panic: kernel diagnostic assertion "map->limit == rtmap_limit" failed: file "/syzkaller/managers/multicore/kernel/sys/net/rtable.c", line 131 Stopped at db_enter+0x25: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *429346 92633 0 0 0x4000000 0K syz-executor 365468 92633 0 0 0x4000000 1 syz-executor db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff830e1ebe) at panic+0x1e5 sys/kern/subr_prf.c:198 __assert(ffffffff8309b1f0,ffffffff82fdbbc9,83,ffffffff830dbad1) at __assert+0x29 rtable_init() at rtable_init rtable_add(16) at rtable_add+0x2d9 rtable_alloc sys/net/rtable.c:373 [inline] rtable_add(16) at rtable_add+0x2d9 sys/net/rtable.c:222 if_createrdomain(16,ffff8000015af800) at if_createrdomain+0x40 sys/net/if.c:1947 ifioctl(ffff800010fc4ac8,8020699f,ffff80002a0f6260,ffff8000ffff11e0) at ifioctl+0x1a1e sys/net/if.c:2296 sys_ioctl(ffff8000ffff11e0,ffff80002a0f6440,ffff80002a0f6390) at sys_ioctl+0x67c syscall(ffff80002a0f6440) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a0f6440) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x3a70fc20e80, count: 5 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: kernel diagnostic assertion "map->limit == rtmap_limit" failed: file "/syzkaller/managers/multicore/kernel/sys/net/rtable.c", line 131 ddb{0}> trace db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff830e1ebe) at panic+0x1e5 sys/kern/subr_prf.c:198 __assert(ffffffff8309b1f0,ffffffff82fdbbc9,83,ffffffff830dbad1) at __assert+0x29 rtable_init() at rtable_init rtable_add(16) at rtable_add+0x2d9 rtable_alloc sys/net/rtable.c:373 [inline] rtable_add(16) at rtable_add+0x2d9 sys/net/rtable.c:222 if_createrdomain(16,ffff8000015af800) at if_createrdomain+0x40 sys/net/if.c:1947 ifioctl(ffff800010fc4ac8,8020699f,ffff80002a0f6260,ffff8000ffff11e0) at ifioctl+0x1a1e sys/net/if.c:2296 sys_ioctl(ffff8000ffff11e0,ffff80002a0f6440,ffff80002a0f6390) at sys_ioctl+0x67c syscall(ffff80002a0f6440) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a0f6440) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x3a70fc20e80, count: -10 ddb{0}> show registers rdi 0 rsi 0x1 rbp 0xffff80002a0f5f80 rbx 0xffffffff83473d87 cpu_info_full_primary+0x2d87 rdx 0 rcx 0xffff8000ffff11e0 rax 0xffffffff83472ff0 cpu_info_full_primary+0x1ff0 r8 0 r9 0x8080808080808080 r10 0x83844f34147aef6 r11 0x371cba15435aea2 r12 0xffffffff83473b88 cpu_info_full_primary+0x2b88 r13 0 r14 0 r15 0x1 rip 0xffffffff826b1a55 db_enter+0x25 cs 0x8 rflags 0x246 rsp 0xffff80002a0f5f70 ss 0x10 db_enter+0x25: addq $0x8,%rsp ddb{0}> show proc PROC (syz-executor) tid=429346 pid=92633 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=50, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000ffff0a48,0xffff800035793480 process=0xffff8000fffe9b38 user=0xffff80002a0f1000, vmspace=0xfffffd806bfaa8b0 