panic: vm_object_terminate_single_page: page 0xfffffe0001bd5e78 does not belong to a queue cpuid = 0 time = 1748906238 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0057d1c4f0 kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0057d1c650 vpanic() at vpanic+0x257/frame 0xfffffe0057d1c810 panic() at panic+0xb5/frame 0xfffffe0057d1c8d0 vm_object_terminate_single_page() at vm_object_terminate_single_page+0x210/frame 0xfffffe0057d1c910 pctrie_reclaim_resume_cb() at pctrie_reclaim_resume_cb+0xf5/frame 0xfffffe0057d1c970 vm_object_terminate() at vm_object_terminate+0x232/frame 0xfffffe0057d1ca30 vm_object_deallocate() at vm_object_deallocate+0x617/frame 0xfffffe0057d1cb10 vm_map_process_deferred() at vm_map_process_deferred+0x1a0/frame 0xfffffe0057d1cb50 vmspace_dofree() at vmspace_dofree+0xfd/frame 0xfffffe0057d1cb90 vmspace_exit() at vmspace_exit+0x278/frame 0xfffffe0057d1cc50 exit1() at exit1+0x99b/frame 0xfffffe0057d1ccf0 sys_exit() at sys_exit+0x28/frame 0xfffffe0057d1cd10 amd64_syscall() at amd64_syscall+0x4e2/frame 0xfffffe0057d1cf30 fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0057d1cf30 --- syscall (1, FreeBSD ELF64, exit), rip = 0x3a1d1a, rsp = 0x82094fb68, rbp = 0x82094fb70 --- KDB: enter: panic [ thread pid 2048 tid 101941 ] Stopped at kdb_enter+0x6e: movq $0,0x25c0707(%rip) db> db> set $lines = 0 db> set $maxwidth = 0 db> show registers cs 0x20 ds 0x3b es 0x3b fs 0x13 gs 0x1b ss 0x28 rax 0x12 rcx 0xfffffe00033eee30 rdx 0 rbx 0xffffffff827b70e0 .str.27 rsp 0xfffffe0057d1c630 rbp 0xfffffe0057d1c650 rsi 0 rdi 0xffffffff816148e9 printf+0x149 r8 0 r9 0xffffffff r10 0x1 r11 0x3f r12 0xfffffe0079b00000 r13 0xfffffffffffffffe r14 0xffffffff827b70e0 .str.27 r15 0 rip 0xffffffff815fea8e kdb_enter+0x6e rflags 0x46 kdb_enter+0x6e: movq $0,0x25c0707(%rip) db> show proc Process 2048 (syz-executor) at 0xfffffe0079ad95c0: state: NORMAL uid: 0 gids: 0, 0, 5 parent: pid 766 at 0xfffffe00548f0060 ABI: FreeBSD ELF64 flag: 0x10002000 flag2: 0x40000 arguments: ./syz-executor exec reaper: 0xfffffe0008009040 reapsubtree: 1 sigparent: 20 vmspace: 0xffffffff83b4a8c0 (map 0xffffffff83b4a8c0) (map.pmap 0xffffffff83b4a960) (pmap 0xffffffff83b4a9d0) threads: 1 101941 Run CPU 0 syz-executor db> ps pid ppid pgrp uid state wmesg wchan cmd 2078 764 764 0 R (threaded) syz-executor 101997 RunQ syz-executor 102066 RunQ syz-executor 2077 767 767 0 R (threaded) syz-executor 102003 RunQ syz-executor 102065 S uwait 0xfffffe007939d900 syz-executor 2076 765 765 0 R (threaded) syz-executor 101981 Run CPU 1 syz-executor 102063 RunQ syz-executor 102064 S uwait 0xfffffe00793cee00 syz-executor 2075 1 764 0 S uwait 0xfffffe0078f56980 syz-executor 2071 1 764 0 S uwait 0xfffffe007a25d680 syz-executor 2069 1 764 0 S uwait 0xfffffe007a25e600 syz-executor 2066 1 765 0 S uwait 0xfffffe007939e400 syz-executor 2065 1 767 0 T uwait 0xfffffe0078f56780 syz-executor 2062 0 0 0 DL mdwait 0xfffffe007af9e000 [md25] 2060 1 767 0 S uwait 0xfffffe007af50880 syz-executor 2057 1 764 0 T uwait 0xfffffe0078f56f00 syz-executor 2055 1 764 0 S uwait 0xfffffe007a25d980 syz-executor 2053 1 764 0 S uwait 0xfffffe0078f56580 syz-executor 2051 2048 766 0 S uwait 0xfffffe007a25c880 syz-executor 2049 1 767 0 S uwait 0xfffffe007a25c000 syz-executor 2048 766 766 0 RE CPU 0 syz-executor 2042 1 766 0 S uwait 0xfffffe007939d080 syz-executor 