uvm_fault(0xfffffd806c97c200, 0x3f, 0, 2) -> e
kernel: page fault trap, code=2
Stopped at uao_detach+0xba: movq %r15,0x40(%r12)
TID PID UID PRFLAGS PFLAGS CPU COMMAND
*500282 31705 0 0 0x4000000 0K syz-executor
382930 56713 0 0x2 0 1 syz-executor
uao_detach(fffffd806c8acd40) at uao_detach+0xba sys/uvm/uvm_aobj.c:817
shm_deallocate_segment(fffffd807b075320) at shm_deallocate_segment+0x43 sys/kern/sysv_shm.c:152
sys_shmat(ffff8000333ea550,ffff80002a2fc4d0,ffff80002a2fc420) at sys_shmat+0x559 sys/kern/sysv_shm.c:281
syscall(ffff80002a2fc4d0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80002a2fc4d0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xb25065e35e0, count: 10
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
*cpu0: uvm_fault(0xfffffd806c97c200, 0x3f, 0, 2) -> e
ddb{0}> trace
uao_detach(fffffd806c8acd40) at uao_detach+0xba sys/uvm/uvm_aobj.c:817
shm_deallocate_segment(fffffd807b075320) at shm_deallocate_segment+0x43 sys/kern/sysv_shm.c:152
sys_shmat(ffff8000333ea550,ffff80002a2fc4d0,ffff80002a2fc420) at sys_shmat+0x559 sys/kern/sysv_shm.c:281
syscall(ffff80002a2fc4d0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80002a2fc4d0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xb25065e35e0, count: -5
ddb{0}> show registers
rdi 0
rsi 0
rbp 0xffff80002a2fc310
rbx 0xfffffd807b075320
rdx 0
rcx 0xffff8000333ea550
rax 0xffffffff83835ff0 cpu_info_full_primary+0x1ff0
r8 0x200000ffb000
r9 0xc00000 acpi_pdirpa+0xbebe71
r10 0x2772bb39256b1b7c
r11 0x3dd865ac9fbacb12
r12 0xffffffffffffffff
r13 0xffff800001589010
r14 0xfffffd806c8acd40
r15 0xffffffffffffffff
rip 0xffffffff81208c3a uao_detach+0xba
cs 0x8
rflags 0x10246 __ALIGN_SIZE+0xf246
rsp 0xffff80002a2fc2d0
ss 0
uao_detach+0xba: movq %r15,0x40(%r12)
ddb{0}> show proc
PROC (syz-executor) tid=500282 pid=31705 tcnt=4 stat=onproc
flags process=0 proc=4000000<THREAD>
runpri=32, usrpri=86, slppri=32, nice=20
wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
forw=0xffffffffffffffff, list=0xffff80003a40c7f0,0xffff8000333ea030
process=0xffff80002a3cc4e8 user=0xffff80002a2f7000, vmspace=0xfffffd806c97c200
estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
34266 402897 21536 0 2 0 syz-executor
34266 434625 21536 0 3 0x4000080 fsleep syz-executor
31705 502387 11344 0 3 0x80 nanoslp syz-executor
31705 508625 11344 0 2 0x4000000 syz-executor
*31705 500282 11344 0 7 0x4000000 syz-executor
31705 363562 11344 0 2 0x4000000 syz-executor
37661 326152 62352 0 3 0x80 nanoslp syz-executor
37661 340213 62352 0 3 0x4000080 kqread syz-executor
37661 40998 62352 0 3 0x4000080 fsleep syz-executor
37661 293739 62352 0 3 0x4000080 fsleep syz-executor
81441 498708 22667 0 3 0x80 nanoslp syz-executor
81441 164522 22667 0 3 0x4000080 kqsel syz-executor
81441 503540 22667 0 3 0x4000080 fsleep syz-executor
20208 424841 66023 0 3 0x3000 suspend syz-executor
20208 106792 66023 0 3 0x4081000 biowait syz-executor
