[ 212.9932362] panic: kernel diagnostic assertion "entry->next != &map->header && entry->next->start <= entry->end" failed: file "/syzkaller/managers/netbsd/kernel/sys/uvm/uvm_fault.c", line 2692 [ 213.0142086] cpu0: Begin traceback... [ 213.0832035] vpanic() at netbsd:vpanic+0x265 sys/kern/subr_prf.c:290 [ 213.2132105] _GLOBAL__sub_D_65535_0_cpu_configure() at netbsd:_GLOBAL__sub_D_65535_0_cpu_configure [ 213.3432050] uvm_fault_unwire_locked() at netbsd:uvm_fault_unwire_locked+0x20f sys/uvm/uvm_fault.c:2694 [ 213.4632018] uvm_fault_unwire() at netbsd:uvm_fault_unwire+0x32 sys/uvm/uvm_fault.c:2650 [ 213.5931981] genfs_directio() at netbsd:genfs_directio+0xa0c genfs_do_directio sys/miscfs/genfs/genfs_io.c:1950 [inline] [ 213.5931981] genfs_directio() at netbsd:genfs_directio+0xa0c sys/miscfs/genfs/genfs_io.c:1815 [ 213.7132002] ffs_write() at netbsd:ffs_write+0x8ba sys/ufs/ufs/ufs_readwrite.c:354 [ 213.8331979] VOP_WRITE() at netbsd:VOP_WRITE+0x118 sys/kern/vnode_if.c:540 [ 213.9632018] vn_write() at netbsd:vn_write+0x25d sys/kern/vfs_vnops.c:612 [ 214.0831978] do_filewritev() at netbsd:do_filewritev+0x4b3 sys/kern/sys_generic.c:472 [ 214.2031957] sys___syscall() at netbsd:sys___syscall+0xff sy_call sys/sys/syscallvar.h:65 [inline] [ 214.2031957] sys___syscall() at netbsd:sys___syscall+0xff sys/kern/sys_syscall.c:77 [ 214.3331963] syscall() at netbsd:syscall+0x259 sy_call sys/sys/syscallvar.h:65 [inline] [ 214.3331963] syscall() at netbsd:syscall+0x259 sy_invoke sys/sys/syscallvar.h:94 [inline] [ 214.3331963] syscall() at netbsd:syscall+0x259 sys/arch/x86/x86/syscall.c:138 [ 214.3531967] --- syscall (number 198) --- [ 214.3931967] netbsd:syscall+0x259: [ 214.3931967] cpu0: End traceback... [ 214.4051007] fatal breakpoint trap in supervisor mode [ 214.4051007] trap type 1 code 0 rip 0xffffffff80220a1d cs 0x8 rflags 0x282 cr2 0x7741af391ff8 ilevel 0 rsp 0xffffd4019367e680 [ 214.4212163] curlwp 0xffffd400142f1a80 pid 1126.495 lowest kstack 0xffffd401936772c0 Stopped in pid 1126.495 (syz-executor.3) at netbsd:breakpoint+0x5: leave ? breakpoint() at netbsd:breakpoint+0x5 db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:67 vpanic() at netbsd:vpanic+0x265 sys/kern/subr_prf.c:290 _GLOBAL__sub_D_65535_0_cpu_configure() at netbsd:_GLOBAL__sub_D_65535_0_cpu_configure uvm_fault_unwire_locked() at netbsd:uvm_fault_unwire_locked+0x20f sys/uvm/uvm_fault.c:2694 uvm_fault_unwire() at netbsd:uvm_fault_unwire+0x32 sys/uvm/uvm_fault.c:2650 genfs_directio() at netbsd:genfs_directio+0xa0c genfs_do_directio sys/miscfs/genfs/genfs_io.c:1950 [inline] genfs_directio() at netbsd:genfs_directio+0xa0c sys/miscfs/genfs/genfs_io.c:1815 ffs_write() at netbsd:ffs_write+0x8ba sys/ufs/ufs/ufs_readwrite.c:354 VOP_WRITE() at netbsd:VOP_WRITE+0x118 sys/kern/vnode_if.c:540 vn_write() at netbsd:vn_write+0x25d sys/kern/vfs_vnops.c:612 do_filewritev() at netbsd:do_filewritev+0x4b3 sys/kern/sys_generic.c:472 sys___syscall() at netbsd:sys___syscall+0xff