panic: vop_genperainic:c _ b a d kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/kern/kern_fork.c", line 679 Stopped at db_enter+0x1c: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *483141 94899 32767 0x10 0x4000000 1 syz-executor.4 445922 72147 32767 0x10 0 0 syz-executor.7 db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff827a2af5) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff82820418,ffffffff827dec6e,2a7,ffffffff827d705d) at __assert+0x29 sys/kern/subr_prf.c:157 proc_trampoline_mp() at proc_trampoline_mp+0x135 end trace frame: 0x0, count: 11 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic *cpu0: vop_generic_badop cpu1: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/kern/kern_fork.c", line 679 ddb{1}> trace db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff827a2af5) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff82820418,ffffffff827dec6e,2a7,ffffffff827d705d) at __assert+0x29 sys/kern/subr_prf.c:157 proc_trampoline_mp() at proc_trampoline_mp+0x135 end trace frame: 0x0, count: -4 ddb{1}> show registers rdi 0 rsi 0x1 rbp 0xffff80002615d710 rbx 0xffff800020d59ba7 rdx 0 rcx 0xffff800021224ac0 rax 0xffff800020d58ff0 r8 0x101010101010101 r9 0x8080808080808080 r10 0x4d98c59194f115e1 r11 0x151b12e18f78f8d3 r12 0xffff800020d599a8 r13 0 r14 0xffffffff82ba69a8 cpu_info_full_primary+0x29a8 r15 0x1 rip 0xffffffff81521d0c db_enter+0x1c cs 0x8 rflags 0x246 rsp 0xffff80002615d700 ss 0x10 db_enter+0x1c: addq $0x8,%rsp ddb{1}> show proc PROC (syz-executor.4) tid=483141 pid=94899 tcnt=2 stat=onproc flags process=10 proc=4000000 runpri=86, usrpri=86, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff800021238ff0,0xffffffff82cee750 process=0xffff8000212110d0 user=0xffff800026158000, vmspace=0xfffffd80745b2930 estcpu=36, cpticks=2, pctcpu=0.0, user=0, sys=2, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 94899 416608 41470 32767 2 0x10 syz-executor.4 *94899 483141 41470 32767 7 0x4000010 syz-executor.4 7146 177917 47044 32767 2 0x10 syz-executor.2 7146 435594 47044 32767 3 0x4000090 lockf syz-executor.2 98487 469296 56793 32767 3 0x90 piperd syz-executor.5 56793 269708 15553 0 3 0x82 wait syz-executor.5 41470 98631 38755 32767 3 0x90 nanoslp syz-executor.4 38755 320834 15553 0 3 0x82 wait syz-executor.4 98500 338538 25119 32767 3 0x90 nanoslp syz-executor.6 25119 479661 15553 0 3 0x82 wait syz-executor.6 81348 184152 5322 32767 3 0x90 nanoslp syz-executor.0 5322 453097 15553 0 3 0x82 wait syz-executor.0 53718 41592 0 0 3 0x14200 bored sosplice 72147 445922 52364 32767 7 0x10 syz-executor.7 52364 288770 15553 0 3 0x82 wait syz-executor.7 15514 241005 73518 32767 3 0x90 piperd syz-executor.3 73518 338422 15553 0 3 0x82 wait syz-executor.3 12528 466102 4191 32767 2 0x10 syz-executor.1 47044 447430 62570 32767 3 0x90 nanoslp syz-executor.2 62570 68128 15553 0 3 0x82 wait syz-executor.2 4191 46940 15553 0 3 0x82 wait syz-executor.1 15553 372569 80544 0 3 0x2000082 wait syz-fuzzer 15553 474352 80544 0 3 0x6000082 nanoslp syz-fuzzer 15553 243696 80544 0 3 0x6000082 thrsleep syz-fuzzer 15553 273174 80544 0 3 0x6000082 wait syz-fuzzer 15553 73876 80544 0 3 0x6000082 kqread syz-fuzzer 15553 274007 80544 0 3 0x6000082 wait syz-fuzzer 15553 355933 80544 0 3 0x6000082 wait syz-fuzzer 15553 375806 80544 0 3 0x6000082 wait syz-fuzzer 15553 249133 