panic: acquiring blockablep a ni c : k er ne l d ia gn o s t i c as s e r stleieopn l oc k w i t h s pi n l oc"ko b j = = N UL L | | U VM _ O BJ _ IS _ DU MM Y ( ob j) | | rw _ w r i te _ h el d ( o b j - > v m ob j l o ck )" f a i l e d o:r f i l e " / s yz k a l le r / m an a ge r s / mu lt ic o r e /k e r n e l/ s y s / uv m / u v m _ p a g ecr.ic"ti, clailn se e6c97t
ioStopped at db_enter+0x18: addq $0x8,%rsp
TID PID UID PRFLAGS PFLAGS CPU COMMAND
* 24338 51912 0 0 0 0K syz-executor.2
53190 47366 0 0 0x4000000 1 syz-executor.3
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:440
panic(ffffffff8258f849) at panic+0x177 sys/kern/subr_prf.c:202
__assert(ffffffff826021d1,ffffffff82579a03,2b9,ffffffff82628f10) at __assert+0x25 sys/kern/subr_prf.c:161
uvm_pagealloc_pg(fffffd800802c300,ffffffff829c6e00,2e36e000,0) at uvm_pagealloc_pg+0x3b4 sys/uvm/uvm_page.c:705
uvm_km_kmemalloc_pla(ffffffff829d5f78,ffffffff829c6e00,6000,0,8,0,bc2e3d1dafe37709,3a,701,0) at uvm_km_kmemalloc_pla+0x325 x86_atomic_clearbits_u32 machine/atomic.h:298 [inline]
uvm_km_kmemalloc_pla(ffffffff829d5f78,ffffffff829c6e00,6000,0,8,0,bc2e3d1dafe37709,3a,701,0) at uvm_km_kmemalloc_pla+0x325 sys/uvm/uvm_km.c:396
uvm_uarea_alloc() at uvm_uarea_alloc+0x4a sys/uvm/uvm_glue.c:275
thread_fork(ffff800026092fc8,1deca758910,1dfb11d6200,1dfb11d6230,ffff80002e357880) at thread_fork+0xd7 sys/kern/kern_fork.c:532
sys___tfork(ffff800026092fc8,ffff80002e357820,ffff80002e357880) at sys___tfork+0x13b sys/kern/kern_fork.c:140
syscall(ffff80002e3578f0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002e3578f0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffbea10, count: 5
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
cpu0: kernel diagnostic assertion "obj == NULL || UVM_OBJ_IS_DUMMY(obj) || rw_write_held(obj->vmobjlock)" failed: file "/syzkaller/managers/multicore/kernel/sys/uvm/uvm_page.c", line 697
*cpu1: acquiring blockable sleep lock with spinlock or critical section held (kernel_lock) &kernel_lock
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:440
panic(ffffffff8258f849) at panic+0x177 sys/kern/subr_prf.c:202
__assert(ffffffff826021d1,ffffffff82579a03,2b9,ffffffff82628f10) at __assert+0x25 sys/kern/subr_prf.c:161
uvm_pagealloc_pg(fffffd800802c300,ffffffff829c6e00,2e36e000,0) at uvm_pagealloc_pg+0x3b4 sys/uvm/uvm_page.c:705
uvm_km_kmemalloc_pla(ffffffff829d5f78,ffffffff829c6e00,6000,0,8,0,bc2e3d1dafe37709,3a,701,0) at uvm_km_kmemalloc_pla+0x325 x86_atomic_clearbits_u32 machine/atomic.h:298 [inline]
uvm_km_kmemalloc_pla(ffffffff829d5f78,ffffffff829c6e00,6000,0,8,0,bc2e3d1dafe37709,3a,701,0) at uvm_km_kmemalloc_pla+0x325 sys/uvm/uvm_km.c:396
