panic: pool_do_get: shmplp an i fc:re e li s t m o d ikefrinedel: p adgieag n o s t i c a s s er t i 0xofnff "f((fflda8g07sa1e 3 00 0 ; & i tem a d dr 0 PxfGfOfff_dL80O7CaK1EeD) !3=3f 8 0; o&f&f se t 0 x0 = 0 x 0 != 0 x 7f 8c 01 8 4ac 29 9 35f
Stopped at db_enter+0x25: addq $0x8,%rsp
TID PID UID PRFLAGS PFLAGS CPU COMMAND
146449 3458 0 0 0 1 syz-executor
*315989 8298 0 0 0x4000000 0 syz-executor
db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff830164d3) at panic+0x1e5 sys/kern/subr_prf.c:198
pool_do_get(ffffffff8352aca0,1,ffff80002a1520f8) at pool_do_get+0x59d
pool_get(ffffffff8352aca0,1) at pool_get+0x141
shmget_allocate_segment(ffff8000ffff3970,ffff80002a152350,10e,ffff80002a1522a0) at shmget_allocate_segment+0x1a7
sys_shmget(ffff8000ffff3970,ffff80002a152350,ffff80002a1522a0) at sys_shmget+0x1b2 sys/kern/sysv_shm.c:480
syscall(ffff80002a152350) at syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
syscall(ffff80002a152350) at syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xa746971fd10, count: 7
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
*cpu0: pool_do_get: shmpl free list modified: page 0xfffffd807a1e3000; item addr 0xfffffd807a1e33f8; offset 0x0=0x0 != 0x7f8c0184ac29935f
cpu1: kernel diagnostic assertion "((flags & PGO_LOCKED) != 0 && rw_lock_held(uobj->vmobjlock)) || (flags & PGO_LOCKED) == 0" failed: file "/syzkaller/managers/multicore/kernel/sys/uvm/uvm_vnode.c", line 955
ddb{0}> trace
db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff830164d3) at panic+0x1e5 sys/kern/subr_prf.c:198
pool_do_get(ffffffff8352aca0,1,ffff80002a1520f8) at pool_do_get+0x59d
pool_get(ffffffff8352aca0,1) at pool_get+0x141
shmget_allocate_segment(ffff8000ffff3970,ffff80002a152350,10e,ffff80002a1522a0) at shmget_allocate_segment+0x1a7
sys_shmget(ffff8000ffff3970,ffff80002a152350,ffff80002a1522a0) at sys_shmget+0x1b2 sys/kern/sysv_shm.c:480
syscall(ffff80002a152350) at syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
syscall(ffff80002a152350) at syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xa746971fd10, count: -8
ddb{0}> show registers
rdi 0
rsi 0x1
rbp 0xffff80002a151f40
rbx 0xffffffff83432d87 cpu_info_full_primary+0x2d87
rdx 0xffff8000015b3600
rcx 0xffff8000ffff3970
rax 0xffffffff83431ff0 cpu_info_full_primary+0x1ff0
r8 0x101010101010101
r9 0x8080808080808080
r10 0xb36ab1a47b0d2eab
r11 0xf90b0c341e10e56d
r12 0xffffffff83432b88 cpu_info_full_primary+0x2b88
r13 0
r14 0
r15 0x1
rip 0xffffffff81c72785 db_enter+0x25
cs 0x8
rflags 0x246
rsp 0xffff80002a151f30
ss 0x10
db_enter+0x25: addq $0x8,%rsp
ddb{0}> show proc
PROC (syz-executor) tid=315989 pid=8298 tcnt=3 stat=onproc
flags process=0 proc=4000000<THREAD>
