Warning: Permanently added '10.128.1.76' (ED25519) to the list of known hosts. 2023/09/08 08:20:29 ignoring optional flag "sandboxArg"="0" 2023/09/08 08:20:29 parsed 1 programs 2023/09/08 08:20:34 executed programs: 0 witness: lock order reversal: 1st 0xffffffff82c75c58 &sched_lock (&sched_lock) 2nd 0xffff800021221e70 &pr->ps_mtx (&pr->ps_mtx) lock order "&pr->ps_mtx"(mutex) -> "&sched_lock"(sched_lock) first seen at: #0 __mp_lock+0xa2 #1 donice+0x178 #2 syscall+0x5e2 #3 Xsyscall+0x128 lock order "&sched_lock"(sched_lock) -> "&pr->ps_mtx"(mutex) first seen at: #0 mtx_enter+0x3e #1 single_thread_set+0x35a #2 sigexit+0x90 #3 postsig+0x4a9 #4 userret+0x16e #5 syscall+0x4e7 #6 Xsyscall+0x128 Stopped at db_enter+0x1c: addq $0x8,%rsp ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic the kernel did not panic ddb{1}> trace db_enter() at db_enter+0x1c witness_checkorder(ffff800021221e70,9,0) at witness_checkorder+0x10b7 mtx_enter(ffff800021221e60) at mtx_enter+0x3e single_thread_set(ffff800021201560,0,1) at single_thread_set+0x35a sigexit(ffff800021201560,6) at sigexit+0x90 postsig(ffff800021201560,6,ffff80002128bcb8) at postsig+0x4a9 userret(ffff800021201560) at userret+0x16e syscall(ffff80002128bdf0) at syscall+0x4e7 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xde680810db0, count: -9 ddb{1}> show registers rdi 0x3 rsi 0xffffffff82c40e70 __sancov_gen_cov_switch_values.134 rbp 0xffff80002128b9c0 rbx 0x3 rdx 0x3fd rcx 0 rax 0x1 r8 0xffff80002128b930 r9 0x8080808080808080 r10 0x91ea5047bdcc274d r11 0xb51438194eb9c758 r12 0xfffffd8003a0d7a0 r13 0 r14 0xfffffd8003a05ea0 r15 0xfffffd80031cabc0 rip 0xffffffff82131f9c db_enter+0x1c cs 0x8 rflags 0x246 rsp 0xffff80002128b9b0 ss 0x10 db_enter+0x1c: addq $0x8,%rsp ddb{1}> show proc PROC (syz-executor.0) pid=82404 stat=onproc flags process=100000 proc=4002000 pri=32, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff800021201010,0xffffffff82d74600 process=0xffff800021221d60 user=0xffff800021286000, vmspace=0xfffffd806ef9e578 estcpu=0, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 58161 152755 62694 0 4 0x182000 syz-executor.0 *58161 82404 62694 0 7 0x4102000 syz-executor.0 62694 85243 37843 0 3 0x82 nanoslp syz-executor.0 37843 479710 7960 0 3 0x2000082 wait syz-execprog 37843 273762 7960 0 3 0x6000082 nanoslp syz-execprog 37843 231779 7960 0 3 0x6000082 thrsleep syz-execprog 37843 461848 7960 0 3 0x6000082 thrsleep syz-execprog 37843 386042 7960 0 3 0x6000082 thrsleep syz-execprog 37843 258995 7960 0 3 0x6000082 thrsleep syz-execprog 37843 77573 7960 0 3 0x6000082 kqread syz-execprog 37843 51847 7960 0 3 0x6000082 thrsleep syz-execprog 37843 237162 7960 0 3 0x6000082 thrsleep syz-execprog 37843 214955 7960 0 3 0x6000082 thrsleep syz-execprog 7960 72060 22566 0 3 0x10008a sigsusp ksh 22566 83050 71741 0 3 0x9a kqread sshd 9531 434386 1 0 3 0x100083 ttyin getty 71741 214304 1 0 3 0x88 kqread sshd 70241 380750 11378 74 3 0x1100092 bpf pflogd 11378 477584 1 0 3 0x80 netio pflogd 7621 93807 32498 73 3 0x1100090 kqread syslogd 32498 514285 1 0 3 0x100082 netio syslogd 68134 511338 1 0 3 0x100080 kqread resolvd 35302 376930 65939 77 3 0x100092 kqread dhcpleased 85950 154007 65939 77 3 0x100092 