panic: kern_clock_gettime: 22 cpuid = 0 time = 1753724249 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0056dcc690 kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0056dcc7f0 vpanic() at vpanic+0x257/frame 0xfffffe0056dcc9b0 panic() at panic+0xb5/frame 0xfffffe0056dcca70 kern_clock_nanosleep() at kern_clock_nanosleep+0x96d/frame 0xfffffe0056dccc30 sys_clock_nanosleep() at sys_clock_nanosleep+0x114/frame 0xfffffe0056dccd10 amd64_syscall() at amd64_syscall+0x4e2/frame 0xfffffe0056dccf30 fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0056dccf30 --- syscall (198, FreeBSD ELF64, __syscall), rip = 0x3a1afa, rsp = 0x82751ff08, rbp = 0x82751ff80 --- KDB: enter: panic [ thread pid 999 tid 100349 ] Stopped at kdb_enter+0x6e: movq $0,0x25c45c7(%rip) db> db> set $lines = 0 db> set $maxwidth = 0 db> show registers cs 0x20 ds 0x3b es 0x3b fs 0x13 gs 0x1b ss 0x28 rax 0x12 rcx 0xfffffe0079501000 rdx 0x7ffff rbx 0xffffffff827cb500 .str.27 rsp 0xfffffe0056dcc7d0 rbp 0xfffffe0056dcc7f0 rsi 0x80001 rdi 0xffffffff81614a99 printf+0x149 r8 0 r9 0xffffffff r10 0x945c920162234c54 r11 0xfffffe0054119550 r12 0xfffffe0054119000 r13 0xfffffffffffffffe r14 0xffffffff827cb500 .str.27 r15 0 rip 0xffffffff815fe5ce kdb_enter+0x6e rflags 0x46 kdb_enter+0x6e: movq $0,0x25c45c7(%rip) db> show proc Process 999 (syz-executor) at 0xfffffe0054108ac0: state: NORMAL uid: 0 gids: 0, 0, 5 parent: pid 978 at 0xfffffe00540aa040 ABI: FreeBSD ELF64 flag: 0x10000080 flag2: 0 arguments: ./syz-executor exec reaper: 0xfffffe0007809040 reapsubtree: 1 sigparent: 20 vmspace: 0xfffffe005412bdb0 (map 0xfffffe005412bdb0) (map.pmap 0xfffffe005412be50) (pmap 0xfffffe005412bec0) threads: 4 100287 RunQ syz-executor 100343 S connec 0xfffffe00598a40da syz-executor 100346 S sigwait 0xfffffe0054108b70 syz-executor 100349 Run CPU 0 syz-executor db> ps pid ppid pgrp uid state wmesg wchan cmd 1001 764 764 0 R (threaded) syz-executor 100283 RunQ syz-executor 100345 S sbwait 0xfffffe0059894e0c syz-executor 100347 S connec 0xfffffe00598ae4da syz-executor 999 978 978 0 R (threaded) syz-executor 100287 RunQ syz-executor 100343 S connec 0xfffffe00598a40da syz-executor 100346 S sigwait 0xfffffe0054108b70 syz-executor 100349 Run CPU 0 syz-executor 997 1 766 0 S uwait 0xfffffe0059678500 syz-executor 994 1 766 0 S uwait 0xfffffe005967ae80 syz-executor 993 1 978 0 S uwait 0xfffffe005967ad80 syz-executor 984 765 765 0 R (threaded) syz-executor 100260 RunQ syz-executor 100313 S uwait 0xfffffe00584ebb80 syz-executor 100315 S uwait 0xfffffe00584ec000 syz-executor 100318 S uwait 0xfffffe00584eea80 syz-executor 100319 S lthr 0xfffffe0054123780 syz-executor 100322 S uwait 0xfffffe005967a800 syz-executor 978 762 978 0 R syz-executor 977 1 763 0 S uwait 0xfffffe0058259980 syz-executor 962 1 763 0 S uwait 0xfffffe005967a900 syz-executor 961 1 766 0 S uwait 0xfffffe0058259800 syz-executor 960 1 763 0 S uwait 0xfffffe0059678980 syz-executor 959 1 766 0 S uwait 0xfffffe0059679c80 syz-executor 