panic: knote_enqueue:1308: kq=0xfffffd806e8d8a90 kn=0xfffffd806ec271c0 knote !QUEUED Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *233026 13516 32767 0x10 0 0K syz-executor.1 92057 7581 0 0x2 0x4000480 1 syz-fuzzer db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic(ffffffff82208d2f) at panic+0x15c sys/kern/subr_prf.c:207 kqueue_do_check(fffffd806e8d8a90,ffffffff8224c8d1,51c) at kqueue_do_check+0x232 sys/kern/kern_event.c:622 knote_enqueue(fffffd806ec271c0) at knote_enqueue+0x80 sys/kern/kern_event.c:1309 filt_timerexpire(fffffd806ec271c0) at filt_timerexpire+0x5f sys/kern/kern_event.c:373 timeout_run(ffff8000009f8bc0) at timeout_run+0xc4 timeout_sync_leave sys/kern/kern_timeout.c:183 [inline] timeout_run(ffff8000009f8bc0) at timeout_run+0xc4 sys/kern/kern_timeout.c:489 softclock(0) at softclock+0x175 sys/kern/kern_timeout.c:532 softintr_dispatch(0) at softintr_dispatch+0x107 sys/arch/amd64/amd64/softintr.c:89 Xsoftclock() at Xsoftclock+0x1f uvm_map_inentry(ffff800020aa8c48,ffff800020aa8ca8,7f7fffffafd8,ffffffff821e93a8,ffffffff8114b400,0) at uvm_map_inentry+0x1b sys/uvm/uvm_map.c:1883 syscall(ffff800024f8f0f0) at syscall+0x397 mi_syscall sys/sys/syscall_mi.h:81 [inline] syscall(ffff800024f8f0f0) at syscall+0x397 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7fffffb050, count: 3 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic knote_enqueue:1308: kq=0xfffffd806e8d8a90 kn=0xfffffd806ec271c0 knote !QUEUED ddb{0}> trace db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic(ffffffff82208d2f) at panic+0x15c sys/kern/subr_prf.c:207 kqueue_do_check(fffffd806e8d8a90,ffffffff8224c8d1,51c) at kqueue_do_check+0x232 sys/kern/kern_event.c:622 knote_enqueue(fffffd806ec271c0) at knote_enqueue+0x80 sys/kern/kern_event.c:1309 filt_timerexpire(fffffd806ec271c0) at filt_timerexpire+0x5f sys/kern/kern_event.c:373 timeout_run(ffff8000009f8bc0) at timeout_run+0xc4 timeout_sync_leave sys/kern/kern_timeout.c:183 [inline] timeout_run(ffff8000009f8bc0) at timeout_run+0xc4 sys/kern/kern_timeout.c:489 softclock(0) at softclock+0x175 sys/kern/kern_timeout.c:532 softintr_dispatch(0) at softintr_dispatch+0x107 sys/arch/amd64/amd64/softintr.c:89 Xsoftclock() at Xsoftclock+0x1f uvm_map_inentry(ffff800020aa8c48,ffff800020aa8ca8,7f7fffffafd8,ffffffff821e93a8,ffffffff8114b400,0) at uvm_map_inentry+0x1b sys/uvm/uvm_map.c:1883 syscall(ffff800024f8f0f0) at syscall+0x397 mi_syscall sys/sys/syscall_mi.h:81 [inline] syscall(ffff800024f8f0f0) at syscall+0x397 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7fffffb050, count: -12 ddb{0}> show registers rdi 0 rsi 0x1 rbp 0xffff800024f8ec50 rbx 0xffff800024f8ed00 rdx 0xffffffff82484ff0 cpu_info_full_primary+0x1ff0 rcx 0xffffffff82484ff0 cpu_info_full_primary+0x1ff0 rax 0xffffffff82484ff0 cpu_info_full_primary+0x1ff0 r8 0xffffffff818cb5bf kprintf+0x16f r9 0x1 r10 0x25 r11 0x4cf2f46533b0d470 