2039 1 765 0 T uwait 0xfffffe0078f56b00 syz-executor 2037 1 766 0 S uwait 0xfffffe007939d600 syz-executor 2035 1 767 0 S uwait 0xfffffe007939da00 syz-executor 2031 1 767 0 T uwait 0xfffffe007939d800 syz-executor 2028 1 765 0 S uwait 0xfffffe0078f56d00 syz-executor 2027 1 766 0 T uwait 0xfffffe007a25ce80 syz-executor 2023 1 765 0 T uwait 0xfffffe007939e180 syz-executor 2019 1 764 0 S uwait 0xfffffe007a25c380 syz-executor 2014 1 766 0 S uwait 0xfffffe007a25e780 syz-executor 2013 1 767 0 S uwait 0xfffffe007939d500 syz-executor 2011 1 765 0 S uwait 0xfffffe007a25e580 syz-executor 1999 1 766 0 S uwait 0xfffffe007a25d300 syz-executor 1997 1 764 0 S uwait 0xfffffe007939d400 syz-executor 1993 1 766 0 S uwait 0xfffffe007939d700 syz-executor 1989 1 766 0 S uwait 0xfffffe007a25d480 syz-executor 1988 1 767 0 T uwait 0xfffffe007a25c580 syz-executor 1983 1 764 0 T uwait 0xfffffe007a25e180 syz-executor 1981 1 766 0 S uwait 0xfffffe007939dc00 syz-executor 1980 1 767 0 S uwait 0xfffffe007a25db80 syz-executor 1978 1 765 0 S uwait 0xfffffe007a25d400 syz-executor 1974 1 767 0 S uwait 0xfffffe007939df00 syz-executor 1970 1 764 0 S uwait 0xfffffe007a25d200 syz-executor 1955 1 766 0 S uwait 0xfffffe007939e580 syz-executor 1951 1 764 0 S uwait 0xfffffe007939e080 syz-executor 1945 1 767 0 T uwait 0xfffffe007939de00 syz-executor 1944 1 766 0 S uwait 0xfffffe007939db00 syz-executor 1941 1 766 0 S uwait 0xfffffe007939e300 syz-executor 1931 0 0 0 DL mdwait 0xfffffe007a30b000 [md24] 1929 1 765 0 S uwait 0xfffffe007a25d000 syz-executor 1928 1 766 0 S uwait 0xfffffe007939e980 syz-executor 1927 1 767 0 S uwait 0xfffffe007a25c280 syz-executor 1920 1 766 0 S uwait 0xfffffe00793cc700 syz-executor 1918 1 764 0 T uwait 0xfffffe007a25c680 syz-executor 1916 1 764 0 S uwait 0xfffffe007a25e280 syz-executor 1915 1 767 0 S uwait 0xfffffe007a25c480 syz-executor 1910 1 764 0 T uwait 0xfffffe007a25e380 syz-executor 1901 1 767 0 S uwait 0xfffffe007a25e080 syz-executor 1897 1 764 0 S uwait 0xfffffe007a25ed80 syz-executor 1891 1 766 0 S uwait 0xfffffe007a25c780 syz-executor 1889 1 767 0 T umtxn 0xfffffe007a25d380 syz-executor 1885 1 764 0 S uwait 0xfffffe007a25dc80 syz-executor 1884 1 765 0 S uwait 0xfffffe007a25cc80 syz-executor 1874 1 764 0 S uwait 0xfffffe007a25d780 syz-executor 1871 1 764 0 S uwait 0xfffffe00793cc180 syz-executor 1869 0 0 0 DL mdwait 0xfffffe007a3c2000 [md23] 1856 1 766 0 S uwait 0xfffffe007a25f680 syz-executor 1854 1 765 0 S uwait 0xfffffe007a25d100 syz-executor 1851 1 764 0 S uwait 0xfffffe007939f800 syz-executor 1847 1 765 0 S uwait 0xfffffe007939e780 syz-executor 1845 0 0 0 DL mdwait 0xfffffe007a392000 [md22] 1843 1 764 0 S uwait 0xfffffe007a25e980 syz-executor 1838 1 766 0 S uwait 0xfffffe007939e680 syz-executor 1837 0 0 0 DL mdwait 0xfffffe007a393000 [md21] 1830 1 765 0 S uwait 0xfffffe007939eb00 syz-executor 1826 1 765 0 T uwait 0xfffffe007a25ef00 syz-executor 1821 1 767 0 S uwait 0xfffffe007a25df00 syz-executor 1816 1 764 0 T uwait 0xfffffe007a25d580 syz-executor 1806 1 764 0 T uwait 0xfffffe007a25e480 syz-executor 1804 1 767 0 S uwait 0xfffffe007a25ec80 syz-executor 1802 1 764 0 T uwait 0xfffffe007a25ee80 syz-executor 1797 0 0 0 DL mdwait 0xfffffe007a35e000 [md20] 1795 0 0 0 DL mdwait 0xfffffe007a35f000 [md19] 1792 0 0 0 DL mdwait 0xfffffe007a2af000 [md18] 1787 1 767 0 T uwait 0xfffffe007a25f080 syz-executor 