failed to run ["ssh" "-p" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/managers/main/latest.tmp/key" "root@10.128.0.43" "pwd"]: exit status 255 ssh: connect to host 10.128.0.43 port 22: Operation timed out Pseudo-terminal will not be allocated because stdin is not a terminal. Warning: Permanently added '[ssh-serialport.googleapis.com]:9600' (RSA) to the list of known hosts. SeaBIOS (version 1.8.2-google) Total RAM Size = 0x0000000080000000 = 2048 MiB CPUs found: 2 Max CPUs supported: 2 SeaBIOS (version 1.8.2-google) Machine UUID f831388e-7541-d293-cc12-a871b5bcd875 found virtio-scsi at 0:3 virtio-scsi vendor='Google' product='PersistentDisk' rev='1' type=0 removable=0 virtio-scsi blksize=512 sectors=6291456 = 3072 MiB drive 0x000f2440: PCHS=0/0/0 translation=lba LCHS=780/128/63 s=6291456 Sending Seabios boot VM event. Booting from Hard Disk 0... Loading /boot/loader.conf.local -\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/Loading kernel... -\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/boot/kernel/kernel text=0x181930 /-\|/-\|/-\|/text=0x15b5f20 -\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\text=0x6ccc9c |/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/data=0x140 -data=0x244df8+0x5ba208 \|/-\|/-\|/-\|/-\|syms=[0x8+0x1c2090/-\|/-\|/-\|/-\+0x8+0x1b1333|/-\|/-\|/-\|] Loading configured modules... /-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-/boot/kernel/tcp_rack.ko \|/-\size 0x768f8 at 0x2d74000 |/-\|/-\|/-\|/-\|/-/boot/kernel/ipsec.ko \|size 0x42048 at 0x2deb000 /-\|/-\|/-\|/-\|/-\|//boot/kernel/mqueuefs.ko -size 0x16ac8 at 0x2e2e000 \|/-\|/-\|/-\|//boot/kernel/sem.ko -size 0xb868 at 0x2e45000 \|/-\|/-\|/-\|//boot/kernel/tcp_bbr.ko -\|/-size 0x81880 at 0x2e51000 \|/-\|/-\|/-\|/-\|/-\/boot/kernel/sctp.ko |/-\|/-\|/-\|/-size 0x1b4c28 at 0x2ed3000 \|/-\|/-/boot/entropy size=0x1000 \|/-\|/-\|/-\|/-\|//boot/kernel/pf.ko -\|/-\|/size 0xd8dc8 at 0x3089000 -\|/-\GDB: no debug ports present KDB: debugger backends: ddb KDB: current backend: ddb ---<>--- Copyright (c) 1992-2021 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 14.0-CURRENT #0 n246251-b563ff5d4f8: Wed Apr 21 12:09:45 UTC 2021 root@ci-freebsd:/syzkaller/managers/main/kernel/obj/syzkaller/managers/main/kernel/amd64.amd64/sys/SYZKALLER amd64 FreeBSD clang version 11.0.1 (git@github.com:llvm/llvm-project.git llvmorg-11.0.1-0-g43ff75f2c3fe) WARNING: WITNESS option enabled, expect reduced performance. WARNING: DIAGNOSTIC option enabled, expect reduced performance. VT(vga): text 80x25 CPU: Intel(R) Xeon(R) CPU @ 2.30GHz (2299.91-MHz K8-class CPU) Origin="GenuineIntel" Id=0x306f0 Family=0x6 Model=0x3f Stepping=0 Features=0x1f83fbff Features2=0xfefa3223 AMD Features=0x2c100800 AMD Features2=0x21 Structured Extended Features=0x27eb Structured Extended Features3=0xac000400 XSAVE Features=0x1 IA32_ARCH_CAPS=0x4c VT-x: PAT,HLT,PAUSE,EPT,UG,VPID TSC: P-state invariant Hypervisor: Origin = "KVMKVMKVM" real memory = 2147483648 (2048 MB) avail memory = 2023600128 (1929 MB) Event timer "LAPIC" quality 600 ACPI APIC Table: FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs FreeBserialport: Connected to syzkaller.us-central1-c.ci-freebsd-main-test-1 port 1 (session ID: 2b6cf6b639c5e8c31823a26468a89176d759012994fe11a9168cb415d22b7852, active connections: 1). SD/SMP: 1 package(s) x 1 core(s) x 2 hardware threads random: registering fast source Intel