ppanic: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_map.c", line 2526
Stopped at db_enter+0x1c: addq $0x8,%rsp
TID PID UID PRFLAGS PFLAGS CPU COMMAND
214097 63519 32767 0x10 0x4000000 0 syz-executor.6
*486667 69774 0 0x14000 0x200 1 reaper
db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8278e492) at panic+0x17b sys/kern/subr_prf.c:198
__assert(ffffffff8280fd84,ffffffff8283c21e,9de,ffffffff827c912f) at __assert+0x29 sys/kern/subr_prf.c:157
uvm_map_teardown(fffffd806bc3e020) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528
uvmspace_free(fffffd806bc3e020) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503
reaper(ffff8000211ac578) at reaper+0x19a sys/kern/kern_exit.c:449
end trace frame: 0x0, count: 9
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{1}>
ddb{1}> set $lines = 0
ddb{1}> set $maxwidth = 0
ddb{1}> show panic
*cpu0: vop_generic_badop
cpu1: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_map.c", line 2526
ddb{1}> trace
db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8278e492) at panic+0x17b sys/kern/subr_prf.c:198
__assert(ffffffff8280fd84,ffffffff8283c21e,9de,ffffffff827c912f) at __assert+0x29 sys/kern/subr_prf.c:157
uvm_map_teardown(fffffd806bc3e020) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528
uvmspace_free(fffffd806bc3e020) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503
reaper(ffff8000211ac578) at reaper+0x19a sys/kern/kern_exit.c:449
end trace frame: 0x0, count: -6
ddb{1}> show registers
rdi 0
rsi 0x1
rbp 0xffff8000211b95f0
rbx 0xffff800020d59b8f
rdx 0
rcx 0
rax 0xffff8000211ac578
r8 0x101010101010101
r9 0x8080808080808080
r10 0xf834dc1294f6a77d
r11 0xadc02182df202263
r12 0xffff800020d59990
r13 0
r14 0xffffffff82bfe990 cpu_info_full_primary+0x2990
r15 0x1
rip 0xffffffff812a8e1c db_enter+0x1c
cs 0x8
rflags 0x246
rsp 0xffff8000211b95e0
ss 0x10
db_enter+0x1c: addq $0x8,%rsp
ddb{1}> show proc
PROC (reaper) pid=486667 stat=onproc
flags process=14000<NOZOMBIE,SYSTEM> proc=200<SYSTEM>
pri=4, usrpri=57, nice=20
forw=0xffffffffffffffff, list=0xffff8000211acae8,0xffff8000211ac2d0
process=0xffff8000ffffe180 user=0xffff8000211b4000, vmspace=0xffffffff82d93b78
estcpu=7, cpticks=6, pctcpu=1.50
user=0, sys=2, intr=0
ddb{1}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
63519 456466 61103 32767 3 0x90 nanoslp syz-executor.6
63519 214097 61103 32767 7 0x4000010 syz-executor.6
63519 140022 61103 32767 3 0x4000010 inode syz-executor.6
63519 283265 61103 32767 3 0x4000090 fsleep syz-executor.6
73366 455162 84900 32767 2 0x10 syz-executor.5
73366 208684 84900 32767 3 0x4000090 fsleep syz-executor.5
94109 510237 7092 32767 2 0x10 syz-executor.7
94109 34673 7092 32767 3 0x4000090 ttyout syz-executor.7
94109 448849 7092 32767 3 0x4000090 fsleep syz-executor.7
5070 280635 19496 32767 2 0x10 syz-executor.4
5070 172091 19496 32767 2 0x4000090 syz-executor.4
5070 472956 19496 32767 3 0x4000090 fsleep syz-executor.4
4877 326145 34185 32767 3 0x3010 suspend syz-executor.1
4877 508633 34185 32767 2 0x4081090 syz-executor.1
4877 493091 34185 32767 2 0x4081090 syz-executor.1
70153 272040 11686 32767 3 0x10 biowait syz-executor.3
11686 233162 38319 0 3 0x82 wait syz-executor.3
61103 157704 71552 32767 3 0x90 nanoslp syz-executor.6
