panic: LOCKDEBUG: Mutex error: mutex_vector_enter,NUM: assertion failed: !cpu_intr_p()
0 views
Skip to first unread message
syzbot
Jun 6, 2024, 9:47:27 PMJun 6
to syzkaller-...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: b9433a63b353 support powerpc with gcc 12.
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=10b02886980000
kernel config: https://syzkaller.appspot.com/x/.config?x=fab579639ba4bf0a
dashboard link: https://syzkaller.appspot.com/bug?extid=ba0ea889f49e0da30adc
compiler: g++ (Debian 12.2.0-14) 12.2.0
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/92ea56ed13ad/disk-b9433a63.raw.xz
netbsd.gdb: https://storage.googleapis.com/syzbot-assets/e3fc9f17ee88/netbsd-b9433a63.gdb.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ba0ea8...@syzkaller.appspotmail.com
[ 142.0050544] panic: LOCKDEBUG: Mutex error: mutex_vector_enter,519: assertion failed: !cpu_intr_p()
[ 142.0050544] cpu0: Begin traceback...
[ 142.0050544] vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
[ 142.0050544] panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
[ 142.0050544] lockdebug_abort1() at netbsd:lockdebug_abort1+0x150 sys/kern/subr_lockdebug.c:388
[ 142.0050544] lockdebug_abort() at netbsd:lockdebug_abort+0xa9 sys/kern/subr_lockdebug.c:1095
[ 142.0050544] mutex_enter() at netbsd:mutex_enter+0xa67 sys/kern/kern_mutex.c:519
[ 142.0050544] pmap_extract() at netbsd:pmap_extract+0xde pmap_map_ptes sys/arch/x86/x86/pmap.c:787 [inline]
[ 142.0050544] pmap_extract() at netbsd:pmap_extract+0xde sys/arch/x86/x86/pmap.c:3927
[ 142.0050544] db_validate_address() at netbsd:db_validate_address+0xb4 sys/arch/x86/x86/db_memrw.c:82
[ 142.0050544] db_read_bytes() at netbsd:db_read_bytes+0x27 sys/arch/x86/x86/db_memrw.c:95
[ 142.0050544] db_show_all_procs() at netbsd:db_show_all_procs+0xaa0 db_read_string sys/ddb/db_proc.c:117 [inline]
[ 142.0050544] db_show_all_procs() at netbsd:db_show_all_procs+0xaa0 sys/ddb/db_proc.c:191
[ 142.0050544] db_command() at netbsd:db_command+0x310 sys/ddb/db_command.c:972
[ 142.0050544] db_command_loop() at netbsd:db_command_loop+0x38c db_execute_commandlist sys/ddb/db_command.c:468 [inline]
[ 142.0050544] db_command_loop() at netbsd:db_command_loop+0x38c sys/ddb/db_command.c:618
[ 142.0050544] db_trap() at netbsd:db_trap+0x228 sys/ddb/db_trap.c:94
[ 142.0050544] kdb_trap() at netbsd:kdb_trap+0x25c sys/arch/amd64/amd64/db_interface.c:252
[ 142.0050544] trap() at netbsd:trap+0x70b sys/arch/amd64/amd64/trap.c:314
[ 142.0050544] --- trap (number 1) ---
[ 142.0050544] breakpoint() at netbsd:breakpoint+0x5
[ 142.0050544] db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:71
[ 142.0050544] vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
[ 142.0050544] panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
[ 142.0050544] heartbeat() at netbsd:heartbeat+0x71b heartbeat_timecounter_suspended sys/kern/kern_heartbeat.c:232 [inline]
[ 142.0050544] heartbeat() at netbsd:heartbeat+0x71b sys/kern/kern_heartbeat.c:672
[ 142.0050544] hardclock() at netbsd:hardclock+0x18d sys/kern/kern_clock.c:347
[ 142.0050544] Xresume_lapic_ltimer() at netbsd:Xresume_lapic_ltimer+0x1e
[ 142.0050544] --- interrupt ---
[ 142.0050544] kauth_authorize_process() at netbsd:kauth_authorize_process+0x29 kauth_authorize_action sys/kern/kern_auth.c:1014 [inline]
[ 142.0050544] kauth_authorize_process() at netbsd:kauth_authorize_process+0x29 sys/kern/kern_auth.c:1057
