[ 225.7053515] panic: LOCKDEBUG: Mutex error: rw_vector_enter,309: spin lock held [ 225.7153528] cpu1: Begin traceback... [ 225.7753548] vpanic() at netbsd:vpanic+0x265 sys/kern/subr_prf.c:290 [ 225.8953561] snprintf() at netbsd:snprintf [ 226.0353665] lockdebug_more() at netbsd:lockdebug_more [ 226.1653557] lockdebug_barrier() at netbsd:lockdebug_barrier+0x11d sys/kern/subr_lockdebug.c:650 [ 226.2853545] rw_enter() at netbsd:rw_enter+0x7ff sys/kern/kern_rwlock.c:309 [ 226.4053550] uvm_fault_internal() at netbsd:uvm_fault_internal+0x34d uvmfault_lookup sys/uvm/uvm_fault_i.h:128 [inline] [ 226.4053550] uvm_fault_internal() at netbsd:uvm_fault_internal+0x34d uvm_fault_check sys/uvm/uvm_fault.c:987 [inline] [ 226.4053550] uvm_fault_internal() at netbsd:uvm_fault_internal+0x34d sys/uvm/uvm_fault.c:897 [ 226.5153556] trap() at netbsd:trap+0xb3a sys/arch/amd64/amd64/trap.c:520 [ 226.5353573] --- trap (number 6) --- [ 226.6353573] __asan_load8() at netbsd:__asan_load8+0x62 kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:357 [inline] [ 226.6353573] __asan_load8() at netbsd:__asan_load8+0x62 kasan_shadow_check sys/kern/subr_asan.c:411 [inline] [ 226.6353573] __asan_load8() at netbsd:__asan_load8+0x62 sys/kern/subr_asan.c:1198 [ 226.7553563] dosetitimer() at netbsd:dosetitimer+0x476 sys/kern/kern_time.c:1645 [ 226.8753547] compat_50_sys_setitimer() at netbsd:compat_50_sys_setitimer+0x279 sys/compat/common/kern_time_50.c:343 [ 226.9953567] sys___syscall() at netbsd:sys___syscall+0xff sy_call sys/sys/syscallvar.h:65 [inline] [ 226.9953567] sys___syscall() at netbsd:sys___syscall+0xff sys/kern/sys_syscall.c:77 [ 227.1253570] syscall() at netbsd:syscall+0x259 sy_call sys/sys/syscallvar.h:65 [inline] [ 227.1253570] syscall() at netbsd:syscall+0x259 sy_invoke sys/sys/syscallvar.h:94 [inline] [ 227.1253570] syscall() at netbsd:syscall+0x259 sys/arch/x86/x86/syscall.c:138 [ 227.1453569] --- syscall (number 198) --- [ 227.1853571] netbsd:syscall+0x259: [ 227.1853571] cpu1: End traceback... [ 227.1953514] fatal breakpoint trap in supervisor mode [ 227.1953514] trap type 1 code 0 rip 0xffffffff80220a2d cs 0x8 rflags 0x282 cr2 0xffff900000000028 ilevel 0x8 rsp 0xffffd901a9c702e0 [ 227.2053547] curlwp 0xffffd900153a5300 pid 1180.1065 lowest kstack 0xffffd901a9c692c0 Stopped in pid 1180.1065 (syz-executor.4) at netbsd:breakpoint+0x5: leave ? breakpoint() at netbsd:breakpoint+0x5 db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:67 vpanic() at netbsd:vpanic+0x265 sys/kern/subr_prf.c:290 snprintf() at netbsd:snprintf lockdebug_more() at netbsd:lockdebug_more lockdebug_barrier() at netbsd:lockdebug_barrier+0x11d sys/kern/subr_lockdebug.c:650 rw_enter() at netbsd:rw_enter+0x7ff sys/kern/kern_rwlock.c:309 uvm_fault_internal() at netbsd:uvm_fault_internal+0x34d uvmfault_lookup sys/uvm/uvm_fault_i.h:128 [inline] uvm_fault_internal() at netbsd:uvm_fault_internal+0x34d uvm_fault_check sys/uvm/uvm_fault.c:987 [inline] uvm_fault_internal() at