[ 78.5815224] panic: LOCKDEBUG: Reader / writer lock error: rw_vector_enter,300: locking against myself [ 78.5915685] cpu1: Begin traceback... [ 78.6118506] vpanic() at netbsd:vpanic+0x2f0 sys/kern/subr_prf.c:288 [ 78.6920743] panic() at netbsd:panic+0x49 sys/kern/subr_prf.c:1116 [ 78.7523727] lockdebug_abort1() at netbsd:lockdebug_abort1+0x191 lockdebug_abort1 sys/kern/subr_lockdebug.c:814 [inline] [ 78.7523727] lockdebug_abort1() at netbsd:lockdebug_abort1+0x191 sys/kern/subr_lockdebug.c:796 [ 78.8026235] lockdebug_wantlock() at netbsd:lockdebug_wantlock+0x457 sys/kern/subr_lockdebug.c:489 [ 78.8629240] rw_enter() at netbsd:rw_enter+0x887 sys/kern/kern_rwlock.c:300 [ 78.9131720] genfs_lock() at netbsd:genfs_lock+0x220 sys/miscfs/genfs/genfs_vnops.c:397 [ 78.9634221] VOP_LOCK() at netbsd:VOP_LOCK+0x22a sys/kern/vnode_if.c:1632 [ 79.0237240] vn_lock() at netbsd:vn_lock+0x2ae sys/kern/vfs_vnops.c:1388 [ 79.0739714] union_getattr() at netbsd:union_getattr+0x3a9 sys/fs/union/union_vnops.c:872 [ 79.1242253] VOP_GETATTR() at netbsd:VOP_GETATTR+0x12f sys/kern/vnode_if.c:711 [ 79.1845765] union_readdirhook() at netbsd:union_readdirhook+0xd3 sys/fs/union/union_subr.c:1213 [ 79.2347713] vn_readdir() at netbsd:vn_readdir+0x340 sys/kern/vfs_vnops.c:621 [ 79.2850268] sys___getdents30() at netbsd:sys___getdents30+0x12c sys/kern/vfs_syscalls.c:4794 [ 79.3453243] syscall() at netbsd:syscall+0x28b sy_call sys/sys/syscallvar.h:65 [inline] [ 79.3453243] syscall() at netbsd:syscall+0x28b sy_invoke sys/sys/syscallvar.h:94 [inline] [ 79.3453243] syscall() at netbsd:syscall+0x28b sys/arch/x86/x86/syscall.c:137 [ 79.3654258] --- syscall (number 390) --- [ 79.3754704] netbsd:syscall+0x28b: [ 79.3855223] cpu1: End traceback... [ 79.3855223] fatal breakpoint trap in supervisor mode [ 79.3955706] trap type 1 code 0 rip 0xffffffff80235475 cs 0x8 rflags 0x246 cr2 0x783dc71e4000 ilevel 0 rsp 0xffff8f824838b8c0 [ 79.4056196] curlwp 0xffff8225125c2bc0 pid 676.676 lowest kstack 0xffff8f82483872c0 Stopped in pid 676.676 (syz-executor.3) at netbsd:breakpoint+0x5: leave ? breakpoint() at netbsd:breakpoint+0x5 db_panic() at netbsd:db_panic+0xec sys/ddb/db_panic.c:71 vpanic() at netbsd:vpanic+0x2f0 sys/kern/subr_prf.c:288 panic() at netbsd:panic+0x49 sys/kern/subr_prf.c:1116 lockdebug_abort1() at netbsd:lockdebug_abort1+0x191 lockdebug_abort1 sys/kern/subr_lockdebug.c:814 [inline] lockdebug_abort1() at netbsd:lockdebug_abort1+0x191 sys/kern/subr_lockdebug.c:796 lockdebug_wantlock() at netbsd:lockdebug_wantlock+0x457 sys/kern/subr_lockdebug.c:489 rw_enter() at netbsd:rw_enter+0x887 sys/kern/kern_rwlock.c:300 genfs_lock() at netbsd:genfs_lock+0x220 sys/miscfs/genfs/genfs_vnops.c:397 VOP_LOCK() at netbsd:VOP_LOCK+0x22a sys/kern/vnode_if.c:1632 vn_lock() at netbsd:vn_lock+0x2ae sys/kern/vfs_vnops.c:1388 union_getattr() at netbsd:union_getattr+0x3a9 sys/fs/union/union_vnops.c:872 VOP_GETATTR() at netbsd:VOP_GETATTR+0x12f sys/kern/vnode_if.c:711 union_readdirhook() at netbsd:union_readdirhook+0xd3 sys/fs/union/union_subr.c:1213 vn_readdir() at