80544 0 3 0x6000082 wait syz-fuzzer 15553 138652 80544 0 3 0x6000082 thrsleep syz-fuzzer 15553 78739 80544 0 3 0x6000082 thrsleep syz-fuzzer 15553 31726 80544 0 3 0x6000082 thrsleep syz-fuzzer 15553 415446 80544 0 3 0x6000082 wait syz-fuzzer 15553 133200 80544 0 3 0x6000082 wait syz-fuzzer 15553 193013 80544 0 3 0x6000082 thrsleep syz-fuzzer 15553 314815 80544 0 3 0x6000082 thrsleep syz-fuzzer 80544 161761 63759 0 3 0x10008a sigsusp ksh 63759 308148 74618 0 3 0x9a kqread sshd 62440 24827 1 0 3 0x100083 ttyin getty 74618 325255 1 0 3 0x88 kqread sshd 15917 30448 65852 73 3 0x1100090 kqread syslogd 65852 391686 1 0 3 0x100082 netio syslogd 83741 441540 1 0 3 0x100080 kqread resolvd 33090 112100 50003 77 3 0x100092 kqread dhcpleased 20822 509822 50003 77 3 0x100092 kqread dhcpleased 50003 356902 1 0 3 0x80 kqread dhcpleased 74296 356280 0 0 3 0x14200 bored smr 93094 441632 0 0 2 0x14200 zerothread 23692 10934 0 0 3 0x14200 aiodoned aiodoned 19729 514981 0 0 3 0x14200 syncer update 75680 115670 0 0 3 0x14200 cleaner cleaner 52182 214957 0 0 3 0x14200 reaper reaper 22425 104776 0 0 3 0x14200 pgdaemon pagedaemon 34127 361264 0 0 3 0x14200 bored viomb 47978 20386 0 0 3 0x40014200 acpi0 acpi0 9480 421908 0 0 3 0x40014200 idle1 39152 175686 0 0 3 0x14200 bored softnet3 89199 98746 0 0 3 0x14200 bored softnet2 21543 346726 0 0 3 0x14200 bored softnet1 17654 336275 0 0 3 0x14200 bored softnet0 33633 261836 0 0 3 0x14200 bored systqmp 28236 262608 0 0 3 0x14200 bored systq 66343 143203 0 0 3 0x40014200 bored softclock 26310 53533 0 0 3 0x40014200 idle0 1 436367 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 98487 (syz-executor.5) thread 0xffff8000212382a8 (469296) exclusive rrwlock inode r = 0 (0xfffffd80653c66f8) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 ufs_ihashins+0x46 sys/ufs/ufs/ufs_ihash.c:140 #5 ffs_vget+0x141 sys/ufs/ffs/ffs_vfsops.c:1343 #6 ffs_inode_alloc+0x1c2 sys/ufs/ffs/ffs_alloc.c:394 #7 ufs_mkdir+0xf8 sys/ufs/ufs/ufs_vnops.c:1149 #8 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 #9 domkdirat+0x125 sys/kern/vfs_syscalls.c:3073 #10 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #10 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #11 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd80653c6098) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418 #6 namei+0x55a sys/kern/vfs_lookup.c:250 #7 domkdirat+0x79 sys/kern/vfs_syscalls.c:3058 #8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #9 Xsyscall+0x128 Process 72147 (syz-executor.7) thread 0xffff800021238000 (445922) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82c88068) #0 witness_lock+0x447 #1 __mp_acquire_count+0x48 sys/kern/kern_lock.c:227 #2 mi_switch+0x46b sys/kern/sched_bsd.c:470 #3 sleep_finish+0x19b sys/kern/kern_synch.c:414 #4 biowait+0x91 sys/kern/vfs_bio.c:1278 #5 bwrite+0x21c sys/kern/vfs_bio.c:769 #6 ffs_update+0x281 sys/ufs/ffs/ffs_inode.c:113 #7 ufs_mkdir+0x672 sys/ufs/ufs/ufs_vnops.c:1219 #8 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 #9 domkdirat+0x125 sys/kern/vfs_syscalls.c:3073 #10 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #10 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #11 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd80653c65e8) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vget+0x200 sys/kern/vfs_subr.c:676 #6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119 #7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1314 #8 ffs_inode_alloc+0x1c2 sys/ufs/ffs/ffs_alloc.c:394 #9 ufs_mkdir+0xf8 sys/ufs/ufs/ufs_vnops.c:1149 #10 VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 #11 domkdirat+0x125 sys/kern/vfs_syscalls.c:3073 #12 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #12 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #13 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd806bbff0a8) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418 #6 namei+0x55a sys/kern/vfs_lookup.c:250 #7 domkdirat+0x79 sys/kern/vfs_syscalls.c:3058 #8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #9 Xsyscall+0x128 Process 12528 (syz-executor.1) thread 0xffff800021225010 (466102) exclusive rrwlock inode r = 0 (0xfffffd806bbffd68) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vget+0x200 sys/kern/vfs_subr.c:676 #6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119 #7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1314 #8 ufs_lookup+0x13ba sys/ufs/ufs/ufs_lookup.c:487 #9 VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 #10 vfs_lookup+0x6e2 sys/kern/vfs_lookup.c:566 #11 namei+0x55a sys/kern/vfs_lookup.c:250 #12 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1847 #13 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #13 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #14 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd806d70af88) #0 witness_lock+0x447 #1 rw_enter+0x3c8 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x8c sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x84 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0xd5 sys/kern/vfs_lookup.c:418 #6 namei+0x55a sys/kern/vfs_lookup.c:250 #7 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1847 #8 syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] #8 syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 #9 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10191 6409K 6420K 78643K 11293 0 pcb 13 12K 14K 78643K 17 0 rtable 244 6K 7K 78643K 933 0 pf 29 8K 8K 78643K 45 0 ifaddr 44 15K 15K 78643K 80 0 ifgroup 50 2K 2K 78643K 82 0 sysctl 3 0K 0K 78643K 3 0 counters 60 35K 35K 78643K 76 0 ioctlops 0 0K 2K 78643K 377 0 iov 0 0K 32K 78643K 906 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1279 80K 80K 78643K 3065 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 106 0 VM map 2 1K 1K 78643K 2 0 sem 10 1K 1K 78643K 15 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 20 73K 113K 78643K 11990 0 sigio 0 0K 0K 78643K 1289 0 proc 56 78K 103K 78643K 1436 0 subproc 104 6K 6K 78643K 208 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 1K 78643K 5820 0 in_multi 99 7K 7K 78643K 264 0 ether_multi 1 0K 0K 78643K 5 0 mrt 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 85 387K 387K 78643K 85 0 exec 0 0K 1K 78643K 1824 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 410 93K 105K 78643K 120724 0 UVM aobj 131 4K 4K 78643K 131 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 643 0 NDP 11 0K 2K 78643K 51 0 temp 74 5920K 6048K 78643K 31965 0 kqueue 12 18K 26K 78643K 989 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 806 0 803 14 13 1 3 0 8 0 rtentry 112 221 0 106 4 0 4 4 0 8 0 unpcb 144 10655 0 10642 106 103 3 10 0 8 2 syncache 304 168 0 