kern.securelevel: 0 -> 1 creating runtime link editor directory cache. preserving editor files. starting network daemons: sshd. starting local daemons:. Wed Oct 7 08:43:35 PDT 2020 OpenBSD/amd64 (ci-openbsd-setuid-0.c.syzkaller.internal) (tty00) Warning: Permanently added '10.128.10.27' (ECDSA) to the list of known hosts. 2020/10/07 08:43:46 fuzzer started 2020/10/07 08:43:51 dialing manager at 10.128.15.235:21988 2020/10/07 08:43:54 syscalls: 381 2020/10/07 08:43:54 code coverage: enabled 2020/10/07 08:43:54 comparison tracing: enabled 2020/10/07 08:43:54 extra coverage: enabled 2020/10/07 08:43:54 setuid sandbox: enabled 2020/10/07 08:43:54 namespace sandbox: support is not implemented in syzkaller 2020/10/07 08:43:54 Android sandbox: support is not implemented in syzkaller 2020/10/07 08:43:54 fault injection: support is not implemented in syzkaller 2020/10/07 08:43:54 leak checking: support is not implemented in syzkaller 2020/10/07 08:43:54 net packet injection: enabled 2020/10/07 08:43:54 net device setup: support is not implemented in syzkaller 2020/10/07 08:43:54 concurrency sanitizer: support is not implemented in syzkaller 2020/10/07 08:43:54 devlink PCI setup: support is not implemented in syzkaller 2020/10/07 08:43:54 USB emulation: support is not implemented in syzkaller 2020/10/07 08:43:54 hci packet injection: support is not implemented in syzkaller 2020/10/07 08:43:54 wifi device emulation: support is not implemented in syzkaller 08:44:59 executing program 0: fchflags(0xffffffffffffff9c, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PCIOCREAD(r0, 0xc0107002, &(0x7f0000000000)) ioctl$WSDISPLAYIO_ADDSCREEN(r0, 0x80245753, &(0x7f0000000040)={0x0, './file0\x00', './file0\x00'}) renameat(r0, &(0x7f0000000080)='./file1\x00', r0, &(0x7f00000000c0)='./file0\x00') chmod(&(0x7f0000000100)='./file0\x00', 0xaa) chflags(&(0x7f0000000140)='./file0\x00', 0x0) r1 = dup(r0) ioctl$WSMOUSEIO_GTYPE(r1, 0x40045720, &(0x7f0000000180)) sysctl$machdep(&(0x7f00000001c0)={0x7, 0x1}, 0x2, &(0x7f0000000200)="08b83ae1ffb13ba20133ef02e3019de527e4e67d53bcce383107645b598223ec99", &(0x7f0000000240)=0x21, &(0x7f0000000280)="a93db9286a6e889fa3cb81120b8ab24d514df994d7d8d376ee8b1472108d281e45175327225d7ed57504b79063d37cdd9b828940e1ec7964e5c22c0ec43bebb362b7d8512e60e673ac31c461c4f0e669b821523f434164a32cc2dde0c3af454675cd9b5911e258f365aadb579878625107ff6923d0ab3e2dc74bf4687d05742c8dd072b46abc7428420f3fd7e2b9a7b56fff87d87a3843a6e4fe9e0023b4d2977a39445d39402db8e34de2e7786e25c0de2a41f4809c62c08c0a696fedf416c9806cf1b43d3fd8450a1706333393f631bf1f2139178c745df4cbb00a4685f184e5b44d9f420be3e353c4", 0xea) getegid() openat(r0, &(0x7f0000000380)='./file0\x00', 0x20, 0xc8) mkdirat(r0, &(0x7f00000003c0)='./file1\x00', 0x88) r2 = dup(r0) openat(r2, &(0x7f0000000400)='./file0\x00', 0x80, 0x0) open$dir(&(0x7f0000000440)='./file1\x00', 0x40, 0xa0) semctl$GETZCNT(0x0, 0x0, 0x7, &(0x7f0000000480)=""/206) getpeername(r1, &(0x7f0000000580)=@in6, &(0x7f00000005c0)=0xc) semop(0x0, &(0x7f0000000600)=[{0x0, 0x9, 0x1000}, {0x0, 0x400, 0x1800}, {0x3, 0x5, 0x800}, {0x4, 0x8000}, {0x3, 0x100, 0x1000}, {0x3, 0x6, 0x1000}, {0x0, 0x5, 0x2800}, {0x0, 0x9, 0x1800}, {0x0, 0x400, 0x1000}], 0x9) semop(0x0, &(0x7f0000000640)=[{0x0, 0xc00, 0x1000}, {0x4}, {0x1, 0x1108, 0x800}, {0x3, 0x2}, {0x2, 0x4, 0x1800}, {0x0, 0x100, 0x1800}, {0x4, 0x7941}, {0x4, 0x1}, {0x1, 0x1, 0x1000}, {0x2, 0x9, 0x1000}], 0xa) 08:45:00 executing program 1: r0 = openat$wskbd(0xffffffffffffff9c, &(0x7f0000000000)='/dev/wskbd0\x00', 