000 0x0 0x0
0xffffd68000022000 0001 00000000 0x0 0x0
0xffffd68000022080 0001 00000000 0x0 0x0
0xffffd68000022100 0001 00000000 0x0 0x0
0xffffd68000022180 0001 00000000 0x0 0x0
0xffffd68000022200 0001 00000000 0x0 0x0
0xffffd68000022280 0001 00000000 0x0 0x0
0xffffd68000022300 0001 00000000 0x0 0x0
0xffffd68000022380 0001 00000000 0x0 0x0
0xffffd68000022400 0001 00000000 0x0 0x0
0xffffd68000022480 0001 00000000 0x0 0x0
0xffffd68000022500 0001 00000000 0x0 0x0
0xffffd68000022580 0001 00000000 0x0 0x0
0xffffd68000022600 0001 00000000 0x0 0x0
0xffffd68000022680 0001 00000000 0x0 0x0
0xffffd68000022700 0001 00000000 0x0 0x0
0xffffd68000022780 0001 00000000 0x0 0x0
0xffffd68000022800 0001 00000000 0x0 0x0
0xffffd68000022880 0001 00000000 0x0 0x0
0xffffd68000022900 0001 00000000 0x0 0x0
0xffffd68000022980 0001 00000000 0x0 0x0
0xffffd68000022a00 0001 00000000 0x0 0x0
0xffffd68000022a80 0001 00000000 0x0 0x0
0xffffd68000022b00 0001 00000000 0x0 0x0
0xffffd68000022b80 0001 00000000 0x0 0x0
0xffffd68000022c00 0001 00000000 0x0 0x0
0xffffd68000022c80 0001 00000000 0x0 0x0
0xffffd68000022d00 0001 00000000 0x0 0x0
0xffffd68000022d80 0001 00000000 0x0 0x0
0xffffd68000022e00 0001 00000000 0x0 0x0
0xffffd68000022e80 0001 00000000 0x0 0x0
0xffffd68000022f00 0001 00000000 0x0 0x0
0xffffd68000022f80 0001 00000000 0x0 0x0
0xffffd68000023000 0001 00000000 0x0 0x0
0xffffd68000023080 0001 00000000 0x0 0x0
0xffffd68000023100 0001 00000000 0x0 0x0
0xffffd68000023180 0001 00000000 0x0 0x0
0xffffd68000023200 0001 00000000 0x0 0x0
0xffffd68000023280 0001 00000000 0x0 0x0
0xffffd68000023300 0001 00000000 0x0 0x0
0xffffd68000023380 0001 00000000 0x0 0x0
0xffffd68000023400 0001 00000000 0x0 0x0
0xffffd68000023480 0001 00000000 0x0 0x0
0xffffd68000023500 0001 00000000 0x0 0x0
0xffffd68000023580 0001 00000000 0x0 0x0
0xffffd68000023600 0001 00000000 0x0 0x0
0xffffd68000023680 0001 00000000 0x0 0x0
0xffffd68000023700 0001 00000000 0x0 0x0
0xffffd68000023780 0001 00000000 0x0 0x0
0xffffd68000023800 0001 00000000 0x0 0x0
0xffffd68000023880 0001 00000000 0x0 0x0
0xffffd68000023900 0001 00000000 0x0 0x0
0xffffd68000023980 0001 00000000 0x0 0x0
0xffffd68000023a00 0001 00000000 0x0 0x0
0xffffd68000023a80 0001 00000000 0x0 0x0
0xffffd68000023b00 0001 00000000 0x0 0x0
0xffffd68000023b80 0001 00000000 0x0 0x0
0xffffd68000023c00 0001 00000000 0x0 0x0
0xffffd68000023c80 0001 00000000 0x0 0x0
0xffffd68000023d00 0001 00000000 0x0 0x0
0xffffd68000023d80 0001 00000000 0x0 0x0
0xffffd68000023e00 0001 00000000 0x0 0x0
0xffffd68000023e80 0001 00000000 0x0 0x0
0xffffd68000023f00 0001 00000000 0x0 0x0
0xffffd68000023f80 0001 00000000 0x0 0x0
0xffffd68000024000 0001 00000000 0x0 0x0
0xffffd68000024080 0001 00000000 0x0 0x0
0xffffd68000024100 0001 00000000 0x0 0x0
0xffffd68000024180 0001 00000000 0x0 0x0
0xffffd68000024200 0001 00000000 0x0 0x0
0xffffd68000024280 0001 00000000 0x0 0x0
0xffffd68000024300 0001 00000000 0x0 0x0
0xffffd68000024380 0001 00000000 0x0 0x0
0xffffd68000024400 0001 00000000 0x0 0x0
0xffffd68000024480 0001 00000000 0x0 0x0
0xffffd68000024500 0001 00000000