168 27 26 1 1 0 8 1 tcpqe 32 441 0 441 25 24 1 1 0 8 1 tcpcb 808 6518 0 6469 157 141 16 18 0 8 8 arp 120 36 0 17 1 0 1 1 0 8 0 ipq 40 28 0 28 7 7 0 1 0 8 0 ipqe 40 89 0 89 7 7 0 1 0 8 0 inpcb 368 20410 0 20356 192 175 17 21 0 8 7 nd6 136 68 0 40 2 0 2 2 0 8 0 kcovpl 48 16 0 8 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 961 0 498 36 6 30 31 0 8 0 art_table 32 962 0 498 4 0 4 4 0 8 0 art_node 16 220 0 115 1 0 1 1 0 8 0 sysvmsgpl 40 42 0 2 1 0 1 1 0 8 0 semupl 112 5 0 5 1 1 0 1 0 8 0 semapl 112 8 0 0 1 0 1 1 0 8 0 shmpl 112 128 0 0 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 16595 0 15149 91 0 91 91 0 8 0 ffsino 272 16595 0 15149 97 0 97 97 0 8 0 nchpl 144 33210 0 31571 63 0 63 63 0 8 0 uvmvnodes 80 6153 0 0 126 0 126 126 0 8 0 vnodes 216 6153 0 0 342 0 342 342 0 8 0 namei 1024 107202 0 107201 10 9 1 2 0 8 0 percpumem 16 51 0 8 1 0 1 1 0 8 0 kstatmem 264 38 0 16 2 0 2 2 0 8 0 scxspl 216 114786 0 114786 39 38 1 8 1 8 1 plimitpl 152 2167 0 2144 18 17 1 2 0 8 0 sigapl 424 12269 0 12218 7 0 7 7 0 8 0 futexpl 64 99811 0 99811 7 6 1 1 0 8 1 knotepl 120 830 0 0 13 0 13 13 0 8 0 kqueuepl 216 2519 0 2511 41 40 1 5 0 8 0 pipepl 320 3820 0 3792 88 80 8 8 0 8 5 fdescpl 496 12251 0 12220 7 2 5 6 0 8 0 filepl 152 83129 0 82894 176 160 16 22 0 8 6 lockfpl 104 1668 0 1664 2 1 1 2 0 8 0 lockfspl 48 472 0 469 1 0 1 1 0 8 0 sessionpl 144 31 0 15 1 0 1 1 0 8 0 pgrppl 48 251 0 235 1 0 1 1 0 8 0 ucredpl 104 9759 0 9741 1 0 1 1 0 8 0 zombiepl 144 12220 0 12218 1 0 1 1 0 8 0 processpl 1072 12269 0 12218 4 0 4 4 0 8 0 procpl 680 34001 0 33933 34 27 7 8 0 8 0 sosppl 168 196 0 191 17 16 1 1 0 8 0 sockpl 488 32506 0 32437 555 529 26 39 0 8 12 mcl64k 65536 22 0 0 3 1 2 3 0 8 0 mcl16k 16384 25 0 0 4 1 3 3 0 8 0 mcl12k 12288 25 0 0 2 0 2 2 0 8 0 mcl9k 9216 26 0 0 2 0 2 2 0 8 0 mcl8k 8192 17 0 0 3 0 3 3 0 8 0 mcl4k 4096 78 0 0 6 2 4 4 0 8 0 mcl2k2 2112 8 0 0 1 0 1 1 0 8 0 mcl2k 2048 475 0 0 44 23 21 44 0 8 1 mtagpl 96 10 0 0 1 0 1 1 0 8 0 mbufpl 256 1931 0 0 104 1 103 103 0 8 0 bufpl 288 25385 0 19059 454 2 452 453 0 8 0 anonpl 24 1331694 0 1320646 190 94 96 121 0 186 0 amapchunkpl 152 386332 0 385531 138 99 39 56 0 158 1 amappl16 200 29387 0 29093 168 151 17 29 0 8 1 amappl15 192 11 0 11 2 2 0 1 0 8 0 amappl14 184 185 0 169 2 1 1 2 0 8 0 amappl13 176 18 0 18 4 4 0 1 0 8 0 amappl12 168 13021 0 12988 2 0 2 2 0 8 0 amappl11 160 63 0 51 1 0 1 1 0 8 0 amappl10 152 52 0 36 1 0 1 1 0 8 0 amappl9 144 463 0 462 1 0 1 1 0 8 0 amappl8 136 708 0 527 7 0 7 7 0 8 0 amappl7 128 124 0 108 2 0 2 2 0 8 0 amappl6 120 432 0 409 2 1 1 2 0 8 0 amappl5 112 460 0 451 1 0 1 1 0 8 0 amappl4 104 935 0 890 2 0 2 2 0 8 0 amappl3 96 74590 0 74513 6 3 3 4 0 8 0 amappl2 88 13013 0 12939 3 1 2 3 0 8 0 amappl1 80 51009 0 50494 22 10 12 22 0 8 0 amappl 88 119714 0 119482 8 1 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 130 0 0 3 0 3 3 0 8 0 uaddrrnd 24 12251 0 12220 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 12251 0 12220 1 0 1 1 0 8 0 vmmpekpl 168 103161 0 103101 5 1 4 4 0 8 0 vmmpepl 168 714304 0 711996 274 160 114 131 0 357 2 vmsppl 464 12250 0 12220 7 2 5 6 0 8 0 rwobjpl 56 187365 0 179681 128 17 111 113 0 8 0 pdppl 4096 24510 0 24440 482 400 82 90 0 8 12 pvpl 32 3806205 0 3789169 491 322 169 340 0 265 0 pmappl 248 12250 0 12220 4 1 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1724 0 790 28 0 