runpri=86, usrpri=86, slppri=32, nice=20
wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
forw=0xffffffffffffffff, list=0xffff8000ffff2f50,0xffff8000ffff27c8
process=0xffff80003727dfb8 user=0xffff80002a14d000, vmspace=0xfffffd806b8f4a58
estcpu=36, cpticks=3, pctcpu=0.0, user=0, sys=3, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
3458 146449 50999 0 7 0 syz-executor
24941 420781 52567 0 2 0 syz-executor
24941 464452 52567 0 2 0x4000000 syz-executor
8298 319712 95506 0 2 0 syz-executor
8298 123784 95506 0 3 0x4000080 fsleep syz-executor
* 8298 315989 95506 0 7 0x4000000 syz-executor
20446 470339 46614 0 3 0 vmmaplk syz-executor
20446 519847 46614 0 3 0x4000000 physio syz-executor
20446 513394 46614 0 3 0x4000000 vmmaplk syz-executor
39553 88936 14004 0 3 0x80 nanoslp syz-executor
39553 453893 14004 0 3 0x4000080 sbwait syz-executor
39553 470427 14004 0 3 0x4000080 fsleep syz-executor
59516 167383 93839 0 3 0 vmmaplk syz-executor
59516 458840 93839 0 2 0x4000000 syz-executor
59516 511357 93839 0 3 0x4000000 vmmaplk syz-executor
74587 446450 75315 0 2 0x2 syz-executor
67079 23251 75315 0 2 0x2 syz-executor
46614 122331 75315 0 2 0x3 syz-executor
95506 11476 75315 0 2 0x3 syz-executor
52567 225242 75315 0 3 0x82 nanoslp syz-executor
14004 158710 75315 0 2 0x3 syz-executor
50999 304153 75315 0 2 0x3 syz-executor
93839 180921 75315 0 2 0x3 syz-executor
7858 368498 1 0 3 0x100083 ttyopn getty
41058 500795 0 0 3 0x14200 bored sosplice
44296 5305 0 0 3 0x14280 nfsidl nfsio
36719 166461 0 0 3 0x14280 nfsidl nfsio
79113 353930 0 0 3 0x14280 nfsidl nfsio
83115 369083 0 0 3 0x14280 nfsidl nfsio
55132 314987 0 0 3 0x14280 nfsidl nfsio
51803 364524 0 0 3 0x14280 nfsidl nfsio
12017 122698 0 0 3 0x14280 nfsidl nfsio
8309 338158 0 0 3 0x14280 nfsidl nfsio
3322 196760 0 0 3 0x14280 nfsidl nfsio
73421 443200 0 0 3 0x14280 nfsidl nfsio
9182 303660 0 0 3 0x14280 nfsidl nfsio
4893 395114 0 0 3 0x14280 nfsidl nfsio
46120 469011 0 0 3 0x14280 nfsidl nfsio
31433 321599 0 0 3 0x14280 nfsidl nfsio
55698 44191 0 0 3 0x14280 nfsidl nfsio
72503 329870 0 0 3 0x14280 nfsidl nfsio
96187 302612 0 0 3 0x14280 nfsidl nfsio
13836 313401 0 0 3 0x14280 nfsidl nfsio
67040 363647 0 0 3 0x14280 nfsidl nfsio
74468 119579 0 0 3 0x14280 nfsidl nfsio
4056 285465 0 0 3 0x14200 acct acct
75315 2048 9890 0 2 0x3 syz-executor
9890 341253 67576 0 3 0x10008a sigsusp ksh
67576 476659 55923 0 3 0x98 kqread sshd-session
55923 26991 57259 0 3 0x92 kqread sshd-session
57259 177002 1 0 3 0x88 kqread sshd
93331 385244 27574 74 3 0x1100092 bpf pflogd
27574 493546 1 0 3 0x80 sbwait pflogd
17604 404965 75790 73 2 0x1100011 syslogd
75790 142999 1 0 3 0x100082 sbwait syslogd
47486 410003 1 0 3 0x100080 kqread resolvd