sy_call sys/sys/syscallvar.h:65 [inline] sys___syscall() at netbsd:sys___syscall+0xff sys/kern/sys_syscall.c:77 syscall() at netbsd:syscall+0x259 sy_call sys/sys/syscallvar.h:65 [inline] syscall() at netbsd:syscall+0x259 sy_invoke sys/sys/syscallvar.h:94 [inline] syscall() at netbsd:syscall+0x259 sys/arch/x86/x86/syscall.c:138 --- syscall (number 198) --- netbsd:syscall+0x259: Panic string: kernel diagnostic assertion "entry->next != &map->header && entry->next->start <= entry->end" failed: file "/syzkaller/managers/netbsd/kernel/sys/uvm/uvm_fault.c", line 2692 PID LID S CPU FLAGS STRUCT LWP * NAME WAIT 505 505 2 0 0 ffffd40012af0bc0 syz-executor.1 497 501 2 0 0 ffffd40012c78200 syz-executor.4 497 499 3 1 80 ffffd40012c68a40 syz-executor.4 parked 497 497 2 0 10000000 ffffd40012c51a00 syz-executor.4 494 504 2 0 0 ffffd40012af0340 syz-executor.0 494 500 3 1 80 ffffd400138f1900 syz-executor.0 parked 494 498 3 0 80 ffffd40012aba300 syz-executor.0 parked 494 494 2 0 10000000 ffffd40012cdd300 syz-executor.0 1126 502 2 0 100000 ffffd400143abb00 syz-executor.3 1126 496 2 0 100000 ffffd400143ab6c0 syz-executor.3 1126 > 495 7 0 100000 ffffd400142f1a80 syz-executor.3 1126 1126 3 1 10000000 ffffd40014390ac0 syz-executor.3 xclocv 2531 490 2 0 100040 ffffd40012ca9b00 syz-executor.5 2531 2531 2 1 10000040 ffffd40012cf2bc0 syz-executor.5 389 389 3 0 80 ffffd40012dcc780 syz-executor.1 parked 388 388 3 0 80 ffffd40012d369c0 syz-executor.1 parked 1189 1189 3 0 80 ffffd40013865680 syz-executor.1 parked 1585 1585 3 0 80 ffffd4001440f700 syz-executor.1 parked 1860 1860 3 0 80 ffffd40014390240 syz-executor.1 parked 1622 1622 3 0 80 ffffd40012e09900 syz-executor.2 parked 1496 1496 3 1 80 ffffd400144a74c0 syz-executor.2 parked 1636 1636 3 0 80 ffffd400144a0480 syz-executor.2 parked 1375 1375 3 0 80 ffffd40012d8db40 syz-executor.2 parked 1067 1067 3 0 80 ffffd40012d63a80 syz-executor.1 parked 1339 1339 3 0 80 ffffd40012d03480 syz-executor.1 parked 458 458 3 0 80 ffffd40012d03040 syz-executor.1 parked 1342 1342 3 0 80 ffffd40014442bc0 syz-executor.1 parked 1217 1217 2 0 40 ffffd400142f1200 syz-executor.5 1099 1099 2 0 40 ffffd40014289a40 syz-executor.4 1066 1066 2 0 40 ffffd400142891c0 syz-executor.3 1065 1065 2 0 40 ffffd4001426fa00 syz-executor.2 1076 1076 2 1 40 ffffd4001426f5c0 syz-executor.1 1151 1151 2 0 40 ffffd40012c681c0 syz-executor.0 1075 416 2 0 0 ffffd40014289600 syz-fuzzer 1075 1077 3 1 80 ffffd4001426f180 syz-fuzzer parked 1075 698 3 0 80 ffffd400141a79c0 syz-fuzzer parked 1075 1072 3 0 80 ffffd400141a7140 syz-fuzzer parked 1075 1080 3 1 80 ffffd400138e78c0 syz-fuzzer parked 1075 1103 3 1 80 ffffd400138e7480 syz-fuzzer parked 1075 1248 3 0 80 ffffd400138e7040 syz-fuzzer parked 1075 1079 3 0 80 ffffd40012a60b00 syz-fuzzer parked 1075 1253 2 0 40 ffffd40012a60280 syz-fuzzer 1075 1075 3 1 80 ffffd40012c51180 syz-fuzzer parked 1064 1064 3 1 80 ffffd40012c515c0 sshd select 1097 1097 3 1 80 ffffd40012b8b080 getty