netbsd:uvm_fault_internal+0x34d sys/uvm/uvm_fault.c:897 trap() at netbsd:trap+0xb3a sys/arch/amd64/amd64/trap.c:520 --- trap (number 6) --- __asan_load8() at netbsd:__asan_load8+0x62 kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:357 [inline] __asan_load8() at netbsd:__asan_load8+0x62 kasan_shadow_check sys/kern/subr_asan.c:411 [inline] __asan_load8() at netbsd:__asan_load8+0x62 sys/kern/subr_asan.c:1198 dosetitimer() at netbsd:dosetitimer+0x476 sys/kern/kern_time.c:1645 compat_50_sys_setitimer() at netbsd:compat_50_sys_setitimer+0x279 sys/compat/common/kern_time_50.c:343 sys___syscall() at netbsd:sys___syscall+0xff sy_call sys/sys/syscallvar.h:65 [inline] sys___syscall() at netbsd:sys___syscall+0xff sys/kern/sys_syscall.c:77 syscall() at netbsd:syscall+0x259 sy_call sys/sys/syscallvar.h:65 [inline] syscall() at netbsd:syscall+0x259 sy_invoke sys/sys/syscallvar.h:94 [inline] syscall() at netbsd:syscall+0x259 sys/arch/x86/x86/syscall.c:138 --- syscall (number 198) --- netbsd:syscall+0x259: Panic string: LOCKDEBUG: Mutex error: rw_vector_enter,309: spin lock held PID LID S CPU FLAGS STRUCT LWP * NAME WAIT 1180 >1065 7 1 100 ffffd900153a5300 syz-executor.4 1180 1180 2 1 10000000 ffffd90013c944c0 syz-executor.4 1210 1358 2 0 0 ffffd900153aa780 syz-executor.5 1210 1114 2 0 0 ffffd900153aa340 syz-executor.5 1210 1508 2 0 0 ffffd900153a5b80 syz-executor.5 1210 1210 2 0 10000000 ffffd90013c85480 syz-executor.5 1213 1198 3 1 180 ffffd900153a5740 syz-executor.0 parked 1213 1363 3 0 180 ffffd90015387b40 syz-executor.0 parked 1213 1205 2 0 0 ffffd90013c5f300 syz-executor.0 1213 1353 3 1 180 ffffd90013c2b6c0 syz-executor.0 parked 1213 1213 3 1 10000180 ffffd90013ca10c0 syz-executor.0 nanoslp 1214 1319 2 0 100 ffffd90013c85040 syz-executor.3 1214 1214 2 0 10000000 ffffd90014787140 syz-executor.3 1317 1383 2 1 100 ffffd90014728100 syz-executor.2 1317 1317 2 0 10000000 ffffd90013d6f480 syz-executor.2 1229 1229 2 0 140 ffffd90015237640 syz-executor.5 989 989 3 1 180 ffffd90015237200 syz-executor.3 nanoslp 1151 1151 3 1 180 ffffd900151f8a40 syz-executor.4 nanoslp 1188 1188 2 0 40 ffffd900151f8600 syz-executor.1 1220 1220 3 1 180 ffffd900151f81c0 syz-executor.2 nanoslp 422 422 3 1 180 ffffd90013be8600 syz-executor.0 nanoslp 1072 1218 3 0 180 ffffd900151455c0 syz-fuzzer parked 1072 1226 3 1 180 ffffd90015145180 syz-fuzzer parked 1072 1221 3 0 180 ffffd90014876900 syz-fuzzer parked 1072 1222 3 0 180 ffffd900148764c0 syz-fuzzer parked 1072 947 3 0 180 ffffd90014876080 syz-fuzzer parked 1072 1079 3 0 1c0 ffffd90013c70bc0 syz-fuzzer parked 1072 1069 3 1 180 ffffd9001395aa80 syz-fuzzer parked 1072 1081 3 1 180 ffffd90013b7f980 syz-fuzzer parked 1072 1072 2 0 140 ffffd90013bcc5c0 syz-fuzzer 1112 1112 3 1 180 ffffd90013be81c0 sshd select 1074 1074 3 1 180 ffffd90013ab8900 getty nanoslp 1099 1099 3 1 180 ffffd90013ab84c0 getty nanoslp 1110 1110 3 0 180 ffffd90013b640c0 getty nanoslp 1067 1067 3 0 1c0 ffffd90013a4f340 