uvm_uarea_alloc() at uvm_uarea_alloc+0x4a sys/uvm/uvm_glue.c:275
thread_fork(ffff800026092fc8,1deca758910,1dfb11d6200,1dfb11d6230,ffff80002e357880) at thread_fork+0xd7 sys/kern/kern_fork.c:532
sys___tfork(ffff800026092fc8,ffff80002e357820,ffff80002e357880) at sys___tfork+0x13b sys/kern/kern_fork.c:140
syscall(ffff80002e3578f0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002e3578f0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffbea10, count: -10
ddb{0}> show registers
rdi 0
rsi 0x1
rbp 0xffff80002e3574b0
rbx 0xffffffff8294ebff cpu_info_full_primary+0x2bff
rdx 0
rcx 0
rax 0xffff800026092fc8
r8 0
r9 0x8080808080808080
r10 0x7c1aa5634bbe6504
r11 0x3e56d46ecd63c12
r12 0xffffffff8294ea00 cpu_info_full_primary+0x2a00
r13 0
r14 0xffff800020ce9a00
r15 0x1
rip 0xffffffff81f18858 db_enter+0x18
cs 0x8
rflags 0x246
rsp 0xffff80002e3574a0
ss 0x10
db_enter+0x18: addq $0x8,%rsp
ddb{0}> show proc
PROC (syz-executor.2) pid=24338 stat=onproc
flags process=0 proc=0
pri=78, usrpri=86, nice=20
forw=0xffffffffffffffff, list=0xffff800026093508,0xffff800026093278
process=0xffff80002af24018 user=0xffff80002e352000, vmspace=0xfffffd8065adeb98
estcpu=36, cpticks=4, pctcpu=0.0
user=0, sys=4, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
74305 66752 81503 0 2 0 syz-executor.6
41252 304379 23341 0 3 0x80 fsleep syz-executor.0
41252 365074 23341 0 2 0x4000000 syz-executor.0
69403 38997 37323 0 3 0x80 fsleep syz-executor.1
69403 306359 37323 0 2 0x4000000 syz-executor.1
*51912 24338 53502 0 7 0 syz-executor.2
5988 329487 23380 0 2 0 syz-executor.7
47366 225508 45439 0 2 0 syz-executor.3
47366 53190 45439 0 7 0x4000000 syz-executor.3
37323 5441 47989 0 2 0x482 syz-executor.1
56022 95829 0 0 3 0x14200 bored sosplice
23380 411147 47989 0 2 0x2 syz-executor.7
81503 475690 47989 0 2 0x482 syz-executor.6
7855 429612 47989 0 2 0x482 syz-executor.5
45439 446909 47989 0 2 0x482 syz-executor.3
14330 325561 47989 0 2 0x2 syz-executor.4
53502 376146 47989 0 2 0x482 syz-executor.2
23341 95262 47989 0 2 0x482 syz-executor.0
47989 486957 30620 0 3 0x82 thrsleep syz-fuzzer
47989 408391 30620 0 2 0x4000482 syz-fuzzer
47989 458305 30620 0 3 0x4000082 kqread syz-fuzzer
47989 33501 30620 0 3 0x4000082 thrsleep syz-fuzzer
47989 266731 30620 0 3 0x4000082 thrsleep syz-fuzzer
47989 140880 30620 0 3 0x4000082 thrsleep syz-fuzzer
47989 184396 30620 0 3 0x4000082 thrsleep syz-fuzzer
47989 392257 30620 0 3 0x4000082 thrsleep syz-fuzzer
47989 424604 30620 0 3 0x4000082 thrsleep syz-fuzzer
30620 9645 53496 0 3 0x10008a sigsusp ksh
53496 56645 53990 0 3 0x9a kqread sshd
