[ 62.8276248] panic: fpudna from kernel, ip 0xffffffff8026387b, trapframe 0xffffa380c7b13720 [ 62.8276248] cpu1: Begin traceback... [ 62.8576171] vpanic() at netbsd:vpanic+0xc9d [ 62.9076205] panic() at netbsd:panic+0x1b3 [ 62.9576159] fpudna() at netbsd:fpudna+0x176 [ 63.0076158] Xtrap07() at netbsd:Xtrap07+0xbf [ 63.0576174] fpu_save() at netbsd:fpu_save+0x320 fpu_area_save sys/arch/x86/x86/fpu.c:278 [inline] [ 63.0576174] fpu_save() at netbsd:fpu_save+0x320 fpu_save_lwp sys/arch/x86/x86/fpu.c:164 [inline] [ 63.0576174] fpu_save() at netbsd:fpu_save+0x320 sys/arch/x86/x86/fpu.c:177 [ 63.1076151] process_write_fpregs_xmm() at netbsd:process_write_fpregs_xmm+0x207 fpu_lwp_area sys/arch/x86/x86/fpu.c:149 [inline] [ 63.1076151] process_write_fpregs_xmm() at netbsd:process_write_fpregs_xmm+0x207 sys/arch/x86/x86/fpu.c:716 [ 63.1576145] cpu_setmcontext() at netbsd:cpu_setmcontext+0x9bd [ 63.2076147] setucontext() at netbsd:setucontext+0x3de sys/kern/kern_sig.c:789 [ 63.2576164] sys_setcontext() at netbsd:sys_setcontext+0x272 sys/kern/sys_sig.c:355 [ 63.3076138] syscall() at netbsd:syscall+0x576 sy_invoke sys/sys/syscallvar.h:94 [inline] [ 63.3076138] syscall() at netbsd:syscall+0x576 sys/arch/x86/x86/syscall.c:137 [ 63.3276162] --- syscall (number 824638709760 via SYS_syscall) --- [ 63.3476153] netbsd:syscall+0x576: [ 63.3476153] cpu1: End traceback... [ 63.3476153] fatal breakpoint trap in supervisor mode [ 63.3576132] trap type 1 code 0 rip 0xffffffff8023687d cs 0x8 rflags 0x86 cr2 0xc0004c2000 ilevel 0x6 rsp 0xffffa380c7b13510 [ 63.3676110] curlwp 0xffffa380134f2580 pid 1231.1106 lowest kstack 0xffffa380c7b0c2c0 Stopped in pid 1231.1106 (syz-execprog) at netbsd:breakpoint+0x5: leave ? breakpoint() at netbsd:breakpoint+0x5 vpanic() at netbsd:vpanic+0xc9d panic() at netbsd:panic+0x1b3 fpudna() at netbsd:fpudna+0x176 Xtrap07() at netbsd:Xtrap07+0xbf fpu_save() at netbsd:fpu_save+0x320 fpu_area_save sys/arch/x86/x86/fpu.c:278 [inline] fpu_save() at netbsd:fpu_save+0x320 fpu_save_lwp sys/arch/x86/x86/fpu.c:164 [inline] fpu_save() at netbsd:fpu_save+0x320 sys/arch/x86/x86/fpu.c:177 process_write_fpregs_xmm() at netbsd:process_write_fpregs_xmm+0x207 fpu_lwp_area sys/arch/x86/x86/fpu.c:149 [inline] process_write_fpregs_xmm() at netbsd:process_write_fpregs_xmm+0x207 sys/arch/x86/x86/fpu.c:716 cpu_setmcontext() at netbsd:cpu_setmcontext+0x9bd setucontext() at netbsd:setucontext+0x3de sys/kern/kern_sig.c:789 sys_setcontext() at netbsd:sys_setcontext+0x272 sys/kern/sys_sig.c:355 syscall() at netbsd:syscall+0x576 sy_invoke sys/sys/syscallvar.h:94 [inline] syscall() at netbsd:syscall+0x576 sys/arch/x86/x86/syscall.c:137 --- syscall (number 824638709760 via SYS_syscall) --- netbsd:syscall+0x576: Panic string: fpudna from kernel, ip 0xffffffff8026387b, trapframe 0xffffa380c7b13720 PID LID S CPU FLAGS STRUCT LWP * NAME WAIT 390 390 2 1 0 ffffa380136caac0 syz-execprog 392 392 3 0 0 ffffa380134f2140 syz-execprog biolock 387 387 2 1 1000100 ffffa38013551b80 syz-executor.0 2254 388 3 0 180 ffffa380136b3640 syz-executor.5 parked 2254 2254 2 0 10000000 ffffa3801383d6c0 syz-executor.5 2096 2096 2 0 0 ffffa380136ca240 syz-executor.5 1231 1638 3 0 180 ffffa380136ca680 syz-execprog parked 1231 1375 3 0 180 ffffa380135c9180 syz-execprog wait 1231 1212 3 1 180 ffffa380134f29c0 syz-execprog parked 1231 1229 2 1 0 ffffa380136b3200 