r12 0x3000000008 r13 0xffff800024f8ec60 r14 0x100 r15 0x1 rip 0xffffffff81769308 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff800024f8ec40 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb{0}> show proc PROC (syz-executor.1) pid=233026 stat=onproc flags process=10 proc=0 pri=80, usrpri=80, nice=20 forw=0xffffffffffffffff, list=0xffff800020aa9608,0xffff800020aa93a8 process=0xffff800020ac36a0 user=0xffff800024f8a000, vmspace=0xfffffd807efffb80 estcpu=36, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND *13516 233026 24778 32767 7 0x10 syz-executor.1 13516 231583 24778 32767 2 0x4000010 syz-executor.1 45732 274504 53077 32767 2 0x10 syz-executor.0 45732 70659 53077 32767 2 0x4000010 syz-executor.0 53077 302445 46906 32767 2 0x490 syz-executor.0 46906 216057 7581 0 3 0x82 wait syz-executor.0 24778 239252 76669 32767 3 0x90 nanosleep syz-executor.1 76669 377931 7581 0 3 0x82 wait syz-executor.1 55793 246700 0 0 3 0x14200 bored sosplice 7581 68146 65854 0 3 0x82 thrsleep syz-fuzzer 7581 503294 65854 0 2 0x4000482 syz-fuzzer 7581 26119 65854 0 3 0x4000082 thrsleep syz-fuzzer 7581 132864 65854 0 3 0x4000082 thrsleep syz-fuzzer 7581 282932 65854 0 3 0x4000082 thrsleep syz-fuzzer 7581 233642 65854 0 3 0x4000082 thrsleep syz-fuzzer 7581 513984 65854 0 3 0x4000082 thrsleep syz-fuzzer 7581 316805 65854 0 3 0x4000082 thrsleep syz-fuzzer 7581 15184 65854 0 3 0x4000082 kqread syz-fuzzer 7581 92057 65854 0 7 0x4000482 syz-fuzzer 65854 467614 26991 0 3 0x10008a pause ksh 26991 93923 4945 0 3 0x92 select sshd 59509 481268 1 0 3 0x100083 ttyin getty 4945 479867 1 0 3 0x80 select sshd 64461 296209 35964 73 3 0x100090 kqread syslogd 35964 353297 1 0 3 0x100082 netio syslogd 98941 290026 1 77 3 0x100090 poll dhclient 87435 257575 1 0 3 0x80 poll dhclient 93609 24109 0 0 2 0x14200 zerothread 84416 6552 0 0 3 0x14200 aiodoned aiodoned 75873 80142 0 0 3 0x14200 syncer update 95597 419554 0 0 3 0x14200 cleaner cleaner 73444 322494 0 0 3 0x14200 reaper reaper 20557 125950 0 0 3 0x14200 pgdaemon pagedaemon 11321 136955 0 0 3 0x14200 bored crynlk 75549 371992 0 0 3 0x14200 bored crypto 83057 518457 0 0 3 0x40014200 acpi0 acpi0 39264 24294 0 0 3 0x40014200 idle1 92652 30997 0 0 3 0x14200 bored softnet 7188 87805 0 0 3 0x14200 bored systqmp 19303 78957 0 0 3 0x14200 bored systq 47534 45086 0 0 3 0x40014200 bored softclock 53385 340982 0 0 3 0x40014200 idle0 5816 440945 0 0 3 0x14200 bored smr 1 129626 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks CPU 0: shared mutex timeout r = 0 (0xffffffff82466750) #0 witness_lock+0x52e sys/kern/subr_witness.c:1164 #1 timeout_run+0xb9 sys/kern/kern_timeout.c:488 #2 softclock+0x175 sys/kern/kern_timeout.c:532 #3 softintr_dispatch+0x107 sys/arch/amd64/amd64/softintr.c:89 #4 Xsoftclock+0x1f #5 uvm_map_inentry+0x1b sys/uvm/uvm_map.c:1883 #6 syscall+0x397 mi_syscall sys/sys/syscall_mi.h:81 [inline] #6 