44205 372701 1 0 3 0x100083 ttyopn getty
53990 3111 1 0 3 0x88 kqread sshd
47817 114755 21663 74 3 0x1100092 bpf pflogd
21663 236492 1 0 3 0x80 netio pflogd
68393 62554 32594 73 3 0x1100090 kqread syslogd
32594 446357 1 0 3 0x100082 netio syslogd
41561 485551 1 0 3 0x100080 kqread resolvd
83775 190182 59407 77 3 0x100092 kqread dhcpleased
71923 33151 59407 77 3 0x100092 kqread dhcpleased
59407 29176 1 0 3 0x80 kqread dhcpleased
94554 309918 0 0 2 0x14200 smr
38924 434472 0 0 2 0x14200 zerothread
54543 56127 0 0 3 0x14200 aiodoned aiodoned
6043 415901 0 0 3 0x14200 syncer update
91313 209032 0 0 3 0x14200 cleaner cleaner
18400 102750 0 0 3 0x14200 reaper reaper
94422 17690 0 0 3 0x14200 pgdaemon pagedaemon
86825 435485 0 0 3 0x14200 bored viomb
92746 59999 0 0 3 0x40014200 acpi0 acpi0
15051 334074 0 0 3 0x40014200 idle1
8143 226384 0 0 3 0x14200 bored softnet
88191 497341 0 0 3 0x14200 bored systqmp
43391 206727 0 0 3 0x14200 bored systq
19493 273790 0 0 3 0x40014200 bored softclock
52283 7521 0 0 3 0x40014200 idle0
1 457188 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{0}> show all locks
CPU 1:
exclusive mutex &table->inpt_mtx r = 0 (0xffffffff82a88990)
#0 witness_lock+0x44d
#1 mtx_enter_try+0x100
#2 mtx_enter+0x4b sys/kern/kern_lock.c:266
#3 udp_input+0x7b0
#4 ip_deliver+0x322 sys/netinet/ip_input.c:657
#5 ip_ours+0x3ba sys/netinet/ip_input.c:616
#6 ip_input_if+0x2a1
#7 ipv4_input+0x48 sys/netinet/ip_input.c:242
#8 if_input_local+0x10e sys/net/if.c:774
#9 ip_output+0xb05 ip_mloopback sys/netinet/ip_output.c:1791 [inline]
#9 ip_output+0xb05 sys/netinet/ip_output.c:332
#10 udp_output+0x58d sys/netinet/udp_usrreq.c:1011
#11 sosend+0x632 sys/kern/uipc_socket.c:582
#12 dofilewritev+0x19c sys/kern/sys_generic.c:381
#13 sys_write+0x83 sys/kern/sys_generic.c:301
#14 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#14 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#15 Xsyscall+0x128
Process 41252 (syz-executor.0) thread 0xffff80002119fce0 (365074)
exclusive rrwlock inode r = 0 (0xfffffd806552ba28)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 ufs_ihashins+0x42 sys/ufs/ufs/ufs_ihash.c:140
#5 ffs_vget+0x141 sys/ufs/ffs/ffs_vfsops.c:1347
#6 ffs_inode_alloc+0x1be sys/ufs/ffs/ffs_alloc.c:394
#7 ufs_mkdir+0xf4 sys/ufs/ufs/ufs_vnops.c:1162
#8 VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
#9 domkdirat+0x121 sys/kern/vfs_syscalls.c:3101
#10 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#10 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#11 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd807077ec50)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vfs_lookup+0xd1 sys/kern/vfs_lookup.c:413
