panic: rw_enter: rtlck locking against myself
0 views
Skip to first unread message
syzbot
Jan 27, 2023, 11:15:45 AM1/27/23
to syzkaller-o...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 8ff74958d206 sync
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=139dd476480000
kernel config: https://syzkaller.appspot.com/x/.config?x=7058272de1526588
dashboard link: https://syzkaller.appspot.com/bug?extid=fbe3acb4886adeef31e0
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/a8ea264288e7/disk-8ff74958.raw.xz
bsd.gdb: https://storage.googleapis.com/syzbot-assets/9d43c87b8602/bsd-8ff74958.gdb.xz
kernel image: https://storage.googleapis.com/syzbot-assets/03a1294e4072/kernel-8ff74958.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+fbe3ac...@syzkaller.appspotmail.com
panic: rw_enter: rtlck locking against myself
Stopped at db_enter+0x18: addq $0x8,%rsp
TID PID UID PRFLAGS PFLAGS CPU COMMAND
*263834 461 0 0x14000 0x200 0K softnet
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8279852b) at panic+0x177 sys/kern/subr_prf.c:198
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 rw_enter_diag sys/kern/kern_rwlock.c:183 [inline]
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 sys/kern/kern_rwlock.c:274
arpresolve(ffff8000001a02a8,fffffd806ef7a5b0,fffffd8072428200,ffff8000006c8ce0,ffff800021196cb8) at arpresolve+0x3ce sys/netinet/if_ether.c:423
ether_resolve(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0,ffff800021196cb8) at ether_resolve+0x215 sys/net/if_ethersubr.c:224
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:330 [inline]
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 sys/net/if_ethersubr.c:359
arpcache(ffff8000001a02a8,fffffd8008a0c81a,fffffd806ef7a5b0) at arpcache+0x2e8 sys/netinet/if_ether.c:734
in_arpinput(ffff8000001a02a8,fffffd8067b27500) at in_arpinput+0x4c1 sys/netinet/if_ether.c:615
arpintr() at arpintr+0x71 sys/netinet/if_ether.c:538
if_netisr(0) at if_netisr+0xcf sys/net/if.c:912
taskq_thread(ffff80000002c000) at taskq_thread+0xe5 sys/kern/kern_task.c:449
end trace frame: 0x0, count: 4
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
*cpu0: rw_enter: rtlck locking against myself
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8279852b) at panic+0x177 sys/kern/subr_prf.c:198
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 rw_enter_diag sys/kern/kern_rwlock.c:183 [inline]
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 sys/kern/kern_rwlock.c:274
arpresolve(ffff8000001a02a8,fffffd806ef7a5b0,fffffd8072428200,ffff8000006c8ce0,ffff800021196cb8) at arpresolve+0x3ce sys/netinet/if_ether.c:423
ether_resolve(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0,ffff800021196cb8) at ether_resolve+0x215 sys/net/if_ethersubr.c:224
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:330 [inline]
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 sys/net/if_ethersubr.c:359
arpcache(ffff8000001a02a8,fffffd8008a0c81a,fffffd806ef7a5b0) at arpcache+0x2e8 sys/netinet/if_ether.c:734
in_arpinput(ffff8000001a02a8,fffffd8067b27500) at in_arpinput+0x4c1 sys/netinet/if_ether.c:615
arpintr() at arpintr+0x71 sys/netinet/if_ether.c:538
if_netisr(0) at if_netisr+0xcf sys/net/if.c:912
taskq_thread(ffff80000002c000) at taskq_thread+0xe5 sys/kern/kern_task.c:449
end trace frame: 0x0, count: -11
ddb{0}> show registers
rdi 0
rsi 0x1
rbp 0xffff8000211969f0
rbx 0xffffffff82b8eb8f cpu_info_full_primary+0x2b8f
rdx 0
rcx 0
rax 0xffff800021178000
r8 0x101010101010101
r9 0x8080808080808080
r10 0xba6e8035836bf87b
r11 0x246e0a9ce2c66c71
r12 0xffffffff82b8e990 cpu_info_full_primary+0x2990
r13 0
r14 0
r15 0x1
rip 0xffffffff8229d9e8 db_enter+0x18
cs 0x8
rflags 0x246
rsp 0xffff8000211969e0
ss 0x10
db_enter+0x18: addq $0x8,%rsp
ddb{0}> show proc
PROC (softnet) pid=263834 stat=onproc
flags process=14000<NOZOMBIE,SYSTEM> proc=200<SYSTEM>
pri=32, usrpri=50, nice=20
forw=0xffffffffffffffff, list=0xffff8000211782b8,0xffff800021178580
process=0xffff8000ffffd4f0 user=0xffff800021192000, vmspace=0xffffffff82bfa0e8
estcpu=0, cpticks=1, pctcpu=0.0
user=0, sys=1, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
77677 27909 74672 0 3 0x82 piperd syz-executor.5
67719 357996 74672 0 3 0x82 piperd syz-executor.1