0x400, 0x0) ioctl$WSKBDIO_GETKEYREPEAT(r0, 0x400c5708, &(0x7f0000000040)) r1 = openat$pf(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pf\x00', 0x200, 0x0) ioctl$VMM_IOC_TERM(r1, 0x80045604, &(0x7f00000000c0)={0x6}) ioctl$WSKBDIO_GETENCODINGS(r0, 0xc0105715, &(0x7f0000000100)={0x1, [0x0]}) ioctl$VT_OPENQRY(r1, 0x40047601, &(0x7f0000000140)) connect(r0, &(0x7f0000000180)=@in={0x2, 0x0}, 0xc) r2 = accept$inet6(r1, &(0x7f00000001c0), &(0x7f0000000200)=0xc) r3 = dup(r2) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)) lseek(r2, 0x0, 0x0, 0x0) getsockopt$sock_cred(r3, 0xffff, 0x1022, &(0x7f0000000340)={0x0, 0x0, 0x0}, &(0x7f0000000380)=0xc) fchownat(r3, &(0x7f0000000300)='./file1\x00', 0xffffffffffffffff, r4, 0x4) r5 = openat$wsmuxkbd(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/wskbd\x00', 0x200, 0x0) r6 = openat$pci(0xffffffffffffff9c, &(0x7f0000000400)='/dev/pci\x00', 0x100, 0x0) fcntl$dupfd(r5, 0xa, r6) bind(r1, &(0x7f0000000440)=@in={0x2, 0x3}, 0xc) ioctl$BIOCGRTIMEOUT(0xffffffffffffff9c, 0x4010426e, &(0x7f0000000480)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={0xffffffffffffffff}) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x2010, r7, 0x0, 0x7ff) 08:45:00 executing program 1: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) r2 = msgget$private(0x0, 0x2000000186) msgrcv(r2, &(0x7f0000000380)=ANY=[@ANYBLOB="000000e8227093f63f000000"], 0x1, 0x0, 0x1000) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r3, 0xffff, 0x1022, &(0x7f0000000140)={0x0}, &(0x7f0000000100)=0x1) msgctl$IPC_SET(r2, 0x1, &(0x7f00000003c0)={{0x600, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x182, 0x400}, 0x10000, 0x9f8, r4, 0x0, 0x9, 0x8, 0x9, 0xffffffffffffffff}) getsockopt$sock_cred(0xffffffffffffffff, 0xffff, 0x1022, &(0x7f0000000140)={0x0, 0x0}, &(0x7f0000000380)=0xc) r6 = getgid() semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000500)={{0x4, 0x0, 0x0, r5, r6, 0x12, 0x7}, 0x1f, 0xa211}) r7 = kqueue() fcntl$dupfd(r7, 0x2, 0xffffffffffffffff) openat$pf(0xffffffffffffff9c, &(0x7f0000000200)='/dev/pf\x00', 0x2, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x1}) 08:45:00 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = kqueue() pledge(&(0x7f0000000240)='\x00', &(0x7f0000000280)='\'\xf0:\x00') openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x80, 0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r3, 0x0, 0x0) r4 = kqueue() r5 = fcntl$dupfd(r4, 0x2, 0xffffffffffffffff) r6 = kqueue() fcntl$dupfd(r6, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r6, 0x0, 0x0) ioctl$BIOCVERSION(r5, 0x40044271, &(0x7f00000002c0)) fcntl$setown(r3, 0x6, 0x0) ioctl$VMM_IOC_RESETCPU(0xffffffffffffffff, 0x82405605, &(0x7f0000000000)={0x9e35, 0x0, {[], [], [], [], [{}, {}, {0x0, 0x0, 0xe667}]}}) 08:45:00 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = kqueue() pledge(&(0x7f0000000240)='\x00', &(0x7f0000000280)='\'\xf0:\x00') openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x80, 0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r3, 0x0, 0x0) r4 = kqueue() r5 = fcntl$dupfd(r4, 0x2, 0xffffffffffffffff) r6 = kqueue() fcntl$dupfd(r6, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r6, 0x0, 0x0) ioctl$BIOCVERSION(r5, 0x40044271, &(0x7f00000002c0)) fcntl$setown(r3, 0x6, 0x0) ioctl$VMM_IOC_RESETCPU(0xffffffffffffffff, 0x82405605, &(0x7f0000000000)={0x9e35, 0x0, {[], [], [], [], [{}, {}, {0x0, 0x0, 0xe667}]}}) 08:45:00 