netbsd:vn_readdir+0x340 sys/kern/vfs_vnops.c:621 sys___getdents30() at netbsd:sys___getdents30+0x12c sys/kern/vfs_syscalls.c:4794 syscall() at netbsd:syscall+0x28b sy_call sys/sys/syscallvar.h:65 [inline] syscall() at netbsd:syscall+0x28b sy_invoke sys/sys/syscallvar.h:94 [inline] syscall() at netbsd:syscall+0x28b sys/arch/x86/x86/syscall.c:137 --- syscall (number 390) --- netbsd:syscall+0x28b: Panic string: LOCKDEBUG: Reader / writer lock error: rw_vector_enter,300: locking against myself PID LID S CPU FLAGS STRUCT LWP * NAME WAIT 1354 3405 3 0 0 ffff822505948500 syz-executor.0 rwlock 1354 3276 3 0 0 ffff82250db83180 syz-executor.0 biolock 1354 1354 2 0 10000000 ffff8225146201c0 syz-executor.0 1070 3503 2 0 40000 ffff8225125c2780 syz-executor.1 1070 1070 2 0 10040000 ffff822514fac540 syz-executor.1 3501 1227 3 1 0 ffff822514620600 syz-executor.5 rwlock 3501 1352 3 1 180 ffff82250db835c0 syz-executor.5 parked 3501 1478 3 1 0 ffff82250c7cd9c0 syz-executor.5 rwlock 3501 324 3 1 0 ffff82250c7cd140 syz-executor.5 rwlock 3501 322 3 1 0 ffff822505d94a80 syz-executor.5 rwlock 3501 1344 3 1 0 ffff82251213b300 syz-executor.5 rwlock 3501 830 3 1 0 ffff82250ac10900 syz-executor.5 rwlock 3501 2620 3 1 0 ffff822512629b40 syz-executor.5 rwlock 3501 3129 2 1 0 ffff82250ac10080 syz-executor.5 3501 4022 3 1 180 ffff8225125de480 syz-executor.5 parked 3501 1332 3 0 180 ffff822514fac100 syz-executor.5 parked 3501 3501 2 1 10040000 ffff822504fe5080 syz-executor.5 298 298 2 0 10040000 ffff822504fe54c0 syz-executor.4 676 > 676 7 1 100 ffff8225125c2bc0 syz-executor.3 2885 2885 2 0 0 ffff8225110d6b00 syz-executor.5 2892 2892 2 0 0 ffff822514830940 syz-executor.0 3638 3638 2 0 0 ffff822514830500 syz-executor.1 2476 2476 3 0 180 ffff822505948940 syz-executor.4 parked 2336 2336 3 0 180 ffff822512629700 syz-executor.4 parked 2615 2615 3 0 180 ffff8225110d66c0 syz-executor.4 parked 3167 3167 2 0 0 ffff82251213b740 syz-executor.4 2142 2142 3 1 180 ffff822503e96ac0 init nanoslp 2483 2483 3 1 180 ffff82250ac104c0 syz-executor.0 parked 2235 2013 3 1 1100000 ffff82250651f240 syz-executor.2 rwlock 2235 > 2492 7 0 1140000 ffff822504337b40 syz-executor.2 2235 2235 2 0 10000040 ffff8225125c2340 syz-executor.2 1614 1614 3 0 180 ffff82250500b040 syz-executor.1 parked 1233 464 2 1 0 ffff8225110d6280 syz-fuzzer 1233 1200 3 1 180 ffff822505960100 syz-fuzzer parked 1233 1205 3 0 1c0 ffff82250500b480 syz-fuzzer parked 1233 1204 3 0 180 ffff822504644340 syz-fuzzer wait 1233 1240 3 1 180 ffff8225046d99c0 syz-fuzzer wait 1233 929 3 1 180 ffff8225051d5a00 syz-fuzzer wait 1233 942 3 0 180 ffff822504337700 syz-fuzzer parked 1233 1243 3 0 180 ffff8225051d55c0 syz-fuzzer parked 1233 1242 3 0 180 ffff8225041bcb00 syz-fuzzer wait 1233 1120 3 0 180 ffff822505c8e1c0 syz-fuzzer parked 1233 1224 3 1 180 ffff822505960540 syz-fuzzer wait 1233 1226 3 1 180 ffff822505c8e600 syz-fuzzer parked 1233 1233 3 0 180 ffff822503e4b640 syz-fuzzer wait 1237 1237 3 0 180 ffff822505c8ea40 sshd select 1255 1255 3 1 180 ffff822505d94640 getty nanoslp 1004 1004 3 0 180 ffff8225041bc280 getty nanoslp 