Warning: Permanently added '10.128.1.68' (ED25519) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program witness: lock_object uninitialized: 0xffff800000d20028 Starting stack trace... witness_checkorder(ffff800000d20028,9,0) at witness_checkorder+0x137 rw_enter_write(ffff800000d20018) at rw_enter_write+0x5c unveil_delete_names(ffff800000d20000) at unveil_delete_names+0x34 unveil_destroy(ffff8000ffff9d58) at unveil_destroy+0xad exit1(ffff80002a186548,0,0,1) at exit1+0x3d8 sys_exit(ffff80002a186548,ffff80002a256380,ffff80002a2563d0) at sys_exit+0x1a syscall(ffff80002a256450) at syscall+0x4e6 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6feb58605890, count: 249 End of stack trace. Stopped at db_enter+0x1c: addq $0x8,%rsp ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic the kernel did not panic ddb{0}> trace db_enter() at db_enter+0x1c witness_checkorder(ffff800000d20028,9,0) at witness_checkorder+0x13c rw_enter_write(ffff800000d20018) at rw_enter_write+0x5c unveil_delete_names(ffff800000d20000) at unveil_delete_names+0x34 unveil_destroy(ffff8000ffff9d58) at unveil_destroy+0xad exit1(ffff80002a186548,0,0,1) at exit1+0x3d8 sys_exit(ffff80002a186548,ffff80002a256380,ffff80002a2563d0) at sys_exit+0x1a syscall(ffff80002a256450) at syscall+0x4e6 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6feb58605890, count: -9 ddb{0}> show registers rdi 0 rsi 0x4000000000000000 rbp 0xffff80002a256110 rbx 0x3 rdx 0x3fd rcx 0 rax 0x14 r8 0xffff80002a2560b0 r9 0x8080808080808080 r10 0xffff80002a256000 r11 0x38674374522cd3ee r12 0xffff800000d20001 r13 0xffff800000d20028 r14 0 r15 0 rip 0xffffffff82763d4c db_enter+0x1c cs 0x8 rflags 0x246 rsp 0xffff80002a256100 ss 0 db_enter+0x1c: addq $0x8,%rsp ddb{0}> show proc PROC (syz-executor2834758917) tid=314601 pid=52115 tcnt=1 stat=onproc flags process=1008 proc=2000 runpri=32, usrpri=78, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff80002a186548 forw=0xffffffffffffffff, list=0xffff80002a1862a0,0xffff80002a1ced48 process=0xffff8000ffff9d58 user=0xffff80002a251000, vmspace=0xfffffd806ccbfaf8 estcpu=28, cpticks=11, pctcpu=0.4, user=0, sys=8, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 67878 454728 67342 0 2 0 syz-executor2834758917 67878 24080 67342 0 3 0x4000000 futex syz-executor2834758917 65623 460290 4811 0 3 0 futex syz-executor2834758917 12301 306352 81605 0 2 0 syz-executor2834758917 12301 96344 81605 0 2 0x4000000 syz-executor2834758917 73047 321479 4189 0 3 0 futex syz-executor2834758917 73047 154213 4189 0 3 0x4000000 futex syz-executor2834758917 44408 309934 8670 0 2 0x480 syz-executor2834758917 44408 260129 8670 0 3 0x4000000 futex syz-executor2834758917 32700 360232 90144 0 2 0 syz-executor2834758917 32700 324270 90144 0 2 0x4000000 syz-executor2834758917 32700 442727 90144 0 3 0x4000000 futex syz-executor2834758917 84235 238962 73981 0 2 0x480 syz-executor2834758917 8670 56299 73981 0 2 0x480 syz-executor2834758917 21614 518329 73981 0 2 0x480 syz-executor2834758917 67342 259127 73981 0 2 0x480 syz-executor2834758917 4811 377481 73981 0 2 0x480 syz-executor2834758917 81605 26947 73981 0 2 0x480 syz-executor2834758917 4189 30141 73981 0 2 0x480 syz-executor2834758917 90144 91316 73981 0 2 0x480 syz-executor2834758917 73981 224715 17292 0 3 0x82 