[ 2.0799806] panic: kernel diagnostic assertion "len <= map->dm_mapsize - offset" failed: file "/syzkaller/managers/ci2-netbsd/kernel/sys/arch/x86/x86/bus_dma.c", line 829 bad length 0x20004 + 0x4000 > 0x22000 [ 2.0799806] cpu0: Begin traceback... [ 2.0799806] vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:291 [ 2.0799806] _sub_D_65535_0() at netbsd:_sub_D_65535_0+-0x2353f [ 2.0799806] bus_dmamap_sync() at netbsd:bus_dmamap_sync+0x365 _bus_dmamap_sync sys/arch/x86/x86/bus_dma.c:829 [inline] [ 2.0799806] bus_dmamap_sync() at netbsd:bus_dmamap_sync+0x365 sys/arch/x86/x86/bus_dma.c:1389 [ 2.0799806] virtio_enqueue_commit() at netbsd:virtio_enqueue_commit+0x3df sys/dev/pci/virtio.c:1174 [ 2.0799806] vioscsi_scsipi_request() at netbsd:vioscsi_scsipi_request+0x7fd sys/dev/pci/vioscsi.c:426 [ 2.0799806] scsipi_adapter_request() at netbsd:scsipi_adapter_request+0x9e sys/dev/scsipi/scsipi_base.c:2834 [ 2.0799806] scsipi_run_queue() at netbsd:scsipi_run_queue+0x376 sys/dev/scsipi/scsipi_base.c:2090 [ 2.0799806] scsipi_execute_xs() at netbsd:scsipi_execute_xs+0x57b sys/dev/scsipi/scsipi_base.c:2310 [ 2.0799806] scsipi_command() at netbsd:scsipi_command+0x135 sys/dev/scsipi/scsipiconf.c:107 [ 2.0799806] scsipi_inquire() at netbsd:scsipi_inquire+0xfd sys/dev/scsipi/scsipi_base.c:1221 [ 2.0799806] scsi_probe_bus() at netbsd:scsi_probe_bus+0x3dd scsi_report_luns sys/dev/scsipi/scsiconf.c:358 [inline] [ 2.0799806] scsi_probe_bus() at netbsd:scsi_probe_bus+0x3dd scsi_discover_luns sys/dev/scsipi/scsiconf.c:435 [inline] [ 2.0799806] scsi_probe_bus() at netbsd:scsi_probe_bus+0x3dd sys/dev/scsipi/scsiconf.c:494 [ 2.0799806] scsibus_discover_thread() at netbsd:scsibus_discover_thread+0xbb scsibus_config sys/dev/scsipi/scsiconf.c:268 [inline] [ 2.0799806] scsibus_discover_thread() at netbsd:scsibus_discover_thread+0xbb sys/dev/scsipi/scsiconf.c:233 [ 2.0799806] cpu0: End traceback... [ 2.0799806] fatal breakpoint trap in supervisor mode [ 2.0799806] trap type 1 code 0 rip 0xffffffff8023230d cs 0x8 rflags 0x286 cr2 0 ilevel 0x8 rsp 0xffffa7022fadf730 [ 2.0799806] curlwp 0xffffa70010d76b00 pid 0.96 lowest kstack 0xffffa7022fad82c0 Stopped in pid 0.96 (system) at netbsd:breakpoint+0x5: leave breakpoint() at netbsd:breakpoint+0x5 db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:69 vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:291 _sub_D_65535_0() at netbsd:_sub_D_65535_0+-0x2353f bus_dmamap_sync() at netbsd:bus_dmamap_sync+0x365 _bus_dmamap_sync sys/arch/x86/x86/bus_dma.c:829 [inline] bus_dmamap_sync() at netbsd:bus_dmamap_sync+0x365 sys/arch/x86/x86/bus_dma.c:1389 virtio_enqueue_commit() at netbsd:virtio_enqueue_commit+0x3df sys/dev/pci/virtio.c:1174 vioscsi_scsipi_request() at netbsd:vioscsi_scsipi_request+0x7fd sys/dev/pci/vioscsi.c:426 scsipi_adapter_request() at netbsd:scsipi_adapter_request+0x9e sys/dev/scsipi/scsipi_base.c:2834 scsipi_run_queue() at netbsd:scsipi_run_queue+0x376 sys/dev/scsipi/scsipi_base.c:2090 scsipi_execute_xs() at netbsd:scsipi_execute_xs+0x57b sys/dev/scsipi/scsipi_base.c:2310 scsipi_command() at netbsd:scsipi_command+0x135 sys/dev/scsipi/scsipiconf.c:107 scsipi_inquire() at netbsd:scsipi_inquire+0xfd sys/dev/scsipi/scsipi_base.c:1221 scsi_probe_bus() at netbsd:scsi_probe_bus+0x3dd scsi_report_luns sys/dev/scsipi/scsiconf.c:358 [inline] scsi_probe_bus() at netbsd:scsi_probe_bus+0x3dd scsi_discover_luns sys/dev/scsipi/scsiconf.c:435 [inline] scsi_probe_bus() at netbsd:scsi_probe_bus+0x3dd sys/dev/scsipi/scsiconf.c:494 scsibus_discover_thread() at netbsd:scsibus_discover_thread+0xbb scsibus_config sys/dev/scsipi/scsiconf.c:268 [inline] scsibus_discover_thread() at netbsd:scsibus_discover_thread+0xbb sys/dev/scsipi/scsiconf.c:233 ds 0 es 0 fs 8ab3 gs 10eb rdi 5 rsi 0 rbp ffffa7022fadf730 rbx 1 --db_more--