1216 1216 3 1 180 ffff8225041bc6c0 getty nanoslp 1103 1103 3 0 180 ffff822505d94200 sshd select 1094 1094 3 0 180 ffff8225046d9140 powerd kqueue 702 702 3 0 180 ffff822504496b80 syslogd kqueue 747 747 3 0 180 ffff822504644780 dhcpcd poll 742 742 3 1 180 ffff822504496740 dhcpcd poll 466 466 3 0 180 ffff822505960980 dhcpcd poll 598 598 3 1 180 ffff822504fe5900 dhcpcd poll 292 292 3 0 180 ffff8225043372c0 dhcpcd poll 485 485 3 0 180 ffff822504496300 dhcpcd poll 291 291 3 0 180 ffff822504644bc0 dhcpcd poll 1 1 3 1 180 ffff8224fbc9c140 init wait 0 296 5 0 200 ffff8225126292c0 (zombie) 0 3420 3 0 200 ffff82250500b8c0 poolthread pooljob 0 2922 3 0 200 ffff8225125de8c0 ktrace ktrwait 0 1969 3 0 200 ffff82251213bb80 ktrace ktrwait 0 985 3 0 200 ffff822503e4ba80 physiod physiod 0 196 2 0 240 ffff822503e96680 ioflush 0 195 3 0 200 ffff8224fbaff740 pooldrain pooldrain 0 194 3 1 200 ffff822503e96240 pgdaemon pgdaemon 0 170 3 1 200 ffff822503e4b200 usb7 usbevt 0 169 3 1 200 ffff822500d9ea40 usb6 usbevt 0 168 3 1 200 ffff822500d9e600 usb5 usbevt 0 167 3 0 200 ffff822500d9e1c0 usb4 usbevt 0 166 3 0 200 ffff8224fdd31a00 usb3 usbevt 0 165 3 1 200 ffff8224fdd315c0 usb2 usbevt 0 31 2 1 240 ffff8224fdd31180 usb1 0 63 3 1 200 ffff8224fbc9c9c0 usb0 usbevt 0 126 3 1 200 ffff8224fbaffb80 usbtask-dr usbtsk 0 125 3 1 200 ffff8224fbbde340 usbtask-hc usbtsk 0 124 3 0 200 ffff8224fa095b00 swwreboot swwreboot 0 123 3 0 200 ffff8224fbc9c580 npfgc0 npfgcw 0 122 3 1 200 ffff8224fbc6a980 rt_free rt_free 0 121 3 1 200 ffff8224fbc6a540 unpgc unpgc 0 120 2 1 200 ffff8224fbc6a100 key_timehandler 0 119 3 1 200 ffff8224fbc45940 icmp6_wqinput/1 icmp6_wqinput 0 118 3 0 200 ffff8224fbc45500 icmp6_wqinput/0 icmp6_wqinput 0 117 2 1 200 ffff8224fbc450c0 nd6_timer 0 116 3 1 200 ffff8224fbc40900 carp6_wqinput/1 carp6_wqinput 0 115 3 0 200 ffff8224fbc404c0 carp6_wqinput/0 carp6_wqinput 0 114 3 1 200 ffff8224fbc40080 carp_wqinput/1 carp_wqinput 0 113 3 0 200 ffff8224fbc1b8c0 carp_wqinput/0 carp_wqinput 0 112 3 1 200 ffff8224fbc1b480 icmp_wqinput/1 icmp_wqinput 0 111 3 0 200 ffff8224fbc1b040 icmp_wqinput/0 icmp_wqinput 0 110 3 0 200 ffff8224fbbdebc0 rt_timer rt_timer 0 109 3 0 200 ffff8224fbbde780 vmem_rehash vmem_rehash 0 100 3 0 200 ffff8224fbaff300 entbutler entropy 0 99 3 0 200 ffff8224fb53eb40 viomb balloon 0 98 3 1 200 ffff8224fb53e700 vioif0_txrx/1 vioif0_txrx 0 97 3 0 200 ffff8224fb53e2c0 vioif0_txrx/0 vioif0_txrx 0 30 3 1 200 ffff8224fa0956c0 scsibus0 sccomp 0 29 3 0 200 ffff8224fa095280 pms0 pmsreset 0 28 3 1 200 ffff8224f9fb5ac0 xcall/1 xcall 0 27 1 1 200 ffff8224f9fb5680 softser/1 0 26 1 1 200 ffff8224f9fb5240 softclk/1 0 25 1 1 200 ffff8224f9f98a80 softbio/1 0 24 1 1 200 ffff8224f9f98640 softnet/1 0 23 1 1 201 ffff8224f9f98200 idle/1 0 22 3 1 200 ffff822628333a40 lnxsyswq lnxsyswq 0 21 3 1 200 ffff822628333600 lnxubdwq lnxubdwq 0 20 3 1 200 ffff8226283331c0 lnxpwrwq lnxpwrwq 0 19 3 1 200 ffff822628342a00 lnxlngwq lnxlngwq 0 18 3 1 200 ffff8226283425c0 lnxhipwq lnxhipwq 0 17 3 1 200 ffff822628342180 lnxrcugc lnxrcugc 0 16 3 0 200 ffff8226283599c0 