nanoslp syz-executor2834758917 17292 465814 44897 0 3 0x10008a sigsusp ksh 44897 331241 36110 0 3 0x9a kqread sshd 89676 94194 1 0 2 0x100083 getty 36110 461635 1 0 3 0x88 kqread sshd 44086 283033 81831 74 3 0x1100092 bpf pflogd 81831 230290 1 0 3 0x80 netio pflogd 58976 130919 95367 73 2 0x1100090 syslogd 95367 160008 1 0 3 0x100082 netio syslogd 18376 107850 1 0 3 0x100080 kqread resolvd 97392 237271 23230 77 3 0x100092 kqread dhcpleased 32412 174108 23230 77 3 0x100092 kqread dhcpleased 23230 338940 1 0 3 0x80 kqread dhcpleased 81095 58591 0 0 3 0x14200 bored smr 32214 299926 0 0 2 0x14200 zerothread 74340 113105 0 0 3 0x14200 aiodoned aiodoned 88001 162046 0 0 3 0x14200 syncer update 40925 379540 0 0 3 0x14200 cleaner cleaner 23860 421355 0 0 7 0x14200 reaper 73768 243151 0 0 3 0x14200 pgdaemon pagedaemon 21169 290280 0 0 3 0x14200 bored viomb 59369 284079 0 0 3 0x40014200 acpi0 acpi0 43953 141795 0 0 3 0x40014200 idle1 30931 279755 0 0 3 0x14200 bored softnet3 46824 210896 0 0 3 0x14200 bored softnet2 35035 386877 0 0 3 0x14200 bored softnet1 9682 328044 0 0 3 0x14200 bored softnet0 10891 188339 0 0 2 0x14200 systqmp 19688 438587 0 0 3 0x14200 bored systq 7554 369938 0 0 3 0x14200 tmoslp softclockmp 80044 198414 0 0 2 0x40014200 softclock 14657 294437 0 0 3 0x40014200 idle0 1 305807 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 12301 (syz-executor2834758917) thread 0xffff80002a1cea90 (96344) exclusive rwlock futex r = 0 (0xffffffff82c573b0) #0 witness_lock+0x447 #1 sys_futex+0x60 #2 syscall+0x50f #3 Xsyscall+0x128 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10165 6456K 6457K 166960K 11243 0 pcb 13 8K 8K 166960K 13 0 rtable 58 1K 2K 166960K 110 0 pf 15 6K 10K 166960K 26 0 ifaddr 13 9K 9K 166960K 13 0 ifgroup 22 1K 1K 166960K 22 0 counters 46 34K 34K 166960K 46 0 ioctlops 0 0K 4K 166960K 1475 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1176 74K 74K 166960K 1192 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 1K 166960K 2 0 VM map 2 1K 1K 166960K 2 0 sem 2 0K 0K 166960K 2 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 1 0K 0K 166960K 1 0 proc 75 187K 187K 166960K 421 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 in_multi 11 0K 0K 166960K 11 0 ether_multi 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 25 122K 122K 166960K 25 0 exec 0 0K 1K 166960K 263 0 tdb 3 0K 0K 166960K 3 0 pagedep 1 8K 8K 166960K 1 0 inodedep 1 32K 32K 166960K 1 0 newblk 1 0K 0K 166960K 1 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 155 7K 7K 166960K 3185 0 UVM aobj 3 2K 2K 166960K 3 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 NDP 4 0K 0K 166960K 4 0 temp 1 5908K 5972K 166960K 3056 0 kqueue 11 16K 18K 166960K 24 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 18 0 15 1 0 1 1 0 8 0 rtentry 112 23 0 1 1 0 1 1 0 8 0 unpcb 144 35 0 20 1 0 1 1 0 8 0 syncache 312 5 0 5 1 1 0 1 0 8 0 tcpqe 32 87 0 87 1 1 0 1 0 8 0 tcpcb 808 8 0 5 1 0 1 1 0 8 0 arp 120 2 0 0 1 0 1 1 0 8 0 inpcb 368 33 0 27 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 9 0 0 1 0 1 1 0 8 0 pfstkey 128 9 0 0 1 0 1 1 0 8 0 pfstate 376 9 0 0 1 0 1 1 0 8 0 pfrule 1344 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 97 0 0 7 0 7 7 0 8 0 art_table 32 98 0 0 1 0 1 1 0 8 0 art_node 16 22 0 2 