syz-execprog 1231 1074 3 1 180 ffffa380135c95c0 syz-execprog pipe_rd 1231 > 1106 7 1 1000000 ffffa380134f2580 syz-execprog 1231 1236 3 0 180 ffffa38012c0f940 syz-execprog parked 1231 1239 3 0 180 ffffa38012c0f500 syz-execprog parked 1231 829 3 1 180 ffffa38012c0f0c0 syz-execprog parked 1231 1130 3 0 180 ffffa38012bf4900 syz-execprog parked 1231 1244 2 1 0 ffffa38012bf44c0 syz-execprog 1231 929 3 0 180 ffffa38012bf4080 syz-execprog wait 1231 449 2 0 140 ffffa38012550bc0 syz-execprog 1231 1231 3 0 180 ffffa38012311b00 syz-execprog parked 1235 1235 3 0 180 ffffa380123116c0 sshd select 1222 1222 3 1 180 ffffa3801233e2c0 getty nanoslp 1082 1082 3 0 180 ffffa38012311280 getty nanoslp 1224 1224 3 1 180 ffffa38012275ac0 getty nanoslp 1216 1216 3 0 180 ffffa380121d7200 getty ttyraw 1109 1109 3 0 180 ffffa38012520300 sshd select 1023 1023 3 0 180 ffffa38012b5e8c0 powerd kqueue 699 699 2 1 0 ffffa38012b5e480 syslogd 600 600 3 0 180 ffffa38012b5e040 dhcpcd poll 559 559 3 0 180 ffffa38012520740 dhcpcd poll 747 747 3 0 180 ffffa3801233e700 dhcpcd poll 603 603 3 0 180 ffffa38012550780 dhcpcd poll 292 292 3 0 180 ffffa38012550340 dhcpcd poll 485 485 3 0 180 ffffa3801233eb40 dhcpcd poll 291 291 3 0 180 ffffa38012520b80 dhcpcd poll 1 1 2 1 0 ffffa38011e53100 init 0 876 3 0 200 ffffa380121d7640 physiod physiod 0 196 3 1 200 ffffa38012275680 pooldrain pooldrain 0 195 2 0 240 ffffa38012275240 ioflush 0 194 3 0 200 ffffa380121d7a80 pgdaemon pgdaemon 0 167 3 1 200 ffffa380121a7a40 usb7 usbevt 0 172 3 0 200 ffffa380121a7600 usb6 usbevt 0 170 3 0 200 ffffa380121a71c0 usb5 usbevt 0 168 3 0 200 ffffa3801211ba00 usb4 usbevt 0 166 3 0 200 ffffa3801211b5c0 usb3 usbevt 0 165 3 0 200 ffffa3801211b180 usb2 usbevt 0 31 3 0 200 ffffa3801206b9c0 usb1 usbevt 0 63 3 1 200 ffffa3801206b580 usb0 usbevt 0 126 3 1 200 ffffa3801206b140 usbtask-dr usbtsk 0 125 3 1 200 ffffa38011e53980 usbtask-hc usbtsk 0 124 3 0 200 ffffa380103d3b00 swwreboot swwreboot 0 123 3 1 200 ffffa38011e53540 npfgc0 npfgcw 0 122 3 1 200 ffffa38011e48940 rt_free rt_free 0 121 3 1 200 ffffa38011e48500 unpgc unpgc 0 120 3 0 200 ffffa38011e480c0 key_timehandler key_timehandler 0 119 3 1 200 ffffa38011e41900 icmp6_wqinput/1 icmp6_wqinput 0 118 3 0 200 ffffa38011e414c0 icmp6_wqinput/0 icmp6_wqinput 0 117 3 0 200 ffffa38011e41080 nd6_timer nd6_timer 0 116 3 1 200 ffffa38011ccd8c0 carp6_wqinput/1 carp6_wqinput 0 115 3 0 200 ffffa38011ccd480 carp6_wqinput/0 carp6_wqinput 0 114 3 1 200 ffffa38011cc9b80 carp_wqinput/1 carp_wqinput 0 113 3 0 200 ffffa38011cc9740 carp_wqinput/0 carp_wqinput 0 112 3 1 200 ffffa38011cccbc0 icmp_wqinput/1 icmp_wqinput 0 111 3 0 200 ffffa38011ccc780 icmp_wqinput/0 icmp_wqinput 0 110 3 0 200 ffffa38011ccd040 rt_timer rt_timer 0 109 3 0 200 ffffa38011ccc340 vmem_rehash vmem_rehash 0 100 3 0 200 ffffa38011cc9300 entbutler entropy 0 99 3 0 200 ffffa380117c0b40 viomb balloon 0 98 3 1 200 ffffa380117c0700 vioif0_txrx/1 vioif0_txrx 0 97 3 0 200 ffffa380117c02c0 vioif0_txrx/0 vioif0_txrx 0 30 3 0 200 ffffa380103d36c0 scsibus0 sccomp 0 29 3 0 200 ffffa380103d3280 pms0 pmsreset 0 28 3 1 200 ffffa380103baac0 xcall/1 xcall 0 27 1 1 200 ffffa380103ba680 softser/1 0 26 1 1 200 ffffa380103ba240 softclk/1 0 25 1 1 200 ffffa380103b7a80 softbio/1 0 24 1 1 200 ffffa380103b7640 softnet/1 0 23 1 1 201 ffffa380103b7200 idle/1 0 22 3 0 200 ffffa3800f1d2a40 lnxsyswq lnxsyswq 