sysmon smtaskq 0 15 3 1 200 ffff822628359580 pmfsuspend pmfsuspend 0 14 3 1 200 ffff822628359140 pmfevent pmfevent 0 13 3 0 200 ffff82262836c980 sopendfree sopendfr 0 12 3 0 200 ffff82262836c540 ifwdog ifwdog 0 11 3 1 200 ffff82262836c100 iflnkst iflnkst 0 10 3 1 200 ffff822629397940 nfssilly nfssilly 0 9 3 1 200 ffff822629397500 pooldisp pooldisp 0 8 3 1 200 ffff8226293970c0 modunload mod_unld 0 7 3 0 200 ffff8226293c2900 xcall/0 xcall 0 6 1 0 200 ffff8226293c24c0 softser/0 0 5 1 0 200 ffff8226293c2080 softclk/0 0 4 1 0 200 ffff8226293ed8c0 softbio/0 0 3 1 0 200 ffff8226293ed480 softnet/0 0 2 1 0 201 ffff8226293ed040 idle/0 0 0 2 0 200 ffffffff86795cc0 swapper [Locks tracked through LWPs] ****** LWP 1070.3503 (syz-executor.1) @ 0xffff8225125c2780, l_stat=2 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:vhci_attach+0x2b2 sys/dev/usb/vhci.c:1283) lock address : ffff8f800f9776f0 type : sleep/adaptive initialized : netbsd:vhci_attach+0x2b2 shared holds : 0 exclusive: 0 shares wanted: 0 exclusive: 1 relevant cpu : 0 last held: 0 relevant lwp : 0xffff8225125c2780 last held: 000000000000000000 last locked : netbsd:vhci_fd_read+0x194 unlocked* : netbsd:vhci_fd_read+0x652 owner field : 000000000000000000 wait/spin: 0/0 Turnstile: no active turnstile for this lock. ****** LWP 3501.1227 (syz-executor.5) @ 0xffff822514620600, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:vcache_alloc+0xbf sys/kern/vfs_vnode.c:1438) lock address : ffff82250c752cc0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xbf shared holds : 0 exclusive: 1 shares wanted: 2 exclusive: 5 relevant cpu : 1 last held: 1 relevant lwp : 0xffff822514620600 last held: 0xffff82250ac10080 last locked* : netbsd:genfs_lock+0x220 unlocked : netbsd:genfs_unlock+0x50 owner/count : 0xffff82250ac10080 flags : 0x0000000000000007 Turnstile: => 2 waiting readers: 0xffff82250c7cd9c0 0xffff822514620600 => 5 waiting writers: 0xffff822512629b40 0xffff82250ac10900 0xffff82251213b300 0xffff822505d94a80 0xffff82250c7cd140 ****** LWP 3501.1478 (syz-executor.5) @ 0xffff82250c7cd9c0, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:vcache_alloc+0xbf sys/kern/vfs_vnode.c:1438) lock address : ffff82250c752cc0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xbf shared holds : 0 exclusive: 1 shares wanted: 2 exclusive: 5 relevant cpu : 1 last held: 1 relevant lwp : 0xffff82250c7cd9c0 last held: 0xffff82250ac10080 last locked* : netbsd:genfs_lock+0x220 unlocked : netbsd:genfs_unlock+0x50 owner/count : 0xffff82250ac10080 flags : 0x0000000000000007 Turnstile: => 2 waiting readers: 0xffff82250c7cd9c0 0xffff822514620600 => 5 waiting writers: 0xffff822512629b40 0xffff82250ac10900 0xffff82251213b300 0xffff822505d94a80 0xffff82250c7cd140 ****** LWP 3501.324 (syz-executor.5) @ 0xffff82250c7cd140, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:vcache_alloc+0xbf sys/kern/vfs_vnode.c:1438) lock address : ffff82250c752cc0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xbf shared holds : 0 exclusive: 1 shares wanted: 2 exclusive: 5 relevant cpu : 1 last held: 1 relevant