kqread dhcpleased 65939 269965 1 0 3 0x80 kqread dhcpleased 15351 280659 0 0 3 0x14200 bored smr 69628 184524 0 0 7 0x14200 zerothread 16009 335908 0 0 3 0x14200 aiodoned aiodoned 37377 372092 0 0 3 0x14200 syncer update 91308 19345 0 0 3 0x14200 cleaner cleaner 14263 519013 0 0 3 0x14200 reaper reaper 91409 252756 0 0 3 0x14200 pgdaemon pagedaemon 78449 254760 0 0 3 0x14200 bored viomb 83576 131469 0 0 3 0x40014200 acpi0 acpi0 60248 399532 0 0 3 0x40014200 idle1 22636 446824 0 0 3 0x14200 bored softnet3 27713 71267 0 0 3 0x14200 bored softnet2 17583 321323 0 0 3 0x14200 bored softnet1 87695 47317 0 0 3 0x14200 bored softnet0 51631 286087 0 0 3 0x14200 bored systqmp 90203 345581 0 0 3 0x14200 bored systq 74630 398213 0 0 3 0x40014200 bored softclock 81604 521936 0 0 3 0x40014200 idle0 1 441523 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks CPU 1: exclusive sched_lock &sched_lock r = 0 (0xffffffff82c75c58) #0 witness_lock+0x447 #1 single_thread_set+0x179 #2 sigexit+0x90 #3 postsig+0x4a9 #4 userret+0x16e #5 syscall+0x4e7 #6 Xsyscall+0x128 Process 58161 (syz-executor.0) thread 0xffff800021201560 (82404) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82d78a60) #0 witness_lock+0x447 #1 postsig+0x49e #2 userret+0x16e #3 syscall+0x4e7 #4 Xsyscall+0x128 exclusive sched_lock &sched_lock r = 0 (0xffffffff82c75c58) #0 witness_lock+0x447 #1 single_thread_set+0x179 #2 sigexit+0x90 #3 postsig+0x4a9 #4 userret+0x16e #5 syscall+0x4e7 #6 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10165 6458K 6458K 78643K 11243 0 pcb 13 8K 8K 78643K 13 0 rtable 80 2K 2K 78643K 144 0 pf 18 7K 10K 78643K 29 0 ifaddr 17 10K 10K 78643K 17 0 ifgroup 27 1K 1K 78643K 27 0 counters 46 34K 34K 78643K 46 0 ioctlops 0 0K 4K 78643K 1476 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1176 74K 74K 78643K 1192 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 1K 78643K 2 0 VM map 2 1K 1K 78643K 2 0 sem 2 0K 0K 78643K 2 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 4 9K 13K 78643K 24 0 proc 67 91K 103K 78643K 330 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 in_multi 22 1K 1K 78643K 22 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 25 122K 122K 78643K 25 0 exec 0 0K 1K 78643K 300 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 172 16K 16K 78643K 3014 0 UVM aobj 3 2K 2K 78643K 3 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 NDP 7 0K 0K 78643K 7 0 temp 1 5904K 5968K 78643K 3447 0 kqueue 12 18K 18K 78643K 25 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 22 0 19 1 0 1 1 0 8 0 rtentry 112 34 0 1 1 0 1 1 0 8 0 unpcb 144 35 0 20 1 0 1 1 0 8 0 syncache 304 5 0 5 1 0 1 1 0 8 1 tcpqe 32 184 0 184 1 1 0 1 0 8 0 tcpcb 808 8 0 5 1 0 1 1 0 8 0 arp 120 4 0 0 1 0 1 1 0 8 0 inpcb 368 37 0 31 1 0 1 1 0 8 0 nd6 136 3 0 0 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 11 0 0 1 0 1 1 0 8 0 pfstkey 128 11 0 0 1 0 1 1 0 8 0 pfstate 376 11 0 0 2 0 2 2 0 8 0 pfrule 1344 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 145 0 0 10 0 10 10 0 8 0 art_table 32 146 0 0 2 0 2 2 0 8 0 art_node 16 33 0 3 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1465 0 52 89 0 89 89 0 8 0 ffsino 272 1465 0 52 95 0 95 95 0 8 0 nchpl 144 