1785 1 765 0 S uwait 0xfffffe007a25eb80 syz-executor 1774 1 764 0 T uwait 0xfffffe007a25de00 syz-executor 1771 1 767 0 T uwait 0xfffffe00793cc080 syz-executor 1768 1 765 0 S uwait 0xfffffe00793cc800 syz-executor 1762 1 767 0 S uwait 0xfffffe007939f480 syz-executor 1760 1 766 0 T uwait 0xfffffe007a25e880 syz-executor 1756 1 1756 65 Ss select 0xfffffe006e5faac0 dhclient 1752 1 766 0 S uwait 0xfffffe007a25f580 syz-executor 1746 0 0 0 DL mdwait 0xfffffe007a30c000 [md17] 1743 1 767 0 S uwait 0xfffffe007939f680 syz-executor 1742 1 766 0 T uwait 0xfffffe007a25f380 syz-executor 1738 1 764 0 S uwait 0xfffffe007a25ea80 syz-executor 1735 1 766 0 S uwait 0xfffffe00793cb680 syz-executor 1734 1 765 0 S uwait 0xfffffe007a25f180 syz-executor 1732 1 767 0 S uwait 0xfffffe007939f500 syz-executor 1727 1 766 0 T uwait 0xfffffe007a25f780 syz-executor 1726 1 767 0 S uwait 0xfffffe00793a0680 syz-executor 1721 1 767 0 T uwait 0xfffffe007a25f280 syz-executor 1718 1 766 0 S uwait 0xfffffe00793a0b80 syz-executor 1716 1 765 0 S uwait 0xfffffe00793a0f00 syz-executor 1707 1 764 0 S uwait 0xfffffe007939f280 syz-executor 1705 1 766 0 S uwait 0xfffffe00793cd880 syz-executor 1702 0 0 0 DL mdwait 0xfffffe007a2b0000 [md16] 1701 1 764 0 S uwait 0xfffffe00793cb480 syz-executor 1688 1 767 0 S uwait 0xfffffe00793a0880 syz-executor 1685 1 767 0 S uwait 0xfffffe007939f380 syz-executor 1684 1 766 0 S uwait 0xfffffe00793cc280 syz-executor 1679 1 767 0 S uwait 0xfffffe007939f180 syz-executor 1663 1 767 0 S uwait 0xfffffe007939eb80 syz-executor 1660 1 766 0 S uwait 0xfffffe00793cbc00 syz-executor 1654 1 765 0 S uwait 0xfffffe007939ee00 syz-executor 1644 1 766 0 S uwait 0xfffffe00793cb180 syz-executor 1639 1 767 0 S uwait 0xfffffe00793cb080 syz-executor 1632 1 766 0 S uwait 0xfffffe007939ef00 syz-executor 1631 1 764 0 S uwait 0xfffffe00793cb280 syz-executor 1625 1 765 0 S uwait 0xfffffe00793cb980 syz-executor 1621 1 765 0 T uwait 0xfffffe00793cb880 syz-executor 1618 1 766 0 S uwait 0xfffffe00793a0980 syz-executor 1615 1 767 0 S uwait 0xfffffe00793cbd00 syz-executor 1609 0 0 0 DL mdwait 0xfffffe0079ca4000 [md15] 1608 1 767 0 S uwait 0xfffffe007939ed00 syz-executor 1604 1 765 0 S uwait 0xfffffe007939fa80 syz-executor 1602 1 764 0 S uwait 0xfffffe00793cbe00 syz-executor 1600 1 765 0 S uwait 0xfffffe00793cdc80 syz-executor 1597 1 765 0 S uwait 0xfffffe00793cb580 syz-executor 1594 1 764 0 S uwait 0xfffffe00793cb780 syz-executor 1589 1 767 0 T uwait 0xfffffe00793cca00 syz-executor 1586 1 766 0 S uwait 0xfffffe00793cd100 syz-executor 1585 1 764 0 S uwait 0xfffffe00793cba80 syz-executor 1581 1 767 0 S uwait 0xfffffe00793a0e00 syz-executor 1574 1 767 0 S uwait 0xfffffe00793cdb00 syz-executor 1571 1 766 0 S uwait 0xfffffe00793ccb80 syz-executor 1569 1 1569 0 Ss select 0xfffffe0059e722c0 dhclient 1566 1 765 0 S uwait 0xfffffe006ecce380 syz-executor 1564 1 1564 0 Ss select 0xfffffe0078800e40 dhclient 1556 1 767 0 S uwait 0xfffffe00793cde80 syz-executor 1553 1 764 0 T uwait 0xfffffe00793cc900 syz-executor 1541 1 766 0 S uwait 0xfffffe007939fb80 syz-executor 1535 1 1535 65 Ss select 0xfffffe006e5faec0 dhclient 1526 1 766 0 T uwait 0xfffffe00793cdd00 syz-executor 1524 1 764 0 S uwait 0xfffffe00793cd780 syz-executor 1522 1 766 0 S uwait 0xfffffe00793cb380 syz-executor 1517 1 766 0 S uwait 0xfffffe00793cd000 syz-executor 1516 0 0 0 DL mdwait 