syscall+0x397 sys/arch/amd64/amd64/trap.c:570 #7 Xsyscall+0x128 Process 13516 (syz-executor.1) thread 0xffff800020aa8c48 (233026) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff8264ecd8) #0 witness_lock+0x52e sys/kern/subr_witness.c:1164 #1 softintr_dispatch+0x4e sys/arch/amd64/amd64/softintr.c:89 #2 Xsoftclock+0x1f #3 uvm_map_inentry+0x1b sys/uvm/uvm_map.c:1883 #4 syscall+0x397 mi_syscall sys/sys/syscall_mi.h:81 [inline] #4 syscall+0x397 sys/arch/amd64/amd64/trap.c:570 #5 Xsyscall+0x128 shared mutex timeout r = 0 (0xffffffff82466750) #0 witness_lock+0x52e sys/kern/subr_witness.c:1164 #1 timeout_run+0xb9 sys/kern/kern_timeout.c:488 #2 softclock+0x175 sys/kern/kern_timeout.c:532 #3 softintr_dispatch+0x107 sys/arch/amd64/amd64/softintr.c:89 #4 Xsoftclock+0x1f #5 uvm_map_inentry+0x1b sys/uvm/uvm_map.c:1883 #6 syscall+0x397 mi_syscall sys/sys/syscall_mi.h:81 [inline] #6 syscall+0x397 sys/arch/amd64/amd64/trap.c:570 #7 Xsyscall+0x128 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9481 6333K 6333K 78643K 11533 0 pcb 13 10K 12K 78643K 15 0 rtable 105 3K 4K 78643K 10572 0 ifaddr 39 13K 15K 78643K 1762 0 counters 39 33K 33K 78643K 39 0 ioctlops 0 0K 2K 78643K 446 0 iov 0 0K 36K 78643K 1734 0 mount 1 1K 1K 78643K 1 0 vnodes 1215 76K 76K 78643K 7116 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 140 0 VM map 2 1K 1K 78643K 2 0 sem 12 0K 1K 78643K 6301 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1809 196K 290K 78643K 12766 0 file desc 8 25K 33K 78643K 11138 0 sigio 0 0K 0K 78643K 308 0 proc 48 50K 83K 78643K 11994 0 subproc 34 2K 2K 78643K 4114 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 1K 78643K 3447 0 in_multi 33 2K 2K 78643K 3120 0 ether_multi 1 0K 0K 78643K 54 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 127 572K 572K 78643K 127 0 exec 0 0K 1K 78643K 4525 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 204 27K 43K 78643K 42313 0 UVM aobj 130 4K 4K 78643K 141 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 3K 78643K 7029 0 NDP 5 0K 0K 78643K 729 0 temp 102 3021K 3101K 78643K 52439 0 kqueue 5 5K 36K 78643K 1444 0 SYN cache 2 16K 16K 78643K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 503 0 497 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 80 2155 0 2153 1 0 1 1 0 8 0 rtentry 112 2464 0 2420 2 0 2 2 0 8 0 unpcb 120 10736 0 10711 34 32 2 3 0 8 1 syncache 264 120 0 120 36 36 0 1 0 8 0 sackhl 24 5 0 5 5 5 0 1 0 8 0 tcpqe 32 58 0 58 29 29 0 1 0 8 0 tcpcb 544 19143 0 19137 187 185 2 14 0 8 1 ipq 40 99 0 99 36 35 1 1 0 8 1 ipqe 40 2584 0 2584 36 35 1 1 0 8 1 inpcb 280 28506 0 28494 135 132 3 10 0 8 2 ip6q 72 4 0 4 3 3 0 1 0 8 0 ip6af 40 7 0 7 2 2 0 1 0 8 0 nd6 48 486 0 482 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 10866 0 10651 15 1 14 15 0 8 0 art_table 32 10867 0 10651 2 0 2 2 0 8 0 art_node 16 2463 0 2423 1 0 1 1 0 8 0 sysvmsgpl 40 84 0 54 1 0 1 1 0 8 0 