Sat Jan 18 09:46:38 UTC 2020 NetBSD/amd64 (ci2-netbsd-3.c.syzkaller.internal) (console) login: Jan 18 09:46:41 ci2-netbsd-3 getty[505]: /dev/ttyE3: Device not configured Jan 18 09:46:41 ci2-netbsd-3 getty[536]: /dev/ttyE2: Device not configured Jan 18 09:46:41 ci2-netbsd-3 getty[431]: /dev/ttyE1: Device not configured Warning: Permanently added '10.128.10.53' (ECDSA) to the list of known hosts. 2020/01/18 09:46:53 fuzzer started 2020/01/18 09:46:53 dialing manager at 10.128.0.105:44985 2020/01/18 09:46:53 syscalls: 215 2020/01/18 09:46:53 code coverage: enabled 2020/01/18 09:46:53 comparison tracing: enabled 2020/01/18 09:46:53 extra coverage: support is not implemented in syzkaller 2020/01/18 09:46:53 setuid sandbox: support is not implemented in syzkaller 2020/01/18 09:46:53 namespace sandbox: support is not implemented in syzkaller 2020/01/18 09:46:53 Android sandbox: support is not implemented in syzkaller 2020/01/18 09:46:53 fault injection: support is not implemented in syzkaller 2020/01/18 09:46:53 leak checking: support is not implemented in syzkaller 2020/01/18 09:46:53 net packet injection: support is not implemented in syzkaller 2020/01/18 09:46:53 net device setup: support is not implemented in syzkaller 2020/01/18 09:46:53 concurrency sanitizer: support is not implemented in syzkaller 2020/01/18 09:46:53 devlink PCI setup: support is not implemented in syzkaller 09:46:59 executing program 0: syz_emit_ethernet(0x140, &(0x7f0000000200)) 09:47:00 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x184) 09:47:00 executing program 2: syz_emit_ethernet(0x3e, &(0x7f0000000000)) 09:47:00 executing program 3: syz_emit_ethernet(0x3e, &(0x7f0000000200)) 09:47:02 executing program 4: syz_emit_ethernet(0x2a, &(0x7f0000000040)) 09:47:03 executing program 5: r0 = socket(0x10, 0x3, 0x0) sendto(r0, 0x0, 0x0, 0x958, &(0x7f0000000040), 0x0) 09:47:03 executing program 0: 09:47:04 executing program 0: 09:47:04 executing program 3: 09:47:04 executing program 3: 09:47:04 executing program 0: 09:47:04 executing program 3: 09:47:04 executing program 3: 09:47:04 executing program 2: 09:47:04 executing program 1: 09:47:04 executing program 0: 09:47:05 executing program 4: munlock(&(0x7f0000ffc000/0x3000)=nil, 0x3000) mlock(&(0x7f0000ffa000/0x3000)=nil, 0x3000) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xd49f275d97cc01bb, 0x1810, 0xffffffffffffffff, 0x0, 0x0) r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0xc) r1 = __clone(0x0, &(0x7f00000004c0)) wait4(r1, 0x0, 0x69, 0x0) fcntl$setown(r0, 0x6, r1) 09:47:05 executing program 2: 09:47:05 executing program 3: 09:47:05 executing program 5: __clone(0x0, 0x0) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r0) sendmsg$unix(r0, &(0x7f0000000600)={&(0x7f0000000000)=@abs={0x0, 0x0, 0x2}, 0x8, &(0x7f0000000500)=[{&(0x7f0000000040)="6dd3488ee360e661312d297927cc4d9fa0d756fc", 0x14}, {&(0x7f0000000080)="e16569813e8b75ddfcd96e417610aee77dc50d0f8898a76b1eab2cbd420b024b483986531e28f1eb873d4027b5d0dc", 0x2f}, {&(0x7f00000000c0)="51360b456102", 0x6}, {&(0x7f0000000100)="cca3760c37ebed7db548adccccd80b71f42b383ccba8557fa6d729a33fcc48cadcdf0c9322e070064bacdef4", 0x2c}, {&(0x7f0000000140)="7292efd893664c21d2db3e53ea903b2f422b98fdaebdc7bd27baf2e5959a5e39d1a18969570c2e607f956b4006ededa9010489e79ece6bdc88b1f414eef958008b7c4d7faf534bd56164bd07f04bf1d9c426a2bb7b03", 0x56}, {&(0x7f00000001c0)="3bcfd3eb6296be02f211b57421dae1b1b7333da48a02664c13f6d8f2ec5738974a307f64df942cc7c04a5d26c51b1c51258f038d953d7ea5cce83326a753e48e2293c2959e1c82c7f2edbe313c3959b7eb3ced4dfc34caee68c558363d2cb02f51fffcf37984a67d905cd424dd0687243b795abf510e46d2dd241f4847d9c32797cbee4754a5528f079c9f7ff995f21a883a6d08c287fc56a3ae7bfbd93c8afde60b4baed6dc03aabc48fa5ed24cbebf566aeddbb71da9c36811ee9ea33dfb511d506535d20200547d1bd012ad64755e3e9951", 0xd3}, {&(0x7f00000002c0)="0c7371229f893d349762277ab7d7760d26b9088dd5c53fcf92120d8a37db90a9d5f6a91e057cb4100eaa0255a169a1bd98f67ee3b0066d1df58cb4ebeeaa33c9d40b9462efa00aa3acd9ecea6e46f909b9e8a2c408fd3209d909b2383676a15a345a030af65eeea155e1c9f1a5ad2020098cb58ca263fccad8907f533245dee55a31bb244bd92b6be51ffe22ec29533c8dc931cfe02224c358296737978ad51de5c84dd99ad2ac75943a6574aecdd3bfe18f60c08505aa7807eda0be983ce6f47ca88bef2cce605efe", 0xc9}, {&(0x7f00000003c0)="b04b049bf63eccb35c62799f4a99867fb3b6cd82", 0x14}, {&(0x7f0000000400)="c74b46a70bd311de7f5bd862f45dd07839ee8886aa8e325c62b16719392eccf8f42807fd9ae12aa7eb661dd52d3b009fa95f6b3293b43e39501ef6a4bed703981420f8a6b0d6debeeb7ecfbce71c68e581b16bc8d6e2eae9564032a5d0ffc38e7b916dcd2a45af7e998088096c9a7695febafbce6b2241442cf15b33a20abe718963d7680f928bfec72730cfa2e5b1a882b949aac302b99fd1e2f19ffae42f2e7007a652a89d1460533f94dc9ce84d4370986db30d1d9c523cc7772bba88a1bf0ac2cc7a5c5ba25ae79b761e01e5a612ab005fedc9c7bac96902440a5164ae7794e72d598e072a8063543659", 