NetBSD/amd64 (ci2-netbsd-kubsan-1.c.syzkaller.internal) (console) Feb 3 02:15:20 ci2-netbsd-kubsan-1 getty[531]: /dev/ttyE2: Device not configured login: Feb 3 02:15:20 ci2-netbsd-kubsan-1 getty[574]: /dev/ttyE3: Device not configured Warning: Permanently added '10.128.0.253' (ECDSA) to the list of known hosts. 2020/02/03 02:15:28 fuzzer started 2020/02/03 02:15:28 dialing manager at 10.128.0.105:40829 2020/02/03 02:15:28 syscalls: 215 2020/02/03 02:15:28 code coverage: enabled 2020/02/03 02:15:28 comparison tracing: enabled 2020/02/03 02:15:28 extra coverage: support is not implemented in syzkaller 2020/02/03 02:15:28 setuid sandbox: support is not implemented in syzkaller 2020/02/03 02:15:28 namespace sandbox: support is not implemented in syzkaller 2020/02/03 02:15:28 Android sandbox: support is not implemented in syzkaller 2020/02/03 02:15:28 fault injection: support is not implemented in syzkaller 2020/02/03 02:15:28 leak checking: support is not implemented in syzkaller 2020/02/03 02:15:28 net packet injection: support is not implemented in syzkaller 2020/02/03 02:15:28 net device setup: support is not implemented in syzkaller 2020/02/03 02:15:28 concurrency sanitizer: support is not implemented in syzkaller 2020/02/03 02:15:28 devlink PCI setup: support is not implemented in syzkaller 02:15:30 executing program 0: semget(0x3, 0x1, 0x242) 02:15:30 executing program 1: r0 = socket(0x2, 0x2, 0x0) connect$unix(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="82022e2f66696c653000ff31a299ca042e37f7b1ad6b3e910c411d6c6aa98d8851fa8a0f45ca76011b873ce0fbd6a900000041cbc3cf740e8a70530000000000002452000000000000010000000098490d077aaf9544666aa81d54b9f85142108e909d7e1b3b3d84b99db7747eb2c045"], 0x10) sendmsg$unix(r0, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="14000000000004000700000000aa00000000ffff00000000"], 0x18}, 0x0) 02:15:30 executing program 2: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0, 0x0) madvise(&(0x7f0000495000/0x400000)=nil, 0x404000, 0x15) 02:15:30 executing program 3: mknod(&(0x7f0000000100)='./file0\x00', 0x100008000, 0x0) r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x40000400000002c6, 0x0) writev(r0, &(0x7f0000000340)=[{&(0x7f0000000000)="cb", 0xfe21}], 0x1) unlinkat(0xffffffffffffffff, 0x0, 0x0) 02:15:31 executing program 4: r0 = semget$private(0x0, 0x4, 0x0) semop(r0, &(0x7f0000000080)=[{0x0, 0x0, 0x1000}], 0x1) semop(0x0, &(0x7f0000000080)=[{0x0, 0x0, 0x1000}], 0x1) 02:15:31 executing program 5: syz_emit_ethernet(0x82, &(0x7f0000000080)=ANY=[@ANYBLOB="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"]) 02:15:32 executing program 3: r0 = socket(0x11, 0x3, 0x3) sendto$unix(r0, &(0x7f0000000200)="9b03050400000000000008000101000000000000cea1fea7fef96ecfc73fd3357ae26caa0416fa4f376336acf00b7804be781e4991f7c8df5f882a297be1aa5b23ed00f4c8b2ca3ebbc257699a1f132e27acb5d602000d7d026ba8af63ff37282902e4fd89720fd3872babfbb770c1f5a872c881ff7cc53c894303b22f310b404f36a00f90006ee01be657aea800000002000000000000020208a371a3f800040000000000000001000000000000000000", 0x39b, 0x0, 0x0, 0x0) 02:15:33 executing program 1: r0 = socket(0x2, 0x2, 0x0) connect$unix(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="82022e2f66696c653000ff31a299ca042e51fa8e0f45ca76011b870e8a70530000000000002452000000000000010000000098490d077aaf9544666aa81d54b9f85142108e909d7e1b3b3d84b99db7747eb2c04500"/97], 0x10) sendmsg$unix(r0, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="14000000000000000700000001000000ac1400aa00000000ffff000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00800040a042c0d46f4c3e6e179327f974fa9ed5d91a12be300006bf94fc"], 