#6 namei+0x36a sys/kern/vfs_lookup.c:245
#7 domkdirat+0x75 sys/kern/vfs_syscalls.c:3086
#8 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#8 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#9 Xsyscall+0x128
Process 69403 (syz-executor.1) thread 0xffff800026093268 (38997)
exclusive rwlock amaplk r = 0 (0xfffffd807bebeb78)
#0 witness_lock+0x44d
#1 uvm_fault_check+0x3ca sys/uvm/uvm_fault.c:774
#2 uvm_fault+0x102 sys/uvm/uvm_fault.c:602
#3 upageflttrap+0x82 sys/arch/amd64/amd64/trap.c:181
#4 usertrap+0x1aa sys/arch/amd64/amd64/trap.c:403
#5 recall_trap+0x8
shared rwlock vmmaplk r = 0 (0xfffffd8065ade8d0)
#0 witness_lock+0x44d
#1 uvmfault_lookup+0xd9 sys/uvm/uvm_fault.c:1758
#2 uvm_fault_check+0x3a sys/uvm/uvm_fault.c:674
#3 uvm_fault+0x102 sys/uvm/uvm_fault.c:602
#4 upageflttrap+0x82 sys/arch/amd64/amd64/trap.c:181
#5 usertrap+0x1aa sys/arch/amd64/amd64/trap.c:403
#6 recall_trap+0x8
Process 47366 (syz-executor.3) thread 0xffff8000260922a8 (53190)
exclusive rwlock netlock r = 0 (0xffffffff828f7720)
#0 witness_lock+0x44d
#1 solock+0x86 sys/kern/uipc_socket2.c:295
#2 sosend+0x517 sys/kern/uipc_socket.c:570
#3 dofilewritev+0x19c sys/kern/sys_generic.c:381
#4 sys_write+0x83 sys/kern/sys_generic.c:301
#5 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#5 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#6 Xsyscall+0x128
Process 14330 (syz-executor.4) thread 0xffff80002119e000 (325561)
exclusive rrwlock inode r = 0 (0xfffffd806552be68)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 ufs_ihashins+0x42 sys/ufs/ufs/ufs_ihash.c:140
#5 ffs_vget+0x141 sys/ufs/ffs/ffs_vfsops.c:1347
#6 ffs_inode_alloc+0x1be sys/ufs/ffs/ffs_alloc.c:394
#7 ufs_mkdir+0xf4 sys/ufs/ufs/ufs_vnops.c:1162
#8 VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
#9 domkdirat+0x121 sys/kern/vfs_syscalls.c:3101
#10 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#10 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#11 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd8066bfb810)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vfs_lookup+0xd1 sys/kern/vfs_lookup.c:413
#6 namei+0x36a sys/kern/vfs_lookup.c:245
#7 domkdirat+0x75 sys/kern/vfs_syscalls.c:3086
#8 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#8 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#9 Xsyscall+0x128
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10187 6600K 6860K 78643K 12852 0
pcb 13 8K 8K 78643K 96 0
rtable 203 7K 8K 78643K 486 0
ifaddr 75 16K 18K 78643K 171 0
sysctl 2 0K 0K 78643K 2 0
counters 52 35K 36K 78643K 82 0