28174 121321 53656 77 3 0x100092 kqread dhcpleased
71722 320921 53656 77 3 0x100092 kqread dhcpleased
53656 75892 1 0 3 0x80 kqread dhcpleased
75541 162142 0 0 3 0x14200 bored smr
24221 234374 0 0 3 0x14200 pgzero zerothread
95641 150597 0 0 3 0x14200 aiodoned aiodoned
38585 345550 0 0 3 0x14200 syncer update
91354 372873 0 0 3 0x14200 cleaner cleaner
68992 515704 0 0 3 0x14200 reaper reaper
68535 156642 0 0 3 0x14200 pgdaemon pagedaemon
59171 83573 0 0 3 0x14200 bored viomb
25300 172814 0 0 3 0x40014200 acpi0 acpi0
33453 132257 0 0 3 0x40014200 idle1
25724 344244 0 0 3 0x14200 bored softnet3
92587 319337 0 0 3 0x14200 bored softnet2
8181 464022 0 0 3 0x14200 bored softnet1
48733 450743 0 0 3 0x14200 bored softnet0
33385 262250 0 0 3 0x14200 bored systqmp
6828 387555 0 0 3 0x14200 bored systq
33332 496987 0 0 3 0x14200 tmoslp softclockmp
75246 270511 0 0 3 0x40014200 tmoslp softclock
54744 353044 0 0 3 0x40014200 idle0
1 29902 0 0 3 0x80082 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{0}> show all locks
CPU 0:
exclusive mutex shmpl r = 0 (0xffffffff8352acb0)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 mtx_enter_try+0x178
#2 mtx_enter+0x60 sys/kern/kern_lock.c:239
#3 pool_get+0x103 sys/kern/subr_pool.c:579
#4 shmget_allocate_segment+0x1a7
#5 sys_shmget+0x1b2 sys/kern/sysv_shm.c:480
#6 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#6 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
#7 Xsyscall+0x128
Process 24941 (syz-executor) thread 0xffff8000ffff2f50 (464452)
exclusive rwlock vmmaplk r = 0 (0xfffffd806b8f4d00)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 rw_enter+0x41b sys/kern/kern_rwlock.c:309
#2 vm_map_lock_ln+0x143 sys/uvm/uvm_map.c:5252
#3 uvmfault_lookup+0xe8 sys/uvm/uvm_fault.c:1779
#4 uvm_fault_check+0x83e uvmfault_amapcopy sys/uvm/uvm_fault.c:236 [inline]
#4 uvm_fault_check+0x83e sys/uvm/uvm_fault.c:710
#5 uvm_fault+0x112 sys/uvm/uvm_fault.c:600
#6 upageflttrap+0xa9 sys/arch/amd64/amd64/trap.c:188
#7 usertrap+0x2d8 sys/arch/amd64/amd64/trap.c:436
#8 recall_trap+0x8
Process 8298 (syz-executor) thread 0xffff8000ffff3970 (315989)
exclusive kernel_lock &kernel_lock r = 0 (0xffffffff83533338)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 syscall+0xad6 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#1 syscall+0xad6 sys/arch/amd64/amd64/trap.c:577
#2 Xsyscall+0x128
exclusive mutex shmpl r = 0 (0xffffffff8352acb0)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 mtx_enter_try+0x178
#2 mtx_enter+0x60 sys/kern/kern_lock.c:239
#3 pool_get+0x103 sys/kern/subr_pool.c:579
#4 shmget_allocate_segment+0x1a7
#5 sys_shmget+0x1b2 sys/kern/sysv_shm.c:480