20208 96086 66023 0 3 0x4081000 inode syz-executor
22667 197971 44173 0 3 0x82 nanoslp syz-executor
14972 219877 53604 0 3 0x3000 suspend syz-executor
14972 78178 53604 0 3 0x4081000 biowait syz-executor
14972 26334 53604 0 3 0x4081000 inode syz-executor
53604 271262 44173 0 3 0x82 nanoslp syz-executor
11344 225710 44173 0 3 0x82 nanoslp syz-executor
99325 68298 0 0 3 0x14200 acct acct
21536 469866 44173 0 3 0x82 nanoslp syz-executor
66023 435590 44173 0 3 0x82 nanoslp syz-executor
62909 500018 44173 0 3 0x82 nanoslp syz-executor
62352 290903 44173 0 3 0x82 nanoslp syz-executor
56713 382930 44173 0 7 0x2 syz-executor
44173 490802 74334 0 3 0x82 kqread syz-executor
74334 505783 28662 0 3 0x10008a sigsusp ksh
28662 131370 75268 0 3 0x98 kqread sshd-session
75268 205947 57225 0 3 0x92 kqread sshd-session
31532 117739 1 0 3 0x100083 ttyopn getty
57225 344912 1 0 3 0x88 kqread sshd
40181 93173 72412 74 3 0x1100092 bpf pflogd
72412 196327 1 0 3 0x80 sbwait pflogd
34386 266912 6573 73 3 0x1100090 kqread syslogd
6573 455811 1 0 3 0x100082 sbwait syslogd
54550 406271 1 0 3 0x100080 kqread resolvd
85103 100348 57518 77 3 0x100092 kqread dhcpleased
36582 143012 57518 77 3 0x100092 kqread dhcpleased
57518 304334 1 0 3 0x80 kqread dhcpleased
17044 12364 0 0 3 0x14200 bored smr
38682 499047 0 0 3 0x14200 pgzero zerothread
68827 455401 0 0 3 0x14200 aiodoned aiodoned
77687 278437 0 0 3 0x14200 syncer update
16668 134684 0 0 3 0x14200 cleaner cleaner
27666 50720 0 0 3 0x14200 reaper reaper
81887 513396 0 0 3 0x14200 pgdaemon pagedaemon
82809 62998 0 0 3 0x14200 bored viomb
12124 96905 0 0 3 0x40014200 acpi0 acpi0
34219 472863 0 0 3 0x40014200 idle1
42558 257751 0 0 3 0x14200 bored softnet1
38370 354673 0 0 3 0x14200 bored softnet0
25454 190358 0 0 3 0x14200 bored systqmp
40640 65504 0 0 3 0x14200 bored systq
82767 318831 0 0 3 0x14200 tmoslp softclockmp
41159 374542 0 0 3 0x40014200 tmoslp softclock
16899 331901 0 0 3 0x40014200 idle0
1 330616 0 0 3 0x80082 wait init
0 0 -1 0 3 0x10010200 scheduler swapper
ddb{0}> show all locks
CPU 0:
exclusive mutex /syzkaller/managers/multicore/kernel/sys/uvm/uvm_aobj.c:186 r = 0 (0xffffffff837c0740)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter+0x4b4 sys/kern/kern_lock.c:487
#2 uao_detach+0x96 sys/uvm/uvm_aobj.c:817
#3 shm_deallocate_segment+0x43 sys/kern/sysv_shm.c:152
#4 sys_shmat+0x559 sys/kern/sysv_shm.c:281
#5 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#5 syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
#6 Xsyscall+0x128
Process 31705 (syz-executor) thread 0xffff8000333ea550 (500282)
exclusive kernel_lock &kernel_lock r = 0 (0xffffffff83a08c08)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 __mp_acquire_count+0x58 sys/kern/kern_lock.c:-1
#2 sleep_finish+0x2d8 sys/kern/kern_synch.c:369
#3 rw_do_enter_write+0x1dc sys/kern/kern_rwlock.c:298
#4 vm_map_lock_ln+0x12e sys/uvm/uvm_map.c:5165