getty ttyraw 732 732 3 1 180 ffffd90014854740 sshd select 983 983 3 0 180 ffffd900147b05c0 powerd kqueue 872 872 3 0 180 ffffd90014860bc0 syslogd kqueue 739 739 3 1 180 ffffd90013c5fb80 dhcpcd poll 601 601 3 0 180 ffffd90013cb8140 dhcpcd poll 596 596 3 0 180 ffffd90013c858c0 dhcpcd poll 591 591 3 1 180 ffffd90013c5f740 dhcpcd poll 482 482 3 0 180 ffffd90013d85900 dhcpcd poll 288 288 3 1 180 ffffd90013d854c0 dhcpcd poll 351 351 3 1 180 ffffd90013d85080 dhcpcd poll 1 1 3 1 180 ffffd9001385a140 init wait 0 870 3 0 200 ffffd90013986240 physiod physiod 0 192 3 0 200 ffffd90013988280 pooldrain pooldrain 0 163 2 0 240 ffffd90013986ac0 ioflush 0 168 3 1 200 ffffd90013986680 pgdaemon pgdaemon 0 162 3 1 200 ffffd9001395a640 usb7 usbevt 0 161 3 1 200 ffffd9001395a200 usb6 usbevt 0 31 3 1 200 ffffd9001390ba40 usb5 usbevt 0 63 3 1 200 ffffd9001390b600 usb4 usbevt 0 126 3 1 200 ffffd9001390b1c0 usb3 usbdly 0 125 3 1 200 ffffd900138b8a00 usb2 usbevt 0 124 3 1 200 ffffd900138b85c0 usb1 usbevt 0 123 3 1 200 ffffd900138b8180 usb0 usbevt 0 122 3 0 200 ffffd9001385a9c0 usbtask-dr usbtsk 0 121 3 0 200 ffffd90010dbaac0 usbtask-hc usbtsk 0 120 3 0 200 ffffd9001385a580 npfgc0 npfgcw 0 119 3 1 200 ffffd9001384b980 rt_free rt_free 0 118 3 0 200 ffffd9001384b540 unpgc unpgc 0 117 3 0 200 ffffd9001384b100 key_timehandler key_timehandler 0 116 3 1 200 ffffd9001371b940 icmp6_wqinput/1 icmp6_wqinput 0 115 3 0 200 ffffd9001371b500 icmp6_wqinput/0 icmp6_wqinput 0 114 3 1 200 ffffd9001371b0c0 nd6_timer nd6_timer 0 113 3 1 200 ffffd90013710900 carp6_wqinput/1 carp6_wqinput 0 112 3 0 200 ffffd900137104c0 carp6_wqinput/0 carp6_wqinput 0 111 3 1 200 ffffd90013710080 carp_wqinput/1 carp_wqinput 0 110 3 0 200 ffffd900136ff8c0 carp_wqinput/0 carp_wqinput 0 109 3 1 200 ffffd900136ff480 icmp_wqinput/1 icmp_wqinput 0 108 3 0 200 ffffd900136ff040 icmp_wqinput/0 icmp_wqinput 0 107 3 0 200 ffffd900136edbc0 rt_timer rt_timer 0 106 3 1 200 ffffd900136ed780 vmem_rehash vmem_rehash 0 105 3 1 200 ffffd900136ecb80 entbutler entropy 0 96 3 0 200 ffffd900130c0b00 viomb balloon 0 30 3 1 200 ffffd900130c06c0 vioif0_txrx/1 vioif0_txrx 0 29 3 0 200 ffffd900130c0280 vioif0_txrx/0 vioif0_txrx 0 27 3 0 200 ffffd90010dba680 scsibus0 sccomp 0 26 3 0 200 ffffd90010dba240 pms0 pmsreset 0 25 3 1 200 ffffd90010d0ea80 xcall/1 xcall 0 24 1 1 200 ffffd90010d0e640 softser/1 0 23 1 1 200 ffffd90010d0e200 softclk/1 0 22 1 1 200 ffffd90010d0ca40 softbio/1 0 21 1 1 200 ffffd90010d0c600 softnet/1 0 20 1 1 201 ffffd90010d0c1c0 idle/1 0 19 3 0 200 ffffd9000f77da00 lnxpwrwq lnxpwrwq 0 18 3 0 200 ffffd9000f77d5c0 lnxlngwq lnxlngwq 0 17 3 0 200 ffffd9000f77d180 lnxsyswq lnxsyswq 0 16 3 0 200 ffffd9000f7759c0 lnxrcugc lnxrcugc 0 15 3 0 200 ffffd9000f775580 sysmon smtaskq 0 14 3 0 200 ffffd9000f775140 pmfsuspend pmfsuspend 0 13 3 0 200 ffffd9000f771980 pmfevent pmfevent 0 12 3 0 200 ffffd9000f771540 sopendfree sopendfr 0 11 3 1 200 ffffd9000f771100 iflnkst iflnkst 0 10 3 0 200 ffffd9000f765940 