0 21 3 0 200 ffffa3800f1d2600 lnxubdwq lnxubdwq 0 20 3 0 200 ffffa3800f1d21c0 lnxpwrwq lnxpwrwq 0 19 3 0 200 ffffa3800f1d1a00 lnxlngwq lnxlngwq 0 18 3 0 200 ffffa3800f1d15c0 lnxhipwq lnxhipwq 0 17 3 0 200 ffffa3800f1d1180 lnxrcugc lnxrcugc 0 16 3 0 200 ffffa3800f1ca9c0 sysmon smtaskq 0 15 3 0 200 ffffa3800f1ca580 pmfsuspend pmfsuspend 0 14 3 0 200 ffffa3800f1ca140 pmfevent pmfevent 0 13 3 0 200 ffffa3800f1c8980 sopendfree sopendfr 0 12 3 0 200 ffffa3800f1c8540 ifwdog ifwdog 0 11 3 1 200 ffffa3800f1c8100 iflnkst iflnkst 0 10 3 0 200 ffffa3800f1be940 nfssilly nfssilly 0 9 3 0 200 ffffa3800f1be500 pooldisp pooldisp 0 8 3 1 200 ffffa3800f1be0c0 modunload mod_unld 0 7 3 0 200 ffffa3800ebc9900 xcall/0 xcall 0 6 1 0 200 ffffa3800ebc94c0 softser/0 0 5 1 0 200 ffffa3800ebc9080 softclk/0 0 4 1 0 200 ffffa3800ebc88c0 softbio/0 0 3 1 0 200 ffffa3800ebc8480 softnet/0 0 2 1 0 201 ffffa3800ebc8040 idle/0 0 > 0 7 0 240 ffffffff86a6f900 swapper [Locks tracked through LWPs] ****** LWP 390.390 (syz-execprog) @ 0xffffa380136caac0, l_stat=2 *** Locks held: * Lock 0 (initialized at netbsd:fork1+0x972 sys/kern/kern_fork.c:366) lock address : ffffa380123186d0 type : sleep/adaptive initialized : netbsd:fork1+0x972 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 1 last held: 1 relevant lwp : 0xffffa380136caac0 last held: 0xffffa380136caac0 last locked* : netbsd:execve_loadvm+0x708 unlocked : 0 owner/count : 0xffffa380136caac0 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. *** Locks wanted: none ****** LWP 392.392 (syz-execprog) @ 0xffffa380134f2140, l_stat=3 *** Locks held: * Lock 0 (initialized at netbsd:fork1+0x972 sys/kern/kern_fork.c:366) lock address : ffffa38012318a10 type : sleep/adaptive initialized : netbsd:fork1+0x972 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffa380134f2140 last held: 0xffffa380134f2140 last locked* : netbsd:execve_loadvm+0x708 unlocked : 0 owner/count : 0xffffa380134f2140 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. *** Locks wanted: * Lock 0 (initialized at netbsd:pool_init+0x2061 sys/kern/subr_pool.c:981) lock address : netbsd:uvm_map_entry_cache+0xb0 type : sleep/adaptive initialized : netbsd:pool_init+0x2061 shared holds : 0 exclusive: 0 shares wanted: 0 exclusive: 1 relevant cpu : 0 last held: 1 relevant lwp : 0xffffa380134f2140 last held: 000000000000000000 last locked : netbsd:pool_put+0x9b unlocked* : netbsd:pool_put+0x3270 owner field : 000000000000000000 wait/spin: 0/0 Turnstile: no active turnstile for this lock. ****** LWP 2254.2254 (syz-executor.5) @ 0xffffa3801383d6c0, l_stat=2 *** Locks held: * Lock 0 (initialized at netbsd:amap_ctor+0x89 sys/uvm/uvm_amap.c:270) lock address : ffffa380134c3840 type : sleep/adaptive initialized : netbsd:amap_ctor+0x89 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffa3801383d6c0 last held: 0xffffa3801383d6c0 last locked* : netbsd:uvm_fault_internal+0x1d08 unlocked : netbsd:uvm_fault_upper_enter+0x12e9 owner/count : 0xffffa3801383d6c0 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. *** Locks wanted: * Lock 0 (initialized at netbsd:pmap_ctor+0xc0 sys/arch/x86/x86/pmap.c:2872) lock address : ffffa38012bfd540 type : sleep/adaptive initialized : netbsd:pmap_ctor+0xc0 shared holds : 0 exclusive: 0 shares wanted: 0 exclusive: 1 relevant cpu : 0 last held: 0 relevant lwp : 0xffffa3801383d6c0 last held: 