[ 142.0050544] procfs_root_readdir_callback() at netbsd:procfs_root_readdir_callback+0xe2 sys/miscfs/procfs/procfs_vnops.c:1260
[ 142.0050544] proclist_foreach_call() at netbsd:proclist_foreach_call+0x166 sys/kern/kern_proc.c:1771
[ 142.0050544] procfs_readdir() at netbsd:procfs_readdir+0x11d3 sys/miscfs/procfs/procfs_vnops.c:1601
[ 142.0050544] VOP_READDIR() at netbsd:VOP_READDIR+0x15c sys/kern/vnode_if.c:1469
[ 142.0050544] getcwd_scandir() at netbsd:getcwd_scandir+0x3dc sys/kern/vfs_getcwd.c:182
[ 142.0050544] getcwd_common() at netbsd:getcwd_common+0x578 sys/kern/vfs_getcwd.c:388
[ 142.0050544] exec_makepathbuf() at netbsd:exec_makepathbuf+0x26e sys/kern/kern_exec.c:712
[ 142.0050544] execve_loadvm() at netbsd:execve_loadvm+0x1a0 sys/kern/kern_exec.c:807
[ 142.0050544] execve1() at netbsd:execve1+0xdf sys/kern/kern_exec.c:1479
[ 142.0050544] sys_execve() at netbsd:sys_execve+0x5f sys/kern/kern_exec.c:608
[ 142.0050544] sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
[ 142.0050544] sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90
[ 142.0050544] syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
[ 142.0050544] syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
[ 142.0050544] syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137
[ 142.0050544] --- syscall (number 59 via SYS_syscall) ---
[ 142.0050544] netbsd:syscall+0x246:
[ 142.0050544] cpu0: End traceback...
[ 142.0050544] fatal breakpoint trap in supervisor mode
[ 142.0050544] trap type 1 code 0 rip 0xffffffff8023240d cs 0x8 rflags 0x246 cr2 0xc0007940e0 ilevel 0x8 rsp 0xffffcd8248ad95f0
[ 142.0050544] curlwp 0xffffcd8013467540 pid 662.663 lowest kstack 0xffffcd8248ad42c0
Stopped in pid 662.663 (syz-executor.1) at netbsd:breakpoint+0x5: leave
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: b9433a63b353 support powerpc with gcc 12.
git tree: netbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=10b02886980000
kernel config: https://syzkaller.appspot.com/x/.config?x=fab579639ba4bf0a
dashboard link: https://syzkaller.appspot.com/bug?extid=ba0ea889f49e0da30adc
compiler: g++ (Debian 12.2.0-14) 12.2.0
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/92ea56ed13ad/disk-b9433a63.raw.xz
netbsd.gdb: https://storage.googleapis.com/syzbot-assets/e3fc9f17ee88/netbsd-b9433a63.gdb.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ba0ea8...@syzkaller.appspotmail.com
[ 142.0050544] panic: LOCKDEBUG: Mutex error: mutex_vector_enter,519: assertion failed: !cpu_intr_p()
[ 142.0050544] cpu0: Begin traceback...
[ 142.0050544] vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
[ 142.0050544] panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
[ 142.0050544] lockdebug_abort1() at netbsd:lockdebug_abort1+0x150 sys/kern/subr_lockdebug.c:388
[ 142.0050544] lockdebug_abort() at netbsd:lockdebug_abort+0xa9 sys/kern/subr_lockdebug.c:1095
[ 142.0050544] mutex_enter() at netbsd:mutex_enter+0xa67 sys/kern/kern_mutex.c:519
[ 142.0050544] pmap_extract() at netbsd:pmap_extract+0xde pmap_map_ptes sys/arch/x86/x86/pmap.c:787 [inline]
[ 142.0050544] pmap_extract() at netbsd:pmap_extract+0xde sys/arch/x86/x86/pmap.c:3927
[ 142.0050544] db_validate_address() at netbsd:db_validate_address+0xb4 sys/arch/x86/x86/db_memrw.c:82
[ 142.0050544] db_read_bytes() at netbsd:db_read_bytes+0x27 sys/arch/x86/x86/db_memrw.c:95
[ 142.0050544] db_show_all_procs() at netbsd:db_show_all_procs+0xaa0 db_read_string sys/ddb/db_proc.c:117 [inline]
[ 142.0050544] db_show_all_procs() at netbsd:db_show_all_procs+0xaa0 sys/ddb/db_proc.c:191
