panic: vop_generipac_nibac:do kpe
0 views
Skip to first unread message
syzbot
Jan 27, 2022, 12:59:18 PM1/27/22
to syzkaller-o...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: ebc65071f0b5 raise sched_engine lock mtx ipl to IPL_TTY
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=10b3773fb00000
kernel config: https://syzkaller.appspot.com/x/.config?x=bf87b6915a88cd0d
dashboard link: https://syzkaller.appspot.com/bug?extid=f58008312b7ad93c6a5b
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+f58008...@syzkaller.appspotmail.com
login: panic: vop_generipac_nibac:do kpe
rStopped at db_enter+0x18: addq $0x8,%rsp
TID PID UID PRFLAGS PFLAGS CPU COMMAND
178539 73015 32767 0x10 0x4000000 1 syz-executor.3
*214110 8858 32767 0x10 0x4000000 0 syz-executor.7
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:440
panic(ffffffff8256893b) at panic+0x177 sys/kern/subr_prf.c:202
vop_generic_badop(ffff80002cb62938) at vop_generic_badop+0x1b sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd8069bebb88,fffffd8072f17c98) at VOP_STRATEGY+0x9b sys/kern/vfs_vops.c:644
bwrite(fffffd8072f17c98) at bwrite+0x1f0 sys/kern/vfs_bio.c:763
VOP_BWRITE(fffffd8072f17c98) at VOP_BWRITE+0x4a sys/kern/vfs_vops.c:656
ufs_mkdir(ffff80002cb62bd0) at ufs_mkdir+0x6b4 sys/ufs/ufs/ufs_vnops.c:1248
VOP_MKDIR(fffffd8069beb8e8,ffff80002cb62d30,ffff80002cb62d60,ffff80002cb62c60) at VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
domkdirat(ffff8000fffedcf0,ffffff9c,20000100,0) at domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
syscall(ffff80002cb62ee0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002cb62ee0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xbed5132f230, count: 4
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
*cpu0: vop_generic_badop
cpu1: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/kern/kern_fork.c", line 677
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:440
panic(ffffffff8256893b) at panic+0x177 sys/kern/subr_prf.c:202
vop_generic_badop(ffff80002cb62938) at vop_generic_badop+0x1b sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd8069bebb88,fffffd8072f17c98) at VOP_STRATEGY+0x9b sys/kern/vfs_vops.c:644
bwrite(fffffd8072f17c98) at bwrite+0x1f0 sys/kern/vfs_bio.c:763
VOP_BWRITE(fffffd8072f17c98) at VOP_BWRITE+0x4a sys/kern/vfs_vops.c:656
ufs_mkdir(ffff80002cb62bd0) at ufs_mkdir+0x6b4 sys/ufs/ufs/ufs_vnops.c:1248
VOP_MKDIR(fffffd8069beb8e8,ffff80002cb62d30,ffff80002cb62d60,ffff80002cb62c60) at VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
domkdirat(ffff8000fffedcf0,ffffff9c,20000100,0) at domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
syscall(ffff80002cb62ee0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002cb62ee0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xbed5132f230, count: -11
ddb{0}> show registers
rdi 0
rsi 0x1
rbp 0xffff80002cb62860
rbx 0xffffffff82981bff cpu_info_full_primary+0x2bff
rdx 0xffff800000bf37c0
rcx 0
rax 0xffff8000fffedcf0
r8 0x101010101010101
r9 0x8080808080808080
r10 0x4d2e48a5bfe50eb8
r11 0x93cef4830ce6047a
r12 0xffffffff82981a00 cpu_info_full_primary+0x2a00
r13 0
r14 0
r15 0x1
rip 0xffffffff823b0ef8 db_enter+0x18
cs 0x8
rflags 0x246
rsp 0xffff80002cb62850
ss 0
db_enter+0x18: addq $0x8,%rsp
ddb{0}> show proc
PROC (syz-executor.7) pid=214110 stat=onproc
flags process=10<SUGID> proc=4000000<THREAD>
pri=17, usrpri=86, nice=20
forw=0xffffffffffffffff, list=0xffff8000fffe67e0,0xffff8000fffec800
process=0xffff8000fffea9b0 user=0xffff80002cb5d000, vmspace=0xfffffd806c7a8468
estcpu=36, cpticks=1, pctcpu=0.0
user=0, sys=1, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
73015 165006 25132 32767 3 0x90 nanoslp syz-executor.3
73015 106597 25132 32767 3 0x4000090 fsleep syz-executor.3
73015 178539 25132 32767 7 0x4000010 syz-executor.3
73015 459268 25132 32767 2 0x4000010 syz-executor.3
42948 211389 83368 32767 2 0x10 syz-executor.2
42948 272107 83368 32767 3 0x4000090 fsleep syz-executor.2