0xec}], 0x9, &(0x7f00000005c0), 0x0, 0x800}, 0x0) wait4(0x0, 0x0, 0x2000b, 0x0) 09:47:05 executing program 0: 09:47:05 executing program 4: stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x2000, 0xffffffffffffffff) open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x12) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) fcntl$setstatus(r0, 0x4, 0x48) 09:47:05 executing program 1: 09:47:06 executing program 2: __clone(0x0, 0x0) getpgrp() wait4(0x0, 0x0, 0x2000b, 0x0) 09:47:06 executing program 3: r0 = open$dir(&(0x7f0000000880)='./file0\x00', 0x40001, 0x80) symlinkat(&(0x7f0000000840)='./file0\x00', r0, &(0x7f00000008c0)='./file0\x00') r1 = socket(0x18, 0x1, 0x0) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = open(&(0x7f0000000280)='./file0\x00', 0x660140, 0x40) recvmsg(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000002c0)=""/237, 0xed}, {&(0x7f00000003c0)=""/169, 0xa9}], 0x2, &(0x7f00000004c0)=""/143, 0x8f}, 0x40) close(r2) setsockopt$sock_int(r2, 0xffff, 0x200, &(0x7f0000000000)=0x1000, 0x4) setsockopt(r1, 0x80000000000029, 0x2a, &(0x7f0000000000), 0x4) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r4) paccept(r4, &(0x7f0000000900)=@in6, &(0x7f0000000940)=0xc, 0x0) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r5) r6 = paccept(r5, &(0x7f0000000180)=@in6, &(0x7f0000000080)=0xffffffffffffffd5, 0x50000000) recvmsg(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000600)=""/178, 0xb2}, {&(0x7f00000006c0)=""/104, 0x68}, {&(0x7f0000000740)=""/107, 0x6b}], 0x3, &(0x7f00000007c0)=""/12, 0xc}, 0x0) connect(r2, &(0x7f00000005c0)=@un=@abs={0x0, 0x0, 0x3}, 0x8) read(r6, &(0x7f00000000c0)=""/77, 0x4d) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) close(r7) setsockopt(r7, 0x9, 0x0, &(0x7f0000000140)="76ceeb83b4fe46845b5ff993a6d201bd148a10a0c8e9fcf77d", 0x19) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r8) sendto$inet6(r8, &(0x7f00000001c0)="305e2222ed466097027250f7", 0xc, 0x2, &(0x7f0000000240)={0x18, 0x0, 0x3, 0x6}, 0xc) 09:47:06 executing program 1: semctl$SETALL(0x0, 0x0, 0x9, &(0x7f0000000000)) r0 = getppid() ptrace(0xbb1, r0, &(0x7f0000000000), 0x100) exit(0x20) clock_gettime(0x0, &(0x7f0000000040)) 09:47:06 executing program 0: mknod$loop(&(0x7f0000000080)='./file0\x00', 0x6000, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x10) open(&(0x7f0000000040)='./file0\x00', 0x615, 0x0) 09:47:06 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) sendto(r0, 0x0, 0x0, 0x4, 0x0, 0x0) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r1) sendto(r1, &(0x7f0000000040)="87d3af16d56ebe4b54b963391c978e0fddc5a61e83c9743c562d8e4cdab3b2f0b39cb9830834e42fd1cb284b2882028320fad962113baded0d1eec9aebb4fb7adc324519c133e996bac6ad8e24a18a2cc0ae3143b559a6a3bc2caec7879714ffca672178816983df32632b7dc2b41b6fb751d47ec3d8a2db72276fdb4377e8e31b0ba18f3bad95940dd2230ddc1fe1c4593a67e1327ca5d8f2e5e63d94d3a9ea793444d69b6c9e696d8b", 0xaa, 0x7bb5cd5d5c0b5c17, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) 09:47:06 executing program 2: socketpair(0x2, 0x0, 0xff, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) _lwp_setname(0xffffffffffffffff, &(0x7f0000000080)='\x00\x00') getsockname$inet6(r0, &(0x7f0000000040), &(0x7f00000000c0)=0xc) execve(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000140)='\\%\x00', &(0x7f0000000180)='\x00'], &(0x7f0000000200)) 09:47:06 executing program 3: r0 = socket(0x1f, 0x3, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) shutdown(r1, 0x2c5f48c3bb942587) r2 = socket(0x1f, 0x3, 0x0) dup2(r2, r0) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r3) sendto$inet(r3, &(0x7f00000000c0)="974f5d11c969fc90556664385644431ef25efd22c158adc842780cd6d2c46cd0112cb454d839ebd71f30afa56c00b805d0bfd5d8ba37f6f399c5793ab212a7dc5bf1e01cd5c0c2072d02458517929be4c0678b30b16e2debae6e0b0afd4b05cb249d11304efc9e11c68e11d4e1c67e00c247a8c3789e54935732665ac9775c084ae8628b44629b89654c2ef69e454d0d2b58321d57c396561ce4bfb2283a7bc4ae187509d7ad705a0a1cc998bbb257399bf6876c634d7f3ef18c613295a9b8bc", 0xc0, 0x60c, &(0x7f0000000180)={0x2, 0x3}, 0xc) lseek(r1, 0x2, 0x9eab489023d16b6b) rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') [ 65.0980371] WARNING: module error: vfs load failed for `mcd', error 2 [ 65.1380870] WARNING: module error: vfs load failed for `mcd', error 2 09:47:06 executing program 0: r0 = socket(0x2, 0x3, 