panic: kernel diagnostic assertion "dupe == NULL" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_page.c", line 144 Stopped at db_enter+0x25: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND * 8403 86436 0 0x802 0x2000 1K syz-executor 17492 10941 0 0x14000 0x200 0 reaper db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:438 panic(ffffffff83447ce1) at panic+0x1e5 sys/kern/subr_prf.c:198 __assert(ffffffff8348ab42,ffffffff833e26e6,90,ffffffff8342884d) at __assert+0x29 sys/kern/subr_prf.c:-1 uvm_pagealloc_pg(fffffd800952da20,fffffd806caab858,1fa51000,0) at uvm_pagealloc_pg+0x54b sys/uvm/uvm_page.c:707 uvm_pagealloc(fffffd806caab858,1fa51000,0,3) at uvm_pagealloc+0x252 sys/uvm/uvm_page.c:913 pmap_get_ptp(fffffd806caab800,7e9450666000) at pmap_get_ptp+0x1d0 sys/arch/amd64/amd64/pmap.c:-1 pmap_enter(fffffd806caab800,7e9450666000,6f988000,3,21) at pmap_enter+0x38a sys/arch/amd64/amd64/pmap.c:-1 uvm_fault_upper(ffff800042c3f0a0,ffff800042c3f0d8,ffff800042c3efa0) at uvm_fault_upper+0x338 sys/uvm/uvm_fault.c:1131 uvm_fault(fffffd807597f018,7e9450666000,0,1) at uvm_fault+0x198 sys/uvm/uvm_fault.c:635 kpageflttrap(ffff800042c3f250,7e9450666bc8) at kpageflttrap+0x2f4 sys/arch/amd64/amd64/trap.c:283 kerntrap(ffff800042c3f250) at kerntrap+0x19d sys/arch/amd64/amd64/trap.c:528 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b _copyin() at _copyin+0x5b ffs_write(ffff800042c3f490) at ffs_write+0x769 sys/ufs/ffs/ffs_vnops.c:359 end trace frame: 0xffff800042c3f500, count: 0 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic *cpu1: kernel diagnostic assertion "dupe == NULL" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_page.c", line 144 ddb{1}> trace db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:438 panic(ffffffff83447ce1) at panic+0x1e5 sys/kern/subr_prf.c:198 __assert(ffffffff8348ab42,ffffffff833e26e6,90,ffffffff8342884d) at __assert+0x29 sys/kern/subr_prf.c:-1 uvm_pagealloc_pg(fffffd800952da20,fffffd806caab858,1fa51000,0) at uvm_pagealloc_pg+0x54b sys/uvm/uvm_page.c:707 uvm_pagealloc(fffffd806caab858,1fa51000,0,3) at uvm_pagealloc+0x252 sys/uvm/uvm_page.c:913 pmap_get_ptp(fffffd806caab800,7e9450666000) at pmap_get_ptp+0x1d0 sys/arch/amd64/amd64/pmap.c:-1 pmap_enter(fffffd806caab800,7e9450666000,6f988000,3,21) at pmap_enter+0x38a sys/arch/amd64/amd64/pmap.c:-1 uvm_fault_upper(ffff800042c3f0a0,ffff800042c3f0d8,ffff800042c3efa0) at uvm_fault_upper+0x338 sys/uvm/uvm_fault.c:1131 uvm_fault(fffffd807597f018,7e9450666000,0,1) at uvm_fault+0x198 sys/uvm/uvm_fault.c:635 kpageflttrap(ffff800042c3f250,7e9450666bc8) at kpageflttrap+0x2f4 sys/arch/amd64/amd64/trap.c:283 kerntrap(ffff800042c3f250) at kerntrap+0x19d sys/arch/amd64/amd64/trap.c:528 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b _copyin() at _copyin+0x5b ffs_write(ffff800042c3f490) at ffs_write+0x769 sys/ufs/ffs/ffs_vnops.c:359 VOP_WRITE(fffffd806ac198b8,ffff800042c3f528,1,fffffd80097fd478) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 vn_rdwr(1,fffffd806ac198b8,7e9450666bc8,b0,3e0,0,df6b1e0541fc299,ffff800042c3f9b0,0,b0) at vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 coredump_write(ffff800042c3f9b0,0,7e9450666bc8,b0,0) at coredump_write+0x101 sys/kern/kern_sig.c:2040 coredump_notes_elf(ffff8000fffe7ca8,ffff800042c3f9b0,ffff800042c3f7b8) at coredump_notes_elf+0x553 sys/kern/exec_elf.c:1483 coredump_elf(ffff8000fffe7ca8,ffff800042c3f9b0) at coredump_elf+0x10c sys/kern/exec_elf.c:1184 coredump(ffff8000fffe7ca8) at coredump+0x73a sys/kern/kern_sig.c:2011 sigexit(ffff8000fffe7ca8,5) at sigexit+0xd7 sys/kern/kern_sig.c:1833 trapsignal(ffff8000fffe7ca8,5,1,1,46aa5fe458b) at trapsignal+0x87e usertrap(ffff800042c3fc20) at usertrap+0x500 sys/arch/amd64/amd64/trap.c:653 recall_trap() at recall_trap+0x8 end of kernel end trace frame: 0x7e9450666b40, count: -24 ddb{1}> show registers rdi 0 rsi 0x1 rbp 0xffff800042c3ebd0 rbx 0xffff8000299bee07 rdx 0 rcx 0xffff8000fffe7ca8 rax 0xffff8000299bdff0 r8 0x101010101010101 r9 0x8080808080808080 r10 0xd47d84f791cb3c0 r11 0xb00f6aa71137b473 r12 0xffff8000299bec08 r13 0 r14 0 r15 0x1 rip 0xffffffff8307c625 db_enter+0x25 cs 0x8 rflags 0x246 rsp 0xffff800042c3ebc0 ss 0 db_enter+0x25: addq $0x8,%rsp ddb{1}> show proc PROC (syz-executor) tid=8403 pid=86436 tcnt=1 stat=onproc flags process=802 proc=2000 runpri=50, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000fffe6a80,0xffffffff83ac6cc8 process=0xffff8000ffff1cf0 user=0xffff800042c3a000, vmspace=0xfffffd807597f018 estcpu=36, cpticks=2, pctcpu=0.0, user=0, sys=1, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND *86436 8403 46193 0 7 0x2802 syz-executor 95566 470583 62962 0 3 0x2 clonelk ifconfig 62962 224754 27790 0 3 0x10008a sigsusp sh 27790 57358 77112 0 3 0x80 wait syz-executor 77112 37188 46193 0 3 0x82 wait syz-executor 3167 259497 66620 0 3 0x2 clonelk ifconfig 66620 74621 71263 0 3 0x10008a sigsusp sh 71263 59089 17332 0 3 0x80 wait syz-executor 49174 280854 7863 0 3 0x2 clonelk ifconfig 7863 428181 13617 0 3 0x10008a sigsusp sh 13617 464778 44726 0 3 0x80 wait syz-executor 19230 210899 93915 0 3 0x2 clonelk ifconfig 17332 497823 46193 0 3 0x82 wait syz-executor 19599 300068 34938 0 3 0x2 clonelk ifconfig 44726 42861 46193 0 3 0x82 wait syz-executor 93915 31460 93379 0 3 0x10008a sigsusp sh 93379 341202 31463 0 3 0x80 wait syz-executor 63904 203492 73361 0 3 0x2 clonelk ifconfig 34938 9330 51099 0 3 0x10008a sigsusp sh 73361 82157 26806 0 3 0x10008a sigsusp sh 51099 27912 32286 0 3 0x80 wait syz-executor 31463 515606 46193 0 