ppanic: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_map.c", line 2526 Stopped at db_enter+0x1c: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND 322375 30423 32767 0x10 0 0 syz-executor.4 * 61795 96354 0 0x14000 0x200 1 reaper db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8279fd90) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff8281fcb3,ffffffff8284a55d,9de,ffffffff827d8a93) at __assert+0x29 sys/kern/subr_prf.c:157 uvm_map_teardown(fffffd80687f73c8) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528 uvmspace_free(fffffd80687f73c8) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503 reaper(ffff8000211a3a98) at reaper+0x19a sys/kern/kern_exit.c:458 end trace frame: 0x0, count: 9 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic *cpu0: vop_generic_badop cpu1: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_map.c", line 2526 ddb{1}> trace db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8279fd90) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff8281fcb3,ffffffff8284a55d,9de,ffffffff827d8a93) at __assert+0x29 sys/kern/subr_prf.c:157 uvm_map_teardown(fffffd80687f73c8) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528 uvmspace_free(fffffd80687f73c8) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503 reaper(ffff8000211a3a98) at reaper+0x19a sys/kern/kern_exit.c:458 end trace frame: 0x0, count: -6 ddb{1}> show registers rdi 0 rsi 0x1 rbp 0xffff8000211a9760 rbx 0xffff800020d49ba7 rdx 0 rcx 0xffff8000211a3a98 rax 0xffff800020d48ff0 r8 0x101010101010101 r9 0x8080808080808080 r10 0xc52b75a34d3c016c r11 0x3c309c42d969142f r12 0xffff800020d499a8 r13 0 r14 0xffffffff82bc59a8 cpu_info_full_primary+0x29a8 r15 0x1 rip 0xffffffff81bc81ec db_enter+0x1c cs 0x8 rflags 0x246 rsp 0xffff8000211a9750 ss 0x10 db_enter+0x1c: addq $0x8,%rsp ddb{1}> show proc PROC (reaper) tid=61795 pid=96354 tcnt=1 stat=onproc flags process=14000 proc=200 runpri=4, usrpri=53, slppri=4, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff8000211a3d40,0xffff8000211a3800 process=0xffff8000ffffee10 user=0xffff8000211a4000, vmspace=0xffffffff82cc3bf0 estcpu=3, cpticks=3, pctcpu=0.75, user=0, sys=1, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 26792 142854 51691 32767 2 0x10 syz-executor.1 26792 254711 51691 32767 3 0x4000090 fsleep syz-executor.1 80204 325352 5569 32767 2 0x10 syz-executor.7 80204 436735 5569 32767 3 0x4000090 fsleep syz-executor.7 31454 249091 3441 32767 2 0x10 syz-executor.2 31454 421144 3441 32767 2 0x4000010 syz-executor.2 31454 33757 3441 32767 3 0x4000090 fsleep syz-executor.2 3510 388465 33364 32767 2 0x10 syz-executor.0 3510 231134 33364 32767 3 0x4000090 fsleep syz-executor.0 51691 348419 86251 32767 3 0x90 nanoslp syz-executor.1 86251 335437 93324 0 3 0x82 wait syz-executor.1 56399 20305 85761 32767 3 0x90 nanoslp syz-executor.5 85761 37067 93324 0 3 0x82 wait syz-executor.5 96838 118100 44485 32767 3 0x10 biowait syz-executor.6 44485 305587 93324 0 3 0x82 wait syz-executor.6 5569 384438 12658 32767 3 0x90 nanoslp syz-executor.7 12658 332343 93324 0 3 0x82 wait syz-executor.7 75909 393296 0 0 3 0x14200 bored sosplice 49275 375881 47025 32767 3 0x10 biowait syz-executor.3 3441 392348 83335 32767 3 0x90 nanoslp syz-executor.2 30423 322375 38133 32767 7 0x10 syz-executor.4 38133 122710 93324 0 3 0x82 wait syz-executor.4 47025 154022 93324 0 3 0x82 wait syz-executor.3 83335 96501 93324 0 3 0x82 wait syz-executor.2 33364 73359 41685 32767 3 0x90 nanoslp syz-executor.0 41685 257716 93324 0 3 0x82 wait