[ 317.2741043] panic: LOCKDEBUG: Kernel lock error: _kernel_lock,239: spinout
[ 317.2811217] cpu0: Begin traceback...
[ 317.2960045] vpanic() at netbsd:vpanic+0x2f2 sys/kern/subr_prf.c:293
[ 317.3360019] panic() at netbsd:panic+0x49 sys/kern/subr_prf.c:1033
[ 317.3760067] lockdebug_abort1() at netbsd:lockdebug_abort1+0x194 lockdebug_abort1 sys/kern/subr_lockdebug.c:790 [inline]
[ 317.3760067] lockdebug_abort1() at netbsd:lockdebug_abort1+0x194 sys/kern/subr_lockdebug.c:772
[ 317.4160011] _kernel_lock() at netbsd:_kernel_lock+0x496 sys/kern/kern_lock.c:239
[ 317.4459993] frag6_fasttimo() at netbsd:frag6_fasttimo+0x24 sys/netinet6/frag6.c:657
[ 317.4760015] pffasttimo() at netbsd:pffasttimo+0xc6 sys/kern/uipc_domain.c:761
[ 317.5160011] callout_softclock() at netbsd:callout_softclock+0x25b sys/kern/kern_timeout.c:786
[ 317.5459986] softint_dispatch() at netbsd:softint_dispatch+0x3b5 x86_curcpu sys/arch/amd64/compile/obj/GENERIC_SYZKALLER/./machine/cpu.h:56 [inline]
[ 317.5459986] softint_dispatch() at netbsd:softint_dispatch+0x3b5 softint_execute sys/kern/kern_softint.c:573 [inline]
[ 317.5459986] softint_dispatch() at netbsd:softint_dispatch+0x3b5 sys/kern/kern_softint.c:818
[ 317.5759983] DDB lost frame for netbsd:Xsoftintr+0x4f, trying 0xffffd780af6920f0
[ 317.5959998] Xsoftintr() at netbsd:Xsoftintr+0x4f
[ 317.6059976] --- interrupt ---
[ 317.6159974] 0:
[ 317.6159974] cpu0: End traceback...
[ 317.6159974] fatal breakpoint trap in supervisor mode
[ 317.6276549] trap type 1 code 0 rip 0xffffffff80221ab5 cs 0x8 rflags 0x246 cr2 0xffffd780b18db000 ilevel 0x2 rsp 0xffffd780af691d80
[ 317.6393556] curlwp 0xffffbf4dc2bc2080 pid 0.5 lowest kstack 0xffffd780af68d2c0
[ 317.6465475] Skipping crash dump on recursive panic
[ 317.6465475] panic: UBSan: Undefined Behavior in /syzkaller/managers/ci2-netbsd-kubsan/kernel/sys/dev/wsfb/genfb.c:988:28, member access within null pointer of type 'struct genfb_private'

[ 317.6465475] cpu0: Begin traceback...
[ 317.6465475] vpanic() at netbsd:vpanic+0x2f2 sys/kern/subr_prf.c:293
[ 317.6465475] Report() at netbsd:Report+0x3b sys/../common/lib/libc/misc/ubsan.c:1352
[ 317.6465475] HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x1fb sys/../common/lib/libc/misc/ubsan.c:429
[ 317.6465475] genfb_enable_polling() at netbsd:genfb_enable_polling+0x17e sys/dev/wsfb/genfb.c:988
[ 317.6465475] x86_genfb_ddb_trap_callback() at netbsd:x86_genfb_ddb_trap_callback+0x39 sys/arch/x86/x86/genfb_machdep.c:97
[ 317.6465475] db_trap() at netbsd:db_trap+0x68 sys/ddb/db_trap.c:73
[ 317.6465475] kdb_trap() at netbsd:kdb_trap+0x1aa sys/arch/amd64/amd64/db_interface.c:251
[ 317.6465475] trap() at netbsd:trap+0x5b2 sys/arch/amd64/amd64/trap.c:315
[ 317.6465475] --- trap (number 1) ---
[ 317.6465475] breakpoint() at netbsd:breakpoint+0x5
[ 317.6465475] db_panic() at netbsd:db_panic+0xec sys/ddb/db_panic.c:69
[ 317.6465475] vpanic() at netbsd:vpanic+0x2f2 sys/kern/subr_prf.c:293
[ 317.6465475] panic() at netbsd:panic+0x49 sys/kern/subr_prf.c:1033
[ 317.6465475] lockdebug_abort1() at netbsd:lockdebug_abort1+0x194 lockdebug_abort1 sys/kern/subr_lockdebug.c:790 [inline]
[ 317.6465475] lockdebug_abort1() at netbsd:lockdebug_abort1+0x194 sys/kern/subr_lockdebug.c:772