Secure Key RNG random: fast provider: "Intel Secure Key RNG" random: unblocking device. ioapic0 irqs 0-23 Launching APs: 1 Timecounter "TSC-low" frequency 1149954184 Hz quality 1000 TCP_ratelimit: Is now initialized random: entropy device external interface WARNING: Device "kbd" is Giant locked and may be deleted before FreeBSD 14.0. kbd1 at kbdmux0 mlx5en: Mellanox Ethernet driver 3.6.0 (December 2020) vtvga0: smbios0: at iomem 0xf24b0-0xf24ce smbios0: Version: 2.4, BCD Revision: 2.4 aesni0: acpi0: acpi0: Power Button (fixed) acpi0: Sleep Button (fixed) cpu0: on acpi0 atrtc0: port 0x70-0x71,0x72-0x77 irq 8 on acpi0 atrtc0: registered as a time-of-day clock, resolution 1.000000s Event timer "RTC" frequency 32768 Hz quality 0 Timecounter "ACPI-fast" frequency 3579545 Hz quality 900 acpi_timer0: <24-bit timer at 3.579545MHz> port 0xb008-0xb00b on acpi0 pcib0: port 0xcf8-0xcff on acpi0 pci0: on pcib0 isab0: at device 1.0 on pci0 isa0: on isab0 pci0: at device 1.3 (no driver attached) virtio_pci0: port 0xc000-0xc03f mem 0xfe800000-0xfe80007f irq 11 at device 3.0 on pci0 vtscsi0: on virtio_pci0 virtio_pci1: port 0xc040-0xc07f mem 0xfe801000-0xfe80107f irq 11 at device 4.0 on pci0 vtnet0: on virtio_pci1 vtnet0: Ethernet address: 42:01:0a:80:00:2b vtnet0: netmap queues/slots: TX 2/2048, RX 2/2048 000.000123 [ 453] vtnet_netmap_attach vtnet attached txq=2, txd=2048 rxq=2, rxd=2048 vgapci0: mem 0xfe000000-0xfe7fffff irq 10 at device 5.0 on pci0 vgapci0: Boot video device virtio_pci2: port 0xc080-0xc09f irq 10 at device 6.0 on pci0 vtballoon0: on virtio_pci2 virtio_pci3: port 0xc0a0-0xc0bf mem 0xfe802000-0xfe80203f irq 11 at device 7.0 on pci0 atkbdc0: port 0x60,0x64 irq 1 on acpi0 atkbd0: irq 1 on atkbdc0 kbd0 at atkbd0 atkbd0: [GIANT-LOCKED] psm0: irq 12 on atkbdc0 psm0: [GIANT-LOCKED] WARNING: Device "psm" is Giant locked and may be deleted before FreeBSD 14.0. psm0: model IntelliMouse Explorer, device ID 4 uart0: <16550 or compatible> port 0x3f8-0x3ff irq 4 flags 0x10 on acpi0 uart0: console (9600,n,8,1) uart1: <16550 or compatible> port 0x2f8-0x2ff irq 3 on acpi0 uart2: port 0x3e8-0x3ef irq 6 on acpi0 uart3: <16550 or compatible> port 0x2e8-0x2ef irq 7 on acpi0 orm0: at iomem 0xeb800-0xeffff pnpid ORM0000 on isa0 vga0: at port 0x3c0-0x3df iomem 0xa0000-0xbffff pnpid PNP0900 on isa0 attimer0: at port 0x40 on isa0 Timecounter "i8254" frequency 1193182 Hz quality 0 attimer0: Can't map interrupt. NULL mp in getnewvnode(9), tag crossmp Timecounters tick every 10.000 msec Attempting to load tcp_bbr tcp_bbr is now available usb_needs_explore_all: no devclass TCP Hpts created 2 swi interrupt threads and bound 0 to cpus WARNING: WITNESS option enabled, expect reduced performance. WARNING: DIAGNOSTIC option enabled, expect reduced performance. Trying to mount root from ufs:/dev/gpt/rootfs [rw]... Root mount waiting for: CAM da0 at vtscsi0 bus 0 scbus0 target 1 lun 0 da0: Fixed Direct Access SPC-4 SCSI device da0: 300.000MB/s transfers da0: Command Queueing enabled da0: 3072MB (6291456 512 byte sectors) GEOM: da0: the secondary GPT header is not in the last LBA. mountroot: waiting for device /dev/gpt/rootfs... Setting hostuuid: c5737494-45a4-11e9-9216-00a0980e0293. Setting hostid: 0xdcc40b08. No suitable dump device was found. Starting file system checks: /dev/gpt/rootfs: FILE SYSTEM CLEAN; SKIPPING CHECKS /dev/gpt/rootfs: clean, 155471 free (1791 frags, 