[ 376.7603354] panic: LOCKDEBUG: Kernel lock error: _kernel_lock,239: spinout
[ 376.7674366] cpu0: Begin traceback...
[ 376.7735129] vpanic() at netbsd:vpanic+0x2f2 sys/kern/subr_prf.c:293
[ 376.8235161] panic() at netbsd:panic+0x49 sys/kern/subr_prf.c:1033
[ 376.8635186] lockdebug_abort1() at netbsd:lockdebug_abort1+0x194 lockdebug_abort1 sys/kern/subr_lockdebug.c:790 [inline]
[ 376.8635186] lockdebug_abort1() at netbsd:lockdebug_abort1+0x194 sys/kern/subr_lockdebug.c:772
[ 376.9035138] _kernel_lock() at netbsd:_kernel_lock+0x496 sys/kern/kern_lock.c:239
[ 376.9335142] frag6_fasttimo() at netbsd:frag6_fasttimo+0x24 sys/netinet6/frag6.c:657
[ 376.9635153] pffasttimo() at netbsd:pffasttimo+0xc6 sys/kern/uipc_domain.c:761
[ 377.0035126] callout_softclock() at netbsd:callout_softclock+0x25b sys/kern/kern_timeout.c:786
[ 377.0335132] softint_dispatch() at netbsd:softint_dispatch+0x3b5 x86_curcpu sys/arch/amd64/compile/obj/GENERIC_SYZKALLER/./machine/cpu.h:56 [inline]
[ 377.0335132] softint_dispatch() at netbsd:softint_dispatch+0x3b5 softint_execute sys/kern/kern_softint.c:573 [inline]
[ 377.0335132] softint_dispatch() at netbsd:softint_dispatch+0x3b5 sys/kern/kern_softint.c:818
[ 377.0535126] DDB lost frame for netbsd:Xsoftintr+0x4f, trying 0xffffd200af6920f0
[ 377.0835133] Xsoftintr() at netbsd:Xsoftintr+0x4f
[ 377.0940262] --- interrupt ---
[ 377.1035147] 0:
[ 377.1035147] cpu0: End traceback...
[ 377.1035147] fatal breakpoint trap in supervisor mode
[ 377.1139845] trap type 1 code 0 rip 0xffffffff80221ab5 cs 0x8 rflags 0x246 cr2 0xc0003e5dec ilevel 0x2 rsp 0xffffd200af691d80
[ 377.1251406] curlwp 0xfffffcd5389c2080 pid 0.5 lowest kstack 0xffffd200af68d2c0
[ 377.1251406] Skipping crash dump on recursive panic
[ 377.1251406] panic: UBSan: Undefined Behavior in /syzkaller/managers/ci2-netbsd-kubsan/kernel/sys/dev/wsfb/genfb.c:988:28, member access within null pointer of type 'struct genfb_private'

[ 377.1251406] cpu0: Begin traceback...
[ 377.1251406] vpanic() at netbsd:vpanic+0x2f2 sys/kern/subr_prf.c:293
[ 377.1251406] Report() at netbsd:Report+0x3b sys/../common/lib/libc/misc/ubsan.c:1352
[ 377.1251406] HandleTypeMismatch() at netbsd:HandleTypeMismatch+0x1fb sys/../common/lib/libc/misc/ubsan.c:429
[ 377.1251406] genfb_enable_polling() at netbsd:genfb_enable_polling+0x17e sys/dev/wsfb/genfb.c:988
[ 377.1251406] x86_genfb_ddb_trap_callback() at netbsd:x86_genfb_ddb_trap_callback+0x39 sys/arch/x86/x86/genfb_machdep.c:97
[ 377.1251406] db_trap() at netbsd:db_trap+0x68 sys/ddb/db_trap.c:73
[ 377.1251406] kdb_trap() at netbsd:kdb_trap+0x1aa sys/arch/amd64/amd64/db_interface.c:251
[ 377.1251406] trap() at netbsd:trap+0x5b2 sys/arch/amd64/amd64/trap.c:315
[ 377.1251406] --- trap (number 1) ---
[ 377.1251406] breakpoint() at netbsd:breakpoint+0x5
[ 377.1251406] db_panic() at netbsd:db_panic+0xec sys/ddb/db_panic.c:69
[ 377.1251406] vpanic() at netbsd:vpanic+0x2f2 sys/kern/subr_prf.c:293
[ 377.1251406] panic() at netbsd:panic+0x49 sys/kern/subr_prf.c:1033
[ 377.1251406] lockdebug_abort1() at netbsd:lockdebug_abort1+0x194 lockdebug_abort1 sys/kern/subr_lockdebug.c:790 [inline]
[ 377.1251406] lockdebug_abort1() at netbsd:lockdebug_abort1+0x194 sys/kern/subr_lockdebug.c:772