3 0x82 wait syz-executor 26806 192859 17195 0 3 0x80 wait syz-executor 32286 336670 46193 0 3 0x82 wait syz-executor 17195 290766 46193 0 3 0x82 wait syz-executor 46193 244751 18768 0 3 0x82 nanoslp syz-executor 18768 478995 57436 0 3 0x10008a sigsusp ksh 57436 474410 58520 0 3 0x98 kqread sshd-session 58520 120423 54582 0 3 0x92 kqread sshd-session 51817 186166 1 0 3 0x100083 ttyin getty 54582 444796 1 0 3 0x88 kqread sshd 52802 186429 75267 73 3 0x1100090 kqread syslogd 75267 335291 1 0 3 0x100082 sbwait syslogd 22279 391853 1 0 3 0x100080 kqread resolvd 58329 283952 49893 77 3 0x100092 kqread dhcpleased 24242 118140 49893 77 3 0x100092 kqread dhcpleased 49893 417123 1 0 3 0x80 kqread dhcpleased 77444 437576 0 0 3 0x14200 bored smr 7104 121709 0 0 3 0x14200 pgzero zerothread 64045 256095 0 0 3 0x14200 aiodoned aiodoned 690 138161 0 0 3 0x14200 syncer update 257 484883 0 0 3 0x14200 cleaner cleaner 10941 17492 0 0 7 0x14200 reaper 22216 191092 0 0 3 0x14200 pgdaemon pagedaemon 85148 35457 0 0 3 0x14200 bored viomb 54158 402674 0 0 3 0x40014200 acpi0 acpi0 42129 150821 0 0 3 0x40014200 idle1 25969 376187 0 0 3 0x14200 bored softnet1 68982 79673 0 0 3 0x14200 bored softnet0 63283 448450 0 0 3 0x14200 smrbar systqmp 39331 33269 0 0 3 0x14200 bored systq 92416 348858 0 0 3 0x14200 tmoslp softclockmp 50308 373252 0 0 3 0x40014200 tmoslp softclock 71144 321358 0 0 3 0x40014200 idle0 1 38168 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks CPU 1: exclusive mutex &pmap->pm_mtx r = 0 (0xfffffd806caab810) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 mtx_enter+0x4b4 sys/kern/kern_lock.c:487 #2 pmap_enter+0x24b rcr3 sys/arch/amd64/compile/SYZKALLER/obj/machine/cpufunc.h:139 [inline] #2 pmap_enter+0x24b pmap_map_ptes sys/arch/amd64/amd64/pmap.c:437 [inline] #2 pmap_enter+0x24b sys/arch/amd64/amd64/pmap.c:2767 #3 uvm_fault_upper+0x338 sys/uvm/uvm_fault.c:1131 #4 uvm_fault+0x198 sys/uvm/uvm_fault.c:635 #5 kpageflttrap+0x2f4 sys/arch/amd64/amd64/trap.c:283 #6 kerntrap+0x19d sys/arch/amd64/amd64/trap.c:528 #7 alltraps_kern_meltdown+0x7b #8 _copyin+0x5b #9 ffs_write+0x769 sys/ufs/ffs/ffs_vnops.c:359 #10 VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 #11 vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 #12 coredump_write+0x101 sys/kern/kern_sig.c:2040 #13 coredump_notes_elf+0x553 sys/kern/exec_elf.c:1483 #14 coredump_elf+0x10c sys/kern/exec_elf.c:1184 #15 coredump+0x73a sys/kern/kern_sig.c:2011 #16 sigexit+0xd7 sys/kern/kern_sig.c:1833 #17 trapsignal+0x87e #18 usertrap+0x500 sys/arch/amd64/amd64/trap.c:653 Process 86436 (syz-executor) thread 0xffff8000fffe7ca8 (8403) shared rwlock amaplk r = 0 (0xfffffd806b1f4e18) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 rw_do_enter_read+0x3e8 