74331 316989 74672 0 3 0x82 wait syz-executor.4
65394 306303 74672 0 3 0x82 piperd syz-executor.3
41534 290399 74672 0 3 0x82 piperd syz-executor.7
72544 401754 74672 0 3 0x82 piperd syz-executor.2
65130 2345 74672 0 3 0x82 piperd syz-executor.0
88427 463269 74672 0 3 0x82 piperd syz-executor.6
35000 241367 0 0 3 0x14200 acct acct
53881 174967 0 0 3 0x14280 nfsidl nfsio
86450 248633 0 0 3 0x14280 nfsidl nfsio
72550 65347 0 0 3 0x14280 nfsidl nfsio
81334 129899 0 0 3 0x14280 nfsidl nfsio
43281 483370 0 0 3 0x14280 nfsidl nfsio
53642 109075 0 0 3 0x14280 nfsidl nfsio
7440 383396 0 0 3 0x14280 nfsidl nfsio
70176 269618 0 0 3 0x14280 nfsidl nfsio
66855 320567 0 0 3 0x14280 nfsidl nfsio
63866 328887 0 0 3 0x14280 nfsidl nfsio
92854 394698 0 0 3 0x14280 nfsidl nfsio
78025 60077 0 0 3 0x14280 nfsidl nfsio
25169 84440 0 0 3 0x14280 nfsidl nfsio
56425 64617 0 0 3 0x14280 nfsidl nfsio
36168 472684 0 0 3 0x14280 nfsidl nfsio
30525 196466 0 0 3 0x14280 nfsidl nfsio
44707 338352 0 0 3 0x14280 nfsidl nfsio
41204 16179 0 0 3 0x14280 nfsidl nfsio
30642 84975 0 0 3 0x14280 nfsidl nfsio
99422 224269 0 0 3 0x14280 nfsidl nfsio
71342 185456 0 0 3 0x14200 bored sosplice
28026 239674 44846 0 2 0x100082 arp
44846 387618 1 0 3 0x10008a sigsusp sh
74672 69689 21628 0 3 0x82 thrsleep syz-fuzzer
74672 452393 21628 0 3 0x4000082 nanoslp syz-fuzzer
74672 49712 21628 0 3 0x4000082 wait syz-fuzzer
74672 443104 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 522088 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 85271 21628 0 3 0x4000082 wait syz-fuzzer
74672 135385 21628 0 3 0x4000082 wait syz-fuzzer
74672 477712 21628 0 3 0x4000082 wait syz-fuzzer
74672 401021 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 379871 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 321153 21628 0 3 0x4000082 wait syz-fuzzer
74672 190241 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 189069 21628 0 3 0x4000082 wait syz-fuzzer
74672 118474 21628 0 3 0x4000082 wait syz-fuzzer
74672 242062 21628 0 3 0x4000082 wait syz-fuzzer
74672 197015 21628 0 3 0x4000082 kqread syz-fuzzer
21628 427466 44361 0 3 0x10008a sigsusp ksh
44361 88554 72899 0 3 0x9a kqread sshd
24157 116550 1 0 3 0x100083 ttyin getty
72899 492254 1 0 3 0x88 kqread sshd
8689 77299 94804 74 3 0x1100092 bpf pflogd
94804 518054 1 0 3 0x80 netio pflogd
54565 136580 35102 73 3 0x1100090 kqread syslogd
35102 472887 1 0 3 0x100082 netio syslogd
35250 19952 1 0 3 0x100080 kqread resolvd
28679 155132 22740 77 3 0x100092 kqread dhcpleased
33759 72784 22740 77 3 0x100092 kqread dhcpleased
22740 432316 1 0 3 0x80 kqread dhcpleased
22279 445478 0 0 3 0x14200 bored smr
12168 123509 0 0 3 0x14200 pgzero zerothread
27371 91453 0 0 3 0x14200 aiodoned aiodoned
55541 147451 0 0 3 0x14200 syncer update
75382 144189 0 0 3 0x14200 cleaner cleaner
12843 182050 0 0 3 0x14200 reaper reaper
95087 343817 0 0 3 0x14200 pgdaemon pagedaemon
26894 94726 0 0 3 0x14200 bored viomb
57835 148179 0 0 3 0x40014200 acpi0 acpi0
95148 394451 0 0 7 0x40014200 idle1
88802 45040 0 0 3 0x14200 bored softnet
6459 15081 0 0 3 0x14200 bored softnet
70248 117816 0 0 3 0x14200 bored softnet
* 461 263834 0 0 7 0x14200 softnet
38259 261112 0 0 3 0x14200 bored systqmp
33480 144425 0 0 3 0x14200 bored systq
96067 476118 0 0 3 0x40014200 bored softclock
65333 298927 0 0 3 0x40014200 idle0
1 92462 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{0}> show all locks
Process 461 (softnet) thread 0xffff800021178000 (263834)
exclusive rwlock rtlck r = 0 (0xffffffff82b9b030)
#0 witness_lock+0x44d
#1 in_arpinput+0x4af sys/netinet/if_ether.c:615
#2 arpintr+0x71 sys/netinet/if_ether.c:538
#3 if_netisr+0xcf sys/net/if.c:912
#4 taskq_thread+0xe5 sys/kern/kern_task.c:449
#5 proc_trampoline+0x1c
exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82dc75e8)
#0 witness_lock+0x44d
#1 if_netisr+0xca sys/net/if.c:911
#2 taskq_thread+0xe5 sys/kern/kern_task.c:449
#3 proc_trampoline+0x1c
exclusive rwlock netlock r = 0 (0xffffffff82b7a810)
#0 witness_lock+0x44d
#1 if_netisr+0x1e sys/net/if.c:898
#2 taskq_thread+0xe5 sys/kern/kern_task.c:449
#3 proc_trampoline+0x1c
shared rwlock softnet r = 0 (0xffff80000002c070)
#0 witness_lock+0x44d
#1 taskq_thread+0xca sys/kern/kern_task.c:445
#2 proc_trampoline+0x1c
