protection_fault: pmap_clear_attrs
0 views
Skip to first unread message
syzbot
Nov 18, 2025, 9:51:31 AM (3 days ago) Nov 18
to syzkaller-o...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: ae8b598acb72 rpki-client: validate octets in a printable s..
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=15c91658580000
kernel config: https://syzkaller.appspot.com/x/.config?x=7058272de1526588
dashboard link: https://syzkaller.appspot.com/bug?extid=d334ca9fc0f13b1403e4
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/140ad2837e4e/disk-ae8b598a.raw.xz
bsd.gdb: https://storage.googleapis.com/syzbot-assets/de2047374e44/bsd-ae8b598a.gdb.xz
kernel image: https://storage.googleapis.com/syzbot-assets/2b21ef5e245c/kernel-ae8b598a.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+d334ca...@syzkaller.appspotmail.com
kernel: protection fault trap, code=0
Stopped at pmap_clear_attrs+0x158: movq 0(%rax,%rbx,8),%r15
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
the kernel did not panic
ddb{0}> trace
pmap_clear_attrs(fffffd8008830b60,2) at pmap_clear_attrs+0x158 pmap_find_pte_direct sys/arch/amd64/amd64/pmap.c:474 [inline]
pmap_clear_attrs(fffffd8008830b60,2) at pmap_clear_attrs+0x158 sys/arch/amd64/amd64/pmap.c:2111
uvn_flush(fffffd806ec96738,0,0,31) at uvn_flush+0x608 sys/uvm/uvm_vnode.c:700
uvm_vnp_sync(ffff800000b4d400) at uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
sys_sync(ffff80002a27fca0,ffff800036bed0c0,ffff800036bed010) at sys_sync+0xda sys/kern/vfs_syscalls.c:534
syscall(ffff800036bed0c0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff800036bed0c0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x35168202160, count: -6
ddb{0}> show registers
rdi 0x1
rsi 0x1
rbp 0xffff800036bece00
rbx 0x6c
rdx 0xffff80000155ee40
rcx 0xffff80002a27fca0
rax 0xedd14164ff000
r8 0xffffffffffffffff
r9 0xffff800036becb18
r10 0x605534295e243739
r11 0x559b236c31d77557
r12 0x6c
r13 0x1
r14 0xfffffd805dac00f0
r15 0xfffffd800bd13000
rip 0xffffffff823a19a8 pmap_clear_attrs+0x158
cs 0x8
rflags 0x10206 __ALIGN_SIZE+0xf206
rsp 0xffff800036becd90
ss 0
pmap_clear_attrs+0x158: movq 0(%rax,%rbx,8),%r15
ddb{0}> show proc
PROC (syz-executor) tid=54138 pid=7343 tcnt=3 stat=onproc
flags process=0 proc=4000000<THREAD>
runpri=32, usrpri=83, slppri=32, nice=20
wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
forw=0xffffffffffffffff, list=0xffff80002a27f4d8,0xffff8000fffeda20
process=0xffff8000ffff4e78 user=0xffff800036be8000, vmspace=0xfffffd807d6bd008
estcpu=33, cpticks=2, pctcpu=0.0, user=0, sys=2, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
14848 507782 1305 0 2 0 syz-executor
14848 333178 1305 0 2 0x4000000 syz-executor
72101 481257 35682 0 2 0 syz-executor
72101 1747 35682 0 2 0x4000000 syz-executor
35519 379309 40943 0 2 0 syz-executor
35519 467391 40943 0 3 0x4000080 bell syz-executor
35519 366395 40943 0 3 0x4000080 fsleep syz-executor
35519 411267 40943 0 3 0x4000080 fsleep syz-executor
7343 426050 43944 0 2 0 syz-executor
7343 218032 43944 0 2 0x4000001 syz-executor
* 7343 54138 43944 0 7 0x4000000 syz-executor
71866 54805 74361 0 2 0 syz-executor
71866 79656 74361 0 2 0x4000000 syz-executor
71866 438467 74361 0 2 0x4000c00 syz-executor
71866 523857 74361 0 3 0x4000080 pipeiolk syz-executor
71866 3842 74361 0 3 0x4000080 lockf syz-executor
71866 181948 74361 0 3 0x4000080 lockf syz-executor
71866 504396 74361 0 3 0x4000000 pipecl syz-executor
76344 320661 0 0 3 0x14200 acct acct
86286 420711 19451 0 2 0xc82 syz-executor
43944 382190 19451 0 2 0xc82 syz-executor
56570 480396 1 0 3 0x100083 ttyopn getty
74361 332422 19451 0 2 0xc82 syz-executor
1305 323434 19451 0 2 0xc82 syz-executor
35682 464393 19451 0 2 0xc82 syz-executor
6373 6430 19451 0 2 0x2 syz-executor
10552 341773 19451 0 2 0x2 syz-executor
40943 9167 19451 0 2 0xc82 syz-executor
19451 467545 17163 0 3 0x82 kqread syz-executor
17163 48245 13719 0 3 0x10008a sigsusp ksh
13719 400989 32640 0 3 0x98 kqread sshd-session
32640 79554 76855 0 3 0x92 kqread sshd-session
76855 154976 1 0 3 0x88 kqread sshd
99133 162885 29091 74 3 0x1100092 bpf pflogd
29091 351501 1 0 3 0x80 sbwait pflogd
39132 318053 19811 73 3 0x1100090 kqread syslogd
19811 191297 1 0 3 0x100082 sbwait syslogd
