syzbot

panic: pool_p_free: rttmr free list modified: page 0xfffffd80680af000; item addr 0xfffffd80680afb28; offset 0x10=0xfffd7ab0
Starting stack trace...
panic(ffffffff833a52df) at panic+0x1d0 sys/kern/subr_prf.c:229
pool_p_free(ffffffff83928c68,fffffd80680aff90) at pool_p_free+0x2d1 sys/kern/subr_pool.c:986
pool_reclaim(ffffffff83928c68) at pool_reclaim+0x2c2 sys/kern/subr_pool.c:1152
pool_reclaim_all() at pool_reclaim_all+0x48 sys/kern/subr_pool.c:-1
kern_sysctl(ffff80002a362804,1,0,ffff80002a362838,200000001440,4,2e18b78243b0f23e) at kern_sysctl+0x1095 sys/kern/kern_sysctl.c:686

sys_sysctl(ffff80003c497258,ffff80002a362970,ffff80002a3628c0) at sys_sysctl+0x3e5 sys/kern/kern_sysctl.c:-1
syscall(ffff80002a362970) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80002a362970) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:775
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x3b8ad2402a0, count: 249
End of stack trace.
syncing disks...set $lines = 0
set $maxwidth = 0
show panic
trace
show registers
show proc
ps
show all locks
show malloc
show all pools
machine ddbcpu 0
trace
machine ddbcpu 1
trace