#6 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#6 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
#7 Xsyscall+0x128
Process 20446 (syz-executor) thread 0xffff8000371cc7d8 (519847)
shared rwlock vmmaplk r = 0 (0xfffffd806b8f42b0)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 uvm_vslock_device+0x149 sys/uvm/uvm_glue.c:174
#2 physio+0x277 sys/kern/kern_physio.c:139
#3 spec_read+0x155 sys/kern/spec_vnops.c:215
#4 VOP_READ+0x102 sys/kern/vfs_vops.c:227
#5 vn_read+0x17b sys/kern/vfs_vnops.c:369
#6 dofilereadv+0x230 sys/kern/sys_generic.c:252
#7 sys_pread+0xae sys/kern/vfs_syscalls.c:3293
#8 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#8 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577
#9 Xsyscall+0x128
Process 59516 (syz-executor) thread 0xffff8000ffff2a40 (458840)
exclusive rwlock vmmaplk r = 0 (0xfffffd806c2b0b58)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 rw_enter+0x41b sys/kern/kern_rwlock.c:309
#2 vm_map_lock_ln+0x143 sys/uvm/uvm_map.c:5252
#3 uvmfault_lookup+0xe8 sys/uvm/uvm_fault.c:1779
#4 uvm_fault_check+0x83e uvmfault_amapcopy sys/uvm/uvm_fault.c:236 [inline]
#4 uvm_fault_check+0x83e sys/uvm/uvm_fault.c:710
#5 uvm_fault+0x112 sys/uvm/uvm_fault.c:600
#6 kpageflttrap+0x2d0 sys/arch/amd64/amd64/trap.c:279
#7 kerntrap+0x14a sys/arch/amd64/amd64/trap.c:332
#8 alltraps_kern_meltdown+0x7b
#9 copyout+0x57
#10 mmrw+0x3de
#11 spec_read+0x155 sys/kern/spec_vnops.c:215
#12 VOP_READ+0x102 sys/kern/vfs_vops.c:227
#13 vn_read+0x17b sys/kern/vfs_vnops.c:369
#14 dofilereadv+0x230 sys/kern/sys_generic.c:252
#15 sys_preadv+0xe3 sys/kern/vfs_syscalls.c:3322
#16 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#16 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577
#17 Xsyscall+0x128
Process 74587 (syz-executor) thread 0xffff8000371cc550 (446450)
exclusive rwlock vmmaplk r = 0 (0xfffffd806e9422b0)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 rw_enter+0x41b sys/kern/kern_rwlock.c:309
#2 vm_map_lock_ln+0x143 sys/uvm/uvm_map.c:5252
#3 uvmspace_fork+0x12b sys/uvm/uvm_map.c:3822
#4 process_new+0x553 sys/kern/kern_fork.c:279
#5 fork1+0x3ea sys/kern/kern_fork.c:405
#6 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#6 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
#7 Xsyscall+0x128
exclusive rwlock vmmaplk r = 0 (0xfffffd806b8f4468)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 rw_enter+0x41b sys/kern/kern_rwlock.c:309
#2 vm_map_lock_ln+0x143 sys/uvm/uvm_map.c:5252
#3 uvmspace_fork+0x44 sys/uvm/uvm_map.c:3813
#4 process_new+0x553 sys/kern/kern_fork.c:279
#5 fork1+0x3ea sys/kern/kern_fork.c:405
#6 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#6 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
#7 Xsyscall+0x128