nanoslp 998 998 3 1 80 ffffd4001382da00 getty nanoslp 1105 1105 3 1 80 ffffd400138fe940 getty nanoslp 1063 1063 3 1 c0 ffffd40012aba740 getty ttyraw 967 967 3 1 80 ffffd400138d1b80 sshd select 1122 1122 3 0 80 ffffd40012e094c0 powerd kqueue 717 717 3 0 80 ffffd40012d180c0 syslogd kqueue 596 596 3 1 80 ffffd40012a932c0 dhcpcd poll 599 599 3 0 80 ffffd40012d36140 dhcpcd poll 434 434 3 0 80 ffffd40012c10540 dhcpcd poll 350 350 3 1 80 ffffd40012e09080 dhcpcd poll 349 349 3 1 80 ffffd40012df38c0 dhcpcd poll 348 348 3 1 80 ffffd40012df3480 dhcpcd poll 1 1 3 1 80 ffffd400128c5540 init wait 0 1710 5 1 600 ffffd40013865240 (zombie) 0 1196 3 1 200 ffffd40014442340 acctwatch actwat 0 851 3 0 200 ffffd400129f8640 physiod physiod 0 166 3 0 200 ffffd400129fc680 pooldrain pooldrain 0 164 2 1 240 ffffd400129fc240 ioflush 0 163 3 1 200 ffffd400129f8a80 pgdaemon pgdaemon 0 161 3 0 200 ffffd400129b5a40 usb7 usbevt 0 31 3 0 200 ffffd400129b5600 usb6 usbevt 0 63 3 0 200 ffffd400129b51c0 usb5 usbevt 0 126 3 0 200 ffffd40012964a00 usb4 usbevt 0 125 3 1 200 ffffd400129645c0 usb3 usbevt 0 124 3 0 200 ffffd40012964180 usb2 usbevt 0 123 3 1 200 ffffd400129259c0 usb1 usbevt 0 122 3 1 200 ffffd40012925580 usb0 usbevt 0 121 3 0 200 ffffd40012925140 usbtask-dr usbtsk 0 120 3 0 200 ffffd4000fe34ac0 usbtask-hc usbtsk 0 119 2 0 240 ffffd400128c5980 npfgc0 0 118 3 1 200 ffffd400128c5100 rt_free rt_free 0 117 3 0 200 ffffd400127f8940 unpgc unpgc 0 116 2 0 200 ffffd400127f8500 key_timehandler 0 115 3 1 200 ffffd400127f80c0 icmp6_wqinput/1 icmp6_wqinput 0 114 3 0 200 ffffd400127ed900 icmp6_wqinput/0 icmp6_wqinput 0 113 2 0 200 ffffd400127ed4c0 nd6_timer 0 112 3 1 200 ffffd400127ed080 carp6_wqinput/1 carp6_wqinput 0 111 3 0 200 ffffd400127e88c0 carp6_wqinput/0 carp6_wqinput 0 110 3 1 200 ffffd400127e8480 carp_wqinput/1 carp_wqinput 0 109 3 0 200 ffffd400127e8040 carp_wqinput/0 carp_wqinput 0 108 3 1 200 ffffd400127c8bc0 icmp_wqinput/1 icmp_wqinput 0 107 3 0 200 ffffd400127c8780 icmp_wqinput/0 icmp_wqinput 0 106 2 0 200 ffffd400127c6b80 rt_timer 0 105 3 1 200 ffffd400127c8340 vmem_rehash vmem_rehash 0 104 3 1 200 ffffd400127c3b40 entbutler entropy 0 30 3 1 200 ffffd4001213a6c0 vioif0_txrx/1 vioif0_txrx 0 29 2 0 200 ffffd4001213a280 vioif0_txrx/0 0 27 3 0 200 ffffd4000fe34680 scsibus0 sccomp 0 26 3 0 200 ffffd4000fe34240 pms0 pmsreset 0 25 3 1 200 ffffd4000fd89a80 xcall/1 xcall 0 24 1 1 200 ffffd4000fd89640 softser/1 0 23 1 1 200 ffffd4000fd89200 softclk/1 0 22 1 1 200 ffffd4000fd87a40 softbio/1 0 21 1 1 200 ffffd4000fd87600 softnet/1 0 20 1 1 201 ffffd4000fd871c0 idle/1 0 19 3 0 200 ffffd4000e7f8a00 lnxpwrwq lnxpwrwq 0 18 3 0 200 ffffd4000e7f85c0 lnxlngwq lnxlngwq 0 17 3 0 200 ffffd4000e7f8180 lnxsyswq lnxsyswq 0 16 3 0 200 ffffd4000e7f09c0 lnxrcugc lnxrcugc 0 15 3 0 200 ffffd4000e7f0580 sysmon smtaskq 0 14 3 0 200 ffffd4000e7f0140 pmfsuspend pmfsuspend 0 13 3 0 200 ffffd4000e7ec980 pmfevent pmfevent 0 12 3 0 200 ffffd4000e7ec540 sopendfree