ppanic: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_map.c", line 2526 Stopped at db_enter+0x1c: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND 214097 63519 32767 0x10 0x4000000 0 syz-executor.6 *486667 69774 0 0x14000 0x200 1 reaper db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8278e492) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff8280fd84,ffffffff8283c21e,9de,ffffffff827c912f) at __assert+0x29 sys/kern/subr_prf.c:157 uvm_map_teardown(fffffd806bc3e020) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528 uvmspace_free(fffffd806bc3e020) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503 reaper(ffff8000211ac578) at reaper+0x19a sys/kern/kern_exit.c:449 end trace frame: 0x0, count: 9 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic *cpu0: vop_generic_badop cpu1: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_map.c", line 2526 ddb{1}> trace db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8278e492) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff8280fd84,ffffffff8283c21e,9de,ffffffff827c912f) at __assert+0x29 sys/kern/subr_prf.c:157 uvm_map_teardown(fffffd806bc3e020) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528 uvmspace_free(fffffd806bc3e020) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503 reaper(ffff8000211ac578) at reaper+0x19a sys/kern/kern_exit.c:449 end trace frame: 0x0, count: -6 ddb{1}> show registers rdi 0 rsi 0x1 rbp 0xffff8000211b95f0 rbx 0xffff800020d59b8f rdx 0 rcx 0 rax 0xffff8000211ac578 r8 0x101010101010101 r9 0x8080808080808080 r10 0xf834dc1294f6a77d r11 0xadc02182df202263 r12 0xffff800020d59990 r13 0 r14 0xffffffff82bfe990 cpu_info_full_primary+0x2990 r15 0x1 rip 0xffffffff812a8e1c db_enter+0x1c cs 0x8 rflags 0x246 rsp 0xffff8000211b95e0 ss 0x10 db_enter+0x1c: addq $0x8,%rsp ddb{1}> show proc PROC (reaper) pid=486667 stat=onproc flags process=14000 proc=200 pri=4, usrpri=57, nice=20 forw=0xffffffffffffffff, list=0xffff8000211acae8,0xffff8000211ac2d0 process=0xffff8000ffffe180 user=0xffff8000211b4000, vmspace=0xffffffff82d93b78 estcpu=7, cpticks=6, pctcpu=1.50 user=0, sys=2, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 63519 456466 61103 32767 3 0x90 nanoslp syz-executor.6 63519 214097 61103 32767 7 0x4000010 syz-executor.6 63519 140022 61103 32767 3 0x4000010 inode syz-executor.6 63519 283265 61103 32767 3 0x4000090 fsleep syz-executor.6 73366 455162 84900 32767 2 0x10 syz-executor.5 73366 208684 84900 32767 3 0x4000090 fsleep syz-executor.5 94109 510237 7092 32767 2 0x10 syz-executor.7 94109 34673 7092 32767 3 0x4000090 ttyout syz-executor.7 94109 448849 7092 32767 3 0x4000090 fsleep syz-executor.7 5070 280635 19496 32767 2 0x10 syz-executor.4 5070 172091 19496 32767 2 0x4000090 syz-executor.4 5070 472956 19496 32767 3 0x4000090 fsleep syz-executor.4 4877 326145 34185 32767 3 0x3010 suspend syz-executor.1 4877 508633 34185 32767 2 0x4081090 syz-executor.1 4877 493091 34185 32767 2 0x4081090 syz-executor.1 70153 272040 11686 32767 3 0x10 biowait syz-executor.3 11686 233162 38319 0 3 0x82 wait syz-executor.3 61103 157704 71552 32767 3 0x90 nanoslp syz-executor.6 71552 465543 38319 0 3 0x82 wait syz-executor.6 7092 290383 22781 32767 3 0x90 nanoslp syz-executor.7 22781 122038 38319 0 3 0x82 wait syz-executor.7 84900 270469 90628 32767 3 0x90 nanoslp syz-executor.5 90628 46380 38319 0 3 0x82 wait syz-executor.5 19496 115167 52133 32767 3 0x90 nanoslp syz-executor.4 52133 238865 38319 0 3 0x82 wait syz-executor.4 62730 20528 81514 32767 3 0x10 biowait syz-executor.2 81514 35373 38319 0 3 0x82 wait syz-executor.2 34185 414793 78112 32767 3 0x90 nanoslp syz-executor.1 78112 43399 38319 0 3 0x82 wait