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = kqueue() pledge(&(0x7f0000000240)='\x00', &(0x7f0000000280)='\'\xf0:\x00') openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x80, 0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r3, 0x0, 0x0) r4 = kqueue() r5 = fcntl$dupfd(r4, 0x2, 0xffffffffffffffff) r6 = kqueue() fcntl$dupfd(r6, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r6, 0x0, 0x0) ioctl$BIOCVERSION(r5, 0x40044271, &(0x7f00000002c0)) fcntl$setown(r3, 0x6, 0x0) ioctl$VMM_IOC_RESETCPU(0xffffffffffffffff, 0x82405605, &(0x7f0000000000)={0x9e35, 0x0, {[], [], [], [], [{}, {}, {0x0, 0x0, 0xe667}]}}) 08:45:01 executing program 1: sysctl$vfs_nfs(&(0x7f00000000c0), 0x3, &(0x7f0000000100)="871dbde938592798df81a6fce9bf229eacc217bbbb45c829f353587d8f586581df95ce5668aada5d589b18815171d4c2ff0fe49b90d4d2f9233a922fe3257e4a3a8a4012a033a6bb5d63dcbc1b62af25385342bf30ce611b576ddf1aec93c22f80048e3c8a1f3abeb1963a90a4db6bc1c44501215192e8a1f9d229daad7dc2068fd88a3248efe977e181b390d6d3e17bba767a4f7b9a732bc369789f5eb2f4dbac920a9c6ad680ff35f0cfebd343c0269519187ad5a2ef543df3108140ebb1dbc4fc0eb613a70ae64043adcffa57e8b82f33367f072651a2818ae5bd6659de0ac3787803e0b3c4894d97e493", &(0x7f0000000200)=0xec, &(0x7f0000000240)="a9989075ccc2536a4a3e0543e747e590fe0376337187565b17c020f089875b46b9dd6031658a6eca1927e3f6be8a6b27b5f9acd0c1e60bfc37868ab70aa69eb32b32", 0x42) r0 = kqueue() ioctl$KDMKTONE(0xffffffffffffffff, 0x20004b08, &(0x7f0000000040)=0x6) r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) fcntl$lock(0xffffffffffffff9c, 0x0, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x53e}) ioctl$WSKBDIO_SETENCODING(0xffffffffffffff9c, 0x80045710, &(0x7f0000000080)=0x81) 08:45:01 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = kqueue() pledge(&(0x7f0000000240)='\x00', &(0x7f0000000280)='\'\xf0:\x00') openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x80, 0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r3, 0x0, 0x0) r4 = kqueue() r5 = fcntl$dupfd(r4, 0x2, 0xffffffffffffffff) r6 = kqueue() fcntl$dupfd(r6, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r6, 0x0, 0x0) ioctl$BIOCVERSION(r5, 0x40044271, &(0x7f00000002c0)) fcntl$setown(r3, 0x6, 0x0) ioctl$VMM_IOC_RESETCPU(0xffffffffffffffff, 0x82405605, &(0x7f0000000000)={0x9e35, 0x0, {[], [], [], [], [{}, {}, {0x0, 0x0, 0xe667}]}}) 08:45:01 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = kqueue() pledge(&(0x7f0000000240)='\x00', &(0x7f0000000280)='\'\xf0:\x00') openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x80, 0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r3, 0x0, 0x0) r4 = kqueue() r5 = fcntl$dupfd(r4, 0x2, 0xffffffffffffffff) r6 = kqueue() fcntl$dupfd(r6, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r6, 0x0, 0x0) ioctl$BIOCVERSION(r5, 0x40044271, &(0x7f00000002c0)) fcntl$setown(r3, 0x6, 0x0) 08:45:01 executing program 1: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) kqueue() openat$wsmuxmouse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/wsmouse\x00', 0x8, 0x0) r2 = socket(0x18, 0x2, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$TIOCFLUSH(r3, 0x802069a1, &(0x7f0000000300)) ioctl$BIOCSDIRFILT(r3, 0x8004427d, &(0x7f0000000040)=0xff) ioctl$VMM_IOC_WRITEREGS(r3, 0x82485608, &(0x7f0000000040)={0x6, 0x1, 0x1, {[0x12f, 0x7, 0x800, 0xf4, 0x6, 0xc74, 0x4dc, 0x9, 0x100000001, 0x2, 0x6a2e, 0x7fff, 0x9, 0xfff, 0xffff, 0x7, 0x2, 0x66ac], [0x8, 0x2, 0x6, 0x1, 0x59, 0x0, 0x8, 0xd2, 0x80000001, 0x9], [0x0, 0x0, 0x4, 0x7, 0x9, 0xfff, 