panic: pmap_san_enter_alloc_4k: no memory to grow shadow map cpuid = 1 time = 48 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe00acec57b0 kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe00acec5910 vpanic() at vpanic+0x257/frame 0xfffffe00acec5ad0 panic() at panic+0xb5/frame 0xfffffe00acec5b90 pmap_san_enter_alloc_4k() at pmap_san_enter_alloc_4k+0x4b/frame 0xfffffe00acec5bb0 pmap_san_enter() at pmap_san_enter+0x353/frame 0xfffffe00acec5bf0 kasan_shadow_map() at kasan_shadow_map+0x78/frame 0xfffffe00acec5c10 pmap_growkernel() at pmap_growkernel+0xd1/frame 0xfffffe00acec5c70 vm_map_insert1() at vm_map_insert1+0x672/frame 0xfffffe00acec5db0 vm_map_find_locked() at vm_map_find_locked+0xa12/frame 0xfffffe00acec5f20 vm_map_find() at vm_map_find+0xc7/frame 0xfffffe00acec5f90 kva_import() at kva_import+0xd4/frame 0xfffffe00acec6070 vmem_try_fetch() at vmem_try_fetch+0x21e/frame 0xfffffe00acec6160 vmem_xalloc() at vmem_xalloc+0x538/frame 0xfffffe00acec6200 kva_import_domain() at kva_import_domain+0x5f/frame 0xfffffe00acec6250 vmem_try_fetch() at vmem_try_fetch+0x21e/frame 0xfffffe00acec6330 vmem_xalloc() at vmem_xalloc+0x538/frame 0xfffffe00acec63d0 vmem_alloc() at vmem_alloc+0xfe/frame 0xfffffe00acec6430 kmem_malloc_domainset() at kmem_malloc_domainset+0x17e/frame 0xfffffe00acec6570 keg_alloc_slab() at keg_alloc_slab+0x1f1/frame 0xfffffe00acec6690 zone_import() at zone_import+0x2d9/frame 0xfffffe00acec6880 cache_alloc() at cache_alloc+0x7e5/frame 0xfffffe00acec6950 cache_alloc_retry() at cache_alloc_retry+0x35/frame 0xfffffe00acec6990 vm_map_entry_create() at vm_map_entry_create+0xa6/frame 0xfffffe00acec69b0 vmspace_fork() at vmspace_fork+0x91c/frame 0xfffffe00acec6ad0 fork1() at fork1+0xb36/frame 0xfffffe00acec6bf0 sys_rfork() at sys_rfork+0x1b7/frame 0xfffffe00acec6d10 amd64_syscall() at amd64_syscall+0x4e2/frame 0xfffffe00acec6f30 fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe00acec6f30 --- syscall (198, FreeBSD ELF64, __syscall), rip = 0x3a1b8a, rsp = 0x82413ff08, rbp = 0x82413ff80 --- KDB: enter: panic [ thread pid 2325 tid 102769 ] Stopped at kdb_enter+0x6e: movq $0,0x25b6f77(%rip) db> db> set $lines = 0 db> set $maxwidth = 0 db> show registers cs 0x20 ds 0x3b es 0x3b fs 0x13 gs 0x1b ss 0x28 rax 0x12 rcx 0xfffffe0002bf1850 rdx 0 rbx 0xffffffff827e1820 .str.27 rsp 0xfffffe00acec58f0 rbp 0xfffffe00acec5910 rsi 0 rdi 0xffffffff816260e9 printf+0x149 r8 0 r9 0xffffffff r10 0 r11 0x3f r12 0xfffffe00b1272000 r13 0xfffffffffffffffd r14 0xffffffff827e1820 .str.27 r15 0 rip 0xffffffff8160fc1e kdb_enter+0x6e rflags 0x46 kdb_enter+0x6e: movq $0,0x25b6f77(%rip) db> show proc Process 2325 (syz-executor) at 0xfffffe00b127d560: state: NORMAL uid: 0 gids: 0, 5 parent: pid 2324 at 0xfffffe00b125b008 leader: pid 1747 at 0xfffffe00ab44cab0 ABI: FreeBSD ELF64 flag: 0x10000000 flag2: 0 arguments: ./syz-executor exec reaper: 0xfffffe0007809010 reapsubtree: 1 sigparent: 0 vmspace: 0xfffffe00b1204db0 (map 0xfffffe00b1204db0) (map.pmap 0xfffffe00b1204e50) (pmap 0xfffffe00b1204ec0) threads: 1 102769 Run CPU 1 syz-executor db> ps pid ppid pgrp uid state wmesg wchan cmd 2439 1834 764 0 N syz-executor 2438 2105 764 0 N syz-executor 2437 2237 764 0 N syz-executor 2436 2436 0 0 N syz-executor 2434 2434 0 0 N syz-executor 2433 1859 764 0 N syz-executor 2432 2432 0 0 N syz-executor 2431 2431 0 0 N syz-executor 2430 2430 0 0 N syz-executor 2429 2429 0 0 N syz-executor 2428 2428 0 0 N syz-executor 2427 2427 0 0 N syz-executor 2426 1941 764 0 N syz-executor 2425 1825 764 0 N syz-executor 2424 2143 764 0 N syz-executor 2423 2423 0 0 N syz-executor 2422 2205 764 0 N syz-executor 2421 2022 764 0 N syz-executor 2420 2108 764 0 N syz-executor 2419 1827 764 0 N syz-executor 2418 2174 764 0 N syz-executor 2417 2227 764 0 N syz-executor 2416 2161 764 0 N syz-executor 2415 1857 764 0 N syz-executor 2414 2414 0 0 N syz-executor 2413 2413 0 0 N syz-executor 2412 2412 0 0 N syz-executor 2411 1826 764 0 N syz-executor 2410 1953 764 0 N syz-executor 2409 2160 764 0 N syz-executor 2408 1972 764 0 N syz-executor 2407 2297 764 0 N syz-executor 2406 2322 764 0 N syz-executor 2405 1863 764 0 N syz-executor 2404 2274 764 0 N syz-executor 2403 2082 764 0 N syz-executor 2402 2110 764 0 N syz-executor 2401 