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 92633 93342 5047 0 3 0x80 fsleep syz-executor *92633 429346 5047 0 7 0x4000000 syz-executor 92633 365468 5047 0 7 0x4000000 syz-executor 22268 513186 45245 0 3 0x80 fsleep syz-executor 22268 461796 45245 0 3 0x4000080 kqpoll syz-executor 48303 134674 99246 0 3 0x80 fsleep syz-executor 48303 93286 99246 0 3 0x4000080 wsevent_read syz-executor 91056 386077 35 0 3 0x80 fsleep syz-executor 91056 170544 35 0 3 0x4000080 lockf syz-executor 68198 15838 20945 0 3 0x80 fsleep syz-executor 68198 467326 20945 0 3 0x4000080 pppxread syz-executor 77930 271564 68652 0 3 0x80 fsleep syz-executor 77930 171122 68652 0 3 0x4000080 ttyout syz-executor 45245 373268 18605 0 3 0x82 nanoslp syz-executor 99246 285057 18605 0 3 0x82 nanoslp syz-executor 20945 180223 18605 0 2 0x482 syz-executor 17165 418182 18605 0 3 0x82 wait syz-executor 35 499661 18605 0 3 0x82 nanoslp syz-executor 75110 438182 18605 0 3 0x82 wait syz-executor 5047 487708 18605 0 2 0x482 syz-executor 68652 56189 18605 0 2 0x482 syz-executor 14068 522599 1 0 3 0x100083 ttyin getty 41971 130313 0 0 3 0x14280 nfsidl nfsio 27596 404629 0 0 3 0x14280 nfsidl nfsio 57657 37864 0 0 3 0x14280 nfsidl nfsio 55123 428405 0 0 3 0x14280 nfsidl nfsio 5924 450090 0 0 3 0x14280 nfsidl nfsio 53955 188228 0 0 3 0x14280 nfsidl nfsio 65787 199143 0 0 3 0x14280 nfsidl nfsio 59630 5235 0 0 3 0x14280 nfsidl nfsio 48199 503747 0 0 3 0x14280 nfsidl nfsio 29581 417669 0 0 3 0x14280 nfsidl nfsio 5035 342837 0 0 3 0x14280 nfsidl nfsio 41637 504380 0 0 3 0x14280 nfsidl nfsio 34220 166271 0 0 3 0x14280 nfsidl nfsio 17041 79970 0 0 3 0x14280 nfsidl nfsio 17045 269168 0 0 3 0x14280 nfsidl nfsio 90329 469824 0 0 3 0x14280 nfsidl nfsio 2773 137261 0 0 3 0x14280 nfsidl nfsio 75890 9253 0 0 3 0x14280 nfsidl nfsio 13391 122127 0 0 3 0x14280 nfsidl nfsio 81106 127940 0 0 3 0x14280 nfsidl nfsio 3612 399254 0 0 3 0x14200 bored sosplice 18605 394394 30197 0 3 0x82 kqread syz-executor 30197 182729 91776 0 3 0x10008a sigsusp ksh 91776 223544 41201 0 3 0x98 kqread sshd-session 41201 505240 67868 0 3 0x92 kqread sshd-session 67868 229164 1 0 3 0x88 kqread sshd 73806 114489 79043 74 3 0x1100092 bpf pflogd 79043 315071 1 0 3 0x80 sbwait pflogd 6389 16611 70703 73 3 0x1100090 kqread syslogd 70703 270960 1 0 3 0x100082 sbwait syslogd 3004 182926 1 0 3 0x100080 kqread resolvd 39171 207182 70037 77 3 0x100092 kqread dhcpleased 17841 137289 70037 77 3 0x100092 kqread dhcpleased 70037 434793 1 0 3 0x80 kqread dhcpleased 94064 412029 0 0 3 0x14200 bored smr 13224 442732 0 0 3 0x14200 pgzero zerothread 29790 114115 0 0 3 0x14200 aiodoned aiodoned 78553 234051 0 0 3 0x14200 syncer update 22973 163218 0 0 3 0x14200 cleaner cleaner 9123 58970 0 0 3 0x14200 reaper reaper 77166 382813 0 0 3 0x14200 pgdaemon