28 28 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp x86_ipi_db(ffffffff82ba5ff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x1c kd_curproc sys/dev/kcov.c:588 [inline] __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x1c sys/dev/kcov.c:158 __mp_lock(ffffffff82c87e60) at __mp_lock+0x133 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82c87e60) at __mp_lock+0x133 sys/kern/kern_lock.c:147 softintr_dispatch(0) at softintr_dispatch+0x52 sys/arch/amd64/amd64/softintr.c:88 Xsoftclock() at Xsoftclock+0x27 cnputc(64) at cnputc+0x4f sys/dev/cons.c:218 db_putchar(64) at db_putchar+0x3fc sys/ddb/db_output.c:155 kprintf() at kprintf+0x20fc sys/kern/subr_prf.c:1064 db_printf(ffffffff82825426) at db_printf+0x89 sys/kern/subr_prf.c:498 panic(ffffffff82794ff4) at panic+0xdb sys/kern/subr_prf.c:216 vop_generic_badop(ffff80002e429618) at vop_generic_badop+0x1f sys/kern/vfs_default.c:133 VOP_STRATEGY(fffffd8068346450,fffffd805bb4fd80) at VOP_STRATEGY+0x9f sys/kern/vfs_vops.c:628 end trace frame: 0xffff80002e4296c0, count: 0 ddb{0}> trace x86_ipi_db(ffffffff82ba5ff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x1c kd_curproc sys/dev/kcov.c:588 [inline] __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x1c sys/dev/kcov.c:158 __mp_lock(ffffffff82c87e60) at __mp_lock+0x133 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82c87e60) at __mp_lock+0x133 sys/kern/kern_lock.c:147 softintr_dispatch(0) at softintr_dispatch+0x52 sys/arch/amd64/amd64/softintr.c:88 Xsoftclock() at Xsoftclock+0x27 cnputc(64) at cnputc+0x4f sys/dev/cons.c:218 db_putchar(64) at db_putchar+0x3fc sys/ddb/db_output.c:155 kprintf() at kprintf+0x20fc sys/kern/subr_prf.c:1064 db_printf(ffffffff82825426) at db_printf+0x89 sys/kern/subr_prf.c:498 panic(ffffffff82794ff4) at panic+0xdb sys/kern/subr_prf.c:216 vop_generic_badop(ffff80002e429618) at vop_generic_badop+0x1f sys/kern/vfs_default.c:133 VOP_STRATEGY(fffffd8068346450,fffffd805bb4fd80) at VOP_STRATEGY+0x9f sys/kern/vfs_vops.c:628 bwrite(fffffd805bb4fd80) at bwrite+0x1f1 sys/kern/vfs_bio.c:760 VOP_BWRITE(fffffd805bb4fd80) at VOP_BWRITE+0x4e sys/kern/vfs_vops.c:640 ufs_mkdir(ffff80002e4298b0) at ufs_mkdir+0x6c4 sys/ufs/ufs/ufs_vnops.c:1235 VOP_MKDIR(fffffd8065139c18,ffff80002e429a10,ffff80002e429a40,ffff80002e429940) at VOP_MKDIR+0xc3 sys/kern/vfs_vops.c:388 domkdirat(ffff800021238000,ffffff9c,7c54564c21c0,1ff) at domkdirat+0x125 sys/kern/vfs_syscalls.c:3073 syscall(ffff80002e429bc0) at syscall+0x5e2 mi_syscall sys/sys/syscall_mi.h:110 [inline] syscall(ffff80002e429bc0) at syscall+0x5e2 sys/arch/amd64/amd64/trap.c:623 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7c54564c2230, count: -21 ddb{0}> machine ddbcpu 1 Stopped at db_enter+0x1c: addq $0x8,%rsp db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff827a2af5) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff82820418,ffffffff827dec6e,2a7,ffffffff827d705d) at __assert+0x29 sys/kern/subr_prf.c:157 proc_trampoline_mp() at proc_trampoline_mp+0x135 end trace frame: 0x0, count: 11 ddb{1}> trace db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff827a2af5) at panic+0x17b sys/kern/subr_prf.c:198 __assert(ffffffff82820418,ffffffff827dec6e,2a7,ffffffff827d705d) at __assert+0x29 sys/kern/subr_prf.c:157 proc_trampoline_mp() at proc_trampoline_mp+0x135 end trace frame: 0x0, count: -4