71552 465543 38319 0 3 0x82 wait syz-executor.6
7092 290383 22781 32767 3 0x90 nanoslp syz-executor.7
22781 122038 38319 0 3 0x82 wait syz-executor.7
84900 270469 90628 32767 3 0x90 nanoslp syz-executor.5
90628 46380 38319 0 3 0x82 wait syz-executor.5
19496 115167 52133 32767 3 0x90 nanoslp syz-executor.4
52133 238865 38319 0 3 0x82 wait syz-executor.4
62730 20528 81514 32767 3 0x10 biowait syz-executor.2
81514 35373 38319 0 3 0x82 wait syz-executor.2
34185 414793 78112 32767 3 0x90 nanoslp syz-executor.1
78112 43399 38319 0 3 0x82 wait syz-executor.1
56685 153126 7807 32767 3 0x90 nanoslp syz-executor.0
7807 206647 38319 0 3 0x82 wait syz-executor.0
76623 463253 0 0 3 0x14200 bored sosplice
38319 227991 91371 0 3 0x82 thrsleep syz-fuzzer
38319 217561 91371 0 3 0x4000082 thrsleep syz-fuzzer
38319 449811 91371 0 3 0x4000082 thrsleep syz-fuzzer
38319 109712 91371 0 3 0x4000082 wait syz-fuzzer
38319 97633 91371 0 3 0x4000082 wait syz-fuzzer
38319 147625 91371 0 3 0x4000082 thrsleep syz-fuzzer
38319 23112 91371 0 3 0x4000082 wait syz-fuzzer
38319 503784 91371 0 3 0x4000082 thrsleep syz-fuzzer
38319 395730 91371 0 3 0x4000082 wait syz-fuzzer
38319 409006 91371 0 3 0x4000082 wait syz-fuzzer
38319 211177 91371 0 3 0x4000082 kqread syz-fuzzer
38319 473607 91371 0 3 0x4000082 thrsleep syz-fuzzer
38319 409149 91371 0 3 0x4000082 thrsleep syz-fuzzer
38319 27984 91371 0 3 0x4000082 wait syz-fuzzer
38319 469643 91371 0 3 0x4000082 wait syz-fuzzer
38319 353895 91371 0 3 0x4000082 wait syz-fuzzer
38319 376535 91371 0 3 0x4000082 thrsleep syz-fuzzer
91371 346076 10076 0 3 0x10008a sigsusp ksh
10076 476812 58269 0 3 0x9a kqread sshd
22379 476299 1 0 3 0x100083 ttyin getty
58269 13443 1 0 3 0x88 kqread sshd
34747 179362 57880 73 3 0x1100090 kqread syslogd
57880 412087 1 0 3 0x100082 netio syslogd
36992 182729 1 0 3 0x100080 kqread resolvd
78426 487855 5287 77 3 0x100092 kqread dhcpleased
8516 117080 5287 77 3 0x100092 kqread dhcpleased
5287 394307 1 0 3 0x80 kqread dhcpleased
97459 281943 0 0 3 0x14200 bored smr
21005 197873 0 0 2 0x14200 zerothread
722 518688 0 0 3 0x14200 aiodoned aiodoned
73153 23816 0 0 3 0x14200 syncer update
18342 220599 0 0 3 0x14200 cleaner cleaner
*69774 486667 0 0 7 0x14200 reaper
72095 284309 0 0 3 0x14200 pgdaemon pagedaemon
15061 359688 0 0 3 0x14200 bored viomb
72157 245162 0 0 3 0x40014200 acpi0 acpi0
91480 456286 0 0 3 0x40014200 idle1
65269 315569 0 0 3 0x14200 bored softnet3
30529 387913 0 0 3 0x14200 bored softnet2
42222 478551 0 0 3 0x14200 bored softnet1
10111 94103 0 0 3 0x14200 bored softnet0
27084 331754 0 0 3 0x14200 bored systqmp
34676 110177 0 0 3 0x14200 bored systq
44050 478869 0 0 3 0x40014200 bored softclock
67531 42000 0 0 3 0x40014200 idle0
1 103143 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{1}> show all locks
CPU 1:
exclusive sched_lock &sched_lock r = 1 (0xffffffff82dfaed8)
#0 witness_lock+0x44d
#1 wakeup_n+0x3b
#2 sched_idle+0x242 sys/kern/kern_sched.c:163
#3 proc_trampoline+0x1c
Process 63519 (syz-executor.6) thread 0xffff800021236020 (214097)
exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82d5a8a8)
#0 witness_lock+0x44d
#1 __mp_acquire_count+0x48 sys/kern/kern_lock.c:227
#2 mi_switch+0x3c3 sys/kern/sched_bsd.c:405