0x9], [0x6, 0x7fff, 0x5, 0x4d49, 0x10001, 0x1], [{0x8, 0x9, 0x8000, 0x7ff}, {0x3, 0x20, 0x80000001, 0x8000}, {0x5, 0x3, 0x3f, 0x7}, {0x101, 0x1, 0x3c1, 0x4}, {0xff}, {0x1, 0x8000, 0x4, 0x8ab2}, {0x2, 0x2, 0x8, 0xfffffffffffffffd}, {0x40, 0x1, 0x8, 0x80000000}], {0x4, 0x3, 0xffff}, {0x0, 0x5}}}) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000000)=@abs={0xa3e18c30ac20269, 0x0, 0x1}, 0x8, 0x0, 0x0, 0x0, 0x37}, 0x0) 08:45:01 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = kqueue() pledge(&(0x7f0000000240)='\x00', &(0x7f0000000280)='\'\xf0:\x00') openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x80, 0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r3, 0x0, 0x0) r4 = kqueue() r5 = fcntl$dupfd(r4, 0x2, 0xffffffffffffffff) r6 = kqueue() fcntl$dupfd(r6, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r6, 0x0, 0x0) ioctl$BIOCVERSION(r5, 0x40044271, &(0x7f00000002c0)) fcntl$setown(r3, 0x6, 0x0) 08:45:01 executing program 1: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) kqueue() openat$wsmuxmouse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/wsmouse\x00', 0x8, 0x0) r2 = socket(0x18, 0x2, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$TIOCFLUSH(r3, 0x802069a1, &(0x7f0000000300)) ioctl$BIOCSDIRFILT(r3, 0x8004427d, &(0x7f0000000040)=0xff) ioctl$VMM_IOC_WRITEREGS(r3, 0x82485608, &(0x7f0000000040)={0x6, 0x1, 0x1, {[0x12f, 0x7, 0x800, 0xf4, 0x6, 0xc74, 0x4dc, 0x9, 0x100000001, 0x2, 0x6a2e, 0x7fff, 0x9, 0xfff, 0xffff, 0x7, 0x2, 0x66ac], [0x8, 0x2, 0x6, 0x1, 0x59, 0x0, 0x8, 0xd2, 0x80000001, 0x9], [0x0, 0x0, 0x4, 0x7, 0x9, 0xfff, 0x9], [0x6, 0x7fff, 0x5, 0x4d49, 0x10001, 0x1], [{0x8, 0x9, 0x8000, 0x7ff}, {0x3, 0x20, 0x80000001, 0x8000}, {0x5, 0x3, 0x3f, 0x7}, {0x101, 0x1, 0x3c1, 0x4}, {0xff}, {0x1, 0x8000, 0x4, 0x8ab2}, {0x2, 0x2, 0x8, 0xfffffffffffffffd}, {0x40, 0x1, 0x8, 0x80000000}], {0x4, 0x3, 0xffff}, {0x0, 0x5}}}) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000000)=@abs={0xa3e18c30ac20269, 0x0, 0x1}, 0x8, 0x0, 0x0, 0x0, 0x37}, 0x0) 08:45:01 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = kqueue() pledge(&(0x7f0000000240)='\x00', &(0x7f0000000280)='\'\xf0:\x00') openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x80, 0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r3, 0x0, 0x0) r4 = kqueue() r5 = fcntl$dupfd(r4, 0x2, 0xffffffffffffffff) r6 = kqueue() fcntl$dupfd(r6, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r6, 0x0, 0x0) ioctl$BIOCVERSION(r5, 0x40044271, &(0x7f00000002c0)) fcntl$setown(r3, 0x6, 0x0) 08:45:01 executing program 1: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) kqueue() openat$wsmuxmouse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/wsmouse\x00', 0x8, 0x0) r2 = socket(0x18, 0x2, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$TIOCFLUSH(r3, 0x802069a1, &(0x7f0000000300)) ioctl$BIOCSDIRFILT(r3, 0x8004427d, &(0x7f0000000040)=0xff) ioctl$VMM_IOC_WRITEREGS(r3, 0x82485608, &(0x7f0000000040)={0x6, 0x1, 0x1, {[0x12f, 0x7, 0x800, 0xf4, 0x6, 0xc74, 0x4dc, 0x9, 0x100000001, 0x2, 0x6a2e, 0x7fff, 0x9, 0xfff, 0xffff, 0x7, 0x2, 0x66ac], [0x8, 0x2, 0x6, 0x1, 0x59, 0x0, 0x8, 0xd2, 0x80000001, 0x9], [0x0, 0x0, 0x4, 0x7, 0x9, 0xfff, 0x9], [0x6, 0x7fff, 0x5, 0x4d49, 0x10001, 0x1], [{0x8, 0x9, 0x8000, 0x7ff}, {0x3, 0x20, 0x80000001, 0x8000}, {0x5, 0x3, 0x3f, 0x7}, {0x101, 0x1, 0x3c1, 0x4}, {0xff}, {0x1, 0x8000, 0x4, 0x8ab2}, {0x2, 0x2, 0x8, 0xfffffffffffffffd}, {0x40, 0x1, 0x8, 0x80000000}], {0x4, 0x3, 0xffff}, {0x0, 