pagedaemon 77436 440117 0 0 3 0x14200 bored viomb 684 62895 0 0 3 0x40014200 acpi0 acpi0 65420 492419 0 0 3 0x40014200 idle1 1407 129948 0 0 3 0x14200 bored softnet3 78479 461391 0 0 3 0x14200 bored softnet2 44834 447071 0 0 3 0x14200 bored softnet1 17317 72465 0 0 3 0x14200 bored softnet0 8479 199410 0 0 3 0x14200 bored systqmp 48553 421439 0 0 3 0x14200 bored systq 84 106530 0 0 3 0x14200 tmoslp softclockmp 20556 287481 0 0 3 0x40014200 tmoslp softclock 62866 309766 0 0 3 0x40014200 idle0 1 501732 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 92633 (syz-executor) thread 0xffff8000ffff11e0 (429346) exclusive kernel_lock &kernel_lock r = 1 (0xffffffff835a3c08) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 __mp_acquire_count+0x58 #2 mi_switch+0x658 sys/kern/sched_bsd.c:460 #3 yield+0x6a sys/kern/sched_bsd.c:320 #4 malloc+0xe5 sys/kern/kern_malloc.c:170 #5 rtmap_grow+0xb2 sys/net/rtable.c:126 #6 rtable_add+0x2d9 rtable_alloc sys/net/rtable.c:373 [inline] #6 rtable_add+0x2d9 sys/net/rtable.c:222 #7 if_createrdomain+0x40 sys/net/if.c:1947 #8 ifioctl+0x1a1e sys/net/if.c:2296 #9 sys_ioctl+0x67c #10 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #10 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #11 Xsyscall+0x128 Process 48303 (syz-executor) thread 0xffff8000ffff0cd0 (93286) exclusive rrwlock inode r = 0 (0xfffffd80772c4b40) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 rw_enter+0x41b sys/kern/kern_rwlock.c:309 #2 rrw_enter+0xbe sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0xa6 sys/kern/vfs_vops.c:524 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:564 #5 spec_open+0x302 sys/kern/spec_vnops.c:151 #6 VOP_OPEN+0x8b sys/kern/vfs_vops.c:138 #7 vn_open+0x708 sys/kern/vfs_vnops.c:177 #8 vndioctl+0xcb1 sys/dev/vnd.c:457 #9 VOP_IOCTL+0xac sys/kern/vfs_vops.c:264 #10 vn_ioctl+0xf6 sys/kern/vfs_vnops.c:525 #11 sys_ioctl+0x67c #12 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #12 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #13 Xsyscall+0x128 Process 68198 (syz-executor) thread 0xffff8000ffff02b0 (467326) exclusive rrwlock inode r = 0 (0xfffffd80772c4a30) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 rw_enter+0x41b sys/kern/kern_rwlock.c:309 #2 rrw_enter+0xbe sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0xa6 sys/kern/vfs_vops.c:524 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:564 #5 spec_open+0x302 sys/kern/spec_vnops.c:151 #6 VOP_OPEN+0x8b sys/kern/vfs_vops.c:138 #7 vn_open+0x708 sys/kern/vfs_vnops.c:177 #8 vndioctl+0xcb1 sys/dev/vnd.c:457 #9 VOP_IOCTL+0xac sys/kern/vfs_vops.c:264 #10 vn_ioctl+0xf6 sys/kern/vfs_vnops.c:525 #11 sys_ioctl+0x67c #12 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #12 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #13 Xsyscall+0x128 