#5 uvm_map+0x404 sys/uvm/uvm_map.c:1021
#6 sys_shmat+0x449 sys/kern/sysv_shm.c:274
#7 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#7 syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
#8 Xsyscall+0x128
exclusive mutex /syzkaller/managers/multicore/kernel/sys/uvm/uvm_aobj.c:186 r = 0 (0xffffffff837c0740)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter+0x4b4 sys/kern/kern_lock.c:487
#2 uao_detach+0x96 sys/uvm/uvm_aobj.c:817
#3 shm_deallocate_segment+0x43 sys/kern/sysv_shm.c:152
#4 sys_shmat+0x559 sys/kern/sysv_shm.c:281
#5 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#5 syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
#6 Xsyscall+0x128
Process 20208 (syz-executor) thread 0xffff80003a40c558 (106792)
exclusive rrwlock inode r = 0 (0xfffffd807ada8460)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621
#3 VOP_LOCK+0xbd sys/kern/vfs_vops.c:527
#4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570
#5 vn_write+0x18f sys/kern/vfs_vnops.c:405
#6 dofilewritev+0x242 sys/kern/sys_generic.c:380
#7 sys_write+0xa2 sys/kern/sys_generic.c:300
#8 syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#8 syscall+0xbd4 sys/arch/amd64/amd64/trap.c:775
#9 Xsyscall+0x128
Process 14972 (syz-executor) thread 0xffff8000333eb4e0 (78178)
exclusive rrwlock inode r = 0 (0xfffffd806e7b9f08)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621
#3 VOP_LOCK+0xbd sys/kern/vfs_vops.c:527
#4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570
#5 vn_write+0x18f sys/kern/vfs_vnops.c:405
#6 dofilewritev+0x242 sys/kern/sys_generic.c:380
#7 sys_write+0xa2 sys/kern/sys_generic.c:300
#8 syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#8 syscall+0xbd4 sys/arch/amd64/amd64/trap.c:775
#9 Xsyscall+0x128
Process 14972 (syz-executor) thread 0xffff8000fffefa08 (26334)
exclusive rrwlock inode r = 0 (0xfffffd8071a5d8e8)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621
#3 VOP_LOCK+0xbd sys/kern/vfs_vops.c:527
#4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570
#5 vfs_lookup+0x11c sys/kern/vfs_lookup.c:-1
#6 namei+0x7ca sys/kern/vfs_lookup.c:250
#7 dorenameat+0x91 sys/kern/vfs_syscalls.c:2990
#8 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#8 syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
#9 Xsyscall+0x128
Process 56713 (syz-executor) thread 0xffff8000ffffdc90 (382930)
exclusive rrwlock inode r = 0 (0xfffffd806cf21570)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621
#3 VOP_LOCK+0xbd sys/kern/vfs_vops.c:527
#4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570
#5 vfs_lookup+0x11c sys/kern/vfs_lookup.c:-1
#6 namei+0x7ca sys/kern/vfs_lookup.c:250
#7 domkdirat+0x8b sys/kern/vfs_syscalls.c:3098
#8 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#8 syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
#9 Xsyscall+0x128
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 11108 12102K 12426K 166960K 13611 0