syz-executor.1 56685 153126 7807 32767 3 0x90 nanoslp syz-executor.0 7807 206647 38319 0 3 0x82 wait syz-executor.0 76623 463253 0 0 3 0x14200 bored sosplice 38319 227991 91371 0 3 0x82 thrsleep syz-fuzzer 38319 217561 91371 0 3 0x4000082 thrsleep syz-fuzzer 38319 449811 91371 0 3 0x4000082 thrsleep syz-fuzzer 38319 109712 91371 0 3 0x4000082 wait syz-fuzzer 38319 97633 91371 0 3 0x4000082 wait syz-fuzzer 38319 147625 91371 0 3 0x4000082 thrsleep syz-fuzzer 38319 23112 91371 0 3 0x4000082 wait syz-fuzzer 38319 503784 91371 0 3 0x4000082 thrsleep syz-fuzzer 38319 395730 91371 0 3 0x4000082 wait syz-fuzzer 38319 409006 91371 0 3 0x4000082 wait syz-fuzzer 38319 211177 91371 0 3 0x4000082 kqread syz-fuzzer 38319 473607 91371 0 3 0x4000082 thrsleep syz-fuzzer 38319 409149 91371 0 3 0x4000082 thrsleep syz-fuzzer 38319 27984 91371 0 3 0x4000082 wait syz-fuzzer 38319 469643 91371 0 3 0x4000082 wait syz-fuzzer 38319 353895 91371 0 3 0x4000082 wait syz-fuzzer 38319 376535 91371 0 3 0x4000082 thrsleep syz-fuzzer 91371 346076 10076 0 3 0x10008a sigsusp ksh 10076 476812 58269 0 3 0x9a kqread sshd 22379 476299 1 0 3 0x100083 ttyin getty 58269 13443 1 0 3 0x88 kqread sshd 34747 179362 57880 73 3 0x1100090 kqread syslogd 57880 412087 1 0 3 0x100082 netio syslogd 36992 182729 1 0 3 0x100080 kqread resolvd 78426 487855 5287 77 3 0x100092 kqread dhcpleased 8516 117080 5287 77 3 0x100092 kqread dhcpleased 5287 394307 1 0 3 0x80 kqread dhcpleased 97459 281943 0 0 3 0x14200 bored smr 21005 197873 0 0 2 0x14200 zerothread 722 518688 0 0 3 0x14200 aiodoned aiodoned 73153 23816 0 0 3 0x14200 syncer update 18342 220599 0 0 3 0x14200 cleaner cleaner *69774 486667 0 0 7 0x14200 reaper 72095 284309 0 0 3 0x14200 pgdaemon pagedaemon 15061 359688 0 0 3 0x14200 bored viomb 72157 245162 0 0 3 0x40014200 acpi0 acpi0 91480 456286 0 0 3 0x40014200 idle1 65269 315569 0 0 3 0x14200 bored softnet3 30529 387913 0 0 3 0x14200 bored softnet2 42222 478551 0 0 3 0x14200 bored softnet1 10111 94103 0 0 3 0x14200 bored softnet0 27084 331754 0 0 3 0x14200 bored systqmp 34676 110177 0 0 3 0x14200 bored systq 44050 478869 0 0 3 0x40014200 bored softclock 67531 42000 0 0 3 0x40014200 idle0 1 103143 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks CPU 1: exclusive sched_lock &sched_lock r = 1 (0xffffffff82dfaed8) #0 witness_lock+0x44d #1 wakeup_n+0x3b #2 sched_idle+0x242 sys/kern/kern_sched.c:163 #3 proc_trampoline+0x1c Process 63519 (syz-executor.6) thread 0xffff800021236020 (214097) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82d5a8a8) #0 witness_lock+0x44d #1 __mp_acquire_count+0x48 sys/kern/kern_lock.c:227 #2 mi_switch+0x3c3 sys/kern/sched_bsd.c:405 #3 sleep_finish+0x184 sys/kern/kern_synch.c:417 #4 tsleep+0x12b sys/kern/kern_synch.c:155 #5 biowait+0x91 sys/kern/vfs_bio.c:1278 #6 bwrite+0x21f sys/kern/vfs_bio.c:769 #7 ffs_update+0x281 sys/ufs/ffs/ffs_inode.c:113 #8 ufs_mkdir+0x672 sys/ufs/ufs/ufs_vnops.c:1219 #9 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 #10 domkdirat+0x125 sys/kern/vfs_syscalls.c:3074 #11 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #11 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632 #12 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd80654a6808) #0 witness_lock+0x44d #1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310 #2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vget+0x200 sys/kern/vfs_subr.c:676 #6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119 #7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1324 #8 ffs_inode_alloc+0x1c2 sys/ufs/ffs/ffs_alloc.c:394 #9 ufs_mkdir+0xf8 sys/ufs/ufs/ufs_vnops.c:1149 #10 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 #11 