80942 92863 53470 32767 2 0x10 syz-executor.5
80942 57913 53470 32767 3 0x4000090 fsleep syz-executor.5
59415 232209 93807 32767 2 0x10 syz-executor.1
59415 87627 93807 32767 2 0x4000010 syz-executor.1
59415 225630 93807 32767 3 0x4000090 fsleep syz-executor.1
15996 424823 71468 32767 3 0x90 nanoslp syz-executor.0
15996 314840 71468 32767 3 0x4000090 fsleep syz-executor.0
15996 205609 71468 32767 3 0x4000090 fsleep syz-executor.0
8858 470495 5974 32767 2 0x10 syz-executor.7
* 8858 214110 5974 32767 7 0x4000010 syz-executor.7
45093 50224 0 0 3 0x14200 bored sosplice
5974 77759 30390 32767 2 0x490 syz-executor.7
30390 302127 55291 0 3 0x82 wait syz-executor.7
53496 260053 85329 32767 2 0x10 syz-executor.4
98705 87837 28121 32767 2 0x10 syz-executor.6
25132 313945 52087 32767 3 0x90 nanoslp syz-executor.3
28121 112761 55291 0 3 0x82 wait syz-executor.6
53470 63219 94716 32767 3 0x90 nanoslp syz-executor.5
85329 98895 55291 0 3 0x82 wait syz-executor.4
83368 458763 74827 32767 3 0x90 nanoslp syz-executor.2
94716 269602 55291 0 3 0x82 wait syz-executor.5
52087 308627 55291 0 3 0x82 wait syz-executor.3
71468 443227 49891 32767 3 0x90 nanoslp syz-executor.0
93807 509904 39616 32767 2 0x10 syz-executor.1
74827 158412 55291 0 3 0x82 wait syz-executor.2
39616 140915 55291 0 3 0x82 wait syz-executor.1
49891 74621 55291 0 3 0x82 wait syz-executor.0
55291 385982 98576 0 3 0x82 kqread syz-fuzzer
55291 126052 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 26214 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 409468 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 93620 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 90280 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 509029 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 278339 98576 0 3 0x4000082 thrsleep syz-fuzzer
98576 422422 23921 0 3 0x10008a sigsusp ksh
23921 424193 93733 0 3 0x9a poll sshd
81026 6708 1 0 3 0x100083 ttyin getty
93733 503492 1 0 3 0x88 poll sshd
11538 270253 79726 73 3 0x100090 kqread syslogd
79726 94536 1 0 3 0x100082 netio syslogd
86334 260169 1 0 3 0x100080 kqread resolvd
81417 431314 59484 77 3 0x100092 kqread dhcpleased
77776 230883 59484 77 3 0x100092 kqread dhcpleased
59484 372433 1 0 3 0x80 kqread dhcpleased
46070 216328 0 0 3 0x14200 bored smr
15743 56502 0 0 2 0x14200 zerothread
82767 89062 0 0 3 0x14200 aiodoned aiodoned
93208 71694 0 0 3 0x14200 syncer update
70071 110634 0 0 3 0x14200 cleaner cleaner
84752 279305 0 0 3 0x14200 reaper reaper
21590 60062 0 0 3 0x14200 pgdaemon pagedaemon
95758 389040 0 0 3 0x14200 bored viomb
71691 144906 0 0 3 0x40014200 acpi0 acpi0
61951 97638 0 0 3 0x40014200 idle1
49739 175354 0 0 3 0x14200 bored softnet
4879 491912 0 0 3 0x14200 bored systqmp
73739 45321 0 0 3 0x14200 bored systq
64887 200658 0 0 2 0x40014200 softclock
93425 24733 0 0 3 0x40014200 idle0
1 494202 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{0}> show all locks
Process 8858 (syz-executor.7) thread 0xffff8000fffedcf0 (214110)
exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82acb1d0)
#0 witness_lock+0x44d
#1 __mp_acquire_count+0x48 sys/kern/kern_lock.c:227
#2 mi_switch+0x3d3 sys/kern/sched_bsd.c:416
#3 sleep_finish+0x1b2 sys/kern/kern_synch.c:433
#4 tsleep+0x12c sys/kern/kern_synch.c:158
#5 biowait+0x91 sys/kern/vfs_bio.c:1271
#6 bwrite+0x21b sys/kern/vfs_bio.c:772
#7 ffs_update+0x27d sys/ufs/ffs/ffs_inode.c:113
#8 ufs_mkdir+0x662 sys/ufs/ufs/ufs_vnops.c:1232
#9 VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
#10 domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
#11 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#11 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#12 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd80682f4928)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vget+0x1d3 sys/kern/vfs_subr.c:677
#6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119
#7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1318
#8 ffs_inode_alloc+0x1be sys/ufs/ffs/ffs_alloc.c:394