0x0) connect$unix(r0, &(0x7f0000000840)=ANY=[@ANYBLOB="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"/1596], 0x10) setsockopt$inet_opts(r0, 0x0, 0x2, &(0x7f0000000000)="c27f1336", 0x4) chmod(&(0x7f0000000040)='./file0\x00', 0x0) sendto$inet(r0, &(0x7f00000001c0)="3dda327a96ec94d9498f08af211a90f20b463598", 0x14, 0x0, 0x0, 0x0) 09:47:07 executing program 0: pipe(&(0x7f0000000100)={0xffffffffffffffff}) fchdir(r0) 09:47:07 executing program 4: stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x2000, 0xffffffffffffffff) open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x12) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) fcntl$setstatus(r0, 0x4, 0x48) 09:47:07 executing program 2: open$dir(&(0x7f0000000000)='./file0\x00', 0x24a, 0x102) faccessat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1, 0x0) 09:47:07 executing program 3: r0 = semget(0x1, 0x2, 0x1) semctl$IPC_RMID(r0, 0x0, 0x0) r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) r2 = shmget$private(0x0, 0x400000, 0x83, &(0x7f000000c000/0x400000)=nil) shmctl$SHM_LOCK(r2, 0x3) close(0xffffffffffffffff) shmctl$IPC_RMID(r2, 0x0) shmat(r2, &(0x7f0000ffc000/0x2000)=nil, 0x0) fchown(r1, 0xee00, 0xee01) mkdirat(r1, &(0x7f0000000000)='./file0\x00', 0x0) fchmod(r1, 0xf4) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r3) fcntl$getown(r3, 0x5) 09:47:07 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0xffff, 0x1022, &(0x7f0000000080), &(0x7f0000000040)=0xe5) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="6202c1"], 0x1) chroot(&(0x7f00000000c0)='./file0\x00') mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket(0x2, 0x1, 0x0) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r1) connect$unix(r1, &(0x7f0000000100)=@abs={0x0, 0x0, 0x1}, 0x8) bind(r0, &(0x7f0000000000)=@un=@abs={0x0, 0xd}, 0x10) r2 = dup(r0) listen(r2, 0x0) setsockopt$sock_int(r0, 0xffff, 0x1001, &(0x7f0000000040), 0x4) r3 = socket(0x2, 0x1, 0x0) connect$unix(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="6a634e19767b0784"], 0x10) r4 = accept$unix(r2, 0x0, 0x0) write(r4, &(0x7f0000000240)="ddee43ab8734abe72e8289e48f848dcae6855abde176689fd16e6ad78a4f273bc1d2e3f3f911c89a2472d11399504870b9fb0e36d8892e80897800000000d20a2c82125431700f50a6b8d22db0ec0ff3a1800280b535084f92a7499cd07afbd1d0b82c439984f338ffbf66decf2ba302619dc2dcef33b15aa3d89beb2b70ddbd84311f09a2639749e5f4c3669169eb4be5a922395a28149f4d2ec0588916c297ac43adfbb5775ab949938e2baef7e6fa3703487dc7cd0255926c0ec9", 0xfffffea5) 09:47:07 executing program 0: r0 = accept$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, &(0x7f0000000040)=0x8) r1 = socket$unix(0x1, 0x5, 0x0) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r2) pipe2(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x400004) r4 = socket$inet6(0x18, 0x3, 0x4) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r5) r6 = open(&(0x7f0000000400)='./bus\x00', 0x522ef75b782d3adb, 0x0) r7 = fcntl$dupfd(0xffffffffffffff9c, 0xbbb8578ca0739cd7, 0xffffffffffffff9c) r8 = socket$inet6(0x18, 0x2, 0x3f) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r9) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r10) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r11) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r12) r13 = accept$inet(r12, &(0x7f0000000800), &(0x7f0000000840)=0xc) r14 = __clone(0x0, 0x0) ptrace(0x0, r14, 0x0, 0x2) r15 = getuid() setreuid(0x0, r15) r16 = getgid() setregid(0x0, r16) r17 = getpgid(0x0) r18 = getuid() r19 = getegid() sendmsg$unix(r0, &(0x7f0000000940)={&(0x7f0000000080)=@file={0x0, './bus\x00'}, 0x8, &(0x7f0000000480)=[{&(0x7f00000000c0)="8ff4c719191dd35ead129f74a6f500bb2d612347e699591e612580", 0x1b}, {&(0x7f0000000540)="6e6c80bcef905ee1e6ec4cf96c84c87f6ee317727a0f403dd3200f6160da316780ebce4460e5b37c2b195a40a1ad67475c095f748aabe5fe61d5b3e9111a5b01d827c36d9e245c55b88dcf9728e39ed611af6a257cab640c785305463cd39355033f95289bd6f756695c1dae11c7d1ed4afb78b9c28a6ee6dec4801a63323c5fa4a4375c8afa471109972abd1629a3c0833d5b8f57e216474d0e2576089b0a3aecb1480de2e0a9cd43118bf8f2bb02fa49b75535e02fe3b2ef570ed3bb9081afb937953e06c44b7412bde7a62d572ee6716f27488e7d3729d10307dad1e5c05569140aeeb37da14cb8094a177f5dfaae614b749178ff", 0xf6}, {&(0x7f0000000640)="94101c8881b3302df7e815129441b3fd879cb48667a847d4731cb5553a2389816c159fd876096333b0769670e36cff23fca2db97b2023edbd7e2b7c55ffdd491e7a40cb836bd2553ffdac0d4a8e534345173e546597e6c0717905483b4c995cb4301e7e98cbf96da402db220edcccd460163e2b788a8b2164954effb73a59ec1a2ca6f4f6accb39fb41360802139e4886f0c6c8ed872b300cfc7291ed157d271d713e27565350b009e2047e3bfa5f191299ee9a4bfd76220f805ae84d33f93accdf2f9d7ef50de2cd81d736bdd28c3", 