pcb 17 15K 16K 166960K 305 0
rtable 213 12K 13K 166960K 667 0
pf 43 19K 81K 166960K 268 0
ifaddr 40 6K 7K 166960K 129 0
ifgroup 67 2K 3K 166960K 207 0
sysctl 3 1K 9K 166960K 9 0
counters 76 37K 38K 166960K 228 0
ioctlops 0 0K 4K 166960K 1746 0
iov 0 0K 16K 166960K 57 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1465 92K 92K 166960K 2520 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 3 5K 5K 166960K 17 0
VM map 2 1K 1K 166960K 2 0
sem 12 0K 0K 166960K 28 0
dirhash 12 2K 2K 166960K 30 0
ACPI 1692 195K 286K 166960K 12470 0
file desc 17 61K 236K 166960K 1182 0
sigio 0 0K 0K 166960K 90 0
proc 73 115K 196K 166960K 768 0
subproc 72 4K 4K 166960K 109 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 1 0K 0K 166960K 264 0
in_multi 79 5K 7K 166960K 204 0
ether_multi 1 0K 0K 166960K 4 0
mrt 1 0K 0K 166960K 5 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 247 1102K 1102K 166960K 247 0
exec 0 0K 1K 166960K 755 0
fusefs mount 1 32K 32K 166960K 1 0
pfkey data 0 0K 0K 166960K 3 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 253 159K 178K 166960K 12533 0
UVM aobj 105 25K 27K 166960K 111 0
pinsyscall 42 84K 103K 166960K 2422 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 1K 166960K 68 0
NDP 17 0K 1K 166960K 88 0
temp 72 8677K 8747K 166960K 60153 0
kqueue 14 22K 30K 166960K 230 0
SYN cache 2 16K 16K 166960K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 26 0 0 1 0 1 1 0 8 0
rtpcb 120 124 0 120 1 0 1 1 0 8 0
rtentry 176 201 0 124 6 0 6 6 0 8 0
unpcb 144 779 0 762 8 7 1 4 0 8 0
syncache 336 8 0 8 3 3 0 1 0 8 0
tcpcb 736 385 0 379 15 14 1 7 0 8 0
arp 136 36 0 22 1 0 1 1 0 8 0
inpcb 328 1525 0 1513 15 11 4 7 0 8 2
nd6 152 38 0 20 1 0 1 1 0 8 0
pkpcb 40 6 0 6 3 2 1 1 0 8 1
kcovpl 48 12 0 4 1 0 1 1 0 8 0
mppekey 1024 1 0 1 1 1 0 1 0 8 0
ppxss 1192 61 0 60 2 1 1 1 0 8 0
pppxif 1504 12 0 11 3 2 1 1 0 8 0
pffrag 232 17 0 7 1 0 1 1 0 482 0
pffrnode 88 13 0 4 1 0 1 1 0 8 0
pffrent 40 93 0 83 1 0 1 1 0 8 0
pfosfp 40 1428 0 1005 5 0 5 5 0 8 0
pfosfpen 112 1428 0 714 21 0 21 21 0 8 0
pfrktable 1344 3 0 1 1 0 1 1 0 8 0
pfanchor 1288 4 0 0 1 0 1 1 0 8 0
pfstitem 24 98 0 33 1 0 1 1 0 8 0
pfstkey 128 98 0 33 3 0 3 3 0 8 0
pfstate 448 98 0 33 8 0 8 8 0 8 0
pfrule 1344 30 0 23 2 1 1 2 0 8 0
rttmr 136 1 0 1 1 1 0 1 0 8 0
art_heap8 4096 4 0 1 4 0 4 4 0 8 1
art_heap4 256 962 0 590 35 7 28 31 0 8 1
art_table 40 966 0 591 6 1 5 6 0 8 0
art_node 32 200 0 131 1 0 1 1 0 8 0
sysvmsgpl 40 11 0 7 1 0 1 1 0 8 0
semupl 112 1 0 1 1 1 0 1 0 8 0
semapl 112 26 0 16 1 0 1 1 0 8 0
shmpl 112 96 0 3 3 0 3 3 0 8 0
dirhash 1024 29 0 12 3 0 3 3 0 8 0
dino2pl 256 3645 0 2135 96 0 96 96 0 8 0
ffsino 296 3646 0 2135 118 1 117 118 0 8 0
nchpl 144 5255 0 3542 64 0 64 64 0 8 0
rtmask 32 13 0 13 3 3 0 1 0 8 0
vnodes 216 4377 0 0 244 0 244 244 0 8 0
namei 1024 19523 0 19521 2 1 1 1 0 8 0
percpumem 16 129 0 76 1 0 1 1 0 8 0