19700 3078 1 0 3 0x100080 kqread resolvd
36466 458652 83349 77 3 0x100092 kqread dhcpleased
19364 442958 83349 77 3 0x100092 kqread dhcpleased
83349 296406 1 0 3 0x80 kqread dhcpleased
62126 383968 0 0 3 0x14200 bored smr
37178 315465 0 0 2 0x14200 zerothread
49998 326524 0 0 3 0x14200 aiodoned aiodoned
29721 383815 0 0 3 0x14200 syncer update
57477 387785 0 0 3 0x14200 cleaner cleaner
70338 501412 0 0 3 0x14200 reaper reaper
96535 9689 0 0 3 0x14200 pgdaemon pagedaemon
63562 486954 0 0 3 0x14200 bored viomb
48762 197274 0 0 3 0x40014200 acpi0 acpi0
53496 150347 0 0 7 0x40014200 idle1
55874 71929 0 0 3 0x14200 bored softnet1
41484 11855 0 0 3 0x14200 bored softnet0
51844 388180 0 0 3 0x14200 bored systqmp
33091 96068 0 0 3 0x14200 bored systq
68195 10997 0 0 3 0x14200 tmoslp softclockmp
88037 22583 0 0 3 0x40014200 tmoslp softclock
63913 485075 0 0 3 0x40014200 idle0
1 276752 0 0 3 0x82 wait init
0 0 -1 0 3 0x10010200 scheduler swapper
ddb{0}> show all locks
CPU 0:
exclusive mutex &(curpg)->mdpage.pv_mtx r = 0 (0xfffffd8008830bd8)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter_try+0x1ad sys/kern/kern_lock.c:311
#2 mtx_enter+0x62 sys/kern/kern_lock.c:261
#3 pmap_clear_attrs+0x9d sys/arch/amd64/amd64/pmap.c:-1
#4 uvn_flush+0x608 sys/uvm/uvm_vnode.c:700
#5 uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
#6 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#7 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#7 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#8 Xsyscall+0x128
exclusive mutex &uvm.pageqlock r = 0 (0xffffffff83976cd0)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter_try+0x1ad sys/kern/kern_lock.c:311
#2 mtx_enter+0x62 sys/kern/kern_lock.c:261
#3 uvn_flush+0x1ea sys/uvm/uvm_vnode.c:-1
#4 uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
#5 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#6 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#6 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#7 Xsyscall+0x128
Process 7343 (syz-executor) thread 0xffff8000fffecd18 (218032)
exclusive rrwlock inode r = 0 (0xfffffd807e404a60)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621
#3 VOP_LOCK+0xa3 sys/kern/vfs_vops.c:527
#4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570
#5 vget+0x2a2 sys/kern/vfs_subr.c:686
#6 ktrwriteraw+0x175 sys/kern/kern_ktrace.c:688
#7 ktrsysret+0x192 ktrwrite2 sys/kern/kern_ktrace.c:-1 [inline]
#7 ktrsysret+0x192 sys/kern/kern_ktrace.c:209
#8 syscall+0xa50 mi_syscall_return sys/sys/syscall_mi.h:204 [inline]
#8 syscall+0xa50 sys/arch/amd64/amd64/trap.c:786
#9 Xsyscall+0x128
Process 7343 (syz-executor) thread 0xffff80002a27fca0 (54138)
exclusive rwlock uobjlk r = 0 (0xfffffd806d83eeb8)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 uvm_vnp_sync+0x1cd sys/uvm/uvm_vnode.c:1507
#3 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#4 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#4 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#5 Xsyscall+0x128
exclusive rwlock uvnsync r = 0 (0xffffffff8397bb48)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 uvm_vnp_sync+0x31 sys/uvm/uvm_vnode.c:1474
#3 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#4 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#4 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#5 Xsyscall+0x128
exclusive kernel_lock &kernel_lock r = 0 (0xffffffff838b2ff8)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 __mp_acquire_count+0x58 sys/kern/kern_lock.c:-1
#2 sleep_finish+0x2d8 sys/kern/kern_synch.c:367
#3 rw_do_enter_write+0x1dc sys/kern/kern_rwlock.c:298
#4 uvm_vnp_sync+0x31 sys/uvm/uvm_vnode.c:1474
#5 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#6 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#6 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#7 Xsyscall+0x128
shared rwlock vfslock r = 0 (0xffff800000b4d460)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_read+0x3e8 sys/kern/kern_rwlock.c:413
#2 vfs_busy+0x94 sys/kern/vfs_subr.c:242
#3 sys_sync+0x5d sys/kern/vfs_syscalls.c:528
#4 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#4 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#5 Xsyscall+0x128
