panic: acquiring blockable sleep lock with spinlock or critical section held (rwlock) vmmaplk Stopped at db_enter+0x25: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND 176674 26460 32767 0x10 0 1 syz-executor *445603 26460 32767 0x10 0x4000000 0 syz-executor db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff83077129) at panic+0x1e5 sys/kern/subr_prf.c:198 witness_checkorder(fffffd807ec78618,1,0) at witness_checkorder+0x1197 witness_debugger sys/kern/subr_witness.c:2518 [inline] witness_checkorder(fffffd807ec78618,1,0) at witness_checkorder+0x1197 sys/kern/subr_witness.c:780 rw_enter(fffffd807ec78608,2) at rw_enter+0x122 uvmfault_lookup(ffff80002cb44410,0) at uvmfault_lookup+0x122 sys/uvm/uvm_fault.c:1785 uvm_fault_check(ffff80002cb44410,ffff80002cb44448,ffff80002cb44470) at uvm_fault_check+0x47 sys/uvm/uvm_fault.c:672 uvm_fault(fffffd807ec78528,20000000,0,2) at uvm_fault+0x112 sys/uvm/uvm_fault.c:600 kpageflttrap(ffff80002cb445b0,20000114) at kpageflttrap+0x2d0 sys/arch/amd64/amd64/trap.c:279 kerntrap(ffff80002cb445b0) at kerntrap+0x14a sys/arch/amd64/amd64/trap.c:332 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b copyout() at copyout+0x62 kern_sysctl(ffff80002cb44934,5,20000100,ffff80002cb44968,0,37,42188f56cebf7976) at kern_sysctl+0x320 sys/kern/kern_sysctl.c:500 sys_sysctl(ffff800034393980,ffff80002cb44aa0,ffff80002cb449f0) at sys_sysctl+0x422 syscall(ffff80002cb44aa0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002cb44aa0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 end trace frame: 0xffff80002cb44b20, count: 0 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: acquiring blockable sleep lock with spinlock or critical section held (rwlock) vmmaplk ddb{0}> trace db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff83077129) at panic+0x1e5 sys/kern/subr_prf.c:198 witness_checkorder(fffffd807ec78618,1,0) at witness_checkorder+0x1197 witness_debugger sys/kern/subr_witness.c:2518 [inline] witness_checkorder(fffffd807ec78618,1,0) at witness_checkorder+0x1197 sys/kern/subr_witness.c:780 rw_enter(fffffd807ec78608,2) at rw_enter+0x122 uvmfault_lookup(ffff80002cb44410,0) at uvmfault_lookup+0x122 sys/uvm/uvm_fault.c:1785 uvm_fault_check(ffff80002cb44410,ffff80002cb44448,ffff80002cb44470) at uvm_fault_check+0x47 sys/uvm/uvm_fault.c:672 uvm_fault(fffffd807ec78528,20000000,0,2) at uvm_fault+0x112 sys/uvm/uvm_fault.c:600 kpageflttrap(ffff80002cb445b0,20000114) at kpageflttrap+0x2d0 sys/arch/amd64/amd64/trap.c:279 kerntrap(ffff80002cb445b0) at kerntrap+0x14a sys/arch/amd64/amd64/trap.c:332 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b copyout() at copyout+0x62 kern_sysctl(ffff80002cb44934,5,20000100,ffff80002cb44968,0,37,42188f56cebf7976) at kern_sysctl+0x320 sys/kern/kern_sysctl.c:500 sys_sysctl(ffff800034393980,ffff80002cb44aa0,ffff80002cb449f0) at sys_sysctl+0x422 syscall(ffff80002cb44aa0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002cb44aa0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa5aa0713cb0, count: -15 ddb{0}> show registers rdi 0 rsi 0x1 rbp 0xffff80002cb44010 rbx 0xffffffff8347dd87 cpu_info_full_primary+0x2d87 rdx 0 rcx 0xffff800034393980 rax 0xffffffff8347cff0 cpu_info_full_primary+0x1ff0 r8 0x101010101010101 r9 0x8080808080808080 r10 0xce1f07223b5d24ac r11 0x3a2f30c28a81d1d5 r12 0xffffffff8347db88 cpu_info_full_primary+0x2b88 r13 0 r14 0 r15 0x1 rip 0xffffffff812e9325 db_enter+0x25 cs 0x8 rflags 0x246 rsp 0xffff80002cb44000 ss 0x10 db_enter+0x25: addq $0x8,%rsp ddb{0}> show proc PROC (syz-executor) tid=445603 pid=26460 tcnt=4 stat=onproc flags process=10 proc=4000000 runpri=32, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000343922b8,0xffff8000343927d8 process=0xffff8000ffff1fd0 