sopendfr 0 11 3 0 200 ffffd4000e7ec100 iflnkst iflnkst 0 10 3 0 200 ffffd4000e7e0940 nfssilly nfssilly 0 9 3 0 200 ffffd4000e7e0500 vdrain vdrain 0 8 3 0 200 ffffd4000e7e00c0 modunload mod_unld 0 7 2 0 200 ffffd4000e7d3900 xcall/0 0 6 1 0 200 ffffd4000e7d34c0 softser/0 0 5 1 0 200 ffffd4000e7d3080 softclk/0 0 4 1 0 200 ffffd4000e7d18c0 softbio/0 0 3 1 0 200 ffffd4000e7d1480 softnet/0 0 2 1 0 201 ffffd4000e7d1040 idle/0 0 > 0 7 1 240 ffffffff82eecb40 swapper [Locks tracked through LWPs] ****** LWP 497.501 (syz-executor.4) @ 0xffffd40012c78200, l_stat=2 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at vcache_alloc) lock address : 0xffffd40014369780 type : sleep/adaptive initialized : 0xffffffff81a52eb0 shared holds : 0 exclusive: 1 shares wanted: 1 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd40012c78200 last held: 0xffffd40012c68a40 last locked* : 0xffffffff81a85c50 unlocked : 0xffffffff81a85cb2 owner/count : 0x0000000000000020 flags : 000000000000000000 Turnstile: no active turnstile for this lock. ****** LWP 497.499 (syz-executor.4) @ 0xffffd40012c68a40, l_stat=3 *** Locks held: * Lock 0 (initialized at vcache_alloc) lock address : 0xffffd40014369780 type : sleep/adaptive initialized : 0xffffffff81a52eb0 shared holds : 0 exclusive: 1 shares wanted: 1 exclusive: 0 relevant cpu : 1 last held: 0 relevant lwp : 0xffffd40012c68a40 last held: 0xffffd40012c68a40 last locked* : 0xffffffff81a85c50 unlocked : 0xffffffff81a85cb2 owner/count : 0x0000000000000020 flags : 000000000000000000 Turnstile: no active turnstile for this lock. * Lock 1 (initialized at vcache_alloc) lock address : 0xffffd4001458c500 type : sleep/adaptive initialized : 0xffffffff81a52eb0 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 1 last held: 1 relevant lwp : 0xffffd40012c68a40 last held: 0xffffd40012c68a40 last locked* : 0xffffffff81a85c50 unlocked : 000000000000000000 owner/count : 000000000000000000 flags : 000000000000000000 Turnstile: no active turnstile for this lock. *** Locks wanted: none ****** LWP 494.504 (syz-executor.0) @ 0xffffd40012af0340, l_stat=2 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at vcache_alloc) lock address : 0xffffd400140ec280 type : sleep/adaptive initialized : 0xffffffff81a52eb0 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 1 relevant cpu : 0 last held: 1 relevant lwp : 0xffffd40012af0340 last held: 0xffffd400138f1900 last locked* : 0xffffffff81a85c50 unlocked : 0xffffffff81a85cb2 owner/count : 000000000000000000 flags : 0x0000000000000002 Turnstile: no active turnstile for this lock. ****** LWP 494.500 (syz-executor.0) @ 0xffffd400138f1900, l_stat=3 *** Locks held: * Lock 0 (initialized at vcache_alloc) lock address : 0xffffd400140ec280 type : sleep/adaptive initialized : 0xffffffff81a52eb0 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 1 relevant cpu : 1 last held: 1 relevant lwp : 0xffffd400138f1900 last held: 0xffffd400138f1900 last locked* : 0xffffffff81a85c50 