exclusive mutex &(curpg)->mdpage.pv_mtx r = 0 (0xfffffd8008830bd8)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter_try+0x1ad sys/kern/kern_lock.c:311
#2 mtx_enter+0x62 sys/kern/kern_lock.c:261
#3 pmap_clear_attrs+0x9d sys/arch/amd64/amd64/pmap.c:-1
#4 uvn_flush+0x608 sys/uvm/uvm_vnode.c:700
#5 uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
#6 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#7 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#7 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#8 Xsyscall+0x128
exclusive mutex &uvm.pageqlock r = 0 (0xffffffff83976cd0)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter_try+0x1ad sys/kern/kern_lock.c:311
#2 mtx_enter+0x62 sys/kern/kern_lock.c:261
#3 uvn_flush+0x1ea sys/uvm/uvm_vnode.c:-1
#4 uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
#5 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#6 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#6 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#7 Xsyscall+0x128
Process 71866 (syz-executor) thread 0xffff80003bc10028 (79656)
exclusive rrwlock inode r = 0 (0xfffffd806c6d9b48)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621
#3 VOP_LOCK+0xa3 sys/kern/vfs_vops.c:527
#4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570
#5 vn_write+0x18f sys/kern/vfs_vnops.c:405
#6 dofilewritev+0x242 sys/kern/sys_generic.c:380
#7 sys_write+0xa2 sys/kern/sys_generic.c:300
#8 syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#8 syscall+0xbd4 sys/arch/amd64/amd64/trap.c:765
#9 Xsyscall+0x128
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10243 11171K 11785K 166960K 14713 0
pcb 17 14K 15K 166960K 406 0
rtable 195 10K 11K 166960K 790 0
pf 34 17K 81K 166960K 240 0
ifaddr 37 6K 8K 166960K 167 0
ifgroup 55 2K 2K 166960K 284 0
sysctl 4 1K 9K 166960K 24 0
counters 68 36K 38K 166960K 622 0
ioctlops 0 0K 4K 166960K 2057 0
iov 0 0K 36K 166960K 209 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1479 93K 94K 166960K 3265 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 1K 9K 166960K 27 0
VM map 2 1K 1K 166960K 2 0
sem 12 0K 0K 166960K 142 0
dirhash 12 2K 2K 166960K 48 0
ACPI 1692 195K 286K 166960K 12470 0
file desc 16 57K 240K 166960K 2210 0
sigio 0 0K 0K 166960K 113 0
proc 72 115K 163K 166960K 967 0
subproc 72 4K 4K 166960K 136 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 0 0K 0K 166960K 264 0
in_multi 70 5K 7K 166960K 286 0
ether_multi 1 0K 0K 166960K 38 0
mrt 3 0K 0K 166960K 30 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 253 1129K 1129K 166960K 253 0
exec 0 0K 1K 166960K 685 0
fusefs mount 1 32K 32K 166960K 1 0
pfkey data 0 0K 0K 166960K 4 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 255 160K 184K 166960K 20904 0
UVM aobj 12 12K 12K 166960K 13 0
pinsyscall 41 82K 102K 166960K 3514 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 0K 166960K 118 0
NDP 12 0K 2K 166960K 113 0
temp 79 8676K 8752K 166960K 98179 0
kqueue 13 20K 32K 166960K 444 0
SYN cache 2 16K 16K 166960K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 26 0 0 1 0 1 1 0 8 0
rtpcb 120 287 0 284 4 3 1 3 0 8 0
rtentry 176 229 0 154 6 1 5 6 0 8 0
unpcb 144 1517 0 1500 15 9 6 8 0 8 5
syncache 336 13 0 13 4 4 0 1 0 8 0
tcpqe 32 2 0 2 2 2 0 1 0 8 0
tcpcb 736 770 0 765 15 9 6 7 0 8 5
arp 136 33 0 17 1 0 1 1 0 8 0
inpcb 328 2397 0 2388 24 18 6 12 0 8 4
nd6 152 49 0 33 1 0 1 1 0 8 0
pkpcb 40 14 0 14 4 3 1 1 0 8 1
kcovpl 48 15 0 7 1 0 1 1 0 8 0
mppekey 1024 1 0 1 1 1 0 1 0 8 0
ppxss 1192 243 0 243 2 1 1 1 0 8 1
pppxif 1504 19 0 19 3 3 0 1 0 8 0
pffrag 232 12 0 4 1 0 1 1 0 482 0
pffrnode 88 11 0 3 1 0 1 1 0 8 0
pffrent 40 18 0 10 1 0 1 1 0 8 0
pfosfp 40 1428 0 1005 5 0 5 5 0 8 0
pfosfpen 112 1428 0 714 21 0 21 21 0 8 0
pfrktable 1344 1 0 1 1 1 0 1 0 8 0
pfanchor 1288 3 0 3 2 2 0 1 0 8 0
pftag 88 4 0 1 1 0 1 1 0 8 0
pfstitem 24 51 0 42 1 0 1 1 0 8 0
pfstkey 128 51 0 42 2 0 2 2 0 8 0
pfstate 448 51 0 42 5 0 5 5 0 8 1
pfrule 1344 34 0 27 2 1 1 2 0 8 0
rttmr 136 3 0 3 3 2 1 1 0 8 1
art_heap8 4096 3 0 1 3 1 2 2 0 8 0
art_heap4 256 1092 0 765 38 14 24 31 0 8 1
art_table 40 1095 0 766 5 0 5 5 0 8 0
art_node 32 229 0 162 1 0 1 1 0 8 0
sysvmsgpl 40 21 0 16 1 0 1 1 0 8 0
semupl 112 2 0 2 2 2 0 1 0 8 0
semapl 112 137 0 127 1 0 1 1 0 8 0
shmpl 112 4 0 0 1 0 1 1 0 8 0