lwp : 0xffff82250c7cd140 last held: 0xffff82250ac10080 last locked* : netbsd:genfs_lock+0x220 unlocked : netbsd:genfs_unlock+0x50 owner/count : 0xffff82250ac10080 flags : 0x0000000000000007 Turnstile: => 2 waiting readers: 0xffff82250c7cd9c0 0xffff822514620600 => 5 waiting writers: 0xffff822512629b40 0xffff82250ac10900 0xffff82251213b300 0xffff822505d94a80 0xffff82250c7cd140 ****** LWP 3501.322 (syz-executor.5) @ 0xffff822505d94a80, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:vcache_alloc+0xbf sys/kern/vfs_vnode.c:1438) lock address : ffff82250c752cc0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xbf shared holds : 0 exclusive: 1 shares wanted: 2 exclusive: 5 relevant cpu : 1 last held: 1 relevant lwp : 0xffff822505d94a80 last held: 0xffff82250ac10080 last locked* : netbsd:genfs_lock+0x220 unlocked : netbsd:genfs_unlock+0x50 owner/count : 0xffff82250ac10080 flags : 0x0000000000000007 Turnstile: => 2 waiting readers: 0xffff82250c7cd9c0 0xffff822514620600 => 5 waiting writers: 0xffff822512629b40 0xffff82250ac10900 0xffff82251213b300 0xffff822505d94a80 0xffff82250c7cd140 ****** LWP 3501.1344 (syz-executor.5) @ 0xffff82251213b300, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:vcache_alloc+0xbf sys/kern/vfs_vnode.c:1438) lock address : ffff82250c752cc0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xbf shared holds : 0 exclusive: 1 shares wanted: 2 exclusive: 5 relevant cpu : 1 last held: 1 relevant lwp : 0xffff82251213b300 last held: 0xffff82250ac10080 last locked* : netbsd:genfs_lock+0x220 unlocked : netbsd:genfs_unlock+0x50 owner/count : 0xffff82250ac10080 flags : 0x0000000000000007 Turnstile: => 2 waiting readers: 0xffff82250c7cd9c0 0xffff822514620600 => 5 waiting writers: 0xffff822512629b40 0xffff82250ac10900 0xffff82251213b300 0xffff822505d94a80 0xffff82250c7cd140 ****** LWP 3501.830 (syz-executor.5) @ 0xffff82250ac10900, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:vcache_alloc+0xbf sys/kern/vfs_vnode.c:1438) lock address : ffff82250c752cc0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xbf shared holds : 0 exclusive: 1 shares wanted: 2 exclusive: 5 relevant cpu : 1 last held: 1 relevant lwp : 0xffff82250ac10900 last held: 0xffff82250ac10080 last locked* : netbsd:genfs_lock+0x220 unlocked : netbsd:genfs_unlock+0x50 owner/count : 0xffff82250ac10080 flags : 0x0000000000000007 Turnstile: => 2 waiting readers: 0xffff82250c7cd9c0 0xffff822514620600 => 5 waiting writers: 0xffff822512629b40 0xffff82250ac10900 0xffff82251213b300 0xffff822505d94a80 0xffff82250c7cd140 ****** LWP 3501.2620 (syz-executor.5) @ 0xffff822512629b40, l_stat=3 *** Locks held: none *** Locks wanted: * Lock 0 (initialized at netbsd:vcache_alloc+0xbf sys/kern/vfs_vnode.c:1438) lock address : ffff82250c752cc0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xbf shared holds : 0 exclusive: 1 shares wanted: 2 exclusive: 5 relevant cpu : 1 last held: 1 relevant lwp : 0xffff822512629b40 last held: 0xffff82250ac10080 last locked* : netbsd:genfs_lock+0x220 unlocked : netbsd:genfs_unlock+0x50 owner/count : 