0x18}, 0x0) [ 41.1854658] panic: UBSan: Undefined Behavior in /syzkaller/managers/netbsd-kubsan/kernel/sys/net/rtsock_shared.c:631:41, member access within misaligned address 0xffff82fdc0f010cc for type 'struct rt_msghdr50' which requires 8 byte alignment [ 41.1854658] cpu0: Begin traceback... [ 41.2155158] vpanic() at netbsd:vpanic+0x2aa [ 41.2756305] isAlreadyReported() at netbsd:isAlreadyReported [ 41.3457612] HandleTypeMismatch.part.1() at netbsd:HandleTypeMismatch.part.1+0xcc [ 41.4059065] HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x7b [ 41.4659894] compat_50_route_output() at netbsd:compat_50_route_output+0x1a4a [ 41.5261042] raw_send() at netbsd:raw_send+0x20b [ 41.5862194] compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0x9f [ 41.6463350] sosend() at netbsd:sosend+0x15ac [ 41.6964334] do_sys_sendmsg_so() at netbsd:do_sys_sendmsg_so+0x53d [ 41.7465246] do_sys_sendmsg() at netbsd:do_sys_sendmsg+0xcd [ 41.7966205] sys_sendto() at netbsd:sys_sendto+0xc9 [ 41.8467173] sys___syscall() at netbsd:sys___syscall+0x1c8 [ 41.8968120] syscall() at netbsd:syscall+0x29a [ 41.9173893] --- syscall (number 198) --- [ 41.9173893] Skipping crash dump on recursive panic [ 41.9173893] panic: UBSan: Undefined Behavior in /syzkaller/managers/netbsd-kubsan/kernel/sys/arch/amd64/amd64/db_machdep.c:153:24, member access within misaligned address 0x6 for type 'struct x86_64_frame' which requires 8 byte alignment [ 41.9479271] Faulted in mid-traceback; aborting... [ 41.9479271] fatal breakpoint trap in supervisor mode [ 41.9577312] trap type 1 code 0 rip 0xffffffff8021e7cd cs 0x8 rflags 0x282 cr2 0x72fbdaf71827 ilevel 0x4 rsp 0xffff8e80b20145f0 [ 41.9690984] curlwp 0xffff82fdd1c59080 pid 624.3 lowest kstack 0xffff8e80b20122c0 Stopped in pid 624.3 (syz-executor.3) at netbsd:breakpoint+0x5: leave ? breakpoint() at netbsd:breakpoint+0x5 db_panic() at netbsd:db_panic+0xd1 vpanic() at netbsd:vpanic+0x2aa isAlreadyReported() at netbsd:isAlreadyReported HandleTypeMismatch.part.1() at netbsd:HandleTypeMismatch.part.1+0xcc HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x7b db_nextframe() at netbsd:db_nextframe+0x6f6 db_stack_trace_print() at netbsd:db_stack_trace_print+0x2c4 db_panic() at netbsd:db_panic+0x8b vpanic() at netbsd:vpanic+0x2aa isAlreadyReported() at netbsd:isAlreadyReported HandleTypeMismatch.part.1() at netbsd:HandleTypeMismatch.part.1+0xcc HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x7b compat_50_route_output() at netbsd:compat_50_route_output+0x1a4a raw_send() at netbsd:raw_send+0x20b compat_50_route_send_wrapper() at netbsd:compat_50_route_send_wrapper+0x9f sosend() at netbsd:sosend+0x15ac do_sys_sendmsg_so() at netbsd:do_sys_sendmsg_so+0x53d do_sys_sendmsg() at netbsd:do_sys_sendmsg+0xcd sys_sendto() at netbsd:sys_sendto+0xc9 sys___syscall() at netbsd:sys___syscall+0x1c8 syscall() at netbsd:syscall+0x29a --- syscall (number 198) --- [ 41.9690984] Skipping crash dump on recursive panic [ 41.9690984] panic: UBSan: Undefined Behavior in /syzkaller/managers/netbsd-kubsan/kernel/sys/arch/amd64/amd64/db_machdep.c:154:14, member access within misaligned address 0x6 for type 'struct x86_64_frame' which requires 8 byte alignment [ 41.9690984] Faulted in mid-traceback; aborting... [ 41.9690984] fatal breakpoint trap in supervisor mode [ 41.9690984] trap type 1 code 0 rip 0xffffffff8021e7cd cs 0x8 rflags 0x282 cr2 0x72fbdaf71827 ilevel 0x8 rsp 0xffff8e80b20132f0 [ 41.9690984] curlwp 0xffff82fdd1c59080 pid 624.3 lowest kstack 0xffff8e80b20122c0 Stopped in pid 624.3 (syz-executor.3) at netbsd:breakpoint+0x5: leave