semapl 112 6293 0 6283 1 0 1 1 0 8 0 shmpl 112 139 0 11 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 14006 0 12575 47 0 47 47 0 8 0 ffsino 272 14006 0 12575 97 1 96 96 0 8 0 nchpl 144 28331 0 26728 60 0 60 60 0 8 0 uvmvnodes 72 5926 0 0 108 0 108 108 0 8 0 vnodes 208 5926 0 0 312 0 312 312 0 8 0 namei 1024 130318 0 130318 1 0 1 1 0 8 1 percpumem 16 30 0 0 1 0 1 1 0 8 0 scxspl 192 88647 0 88647 90 89 1 7 0 8 1 plimitpl 152 1946 0 1937 1 0 1 1 0 8 0 sigapl 432 10589 0 10573 18 16 2 3 0 8 0 futexpl 56 240477 0 240477 1 0 1 1 0 8 1 knotepl 112 5058 0 5038 12 11 1 3 0 8 0 kqueuepl 104 8975 0 8972 51 49 2 4 0 8 1 pipelkpl 48 4849 0 4838 1 0 1 1 0 8 0 pipepl 120 9698 0 9677 39 37 2 4 0 8 1 fdescpl 496 10590 0 10573 3 0 3 3 0 8 0 filepl 152 113184 0 113079 187 177 10 15 0 8 5 lockfpl 104 3836 0 3835 1 0 1 1 0 8 0 lockfspl 48 1316 0 1315 1 0 1 1 0 8 0 sessionpl 112 257 0 247 1 0 1 1 0 8 0 pgrppl 48 412 0 402 1 0 1 1 0 8 0 ucredpl 96 21553 0 21544 1 0 1 1 0 8 0 zombiepl 144 10573 0 10573 1 0 1 1 0 8 1 processpl 960 10606 0 10573 5 0 5 5 0 8 0 procpl 624 30185 0 30141 31 26 5 5 0 8 1 srpgc 64 480 0 480 31 30 1 1 0 8 1 sosppl 128 241 0 241 43 42 1 1 0 8 1 sockpl 400 41716 0 41675 229 221 8 17 0 8 2 mcl64k 65536 65 0 0 3 0 3 3 0 8 0 mcl16k 16384 65 0 0 6 3 3 3 0 8 0 mcl12k 12288 41 0 0 3 1 2 2 0 8 0 mcl9k 9216 41 0 0 3 2 1 2 0 8 0 mcl8k 8192 33 0 0 3 0 3 3 0 8 0 mcl4k 4096 18 0 0 3 0 3 3 0 8 0 mcl2k2 2112 15 0 0 1 0 1 1 0 8 0 mcl2k 2048 208 0 0 18 4 14 18 0 8 0 mtagpl 80 1 0 0 1 0 1 1 0 8 0 mbufpl 256 1171 0 0 29 0 29 29 0 8 0 bufpl 280 30780 0 23714 506 0 506 506 0 8 0 anonpl 16 1521286 0 1510737 284 224 60 71 0 125 0 amapchunkpl 152 119753 0 119626 351 332 19 20 0 158 13 amappl16 192 54557 0 53834 390 347 43 51 0 8 4 amappl15 184 2334 0 2328 1 0 1 1 0 8 0 amappl14 176 2910 0 2905 1 0 1 1 0 8 0 amappl13 168 998 0 996 23 22 1 1 0 8 0 amappl12 160 1149 0 1146 6 5 1 1 0 8 0 amappl11 152 1635 0 1624 1 0 1 1 0 8 0 amappl10 144 1390 0 1382 1 0 1 1 0 8 0 amappl9 136 4525 0 4521 1 0 1 1 0 8 0 amappl8 128 2974 0 2855 10 5 5 5 0 8 0 amappl7 120 2666 0 2648 1 0 1 1 0 8 0 amappl6 112 1075 0 1052 1 0 1 1 0 8 0 amappl5 104 3159 0 3150 1 0 1 1 0 8 0 amappl4 96 11249 0 11210 4 3 1 2 0 8 0 amappl3 88 2213 0 2206 1 0 1 1 0 8 0 amappl2 80 66728 0 66643 3 1 2 3 0 8 0 amappl1 72 304773 0 304302 25 15 10 20 0 8 0 amappl 80 34606 0 34561 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 140 0 11 3 0 3 3 0 8 0 uaddrrnd 24 10590 0 10573 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 10590 0 10573 1 0 1 1 0 8 0 vmmpekpl 168 103092 0 103061 2 0 2 2 0 8 0 vmmpepl 168 1492788 0 1490585 381 260 121 135 0 357 17 vmsppl 368 10589 0 10573 2 0 2 2 0 8 0 pdppl 4096 21187 0 21146 6 0 6 6 0 8 0 pvpl 32 3852818 0 3838900 625 473 152 181 0 265 7 pmappl 232 10589 0 10573 36 35 1 2 0 8 0 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 636 0 443 7 0 7 7 0 8 0