sys/kern/kern_rwlock.c:413 #2 uvm_fault_check+0x8a9 sys/uvm/uvm_fault.c:834 #3 uvm_fault+0x106 sys/uvm/uvm_fault.c:627 #4 kpageflttrap+0x2f4 sys/arch/amd64/amd64/trap.c:283 #5 kerntrap+0x19d sys/arch/amd64/amd64/trap.c:528 #6 alltraps_kern_meltdown+0x7b #7 _copyin+0x5b #8 ffs_write+0x769 sys/ufs/ffs/ffs_vnops.c:359 #9 VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 #10 vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 #11 coredump_write+0x101 sys/kern/kern_sig.c:2040 #12 coredump_notes_elf+0x553 sys/kern/exec_elf.c:1483 #13 coredump_elf+0x10c sys/kern/exec_elf.c:1184 #14 coredump+0x73a sys/kern/kern_sig.c:2011 #15 sigexit+0xd7 sys/kern/kern_sig.c:1833 #16 trapsignal+0x87e #17 usertrap+0x500 sys/arch/amd64/amd64/trap.c:653 #18 recall_trap+0x8 shared rwlock vmmaplk r = 0 (0xfffffd807597f118) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 rw_do_enter_read+0x3e8 sys/kern/kern_rwlock.c:413 #2 uvmfault_lookup+0x122 sys/uvm/uvm_fault.c:1880 #3 uvm_fault_check+0x4f sys/uvm/uvm_fault.c:693 #4 uvm_fault+0x106 sys/uvm/uvm_fault.c:627 #5 kpageflttrap+0x2f4 sys/arch/amd64/amd64/trap.c:283 #6 kerntrap+0x19d sys/arch/amd64/amd64/trap.c:528 #7 alltraps_kern_meltdown+0x7b #8 _copyin+0x5b #9 ffs_write+0x769 sys/ufs/ffs/ffs_vnops.c:359 #10 VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 #11 vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 #12 coredump_write+0x101 sys/kern/kern_sig.c:2040 #13 coredump_notes_elf+0x553 sys/kern/exec_elf.c:1483 #14 coredump_elf+0x10c sys/kern/exec_elf.c:1184 #15 coredump+0x73a sys/kern/kern_sig.c:2011 #16 sigexit+0xd7 sys/kern/kern_sig.c:1833 #17 trapsignal+0x87e #18 usertrap+0x500 sys/arch/amd64/amd64/trap.c:653 exclusive rrwlock inode r = 0 (0xfffffd806ac527c8) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320 #2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621 #3 VOP_LOCK+0xbd sys/kern/vfs_vops.c:527 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570 #5 vn_rdwr+0xd1 sys/kern/vfs_vnops.c:320 #6 coredump_write+0x101 sys/kern/kern_sig.c:2040 #7 coredump_notes_elf+0x553 sys/kern/exec_elf.c:1483 #8 coredump_elf+0x10c sys/kern/exec_elf.c:1184 #9 coredump+0x73a sys/kern/kern_sig.c:2011 #10 sigexit+0xd7 sys/kern/kern_sig.c:1833 #11 trapsignal+0x87e #12 usertrap+0x500 sys/arch/amd64/amd64/trap.c:653 #13 recall_trap+0x8 exclusive kernel_lock &kernel_lock r = 0 (0xffffffff83ac0c00) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 __mp_acquire_count+0x58 sys/kern/kern_lock.c:-1 #2 coredump_write+0xb8 sys/kern/kern_sig.c:2039 #3 coredump_notes_elf+0x553 sys/kern/exec_elf.c:1483 #4 coredump_elf+0x10c sys/kern/exec_elf.c:1184 #5 coredump+0x73a sys/kern/kern_sig.c:2011 #6 sigexit+0xd7 sys/kern/kern_sig.c:1833 #7 trapsignal+0x87e #8 usertrap+0x500 sys/arch/amd64/amd64/trap.c:653 #9 recall_trap+0x8 exclusive mutex &pmap->pm_mtx r = 0 (0xfffffd806caab810) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 mtx_enter+0x4b4 sys/kern/kern_lock.c:487 #2 pmap_enter+0x24b rcr3 sys/arch/amd64/compile/SYZKALLER/obj/machine/cpufunc.h:139 [inline] #2 pmap_enter+0x24b pmap_map_ptes sys/arch/amd64/amd64/pmap.c:437 [inline] #2 pmap_enter+0x24b sys/arch/amd64/amd64/pmap.c:2767 #3 uvm_fault_upper+0x338 sys/uvm/uvm_fault.c:1131 #4 uvm_fault+0x198 sys/uvm/uvm_fault.c:635 #5 kpageflttrap+0x2f4 sys/arch/amd64/amd64/trap.c:283 #6 kerntrap+0x19d sys/arch/amd64/amd64/trap.c:528 #7 alltraps_kern_meltdown+0x7b #8 _copyin+0x5b #9 ffs_write+0x769 sys/ufs/ffs/ffs_vnops.c:359 #10 VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 #11 vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 #12 coredump_write+0x101 sys/kern/kern_sig.c:2040 #13 coredump_notes_elf+0x553 sys/kern/exec_elf.c:1483 #14 coredump_elf+0x10c sys/kern/exec_elf.c:1184 #15 coredump+0x73a sys/kern/kern_sig.c:2011 #16 sigexit+0xd7 sys/kern/kern_sig.c:1833 #17 trapsignal+0x87e #18 usertrap+0x500 sys/arch/amd64/amd64/trap.c:653 Process 10941 (reaper) thread 0xffff8000ffffd9f8 (17492) exclusive rwlock kmmaplk r = 0 (0xffffffff83aca590) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320 #2 vm_map_lock_ln+0x12e sys/uvm/uvm_map.c:5171 #3 uvm_unmap+0x7d sys/uvm/uvm_map.c:1798 #4 km_free+0x87 sys/uvm/uvm_km.c:714 #5 uvm_uarea_free+0x4f sys/uvm/uvm_glue.c:304 #6 reaper+0x1ca sys/kern/kern_exit.c:493 #7 proc_trampoline+0x10 Process 63283 (systqmp) thread 0xffff8000ffffe000 (448450) shared rwlock systqmp r = 0 (0xffffffff83934b78) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 taskq_thread+0x12a sys/kern/kern_task.c:442 #2 proc_trampoline+0x10 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11071 12015K 12034K 166960K 12173 0 pcb 17 14K 16K 166960K 19 0 rtable 171 4K 7K 166960K 372 0 pf 25 16K 16K 166960K 31 0 ifaddr 30 5K 7K 166960K 44 0 ifgroup 38 1K 2K 166960K 50 0 sysctl 4 1K 9K 166960K 9 0 counters 64 36K 37K 166960K 70 0 ioctlops 0 0K 2K 166960K 40 0 iov 0 0K 16K 166960K 11 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1338 84K 84K 166960K 1566 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 8 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 15 0 dirhash 12 2K 3K 166960K 24 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 32 118K 129K 166960K 527 0 sigio 0 0K 0K 166960K 4 0 proc 100 196K 196K 166960K 561 0 subproc 99 6K 7K 166960K 261 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 70 0 in_multi 66 4K 7K 166960K 110 0 ether_multi 1 0K 0K 166960K 2 0 mrt 1 0K 0K 166960K 18 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 223 996K 996K 166960K 223 0 exec 0 0K 1K 166960K 491 