0xcf}, {&(0x7f0000000100)="56c12669358ebae47d57968fd835cf6b57affec0147b3480a45053360511f63d02fd830c9aa3e87f83c2ed4e0d2ac57e50b42a32", 0x34}, {&(0x7f0000000740)="997b8d3f528418ffbfe463cdfa45e491e60d340d3bfdc6d98721c73c7c3677f88b499627b90ae1b9c9f051f8beb35c27e95a017a880bfecb6d3d3c89a7575a6bcbaad1de7dd1323ffa43815e2cbde08160fd07ba423e529677f3bb5d50ecd888d480e4e196b082183d6d6bb10c2e79f2b3a8c2602b9fed5662c4bce9f0299ee58db5d4aef0d1b7", 0x87}, {&(0x7f0000000140)="1db7b228bcff289e0c65209ab93c591d87ead94bdbc33d664e7a270f5f416e3cc6133c47ba6ac39cf248cb1d449770dbbd3814dba1b621a1847b29a9efc97c03c0a9dd9bdaa592e0fedac307888fb39889fd860ddac5166f779ea89870608d828053be4352d7c4d787669b84", 0x6c}], 0x6, &(0x7f0000000880)=[@rights={0x20, 0xffff, 0x1, [r1, r2, r3, r4]}, @rights={0x30, 0xffff, 0x1, [r5, 0xffffffffffffffff, r6, r7, r8, r9, r10, r11]}, @rights={0x18, 0xffff, 0x1, [r13]}, @cred={0x20, 0xffff, 0x2, r14, r15, r16}, @cred={0x20, 0xffff, 0x2, r17, r18, r19}], 0xa8, 0x4}, 0x401) preadv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000300)=""/202, 0xca}, {&(0x7f00000001c0)=""/170, 0xaa}], 0x2, 0x0) mknod(&(0x7f0000000500)='./bus\x00', 0x8003, 0x0) r20 = open(&(0x7f0000001ac0)='./bus\x00', 0x2, 0x0) pwritev(r20, &(0x7f00000002c0)=[{&(0x7f0000000180), 0xff20}], 0x100000000000005e, 0x0) pwritev(r20, &(0x7f0000000280), 0x6b, 0x0) 09:47:07 executing program 2: r0 = socket(0x1f, 0x2, 0x81) bind(r0, &(0x7f0000000040)=@in={0x2, 0x0}, 0xc) sendmsg(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYRESHEX], 0x12}, 0x0) r1 = socket(0x18, 0x2, 0x0) connect$unix(r1, &(0x7f00000000c0)=@abs={0x682eb13985c518e6, 0x7}, 0x1c) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) chdir(&(0x7f0000000000)='./file0\x00') sendmsg(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) 09:47:07 executing program 2: link(&(0x7f0000000780)='.\x00', &(0x7f00000007c0)='./file\x00') r0 = msgget(0x3, 0x80) msgrcv(r0, &(0x7f0000000000)={0x0, ""/129}, 0x89, 0x459321ffe1af5e28, 0x1000) 09:47:08 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = fork() pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r2) r3 = __clone(0x0, 0x0) ptrace(0x0, r3, 0x0, 0x2) posix_spawn(r1, &(0x7f0000000080)='-\x00', &(0x7f00000002c0)={0x5, 0x7ff, &(0x7f0000000280)=@dup={0x1, r2, {0xe1d}}}, &(0x7f0000000300)={0x33, r3, {0x1}, 0xce, {[0x7fff, 0xfffff3e8, 0xdad, 0x1]}, {[0x7, 0x9, 0x9, 0x8]}}, &(0x7f0000000340)=['\x00'], &(0x7f0000000380)=['\x8a^\x00', '\x00', ':\x00']) select(0x10000033b, &(0x7f00000000c0)={0x8, 0x100000000, 0xffff, 0x0, 0xfffffffffffffff8, 0x400000000, 0x2}, 0x0, 0x0, 0x0) select(0x40, &(0x7f0000000040)={0x8}, 0x0, 0x0, 0x0) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r4) getsockopt$sock_timeval(r4, 0xffff, 0x100c, &(0x7f00000003c0), &(0x7f0000000400)=0x10) r5 = msgget$private(0x0, 0x0) msgsnd(r5, &(0x7f0000000c80)={0x1, "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"}, 0x44b, 0x800) msgrcv(r5, &(0x7f0000000200)={0x0, ""/107}, 0x73, 0x3, 0x2000) select(0x40, &(0x7f00000001c0)={0x5, 0x8, 0x9, 0x3b, 0x8, 0xffffffff, 0x1, 0x7}, &(0x7f0000000100)={0x400, 0x8, 0x6, 0x40, 0x101, 0x9, 0x3, 0x1ff}, &(0x7f0000000140)={0x269a, 0x0, 0x3, 0x15, 0x6da0b16a, 0xfffffffffffffff8, 0x8, 0x8}, &(0x7f0000000180)={0x8001, 0x41}) shutdown(r0, 0x2) 09:47:08 executing program 2: r0 = socket$inet6(0x11, 0x3, 0x0) sendto$inet6(r0, &(0x7f0000000000)="164d048e", 0x4, 0x0, 0x0, 0x0) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) sendto$inet6(r1, &(0x7f0000000040)="531a53e26b7a4eee7bd231ee84c8ad38e1530eef17421010fcf3245c0ef70c6834d45ed127899c7f776409aae030", 0x2e, 0x20a, 0x0, 0x0) mlockall(0x1) 09:47:08 executing program 4: r0 = getgid() setregid(0x0, r0) setegid(r0) setrlimit(0x6, &(0x7f0000000000)={0x100000001, 0x8000000000000000}) 09:47:08 executing program 0: r0 = accept$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, &(0x7f0000000040)=0x8) r1 = socket$unix(0x1, 0x5, 0x0) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r2) pipe2(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x400004) r4 = socket$inet6(0x18, 0x3, 0x4) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r5) r6 = open(&(0x7f0000000400)='./bus\x00', 0x522ef75b782d3adb, 0x0) r7 = fcntl$dupfd(0xffffffffffffff9c, 0xbbb8578ca0739cd7, 0xffffffffffffff9c) r8 = socket$inet6(0x18, 0x2, 0x3f) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r9) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r10) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r11) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r12) r13 = accept$inet(r12, &(0x7f0000000800), &(0x7f0000000840)=0xc) r14 = __clone(0x0, 0x0) ptrace(0x0, r14, 0x0, 0x2) r15 = getuid() setreuid(0x0, r15) r16 = getgid() setregid(0x0, r16) r17 = getpgid(0x0) r18 = getuid() r19 = getegid() sendmsg$unix(r0, &(0x7f0000000940)={&(0x7f0000000080)=@file={0x0, './bus\x00'}, 0x8, &(0x7f0000000480)=[{&(0x7f00000000c0)="8ff4c719191dd35ead129f74a6f500bb2d612347e699591e612580", 0x1b}, {&(0x7f0000000540)="6e6c80bcef905ee1e6ec4cf96c84c87f6ee317727a0f403dd3200f6160da316780ebce4460e5b37c2b195a40a1ad67475c095f748aabe5fe61d5b3e9111a5b01d827c36d9e245c55b88dcf9728e39ed611af6a257cab640c785305463cd39355033f95289bd6f756695c1dae11c7d1ed4afb78b9c28a6ee6dec4801a63323c5fa4a4375c8afa471109972abd1629a3c0833d5b8f57e216474d0e2576089b0a3aecb1480de2e0a9cd43118bf8f2bb02fa49b75535e02fe3b2ef570ed3bb9081afb937953e06c44b7412bde7a62d572ee6716f27488e7d3729d10307dad1e5c05569140aeeb37da14cb8094a177f5dfaae614b749178ff", 0xf6}, {&(0x7f0000000640)="94101c8881b3302df7e815129441b3fd879cb48667a847d4731cb5553a2389816c159fd876096333b0769670e36cff23fca2db97b2023edbd7e2b7c55ffdd491e7a40cb836bd2553ffdac0d4a8e534345173e546597e6c0717905483b4c995cb4301e7e98cbf96da402db220edcccd460163e2b788a8b2164954effb73a59ec1a2ca6f4f6accb39fb41360802139e4886f0c6c8ed872b300cfc7291ed157d271d713e27565350b009e2047e3bfa5f191299ee9a4bfd76220f805ae84d33f93accdf2f9d7ef50de2cd81d736bdd28c3", 0xcf}, {&(0x7f0000000100)="56c12669358ebae47d57968fd835cf6b57affec0147b3480a45053360511f63d02fd830c9aa3e87f83c2ed4e0d2ac57e50b42a32", 0x34}, {&(0x7f0000000740)="997b8d3f528418ffbfe463cdfa45e491e60d340d3bfdc6d98721c73c7c3677f88b499627b90ae1b9c9f051f8beb35c27e95a017a880bfecb6d3d3c89a7575a6bcbaad1de7dd1323ffa43815e2cbde08160fd07ba423e529677f3bb5d50ecd888d480e4e196b082183d6d6bb10c2e79f2b3a8c2602b9fed5662c4bce9f0299ee58db5d4aef0d1b7", 0x87}, {&(0x7f0000000140)="1db7b228bcff289e0c65209ab93c591d87ead94bdbc33d664e7a270f5f416e3cc6133c47ba6ac39cf248cb1d449770dbbd3814dba1b621a1847b29a9efc97c03c0a9dd9bdaa592e0fedac307888fb39889fd860ddac5166f779ea89870608d828053be4352d7c4d787669b84", 0x6c}], 0x6, &(0x7f0000000880)=[@rights={0x20, 0xffff, 0x1, [r1, r2, r3, r4]}, @rights={0x30, 0xffff, 0x1, [r5, 0xffffffffffffffff, r6, r7, r8, r9, r10, r11]}, @rights={0x18, 0xffff, 0x1, [r13]}, @cred={0x20, 0xffff, 0x2, r14, r15, r16}, @cred={0x20, 0xffff, 0x2, r17, r18, r19}], 0xa8, 0x4}, 0x401) preadv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000300)=""/202, 0xca}, {&(0x7f00000001c0)=""/170, 0xaa}], 0x2, 0x0) mknod(&(0x7f0000000500)='./bus\x00', 0x8003, 0x0) r20 = open(&(0x7f0000001ac0)='./bus\x00', 0x2, 0x0) pwritev(r20, &(0x7f00000002c0)=[{&(0x7f0000000180), 0xff20}], 0x100000000000005e, 0x0) pwritev(r20, &(0x7f0000000280), 0x6b, 0x0) 09:47:08 executing program 3: r0 = semget(0x1, 0x2, 0x1) semctl$IPC_RMID(r0, 0x0, 0x0) r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) r2 = shmget$private(0x0, 0x400000, 0x83, &(0x7f000000c000/0x400000)=nil) shmctl$SHM_LOCK(r2, 0x3) close(0xffffffffffffffff) shmctl$IPC_RMID(r2, 0x0) shmat(r2, &(0x7f0000ffc000/0x2000)=nil, 0x0) fchown(r1, 0xee00, 0xee01) mkdirat(r1, &(0x7f0000000000)='./file0\x00', 0x0) fchmod(r1, 0xf4) pipe(&(0x7f0000001500)={0xffffffffffffffff, 0xffffffffffffffff}) close(r3) fcntl$getown(r3, 0x5) 09:47:08 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0xffff, 0x1022, &(0x7f0000000080), &(0x7f0000000040)=0xe5) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="6202c1"], 0x1) chroot(&(0x7f00000000c0)='./file0\x00') mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket(0x2, 0x1, 0x0) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r1) connect$unix(r1, &(0x7f0000000100)=@abs={0x0, 0x0, 0x1}, 0x8) bind(r0, &(0x7f0000000000)=@un=@abs={0x0, 0xd}, 0x10) r2 = dup(r0) listen(r2, 0x0) setsockopt$sock_int(r0, 0xffff, 0x1001, &(0x7f0000000040), 0x4) r3 = socket(0x2, 0x1, 0x0) connect$unix(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="6a634e19767b0784"], 0x10) r4 = accept$unix(r2, 0x0, 0x0) write(r4, &(0x7f0000000240)="ddee43ab8734abe72e8289e48f848dcae6855abde176689fd16e6ad78a4f273bc1d2e3f3f911c89a2472d11399504870b9fb0e36d8892e80897800000000d20a2c82125431700f50a6b8d22db0ec0ff3a1800280b535084f92a7499cd07afbd1d0b82c439984f338ffbf66decf2ba302619dc2dcef33b15aa3d89beb2b70ddbd84311f09a2639749e5f4c3669169eb4be5a922395a28149f4d2ec0588916c297ac43adfbb5775ab949938e2baef7e6fa3703487dc7cd0255926c0ec9", 0xfffffea5) 09:47:08 executing program 2: r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x2088611, 0x0) r1 = getpgid(0x0) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, r1}) writev(r0, &(0x7f0000000340)=[{&(0x7f0000000000), 