domkdirat+0x125 sys/kern/vfs_syscalls.c:3074 #12 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #12 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632 #13 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd80654a63c8) #0 witness_lock+0x44d #1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310 #2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418 #6 namei+0x55a sys/kern/vfs_lookup.c:250 #7 domkdirat+0x79 sys/kern/vfs_syscalls.c:3059 #8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632 #9 Xsyscall+0x128 Process 70153 (syz-executor.3) thread 0xffff8000212d98b8 (272040) exclusive rrwlock inode r = 0 (0xfffffd8068554928) #0 witness_lock+0x44d #1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310 #2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vget+0x200 sys/kern/vfs_subr.c:676 #6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119 #7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1324 #8 ufs_lookup+0x13ba sys/ufs/ufs/ufs_lookup.c:487 #9 VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 #10 vfs_lookup+0x6f5 sys/kern/vfs_lookup.c:566 #11 namei+0x55a sys/kern/vfs_lookup.c:250 #12 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1848 #13 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #13 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632 #14 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd8078974d68) #0 witness_lock+0x44d #1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310 #2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418 #6 namei+0x55a sys/kern/vfs_lookup.c:250 #7 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1848 #8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632 #9 Xsyscall+0x128 Process 62730 (syz-executor.2) thread 0xffff800021284b08 (20528) exclusive rrwlock inode r = 0 (0xfffffd80654a6c48) #0 witness_lock+0x44d #1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310 #2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 ufs_ihashins+0x46 sys/ufs/ufs/ufs_ihash.c:140 #5 ffs_vget+0x141 sys/ufs/ffs/ffs_vfsops.c:1353 #6 ffs_inode_alloc+0x1c2 sys/ufs/ffs/ffs_alloc.c:394 #7 ufs_mkdir+0xf8 sys/ufs/ufs/ufs_vnops.c:1149 #8 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 #9 domkdirat+0x125 sys/kern/vfs_syscalls.c:3074 #10 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #10 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632 #11 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd80791216f8) #0 witness_lock+0x44d #1 rw_enter+0x3e5 sys/kern/kern_rwlock.c:310 #2 rrw_enter+0x8f sys/kern/kern_rwlock.c:465 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418 #6 namei+0x55a sys/kern/vfs_lookup.c:250 #7 domkdirat+0x79 sys/kern/vfs_syscalls.c:3059 #8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632 #9 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10211 6412K 6419K 78643K 11471 0 pcb 13 12K 14K 78643K 17 0 rtable 252 7K 7K 78643K 5168 0 ifaddr 73 25K 25K 78643K 417 0 sysctl 3 1K 5K 78643K 22 0 counters 60 35K 35K 78643K 172 0 ioctlops 0 0K 2K 78643K 1095 0 iov 0 0K 44K 78643K 10231 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1279 80K 80K 78643K 13303 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 994 0 VM map 2 1K 1K 78643K 2 0 sem 12 0K 0K 78643K 23661 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 23 85K 121K 78643K 61173 0 sigio 0 0K 0K 78643K 1010 0 proc 56 78K 115K 78643K 6212 0 subproc 104 6K 6K 78643K 832 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 5976 0 in_multi 99 6K 7K 78643K 1694 0 ether_multi 1 0K 0K 78643K 243 0 mrt 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 259 1155K 1155K 78643K 259 0 exec 0 0K 1K 78643K 10297 