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 241 189K 221K 166960K 6201 0 UVM aobj 16 2K 2K 166960K 17 0 pinsyscall 53 106K 113K 166960K 1687 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 33 0 NDP 8 0K 2K 166960K 27 0 temp 59 9078K 9141K 166960K 5798 0 kqueue 13 20K 30K 166960K 80 0 SYN cache 2 16K 16K 166960K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 26 0 0 1 0 1 1 0 8 0 rtpcb 120 65 0 62 1 0 1 1 0 8 0 rtentry 176 113 0 36 6 0 6 6 0 8 1 unpcb 144 332 0 316 1 0 1 1 0 8 0 syncache 336 9 0 9 1 0 1 1 0 8 1 tcpqe 32 2 0 2 1 0 1 1 0 8 1 tcpcb 736 300 0 294 10 1 9 10 0 8 7 arp 136 18 0 6 1 0 1 1 0 8 0 ipq 40 3 0 0 1 0 1 1 0 8 0 ipqe 40 7 0 2 1 0 1 1 0 8 0 inpcb 328 561 0 546 13 3 10 13 0 8 8 nd6 152 26 0 11 1 0 1 1 0 8 0 kcovpl 48 29 0 18 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 456 0 92 29 0 29 29 0 8 2 art_table 40 457 0 92 5 0 5 5 0 8 0 art_node 32 113 0 43 1 0 1 1 0 8 0 sysvmsgpl 40 6 0 4 1 0 1 1 0 8 0 semupl 112 1 0 1 1 0 1 1 0 8 1 semapl 112 13 0 3 1 0 1 1 0 8 0 shmpl 112 14 0 1 1 0 1 1 0 8 0 dirhash 1024 25 0 8 3 0 3 3 0 8 0 dino2pl 256 2012 0 525 94 1 93 93 0 8 0 ffsino 296 2012 0 525 116 1 115 115 0 8 0 nchpl 144 2608 0 898 64 0 64 64 0 8 0 vnodes 216 2282 0 0 127 0 127 127 0 8 0 namei 1024 8627 0 8626 1 0 1 1 0 8 0 percpumem 16 50 0 3 1 0 1 1 0 8 0 kstatmem 264 24 0 6 2 0 2 2 0 8 0 scxspl 216 9081 0 9081 11 7 4 8 1 8 4 plimitpl 152 239 0 213 2 0 2 2 0 8 0 sigapl 424 790 0 729 7 0 7 7 0 8 0 knotepl 120 331 0 0 11 0 11 11 0 8 0 kqueuepl 224 106 0 97 1 0 1 1 0 8 0 pipepl 344 201 0 172 4 0 4 4 0 8 0 fdescpl 528 774 0 730 4 0 4 4 0 8 0 filepl 160 3922 0 3681 18 0 18 18 0 8 6 lockfpl 104 96 0 93 1 0 1 1 0 8 0 lockfspl 48 41 0 38 1 0 1 1 0 8 0 sessionpl 144 48 0 28 1 0 1 1 0 8 0 pgrppl 48 89 0 62 1 0 1 1 0 8 0 ucredpl 104 613 0 595 1 0 1 1 0 8 0 zombiepl 144 735 0 729 1 0 1 1 0 8 0 processpl 1232 790 0 729 5 0 5 5 0 8 0 procpl 664 1322 0 1261 7 1 6 7 0 8 0 sosppl 176 1 0 1 1 0 1 1 0 8 1 sockpl 752 961 0 927 18 6 12 18 0 8 8 mcl64k 65536 5 0 0 1 0 1 1 0 8 0 mcl16k 16384 2 0 0 1 0 1 1 0 8 0 mcl12k 12288 1 0 0 1 0 1 1 0 8 0 mcl8k 8192 8 0 0 1 0 1 1 0 8 0 mcl4k 4096 110 0 0 14 0 14 14 0 8 0 mcl2k 2048 20 0 0 3 0 3 3 0 8 0 mtagpl 96 1 0 0 1 0 1 1 0 8 0 mbufpl 256 317 0 0 20 0 20 20 0 8 0 bufpl 280 2775 0 102 191 0 191 191 0 8 0 anonpl 32 10489 0 0 85 0 85 85 0 246 0 amapchunkpl 152 19334 0 18886 36 3 33 36 0 158 8 amappl16 200 3672 0 3653 21 8 13 17 0 8 8 amappl15 192 6 0 6 1 1 0 1 0 8 0 amappl14 184 423 0 416 1 0 1 1 0 8 0 amappl13 176 124 0 114 1 0 1 1 0 8 0 amappl12 168 1016 0 986 2 0 2 2 0 8 0 amappl11 160 14 0 14 1 1 0 1 0 8 0 amappl10 152 58 0 48 1 0 1 1 0 8 0 amappl9 144 273 0 273 1 1 0 1 0 8 0 amappl8 136 114 0 107 1 0 1 1 0 8 0 amappl7 128 150 0 139 1 0 1 1 0 8 0 amappl6 120 164 0 150 1 0 1 1 