0xfffffe0079d0e000 [md14] 1511 0 0 0 DL mdwait 0xfffffe0079d0f000 [md13] 1510 1 765 0 S uwait 0xfffffe00793ccc80 syz-executor 1505 1 767 0 S uwait 0xfffffe00793cc400 syz-executor 1503 1 764 0 S umtxn 0xfffffe006ecd1780 syz-executor 1501 1 765 0 S uwait 0xfffffe006ecd1a80 syz-executor 1499 1 766 0 S uwait 0xfffffe007939fc80 syz-executor 1497 1 764 0 S uwait 0xfffffe00793cc600 syz-executor 1492 1 767 0 T uwait 0xfffffe0058cf6600 syz-executor 1489 1 766 0 S uwait 0xfffffe00793a0300 syz-executor 1485 1 765 0 S uwait 0xfffffe00793cc500 syz-executor 1483 1 766 0 S uwait 0xfffffe00793cd580 syz-executor 1482 1 765 0 S uwait 0xfffffe0058cf6800 syz-executor 1478 1 764 0 S uwait 0xfffffe00793cd980 syz-executor 1476 1 764 0 S uwait 0xfffffe00793cce80 syz-executor 1469 1 767 0 S uwait 0xfffffe007939f900 syz-executor 1461 1 767 0 S uwait 0xfffffe00793cd200 syz-executor 1455 0 0 0 DL mdwait 0xfffffe0079ca5000 [md12] 1454 1 765 0 S uwait 0xfffffe00793cd680 syz-executor 1451 1 766 0 S uwait 0xfffffe00793cd480 syz-executor 1448 1 767 0 S uwait 0xfffffe00793ccd80 syz-executor 1446 1 767 0 S uwait 0xfffffe0058cf6300 syz-executor 1443 1 764 0 S uwait 0xfffffe006ecd1980 syz-executor 1440 1 767 0 S uwait 0xfffffe006ecce080 syz-executor 1437 1 767 0 S umtxn 0xfffffe00793a0000 syz-executor 1436 1 765 0 S uwait 0xfffffe006ecd1680 syz-executor 1432 1 766 0 T uwait 0xfffffe0078f53380 syz-executor 1430 1 767 0 S uwait 0xfffffe0078f53000 syz-executor 1425 1 765 0 S uwait 0xfffffe007939fe80 syz-executor 1416 1 764 0 S uwait 0xfffffe00793a0500 syz-executor 1415 1 767 0 S uwait 0xfffffe00793a0400 syz-executor 1414 1 766 0 S uwait 0xfffffe0078f53c00 syz-executor 1410 1 765 0 S uwait 0xfffffe00793a0200 syz-executor 1409 1 766 0 T uwait 0xfffffe0058cf6480 syz-executor 1407 1 764 0 S uwait 0xfffffe0078f53580 syz-executor 1405 1 766 0 S uwait 0xfffffe00793a0100 syz-executor 1404 1 767 0 T uwait 0xfffffe0078f55480 syz-executor 1402 1 767 0 T uwait 0xfffffe00793ce000 syz-executor 1400 1 767 0 S uwait 0xfffffe00793ce400 syz-executor 1393 1 767 0 S uwait 0xfffffe006ecd1580 syz-executor 1390 1 765 0 T uwait 0xfffffe006ecd1b80 syz-executor 1389 1 764 0 T uwait 0xfffffe0058cf6a00 syz-executor 1387 1 766 0 T uwait 0xfffffe006ecce400 syz-executor 1379 1 767 0 T uwait 0xfffffe00793ce300 syz-executor 1375 1 767 0 S uwait 0xfffffe00793ce100 syz-executor 1374 1 766 0 S uwait 0xfffffe00793ce600 syz-executor 1370 1 767 0 S uwait 0xfffffe00793ce500 syz-executor 1368 1 766 0 S uwait 0xfffffe0078f54200 syz-executor 1366 1 764 0 S uwait 0xfffffe00793ce200 syz-executor 1360 1 767 0 S uwait 0xfffffe006ecd1880 syz-executor 1358 1 767 0 S uwait 0xfffffe0078f53780 syz-executor 1357 1 765 0 S uwait 0xfffffe0058cf6b00 syz-executor 1353 1 765 0 S uwait 0xfffffe000828c980 syz-executor 1348 1 767 0 S uwait 0xfffffe006ecd1480 syz-executor 1346 1 767 0 S uwait 0xfffffe0078f53b00 syz-executor 1343 1 767 0 S uwait 0xfffffe0058cf6400 syz-executor 1341 1 764 0 S uwait 0xfffffe0078f53980 syz-executor 1332 1 767 0 S uwait 0xfffffe006ecd1c80 syz-executor 1328 0 0 0 DL mdwait 0xfffffe007930f000 [md11] 1326 1 767 0 S uwait 0xfffffe0078f54c80 syz-executor 1323 1 766 0 S uwait 0xfffffe0058cf6900 syz-executor 1321 1 1321 0 Ss select 0xfffffe006e5fb5c0 dhclient 1318 1 765 0 T uwait 0xfffffe0078f53200 syz-executor 1317 1 1317 0 Ss select 0xfffffe006e5fae40 