#9 ufs_mkdir+0xf4 sys/ufs/ufs/ufs_vnops.c:1162
#10 VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
#11 domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
#12 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#12 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#13 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd80682f44e8)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vfs_lookup+0xd1 sys/kern/vfs_lookup.c:413
#6 namei+0x36a sys/kern/vfs_lookup.c:245
#7 domkdirat+0x75 sys/kern/vfs_syscalls.c:3085
#8 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#8 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#9 Xsyscall+0x128
Process 53496 (syz-executor.4) thread 0xffff8000fffeea88 (260053)
exclusive rrwlock inode r = 0 (0xfffffd80682f42c8)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vn_closefile+0xc6 vn_close sys/kern/vfs_vnops.c:298 [inline]
#5 vn_closefile+0xc6 sys/kern/vfs_vnops.c:624
#6 fdrop+0xc7 sys/kern/kern_descrip.c:1279
#7 closef+0x11c sys/kern/kern_descrip.c:1263
#8 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#8 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#9 Xsyscall+0x128
Process 98705 (syz-executor.6) thread 0xffff8000fffee2a8 (87837)
exclusive rrwlock inode r = 0 (0xfffffd806e3fc700)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 ufs_ihashins+0x42 sys/ufs/ufs/ufs_ihash.c:140
#5 ffs_vget+0x141 sys/ufs/ffs/ffs_vfsops.c:1347
#6 ffs_inode_alloc+0x1be sys/ufs/ffs/ffs_alloc.c:394
#7 ufs_mkdir+0xf4 sys/ufs/ufs/ufs_vnops.c:1162
#8 VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
#9 domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
#10 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#10 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#11 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd806855e4e0)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vfs_lookup+0xd1 sys/kern/vfs_lookup.c:413
#6 namei+0x36a sys/kern/vfs_lookup.c:245
#7 domkdirat+0x75 sys/kern/vfs_syscalls.c:3085
#8 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#8 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#9 Xsyscall+0x128
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10170 6407K 6418K 78643K 11260 0
pcb 13 8K 8K 78643K 13 0
rtable 248 7K 7K 78643K 400 0
ifaddr 81 16K 16K 78643K 82 0
sysctl 2 0K 0K 78643K 2 0
counters 56 35K 35K 78643K 56 0
ioctlops 0 0K 2K 78643K 36 0
iov 0 0K 16K 78643K 840 0
mount 1 1K 1K 78643K 1 0
log 0 0K 0K 78643K 5 0
vnodes 1270 79K 79K 78643K 1437 0
UFS quota 1 32K 32K 78643K 1 0
UFS mount 5 36K 36K 78643K 5 0
shm 2 1K 1K 78643K 2 0
VM map 2 1K 1K 78643K 2 0
sem 12 1K 1K 78643K 288 0
dirhash 12 2K 2K 78643K 12 0
ACPI 1697 195K 286K 78643K 12598 0
file desc 24 89K 125K 78643K 1023 0
sigio 0 0K 0K 78643K 95 0
proc 56 74K 111K 78643K 574 0
subproc 104 6K 6K 78643K 104 0
NFS srvsock 1 0K 0K 78643K 1 0
NFS daemon 1 16K 16K 78643K 1 0
ip_moptions 0 0K 0K 78643K 138 0
in_multi 99 6K 6K 78643K 101 0
ether_multi 1 0K 0K 78643K 2 0
ISOFS mount 1 32K 32K 78643K 1 0
MSDOSFS mount 1 16K 16K 78643K 1 0
ttys 67 307K 307K 78643K 67 0
exec 0 0K 2K 78643K 757 0
tdb 3 0K 0K 78643K 3 0
pagedep 1 8K 8K 78643K 1 0
inodedep 1 32K 32K 78643K 1 0
newblk 1 0K 0K 78643K 1 0
VM swap 7 26K 26K 78643K 7 0
UVM amap 335 80K 82K 78643K 14566 0
UVM aobj 8 2K 2K 78643K 8 0
memdesc 1 4K 4K 78643K 1 0
crypto data 1 1K 1K 78643K 1 0
ip6_options 0 0K 0K 78643K 21 0
NDP 11 0K 2K 78643K 27 0
temp 94 4691K 4755K 78643K 6178 0
kqueue 10 14K 22K 78643K 66 0
SYN cache 2 16K 16K 78643K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 22 0 0 1 0 1 1 0 8 0
rtpcb 120 90 0 87 2 1 1 2 0 8 0
rtentry 112 116 0 1 4 0 4 4 0 8 0
unpcb 136 643 0 630 8 7 1 6 0 8 0
syncache 296 7 0 7 2 2 0 1 0 8 0
tcpqe 32 274 0 274 2 2 0 2 0 8 0
tcpcb 736 262 0 255 9 2 7 8 0 8 6
arp 120 18 0 0 1 0 1 1 0 8 0
ipq 40 2 0 0 1 0 1 1 0 8 0
ipqe 40 7 0 5 1 0 1 1 0 8 0
inpcb 304 567 0 558 7 3 4 6 0 8 3
nd6 48 29 0 0 1 0 1 1 0 8 0