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10254 6516K 7377K 78643K 45658 0
pcb 13 14K 16K 78643K 3826 0
rtable 187 15K 16K 78643K 2828 0
ifaddr 92 29K 30K 78643K 1026 0
sysctl 3 1K 1K 78643K 5 0
counters 60 35K 36K 78643K 764 0
ioctlops 0 0K 4K 78643K 2609 0
iov 0 0K 36K 78643K 1768 0
mount 1 1K 1K 78643K 1 0
log 0 0K 0K 78643K 4 0
vnodes 1604 100K 101K 78643K 19874 0
UFS quota 1 32K 32K 78643K 1 0
UFS mount 5 36K 36K 78643K 5 0
shm 2 1K 9K 78643K 98 0
VM map 2 1K 1K 78643K 2 0
sem 16 10K 20K 78643K 2095 0
dirhash 12 2K 2K 78643K 12 0
ACPI 1697 195K 286K 78643K 12548 0
file desc 13 45K 89K 78643K 12599 0
sigio 1 0K 0K 78643K 1256 0
proc 70 91K 115K 78643K 2334 0
subproc 117 7K 8K 78643K 724 0
NFS srvsock 1 0K 0K 78643K 1 0
NFS daemon 1 16K 16K 78643K 1 0
ip_moptions 0 0K 0K 78643K 1010 0
in_multi 77 5K 7K 78643K 1049 0
ether_multi 1 0K 0K 78643K 123 0
mrt 1 0K 0K 78643K 116 0
ISOFS mount 1 32K 32K 78643K 1 0
MSDOSFS mount 1 16K 16K 78643K 1 0
ttys 277 1235K 1235K 78643K 277 0
exec 0 0K 1K 78643K 3233 0
pfkey data 0 0K 0K 78643K 4 0
tdb 3 0K 0K 78643K 3 0
pagedep 1 8K 8K 78643K 1 0
inodedep 1 32K 32K 78643K 1 0
newblk 1 0K 0K 78643K 1 0
VM swap 8 62K 64K 78643K 10 0
UVM amap 377 90K 95K 78643K 83063 0
UVM aobj 131 4K 4K 78643K 137 0
memdesc 1 4K 4K 78643K 1 0
crypto data 1 1K 1K 78643K 1 0
ip6_options 0 0K 0K 78643K 659 0
NDP 15 0K 1K 78643K 343 0
temp 143 5774K 6798K 78643K 110874 0
kqueue 12 18K 24K 78643K 947 0
SYN cache 2 16K 16K 78643K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 22 0 0 1 0 1 1 0 8 0
rtpcb 120 853 0 849 13 12 1 3 0 8 0
rtentry 112 927 0 849 4 1 3 4 0 8 0
unpcb 144 10986 0 10971 147 144 3 8 0 8 2
syncache 296 46 0 46 12 12 0 1 0 8 0
tcpqe 32 372 0 372 7 7 0 2 0 8 0
tcpcb 776 4717 0 4713 174 167 7 8 0 8 6
arp 120 124 0 110 1 0 1 1 0 8 0
inpcb 368 16151 0 16144 307 300 7 16 0 8 6
nd6 48 194 0 175 1 0 1 1 0 8 0
pkpcb 40 37 0 37 9 9 0 1 0 8 0
kcovpl 48 55 0 46 1 0 1 1 0 8 0
mppekey 1024 8 0 8 3 3 0 1 0 8 0
ppxss 1256 209 0 209 26 26 0 1 0 8 0
pppxif 1456 149 0 149 17 17 0 1 0 8 0
pfstscr 40 62 0 53 6 5 1 1 0 8 0
pffrag 232 7 0 7 3 3 0 1 0 482 0
pffrnode 88 7 0 7 3 3 0 1 0 8 0
pffrent 40 64 186 64 3 3 0 1 0 8 0
pfosfp 40 1431 0 1007 5 0 5 5 0 8 0
pfosfpen 112 1431 0 716 21 0 21 21 0 8 0
pfanchor 1280 1109 16 597 49 6 43 43 0 8 0
pfstitem 24 66 0 52 1 0 1 1 0 8 0
pfstkey 128 134 0 130 1 0 1 1 0 8 0
pfstate 384 96 0 85 5 3 2 3 0 8 0
pfrule 1344 21 0 20 2 1 1 2 0 8 0
rttmr 136 32 0 32 10 10 0 1 0 8 0
art_heap8 4096 3 0 2 3 2 1 2 0 8 0
art_heap4 256 4244 0 3882 66 40 26 30 0 8 0
art_table 32 4247 0 3884 5 1 4 4 0 8 0
art_node 16 894 0 826 1 0 1 1 0 8 0
sysvmsgpl 40 5 0 3 1 0 1 1 0 8 0
semupl 112 4 0 4 1 1 0 1 0 8 0
semapl 112 2085 0 2071 1 0 1 1 0 8 0
shmpl 112 134 0 6 4 0 4 4 0 8 0
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino2pl 256 25526 0 24063 92 0 92 92 0 8 0
ffsino 272 25526 0 24063 98 0 98 98 0 8 0
nchpl 144 41893 0 40253 63 0 63 63 0 8 0
rtmask 32 2 0 2 1 1 0 1 0 8 0
uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0
vnodes 216 5926 0 0 330 0 330 330 0 8 0
namei 1024 171479 0 171479 7 6 1 2 0 8 1
percpumem 16 395 0 352 1 0 1 1 0 8 0
vmpool 696 148 0 148 13 13 0 1 0 8 0
kstatmem 264 420 0 390 7 4 3 3 0 8 0
scsiplug 72 6 0 6 2 2 0 1 0 8 0
scxspl 216 100611 0 100611 17 16 1 7 0 8 1
plimitpl 152 1536 0 1519 1 0 1 1 0 8 0
sigapl 424 12845 0 12780 17 8 9 9 0 8 0
futexpl 64 141179 0 141179 5 4 1 1 0 8 1
knotepl 120 1158 0 0 14 3 11 11 0 8 0
kqueuepl 216 2381 0 2373 56 55 1 5 0 8 0
pipepl 320 3514 0 3483 103 100 3 9 0 8 0
fdescpl 496 12806 0 12780 8 3 5 5 0 8 0
filepl 152 127571 0 127309 283 264 19 23 0 8 8
lockfpl 104 44590 0 44588 26 25 1 3 0 8 0
lockfspl 48 6316 0 6314 1 0 1 1 0 8 0
sessionpl 144 70 0 52 1 0 1 1 0 8 0
pgrppl 48 238 0 220 1 0 1 1 0 8 0
ucredpl 104 40814 0 40802 1 0 1 1 0 8 0
zombiepl 144 12781 0 12780 3 2 1 1 0 8 0
processpl 1072 12845 0 12780 5 0 5 5 0 8 0
procpl 696 32184 0 32104 50 40 10 11 0 8 1
srpgc 96 68 0 68 23 23 0 1 0 8 0
sosppl 168 113 0 113 23 23 0 1 0 8 0
sockpl 488 28065 0 28039 725 712 13 37 0 8 9
mcl64k 65536 8 0 0 1 0 1 1 0 8 0
mcl16k 16384 4 0 0 1 0 1 1 0 8 0
mcl12k 12288 11 0 0 2 0 2 2 0 8 0
mcl9k 9216 3 0 0 1 0 1 1 0 8 0
mcl8k 8192 6 0 0 1 0 1 1 0 8 0