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10232 14262K 14584K 166960K 12934 0 pcb 19 13K 14K 166960K 264 0 rtable 216 7K 7K 166960K 2383 0 pf 40 19K 26K 166960K 259 0 ifaddr 42 8K 8K 166960K 325 0 ifgroup 55 2K 2K 166960K 365 0 sysctl 3 0K 0K 166960K 3 0 counters 64 36K 36K 166960K 218 0 ioctlops 0 0K 4K 166960K 1661 0 iov 0 0K 40K 166960K 75 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1409 89K 89K 166960K 3102 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 3 5K 17K 166960K 38 0 VM map 2 1K 1K 166960K 2 0 sem 24 3K 3K 166960K 34 0 dirhash 15 2K 2K 166960K 33 0 ACPI 1690 195K 286K 166960K 12418 0 file desc 18 65K 97K 166960K 2163 0 sigio 0 0K 0K 166960K 23 0 proc 72 91K 140K 166960K 2408 0 subproc 104 6K 7K 166960K 923 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 121 0 in_multi 95 7K 7K 166960K 842 0 ether_multi 1 0K 0K 166960K 5 0 mrt 0 0K 0K 166960K 4 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 229 1023K 1023K 166960K 229 0 exec 0 0K 1K 166960K 1433 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 243 73K 95K 166960K 18279 0 UVM aobj 91 5K 5K 166960K 95 0 pinsyscall 43 86K 104K 166960K 4908 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 68 0 NDP 12 0K 1K 166960K 236 0 temp 77 6825K 6900K 166960K 68964 0 kqueue 13 20K 32K 166960K 182 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 222 0 219 1 0 1 1 0 8 0 rtentry 112 856 0 758 5 2 3 4 0 8 0 unpcb 144 1293 0 1276 20 19 1 6 0 8 0 syncache 336 11 0 11 6 6 0 1 0 8 0 tcpqe 32 2 0 2 1 1 0 1 0 8 0 tcpcb 808 393 0 386 10 9 1 7 0 8 0 arp 120 149 0 131 1 0 1 1 0 8 0 inpcb 336 1529 0 1516 27 25 2 7 0 8 0 nd6 136 237 0 215 2 1 1 2 0 8 0 pkpcb 40 9 0 9 5 5 0 1 0 8 0 kcovpl 48 71 0 63 1 0 1 1 0 8 0 ppxss 1168 5 0 5 3 2 1 1 0 8 1 pfstscr 40 3 0 3 2 2 0 1 0 8 0 pffrag 232 48 0 41 2 1 1 1 0 482 0 pffrnode 88 46 0 40 2 1 1 1 0 8 0 pffrent 40 109 0 102 4 3 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfanchor 1288 1 0 0 1 0 1 1 0 8 0 pftag 88 2 0 0 1 0 1 1 0 8 0 pfqueue 264 1 0 0 1 0 1 1 0 8 0 pfstitem 24 216 0 174 1 0 1 1 0 8 0 pfstkey 128 221 0 179 2 0 2 2 0 8 0 pfstate 376 218 0 177 6 1 5 5 0 8 0 pfrule 1344 36 0 27 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 3415 0 2986 36 8 28 30 0 8 0 art_table 32 3416 0 2986 4 0 4 4 0 8 0 art_node 16 853 0 764 1 0 1 1 0 8 0 sysvmsgpl 40 43 0 5 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 28 0 6 1 0 1 1 0 8 0 shmpl 112 92 0 4 3 0 3 3 0 8 0 dirhash 1024 31 0 12 3 0 3 3 0 8 0 dino2pl 256 3708 0 2075 103 0 103 103 0 8 0 ffsino 272 3708 0 2075 110 0 110 110 0 8 0 nchpl 144 5622 0 4966 67 38 29 66 0 8 0 uvmvnodes 80 5129 0 0 105 0 105 105 0 8 0 vnodes 216 5129 0 0 285 0 285 285 0 8 0 namei 1024 25114 0 25114 8 7 1 2 0 8 1 percpumem 16 123 0 77 1 0 1 1 0 8 0 kstatmem 264 178 0 154 2 0 2 2 0 8 0 