958 1 766 0 T uwait 0xfffffe0059678780 syz-executor 954 1 764 -1 S uwait 0xfffffe0058259600 syz-executor 951 1 951 0 Rs+ getty 948 1 948 0 REs+ CPU 1 getty 936 1 763 0 S uwait 0xfffffe00584ee880 syz-executor 935 0 0 0 DL mdwait 0xfffffe00787e8000 [md1] 933 1 766 0 S uwait 0xfffffe0058259100 syz-executor 927 1 764 0 S uwait 0xfffffe0059678400 syz-executor 924 1 766 0 S uwait 0xfffffe0058259500 syz-executor 920 1 765 0 S uwait 0xfffffe00584ee980 syz-executor 917 1 764 0 S uwait 0xfffffe00584eec80 syz-executor 916 1 765 0 S uwait 0xfffffe005967ac00 syz-executor 908 1 763 0 S uwait 0xfffffe0059678a80 syz-executor 903 1 763 0 S uwait 0xfffffe0059679680 syz-executor 900 1 765 0 T syz-executor 895 0 0 0 DL mdwait 0xfffffe006ddbb000 [md0] 881 1 423 0 S kqread 0xfffffe00584ef400 rtsol 879 1 764 0 S uwait 0xfffffe00584ee780 syz-executor 878 0 0 0 DL (threaded) [KTLS] 100114 D - 0xfffffe0058567c00 [thr_0] 100158 D - 0xfffffe0058567c80 [thr_1] 100159 D - 0xffffffff83cb5628 [reclaim_0] 869 1 764 0 S uwait 0xfffffe0058259900 syz-executor 821 0 0 0 DL aiordy 0xfffffe005410a040 [aiod4] 820 0 0 0 DL aiordy 0xfffffe005410ab00 [aiod3] 819 0 0 0 DL aiordy 0xfffffe00540f05c0 [aiod2] 818 0 0 0 DL aiordy 0xfffffe005410a5a0 [aiod1] 766 762 766 0 L *process 0xfffffe000782e480 syz-executor 765 762 765 0 S nanslp 0xffffffff83ba3c40 syz-executor 764 762 764 0 S nanslp 0xffffffff83ba3c40 syz-executor 762 1 760 0 S select 0xfffffe0053ffb4c0 syz-executor 16 0 0 0 DL syncer 0xffffffff83cc1820 [syncer] 15 0 0 0 DL vlruwt 0xfffffe000780a060 [vnlru] 14 0 0 0 DL (threaded) [bufdaemon] 100079 D psleep 0xffffffff83cbfd60 [bufdaemon] 100082 D - 0xffffffff83001ec0 [bufspacedaemon-0] 100094 D sdflush 0xfffffe005828d8e8 [/ worker] 9 0 0 0 DL psleep 0xffffffff83d0acc0 [vmdaemon] 8 0 0 0 DL (threaded) [pagedaemon] 100077 D psleep 0xffffffff83cf0d88 [dom0] 100080 D launds 0xffffffff83cf0d94 [laundry: dom0] 100081 D umarcl 0xffffffff81de0770 [uma] 7 0 0 0 DL - 0xffffffff8391c5d8 [rand_harvestq] 6 0 0 0 DL pftm 0xffffffff847b79e0 [pf purge] 5 0 0 0 DL waiting 0xffffffff844d8700 [sctp_iterator] 4 0 0 0 DL (threaded) [cam] 100045 D - 0xffffffff838e6340 [doneq0] 100046 D - 0xffffffff838e62c0 [async] 100075 D - 0xffffffff838e6140 [scanner] 3 0 0 0 DL (threaded) [crypto] 100042 D crypto_ 0xffffffff83cec640 [crypto] 100043 D crypto_ 0xfffffe0057d43030 [crypto returns 0] 100044 D crypto_ 0xfffffe0057d43080 [crypto returns 1] 13 0 0 0 DL (threaded) [geom] 100037 D - 0xffffffff83b4c620 [g_event] 100038 D - 0xffffffff83b4c640 [g_up] 100039 D - 0xffffffff83b4c660 [g_down] 2 0 0 0 RL (threaded) [clock] 100031 I [clock (0)] 100032 CanRun [clock (1)] 12 0 0 0 WL (threaded) [intr] 100013 I [swi6: task queue] 100014 I [swi6: Giant taskq] 100016 I [swi5: fast taskq] 100033 I [swi1: netisr 0] 100034 I [swi1: hpts] 100035 I [swi1: hpts] 100047 I [irq24: virtio_pci0] 100048 I [irq25: virtio_pci0] 100049 I [irq26: virtio_pci0] 100050 I [irq27: virtio_pci0] 100051 I [irq28: virtio_pci1] 100052 I [irq29: virtio_pci1] 100053 I [irq30: virtio_pci1] 100054 I [irq31: virtio_pci1] 100055 I [irq32: virtio_pci1] 100060 I [irq10: virtio_pci2] 100062 I [irq1: atkbd0] 100063 I [irq12: psm0] 100064 I [swi0: uart uart++] 100068 I [swi1: pf send] 11 0 0 0 RL (threaded) [idle] 100003 CanRun [idle: cpu0] 100004 CanRun [idle: cpu1] 1 0 1 0 RLs [init] 10 0 0 0 DL audit_w 0xffffffff83ced0e0 [audit] 0 0 0 0 DLs (threaded) [kernel] 100000 D parked 0xffffffff84c3dff0 [swapper] 100005 D - 0xfffffe0007768d00 [softirq_0] 100006 D - 0xfffffe0007768b00 [softirq_1] 100007 D - 0xfffffe0007768900 [if_io_tqg_0] 100008 D - 0xfffffe0007768700 [if_io_tqg_1] 100009 D - 0xfffffe0007768500 [if_config_tqg_0] 100010 D - 0xfffffe00083db100 [kqueue_ctx taskq] 100011 D - 0xfffffe00083db000 [jail_remove taskq] 100012 D - 0xfffffe00083dae00 [bus taskq] 100015 D - 0xfffffe00083da900 [thread taskq] 100017 D - 0xfffffe00083da600 [aiod_kick taskq] 100018 D - 0xfffffe00083da500 [deferred_unmount ta] 100019 D - 0xfffffe00083da400 [inm_free taskq] 100020 D - 0xfffffe00083da300 [in6m_free taskq] 100021 D - 0xfffffe00083da200 [linuxkpi_irq_wq] 100022 D - 0xfffffe00083da100 [linuxkpi_short_wq_0] 100023 D - 0xfffffe00083da100 [linuxkpi_short_wq_1] 100024 D - 0xfffffe00083da100 [linuxkpi_short_wq_2] 100025 D - 0xfffffe00083da100 [linuxkpi_short_wq_3] 100026 D - 0xfffffe00083da000 [linuxkpi_long_wq_0] 100027 D - 0xfffffe00083da000 [linuxkpi_long_wq_1] 100028 D - 0xfffffe00083da000 [linuxkpi_long_wq_2] 100029 D - 0xfffffe00083da000 [linuxkpi_long_wq_3] 100036 D - 0xfffffe00083d9900 [firmware taskq] 100040 D - 0xfffffe0057d47300 [crypto_0] 100041 D - 0xfffffe0057d47300 [crypto_1] 100056 D - 0xfffffe00083dd200 [vtnet0 rxq 0] 100057 D - 0xfffffe0058145500 [vtnet0 txq 0] 100058 D - 0xfffffe0058145400 [vtnet0 rxq 1] 100059 D - 0xfffffe0058145300 [vtnet0 txq 1] 100061 D vtbslp 0xfffffe0057d67400 [virtio_balloon] 100065 D - 0xffffffff827cfbe1 [deadlkres] 100069 D - 0xfffffe0057d46e00 [acpi_task_0] 100070 D - 0xfffffe0057d46e00 [acpi_task_1] 100071 D - 0xfffffe0057d46e00 [acpi_task_2] 100073 D - 0xfffffe00083dca00 [mca taskq] 100074 D - 0xfffffe0057d46b00 [CAM taskq] 100076 D - 0xfffffe0057d47000 [ipsec_offload] 100335 D - 0xfffffe006e0c5600 [netlink_socket (PID] 100337 D - 0xfffffe006e0c5700 [netlink_socket (PID] 736 1 17 0 Z+ sleep 760 1 760 0 Z csh 779 1 423 0 Z sh 923 1 766 0 Z syz-executor 942 1 942 0 Z+ getty 943 1 943 0 Z+ getty 944 1 944 0 Z+ getty 945 1 945 0 Z+ getty 946 1 946 0 Z+ getty 947 1 947 0 Z+ getty 952 1 952 0 Z+ getty 1002 766 766 0 RE syz-executor db> show all locks Process 1001 (syz-executor) thread 0xfffffe0054125780 (100345) exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe0059894dc0) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4835 Process 948 (getty) thread 0xfffffe00540cd000 (100109) exclusive rw vmobject (vmobject) r = 0 (0xfffffe00540c4aa8) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_object.c:647 db>