mcl4k 4096 7 0 0 1 0 1 1 0 8 0
mcl2k2 2112 3 0 0 1 0 1 1 0 8 0
mcl2k 2048 450 0 0 52 9 43 52 0 8 0
mtagpl 96 1161 0 0 22 1 21 22 0 8 0
mbufpl 256 1715 0 0 80 0 80 80 0 8 0
bufpl 288 22554 0 16232 452 0 452 452 0 8 0
anonpl 24 2531185 0 2513193 287 160 127 171 0 186 0
amapchunkpl 152 229237 0 228522 77 43 34 43 0 158 0
amappl16 200 28303 0 27739 192 159 33 61 0 8 0
amappl15 192 67 0 65 1 0 1 1 0 8 0
amappl14 184 291 0 275 2 1 1 2 0 8 0
amappl13 176 12 0 12 3 3 0 1 0 8 0
amappl12 168 1025 0 1020 1 0 1 1 0 8 0
amappl11 160 58 0 44 1 0 1 1 0 8 0
amappl10 152 82 0 71 1 0 1 1 0 8 0
amappl9 144 1020 0 1019 3 2 1 1 0 8 0
amappl8 136 686 0 568 5 0 5 5 0 8 0
amappl7 128 262 0 234 2 0 2 2 0 8 0
amappl6 120 429 0 410 1 0 1 1 0 8 0
amappl5 112 503 0 491 1 0 1 1 0 8 0
amappl4 104 1116 0 1073 3 1 2 2 0 8 0
amappl3 96 36376 0 36328 3 1 2 2 0 8 0
amappl2 88 13869 0 13792 4 2 2 3 0 8 0
amappl1 80 286661 0 285921 27 8 19 23 0 8 0
amappl 88 81694 0 81506 6 0 6 6 0 92 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 136 0 6 3 0 3 3 0 8 0
uaddrrnd 24 12954 0 12928 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 12954 0 12928 1 0 1 1 0 8 0
vmmpekpl 168 99370 0 99298 4 0 4 4 0 8 0
vmmpepl 168 1175151 0 1172482 520 369 151 179 0 357 0
vmsppl 368 12953 0 12928 13 10 3 4 0 8 0
rwobjpl 56 306578 0 298693 139 23 116 122 0 8 0
pdppl 4096 25915 0 25856 917 844 73 81 0 8 14
pvpl 32 4953538 0 4929771 675 460 215 286 0 265 0
pmappl 248 12953 0 12928 12 9 3 3 0 8 0
extentpl 40 56 0 38 1 0 1 1 0 8 0
phpool 112 2126 0 1242 26 0 26 26 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8279852b) at panic+0x177 sys/kern/subr_prf.c:198
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 rw_enter_diag sys/kern/kern_rwlock.c:183 [inline]
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 sys/kern/kern_rwlock.c:274
arpresolve(ffff8000001a02a8,fffffd806ef7a5b0,fffffd8072428200,ffff8000006c8ce0,ffff800021196cb8) at arpresolve+0x3ce sys/netinet/if_ether.c:423
ether_resolve(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0,ffff800021196cb8) at ether_resolve+0x215 sys/net/if_ethersubr.c:224
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:330 [inline]
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 sys/net/if_ethersubr.c:359
arpcache(ffff8000001a02a8,fffffd8008a0c81a,fffffd806ef7a5b0) at arpcache+0x2e8 sys/netinet/if_ether.c:734
in_arpinput(ffff8000001a02a8,fffffd8067b27500) at in_arpinput+0x4c1 sys/netinet/if_ether.c:615
arpintr() at arpintr+0x71 sys/netinet/if_ether.c:538
if_netisr(0) at if_netisr+0xcf sys/net/if.c:912
taskq_thread(ffff80000002c000) at taskq_thread+0xe5 sys/kern/kern_task.c:449
end trace frame: 0x0, count: -11
ddb{0}> machine ddbcpu 1
Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp
x86_ipi_db(ffff800020d68ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 lapic_timer_start sys/arch/amd64/amd64/lapic.c:453 [inline]
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 lapic_timer_oneshot sys/arch/amd64/amd64/lapic.c:461 [inline]
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 sys/arch/amd64/amd64/lapic.c:434
clockintr_dispatch(ffff8000211af2a0) at clockintr_dispatch+0x625 sys/kern/kern_clockintr.c:256
lapic_clockintr(0,0) at lapic_clockintr+0x44 sys/arch/amd64/amd64/lapic.c:479
Xresume_lapic_ltimer() at Xresume_lapic_ltimer+0x26
acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206
sched_idle(ffff800020d68ff0) at sched_idle+0x417 sys/kern/kern_sched.c:175
end trace frame: 0x0, count: 6
ddb{1}> trace
x86_ipi_db(ffff800020d68ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 lapic_timer_start sys/arch/amd64/amd64/lapic.c:453 [inline]
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 lapic_timer_oneshot sys/arch/amd64/amd64/lapic.c:461 [inline]
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 sys/arch/amd64/amd64/lapic.c:434
clockintr_dispatch(ffff8000211af2a0) at clockintr_dispatch+0x625 sys/kern/kern_clockintr.c:256
lapic_clockintr(0,0) at lapic_clockintr+0x44 sys/arch/amd64/amd64/lapic.c:479
Xresume_lapic_ltimer() at Xresume_lapic_ltimer+0x26
acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206
sched_idle(ffff800020d68ff0) at sched_idle+0x417 sys/kern/kern_sched.c:175
end trace frame: 0x0, count: -9