ioctlops 0 0K 4K 78643K 1591 0
iov 0 0K 16K 78643K 45 0
mount 1 1K 1K 78643K 1 0
log 0 0K 0K 78643K 4 0
vnodes 1271 79K 80K 78643K 1779 0
UFS quota 1 32K 32K 78643K 1 0
UFS mount 5 36K 36K 78643K 5 0
shm 2 1K 9K 78643K 20 0
VM map 2 1K 1K 78643K 2 0
sem 12 0K 1K 78643K 38 0
dirhash 12 2K 2K 78643K 12 0
ACPI 1697 195K 286K 78643K 12548 0
file desc 16 57K 85K 78643K 1720 0
sigio 0 0K 0K 78643K 9 0
proc 71 87K 124K 78643K 610 0
subproc 104 6K 6K 78643K 117 0
NFS srvsock 1 0K 0K 78643K 1 0
NFS daemon 1 16K 16K 78643K 1 0
ip_moptions 0 0K 0K 78643K 64 0
in_multi 77 5K 7K 78643K 171 0
ether_multi 1 0K 0K 78643K 13 0
mrt 0 0K 0K 78643K 31 0
ISOFS mount 1 32K 32K 78643K 1 0
MSDOSFS mount 1 16K 16K 78643K 1 0
ttys 55 254K 254K 78643K 55 0
exec 0 0K 2K 78643K 735 0
tdb 3 0K 0K 78643K 3 0
pagedep 1 8K 8K 78643K 1 0
inodedep 1 32K 32K 78643K 1 0
newblk 1 0K 0K 78643K 1 0
VM swap 7 26K 26K 78643K 7 0
UVM amap 330 149K 153K 78643K 22012 0
UVM aobj 28 2K 3K 78643K 34 0
memdesc 1 4K 4K 78643K 1 0
crypto data 1 1K 1K 78643K 1 0
ip6_options 0 0K 0K 78643K 90 0
NDP 10 0K 2K 78643K 44 0
temp 128 4733K 4831K 78643K 8756 0
kqueue 12 18K 22K 78643K 83 0
SYN cache 2 16K 16K 78643K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 22 0 0 1 0 1 1 0 8 0
rtpcb 120 76 0 73 1 0 1 1 0 8 0
rtentry 112 140 0 51 4 1 3 4 0 8 0
unpcb 136 304 0 289 2 1 1 2 0 8 0
syncache 296 15 0 15 5 5 0 1 0 8 0
tcpqe 32 7 0 7 2 2 0 1 0 8 0
tcpcb 736 221 0 216 3 2 1 3 0 8 0
arp 120 21 0 7 1 0 1 1 0 8 0
inpcb 312 584 0 575 2 1 1 2 0 8 0
rttmr 72 13 0 13 2 2 0 1 0 8 0
nd6 48 28 0 10 1 0 1 1 0 8 0
pkpcb 40 3 0 3 2 2 0 1 0 8 0
kcovpl 48 9 0 1 1 0 1 1 0 8 0
ppxss 1248 6 0 6 3 2 1 1 0 8 1
pfstscr 40 5 0 5 2 2 0 1 0 8 0
pffrag 232 3 0 1 1 0 1 1 0 482 0
pffrnode 88 3 0 1 1 0 1 1 0 8 0
pffrent 40 3 0 1 1 0 1 1 0 8 0
pfosfp 40 1428 0 1005 5 0 5 5 0 8 0
pfosfpen 112 1428 0 714 21 0 21 21 0 8 0
pfrktable 1344 8 0 5 1 0 1 1 0 8 0
pfqueue 264 1 0 1 1 1 0 1 0 8 0
pfstitem 24 24 0 22 1 0 1 1 0 8 0
pfstkey 112 30 0 28 1 0 1 1 0 8 0
pfstate 320 27 0 25 3 2 1 3 0 8 0
pfrule 1360 39 0 29 2 1 1 2 0 8 0
art_heap8 4096 1 0 0 1 0 1 1 0 8 0
art_heap4 256 516 0 149 30 4 26 29 0 8 0
art_table 32 517 0 149 4 0 4 4 0 8 0
art_node 16 139 0 59 1 0 1 1 0 8 0
sysvmsgpl 40 34 0 14 1 0 1 1 0 8 0
semupl 112 6 0 6 1 1 0 1 0 8 0
semapl 112 36 0 26 1 0 1 1 0 8 0
shmpl 112 31 0 6 1 0 1 1 0 8 0
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino2pl 256 3501 0 2067 91 0 91 91 0 8 0
ffsino 272 3501 0 2067 97 0 97 97 0 8 0
nchpl 144 5588 0 3959 63 0 63 63 0 8 0
uvmvnodes 80 3983 0 0 82 0 82 82 0 8 0
vnodes 224 3983 0 0 235 0 235 235 0 8 0