[ 377.1251406] _kernel_lock() at netbsd:_kernel_lock+0x496 sys/kern/kern_lock.c:239
[ 377.1251406] frag6_fasttimo() at netbsd:frag6_fasttimo+0x24 sys/netinet6/frag6.c:657
[ 377.1251406] pffasttimo() at netbsd:pffasttimo+0xc6 sys/kern/uipc_domain.c:761
[ 377.1251406] callout_softclock() at netbsd:callout_softclock+0x25b sys/kern/kern_timeout.c:786
[ 377.1251406] softint_dispatch() at netbsd:softint_dispatch+0x3b5 x86_curcpu sys/arch/amd64/compile/obj/GENERIC_SYZKALLER/./machine/cpu.h:56 [inline]
[ 377.1251406] softint_dispatch() at netbsd:softint_dispatch+0x3b5 softint_execute sys/kern/kern_softint.c:573 [inline]
[ 377.1251406] softint_dispatch() at netbsd:softint_dispatch+0x3b5 sys/kern/kern_softint.c:818
[ 377.1251406] DDB lost frame for netbsd:Xsoftintr+0x4f, trying 0xffffd200af6920f0
[ 377.1251406] Xsoftintr() at netbsd:Xsoftintr+0x4f
[ 377.1251406] --- interrupt ---
[ 377.1251406] 0:
[ 377.1251406] cpu0: End traceback...
[ 377.1251406] fatal breakpoint trap in supervisor mode
[ 377.1251406] trap type 1 code 0 rip 0xffffffff80221ab5 cs 0x8 rflags 0x246 cr2 0xc0003e5dec ilevel 0x8 rsp 0xffffd200af691450
[ 377.1251406] curlwp 0xfffffcd5389c2080 pid 0.5 lowest kstack 0xffffd200af68d2c0
[ 377.1251406] fatal page fault in supervisor mode
[ 377.1251406] trap type 6 code 0 rip 0xffffffff830b6b5b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd200af691080
[ 377.1251406] curlwp 0xfffffcd5389c2080 pid 0.5 lowest kstack 0xffffd200af68d2c0
kernel: page fault trap, code=0
[ 377.1251406] fatal page fault in supervisor mode
[ 377.1251406] trap type 6 code 0 rip 0xffffffff830b6b5b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd200af690cb0
[ 377.1251406] curlwp 0xfffffcd5389c2080 pid 0.5 lowest kstack 0xffffd200af68d2c0
kernel: page fault trap, code=0
[ 377.1251406] fatal page fault in supervisor mode
[ 377.1251406] trap type 6 code 0 rip 0xffffffff830b6b5b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd200af6908e0
[ 377.1251406] curlwp 0xfffffcd5389c2080 pid 0.5 lowest kstack 0xffffd200af68d2c0
kernel: page fault trap, code=0
[ 377.1251406] fatal page fault in supervisor mode
[ 377.1251406] trap type 6 code 0 rip 0xffffffff830b6b5b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd200af690510
[ 377.1251406] curlwp 0xfffffcd5389c2080 pid 0.5 lowest kstack 0xffffd200af68d2c0
kernel: page fault trap, code=0
[ 377.1251406] fatal page fault in supervisor mode
[ 377.1251406] trap type 6 code 0 rip 0xffffffff830b6b5b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd200af690140
[ 377.1251406] curlwp 0xfffffcd5389c2080 pid 0.5 lowest kstack 0xffffd200af68d2c0
kernel: page fault trap, code=0
[ 377.1251406] fatal page fault in supervisor mode
[ 377.1251406] trap type 6 code 0 rip 0xffffffff830b6b5b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd200af68fd70
[ 377.1251406] curlwp 0xfffffcd5389c2080 pid 0.5 lowest kstack 0xffffd200af68d2c0
kernel: page fault trap, code=0
[ 377.1251406] fatal page fault in supervisor mode
[ 377.1251406] trap type 6 code 0 rip 0xffffffff830b6b5b cs 0x8 rflags 0x10217 cr2 0x1e8 ilevel 0x8 rsp 0xffffd200af68f9a0
[ 377.1251406] curlwp 0xfffffcd5389c2080 pid 0.5 lowest kstack 0xffffd200af68d2c0
kernel: page fault trap, code=0