syz-executor.0 93324 310094 16831 0 3 0x2000082 thrsleep syz-fuzzer 93324 83617 16831 0 3 0x6000082 thrsleep syz-fuzzer 93324 300532 16831 0 3 0x6000082 thrsleep syz-fuzzer 93324 184226 16831 0 3 0x6000082 thrsleep syz-fuzzer 93324 165793 16831 0 3 0x6000082 wait syz-fuzzer 93324 403243 16831 0 3 0x6000082 wait syz-fuzzer 93324 294479 16831 0 3 0x6000082 wait syz-fuzzer 93324 343291 16831 0 3 0x6000082 wait syz-fuzzer 93324 506319 16831 0 3 0x6000082 wait syz-fuzzer 93324 503892 16831 0 3 0x6000082 thrsleep syz-fuzzer 93324 324452 16831 0 3 0x6000082 thrsleep syz-fuzzer 93324 376540 16831 0 3 0x6000082 wait syz-fuzzer 93324 158097 16831 0 3 0x6000082 thrsleep syz-fuzzer 93324 458596 16831 0 3 0x6000082 wait syz-fuzzer 93324 346711 16831 0 3 0x6000082 wait syz-fuzzer 93324 346086 16831 0 3 0x6000082 kqread syz-fuzzer 16831 102131 31910 0 3 0x10008a sigsusp ksh 31910 447238 11566 0 3 0x9a kqread sshd 89697 467036 1 0 3 0x100083 ttyin getty 11566 130778 1 0 3 0x88 kqread sshd 31874 284761 38653 73 3 0x1100090 kqread syslogd 38653 98843 1 0 3 0x100082 netio syslogd 90990 401779 1 0 3 0x100080 kqread resolvd 86141 463644 66591 77 3 0x100092 kqread dhcpleased 16872 187407 66591 77 3 0x100092 kqread dhcpleased 66591 8155 1 0 3 0x80 kqread dhcpleased 18561 79053 0 0 3 0x14200 bored smr 31498 102932 0 0 2 0x14200 zerothread 66223 378516 0 0 3 0x14200 aiodoned aiodoned 81608 408687 0 0 3 0x14200 syncer update 43443 379394 0 0 3 0x14200 cleaner cleaner *96354 61795 0 0 7 0x14200 reaper 1104 99693 0 0 3 0x14200 pgdaemon pagedaemon 13479 91535 0 0 3 0x14200 bored viomb 72537 170801 0 0 3 0x40014200 acpi0 acpi0 58323 349195 0 0 3 0x40014200 idle1 11906 304530 0 0 3 0x14200 bored softnet3 3358 150907 0 0 3 0x14200 bored softnet2 25342 481222 0 0 3 0x14200 bored softnet1 39049 358722 0 0 3 0x14200 bored softnet0 73481 137119 0 0 3 0x14200 bored systqmp 78424 377660 0 0 3 0x14200 bored systq 149 297174 0 0 3 0x40014200 bored softclock 41783 385543 0 0 3 0x40014200 idle0 1 289022 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks CPU 1: exclusive sched_lock &sched_lock r = 0 (0xffffffff82cafcb0) #0 witness_lock+0x447 #1 wakeup_n+0x37 sys/kern/kern_synch.c:541 #2 sched_idle+0x232 sys/kern/kern_sched.c:179 #3 proc_trampoline+0x1c Process 96838 (syz-executor.6) thread 0xffff8000211e4ab8 (118100) exclusive rrwlock inode r = 0 (0xfffffd807cbd6e70) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vget+0x200 sys/kern/vfs_subr.c:676 #6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119 #7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1314 #8 ufs_lookup+0x13ba sys/ufs/ufs/ufs_lookup.c:487 #9 VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 #10 vfs_lookup+0x6e2 sys/kern/vfs_lookup.c:566 #11 namei+0x55a sys/kern/vfs_lookup.c:250 #12 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1847 #13 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #13 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #14 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd8066355818) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418 #6 namei+0x55a sys/kern/vfs_lookup.c:250 #7 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1847 #8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #9 Xsyscall+0x128 Process 49275 (syz-executor.3) thread 0xffff8000211e5aa8 (375881) exclusive rrwlock inode r = 0 (0xfffffd807cbd61b0) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 ufs_ihashins+0x46 sys/ufs/ufs/ufs_ihash.c:140 #5 ffs_vget+0x141 sys/ufs/ffs/ffs_vfsops.c:1343 #6 ffs_inode_alloc+0x1c2 sys/ufs/ffs/ffs_alloc.c:394 #7 ufs_mkdir+0xf8 sys/ufs/ufs/ufs_vnops.c:1149 #8 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 #9 domkdirat+0x125 sys/kern/vfs_syscalls.c:3073 #10 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #10 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #11 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd807d2d74e0) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418 #6 namei+0x55a sys/kern/vfs_lookup.c:250 #7 domkdirat+0x79 sys/kern/vfs_syscalls.c:3058 #8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #9 Xsyscall+0x128 Process 30423 (syz-executor.4) thread 0xffff80002120b2b8 (322375) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82c6c140) #0 witness_lock+0x447 #1 __mp_acquire_count+0x48 sys/kern/kern_lock.c:227 #2 mi_switch+0x46b sys/kern/sched_bsd.c:470 #3 sleep_finish+0x19b sys/kern/kern_synch.c:414 #4 biowait+0x91 sys/kern/vfs_bio.c:1278 #5 bwrite+0x21c sys/kern/vfs_bio.c:769 #6 ffs_update+0x281 sys/ufs/ffs/ffs_inode.c:113 #7 ufs_mkdir+0x672 sys/ufs/ufs/ufs_vnops.c:1219 #8 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 #9 domkdirat+0x125 sys/kern/vfs_syscalls.c:3073 #10 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #10 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #11 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd807cbd6700) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vget+0x200 sys/kern/vfs_subr.c:676 #6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119 #7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1314 #8 ffs_inode_alloc+0x1c2 sys/ufs/ffs/ffs_alloc.c:394 #9 ufs_mkdir+0xf8 sys/ufs/ufs/ufs_vnops.c:1149 #10 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 #11 domkdirat+0x125 sys/kern/vfs_syscalls.c:3073 #12 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #12 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #13 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd807d2d70a0) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418 #6 namei+0x55a sys/kern/vfs_lookup.c:250 #7 domkdirat+0x79 sys/kern/vfs_syscalls.c:3058 #8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #9 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10208 6411K 6420K 78643K 11308 0 pcb 13 16K 18K 78643K 19 0 rtable 238 6K 7K 78643K 1022 0 pf 29 8K 8K 78643K 43 0 ifaddr 44 15K 15K 78643K 76 0 ifgroup 50 2K 2K 78643K 78 0 sysctl 3 1K 1K 78643K 3 0 counters 60 35K 35K 78643K 74 0 ioctlops 0 0K 2K 78643K 325 0 iov 0 0K 16K 78643K 407 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1279 80K 80K 78643K 2333 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 732 0 VM map 2 1K 1K 78643K 2 0 sem 12 1K 1K 78643K 13 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 22 81K 121K 78643K 7415 0 sigio 0 0K 0K 78643K 1088 0 proc 56 78K 115K 78643K 1127 0 subproc 104 6K 6K 78643K 195 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 2245 0 in_multi 99 7K 7K 78643K 294 0 ether_multi 1 0K 0K 78643K 3 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 187 837K 837K 78643K 187 0 exec 0 0K 1K 78643K 1077 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 412 92K 103K 78643K 74430 0 UVM aobj 131 6K 6K 78643K 137 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 150 0 NDP 13 0K 2K 78643K 48 0 temp 74 5920K 6000K 78643K 25554 0 kqueue 12 18K 30K 78643K 521 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 335 0 332 5 4 1 3 0 8 0 rtentry 112 204 0 92 4 0 4 4 0 8 0 unpcb 144 7060 0 7047 55 49 6 7 0 8 5 syncache 304 90 0 90 14 