0x2cfea}], 0x1000000000000013) writev(r0, &(0x7f0000000280), 0xd) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000040)="4961c308094ff36138ed00c1587193bcce5a7c1c34e8e2c90810095a4d042e3d535a28ae82fbe3ed9e7c61de99c503aa1ad3fe5ec57e6e640e077f9c9a915525a42f93fd4f4ca0057bfcb13fab2c43ee37d9bdaba04ff7b454f6537c259aa30d18c635566b636268464e41cf762d61e67338308639e969b4f1dbbf4eb9fc", 0x7e}, {&(0x7f00000000c0)="04e7e2a0bf9329baad463328aaaeeac67c218b5b634ef2faeff8ca29f5a5e553f86503e0b8801684567e23988f977b765972a0752cd81658d715cfd85cd3f85aeeb17dc61c9963d5d53efe1cf91f943fea94aa34408002fbd436f8f296924fbf59c99be3610609b6", 0xe}], 0x10000000000001f7) 09:47:08 executing program 4: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) chmod(&(0x7f0000000040)='./file0/file0\x00', 0x237) setgroups(0x0, 0x0) setuid(0xee01) open$dir(&(0x7f00000003c0)='./file0/file0\x00', 0x300, 0x4ce04b06a32b6670) 09:47:09 executing program 4: mknod$loop(&(0x7f0000000080)='./file1\x00', 0x2000, 0xffffffffffffffff) rename(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='./file0\x00') r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0xb0041, 0x0) writev(r0, &(0x7f0000000340)=[{&(0x7f0000000000), 0xff64}], 0x1) lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)) writev(0xffffffffffffffff, 0x0, 0x0) 09:47:09 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x200442, 0x1b) socket$inet6(0x18, 0x5, 0x0) 09:47:09 executing program 3: r0 = open$dir(&(0x7f0000001240)='./file0\x00', 0x42000400000002c1, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000013000/0x4000)=nil, 0x4000, 0x3, 0x10, r1, 0x0, 0x0) mlock(&(0x7f0000013000/0x2000)=nil, 0x2000) __clone(0x0, 0x0) ptrace(0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0xffff, 0x11, 0x0, 0x0) socket$inet(0x2, 0x0, 0x0) socket(0x0, 0x0, 0x0) socket$inet(0x2, 0x0, 0x0) pipe(&(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) fchroot(r2) setsockopt$inet_opts(r2, 0x0, 0x1, &(0x7f00000000c0)="dea0de1f484b8dd690875310da771ffe1c0467ddcece020411f68ea84b313817745e534601ecc29bc7fbedcb17fd0b945840449eced24da91dd467b8feb3294a538c5ddf7065bb5d656ea1fa9eba30bb4953abcde26a51a40d65cd21924f5a2b0b5570212e46c6ede40a48440102d8ea604af0ae5468bd13fd75159c9363e41f1ce60ad257eb60e597b0c7920a9c08aaa81784", 0x93) semctl$SETVAL(0x0, 0x0, 0x8, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f00000006c0), 0x100000}], 0x1, 0x0) r3 = _lwp_self() _lwp_suspend(r3) fcntl$setflags(0xffffffffffffffff, 0x2, 0x18cebdd47cb9785b) _lwp_wakeup(r3) _lwp_kill(r3, 0x4) 09:47:09 executing program 5: r0 = socket(0x18, 0x1, 0x0) setsockopt$sock_int(r0, 0xffff, 0x1, &(0x7f0000000000)=0x4, 0x4) setsockopt(r0, 0x29, 0x80000000000000c, &(0x7f0000000180), 0x14) shutdown(r0, 0x2) 09:47:09 executing program 1: _lwp_create(0xffffffffffffffff, 0x80, 0x0) _lwp_wakeup(0x0) 09:47:09 executing program 0: madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3) mkdirat(0xffffffffffffff9c, &(0x7f0000008880)='./file0\x00', 0x0) truncate(&(0x7f0000008bc0)='./file0\x00', 0x0) [ 68.3320004] WARNING: defaulted mmap() share type to MAP_PRIVATE (pid 550 command syz-executor.3) 09:47:10 executing program 2: r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x2088611, 0x0) r1 = getpgid(0x0) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, r1}) writev(r0, &(0x7f0000000340)=[{&(0x7f0000000000), 0x2cfea}], 0x1000000000000013) writev(r0, &(0x7f0000000280), 0xd) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000040)="4961c308094ff36138ed00c1587193bcce5a7c1c34e8e2c90810095a4d042e3d535a28ae82fbe3ed9e7c61de99c503aa1ad3fe5ec57e6e640e077f9c9a915525a42f93fd4f4ca0057bfcb13fab2c43ee37d9bdaba04ff7b454f6537c259aa30d18c635566b636268464e41cf762d61e67338308639e969b4f1dbbf4eb9fc", 0x7e}, {&(0x7f00000000c0)="04e7e2a0bf9329baad463328aaaeeac67c218b5b634ef2faeff8ca29f5a5e553f86503e0b8801684567e23988f977b765972a0752cd81658d715cfd85cd3f85aeeb17dc61c9963d5d53efe1cf91f943fea94aa34408002fbd436f8f296924fbf59c99be3610609b6", 0xe}], 0x10000000000001f7) 09:47:10 executing program 1: r0 = getegid() setegid(r0) r1 = socket$inet(0x2, 0x3, 0xfe) lseek(r1, 0x40, 0x1) setsockopt$sock_int(0xffffffffffffffff, 0xffff, 0x0, &(0x7f0000000000), 0x4) madvise(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2) socket$inet6(0x18, 0x3, 0x0) socketpair(0x19, 0x2, 0x1, &(0x7f0000000040)={0xffffffffffffffff}) getsockname(r2, &(0x7f0000000100)=@un=@file={0x0, ""/122}, &(0x7f00000010c0)=0xae9cd8da6f76d6) ./file1./file0./file1./file0 dÿ[ 68.8726772] panic: Kernel lock error: _kernel_lock,188: locking against myself [ 68.8726772] lock address : 0xffffffff82d84300 type : spin [ 68.8726772] initialized : 0xffffffff81a4fda5 [ 68.8726772] shared holds : 0 exclusive: 1 [ 68.8726772] shares wanted: 0 exclusive: 1 [ 68.8726772] current cpu : 0 last held: 0 [ 68.8726772] current lwp : 0xffffcd000de24000 last held: 0xffffcd0013bd7800 [ 68.8726772] last locked* : 0xffffffff811ad30d unlocked : 0xffffffff802a282c [ 68.8726772] curcpu holds : 0 wanted by: 000000000000000000 [ 68.8726772] kernel diagnostic assertion "ci->ci_biglock_count == 0" failed: file "/syzkaller/managers/netbsd/kernel/sys/sys/userret.h", line 88 [ 68.9496003] cpu1: Begin traceback... [ 68.9627574] vpanic() at netbsd:vpanic+0x241 [ 68.9927947] _GLOBAL__sub_D_65535_0_cpu_configure() at netbsd:_GLOBAL__sub_D_65535_0_cpu_configure [ 69.0428582] syscall() at netbsd:syscall+0x8d6 [ 69.0528683] --- syscall (number 0) --- [ 69.0628835] 459431: [ 69.0728930] cpu1: End traceback... [ 69.0728930] fatal breakpoint trap in supervisor mode [ 69.0829088] trap type 1 code 0 rip 0xffffffff8021e4b5 cs 0x8 rflags 0x246 cr2 0x7b338961d400 ilevel 0 rsp 0xffffcd017e7a7d10 [ 69.0929201] curlwp 0xffffcd00137eb400 pid 603.10 lowest kstack 0xffffcd017e7a02c0 Stopped in pid 603.10 (syz-fuzzer) at netbsd:breakpoint+0x5: leave ? breakpoint() at netbsd:breakpoint+0x5 db_panic() at netbsd:db_panic+0xe9 vpanic() at netbsd:vpanic+0x241 _GLOBAL__sub_D_65535_0_cpu_configure() at netbsd:_GLOBAL__sub_D_65535_0_cpu_configure syscall() at netbsd:syscall+0x8d6 --- syscall (number 0) --- 459431: ds e524 es dc6b fs 7cf0 gs 7d40 rdi ffffcd000d92b458 rsi ffffcd00137eb6a8 rbp ffffcd017e7a7d10 rbx ffffcd016d893000 rdx 2 rcx ffffffff80d1a151 db_panic+0xd5 rax 0 r8 4 r9 1ffffffff0553ebc r10 ffffffff82a9f5e3 db_onpanic+0x3 r11 10 r12 ffffcd016d8a4000 r13 ffffffff81c2a5e0 x86_features+0x1560 r14 ffffcd017e7a7da0 r15 ffffcd016d893068 rip ffffffff8021e4b5 breakpoint+0x5 cs 8 rflags 246 rsp ffffcd017e7a7d10 ss 10 netbsd:breakpoint+0x5: leave PID LID S CPU FLAGS STRUCT LWP * NAME WAIT 807 1 2 0 40000 ffffcd0011d46400 syz-executor.5 550 3 3 1 4 ffffcd0011d46000 syz-executor.3 biowait 550 1 2 0 10040000 ffffcd0012a63800 syz-executor.3 549 3 3 1 40080 ffffcd00129ee800 syz-executor.1 parked 579 3 3 1 40080 ffffcd0011ff0800 syz-executor.1 parked 130 4 3 1 80 ffffcd0011c94800 syz-executor.4 parked 130 > 3 7 0 20000000 ffffcd0013bd7800 syz-executor.4 130 1 2 0 10040000 ffffcd0011f13c00 syz-executor.4 97 3 3 1 40080 ffffcd0013bd7400 syz-executor.0 parked 98 3 3 0 80 ffffcd0012a0fc00 syz-executor.1 parked 758 3 3 0 80 ffffcd0012a0f800 syz-executor.1 parked 693 3 3 0 80 ffffcd0011eeb400 syz-executor.0 parked 547 3 3 1 80 ffffcd0011f79400 syz-executor.0 parked 624 3 3 1 80 ffffcd0011f3c000 syz-executor.5 parked 45 1 2 1 0 ffffcd0013a2ac00 syz-executor.5 606 1 2 1 0 ffffcd0013a2a000 syz-executor.4 587 1 2 1 0 ffffcd0013922c00 syz-executor.3 612 1 3 1 0 ffffcd0013922800 syz-executor.2 biolock 454 1 3 0 4 ffffcd0013922400 syz-executor.1 biowait 41 1 2 0 0 ffffcd0013922000 syz-executor.0 603 12 3 0 80 ffffcd00137ebc00 syz-fuzzer parked 603 11 3 1 80 ffffcd00137eb800 syz-fuzzer parked 603 > 10 7 1 20000000 ffffcd00137eb400 syz-fuzzer 603 9 3 1 80 ffffcd000f3c2c00 syz-fuzzer parked 603 8 3 0 80 ffffcd00137eb000 syz-fuzzer parked 603 7 2 1 0 ffffcd00137e1800 syz-fuzzer 603 6 3 1 80 ffffcd00137e1400 syz-fuzzer parked 603 5 3 0 80 ffffcd00137e1000 syz-fuzzer parked 603 4 3 1 80 ffffcd0012a8c400 syz-fuzzer parked 603 3 3 0 80 ffffcd0012a8c000 syz-fuzzer parked 603 2 2 1 0 ffffcd0012a7e800 syz-fuzzer 603 1 3 0 80 ffffcd0011ae3400 syz-fuzzer parked 453 1 3 1 80 ffffcd0012991c00 sshd select 505 1 3 1 80 ffffcd0012a63c00 getty nanoslp 536 1 3 1 80 ffffcd0012a63400 getty nanoslp 431 1 3 0 80 ffffcd0012a6dc00 getty nanoslp 564 1 3 1 80 ffffcd0012a6d800 getty ttyraw 494 1 3 0 80 ffffcd0011eebc00 cron nanoslp 529 1 3 1 80 ffffcd00129dc800 inetd kqueue 317 1 3 0 80 ffffcd0011f94c00 sshd select 479 1 3 0 80 ffffcd0011e8b800 powerd kqueue 314 1 3 0 80 ffffcd00129cec00 syslogd kqueue 268 1 3 0 80 ffffcd0011f3c400 dhcpcd kqueue 220 1 3 1 80 ffffcd0011e5f000 dhcpcd kqueue 1 1 3 1 80 ffffcd0011c3ec00 init wait 0 58 3 0 204 ffffcd0011c54400 physiod physiod 0 57 3 1 204 ffffcd0011c94400 aiodoned aiodoned 0 56 3 0 204 ffffcd0011c94000 pooldrain pooldrain 0 55 3 0 200 ffffcd0011c54c00 ioflush syncer 0 54 3 1 200 ffffcd0011c54800 pgdaemon pgdaemon 0 51 3 1 200 ffffcd0011c54000 npfgc-0 npfgccv 0 50 3 1 204 ffffcd0011c3e800 rt_free rt_free 0 49 3 1 204 ffffcd0011c3e400 unpgc unpgc 0 48 3 1 204 ffffcd0011c3e000 key_timehandler key_timehandler 0 47 3 1 204 ffffcd0011b08c00 