2270 764 0 N syz-executor 2400 2032 764 0 N syz-executor 2399 2093 764 0 N syz-executor 2397 2095 764 0 N syz-executor 2396 2114 764 0 N syz-executor 2398 2204 764 0 N syz-executor 2395 2219 764 0 N syz-executor 2394 2026 764 0 N syz-executor 2393 2235 764 0 N syz-executor 2392 2053 764 0 N syz-executor 2391 1930 764 0 N syz-executor 2390 1904 764 0 N syz-executor 2389 2224 764 0 N syz-executor 2388 2285 764 0 N syz-executor 2387 2229 764 0 N syz-executor 2386 2103 764 0 N syz-executor 2385 1832 764 0 N syz-executor 2384 1996 764 0 N syz-executor 2383 1900 764 0 N syz-executor 2382 1830 764 0 N syz-executor 2381 2188 764 0 N syz-executor 2380 1819 764 0 N syz-executor 2379 2096 764 0 N syz-executor 2378 2320 764 0 N syz-executor 2377 2015 764 0 N syz-executor 2376 1992 764 0 N syz-executor 2375 2165 764 0 N syz-executor 2374 2024 764 0 N syz-executor 2373 2328 764 0 N syz-executor 2372 2139 764 0 N syz-executor 2371 2239 764 0 N syz-executor 2370 2321 764 0 N syz-executor 2369 2025 764 0 N syz-executor 2368 2368 0 0 N syz-executor 2367 2327 764 0 N syz-executor 2366 2366 0 0 N syz-executor 2365 2365 0 0 N syz-executor 2364 2364 0 0 N syz-executor 2363 2363 0 0 N syz-executor 2362 2362 0 0 N syz-executor 2361 2361 0 0 N syz-executor 2360 2360 0 0 N syz-executor 2359 2359 0 0 N syz-executor 2358 2358 0 0 N syz-executor 2357 2088 764 0 N syz-executor 2356 2356 0 0 N syz-executor 2355 2355 0 0 N syz-executor 2354 2354 0 0 N syz-executor 2353 2353 0 0 N syz-executor 2352 2352 0 0 N syz-executor 2351 2351 0 0 N syz-executor 2350 2350 0 0 N syz-executor 2349 2349 0 0 N syz-executor 2348 1985 764 0 N syz-executor 2347 2244 764 0 N syz-executor 2346 2221 764 0 N syz-executor 2345 1831 764 0 N syz-executor 2344 2130 764 0 N syz-executor 2343 1844 764 0 N syz-executor 2342 2121 764 0 N syz-executor 2341 2134 764 0 N syz-executor 2340 1816 764 0 N syz-executor 2339 1840 764 0 N syz-executor 2338 2097 764 0 N syz-executor 2337 2337 0 0 N syz-executor 2336 2042 764 0 D pfault 0xffffffff83003480 syz-executor 2335 1867 764 0 D fork 0xffffffff827e5f00 syz-executor 2334 2334 0 0 N syz-executor 2333 1822 764 0 D fork 0xffffffff827e5f00 syz-executor 2332 2332 0 0 N syz-executor 2331 2001 764 0 N syz-executor 2330 1853 764 0 R syz-executor 2329 1826 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2328 1883 764 0 DL vmwait 0xffffffff83003480 syz-executor 2327 2226 764 0 DL vmwait 0xffffffff83003480 syz-executor 2326 2139 764 0 R syz-executor 2325 2324 764 0 R CPU 1 syz-executor 2324 2139 764 0 R syz-executor 2323 2238 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2322 2274 764 0 DL vmwait 0xffffffff83003480 syz-executor 2321 1985 764 0 DL vmwait 0xffffffff83003480 syz-executor 2295 2154 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2293 1838 764 0 D vmwait 0xffffffff83003480 syz-executor 2290 1898 764 0 R syz-executor 2289 2102 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2287 1817 764 0 D vmwait 0xffffffff83003480 syz-executor 2286 2236 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2283 1855 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2320 2141 764 0 DL vmwait 0xffffffff83003480 syz-executor 2282 1850 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2281 1827 764 0 D vmwait 0xffffffff83003480 syz-executor 2279 2235 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2277 1894 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2276 1843 764 0 R syz-executor 2275 1932 764 0 R syz-executor 2274 2139 764 0 DL vmwait 0xffffffff83003480 syz-executor 2273 1832 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2319 2319 0 0 N syz-executor 2318 2318 0 0 N syz-executor 2317 1834 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2316 2316 0 0 N syz-executor 2315 2249 764 0 D fork 0xffffffff827e5f01 syz-executor 2314 2240 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2313 2225 764 0 D fork 0xffffffff827e5f01 syz-executor 2312 2191 764 0 D fork 0xffffffff827e5f01 syz-executor 2311 2177 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2310 2185 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2309 2179 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2308 2193 764 0 D fork 0xffffffff827e5f01 syz-executor 2307 2209 764 0 D fork 