13 1 1 0 8 1 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpqe 32 295 0 295 12 11 1 1 0 8 1 tcpcb 808 4419 0 4381 89 78 11 16 0 8 6 arp 120 33 0 15 1 0 1 1 0 8 0 ipq 40 49 0 49 6 6 0 1 0 8 0 ipqe 40 250 0 250 6 6 0 1 0 8 0 inpcb 368 8293 0 8252 113 103 10 20 0 8 5 nd6 136 60 0 34 1 0 1 1 0 8 0 kcovpl 48 15 0 7 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 863 0 392 31 1 30 31 0 8 0 art_table 32 864 0 392 4 0 4 4 0 8 0 art_node 16 203 0 101 1 0 1 1 0 8 0 sysvmsgpl 40 3 0 3 1 1 0 1 0 8 0 semupl 112 40 0 40 1 1 0 1 0 8 0 semapl 112 11 0 1 1 0 1 1 0 8 0 shmpl 112 134 0 6 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 10681 0 9231 91 0 91 91 0 8 0 ffsino 272 10681 0 9231 98 0 98 98 0 8 0 nchpl 144 21588 0 19945 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 70928 0 70926 3 2 1 2 0 8 0 percpumem 16 50 0 7 1 0 1 1 0 8 0 kstatmem 264 36 0 14 2 0 2 2 0 8 0 scxspl 216 60920 0 60918 22 21 1 8 1 8 0 plimitpl 152 1288 0 1264 12 11 1 2 0 8 0 sigapl 424 7696 0 7644 7 0 7 7 0 8 0 futexpl 64 73228 0 73224 1 0 1 1 0 8 0 knotepl 120 588 0 0 18 1 17 18 0 8 0 kqueuepl 216 1285 0 1277 29 28 1 5 0 8 0 pipepl 320 1604 0 1576 47 43 4 13 0 8 1 fdescpl 496 7678 0 7645 7 2 5 6 0 8 0 filepl 152 52801 0 52564 106 89 17 20 0 8 7 lockfpl 104 1847 0 1844 2 1 1 2 0 8 0 lockfspl 48 314 0 311 1 0 1 1 0 8 0 sessionpl 144 30 0 14 1 0 1 1 0 8 0 pgrppl 48 65 0 49 1 0 1 1 0 8 0 ucredpl 104 5577 0 5559 1 0 1 1 0 8 0 zombiepl 144 7645 0 7644 1 0 1 1 0 8 0 processpl 1072 7696 0 7644 5 1 4 5 0 8 0 procpl 680 20605 0 20533 21 13 8 8 0 8 1 sosppl 168 149 0 149 8 7 1 1 0 8 1 sockpl 488 15990 0 15933 308 292 16 32 0 8 8 mcl64k 65536 17 0 0 3 1 2 3 0 8 0 mcl16k 16384 18 0 0 3 1 2 3 0 8 0 mcl12k 12288 22 0 0 2 0 2 2 0 8 0 mcl9k 9216 12 0 0 1 0 1 1 0 8 0 mcl8k 8192 29 0 0 4 1 3 3 0 8 0 mcl4k 4096 41 0 0 3 0 3 3 0 8 0 mcl2k2 2112 8 0 0 1 0 1 1 0 8 0 mcl2k 2048 320 0 0 35 9 26 35 0 8 0 mtagpl 96 8 0 0 1 0 1 1 0 8 0 mbufpl 256 1139 0 0 61 0 61 61 0 8 0 bufpl 288 15599 0 9274 453 0 453 453 0 8 0 anonpl 24 811544 0 800889 121 44 77 95 0 186 0 amapchunkpl 152 234550 0 233672 48 8 40 44 0 158 0 amappl16 200 17045 0 16759 58 42 16 29 0 8 0 amappl15 192 17 0 17 1 1 0 1 0 8 0 amappl14 184 176 0 161 2 1 1 2 0 8 0 amappl13 176 17 0 17 1 1 0 1 0 8 0 amappl12 168 8429 0 8384 3 0 3 3 0 8 1 amappl11 160 61 0 51 1 0 1 1 0 8 0 amappl10 152 44 0 31 1 0 1 1 0 8 0 amappl9 144 245 0 245 15 14 1 1 0 8 1 amappl8 136 560 0 425 5 0 5 5 0 8 0 amappl7 128 106 0 92 2 0 2 2 0 8 0 amappl6 120 361 0 332 2 1 1 2 0 8 0 amappl5 112 331 0 322 1 0 1 1 0 8 0 amappl4 104 768 0 721 3 1 2 3 0 8 0 amappl3 96 46492 0 46403 4 1 3 3 0 8 0 amappl2 88 8266 0 8183 3 1 2 3 0 8 0 amappl1 80 35473 0 34942 22 10 12 22 0 8 0 amappl 88 73564 0 73314 7 0 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 136 0 6 3 0 3 3 0 8 0 uaddrrnd 24 7678 0 7644 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 7678 0 7644 1 0 1 1 0 8 0 vmmpekpl 168 60592 0 60537 3 0 3 3 0 8 0 vmmpepl 168 453701 0 451285 181 59 122 122 0 357 9 vmsppl 464 7677 0 7644 7 2 5 6 0 8 0 rwobjpl 56 120636 0 113195 116 9 107 109 0 8 0 pdppl 4096 15364 0 15288 310 228 82 94 0 8 6 pvpl 32 2196220 0 2179543 400 248 152 355 0 265 0 pmappl 248 7677 0 7644 4 1 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1325 0 439 26 0 26 26 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp x86_ipi_db(ffffffff82bc4ff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x29 kd_curproc sys/dev/kcov.c:589 [inline] __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x29 