#3 sleep_finish+0x184 sys/kern/kern_synch.c:417
#4 tsleep+0x12b sys/kern/kern_synch.c:155
#5 biowait+0x91 sys/kern/vfs_bio.c:1278
#6 bwrite+0x21f sys/kern/vfs_bio.c:769
#7 ffs_update+0x281 sys/ufs/ffs/ffs_inode.c:113
#8 ufs_mkdir+0x672 sys/ufs/ufs/ufs_vnops.c:1219
#9 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388
#10 domkdirat+0x125 sys/kern/vfs_syscalls.c:3074
#11 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline]
#11 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632
#12 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd80654a6808)
#0 witness_lock+0x44d
#1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465
#3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:564
#5 vget+0x200 sys/kern/vfs_subr.c:676
#6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119
#7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1324
#8 ffs_inode_alloc+0x1c2 sys/ufs/ffs/ffs_alloc.c:394
#9 ufs_mkdir+0xf8 sys/ufs/ufs/ufs_vnops.c:1149
#10 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388
#11 domkdirat+0x125 sys/kern/vfs_syscalls.c:3074
#12 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline]
#12 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632
#13 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd80654a63c8)
#0 witness_lock+0x44d
#1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465
#3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:564
#5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418
#6 namei+0x55a sys/kern/vfs_lookup.c:250
#7 domkdirat+0x79 sys/kern/vfs_syscalls.c:3059
#8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline]
#8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632
#9 Xsyscall+0x128
Process 70153 (syz-executor.3) thread 0xffff8000212d98b8 (272040)
exclusive rrwlock inode r = 0 (0xfffffd8068554928)
#0 witness_lock+0x44d
#1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465
#3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:564
#5 vget+0x200 sys/kern/vfs_subr.c:676
#6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119
#7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1324
#8 ufs_lookup+0x13ba sys/ufs/ufs/ufs_lookup.c:487
#9 VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85
#10 vfs_lookup+0x6f5 sys/kern/vfs_lookup.c:566
#11 namei+0x55a sys/kern/vfs_lookup.c:250
#12 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1848
#13 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline]
#13 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632
#14 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd8078974d68)
#0 witness_lock+0x44d
#1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465
#3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:564
#5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418
#6 namei+0x55a sys/kern/vfs_lookup.c:250
#7 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1848
#8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline]
#8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632
#9 Xsyscall+0x128
Process 62730 (syz-executor.2) thread 0xffff800021284b08 (20528)
exclusive rrwlock inode r = 0 (0xfffffd80654a6c48)
#0 witness_lock+0x44d
#1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465
#3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518