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following issue on:
HEAD commit: 8ff74958d206 sync
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=139dd476480000
kernel config: https://syzkaller.appspot.com/x/.config?x=7058272de1526588
dashboard link: https://syzkaller.appspot.com/bug?extid=fbe3acb4886adeef31e0
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/a8ea264288e7/disk-8ff74958.raw.xz
bsd.gdb: https://storage.googleapis.com/syzbot-assets/9d43c87b8602/bsd-8ff74958.gdb.xz
kernel image: https://storage.googleapis.com/syzbot-assets/03a1294e4072/kernel-8ff74958.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+fbe3ac...@syzkaller.appspotmail.com
panic: rw_enter: rtlck locking against myself
Stopped at db_enter+0x18: addq $0x8,%rsp
TID PID UID PRFLAGS PFLAGS CPU COMMAND
*263834 461 0 0x14000 0x200 0K softnet
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8279852b) at panic+0x177 sys/kern/subr_prf.c:198
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 rw_enter_diag sys/kern/kern_rwlock.c:183 [inline]
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 sys/kern/kern_rwlock.c:274
arpresolve(ffff8000001a02a8,fffffd806ef7a5b0,fffffd8072428200,ffff8000006c8ce0,ffff800021196cb8) at arpresolve+0x3ce sys/netinet/if_ether.c:423
ether_resolve(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0,ffff800021196cb8) at ether_resolve+0x215 sys/net/if_ethersubr.c:224
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:330 [inline]
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 sys/net/if_ethersubr.c:359
arpcache(ffff8000001a02a8,fffffd8008a0c81a,fffffd806ef7a5b0) at arpcache+0x2e8 sys/netinet/if_ether.c:734
in_arpinput(ffff8000001a02a8,fffffd8067b27500) at in_arpinput+0x4c1 sys/netinet/if_ether.c:615
arpintr() at arpintr+0x71 sys/netinet/if_ether.c:538
if_netisr(0) at if_netisr+0xcf sys/net/if.c:912
taskq_thread(ffff80000002c000) at taskq_thread+0xe5 sys/kern/kern_task.c:449
end trace frame: 0x0, count: 4
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
*cpu0: rw_enter: rtlck locking against myself
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8279852b) at panic+0x177 sys/kern/subr_prf.c:198
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 rw_enter_diag sys/kern/kern_rwlock.c:183 [inline]
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 sys/kern/kern_rwlock.c:274
arpresolve(ffff8000001a02a8,fffffd806ef7a5b0,fffffd8072428200,ffff8000006c8ce0,ffff800021196cb8) at arpresolve+0x3ce sys/netinet/if_ether.c:423
ether_resolve(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0,ffff800021196cb8) at ether_resolve+0x215 sys/net/if_ethersubr.c:224
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:330 [inline]
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 sys/net/if_ethersubr.c:359
arpcache(ffff8000001a02a8,fffffd8008a0c81a,fffffd806ef7a5b0) at arpcache+0x2e8 sys/netinet/if_ether.c:734
in_arpinput(ffff8000001a02a8,fffffd8067b27500) at in_arpinput+0x4c1 sys/netinet/if_ether.c:615
arpintr() at arpintr+0x71 sys/netinet/if_ether.c:538
if_netisr(0) at if_netisr+0xcf sys/net/if.c:912
taskq_thread(ffff80000002c000) at taskq_thread+0xe5 sys/kern/kern_task.c:449
end trace frame: 0x0, count: -11
ddb{0}> show registers
rdi 0
rsi 0x1
rbp 0xffff8000211969f0
rbx 0xffffffff82b8eb8f cpu_info_full_primary+0x2b8f
rdx 0
rcx 0
rax 0xffff800021178000
r8 0x101010101010101
r9 0x8080808080808080
r10 0xba6e8035836bf87b
r11 0x246e0a9ce2c66c71
r12 0xffffffff82b8e990 cpu_info_full_primary+0x2990
r13 0
r14 0
r15 0x1
rip 0xffffffff8229d9e8 db_enter+0x18
cs 0x8
rflags 0x246
rsp 0xffff8000211969e0
ss 0x10
db_enter+0x18: addq $0x8,%rsp
ddb{0}> show proc
PROC (softnet) pid=263834 stat=onproc
flags process=14000<NOZOMBIE,SYSTEM> proc=200<SYSTEM>
pri=32, usrpri=50, nice=20
forw=0xffffffffffffffff, list=0xffff8000211782b8,0xffff800021178580
process=0xffff8000ffffd4f0 user=0xffff800021192000, vmspace=0xffffffff82bfa0e8
estcpu=0, cpticks=1, pctcpu=0.0
user=0, sys=1, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
77677 27909 74672 0 3 0x82 piperd syz-executor.5
67719 357996 74672 0 3 0x82 piperd syz-executor.1
74331 316989 74672 0 3 0x82 wait syz-executor.4
65394 306303 74672 0 3 0x82 piperd syz-executor.3
41534 290399 74672 0 3 0x82 piperd syz-executor.7