sys/dev/kcov.c:158 __mp_lock(ffffffff82c6bf38) at __mp_lock+0x133 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82c6bf38) at __mp_lock+0x133 sys/kern/kern_lock.c:147 intr_handler(ffff800025526640,ffff80000007bd80) at intr_handler+0x62 sys/arch/amd64/amd64/intr.c:532 Xintr_ioapic_edge23_untramp() at Xintr_ioapic_edge23_untramp+0x18f Xspllower() at Xspllower+0x1d cnputc(70) at cnputc+0x4f sys/dev/cons.c:218 db_putchar(70) at db_putchar+0x3fc sys/ddb/db_output.c:155 kprintf() at kprintf+0x6bc sys/kern/subr_prf.c:724 db_printf(ffffffff828226bb) at db_printf+0x89 sys/kern/subr_prf.c:498 panic(ffffffff827946c1) at panic+0xdb sys/kern/subr_prf.c:216 vop_generic_badop(ffff800025526a68) at vop_generic_badop+0x1f sys/kern/vfs_default.c:133 end trace frame: 0xffff800025526ab0, count: 0 ddb{0}> trace x86_ipi_db(ffffffff82bc4ff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x29 kd_curproc sys/dev/kcov.c:589 [inline] __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x29 sys/dev/kcov.c:158 __mp_lock(ffffffff82c6bf38) at __mp_lock+0x133 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82c6bf38) at __mp_lock+0x133 sys/kern/kern_lock.c:147 intr_handler(ffff800025526640,ffff80000007bd80) at intr_handler+0x62 sys/arch/amd64/amd64/intr.c:532 Xintr_ioapic_edge23_untramp() at Xintr_ioapic_edge23_untramp+0x18f Xspllower() at Xspllower+0x1d cnputc(70) at cnputc+0x4f sys/dev/cons.c:218 db_putchar(70) at db_putchar+0x3fc sys/ddb/db_output.c:155 kprintf() at kprintf+0x6bc sys/kern/subr_prf.c:724 db_printf(ffffffff828226bb) at db_printf+0x89 sys/kern/subr_prf.c:498 panic(ffffffff827946c1) at panic+0xdb sys/kern/subr_prf.c:216 vop_generic_badop(ffff800025526a68) at vop_generic_badop+0x1f sys/kern/vfs_default.c:133 VOP_STRATEGY(fffffd806bc08200,fffffd8067bad010) at VOP_STRATEGY+0x9f sys/kern/vfs_vops.c:628 bwrite(fffffd8067bad010) at bwrite+0x1f1 sys/kern/vfs_bio.c:760 VOP_BWRITE(fffffd8067bad010) at VOP_BWRITE+0x4e sys/kern/vfs_vops.c:640 ufs_mkdir(ffff800025526d00) at ufs_mkdir+0x6c4 sys/ufs/ufs/ufs_vnops.c:1235 VOP_MKDIR(fffffd8068079968,ffff800025526e60,ffff800025526e90,ffff800025526d90) at VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 domkdirat(ffff80002120b2b8,ffffff9c,78b882e9ff20,1ff) at domkdirat+0x125 sys/kern/vfs_syscalls.c:3073 syscall(ffff800025527010) at syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] syscall(ffff800025527010) at syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x78b882e9ff90, count: -22 ddb{0}> machine ddbcpu 1 Stopped at db_enter+0x1c: addq $0x8,%rsp db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8279fd90) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff8281fcb3,ffffffff8284a55d,9de,ffffffff827d8a93) at __assert+0x29 sys/kern/subr_prf.c:157 uvm_map_teardown(fffffd80687f73c8) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528 uvmspace_free(fffffd80687f73c8) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503 reaper(ffff8000211a3a98) at reaper+0x19a sys/kern/kern_exit.c:458 end trace frame: 0x0, count: 9 ddb{1}> trace db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8279fd90) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff8281fcb3,ffffffff8284a55d,9de,ffffffff827d8a93) at __assert+0x29 sys/kern/subr_prf.c:157 uvm_map_teardown(fffffd80687f73c8) at uvm_map_teardown+0x348 sys/uvm/uvm_map.c:2528 uvmspace_free(fffffd80687f73c8) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3503 reaper(ffff8000211a3a98) at reaper+0x19a sys/kern/kern_exit.c:458 end trace frame: 0x0, count: -6