kcovpl 48 8 0 0 1 0 1 1 0 8 0
art_heap8 4096 1 0 0 1 0 1 1 0 8 0
art_heap4 256 467 0 0 30 0 30 30 0 8 0
art_table 32 468 0 0 4 0 4 4 0 8 0
art_node 16 115 0 10 1 0 1 1 0 8 0
semapl 112 286 0 276 1 0 1 1 0 8 0
shmpl 112 5 0 0 1 0 1 1 0 8 0
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino2pl 256 2728 0 1297 90 0 90 90 0 8 0
ffsino 272 2728 0 1297 96 0 96 96 0 8 0
nchpl 144 4080 0 2417 62 0 62 62 0 8 0
uvmvnodes 80 2841 0 0 58 0 58 58 0 8 0
vnodes 224 2841 0 0 168 0 168 168 0 8 0
namei 1024 14637 0 14635 2 1 1 2 0 8 0
percpumem 16 40 0 0 1 0 1 1 0 8 0
scxspl 216 11871 0 11871 9 8 1 8 0 8 1
plimitpl 152 182 0 159 1 0 1 1 0 8 0
sigapl 424 1298 0 1248 7 0 7 7 0 8 0
futexpl 64 8360 0 8354 1 0 1 1 0 8 0
knotepl 112 110 0 0 3 0 3 3 0 8 0
kqueuepl 216 264 0 258 6 5 1 4 0 8 0
pipepl 336 317 0 289 13 5 8 8 0 8 5
fdescpl 496 1283 0 1248 7 1 6 6 0 8 0
filepl 152 7239 0 6997 22 7 15 16 0 8 5
lockfpl 104 70 0 68 1 0 1 1 0 8 0
lockfspl 48 31 0 29 1 0 1 1 0 8 0
sessionpl 144 23 0 7 1 0 1 1 0 8 0
pgrppl 48 23 0 7 1 0 1 1 0 8 0
ucredpl 96 976 0 958 1 0 1 1 0 8 0
zombiepl 144 1248 0 1248 1 0 1 1 0 8 1
processpl 1064 1298 0 1248 5 1 4 4 0 8 0
procpl 672 2961 0 2894 7 0 7 7 0 8 0
sosppl 168 15 0 15 1 1 0 1 0 8 0
sockpl 480 1379 0 1354 27 18 9 20 0 8 5
mcl64k 65536 9 0 0 2 0 2 2 0 8 0
mcl16k 16384 7 0 0 1 0 1 1 0 8 0
mcl12k 12288 8 0 0 1 0 1 1 0 8 0
mcl9k 9216 5 0 0 1 0 1 1 0 8 0
mcl8k 8192 9 0 0 2 0 2 2 0 8 0
mcl4k 4096 11 0 0 2 0 2 2 0 8 0
mcl2k2 2112 3 0 0 1 0 1 1 0 8 0
mcl2k 2048 228 0 0 28 0 28 28 0 8 0
mtagpl 96 2 0 0 1 0 1 1 0 8 0
mbufpl 256 368 0 0 22 0 22 22 0 8 0
bufpl 288 4653 0 143 323 0 323 323 0 8 0
anonpl 24 810466 0 796167 203 24 179 188 0 186 62
amapchunkpl 152 36846 0 36050 39 5 34 36 0 158 0
amappl16 200 32087 0 31720 208 163 45 70 0 8 18
amappl15 192 400 0 392 1 0 1 1 0 8 0
amappl14 184 337 0 328 1 0 1 1 0 8 0
amappl13 176 198 0 196 1 0 1 1 0 8 0
amappl12 168 23 0 16 1 0 1 1 0 8 0
amappl11 160 408 0 390 1 0 1 1 0 8 0
amappl10 152 38 0 31 1 0 1 1 0 8 0
amappl9 144 470 0 468 1 0 1 1 0 8 0
amappl8 136 598 0 541 2 0 2 2 0 8 0
amappl7 128 116 0 106 1 0 1 1 0 8 0
amappl6 120 213 0 193 2 1 1 2 0 8 0
amappl5 112 890 0 869 1 0 1 1 0 8 0
amappl4 104 1403 0 1368 2 1 1 2 0 8 0
amappl3 96 221 0 210 1 0 1 1 0 8 0
amappl2 88 672 0 629 3 1 2 3 0 8 0
amappl1 80 26432 0 25773 18 3 15 18 0 8 0
amappl 88 14099 0 13836 7 0 7 7 0 92 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 7 0 0 1 0 1 1 0 8 0
uaddrrnd 24 1283 0 1248 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 1283 0 1248 1 0 1 1 0 8 0
vmmpekpl 168 13721 0 13673 3 0 3 3 0 8 0
vmmpepl 168 149103 0 146451 176 22 154 163 0 357 29
vmsppl 368 1282 0 1248 4 0 4 4 0 8 0
rwobjpl 56 62038 0 57852 70 3 67 70 0 8 0
pdppl 4096 2573 0 2496 118 37 81 95 0 8 4
pvpl 32 1156672 0 1137184 312 25 287 297 0 265 87
pmappl 248 1282 0 1248 4 1 3 3 0 8 0
extentpl 40 57 0 38 1 0 1 1 0 8 0
phpool 112 749 0 47 21 0 21 21 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:440
panic(ffffffff8256893b) at panic+0x177 sys/kern/subr_prf.c:202
vop_generic_badop(ffff80002cb62938) at vop_generic_badop+0x1b sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd8069bebb88,fffffd8072f17c98) at VOP_STRATEGY+0x9b sys/kern/vfs_vops.c:644
bwrite(fffffd8072f17c98) at bwrite+0x1f0 sys/kern/vfs_bio.c:763
VOP_BWRITE(fffffd8072f17c98) at VOP_BWRITE+0x4a sys/kern/vfs_vops.c:656
ufs_mkdir(ffff80002cb62bd0) at ufs_mkdir+0x6b4 sys/ufs/ufs/ufs_vnops.c:1248
VOP_MKDIR(fffffd8069beb8e8,ffff80002cb62d30,ffff80002cb62d60,ffff80002cb62c60) at VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
domkdirat(ffff8000fffedcf0,ffffff9c,20000100,0) at domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
syscall(ffff80002cb62ee0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002cb62ee0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xbed5132f230, count: -11
ddb{0}> machine ddbcpu 1
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following issue on:
HEAD commit: ebc65071f0b5 raise sched_engine lock mtx ipl to IPL_TTY
