panic: pmap_san_enter_alloc_4k: no memory to grow shadow map
cpuid = 0
time = 1754977762
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0056da8010
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0056da8170
vpanic() at vpanic+0x257/frame 0xfffffe0056da8330
panic() at panic+0xb5/frame 0xfffffe0056da83f0
pmap_san_enter_alloc_4k() at pmap_san_enter_alloc_4k+0x4b/frame 0xfffffe0056da8410
pmap_san_enter() at pmap_san_enter+0x353/frame 0xfffffe0056da8450
kasan_shadow_map() at kasan_shadow_map+0x78/frame 0xfffffe0056da8470
pmap_growkernel() at pmap_growkernel+0xd1/frame 0xfffffe0056da84d0
vm_map_insert1() at vm_map_insert1+0x672/frame 0xfffffe0056da8610
vm_map_find_locked() at vm_map_find_locked+0xa12/frame 0xfffffe0056da8780
vm_map_find() at vm_map_find+0xc7/frame 0xfffffe0056da87f0
kva_import() at kva_import+0xd4/frame 0xfffffe0056da88d0
vmem_try_fetch() at vmem_try_fetch+0x21e/frame 0xfffffe0056da89c0
vmem_xalloc() at vmem_xalloc+0x538/frame 0xfffffe0056da8a60
kva_import_domain() at kva_import_domain+0x5f/frame 0xfffffe0056da8ab0
vmem_try_fetch() at vmem_try_fetch+0x21e/frame 0xfffffe0056da8b90
vmem_xalloc() at vmem_xalloc+0x538/frame 0xfffffe0056da8c30
vmem_alloc() at vmem_alloc+0xfe/frame 0xfffffe0056da8c90
kmem_malloc_domainset() at kmem_malloc_domainset+0x17e/frame 0xfffffe0056da8dd0
malloc_large() at malloc_large+0x3e/frame 0xfffffe0056da8e10
ip6_ctloutput() at ip6_ctloutput+0xb56/frame 0xfffffe0056da9890
udp_ctloutput() at udp_ctloutput+0x21b/frame 0xfffffe0056da9970
sogetopt() at sogetopt+0x1fa/frame 0xfffffe0056da9af0
kern_getsockopt() at kern_getsockopt+0x2a9/frame 0xfffffe0056da9c50
sys_getsockopt() at sys_getsockopt+0x121/frame 0xfffffe0056da9d10
amd64_syscall() at amd64_syscall+0x4e2/frame 0xfffffe0056da9f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0056da9f30
--- syscall (198, FreeBSD ELF64, __syscall), rip = 0x3a1bba, rsp = 0x821d76f08, rbp = 0x821d76f80 ---
KDB: enter: panic
[ thread pid 937 tid 100165 ]
Stopped at      kdb_enter+0x6e: movq    $0,0x25c3f57(%rip)
db> 
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs                        0x20
ds                        0x3b
es                        0x3b
fs                        0x13
gs                        0x1b
ss                        0x28
rax                       0x12
rcx         0xfffffe0002bf1850
rdx         0xdffff7c000000000
rbx         0xffffffff827cd960  .str.27
rsp         0xfffffe0056da8150
rbp         0xfffffe0056da8170
rsi                          0
rdi         0xffffffff830004e8  panicstr
r8                           0
r9                  0xffffffff
r10                          0
r11                       0x3f
r12         0xfffffe0054122780
r13         0xfffffffffffffffe
r14         0xffffffff827cd960  .str.27
r15                          0
rip         0xffffffff815fec3e  kdb_enter+0x6e
rflags                    0x46
kdb_enter+0x6e: movq    $0,0x25c3f57(%rip)
db> show proc
Process 937 (syz-executor) at 0xfffffe005410f010:
 state: NORMAL
 uid: 0  gids: 0, 5
 parent: pid 910 at 0xfffffe00540cc570
 ABI: FreeBSD ELF64
 flag: 0x10000080  flag2: 0
 arguments: ./syz-executor exec
 reaper: 0xfffffe0007809010 reapsubtree: 1
 sigparent: 20
 vmspace: 0xfffffe005411ab68
   (map 0xfffffe005411ab68)
   (map.pmap 0xfffffe005411ac08)
   (pmap 0xfffffe005411ac78)
 threads: 4
100140                   RunQ                                syz-executor
100163                   S       select  0xfffffe0053ed6cc0  syz-executor
100165                   Run     CPU 0                       syz-executor
100167                   S       uwait   0xfffffe006e68d200  syz-executor
db>