Process 67079 (syz-executor) thread 0xffff8000371e6538 (23251)
exclusive rwlock vmmaplk r = 0 (0xfffffd806e942990)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 rw_enter+0x41b sys/kern/kern_rwlock.c:309
#2 vm_map_lock_ln+0x143 sys/uvm/uvm_map.c:5252
#3 uvmspace_fork+0x12b sys/uvm/uvm_map.c:3822
#4 process_new+0x553 sys/kern/kern_fork.c:279
#5 fork1+0x3ea sys/kern/kern_fork.c:405
#6 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#6 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
#7 Xsyscall+0x128
exclusive rwlock vmmaplk r = 0 (0xfffffd806b8f4eb8)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 rw_enter+0x41b sys/kern/kern_rwlock.c:309
#2 vm_map_lock_ln+0x143 sys/uvm/uvm_map.c:5252
#3 uvmspace_fork+0x44 sys/uvm/uvm_map.c:3813
#4 process_new+0x553 sys/kern/kern_fork.c:279
#5 fork1+0x3ea sys/kern/kern_fork.c:405
#6 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#6 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
#7 Xsyscall+0x128
Process 50999 (syz-executor) thread 0xffff80002a03e7b0 (304153)
exclusive rwlock vmmaplk r = 0 (0xfffffd806b8f47d8)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 rw_enter+0x41b sys/kern/kern_rwlock.c:309
#2 vm_map_lock_ln+0x143 sys/uvm/uvm_map.c:5252
#3 uvmspace_fork+0x12b sys/uvm/uvm_map.c:3822
#4 process_new+0x553 sys/kern/kern_fork.c:279
#5 fork1+0x3ea sys/kern/kern_fork.c:405
#6 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#6 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
#7 Xsyscall+0x128
exclusive rwlock vmmaplk r = 0 (0xfffffd806e9420f8)
#0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151
#1 rw_enter+0x41b sys/kern/kern_rwlock.c:309
#2 vm_map_lock_ln+0x143 sys/uvm/uvm_map.c:5252
#3 uvmspace_fork+0x44 sys/uvm/uvm_map.c:3813
#4 process_new+0x553 sys/kern/kern_fork.c:279
#5 fork1+0x3ea sys/kern/kern_fork.c:405
#6 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
#6 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
#7 Xsyscall+0x128
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10210 14266K 14587K 166960K 12973 0
pcb 17 14K 16K 166960K 410 0
rtable 180 8K 10K 166960K 2494 0
pf 40 18K 26K 166960K 256 0
ifaddr 37 6K 8K 166960K 344 0
ifgroup 59 2K 2K 166960K 395 0
sysctl 4 1K 2K 166960K 9 0
counters 66 36K 37K 166960K 242 0
ioctlops 0 0K 4K 166960K 1727 0
iov 1 8K 24K 166960K 187 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1492 94K 94K 166960K 3212 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 1K 5K 166960K 17 0
VM map 2 1K 1K 166960K 2 0
sem 12 0K 0K 166960K 42 0
dirhash 15 2K 2K 166960K 21 0
ACPI 1690 195K 286K 166960K 12418 0
file desc 18 65K 89K 166960K 2233 0
sigio 0 0K 0K 166960K 21 0
proc 72 91K 128K 166960K 2515 0