unlocked : 0xffffffff81a85cb2 owner/count : 000000000000000000 flags : 0x0000000000000002 Turnstile: no active turnstile for this lock. * Lock 1 (initialized at genfs_node_init) lock address : 0xffffd400138434b8 type : sleep/adaptive initialized : 0xffffffff81a85e1c shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 1 last held: 1 relevant lwp : 0xffffd400138f1900 last held: 0xffffd400138f1900 last locked* : 0xffffffff818042ae unlocked : 000000000000000000 owner/count : 000000000000000000 flags : 000000000000000000 Turnstile: no active turnstile for this lock. *** Locks wanted: none ****** LWP 1126.495 (syz-executor.3) @ 0xffffd400142f1a80, l_stat=7 *** Locks held: * Lock 0 (initialized at vcache_alloc) lock address : 0xffffd40014369a00 type : sleep/adaptive initialized : 0xffffffff81a52eb0 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 1 relevant lwp : 0xffffd400142f1a80 last held: 0xffffd400142f1a80 last locked* : 0xffffffff81a85c50 unlocked : 0xffffffff81a85cb2 owner/count : 0xffffd400142f1a80 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. * Lock 1 (initialized at amap_ctor) lock address : 0xffffd400143ce300 type : sleep/adaptive initialized : 0xffffffff818259ab shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffd400142f1a80 last held: 0xffffd400142f1a80 last locked* : 0xffffffff8184a4e1 unlocked : 0xffffffff8182af30 owner/count : 0xffffd400142f1a80 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. *** Locks wanted: none ****** LWP 1076.1076 (syz-executor.1) @ 0xffffd4001426f5c0, l_stat=2 *** Locks held: * Lock 0 (initialized at vcache_alloc) lock address : 0xffffd40012a19540 type : sleep/adaptive initialized : 0xffffffff81a52eb0 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 1 last held: 1 relevant lwp : 0xffffd4001426f5c0 last held: 0xffffd4001426f5c0 last locked* : 0xffffffff81a85c50 unlocked : 0xffffffff81a85cb2 [ 214.4288399] Skipping crash dump on recursive panic [ 214.4288399] panic: ASan: Unauthorized Access In 0xffffffff818ff4c0: Addr 0xffffd40012a19540 [8 bytes, read, PoolUseAfterFree] [ 214.4288399] cpu0: Begin traceback... [ 214.4288399] vpanic() at netbsd:vpanic+0x265 sys/kern/subr_prf.c:290 [ 214.4288399] snprintf() at netbsd:snprintf [ 214.4288399] kasan_report() at netbsd:kasan_report+0x8c kasan_code_name sys/kern/subr_asan.c:163 [inline] [ 214.4288399] kasan_report() at netbsd:kasan_report+0x8c sys/kern/subr_asan.c:195 [ 214.4288399] __asan_load8() at netbsd:__asan_load8+0x27e kasan_shadow_4byte_isvalid sys/kern/subr_asan.c:345 [inline] [ 214.4288399] __asan_load8() at netbsd:__asan_load8+0x27e kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:359 [inline] [ 214.4288399] __asan_load8() at netbsd:__asan_load8+0x27e kasan_shadow_check sys/kern/subr_asan.c:411 [inline] [ 214.4288399] __asan_load8() at netbsd:__asan_load8+0x27e sys/kern/subr_asan.c:1198 [ 214.4288399] rw_dump() at netbsd:rw_dump+0x20 sys/kern/kern_rwlock.c:186 [ 214.4288399] lockdebug_dump() at