0 8 0 amappl5 112 104 0 96 1 0 1 1 0 8 0 amappl4 104 284 0 267 1 0 1 1 0 8 0 amappl3 96 3585 0 3485 5 1 4 4 0 8 0 amappl2 88 586 0 524 2 0 2 2 0 8 0 amappl1 80 12557 0 11935 16 0 16 16 0 8 1 amappl 88 5380 0 5211 5 0 5 5 0 92 0 uvmvnodes 80 111 0 0 3 0 3 3 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 16 0 1 1 0 1 1 0 8 0 uaddrrnd 24 774 0 730 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 774 0 730 1 0 1 1 0 8 0 vmmpekpl 168 8680 0 8612 4 0 4 4 0 8 0 vmmpepl 168 60516 0 58483 113 2 111 113 0 357 17 vmsppl 488 773 0 730 8 2 6 6 0 8 0 rwobjpl 80 20761 0 19639 28 2 26 28 0 8 0 pdppl 4096 1555 0 1460 143 44 99 99 0 8 4 pvpl 32 17564 0 0 142 0 142 142 0 265 0 pmappl 256 773 0 730 4 1 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 329 0 49 8 0 8 8 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffffffff83912ff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xb kd_curproc sys/dev/kcov.c:580 [inline] __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xb sys/dev/kcov.c:153 softintr_dispatch(0) at softintr_dispatch+0x125 sys/kern/kern_softintr.c:83 dosoftint(0) at dosoftint+0x54 sys/arch/amd64/amd64/intr.c:862 Xsoftclock() at Xsoftclock+0x27 __mp_lock(ffffffff83ac0400) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:142 [inline] __mp_lock(ffffffff83ac0400) at __mp_lock+0x192 sys/kern/kern_lock.c:173 reaper(ffff8000ffffd9f8) at reaper+0x211 sys/kern/kern_exit.c:505 end trace frame: 0x0, count: 6 ddb{0}> trace x86_ipi_db(ffffffff83912ff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xb kd_curproc sys/dev/kcov.c:580 [inline] __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xb sys/dev/kcov.c:153 softintr_dispatch(0) at softintr_dispatch+0x125 sys/kern/kern_softintr.c:83 dosoftint(0) at dosoftint+0x54 sys/arch/amd64/amd64/intr.c:862 Xsoftclock() at Xsoftclock+0x27 __mp_lock(ffffffff83ac0400) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:142 [inline] __mp_lock(ffffffff83ac0400) at __mp_lock+0x192 sys/kern/kern_lock.c:173 reaper(ffff8000ffffd9f8) at reaper+0x211 sys/kern/kern_exit.c:505 end trace frame: 0x0, count: -9 ddb{0}> machine ddbcpu 1 Stopped at db_enter+0x25: addq $0x8,%rsp db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:438 panic(ffffffff83447ce1) at panic+0x1e5 sys/kern/subr_prf.c:198 __assert(ffffffff8348ab42,ffffffff833e26e6,90,ffffffff8342884d) at __assert+0x29 sys/kern/subr_prf.c:-1 uvm_pagealloc_pg(fffffd800952da20,fffffd806caab858,1fa51000,0) at uvm_pagealloc_pg+0x54b sys/uvm/uvm_page.c:707 uvm_pagealloc(fffffd806caab858,1fa51000,0,3) at uvm_pagealloc+0x252 sys/uvm/uvm_page.c:913 pmap_get_ptp(fffffd806caab800,7e9450666000) at pmap_get_ptp+0x1d0 sys/arch/amd64/amd64/pmap.c:-1 pmap_enter(fffffd806caab800,7e9450666000,6f988000,3,21) at pmap_enter+0x38a