nfssilly nfssilly 0 9 3 0 200 ffffd9000f765500 vdrain vdrain 0 8 3 0 200 ffffd9000f7650c0 modunload mod_unld 0 7 3 0 200 ffffd9000f758900 xcall/0 xcall 0 6 1 0 200 ffffd9000f7584c0 softser/0 0 5 1 0 200 ffffd9000f758080 softclk/0 0 4 1 0 200 ffffd9000f7568c0 softbio/0 0 3 1 0 200 ffffd9000f756480 softnet/0 0 2 1 0 201 ffffd9000f756040 idle/0 0 > 0 7 0 240 ffffffff82eee300 swapper [Locks tracked through LWPs] ****** LWP 1180.1065 (syz-executor.4) @ 0xffffd900153a5300, l_stat=7 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at uvm_map_setup) lock address : 0xffffd90013a7be08 type : sleep/adaptive initialized : 0xffffffff8184e942 shared holds : 0 exclusive: 0 shares wanted: 1 exclusive: 0 relevant cpu : 1 last held: 65535 relevant lwp : 0xffffd900153a5300 last held: 000000000000000000 last locked : 0xffffffff8183a34c unlocked*: 0xffffffff81839330 owner/count : 000000000000000000 flags : 000000000000000000 Turnstile: no active turnstile for this lock. ****** LWP 1210.1210 (syz-executor.5) @ 0xffffd90013c85480, l_stat=2 *** Locks held: * Lock 0 (initialized at uvm_obj_init) lock address : 0xffffd9000f672cc0 type : sleep/adaptive initialized : 0xffffffff8185c03a shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd90013c85480 last held: 0xffffd90013c85480 last locked* : 0xffffffff8183c05e unlocked : 0xffffffff818392ec owner/count : 000000000000000000 flags : 000000000000000000 Turnstile: no active turnstile for this lock. * Lock 1 (initialized at pmap_ctor) lock address : 0xffffd90013bf5980 type : sleep/adaptive initialized : 0xffffffff808d3c54 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd90013c85480 last held: 0xffffd90013c85480 last locked* : 0xffffffff808d58e2 unlocked : 0xffffffff808d61e8 owner field : 000000000000000000 wait/spin: 0/0 Turnstile: no active turnstile for this lock. * Lock 2 (initialized at pmap_ctor) lock address : 0xffffd90013bf5988 type : sleep/adaptive initialized : 0xffffffff808d3c60 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd90013c85480 last held: 0xffffd90013c85480 last locked* : 0xffffffff808d6a7b unlocked : 0xffffffff808d6b90 owner/count : 000000000000000000 flags : 000000000000000000 Turnstile: no active turnstile for this lock. *** Locks wanted: none ****** LWP 1213.1363 (syz-executor.0) @ 0xffffd90015387b40, l_stat=3 *** Locks held: * Lock 0 (initialized at vcache_alloc) lock address : 0xffffd9001539c740 type : sleep/adaptive initialized : 0xffffffff81a599b0 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd90015387b40 last held: 0xffffd90015387b40 last locked* : 0xffffffff81a8c780 unlocked : 0xffffffff81a8c7e2 owner/count : 000000000000000000 flags : 000000000000000000 Turnstile: no active turnstile for this lock. * Lock 1 (initialized at genfs_node_init) lock address : 0xffffd9001539b508 type : sleep/adaptive initialized : 0xffffffff81a8c94c shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd90015387b40 last held: 0xffffd90015387b40 last locked* : 