dhclient 1306 1 764 0 S uwait 0xfffffe0078f55680 syz-executor 1298 1 767 0 T uwait 0xfffffe0058cf6700 syz-executor 1287 1 1287 65 Ss select 0xfffffe006e5fb4c0 dhclient 1280 1 766 0 S uwait 0xfffffe006eccf480 syz-executor 1278 1 764 0 S uwait 0xfffffe006ecd1d80 syz-executor 1276 1 765 0 S uwait 0xfffffe0078f53b80 syz-executor 1275 1 766 0 S umtxn 0xfffffe0078f53880 syz-executor 1271 1 767 0 T uwait 0xfffffe0078f54a00 syz-executor 1269 1 764 0 S uwait 0xfffffe0078f54880 syz-executor 1264 1 767 0 S umtxn 0xfffffe0078f53e80 syz-executor 1260 1 766 0 S uwait 0xfffffe0058cf3a00 syz-executor 1259 1 765 0 S uwait 0xfffffe0078f53680 syz-executor 1257 0 0 0 DL mdwait 0xfffffe0079310000 [md10] 1251 1 764 0 S uwait 0xfffffe0078f55f00 syz-executor 1248 1 765 0 S uwait 0xfffffe0078f53480 syz-executor 1244 1 764 0 S uwait 0xfffffe006ecce700 syz-executor 1237 1 764 0 S uwait 0xfffffe0058a6d200 syz-executor 1236 1 766 0 S uwait 0xfffffe0058a6db80 syz-executor 1230 1 765 0 S uwait 0xfffffe0078f55e00 syz-executor 1226 1 765 0 S uwait 0xfffffe0058a6d980 syz-executor 1224 0 0 0 DL mdwait 0xfffffe0078f8e000 [md9] 1222 1 766 0 S uwait 0xfffffe0078f55b80 syz-executor 1214 1 764 0 S uwait 0xfffffe0078f54100 syz-executor 1208 1 765 0 S uwait 0xfffffe0078f54000 syz-executor 1205 1 764 0 S uwait 0xfffffe0078f54580 syz-executor 1202 1 765 0 S uwait 0xfffffe006ecce180 syz-executor 1198 1 765 0 S uwait 0xfffffe0078f54d80 syz-executor 1196 1 766 0 S uwait 0xfffffe0078f54680 syz-executor 1191 0 0 0 DL mdwait 0xfffffe00788b8000 [md8] 1190 1 766 0 S uwait 0xfffffe0078f54b80 syz-executor 1184 1 765 0 S uwait 0xfffffe0078f54780 syz-executor 1183 1 766 0 S uwait 0xfffffe0078f54a80 syz-executor 1181 1 767 0 T uwait 0xfffffe0078f55200 syz-executor 1179 1 765 0 S uwait 0xfffffe0078f54980 syz-executor 1178 1 767 0 S uwait 0xfffffe0058cf3700 syz-executor 1175 1 767 0 S uwait 0xfffffe0058cf6e00 syz-executor 1173 1 764 0 S uwait 0xfffffe0058cf6f00 syz-executor 1172 1 767 0 S uwait 0xfffffe0058cf6d00 syz-executor 1169 1 766 0 S uwait 0xfffffe0058a6d800 syz-executor 1161 1 764 0 S uwait 0xfffffe0058a6d300 syz-executor 1155 1 764 0 T uwait 0xfffffe0078f55300 syz-executor 1154 1 767 0 S uwait 0xfffffe0078f54480 syz-executor 1137 1 767 0 T uwait 0xfffffe0058cf3000 syz-executor 1134 1 766 0 S uwait 0xfffffe0078f55000 syz-executor 1133 1 765 0 S uwait 0xfffffe006ecceb80 syz-executor 1130 1 764 0 S uwait 0xfffffe0058a6d500 syz-executor 1123 1 765 0 S uwait 0xfffffe0078f55c00 syz-executor 1117 1 764 0 S umtxn 0xfffffe0058a6d900 syz-executor 1114 1 765 0 S uwait 0xfffffe0058a6dc80 syz-executor 1113 1 764 0 S uwait 0xfffffe0058a6d700 syz-executor 1111 1 767 0 S uwait 0xfffffe0078f55100 syz-executor 1108 1 765 0 S uwait 0xfffffe0058a6d600 syz-executor 1106 1 767 0 S uwait 0xfffffe0078f55880 syz-executor 1100 1 764 0 S uwait 0xfffffe0078f54e80 syz-executor 1097 1 767 0 S uwait 0xfffffe0078f55980 syz-executor 1092 1 766 0 S uwait 0xfffffe0078f55780 syz-executor 1088 1 766 0 S uwait 0xfffffe0078f56080 syz-executor 1084 1 764 0 S uwait 0xfffffe0078f55580 syz-executor 1078 1 765 0 S uwait 0xfffffe0058a6d400 syz-executor 1070 1 764 0 S uwait 0xfffffe006eccea80 syz-executor 1068 1 765 0 S uwait 0xfffffe006ecce600 syz-executor 1066 1 1066 0 Ss select 0xfffffe006e5fb640 dhclient 1065 1 766 0 S uwait 0xfffffe0078f56380 syz-executor 1063 1 767 0 S uwait 