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=10b3773fb00000
kernel config: https://syzkaller.appspot.com/x/.config?x=bf87b6915a88cd0d
dashboard link: https://syzkaller.appspot.com/bug?extid=f58008312b7ad93c6a5b
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+f58008...@syzkaller.appspotmail.com
login: panic: vop_generipac_nibac:do kpe
rStopped at db_enter+0x18: addq $0x8,%rsp
TID PID UID PRFLAGS PFLAGS CPU COMMAND
178539 73015 32767 0x10 0x4000000 1 syz-executor.3
*214110 8858 32767 0x10 0x4000000 0 syz-executor.7
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:440
panic(ffffffff8256893b) at panic+0x177 sys/kern/subr_prf.c:202
vop_generic_badop(ffff80002cb62938) at vop_generic_badop+0x1b sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd8069bebb88,fffffd8072f17c98) at VOP_STRATEGY+0x9b sys/kern/vfs_vops.c:644
bwrite(fffffd8072f17c98) at bwrite+0x1f0 sys/kern/vfs_bio.c:763
VOP_BWRITE(fffffd8072f17c98) at VOP_BWRITE+0x4a sys/kern/vfs_vops.c:656
ufs_mkdir(ffff80002cb62bd0) at ufs_mkdir+0x6b4 sys/ufs/ufs/ufs_vnops.c:1248
VOP_MKDIR(fffffd8069beb8e8,ffff80002cb62d30,ffff80002cb62d60,ffff80002cb62c60) at VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
domkdirat(ffff8000fffedcf0,ffffff9c,20000100,0) at domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
syscall(ffff80002cb62ee0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002cb62ee0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xbed5132f230, count: 4
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
*cpu0: vop_generic_badop
cpu1: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/setuid/kernel/sys/kern/kern_fork.c", line 677
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:440
panic(ffffffff8256893b) at panic+0x177 sys/kern/subr_prf.c:202
vop_generic_badop(ffff80002cb62938) at vop_generic_badop+0x1b sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd8069bebb88,fffffd8072f17c98) at VOP_STRATEGY+0x9b sys/kern/vfs_vops.c:644
bwrite(fffffd8072f17c98) at bwrite+0x1f0 sys/kern/vfs_bio.c:763
VOP_BWRITE(fffffd8072f17c98) at VOP_BWRITE+0x4a sys/kern/vfs_vops.c:656
ufs_mkdir(ffff80002cb62bd0) at ufs_mkdir+0x6b4 sys/ufs/ufs/ufs_vnops.c:1248
VOP_MKDIR(fffffd8069beb8e8,ffff80002cb62d30,ffff80002cb62d60,ffff80002cb62c60) at VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
domkdirat(ffff8000fffedcf0,ffffff9c,20000100,0) at domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
syscall(ffff80002cb62ee0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002cb62ee0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xbed5132f230, count: -11
ddb{0}> show registers
rdi 0
rsi 0x1
rbp 0xffff80002cb62860
rbx 0xffffffff82981bff cpu_info_full_primary+0x2bff
rdx 0xffff800000bf37c0
rcx 0
rax 0xffff8000fffedcf0
r8 0x101010101010101
r9 0x8080808080808080
r10 0x4d2e48a5bfe50eb8
r11 0x93cef4830ce6047a
r12 0xffffffff82981a00 cpu_info_full_primary+0x2a00
r13 0
r14 0
r15 0x1
rip 0xffffffff823b0ef8 db_enter+0x18
cs 0x8
rflags 0x246
rsp 0xffff80002cb62850
ss 0
db_enter+0x18: addq $0x8,%rsp
ddb{0}> show proc
PROC (syz-executor.7) pid=214110 stat=onproc
flags process=10<SUGID> proc=4000000<THREAD>
pri=17, usrpri=86, nice=20
forw=0xffffffffffffffff, list=0xffff8000fffe67e0,0xffff8000fffec800
process=0xffff8000fffea9b0 user=0xffff80002cb5d000, vmspace=0xfffffd806c7a8468
estcpu=36, cpticks=1, pctcpu=0.0
user=0, sys=1, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
73015 165006 25132 32767 3 0x90 nanoslp syz-executor.3
73015 106597 25132 32767 3 0x4000090 fsleep syz-executor.3
73015 178539 25132 32767 7 0x4000010 syz-executor.3
73015 459268 25132 32767 2 0x4000010 syz-executor.3
42948 211389 83368 32767 2 0x10 syz-executor.2
42948 272107 83368 32767 3 0x4000090 fsleep syz-executor.2
80942 92863 53470 32767 2 0x10 syz-executor.5
80942 57913 53470 32767 3 0x4000090 fsleep syz-executor.5
59415 232209 93807 32767 2 0x10 syz-executor.1
59415 87627 93807 32767 2 0x4000010 syz-executor.1