dirhash 1024 41 0 24 3 0 3 3 0 8 0
dino2pl 256 5238 0 3726 96 0 96 96 0 8 0
ffsino 296 5238 0 3726 117 0 117 117 0 8 0
nchpl 144 8162 0 6440 65 0 65 65 0 8 0
rtmask 32 18 0 18 4 3 1 1 0 8 1
vnodes 216 5926 0 0 330 0 330 330 0 8 0
namei 1024 30111 0 30111 3 2 1 2 0 8 1
percpumem 16 326 0 277 1 0 1 1 0 8 0
vcpupl 3968 6 0 1 1 0 1 1 0 8 0
vmpool 840 6 0 1 1 0 1 1 0 8 0
kstatmem 264 168 0 140 3 0 3 3 0 8 0
acpiwqpl 32 2 0 2 1 0 1 1 1 8 1
scsiplug 72 5 0 5 5 5 0 1 0 8 0
scxspl 216 55235 0 55235 14 12 2 8 1 8 2
plimitpl 152 883 0 864 1 0 1 1 0 8 0
sigapl 424 2472 0 2425 7 1 6 7 0 8 0
knotepl 120 588 0 0 18 0 18 18 0 8 0
kqueuepl 224 895 0 886 8 3 5 5 0 8 4
pipepl 344 479 0 450 15 9 6 9 0 8 3
fdescpl 528 2447 0 2417 3 0 3 3 0 8 0
filepl 160 17485 0 17254 31 12 19 21 0 8 6
lockfpl 104 1394 0 1386 3 2 1 2 0 8 0
lockfspl 48 442 0 436 1 0 1 1 0 8 0
sessionpl 144 39 0 30 1 0 1 1 0 8 0
pgrppl 48 70 0 53 1 0 1 1 0 8 0
ucredpl 104 2476 0 2463 1 0 1 1 0 8 0
zombiepl 144 2426 0 2425 1 0 1 1 0 8 0
processpl 1232 2472 0 2425 5 1 4 5 0 8 0
procpl 664 5670 0 5610 6 0 6 6 0 8 0
sosppl 176 14 0 14 5 4 1 1 0 8 1
sockpl 752 4272 0 4243 47 37 10 23 0 8 6
mcl64k 65536 25 0 0 4 0 4 4 0 8 0
mcl16k 16384 3 0 0 1 0 1 1 0 8 0
mcl12k 12288 1 0 0 1 0 1 1 0 8 0
mcl9k 9216 3 0 0 1 0 1 1 0 8 0
mcl8k 8192 5 0 0 1 0 1 1 0 8 0
mcl4k 4096 114 0 0 14 0 14 14 0 8 0
mcl2k2 2112 1 0 0 1 0 1 1 0 8 0
mcl2k 2048 46 0 0 5 0 5 5 0 8 0
mtagpl 96 133 0 0 3 0 3 3 0 8 0
mbufpl 256 1878 0 0 118 0 118 118 0 8 0
bufpl 280 21907 0 15770 439 0 439 439 0 8 0
anonpl 32 12789 0 0 104 1 103 103 0 246 0
amapchunkpl 152 72620 0 72085 48 15 33 34 0 158 8
amappl16 200 8273 0 8144 64 45 19 29 0 8 8
amappl15 192 5 0 5 2 2 0 1 0 8 0
amappl14 184 8 0 8 2 2 0 1 0 8 0
amappl13 176 510 0 509 1 0 1 1 0 8 0
amappl12 168 2875 0 2833 3 0 3 3 0 8 0
amappl11 160 5 0 5 1 1 0 1 0 8 0
amappl10 152 50 0 35 1 0 1 1 0 8 0
amappl9 144 248 0 248 1 1 0 1 0 8 0
amappl8 136 25 0 22 1 0 1 1 0 8 0
amappl7 128 107 0 106 1 0 1 1 0 8 0
amappl6 120 375 0 362 1 0 1 1 0 8 0
amappl5 112 89 0 78 1 0 1 1 0 8 0
amappl4 104 503 0 470 1 0 1 1 0 8 0
amappl3 96 12625 0 12527 4 1 3 3 0 8 0
amappl2 88 2622 0 2542 2 0 2 2 0 8 0
amappl1 80 20287 0 19701 17 3 14 14 0 8 0
amappl 88 19668 0 19494 5 0 5 5 0 92 0
uvmvnodes 80 173 0 0 4 0 4 4 0 8 0
dma65536 65536 1 0 1 1 1 0 1 0 8 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma2048 2048 1 0 1 1 1 0 1 0 8 0
dma1024 1024 2 0 1 1 0 1 1 0 8 0
dma256 256 7 0 7 2 2 0 1 0 8 0
dma128 128 256 0 256 4 4 0 1 0 8 0
dma64 64 9 0 9 4 3 1 1 0 8 1
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 19 0 18 1 0 1 1 0 8 0
aobjpl 72 12 0 1 1 0 1 1 0 8 0
uaddrrnd 24 2447 0 2417 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 2447 0 2417 1 0 1 1 0 8 0
vmmpekpl 168 20278 0 20212 4 0 4 4 0 8 0
vmmpepl 168 160141 0 158115 126 18 108 109 0 357 8
vmsppl 488 2446 0 2417 6 1 5 5 0 8 0
rwobjpl 80 42881 0 41644 40 6 34 34 0 8 3
pdppl 4096 4914 0 4841 124 46 78 84 0 8 5
pvpl 32 20873 0 0 168 0 168 168 0 265 0
pmappl 256 2452 0 2418 3 0 3 3 0 8 0
extentpl 40 45 0 27 1 0 1 1 0 8 0
phpool 112 444 0 82 11 0 11 11 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
pmap_clear_attrs(fffffd8008830b60,2) at pmap_clear_attrs+0x158 pmap_find_pte_direct sys/arch/amd64/amd64/pmap.c:474 [inline]
pmap_clear_attrs(fffffd8008830b60,2) at pmap_clear_attrs+0x158 sys/arch/amd64/amd64/pmap.c:2111
uvn_flush(fffffd806ec96738,0,0,31) at uvn_flush+0x608 sys/uvm/uvm_vnode.c:700
uvm_vnp_sync(ffff800000b4d400) at uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
sys_sync(ffff80002a27fca0,ffff800036bed0c0,ffff800036bed010) at sys_sync+0xda sys/kern/vfs_syscalls.c:534
syscall(ffff800036bed0c0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff800036bed0c0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x35168202160, count: -6
ddb{0}> machine ddbcpu 1
Stopped at x86_ipi_db+0x27: addq $0x8,%rsp
ddb{1}> trace
x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
acpicpu_idle() at acpicpu_idle+0x457 sys/dev/acpi/acpicpu_x86.c:1224
sched_idle(ffff8000299edff0) at sched_idle+0x391 sys/kern/kern_sched.c:191
end trace frame: 0x0, count: -5
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: ae8b598acb72 rpki-client: validate octets in a printable s..