0xffffffff81773858 unlocked : 0xffffffff81a81d12 owner/count : 000000000000000000 flags : 000000000000000000 Turnstile: no active turnstile for this lock. *** Locks wanted: none ****** LWP 1214.1319 (syz-executor.3) @ 0xffffd90013c85040, l_stat=2 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at vhci_attach) lock address : 0xffffd900136b16d8 type : sleep/adaptive initialized : 0xffffffff80b8ee47 shared holds : 0 exclusive: 0 shares wanted: 0 exclusive: 1 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd90013c85040 last held: 000000000000000000 last locked : 0xffffffff80b90e9b unlocked*: 0xffffffff80b911c0 owner field : 0xffffd90013c85040 wait/spin: 0/0 Turnstile: no active turnstile for this lock. ****** LWP 1188.1188 (syz-executor.1) @ 0xffffd900151f8600, l_stat=2 *** Locks held: * Lock 0 (initialized at vcache_alloc) lock address : 0xffffd9001521c740 type : sleep/adaptive initialized : 0xffffffff81a599b0 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd900151f8600 last held: 0xffffd900151f8600 last locked* : 0xffffffff81a8c780 unlocked : 0xffffffff81a8c7e2 owner/count : 000000000000000000 flags : 000000000000000000 Turnstile: no active turnstile for this lock. * Lock 1 (initialized at vcache_alloc) lock address : 0xffffd900152dac80 type : sleep/adaptive initialized : 0xffffffff81a599b0 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd900151f8600 last held: 0xffffd900151f8600 last locked* : 0xffffffff81a8c780 unlocked : 0xffffffff81a8c7e2 [ 227.2153540] Skipping crash dump on recursive panic [ 227.2153540] panic: ASan: Unauthorized Access In 0xffffffff81904d50: Addr 0xffffd900152dac80 [8 bytes, read, PoolUseAfterFree] [ 227.2153540] cpu1: Begin traceback... [ 227.2153540] vpanic() at netbsd:vpanic+0x265 sys/kern/subr_prf.c:290 [ 227.2153540] snprintf() at netbsd:snprintf [ 227.2153540] kasan_report() at netbsd:kasan_report+0x8c kasan_code_name sys/kern/subr_asan.c:163 [inline] [ 227.2153540] kasan_report() at netbsd:kasan_report+0x8c sys/kern/subr_asan.c:195 [ 227.2153540] __asan_load8() at netbsd:__asan_load8+0x27e kasan_shadow_4byte_isvalid sys/kern/subr_asan.c:345 [inline] [ 227.2153540] __asan_load8() at netbsd:__asan_load8+0x27e kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:359 [inline] [ 227.2153540] __asan_load8() at netbsd:__asan_load8+0x27e kasan_shadow_check sys/kern/subr_asan.c:411 [inline] [ 227.2153540] __asan_load8() at netbsd:__asan_load8+0x27e sys/kern/subr_asan.c:1198 [ 227.2153540] rw_dump() at netbsd:rw_dump+0x20 sys/kern/kern_rwlock.c:186 [ 227.2153540] lockdebug_dump() at netbsd:lockdebug_dump+0x23b sys/kern/subr_lockdebug.c:759 [ 227.2153540] lockdebug_show_one() at netbsd:lockdebug_show_one+0xa7 sys/kern/subr_lockdebug.c:839 [ 227.2153540] lockdebug_show_all_locks() at netbsd:lockdebug_show_all_locks+0x274 lockdebug_show_all_locks_lwp sys/kern/subr_lockdebug.c:877 [inline] [ 227.2153540] lockdebug_show_all_locks() at netbsd:lockdebug_show_all_locks+0x274 