#4 ufs_ihashins+0x46 sys/ufs/ufs/ufs_ihash.c:140
#5 ffs_vget+0x141 sys/ufs/ffs/ffs_vfsops.c:1353
#6 ffs_inode_alloc+0x1c2 sys/ufs/ffs/ffs_alloc.c:394
#7 ufs_mkdir+0xf8 sys/ufs/ufs/ufs_vnops.c:1149
#8 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388
#9 domkdirat+0x125 sys/kern/vfs_syscalls.c:3074
#10 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline]
#10 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632
#11 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd80791216f8)
#0 witness_lock+0x44d
#1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465
#3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:564
#5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418
#6 namei+0x55a sys/kern/vfs_lookup.c:250
#7 domkdirat+0x79 sys/kern/vfs_syscalls.c:3059
#8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline]
#8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632
#9 Xsyscall+0x128
ddb{1}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10211 6412K 6419K 78643K 11471 0
pcb 13 12K 14K 78643K 17 0
rtable 252 7K 7K 78643K 5168 0
ifaddr 73 25K 25K 78643K 417 0
sysctl 3 1K 5K 78643K 22 0
counters 60 35K 35K 78643K 172 0
ioctlops 0 0K 2K 78643K 1095 0
iov 0 0K 44K 78643K 10231 0
mount 1 1K 1K 78643K 1 0
log 0 0K 0K 78643K 4 0
vnodes 1279 80K 80K 78643K 13303 0
UFS quota 1 32K 32K 78643K 1 0
UFS mount 5 36K 36K 78643K 5 0
shm 2 1K 9K 78643K 994 0
VM map 2 1K 1K 78643K 2 0
sem 12 0K 0K 78643K 23661 0
dirhash 12 2K 2K 78643K 12 0
ACPI 1697 195K 286K 78643K 12548 0
file desc 23 85K 121K 78643K 61173 0
sigio 0 0K 0K 78643K 1010 0
proc 56 78K 115K 78643K 6212 0
subproc 104 6K 6K 78643K 832 0
NFS srvsock 1 0K 0K 78643K 1 0
NFS daemon 1 16K 16K 78643K 1 0
ip_moptions 0 0K 0K 78643K 5976 0
in_multi 99 6K 7K 78643K 1694 0
ether_multi 1 0K 0K 78643K 243 0
mrt 1 0K 0K 78643K 1 0
ISOFS mount 1 32K 32K 78643K 1 0
MSDOSFS mount 1 16K 16K 78643K 1 0
ttys 259 1155K 1155K 78643K 259 0
exec 0 0K 1K 78643K 10297 0
tdb 3 0K 0K 78643K 3 0
pagedep 1 8K 8K 78643K 1 0
inodedep 1 32K 32K 78643K 1 0
newblk 1 0K 0K 78643K 1 0
VM swap 8 62K 64K 78643K 10 0
UVM amap 582 99K 996K 78643K 612504 0
UVM aobj 131 4K 4K 78643K 139 0
memdesc 1 4K 4K 78643K 1 0
crypto data 1 1K 1K 78643K 1 0
ip6_options 0 0K 0K 78643K 2039 0
NDP 11 0K 2K 78643K 195 0
temp 124 5866K 5994K 78643K 148963 0
kqueue 12 18K 28K 78643K 4929 0
SYN cache 2 16K 16K 78643K 2 0
ddb{1}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 22 0 0 1 0 1 1 0 8 0
rtpcb 120 7895 0 7892 93 92 1 5 0 8 0
rtentry 112 809 0 690 4 0 4 4 0 8 0
unpcb 144 52966 0 52951 503 497 6 11 0 8 5
syncache 296 659 0 659 107 107 0 1 0 8 0
sackhl 24 8 0 8 6 6 0 1 0 8 0
tcpqe 32 308 0 308 73 73 0 1 0 8 0
tcpcb 776 27087 0 27043 589 582 7 15 0 8 2
arp 120 147 0 129 1 0 1 1 0 8 0
ipq 40 167 0 167 29 29 0 1 0 8 0
ipqe 40 791 0 791 29 29 0 1 0 8 0
inpcb 368 52725 0 52680 767 759 8 20 0 8 3
ip6q 72 67 0 67 8 8 0 1 0 8 0
ip6af 40 191 0 191 8 8 0 1 0 8 0
nd6 136 257 0 224 2 0 2 2 0 8 0
kcovpl 48 64 0 56 1 0 1 1 0 8 0
art_heap8 4096 1 0 0 1 0 1 1 0 8 0
art_heap4 256 3161 0 2673 38 7 31 31 0 8 0
art_table 32 3162 0 2673 4 0 4 4 0 8 0
art_node 16 808 0 699 1 0 1 1 0 8 0
semupl 112 3 0 3 1 1 0 1 0 8 0
semapl 112 23659 0 23649 1 0 1 1 0 8 0