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1432 0 38 88 0 88 88 0 8 0 ffsino 272 1432 0 38 93 0 93 93 0 8 0 nchpl 144 1618 0 49 59 0 59 59 0 8 0 uvmvnodes 80 1446 0 0 30 0 30 30 0 8 0 vnodes 216 1446 0 0 81 0 81 81 0 8 0 namei 1024 4998 0 4997 8 3 5 6 0 8 4 percpumem 16 36 0 0 1 0 1 1 0 8 0 kstatmem 264 8 0 0 1 0 1 1 0 8 0 scxspl 216 4785 0 4785 3 2 1 2 1 8 1 plimitpl 152 17 0 10 1 0 1 1 0 8 0 sigapl 424 459 0 410 6 0 6 6 0 8 0 futexpl 64 331 0 330 2 1 1 1 0 8 0 knotepl 120 41 0 0 2 0 2 2 0 8 0 kqueuepl 216 20 0 13 1 0 1 1 0 8 0 pipepl 320 92 0 89 1 0 1 1 0 8 0 fdescpl 496 441 0 411 4 0 4 4 0 8 0 filepl 152 1263 0 1205 3 0 3 3 0 8 0 lockfpl 104 6 0 4 1 0 1 1 0 8 0 lockfspl 48 4 0 2 1 0 1 1 0 8 0 sessionpl 144 18 0 9 1 0 1 1 0 8 0 pgrppl 48 18 0 9 1 0 1 1 0 8 0 ucredpl 104 71 0 59 1 0 1 1 0 8 0 zombiepl 144 433 0 430 2 1 1 1 0 8 0 processpl 1072 459 0 410 4 0 4 4 0 8 0 procpl 680 602 0 545 9 0 9 9 0 8 4 sockpl 488 86 0 62 4 0 4 4 0 8 0 mcl8k 8192 2 0 0 1 0 1 1 0 8 0 mcl4k 4096 3 0 0 1 0 1 1 0 8 0 mcl2k 2048 265 0 0 34 0 34 34 0 8 0 mtagpl 96 2 0 0 1 0 1 1 0 8 0 mbufpl 256 276 0 0 18 0 18 18 0 8 0 bufpl 288 2472 0 91 171 0 171 171 0 8 0 anonpl 24 189893 0 187510 28 13 15 25 0 186 0 amapchunkpl 152 10793 0 10496 12 0 12 12 0 158 0 amappl16 200 5564 0 5557 5 4 1 5 0 8 0 amappl15 192 12 0 12 1 1 0 1 0 8 0 amappl14 184 110 0 99 1 0 1 1 0 8 0 amappl13 176 15 0 15 2 2 0 1 0 8 0 amappl12 168 990 0 968 2 1 1 2 0 8 0 amappl11 160 56 0 42 1 0 1 1 0 8 0 amappl10 152 53 0 53 1 1 0 1 0 8 0 amappl9 144 150 0 150 1 1 0 1 0 8 0 amappl8 136 65 0 63 1 0 1 1 0 8 0 amappl7 128 222 0 193 1 0 1 1 0 8 0 amappl6 120 126 0 121 1 0 1 1 0 8 0 amappl5 112 114 0 103 1 0 1 1 0 8 0 amappl4 104 350 0 328 1 0 1 1 0 8 0 amappl3 96 2578 0 2513 3 1 2 2 0 8 0 amappl2 88 748 0 684 2 0 2 2 0 8 0 amappl1 80 9677 0 9155 12 0 12 12 0 8 0 amappl 88 2887 0 2779 3 0 3 3 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 2 0 0 1 0 1 1 0 8 0 uaddrrnd 24 441 0 410 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 441 0 410 1 0 1 1 0 8 0 vmmpekpl 168 7814 0 7793 2 0 2 2 0 8 0 vmmpepl 168 39548 0 38112 63 0 63 63 0 357 0 vmsppl 464 440 0 410 4 0 4 4 0 8 0 rwobjpl 56 20514 0 18271 34 2 32 33 0 8 0 pdppl 4096 890 0 820 86 16 70 70 0 8 0 pvpl 32 298247 0 292603 59 13 46 57 0 265 0 pmappl 248 440 0 410 2 0 2 2 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 526 0 22 15 0 15 15 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace db_enter() at db_enter+0x1c witness_checkorder(ffff800000d20028,9,0) at witness_checkorder+0x13c rw_enter_write(ffff800000d20018) at rw_enter_write+0x5c unveil_delete_names(ffff800000d20000) at unveil_delete_names+0x34 unveil_destroy(ffff8000ffff9d58) at unveil_destroy+0xad exit1(ffff80002a186548,0,0,1) at exit1+0x3d8 sys_exit(ffff80002a186548,ffff80002a256380,ffff80002a2563d0) at sys_exit+0x1a syscall(ffff80002a256450) at syscall+0x4e6 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6feb58605890, count: -9 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp ddb{1}> trace x86_ipi_db(ffff800029d2bff0) at x86_ipi_db+0x1e x86_ipi_handler() at x86_ipi_handler+0xb7 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff82c5f8d8) at __mp_lock+0x122 reaper(ffff80002a185ff8) at reaper+0x160 end trace frame: 0x0, count: -5 ddb{1}>