syzbot

[  45.0506798] panic: kernel diagnostic assertion "uvm_page_locked_p(pg)" failed: file "/syzkaller/managers/netbsd-kubsan/kernel/sys/arch/x86/x86/pmap.c", line 3533 
[  45.0688254] cpu0: Begin traceback...
[  45.0807223] vpanic() at netbsd:vpanic+0x2aa sys/kern/subr_prf.c:336
[  45.1207902] kern_assert() at netbsd:kern_assert+0x63
[  45.1608590] pmap_remove_pte() at netbsd:pmap_remove_pte+0x408 pmap_remove_pte sys/arch/x86/x86/pmap.c:3533 [inline]
[  45.1608590] pmap_remove_pte() at netbsd:pmap_remove_pte+0x408 sys/arch/x86/x86/pmap.c:3480
[  45.2009462] pmap_remove() at netbsd:pmap_remove+0x239 pmap_remove_ptes sys/arch/x86/x86/pmap.c:3439 [inline]
[  45.2009462] pmap_remove() at netbsd:pmap_remove+0x239 sys/arch/x86/x86/pmap.c:3641
[  45.2410015] uvm_unmap_remove() at netbsd:uvm_unmap_remove+0x7be sys/uvm/uvm_map.c:2317
[  45.2810711] uvmspace_free() at netbsd:uvmspace_free+0x2e8 sys/uvm/uvm_map.c:4301
[  45.3211455] uvm_proc_exit() at netbsd:uvm_proc_exit+0xf6 sys/uvm/uvm_glue.c:443
[  45.3612120] exit1() at netbsd:exit1+0x4cb sys/kern/kern_exit.c:333
[  45.3912644] sys_exit() at netbsd:sys_exit+0xba sys/kern/kern_exit.c:179
[  45.4413549] syscall() at netbsd:syscall+0x29a sy_call sys/sys/syscallvar.h:65 [inline]
[  45.4413549] syscall() at netbsd:syscall+0x29a sy_invoke sys/sys/syscallvar.h:94 [inline]
[  45.4413549] syscall() at netbsd:syscall+0x29a sys/arch/x86/x86/syscall.c:138
[  45.4513690] --- syscall (number 1) ---
[  45.4513690] Skipping crash dump on recursive panic
[  45.4634775] panic: UBSan: Undefined Behavior in /syzkaller/managers/netbsd-kubsan/kernel/sys/arch/amd64/amd64/db_machdep.c:153:24, member access within misaligned address 0xffffffff for type 'struct x86_64_frame' which requires 8 byte alignment

[  45.4850843] Faulted in mid-traceback; aborting...
[  45.4850843] fatal breakpoint trap in supervisor mode
[  45.4930645] trap type 1 code 0 rip 0xffffffff8021e7cd cs 0x8 rflags 0x286 cr2 0x76cc7961e9e5 ilevel 0 rsp 0xffff8c80b2001da0
[  45.5060855] curlwp 0xffffaea1b60060a0 pid 73.1 lowest kstack 0xffff8c80b1fff2c0
Stopped in pid 73.1 (syz-executor.2) at netbsd:breakpoint+0x5:  leave
?
breakpoint() at netbsd:breakpoint+0x5
db_panic() at netbsd:db_panic+0xd1 sys/ddb/db_panic.c:67
vpanic() at netbsd:vpanic+0x2aa sys/kern/subr_prf.c:336
isAlreadyReported() at netbsd:isAlreadyReported
HandleTypeMismatch.part.1() at netbsd:HandleTypeMismatch.part.1+0xcc
HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x7b sys/../common/lib/libc/misc/ubsan.c:408
db_nextframe() at netbsd:db_nextframe+0x6f6 sys/arch/amd64/amd64/db_machdep.c:153
db_stack_trace_print() at netbsd:db_stack_trace_print+0x2c4 sys/arch/x86/x86/db_trace.c:277
db_panic() at netbsd:db_panic+0x8b x86_curcpu sys/arch/amd64/compile/obj/GENERIC_SYZKALLER/./machine/cpu.h:56 [inline]
db_panic() at netbsd:db_panic+0x8b sys/ddb/db_panic.c:57
vpanic() at netbsd:vpanic+0x2aa sys/kern/subr_prf.c:336
kern_assert() at netbsd:kern_assert+0x63
pmap_remove_pte() at netbsd:pmap_remove_pte+0x408 pmap_remove_pte sys/arch/x86/x86/pmap.c:3533 [inline]
pmap_remove_pte() at netbsd:pmap_remove_pte+0x408 sys/arch/x86/x86/pmap.c:3480
pmap_remove() at netbsd:pmap_remove+0x239 pmap_remove_ptes sys/arch/x86/x86/pmap.c:3439 [inline]
pmap_remove() at netbsd:pmap_remove+0x239 sys/arch/x86/x86/pmap.c:3641
uvm_unmap_remove() at netbsd:uvm_unmap_remove+0x7be sys/uvm/uvm_map.c:2317
uvmspace_free() at netbsd:uvmspace_free+0x2e8 sys/uvm/uvm_map.c:4301
uvm_proc_exit() at netbsd:uvm_proc_exit+0xf6 sys/uvm/uvm_glue.c:443
exit1() at netbsd:exit1+0x4cb sys/kern/kern_exit.c:333
sys_exit() at netbsd:sys_exit+0xba sys/kern/kern_exit.c:179
syscall() at netbsd:syscall+0x29a sy_call sys/sys/syscallvar.h:65 [inline]
syscall() at netbsd:syscall+0x29a sy_invoke sys/sys/syscallvar.h:94 [inline]
syscall() at netbsd:syscall+0x29a sys/arch/x86/x86/syscall.c:138
--- syscall (number 1) ---
[  45.5133764] Skipping crash dump on recursive panic
[  45.5133764] panic: UBSan: Undefined Behavior in /syzkaller/managers/netbsd-kubsan/kernel/sys/arch/amd64/amd64/db_machdep.c:154:14, member access within misaligned address 0xffffffff for type 'struct x86_64_frame' which requires 8 byte alignment

[  45.5133764] Faulted in mid-traceback; aborting...
[  45.5133764] fatal breakpoint trap in supervisor mode
[  45.5133764] trap type 1 code 0 rip 0xffffffff8021e7cd cs 0x8 rflags 0x286 cr2 0x76cc7961e9e5 ilevel 0x8 rsp 0xffff8c80b2000aa0
[  45.5133764] curlwp 0xffffaea1b60060a0 pid 73.1 lowest kstack 0xffff8c80b1fff2c0
Stopped in pid 73.1 (syz-executor.2) at netbsd:breakpoint+0x5:  leave