0x5}}}) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000000)=@abs={0xa3e18c30ac20269, 0x0, 0x1}, 0x8, 0x0, 0x0, 0x0, 0x37}, 0x0) 08:45:01 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = kqueue() pledge(&(0x7f0000000240)='\x00', &(0x7f0000000280)='\'\xf0:\x00') openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x80, 0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r3, 0x0, 0x0) r4 = kqueue() r5 = fcntl$dupfd(r4, 0x2, 0xffffffffffffffff) r6 = kqueue() fcntl$dupfd(r6, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r6, 0x0, 0x0) ioctl$BIOCVERSION(r5, 0x40044271, &(0x7f00000002c0)) ioctl$VMM_IOC_RESETCPU(0xffffffffffffffff, 0x82405605, &(0x7f0000000000)={0x9e35, 0x0, {[], [], [], [], [{}, {}, {0x0, 0x0, 0xe667}]}}) 08:45:01 executing program 1: mlock(&(0x7f0000001000/0x2000)=nil, 0x800000) execve(&(0x7f0000001880)='./file0\x00', &(0x7f0000001980)=[&(0x7f00000018c0)='&#@,@\\{(/[\x00', &(0x7f0000001900)='\x00', &(0x7f0000001940)='}^-.@\x00'], &(0x7f0000001b40)=[&(0x7f00000019c0)='@:\x00', &(0x7f0000001a00)='[(\x00', &(0x7f0000001ac0)='^\x00', &(0x7f0000001b00)=':.\x00']) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x10202, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x1, 0x10, r0, 0x0, 0x0) pwritev(r0, &(0x7f0000000200)=[{&(0x7f0000000140)="04", 0x1}], 0x1, 0x0, 0x0) r1 = syz_open_pts() r2 = open$dir(&(0x7f0000000100)='./file0\x00', 0x8000, 0x2) close(0xffffffffffffffff) r3 = dup(0xffffffffffffffff) semget$private(0x0, 0x1, 0x201) ioctl$WSDISPLAYIO_LDFONT(r3, 0x8058574d, &(0x7f0000001780)={'./file0\x00', 0x2, 0x8, 0x5, 0x1, 0x5, 0x2, 0x7, 0x1, 0x0, 0x7f, 0x4}) ioctl$TIOCSETA(0xffffffffffffffff, 0x802c7414, &(0x7f0000002480)={0x0, 0x0, 0x0, 0x0, "855c55000267a7230000001a0000000000000040"}) getsockopt$sock_timeval(r2, 0xffff, 0x1006, &(0x7f0000001800), &(0x7f0000001840)=0x10) utimes(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={{0xba0f, 0xfffffffffffff11d}, {0x493, 0x100000001}}) ioctl$TIOCFLUSH(r1, 0x80047410, &(0x7f00000001c0)=0xff80000000000000) readv(r1, 0x0, 0x519e9ff5a54d8863) syz_open_pts() ioctl$TIOCCDTR(r3, 0x20007478) ioctl$KDGKBMODE(r3, 0x40044b06) madvise(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4) shmget(0x0, 0x3000, 0x16e, &(0x7f0000004000/0x3000)=nil) socket(0x800000018, 0x1, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000001bc0)=@abs={0x1, 0x0, 0x2}, 0x8) pwritev(r2, &(0x7f0000001a80)=[{&(0x7f0000001a40)="e22490d295b0d1f6218db0ffb7bf3db1cbb73dead0c09938159787bfd2bd385be3", 0x21}], 0x1, 0x0, 0x0) getsockopt$SO_PEERCRED(0xffffffffffffffff, 0xffff, 0x1022, &(0x7f0000001b80), 0xc) readv(r3, &(0x7f00000016c0)=[{&(0x7f0000000240)=""/184, 0xb8}, {&(0x7f00000000c0)=""/14, 0xe}, {&(0x7f0000000300)=""/136, 0x88}, {&(0x7f00000003c0)=""/168, 0xa8}, {&(0x7f0000000480)=""/146, 0x92}, {&(0x7f0000000180)=""/4, 0x4}, {&(0x7f0000000540)=""/166, 0xa6}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000001600)=""/156, 0x9c}], 0x9) mprotect(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x0) mlock(&(0x7f0000002000/0x3000)=nil, 0x3000) 08:45:01 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = kqueue() pledge(&(0x7f0000000240)='\x00', &(0x7f0000000280)='\'\xf0:\x00') openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x80, 0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r3, 0x0, 0x0) r4 = kqueue() fcntl$dupfd(r4, 0x2, 0xffffffffffffffff) r5 = kqueue() fcntl$dupfd(r5, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r5, 0x0, 