19210 blocks, 0.4% fragmentation) Mounting local filesystems:. ELF ldconfig path: /lib /usr/lib /usr/lib/compat 32-bit compatibility ldconfig path: Setting hostname: freebsd. Setting up harvesting: PURE_RDRAND,[UMA],[FS_ATIME],SWI,INTERRUPT,NET_NG,[NET_ETHER],NET_TUN,MOUSE,KEYBOARD,ATTACH,CACHED Feeding entropy: . lo0: link state changed to UP vtnet0: link state changed to UP rtsol: ioctl(SIOCGIFFLAGS): Not permitted in capability mode Starting Network: lo0 vtnet0. lo0: flags=8049 metric 0 mtu 16384 options=680003 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x2 inet 127.0.0.1 netmask 0xff000000 groups: lo nd6 options=23 vtnet0: flags=8863 metric 0 mtu 1500 options=4c07bb ether 42:01:0a:80:00:2b inet6 fe80::4001:aff:fe80:2b%vtnet0 prefixlen 64 scopeid 0x1 media: Ethernet autoselect (10Gbase-T ) status: active nd6 options=23 Starting devd. Autoloading module: intpm.ko intsmb0: irq 9 at device 1.3 on pci0 intsmb0: Could not allocate I/O space device_attach: intsmb0 attach returned 6 Autoloading module: virtio_random.ko vtrnd0: on virtio_pci3 random: registering fast source VirtIO Entropy Adapter Starting dhclient. if_delmulti_locked: detaching ifnet instance 0xfffff80004739800 DHCPDISCOVER on vtnet0 to 255.25Kernel page fault with the following non-sleepable locks held: exclusive sleep mutex vtnet0-rx0 (vtnet0-rx0) r = 0 (0xfffff8000496ac00) locked @ /syzkaller/managers/main/kernel/sys/dev/virtio/network/if_vtnet.c:2180 stack backtrace: 5.255.255 port 6#0 0xffffffff8116329c at witnes7 interval 3 DHs_debugger+0x8c #1 0xffffffff81CPOFFER from 169164dd6 at witness_warn+0x666 #2 0xffffffff81801a45 at trap_pfa.254.169.254 ult+0xb5 #3 0xffffffff81800a4d at trap+0x41d #4 0xffffffff817bef08 at calltrap+0x8 #5 0xffffffff80e04042 at vtnet_rxq_eof+0x1022 #6 0xffffffff80e02f11 at vtnet_rx_vq_process+0xe1 #7 0xffffffff8105106f at ithread_loop+0x33f #8 0xffffffff8104c343 at fork_exit+0xb3 #9 0xffffffff817bff8e at fork_trampoline+0xe Fatal trap 12: page fault while in kernel mode cpuid = 0; apic id = 00 fault virtual address = 0x378 fault code = supervisor read data, page not present instruction pointer = 0x20:0xffffffff81396a4c stack pointer = 0x28:0xfffffe00516a99a0 frame pointer = 0x28:0xfffffe00516a99f0 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 12 (irq29: virtio_pci1) trap number = 12 panic: page fault cpuid = 0 time = 1619007492 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0x47/frame 0xfffffe00516a9600 vpanic() at vpanic+0x1c7/frame 0xfffffe00516a9660 panic() at panic+0x43/frame 0xfffffe00516a96c0 trap_fatal() at trap_fatal+0x4cd/frame 0xfffffe00516a9740 trap_pfault() at trap_pfault+0xd4/frame 0xfffffe00516a97b0 trap() at trap+0x41d/frame 0xfffffe00516a98d0 calltrap() at calltrap+0x8/frame 0xfffffe00516a98d0 --- trap 0xc, rip = 0xffffffff81396a4c, rsp = 0xfffffe00516a99a0, rbp = 0xfffffe00516a99f0 --- tcp_lro_flush_all() at tcp_lro_flush_all+0x1c/frame 0xfffffe00516a99f0 vtnet_rxq_eof() at vtnet_rxq_eof+0x1022/frame 0xfffffe00516a9ad0 vtnet_rx_vq_process() at vtnet_rx_vq_process+0xe1/frame 0xfffffe00516a9b10 ithread_loop() at ithread_loop+0x33f/frame 0xfffffe00516a9bb0 fork_exit() at fork_exit+0xb3/frame 0xfffffe00516a9bf0 fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe00516a9bf0 --- trap 0, rip = 0, rsp = 0, rbp = 0 --- KDB: enter: panic [ thread pid 12 tid 100050 ] Stopped at kdb_enter+0x67: movq $0,0x163b9fe(%rip) db>