72544 401754 74672 0 3 0x82 piperd syz-executor.2
65130 2345 74672 0 3 0x82 piperd syz-executor.0
88427 463269 74672 0 3 0x82 piperd syz-executor.6
35000 241367 0 0 3 0x14200 acct acct
53881 174967 0 0 3 0x14280 nfsidl nfsio
86450 248633 0 0 3 0x14280 nfsidl nfsio
72550 65347 0 0 3 0x14280 nfsidl nfsio
81334 129899 0 0 3 0x14280 nfsidl nfsio
43281 483370 0 0 3 0x14280 nfsidl nfsio
53642 109075 0 0 3 0x14280 nfsidl nfsio
7440 383396 0 0 3 0x14280 nfsidl nfsio
70176 269618 0 0 3 0x14280 nfsidl nfsio
66855 320567 0 0 3 0x14280 nfsidl nfsio
63866 328887 0 0 3 0x14280 nfsidl nfsio
92854 394698 0 0 3 0x14280 nfsidl nfsio
78025 60077 0 0 3 0x14280 nfsidl nfsio
25169 84440 0 0 3 0x14280 nfsidl nfsio
56425 64617 0 0 3 0x14280 nfsidl nfsio
36168 472684 0 0 3 0x14280 nfsidl nfsio
30525 196466 0 0 3 0x14280 nfsidl nfsio
44707 338352 0 0 3 0x14280 nfsidl nfsio
41204 16179 0 0 3 0x14280 nfsidl nfsio
30642 84975 0 0 3 0x14280 nfsidl nfsio
99422 224269 0 0 3 0x14280 nfsidl nfsio
71342 185456 0 0 3 0x14200 bored sosplice
28026 239674 44846 0 2 0x100082 arp
44846 387618 1 0 3 0x10008a sigsusp sh
74672 69689 21628 0 3 0x82 thrsleep syz-fuzzer
74672 452393 21628 0 3 0x4000082 nanoslp syz-fuzzer
74672 49712 21628 0 3 0x4000082 wait syz-fuzzer
74672 443104 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 522088 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 85271 21628 0 3 0x4000082 wait syz-fuzzer
74672 135385 21628 0 3 0x4000082 wait syz-fuzzer
74672 477712 21628 0 3 0x4000082 wait syz-fuzzer
74672 401021 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 379871 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 321153 21628 0 3 0x4000082 wait syz-fuzzer
74672 190241 21628 0 3 0x4000082 thrsleep syz-fuzzer
74672 189069 21628 0 3 0x4000082 wait syz-fuzzer
74672 118474 21628 0 3 0x4000082 wait syz-fuzzer
74672 242062 21628 0 3 0x4000082 wait syz-fuzzer
74672 197015 21628 0 3 0x4000082 kqread syz-fuzzer
21628 427466 44361 0 3 0x10008a sigsusp ksh
44361 88554 72899 0 3 0x9a kqread sshd
24157 116550 1 0 3 0x100083 ttyin getty
72899 492254 1 0 3 0x88 kqread sshd
8689 77299 94804 74 3 0x1100092 bpf pflogd
94804 518054 1 0 3 0x80 netio pflogd
54565 136580 35102 73 3 0x1100090 kqread syslogd
35102 472887 1 0 3 0x100082 netio syslogd
35250 19952 1 0 3 0x100080 kqread resolvd
28679 155132 22740 77 3 0x100092 kqread dhcpleased
33759 72784 22740 77 3 0x100092 kqread dhcpleased
22740 432316 1 0 3 0x80 kqread dhcpleased
22279 445478 0 0 3 0x14200 bored smr
12168 123509 0 0 3 0x14200 pgzero zerothread
27371 91453 0 0 3 0x14200 aiodoned aiodoned
55541 147451 0 0 3 0x14200 syncer update
75382 144189 0 0 3 0x14200 cleaner cleaner
12843 182050 0 0 3 0x14200 reaper reaper
95087 343817 0 0 3 0x14200 pgdaemon pagedaemon
26894 94726 0 0 3 0x14200 bored viomb
57835 148179 0 0 3 0x40014200 acpi0 acpi0
95148 394451 0 0 7 0x40014200 idle1
88802 45040 0 0 3 0x14200 bored softnet
6459 15081 0 0 3 0x14200 bored softnet
70248 117816 0 0 3 0x14200 bored softnet
* 461 263834 0 0 7 0x14200 softnet
38259 261112 0 0 3 0x14200 bored systqmp
33480 144425 0 0 3 0x14200 bored systq
96067 476118 0 0 3 0x40014200 bored softclock
65333 298927 0 0 3 0x40014200 idle0
1 92462 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{0}> show all locks
Process 461 (softnet) thread 0xffff800021178000 (263834)
exclusive rwlock rtlck r = 0 (0xffffffff82b9b030)
#0 witness_lock+0x44d
#1 in_arpinput+0x4af sys/netinet/if_ether.c:615
#2 arpintr+0x71 sys/netinet/if_ether.c:538
#3 if_netisr+0xcf sys/net/if.c:912
#4 taskq_thread+0xe5 sys/kern/kern_task.c:449
#5 proc_trampoline+0x1c
exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82dc75e8)
#0 witness_lock+0x44d
#1 if_netisr+0xca sys/net/if.c:911
#2 taskq_thread+0xe5 sys/kern/kern_task.c:449
#3 proc_trampoline+0x1c
exclusive rwlock netlock r = 0 (0xffffffff82b7a810)
#0 witness_lock+0x44d
#1 if_netisr+0x1e sys/net/if.c:898
#2 taskq_thread+0xe5 sys/kern/kern_task.c:449
#3 proc_trampoline+0x1c
shared rwlock softnet r = 0 (0xffff80000002c070)
#0 witness_lock+0x44d
#1 taskq_thread+0xca sys/kern/kern_task.c:445
#2 proc_trampoline+0x1c
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10254 6516K 7377K 78643K 45658 0
pcb 13 14K 16K 78643K 3826 0