59415 225630 93807 32767 3 0x4000090 fsleep syz-executor.1
15996 424823 71468 32767 3 0x90 nanoslp syz-executor.0
15996 314840 71468 32767 3 0x4000090 fsleep syz-executor.0
15996 205609 71468 32767 3 0x4000090 fsleep syz-executor.0
8858 470495 5974 32767 2 0x10 syz-executor.7
* 8858 214110 5974 32767 7 0x4000010 syz-executor.7
45093 50224 0 0 3 0x14200 bored sosplice
5974 77759 30390 32767 2 0x490 syz-executor.7
30390 302127 55291 0 3 0x82 wait syz-executor.7
53496 260053 85329 32767 2 0x10 syz-executor.4
98705 87837 28121 32767 2 0x10 syz-executor.6
25132 313945 52087 32767 3 0x90 nanoslp syz-executor.3
28121 112761 55291 0 3 0x82 wait syz-executor.6
53470 63219 94716 32767 3 0x90 nanoslp syz-executor.5
85329 98895 55291 0 3 0x82 wait syz-executor.4
83368 458763 74827 32767 3 0x90 nanoslp syz-executor.2
94716 269602 55291 0 3 0x82 wait syz-executor.5
52087 308627 55291 0 3 0x82 wait syz-executor.3
71468 443227 49891 32767 3 0x90 nanoslp syz-executor.0
93807 509904 39616 32767 2 0x10 syz-executor.1
74827 158412 55291 0 3 0x82 wait syz-executor.2
39616 140915 55291 0 3 0x82 wait syz-executor.1
49891 74621 55291 0 3 0x82 wait syz-executor.0
55291 385982 98576 0 3 0x82 kqread syz-fuzzer
55291 126052 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 26214 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 409468 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 93620 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 90280 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 509029 98576 0 3 0x4000082 thrsleep syz-fuzzer
55291 278339 98576 0 3 0x4000082 thrsleep syz-fuzzer
98576 422422 23921 0 3 0x10008a sigsusp ksh
23921 424193 93733 0 3 0x9a poll sshd
81026 6708 1 0 3 0x100083 ttyin getty
93733 503492 1 0 3 0x88 poll sshd
11538 270253 79726 73 3 0x100090 kqread syslogd
79726 94536 1 0 3 0x100082 netio syslogd
86334 260169 1 0 3 0x100080 kqread resolvd
81417 431314 59484 77 3 0x100092 kqread dhcpleased
77776 230883 59484 77 3 0x100092 kqread dhcpleased
59484 372433 1 0 3 0x80 kqread dhcpleased
46070 216328 0 0 3 0x14200 bored smr
15743 56502 0 0 2 0x14200 zerothread
82767 89062 0 0 3 0x14200 aiodoned aiodoned
93208 71694 0 0 3 0x14200 syncer update
70071 110634 0 0 3 0x14200 cleaner cleaner
84752 279305 0 0 3 0x14200 reaper reaper
21590 60062 0 0 3 0x14200 pgdaemon pagedaemon
95758 389040 0 0 3 0x14200 bored viomb
71691 144906 0 0 3 0x40014200 acpi0 acpi0
61951 97638 0 0 3 0x40014200 idle1
49739 175354 0 0 3 0x14200 bored softnet
4879 491912 0 0 3 0x14200 bored systqmp
73739 45321 0 0 3 0x14200 bored systq
64887 200658 0 0 2 0x40014200 softclock
93425 24733 0 0 3 0x40014200 idle0
1 494202 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{0}> show all locks
Process 8858 (syz-executor.7) thread 0xffff8000fffedcf0 (214110)
exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82acb1d0)
#0 witness_lock+0x44d
#1 __mp_acquire_count+0x48 sys/kern/kern_lock.c:227
#2 mi_switch+0x3d3 sys/kern/sched_bsd.c:416
#3 sleep_finish+0x1b2 sys/kern/kern_synch.c:433
#4 tsleep+0x12c sys/kern/kern_synch.c:158
#5 biowait+0x91 sys/kern/vfs_bio.c:1271
#6 bwrite+0x21b sys/kern/vfs_bio.c:772
#7 ffs_update+0x27d sys/ufs/ffs/ffs_inode.c:113
#8 ufs_mkdir+0x662 sys/ufs/ufs/ufs_vnops.c:1232
#9 VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
#10 domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
#11 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#11 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#12 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd80682f4928)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vget+0x1d3 sys/kern/vfs_subr.c:677
#6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119
#7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1318
#8 ffs_inode_alloc+0x1be sys/ufs/ffs/ffs_alloc.c:394
#9 ufs_mkdir+0xf4 sys/ufs/ufs/ufs_vnops.c:1162
#10 VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
#11 domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