acpiwqpl 32 2 0 2 1 0 1 1 1 8 1 scsiplug 72 3 0 3 2 2 0 1 0 8 0 scxspl 216 52270 0 52270 17 15 2 8 1 8 2 plimitpl 152 325 0 308 1 0 1 1 0 8 0 sigapl 424 2364 0 2293 11 2 9 9 0 8 0 futexpl 64 20440 0 20434 8 7 1 1 0 8 0 knotepl 120 635 0 0 18 1 17 18 0 8 0 kqueuepl 216 401 0 389 7 6 1 5 0 8 0 pipepl 320 513 0 486 11 8 3 8 0 8 0 fdescpl 496 2325 0 2293 9 4 5 6 0 8 0 filepl 152 12317 0 12055 44 32 12 19 0 8 1 lockfpl 104 519 0 514 2 1 1 2 0 8 0 lockfspl 48 174 0 170 1 0 1 1 0 8 0 sessionpl 144 93 0 84 1 0 1 1 0 8 0 pgrppl 48 258 0 241 1 0 1 1 0 8 0 ucredpl 104 1721 0 1706 1 0 1 1 0 8 0 zombiepl 144 2668 0 2666 1 0 1 1 0 8 0 processpl 1160 2364 0 2293 7 1 6 6 0 8 0 procpl 648 4290 0 4212 12 4 8 8 0 8 1 srpgc 96 4 0 4 2 2 0 1 0 8 0 sosppl 168 11 0 11 8 7 1 1 0 8 1 sockpl 664 3091 0 3058 59 55 4 17 0 8 0 mcl64k 65536 4 0 0 1 0 1 1 0 8 0 mcl16k 16384 1 0 0 1 0 1 1 0 8 0 mcl12k 12288 1 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 5 0 0 1 0 1 1 0 8 0 mcl4k 4096 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 255 0 0 30 0 30 30 0 8 0 mtagpl 96 85 0 0 2 0 2 2 0 8 0 mbufpl 256 589 0 0 32 0 32 32 0 8 0 bufpl 280 11774 0 3332 604 0 604 604 0 8 0 anonpl 24 369923 0 366263 115 61 54 80 0 185 11 amapchunkpl 152 58141 0 57617 69 40 29 41 0 158 8 amappl16 200 6377 0 6354 55 51 4 20 0 8 2 amappl15 192 11 0 10 1 0 1 1 0 8 0 amappl14 184 255 0 243 1 0 1 1 0 8 0 amappl13 176 8 0 8 1 1 0 1 0 8 0 amappl12 168 3978 0 3946 4 2 2 3 0 8 0 amappl11 160 54 0 40 1 0 1 1 0 8 0 amappl10 152 23 0 23 2 2 0 1 0 8 0 amappl9 144 198 0 197 1 0 1 1 0 8 0 amappl8 136 36 0 33 1 0 1 1 0 8 0 amappl7 128 239 0 226 1 0 1 1 0 8 0 amappl6 120 796 0 793 1 0 1 1 0 8 0 amappl5 112 397 0 385 1 0 1 1 0 8 0 amappl4 104 527 0 509 1 0 1 1 0 8 0 amappl3 96 11070 0 10950 7 3 4 4 0 8 0 amappl2 88 1604 0 1536 2 0 2 2 0 8 0 amappl1 80 18922 0 18355 14 0 14 14 0 8 0 amappl 88 17296 0 17115 5 0 5 5 0 92 0 dma32768 32768 1 0 1 1 1 0 1 0 8 0 dma4096 4096 2 0 2 2 2 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 8 0 8 3 3 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 94 0 4 2 0 2 2 0 8 0 uaddrrnd 24 2325 0 2293 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2325 0 2293 1 0 1 1 0 8 0 vmmpekpl 168 20918 0 20856 4 0 4 4 0 8 0 vmmpepl 168 148399 0 146501 131 43 88 97 0 357 5 vmsppl 440 2324 0 2293 6 2 4 5 0 8 0 rwobjpl 56 48259 0 42106 92 5 87 87 0 8 0 pdppl 4096 4657 0 4586 210 135 75 87 0 8 4 pvpl 32 44523 0 0 359 0 359 359 0 265 0 pmappl 248 2324 0 2293 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 590 0 198 12 0 12 12 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff830e1ebe) at panic+0x1e5 sys/kern/subr_prf.c:198 __assert(ffffffff8309b1f0,ffffffff82fdbbc9,83,ffffffff830dbad1) at __assert+0x29 rtable_init() at rtable_init rtable_add(16) at rtable_add+0x2d9 rtable_alloc