0xfffffe006ecce800 syz-executor 1057 1 1057 0 Ss select 0xfffffe0059e6d940 dhclient 1055 0 0 0 DL mdwait 0xfffffe0078f8f000 [md7] 1047 1 766 0 S uwait 0xfffffe0078f55d00 syz-executor 1027 1 1027 65 Ss select 0xfffffe00788012c0 dhclient 1023 1 767 0 T uwait 0xfffffe0078f56180 syz-executor 1013 1 767 0 S uwait 0xfffffe0058a6de80 syz-executor 1007 1 764 0 S uwait 0xfffffe0058a6ae00 syz-executor 1002 1 764 0 T uwait 0xfffffe006eccea00 syz-executor 1000 1 765 0 S umtxn 0xfffffe006eccf200 syz-executor 998 1 766 0 S umtxn 0xfffffe0058cf3300 syz-executor 994 1 767 0 T uwait 0xfffffe0058cf3200 syz-executor 991 1 764 0 S uwait 0xfffffe0058cf3500 syz-executor 986 1 767 0 S uwait 0xfffffe006eccf400 syz-executor 984 1 766 0 S uwait 0xfffffe000828c600 syz-executor 980 1 765 0 T uwait 0xfffffe0058a6da80 syz-executor 975 0 0 0 DL mdwait 0xfffffe00788b9000 [md6] 974 1 764 0 S uwait 0xfffffe0058a6be80 syz-executor 971 1 766 0 S uwait 0xfffffe0058cf3100 syz-executor 970 0 0 0 DL mdwait 0xfffffe007883a000 [md5] 964 1 767 0 S uwait 0xfffffe0058cf3400 syz-executor 963 1 766 0 S uwait 0xfffffe000828c580 syz-executor 960 1 764 0 T uwait 0xfffffe0058a6dd80 syz-executor 959 1 765 0 S uwait 0xfffffe0058cf3900 syz-executor 956 1 767 0 T uwait 0xfffffe006eccf000 syz-executor 952 1 764 0 T uwait 0xfffffe0058a6a080 syz-executor 944 1 766 0 S uwait 0xfffffe0058cf3e00 syz-executor 941 1 767 0 S uwait 0xfffffe0058cf3d00 syz-executor 940 0 0 0 DL mdwait 0xfffffe007883b000 [md4] 939 1 765 0 S uwait 0xfffffe006ecced80 syz-executor 930 1 764 0 S uwait 0xfffffe006eccec80 syz-executor 929 1 765 0 T uwait 0xfffffe006eccf780 syz-executor 926 1 767 0 S uwait 0xfffffe0058a6b200 syz-executor 920 1 765 0 S uwait 0xfffffe0058cf3800 syz-executor 917 1 765 0 T uwait 0xfffffe0058cf3b00 syz-executor 915 1 767 0 S uwait 0xfffffe0058cf3600 syz-executor 909 0 0 0 DL mdwait 0xfffffe00782d9000 [md3] 904 1 765 0 T uwait 0xfffffe006ecd0600 syz-executor 901 1 767 0 S uwait 0xfffffe0058cf3f00 syz-executor 896 1 764 0 S uwait 0xfffffe000828cc80 syz-executor 893 1 767 0 S uwait 0xfffffe0058cf3c80 syz-executor 888 1 766 0 S uwait 0xfffffe0058cf4080 syz-executor 887 1 764 0 S uwait 0xfffffe0058cf4180 syz-executor 883 0 0 0 DL mdwait 0xfffffe00782da000 [md2] 880 1 764 0 S uwait 0xfffffe000828cb80 syz-executor 875 0 0 0 DL mdwait 0xfffffe006ecec000 [md1] 873 1 767 0 T uwait 0xfffffe006eccf880 syz-executor 870 1 764 0 T uwait 0xfffffe000828c700 syz-executor 868 1 767 0 S uwait 0xfffffe006ecd0580 syz-executor 866 1 764 0 S uwait 0xfffffe0058a6c000 syz-executor 858 1 766 0 T uwait 0xfffffe0058a6aa00 syz-executor 856 1 764 0 S uwait 0xfffffe006eccfe80 syz-executor 852 1 765 0 S uwait 0xfffffe006ecd0400 syz-executor 849 1 764 0 S uwait 0xfffffe006ecd1100 syz-executor 840 1 764 0 S uwait 0xfffffe006eccfd80 syz-executor 838 0 0 0 DL mdwait 0xfffffe0007fd7000 [md0] 835 1 765 0 S uwait 0xfffffe0058a6cd00 syz-executor 831 1 764 0 S uwait 0xfffffe0058a6c200 syz-executor 829 1 767 0 S uwait 0xfffffe000828c880 syz-executor 825 1 765 0 S uwait 0xfffffe000828ce80 syz-executor 822 1 822 0 Ss select 0xfffffe006e5fba40 dhclient 817 1 817 0 Ss select 0xfffffe006e5fb8c0 dhclient 816 0 0 0 DL aiordy 0xfffffe000800a060 [aiod4] 814 0 0 0 DL aiordy 0xfffffe00548ee580 [aiod3] 813 0 0 0 DL aiordy 0xfffffe00548eeae0 [aiod2] 812 0 0 0 DL aiordy 0xfffffe0054809060 [aiod1] 767 