namei 1024 15539 0 15537 3 2 1 2 0 8 0
percpumem 16 53 0 15 1 0 1 1 0 8 0
vcpupl 2048 4 0 0 1 0 1 1 0 8 0
vmpool 560 4 0 0 1 0 1 1 0 8 0
pfiaddrpl 120 2 0 1 2 1 1 1 0 8 0
scsiplug 72 1 0 1 1 1 0 1 0 8 0
scxspl 216 17650 0 17650 13 12 1 8 0 8 1
plimitpl 152 96 0 81 1 0 1 1 0 8 0
sigapl 424 2033 0 1988 6 0 6 6 0 8 0
futexpl 64 8828 0 8826 1 0 1 1 0 8 0
knotepl 120 260 0 0 7 0 7 7 0 8 0
kqueuepl 216 133 0 125 1 0 1 1 0 8 0
pipepl 336 174 0 146 3 0 3 3 0 8 0
fdescpl 496 2018 0 1989 5 0 5 5 0 8 0
filepl 152 5741 0 5501 11 1 10 11 0 8 0
lockfpl 104 248 0 246 1 0 1 1 0 8 0
lockfspl 48 110 0 108 1 0 1 1 0 8 0
sessionpl 144 25 0 8 1 0 1 1 0 8 0
pgrppl 48 28 0 11 1 0 1 1 0 8 0
ucredpl 96 696 0 683 1 0 1 1 0 8 0
zombiepl 144 1989 0 1988 1 0 1 1 0 8 0
processpl 1064 2033 0 1988 4 0 4 4 0 8 0
procpl 672 3789 0 3733 6 0 6 6 0 8 1
srpgc 96 4 0 4 2 2 0 1 0 8 0
sosppl 168 6 0 6 2 2 0 1 0 8 0
sockpl 480 970 0 943 7 3 4 7 0 8 0
mcl64k 65536 7 0 0 1 0 1 1 0 8 0
mcl16k 16384 3 0 0 1 0 1 1 0 8 0
mcl12k 12288 2 0 0 1 0 1 1 0 8 0
mcl9k 9216 2 0 0 1 0 1 1 0 8 0
mcl8k 8192 4 0 0 1 0 1 1 0 8 0
mcl4k 4096 8 0 0 1 0 1 1 0 8 0
mcl2k2 2112 2 0 0 1 0 1 1 0 8 0
mcl2k 2048 156 0 0 17 0 17 17 0 8 0
mtagpl 96 176 0 0 5 0 5 5 0 8 0
mbufpl 256 551 0 0 33 1 32 32 0 8 0
bufpl 288 6246 0 138 437 0 437 437 0 8 0
anonpl 24 512458 0 496349 151 33 118 125 0 186 9
amapchunkpl 152 51457 0 50661 39 4 35 37 0 158 0
amappl16 200 6262 0 5828 64 33 31 36 0 8 7
amappl15 192 242 0 236 1 0 1 1 0 8 0
amappl14 184 214 0 208 1 0 1 1 0 8 0
amappl13 176 509 0 504 1 0 1 1 0 8 0
amappl12 168 99 0 95 2 1 1 1 0 8 0
amappl11 160 54 0 39 1 0 1 1 0 8 0
amappl10 152 244 0 235 1 0 1 1 0 8 0
amappl9 144 866 0 860 1 0 1 1 0 8 0
amappl8 136 832 0 770 3 0 3 3 0 8 0
amappl7 128 325 0 312 1 0 1 1 0 8 0
amappl6 120 593 0 570 2 1 1 2 0 8 0
amappl5 112 1918 0 1898 1 0 1 1 0 8 0
amappl4 104 892 0 866 2 1 1 2 0 8 0
amappl3 96 268 0 255 1 0 1 1 0 8 0
amappl2 88 1078 0 1031 3 1 2 3 0 8 0
amappl1 80 36460 0 35913 19 5 14 19 0 8 0
amappl 88 21487 0 21247 7 0 7 7 0 92 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 33 0 6 1 0 1 1 0 8 0
uaddrrnd 24 2022 0 1989 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 2022 0 1989 1 0 1 1 0 8 0
vmmpekpl 168 14786 0 14725 3 0 3 3 0 8 0
vmmpepl 168 181248 0 178891 135 23 112 124 0 357 4
vmsppl 368 2021 0 1989 4 0 4 4 0 8 0
rwobjpl 56 46248 0 40840 80 2 78 79 0 8 1
pdppl 4096 4051 0 3982 141 68 73 81 0 8 4
pvpl 32 1040670 0 1020479 260 66 194 251 0 265 15
pmappl 248 2021 0 1989 3 0 3 3 0 8 0
extentpl 40 58 0 38 1 0 1 1 0 8 0
phpool 112 875 0 81 23 0 23 23 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:440