shmpl 112 136 0 8 4 0 4 4 0 8 0
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino2pl 256 83806 0 82226 99 0 99 99 0 8 0
ffsino 272 83806 0 82226 106 0 106 106 0 8 0
nchpl 144 165837 0 164192 63 0 63 63 0 8 0
uvmvnodes 80 6170 0 0 126 0 126 126 0 8 0
vnodes 216 6170 0 0 343 0 343 343 0 8 0
namei 1024 615307 0 615303 18 17 1 2 0 8 0
percpumem 16 99 0 56 1 0 1 1 0 8 0
kstatmem 264 134 0 112 2 0 2 2 0 8 0
scxspl 216 513240 0 513238 172 171 1 8 0 8 0
plimitpl 152 15352 0 15329 31 29 2 2 0 8 0
sigapl 424 61344 0 61291 8 1 7 7 0 8 0
futexpl 64 585720 0 585714 22 21 1 1 0 8 0
knotepl 120 2905 0 0 23 5 18 18 0 8 0
kqueuepl 216 14800 0 14791 255 250 5 8 0 8 4
pipepl 320 15316 0 15288 408 400 8 17 0 8 5
fdescpl 496 61326 0 61292 7 2 5 6 0 8 0
filepl 152 465474 0 465169 694 679 15 26 0 8 2
lockfpl 104 8417 0 8415 7 6 1 2 0 8 0
lockfspl 48 2165 0 2163 1 0 1 1 0 8 0
sessionpl 144 79 0 63 1 0 1 1 0 8 0
pgrppl 48 10264 0 10248 1 0 1 1 0 8 0
ucredpl 104 72234 0 72216 1 0 1 1 0 8 0
zombiepl 144 61292 0 61291 1 0 1 1 0 8 0
processpl 1072 61344 0 61291 5 1 4 5 0 8 0
procpl 696 176320 0 176241 82 73 9 10 0 8 1
sosppl 168 792 0 792 77 76 1 1 0 8 1
sockpl 488 116558 0 116481 1985 1968 17 39 0 8 7
mcl64k 65536 90 0 0 7 4 3 4 0 8 0
mcl16k 16384 169 0 0 15 11 4 10 0 8 0
mcl12k 12288 81 0 0 2 0 2 2 0 8 0
mcl9k 9216 39 0 0 2 0 2 2 0 8 0
mcl8k 8192 90 0 0 4 1 3 3 0 8 0
mcl4k 4096 197 0 0 17 14 3 9 0 8 0
mcl2k2 2112 17 0 0 2 0 2 2 0 8 0
mcl2k 2048 975 0 0 53 42 11 53 0 8 0
mtagpl 96 7 0 0 1 0 1 1 0 8 0
mbufpl 256 9363 0 0 409 0 409 409 0 8 0
bufpl 288 103739 0 97427 452 0 452 452 0 8 0
anonpl 24 6161540 0 6147700 491 380 111 133 0 186 0
amapchunkpl 152 4249658 0 4248649 32969 32927 42 4431 0 158 0
amappl16 200 127851 0 127477 767 745 22 46 0 8 0
amappl15 192 39 0 39 10 10 0 1 0 8 0
amappl14 184 332 0 315 2 1 1 2 0 8 0
amappl13 176 91 0 90 2 1 1 1 0 8 0
amappl12 168 62827 0 62786 2 0 2 2 0 8 0
amappl11 160 84 0 73 1 0 1 1 0 8 0
amappl10 152 92 0 79 1 0 1 1 0 8 0
amappl9 144 652 0 652 78 77 1 2 0 8 1
amappl8 136 2839 0 2521 11 0 11 11 0 8 0
amappl7 128 408 0 386 1 0 1 1 0 8 0
amappl6 120 1316 0 1286 2 1 1 2 0 8 0
amappl5 112 1575 0 1569 1 0 1 1 0 8 0
amappl4 104 2884 0 2837 2 0 2 2 0 8 0
amappl3 96 377251 0 377139 54 51 3 4 0 8 0
amappl2 88 65025 0 64945 4 2 2 3 0 8 0
amappl1 80 222991 0 222464 22 10 12 22 0 8 0
amappl 88 608801 0 608503 8 0 8 8 0 92 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 138 0 8 3 0 3 3 0 8 0
uaddrrnd 24 61326 0 61291 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 61326 0 61291 1 0 1 1 0 8 0
vmmpekpl 168 483994 0 483922 5 0 5 5 0 8 0
vmmpepl 168 3568710 0 3565879 695 554 141 158 0 357 0
vmsppl 464 61325 0 61291 7 2 5 6 0 8 0
rwobjpl 56 868763 0 860755 142 26 116 116 0 8 0
pdppl 4096 122660 0 122582 1587 1505 82 94 0 8 4
pvpl 32 17841250 0 17820824 1442 1243 199 341 0 265 0
pmappl 248 61325 0 61291 4 1 3 3 0 8 0
extentpl 40 56 0 38 1 0 1 1 0 8 0
phpool 112 3579 0 2362 35 0 35 35 0 8 0
ddb{1}> machine ddbcpu 0
Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp
x86_ipi_db(ffffffff82bfdff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
__sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xf sys/dev/kcov.c:144
intr_handler(ffff80002e4732f0,ffff80000006ba00) at intr_handler+0x62 sys/arch/amd64/amd64/intr.c:532