subproc 104 6K 6K 166960K 988 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 0 0K 0K 166960K 151 0
in_multi 74 5K 7K 166960K 866 0
ether_multi 1 0K 0K 166960K 10 0
mrt 1 0K 0K 166960K 8 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 79 360K 360K 166960K 79 0
exec 0 0K 1K 166960K 1433 0
pfkey data 0 0K 0K 166960K 1 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 230 73K 92K 166960K 18574 0
UVM aobj 65 3K 3K 166960K 67 0
pinsyscall 43 86K 103K 166960K 5071 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 0K 166960K 67 0
NDP 13 0K 2K 166960K 253 0
temp 76 6824K 7084K 166960K 82404 0
kqueue 13 20K 30K 166960K 209 0
SYN cache 2 16K 16K 166960K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 24 0 0 1 0 1 1 0 8 0
rtpcb 120 377 0 374 5 4 1 3 0 8 0
rtentry 112 884 0 807 4 0 4 4 0 8 0
unpcb 144 1094 0 1077 14 13 1 4 0 8 0
syncache 336 9 0 9 5 5 0 1 0 8 0
tcpqe 32 4 0 4 3 3 0 1 0 8 0
tcpcb 808 453 0 449 15 14 1 8 0 8 0
arp 120 160 0 146 1 0 1 1 0 8 0
inpcb 336 2004 0 1996 27 25 2 8 0 8 1
nd6 136 238 0 220 2 1 1 2 0 8 0
pkpcb 40 10 0 10 4 3 1 1 0 8 1
kcovpl 48 76 0 68 1 0 1 1 0 8 0
ppxss 1168 14 0 14 7 6 1 1 0 8 1
pfstscr 40 1 0 1 1 1 0 1 0 8 0
pffrag 232 9 0 8 1 0 1 1 0 482 0
pffrnode 88 9 0 8 1 0 1 1 0 8 0
pffrent 40 13 0 12 1 0 1 1 0 8 0
pfosfp 40 1428 0 1428 5 0 5 5 0 8 5
pfosfpen 112 1428 0 1428 21 0 21 21 0 8 21
pfrktable 1344 1 0 0 1 0 1 1 0 8 0
pfanchor 1288 1 0 0 1 0 1 1 0 8 0
pftag 88 4 0 0 1 0 1 1 0 8 0
pfqueue 264 1 0 1 1 1 0 1 0 8 0
pfstitem 24 170 0 149 1 0 1 1 0 8 0
pfstkey 128 172 0 150 2 0 2 2 0 8 0
pfstate 376 169 0 149 4 0 4 4 0 8 0
pfrule 1344 32 0 19 3 1 2 2 0 8 0
art_heap8 4096 2 0 0 2 0 2 2 0 8 0
art_heap4 256 3554 0 3215 39 10 29 30 0 8 6
art_table 32 3556 0 3215 4 0 4 4 0 8 0
art_node 16 882 0 814 1 0 1 1 0 8 0
sysvmsgpl 40 44 0 4 1 0 1 1 0 8 0
semapl 112 37 0 27 1 0 1 1 0 8 0
shmpl 112 64 0 3 2 0 2 2 0 8 0
shmpl: pool(0xffffffff8352aca0:shmpl): free list modified: page 0xfffffd807a1e3000; item ordinal 0; addr 0xfffffd807a1e33f8 (p 0xfffffd807a1e3000); offset 0x0=0x0
shmpl: pool(0xffffffff8352aca0:shmpl): page inconsistency: page 0xfffffd807a1e3000; item ordinal 1; addr 0x3ea85c7b36ef565b
dirhash 1024 23 0 4 3 0 3 3 0 8 0
dino2pl 256 3609 0 1969 104 1 103 103 0 8 0
ffsino 272 3610 0 1969 110 0 110 110 0 8 0
nchpl 144 5487 0 4857 64 40 24 63 0 8 0
uvmvnodes 80 5262 0 0 108 0 108 108 0 8 0
vnodes 216 5262 0 0 293 0 293 293 0 8 0
namei 1024 27285 0 27284 10 9 1 2 0 8 0
percpumem 16 135 0 88 1 0 1 1 0 8 0
kstatmem 264 202 0 176 3 1 2 3 0 8 0
scsiplug 72 1 0 1 1 1 0 1 0 8 0
scxspl 216 49280 0 49279 13 11 2 8 1 8 1
plimitpl 152 500 0 483 1 0 1 1 0 8 0
sigapl 424 2423 0 2351 9 0 9 9 0 8 0
futexpl 64 16924 0 16922 9 8 1 1 0 8 0
knotepl 120 641 0 0 17 0 17 17 0 8 0