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 582 99K 996K 78643K 612504 0 UVM aobj 131 4K 4K 78643K 139 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 2039 0 NDP 11 0K 2K 78643K 195 0 temp 124 5866K 5994K 78643K 148963 0 kqueue 12 18K 28K 78643K 4929 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 7895 0 7892 93 92 1 5 0 8 0 rtentry 112 809 0 690 4 0 4 4 0 8 0 unpcb 144 52966 0 52951 503 497 6 11 0 8 5 syncache 296 659 0 659 107 107 0 1 0 8 0 sackhl 24 8 0 8 6 6 0 1 0 8 0 tcpqe 32 308 0 308 73 73 0 1 0 8 0 tcpcb 776 27087 0 27043 589 582 7 15 0 8 2 arp 120 147 0 129 1 0 1 1 0 8 0 ipq 40 167 0 167 29 29 0 1 0 8 0 ipqe 40 791 0 791 29 29 0 1 0 8 0 inpcb 368 52725 0 52680 767 759 8 20 0 8 3 ip6q 72 67 0 67 8 8 0 1 0 8 0 ip6af 40 191 0 191 8 8 0 1 0 8 0 nd6 136 257 0 224 2 0 2 2 0 8 0 kcovpl 48 64 0 56 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 3161 0 2673 38 7 31 31 0 8 0 art_table 32 3162 0 2673 4 0 4 4 0 8 0 art_node 16 808 0 699 1 0 1 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 23659 0 23649 1 0 1 1 0 8 0 shmpl 112 136 0 8 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 83806 0 82226 99 0 99 99 0 8 0 ffsino 272 83806 0 82226 106 0 106 106 0 8 0 nchpl 144 165837 0 164192 63 0 63 63 0 8 0 uvmvnodes 80 6170 0 0 126 0 126 126 0 8 0 vnodes 216 6170 0 0 343 0 343 343 0 8 0 namei 1024 615307 0 615303 18 17 1 2 0 8 0 percpumem 16 99 0 56 1 0 1 1 0 8 0 kstatmem 264 134 0 112 2 0 2 2 0 8 0 scxspl 216 513240 0 513238 172 171 1 8 0 8 0 plimitpl 152 15352 0 15329 31 29 2 2 0 8 0 sigapl 424 61344 0 61291 8 1 7 7 0 8 0 futexpl 64 585720 0 585714 22 21 1 1 0 8 0 knotepl 120 2905 0 0 23 5 18 18 0 8 0 kqueuepl 216 14800 0 14791 255 250 5 8 0 8 4 pipepl 320 15316 0 15288 408 400 8 17 0 8 5 fdescpl 496 61326 0 61292 7 2 5 6 0 8 0 filepl 152 465474 0 465169 694 679 15 26 0 8 2 lockfpl 104 8417 0 8415 7 6 1 2 0 8 0 lockfspl 48 2165 0 2163 1 0 1 1 0 8 0 sessionpl 144 79 0 63 1 0 1 1 0 8 0 pgrppl 48 10264 0 10248 1 0 1 1 0 8 0 ucredpl 104 72234 0 72216 1 0 1 1 0 8 0 zombiepl 144 61292 0 61291 1 0 1 1 0 8 0 processpl 1072 61344 0 61291 5 1 4 5 0 8 0 procpl 696 176320 0 176241 82 73 9 10 0 8 1 sosppl 168 792 0 792 77 76 1 1 0 8 1 sockpl 488 116558 0 116481 1985 1968 17 39 0 8 7 mcl64k 65536 90 0 0 7 4 3 4 0 8 0 mcl16k 16384 169 0 0 15 11 4 10 0 8 0 mcl12k 12288 81 0 0 2 0 2 2 0 8 0 mcl9k 9216 39 0 0 2 0 2 2 0 8 0 mcl8k 8192 90 0 0 4 1 3 3 0 8 0 mcl4k 4096 197 0 0 17 14 3 9 0 8 0 mcl2k2 2112 17 0 0 2 0 2 2 0 8 0 mcl2k 2048 975 0 0 53 42 11 53 0 8 0 mtagpl 96 7 0 0 1 0 1 1 0 8 0 mbufpl 256 9363 0 0 409 0 409 409 0 8 0 bufpl 288 103739 0 97427 452 0 452 452 0 8 0 anonpl 24 6161540 0 6147700 491 380 111 133 0 186 0 amapchunkpl 152 4249658 0 4248649 32969 32927 42 4431 0 158 0 amappl16 200 127851 0 127477 767 745 22 46 0 8 0 amappl15 192 39 0 39 10 10 0 1 0 8 0 amappl14 184 332 0 315 2 1 1 2 0 8 0 amappl13 176 91 0 90 2 1 1 1 0 8 0 amappl12 168 62827 0 62786 2 0 2 2 0 8 0 amappl11 160 84 0 73 1 0 1 1 0 8 0 amappl10 152 92 0 79 1 0 1 1 0 8 0 amappl9 144 652 0 652 78 77 1 2 0 8 1 amappl8 136 2839 0 2521 11 0 11 11 0 8 0 amappl7 128 408 0 386 1 0 1 1 0 8 0 amappl6 120 1316 0 1286 2 1 1 2 0 8 0 amappl5 112 1575 0 1569 1 0 1 1 0 8 0 amappl4 104 2884 0 2837 2 0 2 2 0 8 0 amappl3 96 377251 0 377139 54 51 3 4 0 8 0 amappl2 88 65025 0 64945 4 2 2 3 0 8 0 amappl1 80 222991 0 222464 22 10 12 22 0 8 0 amappl 88 608801 0 608503 8 0 8 8 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 138 0 8 3 0 3 3 0 8 0 uaddrrnd 24 61326 0 61291 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 61326 0 61291 1 0 1 1 0 8 0 vmmpekpl 168 483994 0 483922 5 0 5 5 0 8 0 vmmpepl 168 3568710 0 3565879 695 554 141 158 0 357 0 vmsppl 