rtable 187 15K 16K 78643K 2828 0
ifaddr 92 29K 30K 78643K 1026 0
sysctl 3 1K 1K 78643K 5 0
counters 60 35K 36K 78643K 764 0
ioctlops 0 0K 4K 78643K 2609 0
iov 0 0K 36K 78643K 1768 0
mount 1 1K 1K 78643K 1 0
log 0 0K 0K 78643K 4 0
vnodes 1604 100K 101K 78643K 19874 0
UFS quota 1 32K 32K 78643K 1 0
UFS mount 5 36K 36K 78643K 5 0
shm 2 1K 9K 78643K 98 0
VM map 2 1K 1K 78643K 2 0
sem 16 10K 20K 78643K 2095 0
dirhash 12 2K 2K 78643K 12 0
ACPI 1697 195K 286K 78643K 12548 0
file desc 13 45K 89K 78643K 12599 0
sigio 1 0K 0K 78643K 1256 0
proc 70 91K 115K 78643K 2334 0
subproc 117 7K 8K 78643K 724 0
NFS srvsock 1 0K 0K 78643K 1 0
NFS daemon 1 16K 16K 78643K 1 0
ip_moptions 0 0K 0K 78643K 1010 0
in_multi 77 5K 7K 78643K 1049 0
ether_multi 1 0K 0K 78643K 123 0
mrt 1 0K 0K 78643K 116 0
ISOFS mount 1 32K 32K 78643K 1 0
MSDOSFS mount 1 16K 16K 78643K 1 0
ttys 277 1235K 1235K 78643K 277 0
exec 0 0K 1K 78643K 3233 0
pfkey data 0 0K 0K 78643K 4 0
tdb 3 0K 0K 78643K 3 0
pagedep 1 8K 8K 78643K 1 0
inodedep 1 32K 32K 78643K 1 0
newblk 1 0K 0K 78643K 1 0
VM swap 8 62K 64K 78643K 10 0
UVM amap 377 90K 95K 78643K 83063 0
UVM aobj 131 4K 4K 78643K 137 0
memdesc 1 4K 4K 78643K 1 0
crypto data 1 1K 1K 78643K 1 0
ip6_options 0 0K 0K 78643K 659 0
NDP 15 0K 1K 78643K 343 0
temp 143 5774K 6798K 78643K 110874 0
kqueue 12 18K 24K 78643K 947 0
SYN cache 2 16K 16K 78643K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 22 0 0 1 0 1 1 0 8 0
rtpcb 120 853 0 849 13 12 1 3 0 8 0
rtentry 112 927 0 849 4 1 3 4 0 8 0
unpcb 144 10986 0 10971 147 144 3 8 0 8 2
syncache 296 46 0 46 12 12 0 1 0 8 0
tcpqe 32 372 0 372 7 7 0 2 0 8 0
tcpcb 776 4717 0 4713 174 167 7 8 0 8 6
arp 120 124 0 110 1 0 1 1 0 8 0
inpcb 368 16151 0 16144 307 300 7 16 0 8 6
nd6 48 194 0 175 1 0 1 1 0 8 0
pkpcb 40 37 0 37 9 9 0 1 0 8 0
kcovpl 48 55 0 46 1 0 1 1 0 8 0
mppekey 1024 8 0 8 3 3 0 1 0 8 0
ppxss 1256 209 0 209 26 26 0 1 0 8 0
pppxif 1456 149 0 149 17 17 0 1 0 8 0
pfstscr 40 62 0 53 6 5 1 1 0 8 0
pffrag 232 7 0 7 3 3 0 1 0 482 0
pffrnode 88 7 0 7 3 3 0 1 0 8 0
pffrent 40 64 186 64 3 3 0 1 0 8 0
pfosfp 40 1431 0 1007 5 0 5 5 0 8 0
pfosfpen 112 1431 0 716 21 0 21 21 0 8 0
pfanchor 1280 1109 16 597 49 6 43 43 0 8 0
pfstitem 24 66 0 52 1 0 1 1 0 8 0
pfstkey 128 134 0 130 1 0 1 1 0 8 0
pfstate 384 96 0 85 5 3 2 3 0 8 0
pfrule 1344 21 0 20 2 1 1 2 0 8 0
rttmr 136 32 0 32 10 10 0 1 0 8 0
art_heap8 4096 3 0 2 3 2 1 2 0 8 0
art_heap4 256 4244 0 3882 66 40 26 30 0 8 0
art_table 32 4247 0 3884 5 1 4 4 0 8 0
art_node 16 894 0 826 1 0 1 1 0 8 0
sysvmsgpl 40 5 0 3 1 0 1 1 0 8 0
semupl 112 4 0 4 1 1 0 1 0 8 0
semapl 112 2085 0 2071 1 0 1 1 0 8 0
shmpl 112 134 0 6 4 0 4 4 0 8 0
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino2pl 256 25526 0 24063 92 0 92 92 0 8 0
ffsino 272 25526 0 24063 98 0 98 98 0 8 0
nchpl 144 41893 0 40253 63 0 63 63 0 8 0
rtmask 32 2 0 2 1 1 0 1 0 8 0
uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0
vnodes 216 5926 0 0 330 0 330 330 0 8 0
namei 1024 171479 0 171479 7 6 1 2 0 8 1
percpumem 16 395 0 352 1 0 1 1 0 8 0
vmpool 696 148 0 148 13 13 0 1 0 8 0
kstatmem 264 420 0 390 7 4 3 3 0 8 0
scsiplug 72 6 0 6 2 2 0 1 0 8 0
scxspl 216 100611 0 100611 17 16 1 7 0 8 1
plimitpl 152 1536 0 1519 1 0 1 1 0 8 0
sigapl 424 12845 0 12780 17 8 9 9 0 8 0
futexpl 64 141179 0 141179 5 4 1 1 0 8 1
knotepl 120 1158 0 0 14 3 11 11 0 8 0
kqueuepl 216 2381 0 2373 56 55 1 5 0 8 0
pipepl 320 3514 0 3483 103 100 3 9 0 8 0
fdescpl 496 12806 0 12780 8 3 5 5 0 8 0
filepl 152 127571 0 127309 283 264 19 23 0 8 8
lockfpl 104 44590 0 44588 26 25 1 3 0 8 0
lockfspl 48 6316 0 6314 1 0 1 1 0 8 0
sessionpl 144 70 0 52 1 0 1 1 0 8 0
pgrppl 48 238 0 220 1 0 1 1 0 8 0
ucredpl 104 40814 0 40802 1 0 1 1 0 8 0
zombiepl 144 12781 0 12780 3 2 1 1 0 8 0
processpl 1072 12845 0 12780 5 0 5 5 0 8 0
procpl 696 32184 0 32104 50 40 10 11 0 8 1
srpgc 96 68 0 68 23 23 0 1 0 8 0
sosppl 168 113 0 113 23 23 0 1 0 8 0
sockpl 488 28065 0 28039 725 712 13 37 0 8 9
mcl64k 65536 8 0 0 1 0 1 1 0 8 0
mcl16k 16384 4 0 0 1 0 1 1 0 8 0
mcl12k 12288 11 0 0 2 0 2 2 0 8 0
mcl9k 9216 3 0 0 1 0 1 1 0 8 0
mcl8k 8192 6 0 0 1 0 1 1 0 8 0
mcl4k 4096 7 0 0 1 0 1 1 0 8 0
mcl2k2 2112 3 0 0 1 0 1 1 0 8 0
mcl2k 2048 450 0 0 52 9 43 52 0 8 0
mtagpl 96 1161 0 0 22 1 21 22 0 8 0