panic(ffffffff8258f849) at panic+0x177 sys/kern/subr_prf.c:202
__assert(ffffffff826021d1,ffffffff82579a03,2b9,ffffffff82628f10) at __assert+0x25 sys/kern/subr_prf.c:161
uvm_pagealloc_pg(fffffd800802c300,ffffffff829c6e00,2e36e000,0) at uvm_pagealloc_pg+0x3b4 sys/uvm/uvm_page.c:705
uvm_km_kmemalloc_pla(ffffffff829d5f78,ffffffff829c6e00,6000,0,8,0,bc2e3d1dafe37709,3a,701,0) at uvm_km_kmemalloc_pla+0x325 x86_atomic_clearbits_u32 machine/atomic.h:298 [inline]
uvm_km_kmemalloc_pla(ffffffff829d5f78,ffffffff829c6e00,6000,0,8,0,bc2e3d1dafe37709,3a,701,0) at uvm_km_kmemalloc_pla+0x325 sys/uvm/uvm_km.c:396
uvm_uarea_alloc() at uvm_uarea_alloc+0x4a sys/uvm/uvm_glue.c:275
thread_fork(ffff800026092fc8,1deca758910,1dfb11d6200,1dfb11d6230,ffff80002e357880) at thread_fork+0xd7 sys/kern/kern_fork.c:532
sys___tfork(ffff800026092fc8,ffff80002e357820,ffff80002e357880) at sys___tfork+0x13b sys/kern/kern_fork.c:140
syscall(ffff80002e3578f0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002e3578f0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffbea10, count: -10
ddb{0}> machine ddbcpu 1
Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp
x86_ipi_db(ffff800020ce8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
x2apic_readreg(390) at x2apic_readreg+0x2a sys/arch/amd64/amd64/lapic.c:141
lapic_delay(1) at lapic_delay+0xb1 lapic_gettick sys/arch/amd64/amd64/lapic.c:400 [inline]
lapic_delay(1) at lapic_delay+0xb1 sys/arch/amd64/amd64/lapic.c:623
comcnputc(800,6f) at comcnputc+0x1d7 sys/dev/ic/com.c:1269
cnputc(6f) at cnputc+0x4b sys/dev/cons.c:239
db_putchar(6f) at db_putchar+0x3fc sys/ddb/db_output.c:155
kprintf() at kprintf+0x20ec sys/kern/subr_prf.c:1068
db_printf(ffffffff82608896) at db_printf+0x85 sys/kern/subr_prf.c:502
panic(ffffffff825a56b6) at panic+0xd7 sys/kern/subr_prf.c:220
witness_checkorder(ffffffff82b47030,9,0) at witness_checkorder+0x116d sys/kern/subr_witness.c:833
__mp_lock(ffffffff82b46e28) at __mp_lock+0xa1 read_rflags machine/cpufunc.h:195 [inline]
__mp_lock(ffffffff82b46e28) at __mp_lock+0xa1 intr_disable machine/cpufunc.h:216 [inline]
__mp_lock(ffffffff82b46e28) at __mp_lock+0xa1 sys/kern/kern_lock.c:142
selwakeup(fffffd806e2cbe50) at selwakeup+0x16 klist_empty sys/sys/event.h:361 [inline]
selwakeup(fffffd806e2cbe50) at selwakeup+0x16 sys/kern/sys_generic.c:885
end trace frame: 0xffff80002c94ef50, count: 0
ddb{1}> trace
x86_ipi_db(ffff800020ce8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
x2apic_readreg(390) at x2apic_readreg+0x2a sys/arch/amd64/amd64/lapic.c:141
lapic_delay(1) at lapic_delay+0xb1 lapic_gettick sys/arch/amd64/amd64/lapic.c:400 [inline]