464 61325 0 61291 7 2 5 6 0 8 0 rwobjpl 56 868763 0 860755 142 26 116 116 0 8 0 pdppl 4096 122660 0 122582 1587 1505 82 94 0 8 4 pvpl 32 17841250 0 17820824 1442 1243 199 341 0 265 0 pmappl 248 61325 0 61291 4 1 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 3579 0 2362 35 0 35 35 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp x86_ipi_db(ffffffff82bfdff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xf sys/dev/kcov.c:144 intr_handler(ffff80002e4732f0,ffff80000006ba00) at intr_handler+0x62 sys/arch/amd64/amd64/intr.c:532 Xintr_ioapic_edge21_untramp() at Xintr_ioapic_edge21_untramp+0x18f Xspllower() at Xspllower+0x1d cnputc(70) at cnputc+0x4f sys/dev/cons.c:218 db_putchar(70) at db_putchar+0x3fc sys/ddb/db_output.c:155 kprintf() at kprintf+0x6bc sys/kern/subr_prf.c:724 db_printf(ffffffff82810f4f) at db_printf+0x89 sys/kern/subr_prf.c:498 panic(ffffffff82784bba) at panic+0xdb sys/kern/subr_prf.c:216 vop_generic_badop(ffff80002e473718) at vop_generic_badop+0x1f sys/kern/vfs_default.c:133 VOP_STRATEGY(fffffd806d365488,fffffd80744f5250) at VOP_STRATEGY+0x9f sys/kern/vfs_vops.c:628 end trace frame: 0xffff80002e4737c0, count: 0 ddb{0}> trace x86_ipi_db(ffffffff82bfdff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xf sys/dev/kcov.c:144 intr_handler(ffff80002e4732f0,ffff80000006ba00) at intr_handler+0x62 sys/arch/amd64/amd64/intr.c:532 Xintr_ioapic_edge21_untramp() at Xintr_ioapic_edge21_untramp+0x18f Xspllower() at Xspllower+0x1d cnputc(70) at cnputc+0x4f sys/dev/cons.c:218 db_putchar(70) at db_putchar+0x3fc sys/ddb/db_output.c:155 kprintf() at kprintf+0x6bc sys/kern/subr_prf.c:724 db_printf(ffffffff82810f4f) at db_printf+0x89 sys/kern/subr_prf.c:498 panic(ffffffff82784bba) at panic+0xdb sys/kern/subr_prf.c:216 vop_generic_badop(ffff80002e473718) at vop_generic_badop+0x1f sys/kern/vfs_default.c:133 VOP_STRATEGY(fffffd806d365488,fffffd80744f5250) at VOP_STRATEGY+0x9f sys/kern/vfs_vops.c:628 bwrite(fffffd80744f5250) at bwrite+0x1f4 sys/kern/vfs_bio.c:760 VOP_BWRITE(fffffd80744f5250) at VOP_BWRITE+0x4e sys/kern/vfs_vops.c:640 ufs_mkdir(ffff80002e4739b0) at ufs_mkdir+0x6c4 sys/ufs/ufs/ufs_vnops.c:1235 VOP_MKDIR(fffffd807df18530,ffff80002e473b10,ffff80002e473b40,ffff80002e473a40) at VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 domkdirat(ffff800021236020,ffffff9c,20000000,0) at domkdirat+0x125 sys/kern/vfs_syscalls.c:3074 syscall(ffff80002e473cc0) at syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] syscall(ffff80002e473cc0) at syscall+0x5e2 sys/arch/amd64/amd64/trap.c:632 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xccb6e30a480, count: -21 ddb{0}> machine ddbcpu 1 Stopped at db_enter+0x1c: addq $0x8,%rsp db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8278e492) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff8280fd84,ffffffff8283c21e,9de,ffffffff827c912f) at __assert+0x29 sys/kern/subr_prf.c:157 uvm_map_teardown(fffffd806bc3e020) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528 uvmspace_free(fffffd806bc3e020) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503 reaper(ffff8000211ac578) at reaper+0x19a sys/kern/kern_exit.c:449 end trace frame: 0x0, count: 9 ddb{1}> trace db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8278e492) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff8280fd84,ffffffff8283c21e,9de,ffffffff827c912f) at __assert+0x29 sys/kern/subr_prf.c:157 uvm_map_teardown(fffffd806bc3e020) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528 uvmspace_free(fffffd806bc3e020) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503 reaper(ffff8000211ac578) at reaper+0x19a sys/kern/kern_exit.c:449 end trace frame: 0x0, count: -6