kqueuepl 216 626 0 617 18 17 1 5 0 8 0
pipepl 320 508 0 481 10 7 3 8 0 8 0
fdescpl 496 2383 0 2351 9 4 5 5 0 8 0
filepl 152 14120 0 13876 47 36 11 20 0 8 0
lockfpl 104 721 0 718 4 3 1 4 0 8 0
lockfspl 48 187 0 184 1 0 1 1 0 8 0
sessionpl 144 96 0 87 1 0 1 1 0 8 0
pgrppl 48 194 0 177 1 0 1 1 0 8 0
ucredpl 104 2857 0 2844 1 0 1 1 0 8 0
zombiepl 144 2637 0 2637 3 2 1 1 0 8 1
processpl 1160 2423 0 2351 6 0 6 6 0 8 0
procpl 648 4446 0 4365 9 1 8 8 0 8 0
srpgc 96 8 0 8 3 3 0 1 0 8 0
sosppl 168 7 0 7 5 5 0 1 0 8 0
sockpl 664 3503 0 3475 43 39 4 10 0 8 1
mcl64k 65536 3 0 0 1 0 1 1 0 8 0
mcl16k 16384 3 0 0 1 0 1 1 0 8 0
mcl12k 12288 2 0 0 1 0 1 1 0 8 0
mcl9k 9216 2 0 0 1 0 1 1 0 8 0
mcl8k 8192 5 0 0 1 0 1 1 0 8 0
mcl4k 4096 4 0 0 1 0 1 1 0 8 0
mcl2k 2048 240 0 0 28 1 27 28 0 8 0
mtagpl 96 13 0 0 1 0 1 1 0 8 0
mbufpl 256 533 0 0 32 0 32 32 0 8 0
bufpl 280 9392 0 2208 514 0 514 514 0 8 0
anonpl 24 384281 0 375630 122 61 61 86 0 185 8
amapchunkpl 152 59302 0 58773 62 27 35 37 0 158 12
amappl16 200 7428 0 7160 67 52 15 23 0 8 0
amappl15 192 27 0 27 1 1 0 1 0 8 0
amappl14 184 260 0 248 1 0 1 1 0 8 0
amappl13 176 12 0 12 2 2 0 1 0 8 0
amappl12 168 4100 0 4070 4 2 2 3 0 8 0
amappl11 160 53 0 39 1 0 1 1 0 8 0
amappl10 152 10 0 10 1 1 0 1 0 8 0
amappl9 144 142 0 142 1 1 0 1 0 8 0
amappl8 136 29 0 26 1 0 1 1 0 8 0
amappl7 128 244 0 231 1 0 1 1 0 8 0
amappl6 120 848 0 847 1 0 1 1 0 8 0
amappl5 112 421 0 409 1 0 1 1 0 8 0
amappl4 104 524 0 506 1 0 1 1 0 8 0
amappl3 96 11452 0 11349 4 0 4 4 0 8 0
amappl2 88 1655 0 1585 2 0 2 2 0 8 0
amappl1 80 18769 0 18216 16 2 14 14 0 8 0
amappl 88 17588 0 17421 5 0 5 5 0 92 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 66 0 2 2 0 2 2 0 8 0
uaddrrnd 24 2383 0 2351 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 2383 0 2351 1 0 1 1 0 8 0
vmmpekpl 168 21095 0 21034 4 0 4 4 0 8 0
vmmpepl 168 155222 0 153124 137 45 92 103 0 357 0
vmsppl 440 2382 0 2351 6 2 4 5 0 8 0
rwobjpl 56 49983 0 43495 96 4 92 92 0 8 0
pdppl 4096 4773 0 4702 190 115 75 85 0 8 4
pvpl 32 33255 0 0 270 1 269 269 0 265 0
pmappl 248 2382 0 2351 3 0 3 3 0 8 0
extentpl 40 56 0 38 1 0 1 1 0 8 0
phpool 112 579 0 188 12 0 12 12 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff830164d3) at panic+0x1e5 sys/kern/subr_prf.c:198
pool_do_get(ffffffff8352aca0,1,ffff80002a1520f8) at pool_do_get+0x59d
pool_get(ffffffff8352aca0,1) at pool_get+0x141
shmget_allocate_segment(ffff8000ffff3970,ffff80002a152350,10e,ffff80002a1522a0) at shmget_allocate_segment+0x1a7
sys_shmget(ffff8000ffff3970,ffff80002a152350,ffff80002a1522a0) at sys_shmget+0x1b2 sys/kern/sysv_shm.c:480
syscall(ffff80002a152350) at syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline]