0xffffffff827e5f01 syz-executor 2306 1948 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2305 2167 764 0 D pfault 0xffffffff83003480 syz-executor 2304 2143 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2303 2125 764 0 D fork 0xffffffff827e5f00 syz-executor 2302 2109 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2301 1841 764 0 R syz-executor 2300 2300 0 0 N syz-executor 2299 2188 764 0 D fork 0xffffffff827e5f00 syz-executor 2298 2133 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2297 2122 764 0 DL vmwait 0xffffffff83003480 syz-executor 2294 1833 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2292 2070 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2291 2043 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2288 2092 764 0 D vmwait 0xffffffff83003480 syz-executor 2285 1839 764 0 DL vmwait 0xffffffff83003480 syz-executor 2284 1835 764 0 R syz-executor 2280 1829 764 0 R syz-executor 2278 1965 764 0 R syz-executor 2296 762 2296 0 D vmwait 0xffffffff83003480 syz-executor 2272 1858 764 0 R syz-executor 2271 1846 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2270 2226 764 0 DL vmwait 0xffffffff83003480 syz-executor 2269 1973 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2268 1864 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2267 1825 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2266 2234 1761 0 S+ piperd 0xfffffe0078881700 sh 2265 1849 764 0 R syz-executor 2264 1919 764 0 R syz-executor 2263 1877 764 0 D vmwait 0xffffffff83003480 syz-executor 2262 2236 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2261 1863 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2260 2137 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2259 2234 1761 0 D+ pfault 0xffffffff83003480 ps 2258 1823 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2257 1834 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2256 1901 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2255 1987 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2254 1930 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2253 1908 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2252 1896 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2251 1820 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2250 1845 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2249 1906 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2248 2072 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2247 1885 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2246 2193 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2245 2097 764 0 R syz-executor 2244 2083 764 0 DL vmwait 0xffffffff83003480 syz-executor 2243 1900 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2242 1826 764 0 R syz-executor 2241 2086 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2240 2106 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2239 1868 764 0 DL vmwait 0xffffffff83003480 syz-executor 2238 2081 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2237 1885 764 0 DL vmwait 0xffffffff83003480 syz-executor 2236 1832 764 0 D vmwait 0xffffffff83003480 syz-executor 2235 2061 764 0 DL vmwait 0xffffffff83003480 syz-executor 2234 2206 1761 0 S+ wait 0xfffffe00af1aeab0 sh 2233 2199 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2232 2208 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2231 1856 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2230 2190 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2229 2111 764 0 DL vmwait 0xffffffff83003480 syz-executor 2228 1928 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2227 1892 764 0 DL vmwait 0xffffffff83003480 syz-executor 2226 1938 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2225 1876 764 0 L *vm map 0xfffffe00ab4a0b40 syz-executor 2224 2188 764 0 DL vmwait 0xffffffff83003480 syz-executor 2223 1851 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2222 2146 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2221 1924 764 0 DL vmwait 0xffffffff83003480 syz-executor 2220 1924 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2219 1924 764 0 DL vmwait 0xffffffff83003480 syz-executor 2218 2051 764 0 L *btag lo 0xfffffe00ab5300c0 syz-executor 2217 1913 764serialport: VM disconnected.