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=15c91658580000
kernel config: https://syzkaller.appspot.com/x/.config?x=7058272de1526588
dashboard link: https://syzkaller.appspot.com/bug?extid=d334ca9fc0f13b1403e4
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/140ad2837e4e/disk-ae8b598a.raw.xz
bsd.gdb: https://storage.googleapis.com/syzbot-assets/de2047374e44/bsd-ae8b598a.gdb.xz
kernel image: https://storage.googleapis.com/syzbot-assets/2b21ef5e245c/kernel-ae8b598a.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+d334ca...@syzkaller.appspotmail.com
kernel: protection fault trap, code=0
Stopped at pmap_clear_attrs+0x158: movq 0(%rax,%rbx,8),%r15
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
the kernel did not panic
ddb{0}> trace
pmap_clear_attrs(fffffd8008830b60,2) at pmap_clear_attrs+0x158 pmap_find_pte_direct sys/arch/amd64/amd64/pmap.c:474 [inline]
pmap_clear_attrs(fffffd8008830b60,2) at pmap_clear_attrs+0x158 sys/arch/amd64/amd64/pmap.c:2111
uvn_flush(fffffd806ec96738,0,0,31) at uvn_flush+0x608 sys/uvm/uvm_vnode.c:700
uvm_vnp_sync(ffff800000b4d400) at uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
sys_sync(ffff80002a27fca0,ffff800036bed0c0,ffff800036bed010) at sys_sync+0xda sys/kern/vfs_syscalls.c:534
syscall(ffff800036bed0c0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff800036bed0c0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x35168202160, count: -6
ddb{0}> show registers
rdi 0x1
rsi 0x1
rbp 0xffff800036bece00
rbx 0x6c
rdx 0xffff80000155ee40
rcx 0xffff80002a27fca0
rax 0xedd14164ff000
r8 0xffffffffffffffff
r9 0xffff800036becb18
r10 0x605534295e243739
r11 0x559b236c31d77557
r12 0x6c
r13 0x1
r14 0xfffffd805dac00f0
r15 0xfffffd800bd13000
rip 0xffffffff823a19a8 pmap_clear_attrs+0x158
cs 0x8
rflags 0x10206 __ALIGN_SIZE+0xf206
rsp 0xffff800036becd90
ss 0
pmap_clear_attrs+0x158: movq 0(%rax,%rbx,8),%r15
ddb{0}> show proc
PROC (syz-executor) tid=54138 pid=7343 tcnt=3 stat=onproc
flags process=0 proc=4000000<THREAD>
runpri=32, usrpri=83, slppri=32, nice=20
wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
forw=0xffffffffffffffff, list=0xffff80002a27f4d8,0xffff8000fffeda20
process=0xffff8000ffff4e78 user=0xffff800036be8000, vmspace=0xfffffd807d6bd008
estcpu=33, cpticks=2, pctcpu=0.0, user=0, sys=2, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
14848 507782 1305 0 2 0 syz-executor
14848 333178 1305 0 2 0x4000000 syz-executor
72101 481257 35682 0 2 0 syz-executor
72101 1747 35682 0 2 0x4000000 syz-executor
35519 379309 40943 0 2 0 syz-executor
35519 467391 40943 0 3 0x4000080 bell syz-executor
35519 366395 40943 0 3 0x4000080 fsleep syz-executor
35519 411267 40943 0 3 0x4000080 fsleep syz-executor
7343 426050 43944 0 2 0 syz-executor
7343 218032 43944 0 2 0x4000001 syz-executor
* 7343 54138 43944 0 7 0x4000000 syz-executor
71866 54805 74361 0 2 0 syz-executor
71866 79656 74361 0 2 0x4000000 syz-executor
71866 438467 74361 0 2 0x4000c00 syz-executor
71866 523857 74361 0 3 0x4000080 pipeiolk syz-executor
71866 3842 74361 0 3 0x4000080 lockf syz-executor
71866 181948 74361 0 3 0x4000080 lockf syz-executor
71866 504396 74361 0 3 0x4000000 pipecl syz-executor
76344 320661 0 0 3 0x14200 acct acct
86286 420711 19451 0 2 0xc82 syz-executor
43944 382190 19451 0 2 0xc82 syz-executor
56570 480396 1 0 3 0x100083 ttyopn getty
74361 332422 19451 0 2 0xc82 syz-executor
1305 323434 19451 0 2 0xc82 syz-executor
35682 464393 19451 0 2 0xc82 syz-executor
6373 6430 19451 0 2 0x2 syz-executor
10552 341773 19451 0 2 0x2 syz-executor
40943 9167 19451 0 2 0xc82 syz-executor
19451 467545 17163 0 3 0x82 kqread syz-executor
17163 48245 13719 0 3 0x10008a sigsusp ksh
13719 400989 32640 0 3 0x98 kqread sshd-session
32640 79554 76855 0 3 0x92 kqread sshd-session
76855 154976 1 0 3 0x88 kqread sshd
99133 162885 29091 74 3 0x1100092 bpf pflogd
29091 351501 1 0 3 0x80 sbwait pflogd
39132 318053 19811 73 3 0x1100090 kqread syslogd
19811 191297 1 0 3 0x100082 sbwait syslogd
19700 3078 1 0 3 0x100080 kqread resolvd
36466 458652 83349 77 3 0x100092 kqread dhcpleased
19364 442958 83349 77 3 0x100092 kqread dhcpleased
83349 296406 1 0 3 0x80 kqread dhcpleased
62126 383968 0 0 3 0x14200 bored smr
37178 315465 0 0 2 0x14200 zerothread