[ 317.6465475] _kernel_lock() at netbsd:_kernel_lock+0x496 sys/kern/kern_lock.c:239
[ 317.6465475] frag6_fasttimo() at netbsd:frag6_fasttimo+0x24 sys/netinet6/frag6.c:657
[ 317.6465475] pffasttimo() at netbsd:pffasttimo+0xc6 sys/kern/uipc_domain.c:761
[ 317.6465475] callout_softclock() at netbsd:callout_softclock+0x25b sys/kern/kern_timeout.c:786
[ 317.6465475] softint_dispatch() at netbsd:softint_dispatch+0x3b5 x86_curcpu sys/arch/amd64/compile/obj/GENERIC_SYZKALLER/./machine/cpu.h:56 [inline]
[ 317.6465475] softint_dispatch() at netbsd:softint_dispatch+0x3b5 softint_execute sys/kern/kern_softint.c:573 [inline]
[ 317.6465475] softint_dispatch() at netbsd:softint_dispatch+0x3b5 sys/kern/kern_softint.c:818
[ 317.6465475] DDB lost frame for netbsd:Xsoftintr+0x4f, trying 0xffffd780af6920f0
[ 317.6465475] Xsoftintr() at netbsd:Xsoftintr+0x4f
[ 317.6465475] --- interrupt ---
[ 317.6465475] 0:
[ 317.6465475] cpu0: End traceback...
[ 317.6465475] fatal breakpoint trap in supervisor mode
[ 317.6465475] trap type 1 code 0 rip 0xffffffff80221ab5 cs 0x8 rflags 0x246 cr2 0xffffd780b18db000 ilevel 0x8 rsp 0xffffd780af691450
[ 317.6465475] curlwp 0xffffbf4dc2bc2080 pid 0.5 lowest kstack 0xffffd780af68d2c0
[ 317.6465475] fatal page fault in supervisor mode
[ 317.6465475] trap type 6 code 0 rip 0xffffffff830b6b1b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd780af691080
[ 317.6465475] curlwp 0xffffbf4dc2bc2080 pid 0.5 lowest kstack 0xffffd780af68d2c0
kernel: page fault trap, code=0
[ 317.6465475] fatal page fault in supervisor mode
[ 317.6465475] trap type 6 code 0 rip 0xffffffff830b6b1b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd780af690cb0
[ 317.6465475] curlwp 0xffffbf4dc2bc2080 pid 0.5 lowest kstack 0xffffd780af68d2c0
kernel: page fault trap, code=0
[ 317.6465475] fatal page fault in supervisor mode
[ 317.6465475] trap type 6 code 0 rip 0xffffffff830b6b1b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd780af6908e0
[ 317.6465475] curlwp 0xffffbf4dc2bc2080 pid 0.5 lowest kstack 0xffffd780af68d2c0
kernel: page fault trap, code=0
[ 317.6465475] fatal page fault in supervisor mode
[ 317.6465475] trap type 6 code 0 rip 0xffffffff830b6b1b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd780af690510
[ 317.6465475] curlwp 0xffffbf4dc2bc2080 pid 0.5 lowest kstack 0xffffd780af68d2c0
kernel: page fault trap, code=0
[ 317.6465475] fatal page fault in supervisor mode
[ 317.6465475] trap type 6 code 0 rip 0xffffffff830b6b1b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd780af690140
[ 317.6465475] curlwp 0xffffbf4dc2bc2080 pid 0.5 lowest kstack 0xffffd780af68d2c0
kernel: page fault trap, code=0
[ 317.6465475] fatal page fault in supervisor mode
[ 317.6465475] trap type 6 code 0 rip 0xffffffff830b6b1b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd780af68fd70
[ 317.6465475] curlwp 0xffffbf4dc2bc2080 pid 0.5 lowest kstack 0xffffd780af68d2c0
kernel: page fault trap, code=0
[ 317.6465475] fatal page fault in supervisor mode
[ 317.6465475] trap type 6 code 0 rip 0xffffffff830b6b1b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd780af68f9a0
[ 317.6465475] curlwp 0xffffbf4dc2bc2080 pid 0.5 lowest kstack 0xffffd780af68d2c0
kernel: page fault trap, code=0