Warning: Permanently added '10.128.1.25' (ED25519) to the list of known hosts.
2024/08/19 08:48:25 ignoring optional flag "sandboxArg"="0"
2024/08/19 08:48:25 parsed 1 programs
2024/08/19 08:48:26 executed programs: 0
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058726000
Aug 19 08:48:26 ci-freebsd-main-1 dhclient[827]: send_packet: Device not configured
Aug 19 08:48:26 ci-freebsd-main-1 dhclient[827]: receive_packet failed on tap2: Device not configured
Aug 19 08:48:26 ci-freebsd-main-1 dhclient[827]: ioctl(SIOCGIFFLAGS) on tap2: Operation not permitted
Aug 19 08:48:26 ci-freebsd-main-1 dhclient[827]: Interface tap2 no longer appears valid.
Aug 19 08:48:26 ci-freebsd-main-1 dhclient[827]: No live interfaces to poll on - exiting.
Aug 19 08:48:26 ci-freebsd-main-1 dhclient[827]: exiting.
Aug 19 08:48:26 ci-freebsd-main-1 dhclient[827]: connection closed
Aug 19 08:48:26 ci-freebsd-main-1 dhclient[827]: exiting.
2024/08/19 08:48:31 executed programs: 647
Expensive callout(9) function: 0xffffffff84467750(0xfffffe006ec1a178) 0.004152635 s
2024/08/19 08:48:36 executed programs: 1376
2024/08/19 08:48:41 executed programs: 2110
if_delmulti_locked: detaching ifnet instance 0xfffffe0058724000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058724000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058724000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058724000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058724000
if_delmulti_locked: detaching ifnet instance 0xfffffe0058724000
if_delmulti_locked: detaching ifnet instance 0xfffffe005421f800
if_delmulti_locked: detaching ifnet instance 0xfffffe005421f800
if_delmulti_locked: detaching ifnet instance 0xfffffe005421f800
if_delmulti_locked: detaching ifnet instance 0xfffffe005421f800
if_delmulti_locked: detaching ifnet instance 0xfffffe005421f800
if_delmulti_locked: detaching ifnet instance 0xfffffe005421f800
Kernel page fault with the following non-sleepable locks held:
shared rw sctpinp (sctpinp) r = 0 (0xfffffe006fd52220) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_output.c:4552
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe006fdd58b0) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctputil.c:1776
stack backtrace:
#0 0xffffffff8160b7b6 at witness_debugger+0x156
#1 0xffffffff8160dc64 at witness_warn+0x894
#2 0xffffffff820a3937 at trap_pfault+0x157
#3 0xffffffff820a20f8 at trap+0x648
#4 0xffffffff8204a198 at calltrap+0x8
#5 0xffffffff843d7d5c at sctp_lowlevel_chunk_output+0x216c
#6 0xffffffff843d5aa1 at sctp_send_initiate+0x1591
#7 0xffffffff84439e96 at sctp_t1init_timer+0x66
#8 0xffffffff8446828b at sctp_timeout_handler+0xb3b
#9 0xffffffff8152d195 at softclock_call_cc+0x395
#10 0xffffffff81530520 at softclock_thread+0x200
#11 0xffffffff814489ec at fork_exit+0xcc
#12 0xffffffff8204b1fe at fork_trampoline+0xe


Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address	= 0x0
fault code		= supervisor read data, page not present
instruction pointer	= 0x20:0xffffffff81a27ea3
stack pointer	        = 0x0:0xfffffe0056c8a1c0
frame pointer	        = 0x0:0xfffffe0056c8a6f0
code segment		= base 0x0, limit 0xfffff, type 0x1b
			= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags	= interrupt enabled, resume, IOPL = 0
current process		= 2 (clock (0))
rdi: 0000000000000000 rsi: 0000000000000000 rdx: 000000000a843f60
rcx: fffffe00033eee30  r8: 0000000000000000  r9: 00000000060080fe
rax: fffffe00033eee30 rbx: fffffe006d6fb8e0 rbp: fffffe0056c8a6f0
r10: aa03000000000000 r11: 000000000000001f r12: fffffe0056c8a4c0
r13: fffffe0056c8a500 r14: 0000000000000000 r15: fffffe00829b7338
trap number		= 12
panic: page fault
cpuid = 0
time = 1724057323
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0056c898f0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0056c89a50
vpanic() at vpanic+0x280/frame 0xfffffe0056c89c10
panic() at panic+0xb5/frame 0xfffffe0056c89cd0
trap_fatal() at trap_fatal+0x7f2/frame 0xfffffe0056c89df0
trap_pfault() at trap_pfault+0x179/frame 0xfffffe0056c89f10
trap() at trap+0x648/frame 0xfffffe0056c8a0f0
calltrap() at calltrap+0x8/frame 0xfffffe0056c8a0f0
--- trap 0xc, rip = 0xffffffff81a27ea3, rsp = 0xfffffe0056c8a1c0, rbp = 0xfffffe0056c8a6f0 ---
ip6_output() at ip6_output+0x30d3/frame 0xfffffe0056c8a6f0
sctp_lowlevel_chunk_output() at sctp_lowlevel_chunk_output+0x216c/frame 0xfffffe0056c8a9a0
sctp_send_initiate() at sctp_send_initiate+0x1591/frame 0xfffffe0056c8ab20
sctp_t1init_timer() at sctp_t1init_timer+0x66/frame 0xfffffe0056c8ab70
sctp_timeout_handler() at sctp_timeout_handler+0xb3b/frame 0xfffffe0056c8acb0
softclock_call_cc() at softclock_call_cc+0x395/frame 0xfffffe0056c8ae80
softclock_thread() at softclock_thread+0x200/frame 0xfffffe0056c8aef0
fork_exit() at fork_exit+0xcc/frame 0xfffffe0056c8af30
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe0056c8af30
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
KDB: enter: panic
[ thread pid 2 tid 100030 ]
Stopped at      kdb_enter+0x6e: movq    $0,0x23de6e7(%rip)
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs                        0x20
ds                        0x3b
es                        0x3b
fs                        0x13
gs                        0x1b
ss                           0
rax                       0x12
rcx         0xfffffe00033eee30
rdx         0xdffff7c000000000
rbx         0xffffffff82712c40  .str.27
rsp         0xfffffe0056c89a30
rbp         0xfffffe0056c89a50
rsi                          0
rdi         0xffffffff82e004c0  panicstr
r8                           0
r9                  0xffffffff
r10                          0
r11                       0x17
r12         0xfffffe0007a19000
r13         0xfffffffffffffffe
r14         0xffffffff82712c40  .str.27
r15                          0
rip         0xffffffff815b792e  kdb_enter+0x6e
rflags                    0x46
kdb_enter+0x6e: movq    $0,0x23de6e7(%rip)
db> show proc
Process 2 (clock) at 0xfffffe0007a06020:
 state: NORMAL
 uid: 0  gids: 0
 parent: pid 0 at 0xffffffff83920720
 ABI: null
 flag: 0x10000284  flag2: 0
 reaper: 0xffffffff83920720 reapsubtree: 2
 sigparent: 20
 vmspace: 0xffffffff839216c0
   (map 0xffffffff839216c0)
   (map.pmap 0xffffffff83921780)
   (pmap 0xffffffff839217f0)
 threads: 2
100030                   Run     CPU 0                       [clock (0)]
100031                   I                                   [clock (1)]
db>