0xffff82250ac10080 flags : 0x0000000000000007 Turnstile: => 2 waiting readers: 0xffff82250c7cd9c0 0xffff822514620600 => 5 waiting writers: 0xffff822512629b40 0xffff82250ac10900 0xffff82251213b300 0xffff822505d94a80 0xffff82250c7cd140 ****** LWP 3501.3129 (syz-executor.5) @ 0xffff82250ac10080, l_stat=2 *** Locks held: * Lock 0 (initialized at netbsd:vcache_alloc+0xbf sys/kern/vfs_vnode.c:1438) lock address : ffff82250c752cc0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xbf shared holds : 0 exclusive: 1 shares wanted: 2 exclusive: 5 relevant cpu : 1 last held: 1 relevant lwp : 0xffff82250ac10080 last held: 0xffff82250ac10080 last locked* : netbsd:genfs_lock+0x220 unlocked : netbsd:genfs_unlock+0x50 owner/count : 0xffff82250ac10080 flags : 0x0000000000000007 Turnstile: => 2 waiting readers: 0xffff82250c7cd9c0 0xffff822514620600 => 5 waiting writers: 0xffff822512629b40 0xffff82250ac10900 0xffff82251213b300 0xffff822505d94a80 0xffff82250c7cd140 * Lock 1 (initialized at netbsd:vcache_alloc+0xbf sys/kern/vfs_vnode.c:1438) lock address : ffff82250c7527c0 type : sleep/adaptive initialized : netbsd:vcache_alloc+0xbf shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 1 last held: 1 relevant lwp : 0xffff82250ac10080 last held: 0xffff82250ac10080 last locked* : netbsd:genfs_lock+0x220 unlocked : 0 owner/count : 0xffff82250ac10080 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. *** Locks wanted: none ****** LWP 298.298 (syz-executor.4) @ 0xffff822504fe54c0, l_stat=2 *** Locks held: * Lock 0 (initialized at netbsd:fork1+0x4c5 sys/kern/kern_fork.c:366) lock address : ffff822505a68c10 type : sleep/adaptive initialized : netbsd:fork1+0x4c5 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffff822504fe54c0 last held: 0xffff822504fe54c0 last locked* : netbsd:exit1+0x393 unlocked : 0 owner/count : 0xffff822504fe54c0 flags : 0x0000000000000004 Turnstile: no active turnstile for this lock. * Lock 1 (initialized at netbsd:pmap_ctor+0x6d sys/arch/x86/x86/pmap.c:2872) lock address : ffff82250ce3e180 type : sleep/adaptive initialized : netbsd:pmap_ctor+0x6d shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 relevant cpu : 0 last held: 0 relevant lwp : 0xffff822504fe54c0 last held: 0xffff822504fe54c0 last locked* : netbsd:pmap_remove_all+0xda unlocked : netbsd:pmap_remove+0x408 owner field : 0xffff822504fe54c0 wait/spin: 0/0 Turnstile: no active turnstile for this lock. *** Locks wanted: none ****** LWP 0.1601004916 () @ 0xffffffff845c1158, l_stat=1074030203 *** Locks held: [ 79.4056196] Skipping crash dump on recursive panic [ 79.4056196] panic: UBSan: Undefined Behavior in /syzkaller/managers/ci2-netbsd-kubsan/kernel/sys/kern/subr_lockdebug.c:874:43, member access within misaligned address 0x75 for type 'volatile struct lockdebug_t' which requires 8 byte alignment [ 79.4056196] cpu1: Begin traceback... [ 79.4056196] vpanic() at netbsd:vpanic+0x2f0 sys/kern/subr_prf.c:288 [ 79.4056196] Report() at netbsd:Report+0x3b sys/../common/lib/libc/misc/ubsan.c:1352 [ 79.4056196] HandleTypeMismatch() at netbsd:HandleTypeMismatch+0xfc