vcpupl 3968 10 0 0 2 0 2 2 0 8 0
vmpool 848 13 0 3 2 0 2 2 0 8 0
pfiaddrpl 120 1 0 0 1 0 1 1 0 8 0
kstatmem 264 126 0 92 3 0 3 3 0 8 0
scsiplug 72 7 0 7 2 2 0 1 0 8 0
scxspl 216 32252 0 32250 11 10 1 8 1 8 0
plimitpl 152 420 0 401 1 0 1 1 0 8 0
sigapl 424 1479 0 1431 8 1 7 7 0 8 0
knotepl 120 540 0 0 17 0 17 17 0 8 0
kqueuepl 224 469 0 456 5 4 1 5 0 8 0
pipepl 344 265 0 238 9 6 3 9 0 8 0
fdescpl 528 1458 0 1427 3 0 3 3 0 8 0
filepl 160 10164 0 9940 22 9 13 17 0 8 2
lockfpl 104 599 0 597 2 1 1 2 0 8 0
lockfspl 48 224 0 222 1 0 1 1 0 8 0
sessionpl 144 31 0 22 1 0 1 1 0 8 0
pgrppl 48 121 0 104 1 0 1 1 0 8 0
ucredpl 104 1422 0 1409 1 0 1 1 0 8 0
zombiepl 144 1491 0 1488 2 1 1 1 0 8 0
processpl 1232 1479 0 1431 5 0 5 5 0 8 0
procpl 664 3138 0 3077 7 1 6 7 0 8 0
sosppl 176 10 0 10 4 3 1 1 0 8 1
sockpl 752 2512 0 2479 21 14 7 11 0 8 3
mcl64k 65536 3 0 0 1 0 1 1 0 8 0
mcl16k 16384 2 0 0 1 0 1 1 0 8 0
mcl12k 12288 2 0 0 1 0 1 1 0 8 0
mcl9k 9216 2 0 0 1 0 1 1 0 8 0
mcl8k 8192 3 0 0 1 0 1 1 0 8 0
mcl4k 4096 110 0 0 14 0 14 14 0 8 0
mcl2k 2048 38 0 0 5 1 4 4 0 8 0
mtagpl 96 10 0 0 1 0 1 1 0 8 0
mbufpl 256 188 0 0 12 0 12 12 0 8 0
bufpl 280 13644 0 7507 439 0 439 439 0 8 0
anonpl 32 11045 0 0 89 0 89 89 0 246 0
amapchunkpl 152 41440 0 40921 43 15 28 31 0 158 7
amappl16 200 6113 0 5778 41 23 18 25 0 8 0
amappl15 192 10 0 10 1 1 0 1 0 8 0
amappl14 184 6 0 6 1 1 0 1 0 8 0
amappl13 176 514 0 513 1 0 1 1 0 8 0
amappl12 168 1852 0 1810 3 0 3 3 0 8 0
amappl11 160 25 0 25 1 1 0 1 0 8 0
amappl10 152 51 0 36 1 0 1 1 0 8 0
amappl9 144 252 0 252 1 1 0 1 0 8 0
amappl8 136 26 0 23 1 0 1 1 0 8 0
amappl7 128 137 0 136 1 0 1 1 0 8 0
amappl6 120 353 0 337 1 0 1 1 0 8 0
amappl5 112 82 0 70 1 0 1 1 0 8 0
amappl4 104 468 0 435 1 0 1 1 0 8 0
amappl3 96 7136 0 7038 4 1 3 3 0 8 0
amappl2 88 1598 0 1521 2 0 2 2 0 8 0
amappl1 80 14874 0 14276 16 2 14 15 0 8 0
amappl 88 11555 0 11379 5 0 5 5 0 92 0
uvmvnodes 80 130 0 0 3 0 3 3 0 8 0
dma65536 65536 1 0 1 1 1 0 1 0 8 0
dma32768 32768 1 0 1 1 1 0 1 0 8 0
dma16384 16384 1 0 1 1 1 0 1 0 8 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma512 512 2 0 2 1 1 0 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 8 0 8 2 2 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 111 0 6 2 0 2 2 0 8 0
uaddrrnd 24 1458 0 1427 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 1458 0 1427 1 0 1 1 0 8 0
vmmpekpl 168 13483 0 13434 3 0 3 3 0 8 0
vmmpepl 168 100337 0 98075 118 17 101 107 0 357 0
vmsppl 488 1457 0 1427 6 1 5 5 0 8 0
rwobjpl 80 30081 0 28588 32 0 32 32 0 8 0
pdppl 4096 2949 0 2870 129 47 82 85 0 8 3
pvpl 32 18817 0 0 154 2 152 152 0 265 0
pmappl 256 1470 0 1430 3 0 3 3 0 8 0
extentpl 40 45 0 27 1 0 1 1 0 8 0
phpool 112 340 0 80 8 0 8 8 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
uao_detach(fffffd806c8acd40) at uao_detach+0xba sys/uvm/uvm_aobj.c:817
shm_deallocate_segment(fffffd807b075320) at shm_deallocate_segment+0x43 sys/kern/sysv_shm.c:152