sys/net/rtable.c:373 [inline] rtable_add(16) at rtable_add+0x2d9 sys/net/rtable.c:222 if_createrdomain(16,ffff8000015af800) at if_createrdomain+0x40 sys/net/if.c:1947 ifioctl(ffff800010fc4ac8,8020699f,ffff80002a0f6260,ffff8000ffff11e0) at ifioctl+0x1a1e sys/net/if.c:2296 sys_ioctl(ffff8000ffff11e0,ffff80002a0f6440,ffff80002a0f6390) at sys_ioctl+0x67c syscall(ffff80002a0f6440) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a0f6440) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x3a70fc20e80, count: -10 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x2c kd_curproc sys/dev/kcov.c:589 [inline] __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x2c sys/dev/kcov.c:158 __mp_lock(ffffffff835a3a00) at __mp_lock+0x1a3 __mp_lock_spin sys/kern/kern_lock.c:113 [inline] __mp_lock(ffffffff835a3a00) at __mp_lock+0x1a3 sys/kern/kern_lock.c:144 __mp_acquire_count(ffffffff835a3a00,2) at __mp_acquire_count+0x58 mi_switch() at mi_switch+0x658 sys/kern/sched_bsd.c:460 yield() at yield+0x6a sys/kern/sched_bsd.c:320 malloc(10,5,1) at malloc+0xe5 sys/kern/kern_malloc.c:170 rtmap_grow(17,18) at rtmap_grow+0x8c sys/net/rtable.c:124 rtable_add(16) at rtable_add+0x2d9 rtable_alloc sys/net/rtable.c:373 [inline] rtable_add(16) at rtable_add+0x2d9 sys/net/rtable.c:222 if_createrdomain(16,ffff8000015af800) at if_createrdomain+0x40 sys/net/if.c:1947 ifioctl(ffff800010fc4ac8,8020699f,ffff80002a0d03d0,ffff800035793470) at ifioctl+0x1a1e sys/net/if.c:2296 sys_ioctl(ffff800035793470,ffff80002a0d05b0,ffff80002a0d0500) at sys_ioctl+0x67c end trace frame: 0xffff80002a0d05a0, count: 0 ddb{1}> trace x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x2c kd_curproc sys/dev/kcov.c:589 [inline] __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x2c sys/dev/kcov.c:158 __mp_lock(ffffffff835a3a00) at __mp_lock+0x1a3 __mp_lock_spin sys/kern/kern_lock.c:113 [inline] __mp_lock(ffffffff835a3a00) at __mp_lock+0x1a3 sys/kern/kern_lock.c:144 __mp_acquire_count(ffffffff835a3a00,2) at __mp_acquire_count+0x58 mi_switch() at mi_switch+0x658 sys/kern/sched_bsd.c:460 yield() at yield+0x6a sys/kern/sched_bsd.c:320 malloc(10,5,1) at malloc+0xe5 sys/kern/kern_malloc.c:170 rtmap_grow(17,18) at rtmap_grow+0x8c sys/net/rtable.c:124 rtable_add(16) at rtable_add+0x2d9 rtable_alloc sys/net/rtable.c:373 [inline] rtable_add(16) at rtable_add+0x2d9 sys/net/rtable.c:222 if_createrdomain(16,ffff8000015af800) at if_createrdomain+0x40 sys/net/if.c:1947 ifioctl(ffff800010fc4ac8,8020699f,ffff80002a0d03d0,ffff800035793470) at ifioctl+0x1a1e sys/net/if.c:2296 sys_ioctl(ffff800035793470,ffff80002a0d05b0,ffff80002a0d0500) at sys_ioctl+0x67c syscall(ffff80002a0d05b0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a0d05b0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x3a7c868bc70, count: -16