0x0) ioctl$VMM_IOC_RESETCPU(0xffffffffffffffff, 0x82405605, &(0x7f0000000000)={0x9e35, 0x0, {[], [], [], [], [{}, {}, {0x0, 0x0, 0xe667}]}}) login: witness: lock order reversal: 1st 0xfffffd807efffb98 vmmaplk (&map->lock) 2nd 0xfffffd8056c791a8 inode (&ip->i_lock) lock order "&ip->i_lock"(rrwlock) -> "&map->lock"(rwlock) first seen at: #0 witness_checkorder+0x65e #1 rw_enter_read+0x66 #2 uvmfault_lookup+0xd9 #3 uvm_fault+0x7e #4 pageflttrap+0x254 #5 kerntrap+0xf1 #6 alltraps_kern_meltdown+0x7b #7 copyout+0x53 #8 ffs_read+0x3e2 #9 VOP_READ+0xbf #10 vn_rdwr+0x10b #11 vmcmd_map_readvn+0xda #12 exec_process_vmcmds+0xb2 #13 sys_execve+0x9ff #14 syscall+0x4a1 #15 Xsyscall+0x128 lock order "&map->lock"(rwlock) -> "&ip->i_lock"(rrwlock) first seen at: #0 witness_checkorder+0x65e #1 rw_enter+0xd4 #2 rrw_enter+0x88 #3 VOP_LOCK+0x4b #4 vn_lock+0x6c #5 uvn_io+0x2b5 #6 uvn_get+0x226 #7 uvm_fault+0x1197 #8 uvm_fault_wire+0x63 #9 uvm_map_pageable_wire+0x30d #10 sys_mlock+0x180 #11 syscall+0x4a1 #12 Xsyscall+0x128 Stopped at db_enter+0x18: addq $0x8,%rsp ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic the kernel did not panic ddb{1}> trace db_enter() at db_enter+0x18 witness_checkorder(fffffd8056c791a8,9,0) at witness_checkorder+0xf5a rw_enter(fffffd8056c79198,81) at rw_enter+0xd4 rrw_enter(fffffd8056c79198,81) at rrw_enter+0x88 VOP_LOCK(fffffd80572c2280,81) at VOP_LOCK+0x4b vn_lock(fffffd80572c2280,81) at vn_lock+0x6c uvn_io(fffffd80570649e8,ffff8000256ffc28,1,2,0) at uvn_io+0x2b5 uvn_get(fffffd80570649e8,0,ffff8000256ffe80,ffff8000256ffe1c,0,1) at uvn_get+0x226 uvm_fault(fffffd807efffb80,20002000,2,1) at uvm_fault+0x1197 uvm_fault_wire(fffffd807efffb80,20002000,20003000,1) at uvm_fault_wire+0x63 uvm_map_pageable_wire(fffffd807efffb80,fffffd8056bb86a8,fffffd8056bb8de0,116,0,0) at uvm_map_pageable_wire+0x30d sys_mlock(ffff8000ffffa780,ffff800025700068,ffff8000257000b0) at sys_mlock+0x180 syscall(ffff800025700130) at syscall+0x4a1 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa2eb6d47ab0, count: -14 ddb{1}> show registers rdi 0x3 rsi 0x40000 acpi_pdirpa+0x2be68 rbp 0xffff8000256ff880 rbx 0x3 rdx 0xffff800000af4b40 rcx 0x3 rax 0x3ffff acpi_pdirpa+0x2be67 r8 0xffffffff817c2c03 witness_checkorder+0xf33 r9 0x5 r10 0x35d738fae3d97348 r11 0xfd8fb22be1027c28 r12 0xffffffff82869ef0 w_lodata+0x544e0 r13 0 r14 0xffffffff82863a90 w_lodata+0x4e080 r15 0xfffffd8002c8a480 rip 0xffffffff81878348 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff8000256ff870 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb{1}> show proc PROC (syz-executor.1) pid=158545 stat=onproc flags process=10 proc=4000000 pri=32, usrpri=86, nice=20 forw=0xffffffffffffffff, list=0xffff8000ffffa508,0xffff8000ffffac80 process=0xffff8000ffff8bd8 user=0xffff8000256fb000, vmspace=0xfffffd807efffb80 estcpu=36, cpticks=4, pctcpu=0.0 user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 51711 301970 29343 32767 7 0x10 syz-executor.0 51711 201424 29343 32767 2 0x4000010 syz-executor.0 52285 166000 75451 32767 2 0x10 syz-executor.1 *52285 158545 75451 32767 7 0x4000010 syz-executor.1 75451 512240 81179 32767 3 0x90 nanosleep syz-executor.1 29343 114067 4134 32767 3 0x90 nanosleep syz-executor.0 81179 291556 45896 0 3 0x82 wait syz-executor.1 4134 441843 45896 0 3 0x82 wait syz-executor.0 45896 39130 65440 0 3 0x82 thrsleep syz-fuzzer 45896 285573 65440 0 3 0x4000082 thrsleep syz-fuzzer 45896 130228 65440 0 3 0x4000082 thrsleep syz-fuzzer 45896 292051 65440 0 3 0x4000082 thrsleep