user=0xffff80002cb3f000, vmspace=0xfffffd807ec78528 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 26460 176674 20693 32767 7 0x10 syz-executor 26460 142194 20693 32767 3 0x4000090 fsleep syz-executor *26460 445603 20693 32767 7 0x4000010 syz-executor 26460 81026 20693 32767 2 0x4000010 syz-executor 20798 165966 88561 0 2 0x100000 sh 88561 164372 12161 0 2 0x100002 sh 71672 236683 79460 32767 2 0x10 syz-executor 12161 362370 19836 0 3 0x80 wait syz-executor 19836 82176 7800 0 3 0x82 wait syz-executor 84321 457315 79556 32767 3 0x90 nanoslp syz-executor 84321 513926 79556 32767 3 0x4000090 ttyin syz-executor 84321 19052 79556 32767 3 0x4000090 fsleep syz-executor 84321 157761 79556 32767 3 0x4000090 fsleep syz-executor 36651 415464 41257 32767 2 0x400010 syz-executor 36651 348483 41257 32767 3 0x4400090 fsleep syz-executor 36651 107487 41257 32767 3 0x4400090 fsleep syz-executor 36651 343872 41257 32767 3 0x4400090 fsleep syz-executor 215 416349 75432 32767 3 0x90 nanoslp syz-executor 215 193113 75432 32767 3 0x4000090 sbwait syz-executor 79556 50240 73572 32767 3 0x90 nanoslp syz-executor 73572 46777 7800 0 3 0x82 wait syz-executor 75432 430399 1988 32767 3 0x90 nanoslp syz-executor 1988 277983 7800 0 3 0x82 wait syz-executor 41257 377718 21543 32767 3 0x90 nanoslp syz-executor 21543 71032 7800 0 3 0x82 wait syz-executor 20693 374741 64200 32767 3 0x90 nanoslp syz-executor 65419 182175 70803 32767 3 0x10 biowait syz-executor 70803 321581 7800 0 3 0x82 wait syz-executor 64200 41527 7800 0 3 0x82 wait syz-executor 27077 315186 24638 32767 3 0x90 wait syz-executor 24638 266308 7800 0 3 0x82 wait syz-executor 79460 435677 53195 32767 3 0x90 nanoslp syz-executor 53195 383868 7800 0 3 0x82 wait syz-executor 41676 250293 27296 32767 3 0x3810 suspend syz-executor 41676 367426 27296 32767 4 0x4081810 syz-executor 27296 387144 1 32767 3 0x90 wait syz-executor 56596 470829 5744 0 3 0x100082 sbwait arp 5744 263714 6236 0 3 0x10008a sigsusp sh 6236 210114 1 0 3 0x80 wait syz-executor 75084 331359 24276 0 3 0x100082 sbwait ndp 24276 19624 28467 0 3 0x10008a sigsusp sh 28467 452728 1 0 3 0x80 wait syz-executor 13665 1868 0 0 3 0x14200 bored sosplice 7800 520059 33478 0 3 0x82 kqread syz-executor 33478 37038 8142 0 3 0x10008a sigsusp ksh 8142 283259 75979 0 3 0x98 kqread sshd-session 75979 118615 76690 0 3 0x92 kqread sshd-session 80724 55180 1 0 3 0x100083 ttyin getty 76690 330036 1 0 3 0x88 kqread sshd 97441 431723 57623 73 3 0x1100090 kqread syslogd 57623 373876 1 0 3 0x100082 sbwait syslogd 31157 401288 1 0 3 0x100080 kqread resolvd 3426 244639 94385 77 3 0x100092 kqread dhcpleased 25288 156120 94385 77 3 0x100092 kqread dhcpleased 94385 190078 1 0 3 0x80 kqread dhcpleased 30505 333382 0 0 3 0x14200 bored smr 30229 12208 0 0 2 0x14200 zerothread 59376 250440 0 0 3 0x14200 aiodoned aiodoned 15094 143606 0 0 3 0x14200 syncer update 81144 312042 0 0 3 0x14200 cleaner cleaner 74804 130580 0 0 3 0x14200 reaper reaper 13040 305054 0 0 3 0x14200 pgdaemon pagedaemon 88526 235953 0 0 3 0x14200 bored viomb 44946 8968 0 0 3 0x40014200 acpi0 acpi0 14858 513404 0 0 3 0x40014200 idle1 25638 335449 0 0 3 0x14200 bored softnet3 16400 484552 0 0 3 0x14200 bored softnet2 98486 144337 0 0 3 0x14200 bored softnet1 59877 16292 0 0 3 0x14200 bored softnet0 15827 245125 0 0 3 0x14200 bored systqmp 46761 169301 0 0 3 0x14200 bored systq 53632 55121 0 0 3 0x14200 tmoslp softclockmp 70810 112374 0 0 3 0x40014200 tmoslp softclock 43060 283809 0 0 3 0x40014200 idle0 1 239155 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks CPU 0: exclusive mutex &table->inpt_mtx r = 0 (0xffffffff835db1c0) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 mtx_enter_try+0x178 #2 mtx_enter+0x60 sys/kern/kern_lock.c:239 #3 sysctl_file+0xa2d #4 kern_sysctl+0x320 sys/kern/kern_sysctl.c:500 #5 sys_sysctl+0x422 #6 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #6 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #7 Xsyscall+0x128 Process 26460 (syz-executor) thread 0xffff8000343922b8 (142194) exclusive rwlock vmmaplk r = 0 (0xfffffd807ec78618) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 rw_enter+0x41b sys/kern/kern_rwlock.c:309 #2 vm_map_lock_ln+0x143 sys/uvm/uvm_map.c:5252 #3 uvm_map_protect+0xe1 sys/uvm/uvm_map.c:3059 #4 sys_mprotect+0x34c sys/uvm/uvm_mmap.c:585 #5 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #5 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #6 Xsyscall+0x128 Process 26460 (syz-executor) thread 0xffff800034393980 (445603) exclusive rwlock netlock r = 0 (0xffffffff8349aad0) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 sysctl_file+0xa18 sys/kern/kern_sysctl.c:1675 #2 kern_sysctl+0x320 sys/kern/kern_sysctl.c:500 #3 sys_sysctl+0x422 #4 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #4 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #5 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 0 (0xffffffff83592528) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 sysctl_vslock+0x80 sys/kern/kern_sysctl.c:181 #2 kern_sysctl+0x1b3 sys/kern/kern_sysctl.c:498 #3 sys_sysctl+0x422 #4 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #4 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #5 Xsyscall+0x128 exclusive rwlock sysctllk r = 0 (0xffffffff834f4940) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 rw_enter+0x41b sys/kern/kern_rwlock.c:309 #2 sysctl_vslock+0x45 sys/kern/kern_sysctl.c:176 #3 kern_sysctl+0x1b3 sys/kern/kern_sysctl.c:498 #4 sys_sysctl+0x422 #5 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #5 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #6 Xsyscall+0x128 exclusive mutex &table->inpt_mtx r = 0 (0xffffffff835db1c0) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 mtx_enter_try+0x178 #2 mtx_enter+0x60 sys/kern/kern_lock.c:239 #3 sysctl_file+0xa2d #4 kern_sysctl+0x320 sys/kern/kern_sysctl.c:500 #5 sys_sysctl+0x422 #6 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #6 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #7 Xsyscall+0x128 Process 65419 (syz-executor) thread 0xffff800034392cd8 (182175) exclusive rrwlock inode r = 0 (0xfffffd8077916d60) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 rw_enter+0x41b sys/kern/kern_rwlock.c:309 #2 rrw_enter+0xbe sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0xa6 sys/kern/vfs_vops.c:524 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:564 #5 vget+0x2bd sys/kern/vfs_subr.c:676 #6 ufs_ihashget+0x185 sys/ufs/ufs/ufs_ihash.c:97 #7 ffs_vget+0x8c sys/ufs/ffs/ffs_vfsops.c:1201 #8 ufs_lookup+0x19f8 sys/ufs/ufs/ufs_lookup.c:478 #9 VOP_LOOKUP+0x6e sys/kern/vfs_vops.c:85 #10 vfs_lookup+0x8fa sys/kern/vfs_lookup.c:566 #11 namei+0x7aa sys/kern/vfs_lookup.c:250 #12 dounlinkat+0xc1 sys/kern/vfs_syscalls.c:1852 #13 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline] #13 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577 #14 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd8075820808) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 rw_enter+0x41b sys/kern/kern_rwlock.c:309 #2 rrw_enter+0xbe sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0xa6 sys/kern/vfs_vops.c:524 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:564 #5 vfs_lookup+0x109 sys/kern/vfs_lookup.c:418 #6 namei+0x7aa sys/kern/vfs_lookup.c:250 #7 dounlinkat+0xc1 sys/kern/vfs_syscalls.c:1852 #8 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline] #8 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577 #9 Xsyscall+0x128 ddb{0}>