49998 326524 0 0 3 0x14200 aiodoned aiodoned
29721 383815 0 0 3 0x14200 syncer update
57477 387785 0 0 3 0x14200 cleaner cleaner
70338 501412 0 0 3 0x14200 reaper reaper
96535 9689 0 0 3 0x14200 pgdaemon pagedaemon
63562 486954 0 0 3 0x14200 bored viomb
48762 197274 0 0 3 0x40014200 acpi0 acpi0
53496 150347 0 0 7 0x40014200 idle1
55874 71929 0 0 3 0x14200 bored softnet1
41484 11855 0 0 3 0x14200 bored softnet0
51844 388180 0 0 3 0x14200 bored systqmp
33091 96068 0 0 3 0x14200 bored systq
68195 10997 0 0 3 0x14200 tmoslp softclockmp
88037 22583 0 0 3 0x40014200 tmoslp softclock
63913 485075 0 0 3 0x40014200 idle0
1 276752 0 0 3 0x82 wait init
0 0 -1 0 3 0x10010200 scheduler swapper
ddb{0}> show all locks
CPU 0:
exclusive mutex &(curpg)->mdpage.pv_mtx r = 0 (0xfffffd8008830bd8)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter_try+0x1ad sys/kern/kern_lock.c:311
#2 mtx_enter+0x62 sys/kern/kern_lock.c:261
#3 pmap_clear_attrs+0x9d sys/arch/amd64/amd64/pmap.c:-1
#4 uvn_flush+0x608 sys/uvm/uvm_vnode.c:700
#5 uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
#6 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#7 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#7 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#8 Xsyscall+0x128
exclusive mutex &uvm.pageqlock r = 0 (0xffffffff83976cd0)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter_try+0x1ad sys/kern/kern_lock.c:311
#2 mtx_enter+0x62 sys/kern/kern_lock.c:261
#3 uvn_flush+0x1ea sys/uvm/uvm_vnode.c:-1
#4 uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
#5 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#6 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#6 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#7 Xsyscall+0x128
Process 7343 (syz-executor) thread 0xffff8000fffecd18 (218032)
exclusive rrwlock inode r = 0 (0xfffffd807e404a60)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621
#3 VOP_LOCK+0xa3 sys/kern/vfs_vops.c:527
#4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570
#5 vget+0x2a2 sys/kern/vfs_subr.c:686
#6 ktrwriteraw+0x175 sys/kern/kern_ktrace.c:688
#7 ktrsysret+0x192 ktrwrite2 sys/kern/kern_ktrace.c:-1 [inline]
#7 ktrsysret+0x192 sys/kern/kern_ktrace.c:209
#8 syscall+0xa50 mi_syscall_return sys/sys/syscall_mi.h:204 [inline]
#8 syscall+0xa50 sys/arch/amd64/amd64/trap.c:786
#9 Xsyscall+0x128
Process 7343 (syz-executor) thread 0xffff80002a27fca0 (54138)
exclusive rwlock uobjlk r = 0 (0xfffffd806d83eeb8)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 uvm_vnp_sync+0x1cd sys/uvm/uvm_vnode.c:1507
#3 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#4 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#4 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#5 Xsyscall+0x128
exclusive rwlock uvnsync r = 0 (0xffffffff8397bb48)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 uvm_vnp_sync+0x31 sys/uvm/uvm_vnode.c:1474
#3 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#4 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#4 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#5 Xsyscall+0x128
exclusive kernel_lock &kernel_lock r = 0 (0xffffffff838b2ff8)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 __mp_acquire_count+0x58 sys/kern/kern_lock.c:-1
#2 sleep_finish+0x2d8 sys/kern/kern_synch.c:367
#3 rw_do_enter_write+0x1dc sys/kern/kern_rwlock.c:298
#4 uvm_vnp_sync+0x31 sys/uvm/uvm_vnode.c:1474
#5 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#6 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#6 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#7 Xsyscall+0x128
shared rwlock vfslock r = 0 (0xffff800000b4d460)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_read+0x3e8 sys/kern/kern_rwlock.c:413
#2 vfs_busy+0x94 sys/kern/vfs_subr.c:242
#3 sys_sync+0x5d sys/kern/vfs_syscalls.c:528
#4 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#4 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#5 Xsyscall+0x128
exclusive mutex &(curpg)->mdpage.pv_mtx r = 0 (0xfffffd8008830bd8)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter_try+0x1ad sys/kern/kern_lock.c:311
#2 mtx_enter+0x62 sys/kern/kern_lock.c:261
#3 pmap_clear_attrs+0x9d sys/arch/amd64/amd64/pmap.c:-1
#4 uvn_flush+0x608 sys/uvm/uvm_vnode.c:700