763 767 0 R syz-executor 766 763 766 0 S wait 0xfffffe00548f0060 syz-executor 765 763 765 0 S nanslp 0xffffffff83ba0541 syz-executor 764 763 764 0 S nanslp 0xffffffff83ba0541 syz-executor 763 761 761 0 S select 0xfffffe006e5fbbc0 syz-executor 761 759 761 0 Ss pause 0xfffffe00548d10f0 csh 759 682 759 0 Ss select 0xfffffe006e5fbc40 sshd 748 1 748 0 Ss+ ttyin 0xfffffe0058a95cb0 getty 747 1 747 0 Ss+ ttyin 0xfffffe0059c080b0 getty 746 1 746 0 Ss+ ttyin 0xfffffe0059c084b0 getty 745 1 745 0 Ss+ ttyin 0xfffffe0059c088b0 getty 744 1 744 0 Ss+ ttyin 0xfffffe0059c08cb0 getty 743 1 743 0 Ss+ ttyin 0xfffffe0059c090b0 getty 742 1 742 0 Ss+ ttyin 0xfffffe0059c094b0 getty 741 1 741 0 Ss+ ttyin 0xfffffe0059c098b0 getty 740 1 740 0 Ss+ ttyin 0xfffffe0059c09cb0 getty 686 1 686 0 Ss nanslp 0xffffffff83ba0540 cron 682 1 682 0 Ss select 0xfffffe006e5fbe40 sshd 495 1 495 0 Ss select 0xfffffe006e5fbec0 syslogd 424 1 424 0 Ss select 0xfffffe006e5fc0c0 devd 423 1 423 65 Ss select 0xfffffe0059e6d740 dhclient 338 1 338 0 Ss select 0xfffffe006e5fc040 dhclient 335 1 335 0 Ss select 0xfffffe0059e6d6c0 dhclient 17 0 0 0 DL syncer 0xffffffff83cbdda0 [syncer] 16 0 0 0 DL vlruwt 0xfffffe0008028040 [vnlru] 15 0 0 0 DL (threaded) [bufdaemon] 100080 D psleep 0xffffffff83cbc360 [bufdaemon] 100083 D - 0xffffffff83001ec0 [bufspacedaemon-0] 100094 D sdflush 0xfffffe005860d0e8 [/ worker] 9 0 0 0 DL psleep 0xffffffff83d07380 [vmdaemon] 8 0 0 0 DL (threaded) [pagedaemon] 100078 D psleep 0xffffffff83ced2f8 [dom0] 100081 D launds 0xffffffff83ced304 [laundry: dom0] 100082 D umarcl 0xffffffff81dd0b70 [uma] 7 0 0 0 DL - 0xffffffff8391dcd0 [rand_harvestq] 6 0 0 0 DL pftm 0xffffffff84634850 [pf purge] 5 0 0 0 DL waiting 0xffffffff848dd700 [sctp_iterator] 4 0 0 0 DL (threaded) [cam] 100046 D - 0xffffffff838e8340 [doneq0] 100047 D - 0xffffffff838e82c0 [async] 100076 D - 0xffffffff838e8140 [scanner] 3 0 0 0 DL (threaded) [crypto] 100043 D crypto_ 0xffffffff83ce8b40 [crypto] 100044 D crypto_ 0xfffffe00546b2030 [crypto returns 0] 100045 D crypto_ 0xfffffe00546b2080 [crypto returns 1] 14 0 0 0 DL seqstat 0xfffffe00547e8c88 [sequencer 00] 13 0 0 0 DL (threaded) [geom] 100037 D - 0xffffffff83b48f00 [g_event] 100038 D - 0xffffffff83b48f20 [g_up] 100039 D - 0xffffffff83b48f40 [g_down] 2 0 0 0 WL (threaded) [clock] 100031 I [clock (0)] 100032 I [clock (1)] 12 0 0 0 WL (threaded) [intr] 100013 I [swi6: task queue] 100014 I [swi6: Giant taskq] 100016 I [swi5: fast taskq] 100033 I [swi1: netisr 0] 100034 I [swi1: hpts] 100035 I [swi1: hpts] 100048 I [irq24: virtio_pci0] 100049 I [irq25: virtio_pci0] 100050 I [irq26: virtio_pci0] 100051 I [irq27: virtio_pci0] 100052 I [irq28: virtio_pci1] 100053 I [irq29: virtio_pci1] 100054 I [irq30: virtio_pci1] 100055 I [irq31: virtio_pci1] 100056 I [irq32: virtio_pci1] 100061 I [irq10: virtio_pci2] 100063 I [irq1: atkbd0] 100064 I [irq12: psm0] 100065 I [swi0: uart uart++] 100069 I [swi1: pf send] 11 0 0 0 RL (threaded) [idle] 100003 CanRun [idle: cpu0] 100004 CanRun [idle: cpu1] 1 0 1 0 SLs wait 0xfffffe0008009040 [init] 10 0 0 0 DL audit_w 0xffffffff83ce95e0 [audit] 0 0 0 0 DLs (threaded) [kernel] 100000 D parked 0xffffffff84c2eff0 [swapper] 100005 D - 0xfffffe0008286900 [softirq_0] 100006 D - 0xfffffe0008286700 [softirq_1] 100007 D - 0xfffffe0008286500 [if_io_tqg_0] 100008 D - 0xfffffe0008286300 [if_io_tqg_1] 