[ 142.0050544] db_command() at netbsd:db_command+0x310 sys/ddb/db_command.c:972
[ 142.0050544] db_command_loop() at netbsd:db_command_loop+0x38c db_execute_commandlist sys/ddb/db_command.c:468 [inline]
[ 142.0050544] db_command_loop() at netbsd:db_command_loop+0x38c sys/ddb/db_command.c:618
[ 142.0050544] db_trap() at netbsd:db_trap+0x228 sys/ddb/db_trap.c:94
[ 142.0050544] kdb_trap() at netbsd:kdb_trap+0x25c sys/arch/amd64/amd64/db_interface.c:252
[ 142.0050544] trap() at netbsd:trap+0x70b sys/arch/amd64/amd64/trap.c:314
[ 142.0050544] --- trap (number 1) ---
[ 142.0050544] breakpoint() at netbsd:breakpoint+0x5
[ 142.0050544] db_panic() at netbsd:db_panic+0x105 sys/ddb/db_panic.c:71
[ 142.0050544] vpanic() at netbsd:vpanic+0x282 sys/kern/subr_prf.c:288
[ 142.0050544] panic() at netbsd:panic+0x9e sys/kern/subr_prf.c:1084
[ 142.0050544] heartbeat() at netbsd:heartbeat+0x71b heartbeat_timecounter_suspended sys/kern/kern_heartbeat.c:232 [inline]
[ 142.0050544] heartbeat() at netbsd:heartbeat+0x71b sys/kern/kern_heartbeat.c:672
[ 142.0050544] hardclock() at netbsd:hardclock+0x18d sys/kern/kern_clock.c:347
[ 142.0050544] Xresume_lapic_ltimer() at netbsd:Xresume_lapic_ltimer+0x1e
[ 142.0050544] --- interrupt ---
[ 142.0050544] kauth_authorize_process() at netbsd:kauth_authorize_process+0x29 kauth_authorize_action sys/kern/kern_auth.c:1014 [inline]
[ 142.0050544] kauth_authorize_process() at netbsd:kauth_authorize_process+0x29 sys/kern/kern_auth.c:1057
[ 142.0050544] procfs_root_readdir_callback() at netbsd:procfs_root_readdir_callback+0xe2 sys/miscfs/procfs/procfs_vnops.c:1260
[ 142.0050544] proclist_foreach_call() at netbsd:proclist_foreach_call+0x166 sys/kern/kern_proc.c:1771
[ 142.0050544] procfs_readdir() at netbsd:procfs_readdir+0x11d3 sys/miscfs/procfs/procfs_vnops.c:1601
[ 142.0050544] VOP_READDIR() at netbsd:VOP_READDIR+0x15c sys/kern/vnode_if.c:1469
[ 142.0050544] getcwd_scandir() at netbsd:getcwd_scandir+0x3dc sys/kern/vfs_getcwd.c:182
[ 142.0050544] getcwd_common() at netbsd:getcwd_common+0x578 sys/kern/vfs_getcwd.c:388
[ 142.0050544] exec_makepathbuf() at netbsd:exec_makepathbuf+0x26e sys/kern/kern_exec.c:712
[ 142.0050544] execve_loadvm() at netbsd:execve_loadvm+0x1a0 sys/kern/kern_exec.c:807
[ 142.0050544] execve1() at netbsd:execve1+0xdf sys/kern/kern_exec.c:1479
[ 142.0050544] sys_execve() at netbsd:sys_execve+0x5f sys/kern/kern_exec.c:608
[ 142.0050544] sys___syscall() at netbsd:sys___syscall+0x10e sy_call sys/sys/syscallvar.h:65 [inline]
[ 142.0050544] sys___syscall() at netbsd:sys___syscall+0x10e sys/kern/sys_syscall.c:90
[ 142.0050544] syscall() at netbsd:syscall+0x246 sy_call sys/sys/syscallvar.h:65 [inline]
[ 142.0050544] syscall() at netbsd:syscall+0x246 sy_invoke sys/sys/syscallvar.h:94 [inline]
[ 142.0050544] syscall() at netbsd:syscall+0x246 sys/arch/x86/x86/syscall.c:137
[ 142.0050544] --- syscall (number 59 via SYS_syscall) ---
[ 142.0050544] netbsd:syscall+0x246:
[ 142.0050544] cpu0: End traceback...
[ 142.0050544] fatal breakpoint trap in supervisor mode
[ 142.0050544] trap type 1 code 0 rip 0xffffffff8023240d cs 0x8 rflags 0x246 cr2 0xc0007940e0 ilevel 0x8 rsp 0xffffcd8248ad95f0
[ 142.0050544] curlwp 0xffffcd8013467540 pid 662.663 lowest kstack 0xffffcd8248ad42c0
Stopped in pid 662.663 (syz-executor.1) at netbsd:breakpoint+0x5: leave
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
Reply all
Reply to author
Forward
0 new messages