lapic_delay(1) at lapic_delay+0xb1 sys/arch/amd64/amd64/lapic.c:623
comcnputc(800,6f) at comcnputc+0x1d7 sys/dev/ic/com.c:1269
cnputc(6f) at cnputc+0x4b sys/dev/cons.c:239
db_putchar(6f) at db_putchar+0x3fc sys/ddb/db_output.c:155
kprintf() at kprintf+0x20ec sys/kern/subr_prf.c:1068
db_printf(ffffffff82608896) at db_printf+0x85 sys/kern/subr_prf.c:502
panic(ffffffff825a56b6) at panic+0xd7 sys/kern/subr_prf.c:220
witness_checkorder(ffffffff82b47030,9,0) at witness_checkorder+0x116d sys/kern/subr_witness.c:833
__mp_lock(ffffffff82b46e28) at __mp_lock+0xa1 read_rflags machine/cpufunc.h:195 [inline]
__mp_lock(ffffffff82b46e28) at __mp_lock+0xa1 intr_disable machine/cpufunc.h:216 [inline]
__mp_lock(ffffffff82b46e28) at __mp_lock+0xa1 sys/kern/kern_lock.c:142
selwakeup(fffffd806e2cbe50) at selwakeup+0x16 klist_empty sys/sys/event.h:361 [inline]
selwakeup(fffffd806e2cbe50) at selwakeup+0x16 sys/kern/sys_generic.c:885
sorwakeup(fffffd806e2cbd38) at sorwakeup+0xc9 sys/kern/uipc_socket.c:1699
udp_sbappend(fffffd806f688c30,fffffd807c567100,fffffd80655298b0,0,14,fffffd80655298c4,1a0260dbb3b368f5,0) at udp_sbappend+0x3b1 sys/netinet/udp_usrreq.c:638
udp_input(ffff80002c94f2f8,ffff80002c94f304,11,2) at udp_input+0xbcb sys/netinet/udp_usrreq.c:427
ip_deliver(ffff80002c94f2f8,ffff80002c94f304,11,2) at ip_deliver+0x322 sys/netinet/ip_input.c:657
ip_ours(ffff80002c94f2f8,ffff80002c94f304,ffff800027acd000,0) at ip_ours+0x3ba sys/netinet/ip_input.c:616
ip_input_if(ffff80002c94f2f8,ffff80002c94f304,4,0,ffff800000689000) at ip_input_if+0x2a1
ipv4_input(ffff800000689000,fffffd8065529800) at ipv4_input+0x48 sys/netinet/ip_input.c:242
if_input_local(ffff800000689000,fffffd8065529800,2) at if_input_local+0x10e sys/net/if.c:774
ip_output(fffffd806c488200,0,fffffd806f688900,0,0,fffffd806f688888,2c890bf3ed31236) at ip_output+0xb05 ip_mloopback sys/netinet/ip_output.c:1791 [inline]
ip_output(fffffd806c488200,0,fffffd806f688900,0,0,fffffd806f688888,2c890bf3ed31236) at ip_output+0xb05 sys/netinet/ip_output.c:332
udp_output(fffffd806f688888,fffffd806c488200,0,0) at udp_output+0x58d sys/netinet/udp_usrreq.c:1011
sosend(fffffd806e2cb1f8,0,ffff80002c94f708,0,0,0) at sosend+0x632 sys/kern/uipc_socket.c:582
dofilewritev(ffff8000260922a8,4,ffff80002c94f708,0,ffff80002c94f800) at dofilewritev+0x19c sys/kern/sys_generic.c:381
sys_write(ffff8000260922a8,ffff80002c94f7a8,ffff80002c94f800) at sys_write+0x83 sys/kern/sys_generic.c:301
syscall(ffff80002c94f870) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002c94f870) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x41c4d4f1550, count: -29