sys/arch/amd64/amd64/pmap.c:-1 uvm_fault_upper(ffff800042c3f0a0,ffff800042c3f0d8,ffff800042c3efa0) at uvm_fault_upper+0x338 sys/uvm/uvm_fault.c:1131 uvm_fault(fffffd807597f018,7e9450666000,0,1) at uvm_fault+0x198 sys/uvm/uvm_fault.c:635 kpageflttrap(ffff800042c3f250,7e9450666bc8) at kpageflttrap+0x2f4 sys/arch/amd64/amd64/trap.c:283 kerntrap(ffff800042c3f250) at kerntrap+0x19d sys/arch/amd64/amd64/trap.c:528 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b _copyin() at _copyin+0x5b ffs_write(ffff800042c3f490) at ffs_write+0x769 sys/ufs/ffs/ffs_vnops.c:359 end trace frame: 0xffff800042c3f500, count: 0 ddb{1}> trace db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:438 panic(ffffffff83447ce1) at panic+0x1e5 sys/kern/subr_prf.c:198 __assert(ffffffff8348ab42,ffffffff833e26e6,90,ffffffff8342884d) at __assert+0x29 sys/kern/subr_prf.c:-1 uvm_pagealloc_pg(fffffd800952da20,fffffd806caab858,1fa51000,0) at uvm_pagealloc_pg+0x54b sys/uvm/uvm_page.c:707 uvm_pagealloc(fffffd806caab858,1fa51000,0,3) at uvm_pagealloc+0x252 sys/uvm/uvm_page.c:913 pmap_get_ptp(fffffd806caab800,7e9450666000) at pmap_get_ptp+0x1d0 sys/arch/amd64/amd64/pmap.c:-1 pmap_enter(fffffd806caab800,7e9450666000,6f988000,3,21) at pmap_enter+0x38a sys/arch/amd64/amd64/pmap.c:-1 uvm_fault_upper(ffff800042c3f0a0,ffff800042c3f0d8,ffff800042c3efa0) at uvm_fault_upper+0x338 sys/uvm/uvm_fault.c:1131 uvm_fault(fffffd807597f018,7e9450666000,0,1) at uvm_fault+0x198 sys/uvm/uvm_fault.c:635 kpageflttrap(ffff800042c3f250,7e9450666bc8) at kpageflttrap+0x2f4 sys/arch/amd64/amd64/trap.c:283 kerntrap(ffff800042c3f250) at kerntrap+0x19d sys/arch/amd64/amd64/trap.c:528 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b _copyin() at _copyin+0x5b ffs_write(ffff800042c3f490) at ffs_write+0x769 sys/ufs/ffs/ffs_vnops.c:359 VOP_WRITE(fffffd806ac198b8,ffff800042c3f528,1,fffffd80097fd478) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 vn_rdwr(1,fffffd806ac198b8,7e9450666bc8,b0,3e0,0,df6b1e0541fc299,ffff800042c3f9b0,0,b0) at vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 coredump_write(ffff800042c3f9b0,0,7e9450666bc8,b0,0) at coredump_write+0x101 sys/kern/kern_sig.c:2040 coredump_notes_elf(ffff8000fffe7ca8,ffff800042c3f9b0,ffff800042c3f7b8) at coredump_notes_elf+0x553 sys/kern/exec_elf.c:1483 coredump_elf(ffff8000fffe7ca8,ffff800042c3f9b0) at coredump_elf+0x10c sys/kern/exec_elf.c:1184 coredump(ffff8000fffe7ca8) at coredump+0x73a sys/kern/kern_sig.c:2011 sigexit(ffff8000fffe7ca8,5) at sigexit+0xd7 sys/kern/kern_sig.c:1833 trapsignal(ffff8000fffe7ca8,5,1,1,46aa5fe458b) at trapsignal+0x87e usertrap(ffff800042c3fc20) at usertrap+0x500 sys/arch/amd64/amd64/trap.c:653 recall_trap() at recall_trap+0x8 end of kernel end trace frame: 0x7e9450666b40, count: -24