#5 uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
#6 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#7 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#7 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#8 Xsyscall+0x128
exclusive mutex &uvm.pageqlock r = 0 (0xffffffff83976cd0)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 mtx_enter_try+0x1ad sys/kern/kern_lock.c:311
#2 mtx_enter+0x62 sys/kern/kern_lock.c:261
#3 uvn_flush+0x1ea sys/uvm/uvm_vnode.c:-1
#4 uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
#5 sys_sync+0xda sys/kern/vfs_syscalls.c:534
#6 syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#6 syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
#7 Xsyscall+0x128
Process 71866 (syz-executor) thread 0xffff80003bc10028 (79656)
exclusive rrwlock inode r = 0 (0xfffffd806c6d9b48)
#0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline]
#0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160
#1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320
#2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621
#3 VOP_LOCK+0xa3 sys/kern/vfs_vops.c:527
#4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570
#5 vn_write+0x18f sys/kern/vfs_vnops.c:405
#6 dofilewritev+0x242 sys/kern/sys_generic.c:380
#7 sys_write+0xa2 sys/kern/sys_generic.c:300
#8 syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
#8 syscall+0xbd4 sys/arch/amd64/amd64/trap.c:765
#9 Xsyscall+0x128
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10243 11171K 11785K 166960K 14713 0
pcb 17 14K 15K 166960K 406 0
rtable 195 10K 11K 166960K 790 0
pf 34 17K 81K 166960K 240 0
ifaddr 37 6K 8K 166960K 167 0
ifgroup 55 2K 2K 166960K 284 0
sysctl 4 1K 9K 166960K 24 0
counters 68 36K 38K 166960K 622 0
ioctlops 0 0K 4K 166960K 2057 0
iov 0 0K 36K 166960K 209 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1479 93K 94K 166960K 3265 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 1K 9K 166960K 27 0
VM map 2 1K 1K 166960K 2 0
sem 12 0K 0K 166960K 142 0
dirhash 12 2K 2K 166960K 48 0
ACPI 1692 195K 286K 166960K 12470 0
file desc 16 57K 240K 166960K 2210 0
sigio 0 0K 0K 166960K 113 0
proc 72 115K 163K 166960K 967 0
subproc 72 4K 4K 166960K 136 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 0 0K 0K 166960K 264 0
in_multi 70 5K 7K 166960K 286 0
ether_multi 1 0K 0K 166960K 38 0
mrt 3 0K 0K 166960K 30 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 253 1129K 1129K 166960K 253 0
exec 0 0K 1K 166960K 685 0
fusefs mount 1 32K 32K 166960K 1 0
pfkey data 0 0K 0K 166960K 4 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 255 160K 184K 166960K 20904 0
UVM aobj 12 12K 12K 166960K 13 0
pinsyscall 41 82K 102K 166960K 3514 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 0K 166960K 118 0
NDP 12 0K 2K 166960K 113 0
temp 79 8676K 8752K 166960K 98179 0
kqueue 13 20K 32K 166960K 444 0
SYN cache 2 16K 16K 166960K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 26 0 0 1 0 1 1 0 8 0
rtpcb 120 287 0 284 4 3 1 3 0 8 0
rtentry 176 229 0 154 6 1 5 6 0 8 0
unpcb 144 1517 0 1500 15 9 6 8 0 8 5
syncache 336 13 0 13 4 4 0 1 0 8 0
tcpqe 32 2 0 2 2 2 0 1 0 8 0
tcpcb 736 770 0 765 15 9 6 7 0 8 5
arp 136 33 0 17 1 0 1 1 0 8 0
inpcb 328 2397 0 2388 24 18 6 12 0 8 4
nd6 152 49 0 33 1 0 1 1 0 8 0
pkpcb 40 14 0 14 4 3 1 1 0 8 1
kcovpl 48 15 0 7 1 0 1 1 0 8 0
mppekey 1024 1 0 1 1 1 0 1 0 8 0
ppxss 1192 243 0 243 2 1 1 1 0 8 1
pppxif 1504 19 0 19 3 3 0 1 0 8 0
pffrag 232 12 0 4 1 0 1 1 0 482 0
pffrnode 88 11 0 3 1 0 1 1 0 8 0
pffrent 40 18 0 10 1 0 1 1 0 8 0
pfosfp 40 1428 0 1005 5 0 5 5 0 8 0
pfosfpen 112 1428 0 714 21 0 21 21 0 8 0
pfrktable 1344 1 0 1 1 1 0 1 0 8 0
pfanchor 1288 3 0 3 2 2 0 1 0 8 0
pftag 88 4 0 1 1 0 1 1 0 8 0
pfstitem 24 51 0 42 1 0 1 1 0 8 0
pfstkey 128 51 0 42 2 0 2 2 0 8 0
pfstate 448 51 0 42 5 0 5 5 0 8 1
pfrule 1344 34 0 27 2 1 1 2 0 8 0
rttmr 136 3 0 3 3 2 1 1 0 8 1
art_heap8 4096 3 0 1 3 1 2 2 0 8 0
art_heap4 256 1092 0 765 38 14 24 31 0 8 1
art_table 40 1095 0 766 5 0 5 5 0 8 0
art_node 32 229 0 162 1 0 1 1 0 8 0
sysvmsgpl 40 21 0 16 1 0 1 1 0 8 0
semupl 112 2 0 2 2 2 0 1 0 8 0
semapl 112 137 0 127 1 0 1 1 0 8 0
shmpl 112 4 0 0 1 0 1 1 0 8 0
dirhash 1024 41 0 24 3 0 3 3 0 8 0