syz-fuzzer 45896 217096 65440 0 3 0x4000082 thrsleep syz-fuzzer 45896 346365 65440 0 3 0x4000082 thrsleep syz-fuzzer 45896 54207 65440 0 3 0x4000082 thrsleep syz-fuzzer 45896 278394 65440 0 3 0x4000082 kqread syz-fuzzer 65440 458753 88249 0 3 0x10008a pause ksh 88249 511161 80235 0 3 0x92 select sshd 52505 351211 1 0 3 0x100083 ttyin getty 80235 482781 1 0 3 0x80 select sshd 54335 387176 87461 73 3 0x100090 kqread syslogd 87461 405782 1 0 3 0x100082 netio syslogd 51924 426404 1 77 3 0x100090 poll dhclient 19579 34123 1 0 3 0x80 poll dhclient 8480 507223 0 0 3 0x14200 bored smr 74215 105911 0 0 2 0x14200 zerothread 62561 398488 0 0 3 0x14200 aiodoned aiodoned 55559 106914 0 0 3 0x14200 syncer update 70069 157873 0 0 3 0x14200 cleaner cleaner 59385 169163 0 0 3 0x14200 reaper reaper 54356 201296 0 0 3 0x14200 pgdaemon pagedaemon 22482 298063 0 0 3 0x14200 bored crynlk 13653 64170 0 0 3 0x14200 bored crypto 24836 23929 0 0 3 0x40014200 acpi0 acpi0 94006 477975 0 0 3 0x40014200 idle1 25688 130468 0 0 3 0x14200 bored softnet 80690 74778 0 0 3 0x14200 bored systqmp 29824 74033 0 0 3 0x14200 bored systq 60542 322002 0 0 3 0x40014200 bored softclock 68303 356568 0 0 3 0x40014200 idle0 1 446606 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 52285 (syz-executor.1) thread 0xffff8000ffffa780 (158545) shared rwlock vmmaplk r = 0 (0xfffffd807efffb98) #0 witness_lock+0x4b0 #1 rw_enter+0x446 #2 vm_map_lock_ln+0xda #3 uvm_map_pageable+0x120 #4 sys_mlock+0x180 #5 syscall+0x4a1 #6 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82889918) #0 witness_lock+0x4b0 #1 syscall+0x3fd #2 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9462 6330K 6330K 78643K 10554 0 pcb 13 8K 8K 78643K 13 0 rtable 105 3K 3K 78643K 189 0 ifaddr 39 10K 10K 78643K 39 0 counters 43 33K 33K 78643K 43 0 ioctlops 0 0K 2K 78643K 19 0 iov 0 0K 0K 78643K 1 0 mount 1 1K 1K 78643K 1 0 vnodes 1216 76K 76K 78643K 1221 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 1K 78643K 2 0 VM map 2 1K 1K 78643K 2 0 sem 3 0K 0K 78643K 3 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1824 197K 290K 78643K 13058 0 file desc 8 25K 33K 78643K 53 0 proc 48 50K 83K 78643K 365 0 subproc 34 2K 2K 78643K 34 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 in_multi 33 2K 2K 78643K 33 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 31 148K 148K 78643K 31 0 exec 0 0K 2K 78643K 318 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 525 70K 70K 78643K 1167 0 UVM aobj 3 2K 2K 78643K 3 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 NDP 5 0K 0K 78643K 9 0 temp 63 3952K 4016K 78643K 1843 0 kqueue 3 4K 4K 78643K 3 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 6 0 0 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 96 19 0 17 1 0 1 1 0 8 0 rtentry 112 45 0 1 2 0 2 2 0 8 0 unpcb 120 31 0 23 1 0 1 1 0 8 0 syncache 272 4 0 4 1 1 0 1 0 8 0 tcpqe 32 1167 0 1167 5 5 0 5 0 8 0 tcpcb 592 11 0 6 1 0 1 1 0 8 0 inpcb 296 37 0 29 1 0 1 1 0 8 0 nd6 48 6 0 0 1 0 1 1 0 8 0 kcovpl 48 2 0 0 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 189 0 0 12 0 12 12 0 8 0 art_table 32 190 0 0 2 0 2 2 0 8 0 art_node 16 44 0 4 1 0 1 1 0 8 0 semapl 112 1 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1433 0 36 88 0 88 88 0 8 0 ffsino 272 1433 0 36 94 0 94 94 0 8 0 nchpl 144 1673 0 74 60 0 60 60 0 8 0 uvmvnodes 72 1476 0 0 27 0 27 27 0 8 0 vnodes 208 1476 0 0 78 0 78 78 0 8 0 namei 1024 4080 0 4080 2 1 1 1 0 8 1 percpumem 16 32 0 0 1 0 1 1 0 8 0 scxspl 192 5061 