sys_shmat(ffff8000333ea550,ffff80002a2fc4d0,ffff80002a2fc420) at sys_shmat+0x559 sys/kern/sysv_shm.c:281
syscall(ffff80002a2fc4d0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80002a2fc4d0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xb25065e35e0, count: -5
ddb{0}> machine ddbcpu 1
Stopped at x86_ipi_db+0x27: addq $0x8,%rsp
x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
__sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x33 kd_curproc sys/dev/kcov.c:585 [inline]
__sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x33 sys/dev/kcov.c:153
__mp_lock(ffffffff83a08a00) at __mp_lock+0x1a3 __mp_lock_spin sys/kern/kern_lock.c:142 [inline]
__mp_lock(ffffffff83a08a00) at __mp_lock+0x1a3 sys/kern/kern_lock.c:173
__mp_acquire_count(ffffffff83a08a00,1) at __mp_acquire_count+0x58 sys/kern/kern_lock.c:-1
pool_get(ffffffff8395bf38,9) at pool_get+0x27e sys/kern/subr_pool.c:591
ffs_vget(ffff800000c5a000,13408,ffff80002a3347c8) at ffs_vget+0x104 sys/ufs/ffs/ffs_vfsops.c:1215
ffs_inode_alloc(fffffd806cf214d0,41ed,fffffd80097fd618,ffff80002a3347c8) at ffs_inode_alloc+0x279 sys/ufs/ffs/ffs_alloc.c:393
ufs_mkdir(ffff80002a334830) at ufs_mkdir+0xfc sys/ufs/ufs/ufs_vnops.c:1112
VOP_MKDIR(fffffd8071ee2dc0,ffff80002a334990,ffff80002a3349c0,ffff80002a3348c0) at VOP_MKDIR+0x101 sys/kern/vfs_vops.c:394
domkdirat(ffff8000ffffdc90,ffffff9c,7267783bc110,1ff) at domkdirat+0x179 sys/kern/vfs_syscalls.c:3113
syscall(ffff80002a334b40) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80002a334b40) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7267783bc1b0, count: 1
ddb{1}> trace
x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
__sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x33 kd_curproc sys/dev/kcov.c:585 [inline]
__sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x33 sys/dev/kcov.c:153
__mp_lock(ffffffff83a08a00) at __mp_lock+0x1a3 __mp_lock_spin sys/kern/kern_lock.c:142 [inline]
__mp_lock(ffffffff83a08a00) at __mp_lock+0x1a3 sys/kern/kern_lock.c:173
__mp_acquire_count(ffffffff83a08a00,1) at __mp_acquire_count+0x58 sys/kern/kern_lock.c:-1
pool_get(ffffffff8395bf38,9) at pool_get+0x27e sys/kern/subr_pool.c:591
ffs_vget(ffff800000c5a000,13408,ffff80002a3347c8) at ffs_vget+0x104 sys/ufs/ffs/ffs_vfsops.c:1215
ffs_inode_alloc(fffffd806cf214d0,41ed,fffffd80097fd618,ffff80002a3347c8) at ffs_inode_alloc+0x279 sys/ufs/ffs/ffs_alloc.c:393
ufs_mkdir(ffff80002a334830) at ufs_mkdir+0xfc sys/ufs/ufs/ufs_vnops.c:1112
VOP_MKDIR(fffffd8071ee2dc0,ffff80002a334990,ffff80002a3349c0,ffff80002a3348c0) at VOP_MKDIR+0x101 sys/kern/vfs_vops.c:394
domkdirat(ffff8000ffffdc90,ffffff9c,7267783bc110,1ff) at domkdirat+0x179 sys/kern/vfs_syscalls.c:3113
syscall(ffff80002a334b40) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80002a334b40) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7267783bc1b0, count: -14