000000000000000000 last locked : netbsd:pmap_extract+0x130 unlocked* : netbsd:pmap_extract+0x72d owner field : 0xffffa3801383d6c0 wait/spin: 0/0 Turnstile: no active turnstile for this lock. ****** LWP 1231.1229 (syz-execprog) @ 0xffffa380136b3200, l_stat=2 *** Locks held: * Lock 0 (initialized at netbsd:vcache_alloc+0xc6 sys/kern/vfs_vnode.c:1438) lock address : ffffa380133dd200 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xc6 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 1 last held: 1 relevant lwp : 0xffffa380136b3200 last held: 0xffffa380136b3200 last locked* : netbsd:genfs_lock+0x1d6 unlocked : netbsd:genfs_unlock+0x55 owner/count : 0xffffa380136b3200 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. * Lock 1 (initialized at netbsd:vcache_alloc+0xc6 sys/kern/vfs_vnode.c:1438) lock address : ffffa380134d78c0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xc6 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 1 last held: 1 relevant lwp : 0xffffa380136b3200 last held: 0xffffa380136b3200 last locked* : netbsd:genfs_lock+0x1d6 unlocked : netbsd:genfs_unlock+0x55 owner/count : 0xffffa380136b3200 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. * Lock 2 (initialized at netbsd:genfs_node_init+0x6e sys/miscfs/genfs/genfs_vnops.c:475) lock address : ffffa380134c6dd8 type : sleep/adaptive initialized : netbsd:genfs_node_init+0x6e shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 1 last held: 1 relevant lwp : 0xffffa380136b3200 last held: 0xffffa380136b3200 last locked* : netbsd:ffs_truncate+0x399a unlocked : 0 owner/count : 0xffffa380136b3200 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. *** Locks wanted: none ****** LWP 559.559 (dhcpcd) @ 0xffffa38012520740, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:module_hook_init+0x43 sys/kern/kern_module_hook.c:132) lock address : netbsd:module_hook type : sleep/adaptive initialized : netbsd:module_hook_init+0x43 shared holds : 0 exclusive: 0 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffa38012520740 last held: 000000000000000000 last locked : 0 unlocked* : 0 owner field : 000000000000000000 wait/spin: 0/0 Turnstile: no active turnstile for this lock. ****** LWP 747.747 (dhcpcd) @ 0xffffa3801233e700, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:module_hook_init+0x43 sys/kern/kern_module_hook.c:132) lock address : netbsd:module_hook type : sleep/adaptive initialized : netbsd:module_hook_init+0x43 shared holds : 0 exclusive: 0 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffa3801233e700 last held: 000000000000000000 last locked : 0 unlocked* : 0 owner field : 000000000000000000 wait/spin: 0/0 Turnstile: no active turnstile for this lock. ****** LWP 485.485 (dhcpcd) @ 0xffffa3801233eb40, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:module_hook_init+0x43 sys/kern/kern_module_hook.c:132) lock address : netbsd:module_hook type : sleep/adaptive initialized : netbsd:module_hook_init+0x43 shared holds : 0 exclusive: 0 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffffa3801233eb40 last held: 000000000000000000 last locked : 0 unlocked* : 0 owner field : 000000000000000000 wait/spin: 0/0 Turnstile: no active turnstile for this lock. ****** LWP 291.291 (dhcpcd) @ 0xffffa38012520b80, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:module_hook_init+0x43 sys/kern/kern_module_hook.c:132)