100009 D - 0xfffffe0008286100 [if_config_tqg_0] 100010 D - 0xfffffe0007fd1000 [kqueue_ctx taskq] 100011 D - 0xfffffe0007fd0e00 [jail_remove taskq] 100012 D - 0xfffffe0007fd0d00 [bus taskq] 100015 D - 0xfffffe0007fd0a00 [thread taskq] 100017 D - 0xfffffe0007fd0800 [aiod_kick taskq] 100018 D - 0xfffffe0007fd0700 [deferred_unmount ta] 100019 D - 0xfffffe0007fd0600 [inm_free taskq] 100020 D - 0xfffffe0007fd0500 [in6m_free taskq] 100021 D - 0xfffffe0007fd0400 [linuxkpi_irq_wq] 100022 D - 0xfffffe0007fd0300 [linuxkpi_short_wq_0] 100023 D - 0xfffffe0007fd0300 [linuxkpi_short_wq_1] 100024 D - 0xfffffe0007fd0300 [linuxkpi_short_wq_2] 100025 D - 0xfffffe0007fd0300 [linuxkpi_short_wq_3] 100026 D - 0xfffffe0007fd0200 [linuxkpi_long_wq_0] 100027 D - 0xfffffe0007fd0200 [linuxkpi_long_wq_1] 100028 D - 0xfffffe0007fd0200 [linuxkpi_long_wq_2] 100029 D - 0xfffffe0007fd0200 [linuxkpi_long_wq_3] 100036 D - 0xfffffe0007fd0100 [firmware taskq] 100041 D - 0xfffffe0007fcfe00 [crypto_0] 100042 D - 0xfffffe0007fcfe00 [crypto_1] 100057 D - 0xfffffe0007fcfc00 [vtnet0 rxq 0] 100058 D - 0xfffffe0007fcfb00 [vtnet0 txq 0] 100059 D - 0xfffffe0007fcfa00 [vtnet0 rxq 1] 100060 D - 0xfffffe0007fcf900 [vtnet0 txq 1] 100062 D vtbslp 0xfffffe0058582b00 [virtio_balloon] 100066 D - 0xffffffff827bc420 [deadlkres] 100070 D - 0xfffffe0058d69700 [acpi_task_0] 100071 D - 0xfffffe0058d69700 [acpi_task_1] 100072 D - 0xfffffe0058d69700 [acpi_task_2] 100074 D - 0xfffffe0007fd1100 [mca taskq] 100075 D - 0xfffffe0007fcfd00 [CAM taskq] 100077 D - 0xfffffe0007fcf800 [ipsec_offload] db> show all locks Process 2078 (syz-executor) thread 0xfffffe0079b47780 (102066) shared sx vm map (user) (vm map (user)) r = 0 (0xfffffe0079aeebc8) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_map.c:4993 Process 2048 (syz-executor) thread 0xfffffe0079b00000 (101941) exclusive rw vmobject (vmobject) r = 0 (0xfffffe0079b08ba0) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_object.c:647 db> show malloc Type InUse MemUse Requests pf_hash 6 12804K 6 linker 376 5063K 1803 tcp_hpts 7 4801K 7 devbuf 4188 4324K 4242 filedesc 490 3920K 2245 sysctloid 34774 2049K 34849 vtbuf 24 1968K 46 subproc 764 1657K 2465 newblk 1519 1404K 22094 kobj 331 1324K 773 vfscache 3 1025K 3 pcb 223 867K 1211 inodedep 16 518K 3542 ufs_quota 1 512K 1 vfs_hash 1 512K 1 callout 2 512K 2 intr 4 472K 4 vmem 5 288K 11 vnet_data 2 224K 2 acpitask 1 224K 1 KTRACE 101 201K 464175 acpica 1674 184K 54558 tidhash 3 141K 3 kdtrace 830 137K 4146 DEVFS1 135 135K 152 pagedep 9 130K 1693 tfo_ccache 1 128K 1 IP reass 1 128K 1 umtx 928 116K 928 sem 4 106K 4 md_disk 26 104K 27 BPF 69 100K 130 gtaskqueue 18 98K 18 bus 1044 85K 5242 mtx_pool 3 74K 3 syncache 1 68K 1 NFSD srvcache 3 68K 3 module 521 66K 565 ddb_capture 1 64K 1 temp 39 43K 3519 DEVFS3 154 39K 164 GEOM 243 38K 1283 sctp_atcl 94 36K 454 hostcache 1 32K 1 shm 1 32K 35 msg 4 30K 4 kbdmux 6 28K 6 kqueue 386 26K 4431 LRO 24 25K 24 pwddesc 377 24K 2204 devstat 10 21K 10 ifaddr 70 20K 72 DEVFS_RULE 56 20K 56 ufs_mount 4 17K 5 proc 3 17K 3 tty 16 16K 16 routetbl 130 16K 410 ithread 90 15K 90 DEVFSP 232 15K 659 bus-sc 34 15K 1713 eventhandler 163 14K 163 ether_multi 157 13K 292 ifnet 7 13K 7 lltable 39 12K 77 kenv 95 12K 95 shmfd 7 11K 28 CAM queue 5 11K 1528 cryptodev 159 10K 1108 rman 82 10K 657 plimit 25 10K 393 rpc 8 9K 8 in6_multi 65