netbsd:lockdebug_dump+0x23b sys/kern/subr_lockdebug.c:759 [ 214.4288399] lockdebug_show_one() at netbsd:lockdebug_show_one+0xa7 sys/kern/subr_lockdebug.c:839 [ 214.4288399] lockdebug_show_all_locks() at netbsd:lockdebug_show_all_locks+0x274 lockdebug_show_all_locks_lwp sys/kern/subr_lockdebug.c:877 [inline] [ 214.4288399] lockdebug_show_all_locks() at netbsd:lockdebug_show_all_locks+0x274 sys/kern/subr_lockdebug.c:941 [ 214.4288399] db_command() at netbsd:db_command+0x310 sys/ddb/db_command.c:942 [ 214.4288399] db_command_loop() at netbsd:db_command_loop+0x293 db_execute_commandlist sys/ddb/db_command.c:439 [inline] [ 214.4288399] db_command_loop() at netbsd:db_command_loop+0x293 sys/ddb/db_command.c:589 [ 214.4288399] db_trap() at netbsd:db_trap+0x22c sys/ddb/db_trap.c:94 [ 214.4288399] kdb_trap() at netbsd:kdb_trap+0x25c sys/arch/amd64/amd64/db_interface.c:250 [ 214.4288399] trap() at netbsd:trap+0x819 sys/arch/amd64/amd64/trap.c:315 [ 214.4288399] --- trap (number 1) --- [ 214.4288399] breakpoint() at netbsd:breakpoint+0x5 [ 214.4288399] db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:67 [ 214.4288399] vpanic() at netbsd:vpanic+0x265 sys/kern/subr_prf.c:290 [ 214.4288399] _GLOBAL__sub_D_65535_0_cpu_configure() at netbsd:_GLOBAL__sub_D_65535_0_cpu_configure [ 214.4288399] uvm_fault_unwire_locked() at netbsd:uvm_fault_unwire_locked+0x20f sys/uvm/uvm_fault.c:2694 [ 214.4288399] uvm_fault_unwire() at netbsd:uvm_fault_unwire+0x32 sys/uvm/uvm_fault.c:2650 [ 214.4288399] genfs_directio() at netbsd:genfs_directio+0xa0c genfs_do_directio sys/miscfs/genfs/genfs_io.c:1950 [inline] [ 214.4288399] genfs_directio() at netbsd:genfs_directio+0xa0c sys/miscfs/genfs/genfs_io.c:1815 [ 214.4288399] ffs_write() at netbsd:ffs_write+0x8ba sys/ufs/ufs/ufs_readwrite.c:354 [ 214.4288399] VOP_WRITE() at netbsd:VOP_WRITE+0x118 sys/kern/vnode_if.c:540 [ 214.4288399] vn_write() at netbsd:vn_write+0x25d sys/kern/vfs_vnops.c:612 [ 214.4288399] do_filewritev() at netbsd:do_filewritev+0x4b3 sys/kern/sys_generic.c:472 [ 214.4288399] sys___syscall() at netbsd:sys___syscall+0xff sy_call sys/sys/syscallvar.h:65 [inline] [ 214.4288399] sys___syscall() at netbsd:sys___syscall+0xff sys/kern/sys_syscall.c:77 [ 214.4288399] syscall() at netbsd:syscall+0x259 sy_call sys/sys/syscallvar.h:65 [inline] [ 214.4288399] syscall() at netbsd:syscall+0x259 sy_invoke sys/sys/syscallvar.h:94 [inline] [ 214.4288399] syscall() at netbsd:syscall+0x259 sys/arch/x86/x86/syscall.c:138 [ 214.4288399] --- syscall (number 198) --- [ 214.4288399] netbsd:syscall+0x259: [ 214.4288399] cpu0: End traceback... [ 214.4288399] fatal breakpoint trap in supervisor mode [ 214.4288399] trap type 1 code 0 rip 0xffffffff80220a1d cs 0x8 rflags 0x282 cr2 0x7741af391ff8 ilevel 0x8 rsp 0xffffd4019367dc50 [ 214.4288399] curlwp 0xffffd400142f1a80 pid 1126.495 lowest kstack 0xffffd401936772c0 Stopped in pid 1126.495 (syz-executor.3) at netbsd:breakpoint+0x5: leave