#12 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#12 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#13 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd80682f44e8)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vfs_lookup+0xd1 sys/kern/vfs_lookup.c:413
#6 namei+0x36a sys/kern/vfs_lookup.c:245
#7 domkdirat+0x75 sys/kern/vfs_syscalls.c:3085
#8 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#8 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#9 Xsyscall+0x128
Process 53496 (syz-executor.4) thread 0xffff8000fffeea88 (260053)
exclusive rrwlock inode r = 0 (0xfffffd80682f42c8)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vn_closefile+0xc6 vn_close sys/kern/vfs_vnops.c:298 [inline]
#5 vn_closefile+0xc6 sys/kern/vfs_vnops.c:624
#6 fdrop+0xc7 sys/kern/kern_descrip.c:1279
#7 closef+0x11c sys/kern/kern_descrip.c:1263
#8 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#8 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#9 Xsyscall+0x128
Process 98705 (syz-executor.6) thread 0xffff8000fffee2a8 (87837)
exclusive rrwlock inode r = 0 (0xfffffd806e3fc700)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 ufs_ihashins+0x42 sys/ufs/ufs/ufs_ihash.c:140
#5 ffs_vget+0x141 sys/ufs/ffs/ffs_vfsops.c:1347
#6 ffs_inode_alloc+0x1be sys/ufs/ffs/ffs_alloc.c:394
#7 ufs_mkdir+0xf4 sys/ufs/ufs/ufs_vnops.c:1162
#8 VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
#9 domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
#10 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#10 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#11 Xsyscall+0x128
exclusive rrwlock inode r = 0 (0xfffffd806855e4e0)
#0 witness_lock+0x44d
#1 rw_enter+0x3e1 sys/kern/kern_rwlock.c:310
#2 rrw_enter+0x8b sys/kern/kern_rwlock.c:461
#3 VOP_LOCK+0x87 sys/kern/vfs_vops.c:534
#4 vn_lock+0x84 sys/kern/vfs_vnops.c:579
#5 vfs_lookup+0xd1 sys/kern/vfs_lookup.c:413
#6 namei+0x36a sys/kern/vfs_lookup.c:245
#7 domkdirat+0x75 sys/kern/vfs_syscalls.c:3085
#8 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#8 syscall+0x489 sys/arch/amd64/amd64/trap.c:585
#9 Xsyscall+0x128
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10170 6407K 6418K 78643K 11260 0
pcb 13 8K 8K 78643K 13 0
rtable 248 7K 7K 78643K 400 0
ifaddr 81 16K 16K 78643K 82 0
sysctl 2 0K 0K 78643K 2 0
counters 56 35K 35K 78643K 56 0
ioctlops 0 0K 2K 78643K 36 0
iov 0 0K 16K 78643K 840 0
mount 1 1K 1K 78643K 1 0
log 0 0K 0K 78643K 5 0
vnodes 1270 79K 79K 78643K 1437 0
UFS quota 1 32K 32K 78643K 1 0
UFS mount 5 36K 36K 78643K 5 0
shm 2 1K 1K 78643K 2 0
VM map 2 1K 1K 78643K 2 0
sem 12 1K 1K 78643K 288 0
dirhash 12 2K 2K 78643K 12 0
ACPI 1697 195K 286K 78643K 12598 0
file desc 24 89K 125K 78643K 1023 0
sigio 0 0K 0K 78643K 95 0
proc 56 74K 111K 78643K 574 0
subproc 104 6K 6K 78643K 104 0
NFS srvsock 1 0K 0K 78643K 1 0
NFS daemon 1 16K 16K 78643K 1 0
ip_moptions 0 0K 0K 78643K 138 0
in_multi 99 6K 6K 78643K 101 0
ether_multi 1 0K 0K 78643K 2 0
ISOFS mount 1 32K 32K 78643K 1 0
MSDOSFS mount 1 16K 16K 78643K 1 0
ttys 67 307K 307K 78643K 67 0
exec 0 0K 2K 78643K 757 0
tdb 3 0K 0K 78643K 3 0
pagedep 1 8K 8K 78643K 1 0
inodedep 1 32K 32K 78643K 1 0
newblk 1 0K 0K 78643K 1 0
VM swap 7 26K 26K 78643K 7 0
UVM amap 335 80K 82K 78643K 14566 0
UVM aobj 8 2K 2K 78643K 8 0
memdesc 1 4K 4K 78643K 1 0
crypto data 1 1K 1K 78643K 1 0
ip6_options 0 0K 0K 78643K 21 0
NDP 11 0K 2K 78643K 27 0
temp 94 4691K 4755K 78643K 6178 0
kqueue 10 14K 22K 78643K 66 0
SYN cache 2 16K 16K 78643K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 22 0 0 1 0 1 1 0 8 0
rtpcb 120 90 0 87 2 1 1 2 0 8 0
rtentry 112 116 0 1 4 0 4 4 0 8 0
unpcb 136 643 0 630 8 7 1 6 0 8 0
syncache 296 7 0 7 2 2 0 1 0 8 0
tcpqe 32 274 0 274 2 2 0 2 0 8 0
tcpcb 736 262 0 255 9 2 7 8 0 8 6
arp 120 18 0 0 1 0 1 1 0 8 0
ipq 40 2 0 0 1 0 1 1 0 8 0
ipqe 40 7 0 5 1 0 1 1 0 8 0
inpcb 304 567 0 558 7 3 4 6 0 8 3
nd6 48 29 0 0 1 0 1 1 0 8 0
kcovpl 48 8 0 0 1 0 1 1 0 8 0
art_heap8 4096 1 0 0 1 0 1 1 0 8 0