dino2pl 256 5238 0 3726 96 0 96 96 0 8 0
ffsino 296 5238 0 3726 117 0 117 117 0 8 0
nchpl 144 8162 0 6440 65 0 65 65 0 8 0
rtmask 32 18 0 18 4 3 1 1 0 8 1
vnodes 216 5926 0 0 330 0 330 330 0 8 0
namei 1024 30111 0 30111 3 2 1 2 0 8 1
percpumem 16 326 0 277 1 0 1 1 0 8 0
vcpupl 3968 6 0 1 1 0 1 1 0 8 0
vmpool 840 6 0 1 1 0 1 1 0 8 0
kstatmem 264 168 0 140 3 0 3 3 0 8 0
acpiwqpl 32 2 0 2 1 0 1 1 1 8 1
scsiplug 72 5 0 5 5 5 0 1 0 8 0
scxspl 216 55235 0 55235 14 12 2 8 1 8 2
plimitpl 152 883 0 864 1 0 1 1 0 8 0
sigapl 424 2472 0 2425 7 1 6 7 0 8 0
knotepl 120 588 0 0 18 0 18 18 0 8 0
kqueuepl 224 895 0 886 8 3 5 5 0 8 4
pipepl 344 479 0 450 15 9 6 9 0 8 3
fdescpl 528 2447 0 2417 3 0 3 3 0 8 0
filepl 160 17485 0 17254 31 12 19 21 0 8 6
lockfpl 104 1394 0 1386 3 2 1 2 0 8 0
lockfspl 48 442 0 436 1 0 1 1 0 8 0
sessionpl 144 39 0 30 1 0 1 1 0 8 0
pgrppl 48 70 0 53 1 0 1 1 0 8 0
ucredpl 104 2476 0 2463 1 0 1 1 0 8 0
zombiepl 144 2426 0 2425 1 0 1 1 0 8 0
processpl 1232 2472 0 2425 5 1 4 5 0 8 0
procpl 664 5670 0 5610 6 0 6 6 0 8 0
sosppl 176 14 0 14 5 4 1 1 0 8 1
sockpl 752 4272 0 4243 47 37 10 23 0 8 6
mcl64k 65536 25 0 0 4 0 4 4 0 8 0
mcl16k 16384 3 0 0 1 0 1 1 0 8 0
mcl12k 12288 1 0 0 1 0 1 1 0 8 0
mcl9k 9216 3 0 0 1 0 1 1 0 8 0
mcl8k 8192 5 0 0 1 0 1 1 0 8 0
mcl4k 4096 114 0 0 14 0 14 14 0 8 0
mcl2k2 2112 1 0 0 1 0 1 1 0 8 0
mcl2k 2048 46 0 0 5 0 5 5 0 8 0
mtagpl 96 133 0 0 3 0 3 3 0 8 0
mbufpl 256 1878 0 0 118 0 118 118 0 8 0
bufpl 280 21907 0 15770 439 0 439 439 0 8 0
anonpl 32 12789 0 0 104 1 103 103 0 246 0
amapchunkpl 152 72620 0 72085 48 15 33 34 0 158 8
amappl16 200 8273 0 8144 64 45 19 29 0 8 8
amappl15 192 5 0 5 2 2 0 1 0 8 0
amappl14 184 8 0 8 2 2 0 1 0 8 0
amappl13 176 510 0 509 1 0 1 1 0 8 0
amappl12 168 2875 0 2833 3 0 3 3 0 8 0
amappl11 160 5 0 5 1 1 0 1 0 8 0
amappl10 152 50 0 35 1 0 1 1 0 8 0
amappl9 144 248 0 248 1 1 0 1 0 8 0
amappl8 136 25 0 22 1 0 1 1 0 8 0
amappl7 128 107 0 106 1 0 1 1 0 8 0
amappl6 120 375 0 362 1 0 1 1 0 8 0
amappl5 112 89 0 78 1 0 1 1 0 8 0
amappl4 104 503 0 470 1 0 1 1 0 8 0
amappl3 96 12625 0 12527 4 1 3 3 0 8 0
amappl2 88 2622 0 2542 2 0 2 2 0 8 0
amappl1 80 20287 0 19701 17 3 14 14 0 8 0
amappl 88 19668 0 19494 5 0 5 5 0 92 0
uvmvnodes 80 173 0 0 4 0 4 4 0 8 0
dma65536 65536 1 0 1 1 1 0 1 0 8 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma2048 2048 1 0 1 1 1 0 1 0 8 0
dma1024 1024 2 0 1 1 0 1 1 0 8 0
dma256 256 7 0 7 2 2 0 1 0 8 0
dma128 128 256 0 256 4 4 0 1 0 8 0
dma64 64 9 0 9 4 3 1 1 0 8 1
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 19 0 18 1 0 1 1 0 8 0
aobjpl 72 12 0 1 1 0 1 1 0 8 0
uaddrrnd 24 2447 0 2417 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 2447 0 2417 1 0 1 1 0 8 0
vmmpekpl 168 20278 0 20212 4 0 4 4 0 8 0
vmmpepl 168 160141 0 158115 126 18 108 109 0 357 8
vmsppl 488 2446 0 2417 6 1 5 5 0 8 0
rwobjpl 80 42881 0 41644 40 6 34 34 0 8 3
pdppl 4096 4914 0 4841 124 46 78 84 0 8 5
pvpl 32 20873 0 0 168 0 168 168 0 265 0
pmappl 256 2452 0 2418 3 0 3 3 0 8 0
extentpl 40 45 0 27 1 0 1 1 0 8 0
phpool 112 444 0 82 11 0 11 11 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
pmap_clear_attrs(fffffd8008830b60,2) at pmap_clear_attrs+0x158 pmap_find_pte_direct sys/arch/amd64/amd64/pmap.c:474 [inline]
pmap_clear_attrs(fffffd8008830b60,2) at pmap_clear_attrs+0x158 sys/arch/amd64/amd64/pmap.c:2111
uvn_flush(fffffd806ec96738,0,0,31) at uvn_flush+0x608 sys/uvm/uvm_vnode.c:700
uvm_vnp_sync(ffff800000b4d400) at uvm_vnp_sync+0x1e7 sys/uvm/uvm_vnode.c:1515
sys_sync(ffff80002a27fca0,ffff800036bed0c0,ffff800036bed010) at sys_sync+0xda sys/kern/vfs_syscalls.c:534
syscall(ffff800036bed0c0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff800036bed0c0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:765
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x35168202160, count: -6
ddb{0}> machine ddbcpu 1
Stopped at x86_ipi_db+0x27: addq $0x8,%rsp
ddb{1}> trace
x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
acpicpu_idle() at acpicpu_idle+0x457 sys/dev/acpi/acpicpu_x86.c:1224
sched_idle(ffff8000299edff0) at sched_idle+0x391 sys/kern/kern_sched.c:191
end trace frame: 0x0, count: -5
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
Reply all
Reply to author
Forward
0 new messages