0 5061 10 9 1 7 0 8 1 plimitpl 152 16 0 7 1 0 1 1 0 8 0 sigapl 424 240 0 208 4 0 4 4 0 8 0 futexpl 56 268 0 268 1 0 1 1 0 8 1 knotepl 112 62 0 42 1 0 1 1 0 8 0 kqueuepl 152 52 0 50 1 0 1 1 0 8 0 pipepl 304 69 0 58 1 0 1 1 0 8 0 fdescpl 496 225 0 208 3 0 3 3 0 8 0 filepl 152 1076 0 972 6 1 5 5 0 8 0 lockfpl 104 5 0 4 1 0 1 1 0 8 0 lockfspl 48 3 0 2 1 0 1 1 0 8 0 sessionpl 120 17 0 7 1 0 1 1 0 8 0 pgrppl 48 17 0 7 1 0 1 1 0 8 0 ucredpl 96 60 0 51 1 0 1 1 0 8 0 zombiepl 144 208 0 208 2 1 1 1 0 8 1 processpl 1008 240 0 208 5 0 5 5 0 8 0 procpl 632 276 0 235 4 0 4 4 0 8 0 sockpl 400 87 0 69 3 0 3 3 0 8 1 mcl4k 4096 5 0 0 1 0 1 1 0 8 0 mcl2k 2048 701 0 0 87 0 87 87 0 8 0 mtagpl 96 1 0 0 1 0 1 1 0 8 0 mbufpl 256 708 0 0 44 0 44 44 0 8 0 bufpl 280 3432 0 173 233 0 233 233 0 8 0 anonpl 16 153701 0 57637 391 2 389 389 0 124 0 amapchunkpl 152 5813 0 1911 152 1 151 151 0 158 0 amappl16 192 2442 0 134 116 0 116 116 0 8 0 amappl15 184 5 0 3 1 0 1 1 0 8 0 amappl14 176 26 0 18 1 0 1 1 0 8 0 amappl13 168 50 0 44 1 0 1 1 0 8 0 amappl12 160 16 0 11 1 0 1 1 0 8 0 amappl11 152 46 0 35 1 0 1 1 0 8 0 amappl10 144 11 0 7 1 0 1 1 0 8 0 amappl9 136 370 0 369 2 1 1 1 0 8 0 amappl8 128 131 0 93 2 0 2 2 0 8 0 amappl7 120 219 0 210 1 0 1 1 0 8 0 amappl6 112 62 0 51 1 0 1 1 0 8 0 amappl5 104 337 0 321 1 0 1 1 0 8 0 amappl4 96 246 0 224 1 0 1 1 0 8 0 amappl3 88 147 0 130 1 0 1 1 0 8 0 amappl2 80 996 0 927 2 0 2 2 0 8 0 amappl1 72 14647 0 14152 23 12 11 18 0 8 1 amappl 80 934 0 459 10 0 10 10 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 2 0 0 1 0 1 1 0 8 0 uaddrrnd 24 225 0 208 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 225 0 208 1 0 1 1 0 8 0 vmmpekpl 168 5809 0 5781 3 1 2 2 0 8 0 vmmpepl 168 41873 0 37737 290 9 281 281 0 357 101 vmsppl 368 224 0 208 2 0 2 2 0 8 0 pdppl 4096 457 0 416 6 0 6 6 0 8 0 pvpl 32 247500 0 147737 805 0 805 805 0 265 0 pmappl 232 224 0 208 2 0 2 2 0 8 1 extentpl 40 53 0 36 1 0 1 1 0 8 0 phpool 112 346 0 4 10 0 10 10 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff826faff0) at x86_ipi_db+0x1a x86_ipi_handler() at x86_ipi_handler+0xb7 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __mp_lock(ffffffff82889710) at __mp_lock+0x129 intr_handler(ffff80002570e1f0,ffff80000065bd80) at intr_handler+0x5e Xintr_ioapic_edge4_untramp() at Xintr_ioapic_edge4_untramp+0x19f __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x4f softintr_dispatch(0) at softintr_dispatch+0x4e Xsoftclock() at Xsoftclock+0x1f end of kernel end trace frame: 0x7f7fffffadf0, count: -9 ddb{0}> machine ddbcpu 1 Stopped at db_enter+0x18: addq $0x8,%rsp ddb{1}> trace db_enter() at db_enter+0x18 witness_checkorder(fffffd8056c791a8,9,0) at witness_checkorder+0xf5a rw_enter(fffffd8056c79198,81) at rw_enter+0xd4 rrw_enter(fffffd8056c79198,81) at rrw_enter+0x88 VOP_LOCK(fffffd80572c2280,81) at VOP_LOCK+0x4b vn_lock(fffffd80572c2280,81) at vn_lock+0x6c uvn_io(fffffd80570649e8,ffff8000256ffc28,1,2,0) at uvn_io+0x2b5 uvn_get(fffffd80570649e8,0,ffff8000256ffe80,ffff8000256ffe1c,0,1) at uvn_get+0x226 uvm_fault(fffffd807efffb80,20002000,2,1) at uvm_fault+0x1197 uvm_fault_wire(fffffd807efffb80,20002000,20003000,1) at uvm_fault_wire+0x63 uvm_map_pageable_wire(fffffd807efffb80,fffffd8056bb86a8,fffffd8056bb8de0,116,0,0) at uvm_map_pageable_wire+0x30d sys_mlock(ffff8000ffffa780,ffff800025700068,ffff8000257000b0) at sys_mlock+0x180 syscall(ffff800025700130) at syscall+0x4a1 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa2eb6d47ab0, count: -14