sys/kern/subr_lockdebug.c:941 [ 227.2153540] db_command() at netbsd:db_command+0x310 sys/ddb/db_command.c:957 [ 227.2153540] db_command_loop() at netbsd:db_command_loop+0x293 db_execute_commandlist sys/ddb/db_command.c:454 [inline] [ 227.2153540] db_command_loop() at netbsd:db_command_loop+0x293 sys/ddb/db_command.c:604 [ 227.2153540] db_trap() at netbsd:db_trap+0x22c sys/ddb/db_trap.c:94 [ 227.2153540] kdb_trap() at netbsd:kdb_trap+0x25c sys/arch/amd64/amd64/db_interface.c:250 [ 227.2153540] trap() at netbsd:trap+0x819 sys/arch/amd64/amd64/trap.c:315 [ 227.2153540] --- trap (number 1) --- [ 227.2153540] breakpoint() at netbsd:breakpoint+0x5 [ 227.2153540] db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:67 [ 227.2153540] vpanic() at netbsd:vpanic+0x265 sys/kern/subr_prf.c:290 [ 227.2153540] snprintf() at netbsd:snprintf [ 227.2153540] lockdebug_more() at netbsd:lockdebug_more [ 227.2153540] lockdebug_barrier() at netbsd:lockdebug_barrier+0x11d sys/kern/subr_lockdebug.c:650 [ 227.2153540] rw_enter() at netbsd:rw_enter+0x7ff sys/kern/kern_rwlock.c:309 [ 227.2153540] uvm_fault_internal() at netbsd:uvm_fault_internal+0x34d uvmfault_lookup sys/uvm/uvm_fault_i.h:128 [inline] [ 227.2153540] uvm_fault_internal() at netbsd:uvm_fault_internal+0x34d uvm_fault_check sys/uvm/uvm_fault.c:987 [inline] [ 227.2153540] uvm_fault_internal() at netbsd:uvm_fault_internal+0x34d sys/uvm/uvm_fault.c:897 [ 227.2153540] trap() at netbsd:trap+0xb3a sys/arch/amd64/amd64/trap.c:520 [ 227.2153540] --- trap (number 6) --- [ 227.2153540] __asan_load8() at netbsd:__asan_load8+0x62 kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:357 [inline] [ 227.2153540] __asan_load8() at netbsd:__asan_load8+0x62 kasan_shadow_check sys/kern/subr_asan.c:411 [inline] [ 227.2153540] __asan_load8() at netbsd:__asan_load8+0x62 sys/kern/subr_asan.c:1198 [ 227.2153540] dosetitimer() at netbsd:dosetitimer+0x476 sys/kern/kern_time.c:1645 [ 227.2153540] compat_50_sys_setitimer() at netbsd:compat_50_sys_setitimer+0x279 sys/compat/common/kern_time_50.c:343 [ 227.2153540] sys___syscall() at netbsd:sys___syscall+0xff sy_call sys/sys/syscallvar.h:65 [inline] [ 227.2153540] sys___syscall() at netbsd:sys___syscall+0xff sys/kern/sys_syscall.c:77 [ 227.2153540] syscall() at netbsd:syscall+0x259 sy_call sys/sys/syscallvar.h:65 [inline] [ 227.2153540] syscall() at netbsd:syscall+0x259 sy_invoke sys/sys/syscallvar.h:94 [inline] [ 227.2153540] syscall() at netbsd:syscall+0x259 sys/arch/x86/x86/syscall.c:138 [ 227.2153540] --- syscall (number 198) --- [ 227.2153540] netbsd:syscall+0x259: [ 227.2153540] cpu1: End traceback... [ 227.2153540] fatal breakpoint trap in supervisor mode [ 227.2153540] trap type 1 code 0 rip 0xffffffff80220a2d cs 0x8 rflags 0x282 cr2 0xffff900000000028 ilevel 0x8 rsp 0xffffd901a9c6f8b0 [ 227.2153540] curlwp 0xffffd900153a5300 pid 1180.1065 lowest kstack 0xffffd901a9c692c0 Stopped in pid 1180.1065 (syz-executor.4) at netbsd:breakpoint+0x5: leave