mbufpl 256 1715 0 0 80 0 80 80 0 8 0
bufpl 288 22554 0 16232 452 0 452 452 0 8 0
anonpl 24 2531185 0 2513193 287 160 127 171 0 186 0
amapchunkpl 152 229237 0 228522 77 43 34 43 0 158 0
amappl16 200 28303 0 27739 192 159 33 61 0 8 0
amappl15 192 67 0 65 1 0 1 1 0 8 0
amappl14 184 291 0 275 2 1 1 2 0 8 0
amappl13 176 12 0 12 3 3 0 1 0 8 0
amappl12 168 1025 0 1020 1 0 1 1 0 8 0
amappl11 160 58 0 44 1 0 1 1 0 8 0
amappl10 152 82 0 71 1 0 1 1 0 8 0
amappl9 144 1020 0 1019 3 2 1 1 0 8 0
amappl8 136 686 0 568 5 0 5 5 0 8 0
amappl7 128 262 0 234 2 0 2 2 0 8 0
amappl6 120 429 0 410 1 0 1 1 0 8 0
amappl5 112 503 0 491 1 0 1 1 0 8 0
amappl4 104 1116 0 1073 3 1 2 2 0 8 0
amappl3 96 36376 0 36328 3 1 2 2 0 8 0
amappl2 88 13869 0 13792 4 2 2 3 0 8 0
amappl1 80 286661 0 285921 27 8 19 23 0 8 0
amappl 88 81694 0 81506 6 0 6 6 0 92 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 136 0 6 3 0 3 3 0 8 0
uaddrrnd 24 12954 0 12928 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 12954 0 12928 1 0 1 1 0 8 0
vmmpekpl 168 99370 0 99298 4 0 4 4 0 8 0
vmmpepl 168 1175151 0 1172482 520 369 151 179 0 357 0
vmsppl 368 12953 0 12928 13 10 3 4 0 8 0
rwobjpl 56 306578 0 298693 139 23 116 122 0 8 0
pdppl 4096 25915 0 25856 917 844 73 81 0 8 14
pvpl 32 4953538 0 4929771 675 460 215 286 0 265 0
pmappl 248 12953 0 12928 12 9 3 3 0 8 0
extentpl 40 56 0 38 1 0 1 1 0 8 0
phpool 112 2126 0 1242 26 0 26 26 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff8279852b) at panic+0x177 sys/kern/subr_prf.c:198
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 rw_enter_diag sys/kern/kern_rwlock.c:183 [inline]
rw_enter(ffffffff82b9b020,1) at rw_enter+0x482 sys/kern/kern_rwlock.c:274
arpresolve(ffff8000001a02a8,fffffd806ef7a5b0,fffffd8072428200,ffff8000006c8ce0,ffff800021196cb8) at arpresolve+0x3ce sys/netinet/if_ether.c:423
ether_resolve(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0,ffff800021196cb8) at ether_resolve+0x215 sys/net/if_ethersubr.c:224
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:330 [inline]
ether_output(ffff8000001a02a8,fffffd8072428200,ffff8000006c8ce0,fffffd806ef7a5b0) at ether_output+0x47 sys/net/if_ethersubr.c:359
arpcache(ffff8000001a02a8,fffffd8008a0c81a,fffffd806ef7a5b0) at arpcache+0x2e8 sys/netinet/if_ether.c:734
in_arpinput(ffff8000001a02a8,fffffd8067b27500) at in_arpinput+0x4c1 sys/netinet/if_ether.c:615
arpintr() at arpintr+0x71 sys/netinet/if_ether.c:538
if_netisr(0) at if_netisr+0xcf sys/net/if.c:912
taskq_thread(ffff80000002c000) at taskq_thread+0xe5 sys/kern/kern_task.c:449
end trace frame: 0x0, count: -11
ddb{0}> machine ddbcpu 1
Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp
x86_ipi_db(ffff800020d68ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 lapic_timer_start sys/arch/amd64/amd64/lapic.c:453 [inline]
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 lapic_timer_oneshot sys/arch/amd64/amd64/lapic.c:461 [inline]
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 sys/arch/amd64/amd64/lapic.c:434
clockintr_dispatch(ffff8000211af2a0) at clockintr_dispatch+0x625 sys/kern/kern_clockintr.c:256
lapic_clockintr(0,0) at lapic_clockintr+0x44 sys/arch/amd64/amd64/lapic.c:479
Xresume_lapic_ltimer() at Xresume_lapic_ltimer+0x26
acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206
sched_idle(ffff800020d68ff0) at sched_idle+0x417 sys/kern/kern_sched.c:175
end trace frame: 0x0, count: 6
ddb{1}> trace
x86_ipi_db(ffff800020d68ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 lapic_timer_start sys/arch/amd64/amd64/lapic.c:453 [inline]
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 lapic_timer_oneshot sys/arch/amd64/amd64/lapic.c:461 [inline]
lapic_timer_rearm(0,df39d) at lapic_timer_rearm+0x55 sys/arch/amd64/amd64/lapic.c:434
clockintr_dispatch(ffff8000211af2a0) at clockintr_dispatch+0x625 sys/kern/kern_clockintr.c:256
lapic_clockintr(0,0) at lapic_clockintr+0x44 sys/arch/amd64/amd64/lapic.c:479
Xresume_lapic_ltimer() at Xresume_lapic_ltimer+0x26
acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206
sched_idle(ffff800020d68ff0) at sched_idle+0x417 sys/kern/kern_sched.c:175
end trace frame: 0x0, count: -9
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
Reply all
Reply to author
Forward
0 new messages