syscall(ffff80002a152350) at syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xa746971fd10, count: -8
ddb{0}> machine ddbcpu 1
Stopped at x86_ipi_db+0x27: addq $0x8,%rsp
x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
x86_bus_space_io_read_4(b008,0) at x86_bus_space_io_read_4+0x37 sys/arch/amd64/amd64/bus_space.c:666
acpitimer_delay(1) at acpitimer_delay+0xb7 acpitimer_read sys/dev/acpi/acpitimer.c:146 [inline]
acpitimer_delay(1) at acpitimer_delay+0xb7 sys/dev/acpi/acpitimer.c:120
comcnputc(800,20) at comcnputc+0x29b sys/dev/ic/com.c:1269
cnputc(20) at cnputc+0x61 sys/dev/cons.c:218
db_putchar(72) at db_putchar+0x56d sys/ddb/db_output.c:153
kprintf() at kprintf+0x2aba sys/kern/subr_prf.c:1065
db_printf(ffffffff83086c5e) at db_printf+0x9b
panic(ffffffff830e7b6c) at panic+0x103 sys/kern/subr_prf.c:216
__assert(ffffffff8309ae15,ffffffff82fdf15f,3bb,ffffffff830bc081) at __assert+0x29
uvn_get(fffffd806d1dea20,137000,ffff80003728b8d0,ffff80003728b74c,3,4,f32c7768bd1690db,137000) at uvn_get+0x69b sys/uvm/uvm_vnode.c:954
uvm_fault_lower_lookup(ffff80003728b950,ffff80003728b988,ffff80003728b8d0) at uvm_fault_lower_lookup+0x10e sys/uvm/uvm_fault.c:1128
end trace frame: 0xffff80003728b840, count: 0
ddb{1}> trace
x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
x86_bus_space_io_read_4(b008,0) at x86_bus_space_io_read_4+0x37 sys/arch/amd64/amd64/bus_space.c:666
acpitimer_delay(1) at acpitimer_delay+0xb7 acpitimer_read sys/dev/acpi/acpitimer.c:146 [inline]
acpitimer_delay(1) at acpitimer_delay+0xb7 sys/dev/acpi/acpitimer.c:120
comcnputc(800,20) at comcnputc+0x29b sys/dev/ic/com.c:1269
cnputc(20) at cnputc+0x61 sys/dev/cons.c:218
db_putchar(72) at db_putchar+0x56d sys/ddb/db_output.c:153
kprintf() at kprintf+0x2aba sys/kern/subr_prf.c:1065
db_printf(ffffffff83086c5e) at db_printf+0x9b
panic(ffffffff830e7b6c) at panic+0x103 sys/kern/subr_prf.c:216
__assert(ffffffff8309ae15,ffffffff82fdf15f,3bb,ffffffff830bc081) at __assert+0x29
uvn_get(fffffd806d1dea20,137000,ffff80003728b8d0,ffff80003728b74c,3,4,f32c7768bd1690db,137000) at uvn_get+0x69b sys/uvm/uvm_vnode.c:954
uvm_fault_lower_lookup(ffff80003728b950,ffff80003728b988,ffff80003728b8d0) at uvm_fault_lower_lookup+0x10e sys/uvm/uvm_fault.c:1128
uvm_fault_lower(ffff80003728b950,ffff80003728b988,ffff80003728b8d0,0) at uvm_fault_lower+0x74 sys/uvm/uvm_fault.c:1227
uvm_fault(fffffd806b8f46e8,e5c41728000,0,4) at uvm_fault+0x301 sys/uvm/uvm_fault.c:637
upageflttrap(ffff80003728bad0,e5c417284bb) at upageflttrap+0xa9 sys/arch/amd64/amd64/trap.c:188
usertrap(ffff80003728bad0) at usertrap+0x2d8 sys/arch/amd64/amd64/trap.c:436
recall_trap() at recall_trap+0x8
end of kernel
end trace frame: 0x77d4cb2ffd20, count: -19