Xintr_ioapic_edge21_untramp() at Xintr_ioapic_edge21_untramp+0x18f
Xspllower() at Xspllower+0x1d
cnputc(70) at cnputc+0x4f sys/dev/cons.c:218
db_putchar(70) at db_putchar+0x3fc sys/ddb/db_output.c:155
kprintf() at kprintf+0x6bc sys/kern/subr_prf.c:724
db_printf(ffffffff82810f4f) at db_printf+0x89 sys/kern/subr_prf.c:498
panic(ffffffff82784bba) at panic+0xdb sys/kern/subr_prf.c:216
vop_generic_badop(ffff80002e473718) at vop_generic_badop+0x1f sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd806d365488,fffffd80744f5250) at VOP_STRATEGY+0x9f sys/kern/vfs_vops.c:628
end trace frame: 0xffff80002e4737c0, count: 0
ddb{0}> trace
x86_ipi_db(ffffffff82bfdff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
__sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xf sys/dev/kcov.c:144
intr_handler(ffff80002e4732f0,ffff80000006ba00) at intr_handler+0x62 sys/arch/amd64/amd64/intr.c:532
Xintr_ioapic_edge21_untramp() at Xintr_ioapic_edge21_untramp+0x18f
Xspllower() at Xspllower+0x1d
cnputc(70) at cnputc+0x4f sys/dev/cons.c:218
db_putchar(70) at db_putchar+0x3fc sys/ddb/db_output.c:155
kprintf() at kprintf+0x6bc sys/kern/subr_prf.c:724
db_printf(ffffffff82810f4f) at db_printf+0x89 sys/kern/subr_prf.c:498
panic(ffffffff82784bba) at panic+0xdb sys/kern/subr_prf.c:216
vop_generic_badop(ffff80002e473718) at vop_generic_badop+0x1f sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd806d365488,fffffd80744f5250) at VOP_STRATEGY+0x9f sys/kern/vfs_vops.c:628
bwrite(fffffd80744f5250) at bwrite+0x1f4 sys/kern/vfs_bio.c:760
VOP_BWRITE(fffffd80744f5250) at VOP_BWRITE+0x4e sys/kern/vfs_vops.c:640
ufs_mkdir(ffff80002e4739b0) at ufs_mkdir+0x6c4 sys/ufs/ufs/ufs_vnops.c:1235
VOP_MKDIR(fffffd807df18530,ffff80002e473b10,ffff80002e473b40,ffff80002e473a40) at VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388
domkdirat(ffff800021236020,ffffff9c,20000000,0) at domkdirat+0x125 sys/kern/vfs_syscalls.c:3074
syscall(ffff80002e473cc0) at syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline]
syscall(ffff80002e473cc0) at syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xccb6e30a480, count: -21
ddb{0}> machine ddbcpu 1
Stopped at db_enter+0x1c: addq $0x8,%rsp
db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8278e492) at panic+0x17b sys/kern/subr_prf.c:198
__assert(ffffffff8280fd84,ffffffff8283c21e,9de,ffffffff827c912f) at __assert+0x29 sys/kern/subr_prf.c:157
uvm_map_teardown(fffffd806bc3e020) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528
uvmspace_free(fffffd806bc3e020) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503
reaper(ffff8000211ac578) at reaper+0x19a sys/kern/kern_exit.c:449
end trace frame: 0x0, count: 9
ddb{1}> trace
db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8278e492) at panic+0x17b sys/kern/subr_prf.c:198
__assert(ffffffff8280fd84,ffffffff8283c21e,9de,ffffffff827c912f) at __assert+0x29 sys/kern/subr_prf.c:157
uvm_map_teardown(fffffd806bc3e020) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528
uvmspace_free(fffffd806bc3e020) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503
reaper(ffff8000211ac578) at reaper+0x19a sys/kern/kern_exit.c:449
end trace frame: 0x0, count: -6