art_heap4 256 467 0 0 30 0 30 30 0 8 0
art_table 32 468 0 0 4 0 4 4 0 8 0
art_node 16 115 0 10 1 0 1 1 0 8 0
semapl 112 286 0 276 1 0 1 1 0 8 0
shmpl 112 5 0 0 1 0 1 1 0 8 0
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino2pl 256 2728 0 1297 90 0 90 90 0 8 0
ffsino 272 2728 0 1297 96 0 96 96 0 8 0
nchpl 144 4080 0 2417 62 0 62 62 0 8 0
uvmvnodes 80 2841 0 0 58 0 58 58 0 8 0
vnodes 224 2841 0 0 168 0 168 168 0 8 0
namei 1024 14637 0 14635 2 1 1 2 0 8 0
percpumem 16 40 0 0 1 0 1 1 0 8 0
scxspl 216 11871 0 11871 9 8 1 8 0 8 1
plimitpl 152 182 0 159 1 0 1 1 0 8 0
sigapl 424 1298 0 1248 7 0 7 7 0 8 0
futexpl 64 8360 0 8354 1 0 1 1 0 8 0
knotepl 112 110 0 0 3 0 3 3 0 8 0
kqueuepl 216 264 0 258 6 5 1 4 0 8 0
pipepl 336 317 0 289 13 5 8 8 0 8 5
fdescpl 496 1283 0 1248 7 1 6 6 0 8 0
filepl 152 7239 0 6997 22 7 15 16 0 8 5
lockfpl 104 70 0 68 1 0 1 1 0 8 0
lockfspl 48 31 0 29 1 0 1 1 0 8 0
sessionpl 144 23 0 7 1 0 1 1 0 8 0
pgrppl 48 23 0 7 1 0 1 1 0 8 0
ucredpl 96 976 0 958 1 0 1 1 0 8 0
zombiepl 144 1248 0 1248 1 0 1 1 0 8 1
processpl 1064 1298 0 1248 5 1 4 4 0 8 0
procpl 672 2961 0 2894 7 0 7 7 0 8 0
sosppl 168 15 0 15 1 1 0 1 0 8 0
sockpl 480 1379 0 1354 27 18 9 20 0 8 5
mcl64k 65536 9 0 0 2 0 2 2 0 8 0
mcl16k 16384 7 0 0 1 0 1 1 0 8 0
mcl12k 12288 8 0 0 1 0 1 1 0 8 0
mcl9k 9216 5 0 0 1 0 1 1 0 8 0
mcl8k 8192 9 0 0 2 0 2 2 0 8 0
mcl4k 4096 11 0 0 2 0 2 2 0 8 0
mcl2k2 2112 3 0 0 1 0 1 1 0 8 0
mcl2k 2048 228 0 0 28 0 28 28 0 8 0
mtagpl 96 2 0 0 1 0 1 1 0 8 0
mbufpl 256 368 0 0 22 0 22 22 0 8 0
bufpl 288 4653 0 143 323 0 323 323 0 8 0
anonpl 24 810466 0 796167 203 24 179 188 0 186 62
amapchunkpl 152 36846 0 36050 39 5 34 36 0 158 0
amappl16 200 32087 0 31720 208 163 45 70 0 8 18
amappl15 192 400 0 392 1 0 1 1 0 8 0
amappl14 184 337 0 328 1 0 1 1 0 8 0
amappl13 176 198 0 196 1 0 1 1 0 8 0
amappl12 168 23 0 16 1 0 1 1 0 8 0
amappl11 160 408 0 390 1 0 1 1 0 8 0
amappl10 152 38 0 31 1 0 1 1 0 8 0
amappl9 144 470 0 468 1 0 1 1 0 8 0
amappl8 136 598 0 541 2 0 2 2 0 8 0
amappl7 128 116 0 106 1 0 1 1 0 8 0
amappl6 120 213 0 193 2 1 1 2 0 8 0
amappl5 112 890 0 869 1 0 1 1 0 8 0
amappl4 104 1403 0 1368 2 1 1 2 0 8 0
amappl3 96 221 0 210 1 0 1 1 0 8 0
amappl2 88 672 0 629 3 1 2 3 0 8 0
amappl1 80 26432 0 25773 18 3 15 18 0 8 0
amappl 88 14099 0 13836 7 0 7 7 0 92 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 7 0 0 1 0 1 1 0 8 0
uaddrrnd 24 1283 0 1248 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 1283 0 1248 1 0 1 1 0 8 0
vmmpekpl 168 13721 0 13673 3 0 3 3 0 8 0
vmmpepl 168 149103 0 146451 176 22 154 163 0 357 29
vmsppl 368 1282 0 1248 4 0 4 4 0 8 0
rwobjpl 56 62038 0 57852 70 3 67 70 0 8 0
pdppl 4096 2573 0 2496 118 37 81 95 0 8 4
pvpl 32 1156672 0 1137184 312 25 287 297 0 265 87
pmappl 248 1282 0 1248 4 1 3 3 0 8 0
extentpl 40 57 0 38 1 0 1 1 0 8 0
phpool 112 749 0 47 21 0 21 21 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:440
panic(ffffffff8256893b) at panic+0x177 sys/kern/subr_prf.c:202
vop_generic_badop(ffff80002cb62938) at vop_generic_badop+0x1b sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd8069bebb88,fffffd8072f17c98) at VOP_STRATEGY+0x9b sys/kern/vfs_vops.c:644
bwrite(fffffd8072f17c98) at bwrite+0x1f0 sys/kern/vfs_bio.c:763
VOP_BWRITE(fffffd8072f17c98) at VOP_BWRITE+0x4a sys/kern/vfs_vops.c:656
ufs_mkdir(ffff80002cb62bd0) at ufs_mkdir+0x6b4 sys/ufs/ufs/ufs_vnops.c:1248
VOP_MKDIR(fffffd8069beb8e8,ffff80002cb62d30,ffff80002cb62d60,ffff80002cb62c60) at VOP_MKDIR+0xbf sys/kern/vfs_vops.c:404
domkdirat(ffff8000fffedcf0,ffffff9c,20000100,0) at domkdirat+0x121 sys/kern/vfs_syscalls.c:3100
syscall(ffff80002cb62ee0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff80002cb62ee0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xbed5132f230, count: -11
ddb{0}> machine ddbcpu 1
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
Anton Lindqvist
Jan 28, 2022, 8:24:14 AM1/28/22
to syzbot, syzkaller-o...@googlegroups.com
#syz invalid
Reply all
Reply to author
Forward
0 new messages