sys/../common/lib/libc/misc/ubsan.c:432 [ 79.4056196] lockdebug_show_all_locks() at netbsd:lockdebug_show_all_locks+0x459 lockdebug_show_one sys/kern/subr_lockdebug.c:874 [inline] [ 79.4056196] lockdebug_show_all_locks() at netbsd:lockdebug_show_all_locks+0x459 lockdebug_show_all_locks_lwp sys/kern/subr_lockdebug.c:912 [inline] [ 79.4056196] lockdebug_show_all_locks() at netbsd:lockdebug_show_all_locks+0x459 sys/kern/subr_lockdebug.c:974 [ 79.4056196] db_command() at netbsd:db_command+0x240 sys/ddb/db_command.c:972 [ 79.4056196] db_command_loop() at netbsd:db_command_loop+0x221 db_execute_commandlist sys/ddb/db_command.c:468 [inline] [ 79.4056196] db_command_loop() at netbsd:db_command_loop+0x221 sys/ddb/db_command.c:618 [ 79.4056196] db_trap() at netbsd:db_trap+0x261 sys/ddb/db_trap.c:94 [ 79.4056196] kdb_trap() at netbsd:kdb_trap+0x1aa sys/arch/amd64/amd64/db_interface.c:252 [ 79.4056196] trap() at netbsd:trap+0x569 sys/arch/amd64/amd64/trap.c:314 [ 79.4056196] --- trap (number 1) --- [ 79.4056196] breakpoint() at netbsd:breakpoint+0x5 [ 79.4056196] db_panic() at netbsd:db_panic+0xec sys/ddb/db_panic.c:71 [ 79.4056196] vpanic() at netbsd:vpanic+0x2f0 sys/kern/subr_prf.c:288 [ 79.4056196] panic() at netbsd:panic+0x49 sys/kern/subr_prf.c:1116 [ 79.4056196] lockdebug_abort1() at netbsd:lockdebug_abort1+0x191 lockdebug_abort1 sys/kern/subr_lockdebug.c:814 [inline] [ 79.4056196] lockdebug_abort1() at netbsd:lockdebug_abort1+0x191 sys/kern/subr_lockdebug.c:796 [ 79.4056196] lockdebug_wantlock() at netbsd:lockdebug_wantlock+0x457 sys/kern/subr_lockdebug.c:489 [ 79.4056196] rw_enter() at netbsd:rw_enter+0x887 sys/kern/kern_rwlock.c:300 [ 79.4056196] genfs_lock() at netbsd:genfs_lock+0x220 sys/miscfs/genfs/genfs_vnops.c:397 [ 79.4056196] VOP_LOCK() at netbsd:VOP_LOCK+0x22a sys/kern/vnode_if.c:1632 [ 79.4056196] vn_lock() at netbsd:vn_lock+0x2ae sys/kern/vfs_vnops.c:1388 [ 79.4056196] union_getattr() at netbsd:union_getattr+0x3a9 sys/fs/union/union_vnops.c:872 [ 79.4056196] VOP_GETATTR() at netbsd:VOP_GETATTR+0x12f sys/kern/vnode_if.c:711 [ 79.4056196] union_readdirhook() at netbsd:union_readdirhook+0xd3 sys/fs/union/union_subr.c:1213 [ 79.4056196] vn_readdir() at netbsd:vn_readdir+0x340 sys/kern/vfs_vnops.c:621 [ 79.4056196] sys___getdents30() at netbsd:sys___getdents30+0x12c sys/kern/vfs_syscalls.c:4794 [ 79.4056196] syscall() at netbsd:syscall+0x28b sy_call sys/sys/syscallvar.h:65 [inline] [ 79.4056196] syscall() at netbsd:syscall+0x28b sy_invoke sys/sys/syscallvar.h:94 [inline] [ 79.4056196] syscall() at netbsd:syscall+0x28b sys/arch/x86/x86/syscall.c:137 [ 79.4056196] --- syscall (number 390) --- [ 79.4056196] netbsd:syscall+0x28b: [ 79.4056196] cpu1: End traceback... [ 79.4056196] fatal breakpoint trap in supervisor mode [ 79.4056196] trap type 1 code 0 rip 0xffffffff80235475 cs 0x8 rflags 0x246 cr2 0x783dc71e4000 ilevel 0x8 rsp 0xffff8f824838ad80 [ 79.4056196] curlwp 0xffff8225125c2bc0 pid 676.676 lowest kstack 0xffff8f82483872c0 Stopped in pid 676.676 (syz-executor.3) at netbsd:breakpoint+0x5: leave