1704 0 63 61 0 61 61 0 8 0 uvmvnodes 80 1479 0 0 31 0 31 31 0 8 0 vnodes 216 1479 0 0 83 0 83 83 0 8 0 namei 1024 5494 0 5494 2 0 2 2 0 8 2 percpumem 16 36 0 0 1 0 1 1 0 8 0 kstatmem 264 10 0 0 1 0 1 1 0 8 0 scxspl 216 6206 0 6206 3 2 1 2 1 8 1 plimitpl 152 28 0 19 1 0 1 1 0 8 0 sigapl 424 369 0 335 7 1 6 6 0 8 2 futexpl 64 1 0 1 1 0 1 1 0 8 1 knotepl 120 66 0 0 2 0 2 2 0 8 0 kqueuepl 216 21 0 13 1 0 1 1 0 8 0 pipepl 320 118 0 111 2 0 2 2 0 8 1 fdescpl 496 352 0 335 4 0 4 4 0 8 1 filepl 152 1538 0 1468 4 0 4 4 0 8 1 lockfpl 104 6 0 4 1 0 1 1 0 8 0 lockfspl 48 4 0 2 1 0 1 1 0 8 0 sessionpl 144 19 0 9 1 0 1 1 0 8 0 pgrppl 48 19 0 9 1 0 1 1 0 8 0 ucredpl 104 71 0 59 1 0 1 1 0 8 0 zombiepl 144 335 0 335 1 0 1 1 0 8 1 processpl 1072 369 0 335 4 0 4 4 0 8 1 procpl 680 379 0 335 6 1 5 5 0 8 1 sockpl 488 94 0 70 4 0 4 4 0 8 0 mcl8k 8192 5 0 0 1 0 1 1 0 8 0 mcl4k 4096 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 311 0 0 39 0 39 39 0 8 0 mtagpl 96 3 0 0 1 0 1 1 0 8 0 mbufpl 256 332 0 0 21 0 21 21 0 8 0 bufpl 288 4112 0 141 284 0 284 284 0 8 0 anonpl 24 190475 0 186673 57 3 54 54 0 186 28 amapchunkpl 152 10143 0 9736 26 0 26 26 0 158 9 amappl16 200 5382 0 5324 5 0 5 5 0 8 0 amappl15 192 11 0 11 2 1 1 1 0 8 1 amappl14 184 144 0 131 2 0 2 2 0 8 1 amappl13 176 12 0 12 1 1 0 1 0 8 0 amappl12 168 936 0 917 3 1 2 2 0 8 1 amappl11 160 54 0 40 1 0 1 1 0 8 0 amappl10 152 22 0 20 1 0 1 1 0 8 0 amappl9 144 183 0 183 1 0 1 1 0 8 1 amappl8 136 124 0 102 2 0 2 2 0 8 1 amappl7 128 85 0 78 2 0 2 2 0 8 0 amappl6 120 185 0 167 2 0 2 2 0 8 1 amappl5 112 151 0 140 1 0 1 1 0 8 0 amappl4 104 552 0 513 2 0 2 2 0 8 0 amappl3 96 2471 0 2423 3 1 2 2 0 8 0 amappl2 88 622 0 566 3 0 3 3 0 8 1 amappl1 80 10289 0 9792 23 1 22 23 0 8 10 amappl 88 2550 0 2446 4 0 4 4 0 92 1 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 2 0 0 1 0 1 1 0 8 0 uaddrrnd 24 352 0 335 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 352 0 335 1 0 1 1 0 8 0 vmmpekpl 168 9673 0 9646 2 0 2 2 0 8 0 vmmpepl 168 42604 0 41280 115 0 115 115 0 357 55 vmsppl 464 351 0 335 4 0 4 4 0 8 1 rwobjpl 56 20777 0 18419 46 0 46 46 0 8 8 pdppl 4096 712 0 670 88 30 58 66 0 8 16 pvpl 32 386410 0 378052 340 1 339 340 0 265 265 pmappl 248 351 0 335 2 0 2 2 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 645 0 33 18 0 18 18 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff82b9dff0) at x86_ipi_db+0x1e x86_ipi_handler() at x86_ipi_handler+0xb7 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff82c75a50) at __mp_lock+0x122 yield() at yield+0x37 uvm_pagezero_thread(ffff8000211b2d50) at uvm_pagezero_thread+0x6d end trace frame: 0x0, count: -6 ddb{0}> machine ddbcpu 1 Stopped at db_enter+0x1c: addq $0x8,%rsp ddb{1}> trace db_enter() at db_enter+0x1c witness_checkorder(ffff800021221e70,9,0) at witness_checkorder+0x10b7 mtx_enter(ffff800021221e60) at mtx_enter+0x3e single_thread_set(ffff800021201560,0,1) at single_thread_set+0x35a sigexit(ffff800021201560,6) at sigexit+0x90 postsig(ffff800021201560,6,ffff80002128bcb8) at postsig+0x4a9 userret(ffff800021201560) at userret+0x16e syscall(ffff80002128bdf0) at syscall+0x4e7 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xde680810db0, count: -9 ddb{1}>