panic: free: non-malloced addr 0xffff8000ffff6d90 type in_multi Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page faultkernel: double fault trap, code=0 Stopped at x2apic_eoi+0x1: pushq %rcx TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 uvm_fault(0xfffffd803f012330, 0x1f, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_show_all_procs+0x215: movq 0x20(%r13),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *274585 44986 0 0 0x4000000 0 syz-executor.1 SeaBIOS (version 1.8.2-20191010_205345-google) Total RAM Size = 0x0000000040000000 = 1024 MiB CPUs found: 1 Max CPUs supported: 1 Comparing RSDP and RSDP Comparing RSDT and RSDT Comparing FACP and FACP Comparing FACS and FACS return 0 for FACS vs FACS: SUCCESS Comparing DSDT and DSDT return 0 for DSDT vs DSDT: SUCCESS return 0 for FACP vs FACP: SUCCESS Comparing SRAT and SRAT return 0 for SRAT vs SRAT: SUCCESS Comparing APIC and APIC return 0 for APIC vs APIC: SUCCESS Comparing SSDT and SSDT return 0 for SSDT vs SSDT: SUCCESS Comparing WAET and WAET return 0 for WAET vs WAET: SUCCESS return 0 for RSDT vs RSDT: SUCCESS return 0 for RSDP vs RSDP: SUCCESS found virtio-scsi at 0:3 virtio-scsi vendor='Google' product='PersistentDisk' rev='1' type=0 removable=0 virtio-scsi blksize=512 sectors=2097152 = 1024 MiB drive 0x000f2850: PCHS=0/0/0 translation=lba LCHS=1024/32/63 s=2097152 Sending Seabios boot VM event. Booting from Hard Disk 0... Boot failed: not a bootable disk Booting from Floppy... Boot failed: could not read the boot disk Booting from Hard Disk 0... Boot failed: not a bootable disk No bootable device. Powering off VM. END Oserialport: VM disconnected.