icmp6_wqinput/1 icmp6_wqinput 0 46 3 0 204 ffffcd0011b08800 icmp6_wqinput/0 icmp6_wqinput 0 45 3 0 204 ffffcd0011b08400 nd6_timer nd6_timer 0 44 3 1 204 ffffcd0011b08000 carp6_wqinput/1 carp6_wqinput 0 43 3 0 204 ffffcd0011af3c00 carp6_wqinput/0 carp6_wqinput 0 42 3 1 204 ffffcd0011af3800 carp_wqinput/1 carp_wqinput 0 41 3 0 204 ffffcd0011af3400 carp_wqinput/0 carp_wqinput 0 40 3 1 204 ffffcd0011af3000 icmp_wqinput/1 icmp_wqinput 0 39 3 0 204 ffffcd0011ae3c00 icmp_wqinput/0 icmp_wqinput 0 38 3 1 204 ffffcd0011ae3800 rt_timer rt_timer 0 37 3 0 204 ffffcd0011ae3000 vmem_rehash vmem_rehash 0 27 3 0 204 ffffcd000f3c2400 scsibus0 sccomp 0 26 3 0 200 ffffcd000f3c2000 pms0 pmsreset 0 25 3 1 204 ffffcd000f333c00 xcall/1 xcall 0 24 1 1 200 ffffcd000f333800 softser/1 0 23 1 1 200 ffffcd000f333400 softclk/1 0 22 1 1 200 ffffcd000f333000 softbio/1 0 21 1 1 200 ffffcd000de51c00 softnet/1 0 20 1 1 201 ffffcd000de51800 idle/1 0 19 3 0 204 ffffcd000de51400 lnxpwrwq lnxpwrwq 0 18 3 0 204 ffffcd000de51000 lnxlngwq lnxlngwq 0 17 3 0 204 ffffcd000de4cc00 lnxsyswq lnxsyswq 0 16 3 0 204 ffffcd000de4c800 lnxrcugc lnxrcugc 0 15 3 0 204 ffffcd000de4c400 sysmon smtaskq 0 14 3 0 204 ffffcd000de4c000 pmfsuspend pmfsuspend 0 13 3 0 204 ffffcd000de35c00 pmfevent pmfevent 0 12 3 0 204 ffffcd000de35800 sopendfree sopendfr 0 11 3 0 204 ffffcd000de35400 nfssilly nfssilly 0 10 3 0 200 ffffcd000de35000 cachegc cachegc 0 9 3 0 204 ffffcd000de24c00 vdrain vdrain 0 8 3 1 200 ffffcd000de24800 modunload mod_unld 0 7 3 0 204 ffffcd000de24400 xcall/0 xcall 0 > 6 7 0 20000200 ffffcd000de24000 softser/0 0 5 1 0 200 ffffcd000de1fc00 softclk/0 0 4 1 0 40200 ffffcd000de1f800 softbio/0 0 3 1 0 200 ffffcd000de1f400 softnet/0 0 2 1 0 201 ffffcd000de1f000 idle/0 0 1 3 0 200 ffffffff82b67ac0 swapper uvm [Locks tracked through LWPs] Locks held by an LWP (syz-executor.5): Lock 0 (initialized at uvm_obj_init) lock address : 0xffffcd001378d640 type : sleep/adaptive initialized : 0xffffffff8110caf7 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 current cpu : 1 last held: 1 current lwp : 0xffffcd00137eb400 last held: 0xffffcd0011d46400 last locked* : 0xffffffff810f0759 unlocked : 0xffffffff810edefd owner field : 0xffffcd0011d46400 wait/spin: 0/0 Turnstile chain at 0xffffffff82d8da08 with mutex 0xffffffff82d8cd80. => No active turnstile for this lock. Locks held by an LWP (syz-executor.3): Lock 0 (initialized at vcache_alloc) lock address : 0xffffcd0013b65780 type : sleep/adaptive initialized : 0xffffffff812cc9d2 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 current cpu : 1 last held: 1 current lwp : 0xffffcd00137eb400 last held: 0xffffcd0011d46000 last locked* : 0xffffffff812f98e0 unlocked : 0xffffffff812f979d owner/count : 0xffffcd0011d46000 flags : 0x0000000000000004 Turnstile chain at 0xffffffff82d8da30 with mutex 0xffffffff82d8cec0. => No active turnstile for this lock. Lock 1 (initialized at genfs_node_init) lock address : 0xffffcd0013b86f08 type : sleep/adaptive initialized : 0xffffffff812f9a64 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 current cpu : 1 last held: 1 current lwp : 0xffffcd00137eb400 last held: 0xffffcd0011d46000 last locked* : 0xffffffff81057826 unlocked : 0xffffffff812efa05 owner/count : 0xffffcd0011d46000 flags : 0x0000000000000004 Turnstile chain at 0xffffffff82d8d920 with mutex 0xffffffff82d8c640. => No active turnstile for this lock. Locks held by an LWP (syz-executor.2): Lock 0 (initialized at vcache_alloc) lock address : 0xffffcd00137ec540 type : sleep/adaptive initialized : 0xffffffff812cc9d2 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 current cpu : 1 last held: 1 current lwp : 0xffffcd00137eb400 last held: 0xffffcd0013922800 last locked* : 0xffffffff812f98e0 unlocked : 0xffffffff812f979d owner/count : 0xffffcd0013922800 flags : 0x0000000000000004 Turnstile chain at 0xffffffff82d8d7e8 with mutex 0xffffffff82d8bc80. => No active turnstile for this lock. Lock 1 (initialized at vcache_alloc) lock address : 0xffffcd0013b654c0 type : sleep/adaptive initialized : 0xffffffff812cc9d2 shared holds : 0 exclusive: 1 shares wanted: 0 exclusive: 0 current cpu : 1 last held: 1 current lwp : 0xffffcd00137eb400 last held: 0xffffcd0013922800 last locked* : 0xffffffff812f98e0 unlocked : 0xffffffff812f979d owner/count : 0xffffcd0013922800 flags : 0x0000000000000004 Turnstile chain at 0xffffffff82d8d9d8 with mutex 0xffffffff82d8cc00. => No active turnstile for this lock. Lock 2 (initialized at genfs_node_init) lock address : 0xffffcd0013b86408 type : sleep/adaptive initialized : 0xffffffff812f9a64 shared holds : 0