1 TITLE: assertion failed: page && pm_slot_check_refcnt(*page->pg_tree_slot) 2 CORRUPTED: Y 3 4 Unhandled user trap in vcore context from VC 1 5 HW TRAP frame (partial) at 0xffffffffc82cbd20 on core 1 6 rax 0x0000100000011743 7 rbx 0x000030000005ced0 8 rcx 0x0000000000000001 9 rdx 0x0000100000011740 10 rbp 0x000030000005ceb0 11 rsi 0x0000100000008820 12 rdi 0x0000100000008820 13 r8 0x0000000000000000 14 r9 0x0000000000000000 15 r10 0x000030000005ced0 16 r11 0x0000000000000200 17 r12 0x0000000000000001 18 r13 0x0000000000000001 19 r14 0x0000000000409720 20 r15 0x0000000000000000 21 trap 0x0000000d General Protection 22 gsbs 0x0000000000000000 23 fsbs 0x0000000000000000 24 err 0x--------00000000 25 rip 0x00000000004005f0 26 cs 0x------------0023 27 flag 0x0000000000010286 28 rsp 0x000030000005ce98 29 ss 0x------------001b 30 err 0x0 (for PFs: User 4, Wr 2, Rd 1), aux 0x0000000000000000 31 Addr 0x00000000004005f0 is in syz-executor at offset 0x00000000000005f0 32 VM Regions for proc 540 33 NR: Range: Prot, Flags, File, Off 34 00: (0x0000000000400000 - 0x00000000004b2000): 0x00000005, 0x00000001, 0xffff800101103840, 0x0000000000000000 35 01: (0x00000000004b2000 - 0x00000000004b3000): 0x00000005, 0x00000002, 0xffff800101103840, 0x00000000000b2000 36 02: (0x00000000006b3000 - 0x00000000006b6000): 0x00000003, 0x00000002, 0xffff800101103840, 0x00000000000b3000 37 03: (0x00000000006b6000 - 0x0000000000925000): 0x00000003, 0x00000002, 0x0000000000000000, 0x0000000000000000 38 04: (0x0000100000000000 - 0x0000100000024000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 39 05: (0x0000300000000000 - 0x0000300000001000): 0x00000003, 0x00000002, 0xffff800101103840, 0x0000000000000000 40 06: (0x0000300000001000 - 0x0000300000005000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 41 07: (0x0000300000005000 - 0x0000300000007000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 42 08: (0x0000300000007000 - 0x0000300000031000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 43 09: (0x0000300000031000 - 0x000030000005d000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 44 10: (0x00007f7fff8ff000 - 0x00007f7fff9ff000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 45 46 Backtrace of user context on Core 1: 47 Offsets only matter for shared libraries 48 #01 Addr 0x00000000004005f0 is in syz-executor at offset 0x00000000000005f0 49 #02 Addr 0x0000000000410394 is in syz-executor at offset 0x0000000000010394 50 #03 Addr 0x000000006b3a3000 has no VMR 51 Unhandled user trap in vcore context from VC 0 52 HW TRAP frame (partial) at 0xffffffffc82cc720 on core 5 53 rax 0x0000100000005d03 54 rbx 0x00007f7fff9feb80 55 rcx 0x0000000000000001 56 rdx 0x0000100000005d00 57 rbp 0x00007f7fff9feb60 58 rsi 0x00001000000046c0 59 rdi 0x00001000000046c0 60 r8 0x0000000000000000 61 r9 0x0000000000000000 62 r10 0x00007f7fff9feb80 63 r11 0x0000000000000200 64 r12 0x0000000000000001 65 r13 0x0000000000000000 66 r14 0x0000000000409520 67 r15 0x0000000000000000 68 trap 0x0000000d General Protection 69 gsbs 0x0000000000000000 70 fsbs 0x0000000000000000 71 err 0x--------00000000 72 rip 0x00000000004005f0 73 cs 0x------------0023 74 flag 0x0000000000010206 75 rsp 0x00007f7fff9feb48 76 ss 0x------------001b 77 err 0x0 (for PFs: User 4, Wr 2, Rd 1), aux 0x0000000000000000 78 Addr 0x00000000004005f0 is in syz-executor at offset 0x00000000000005f0 79 VM Regions for proc 540 80 NR: Range: Prot, Flags, File, Off 81 00: (0x0000000000400000 - 0x00000000004b2000): 0x00000005, 0x00000001, 0xffff800101103840, 0x0000000000000000 82 01: (0x00000000004b2000 - 0x00000000004b3000): 0x00000005, 0x00000002, 0xffff800101103840, 0x00000000000b2000 83 02: (0x00000000006b3000 - 0x00000000006b6000): 0x00000003, 0x00000002, 0xffff800101103840, 0x00000000000b3000 84 03: (0x00000000006b6000 - 0x0000000000925000): 0x00000003, 0x00000002, 0x0000000000000000, 0x0000000000000000 85 04: (0x0000100000000000 - 0x0000100000024000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 86 05: (0x0000300000000000 - 0x0000300000001000): 0x00000003, 0x00000002, 0xffff800101103840, 0x0000000000000000 87 06: (0x0000300000001000 - 0x0000300000005000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 88 07: (0x0000300000005000 - 0x0000300000007000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 89 08: (0x0000300000007000 - 0x0000300000031000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 90 09: (0x0000300000031000 - 0x000030000005d000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 91 10: (0x00007f7fff8ff000 - 0x00007f7fff9ff000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 92 93 Backtrace of user context on Core 5: 94 Offsets only matter for shared libraries 95 #01 Addr 0x00000000004005f0 is in syz-executor at offset 0x00000000000005f0 96 #02 Addr 0x0000000000410394 is in syz-executor at offset 0x0000000000010394 97 #03 Addr 0x00009214b0000000 has no VMR 98 Unhandled user trap in vcore context from VC 0 99 HW TRAP frame (partial) at 0xffffffffc82cbaa0 on core 0 100 rax 0x0000100000005df0 101 rbx 0x00007f7fff9feaf0 102 rcx 0x00000000004368ee 103 rdx 0x0000100000005d00 104 rbp 0x00007f7fff9fead0 105 rsi 0x00001000000046c0 106 rdi 0x00001000000046c0 107 r8 0x0000000000000000 108 r9 0x0000000000000000 109 r10 0x00007f7fff9feaf0 110 r11 0x0000000000000200 111 r12 0x0000000000000001 112 r13 0x0000000000000000 113 r14 0x0000000000415400 114 r15 0x0000000000000000 115 trap 0x0000000d General Protection 116 gsbs 0x0000000000000000 117 fsbs 0x0000000000000000 118 err 0x--------00000000 119 rip 0x00000000004005f0 120 cs 0x------------0023 121 flag 0x0000000000010283 122 rsp 0x00007f7fff9feab8 123 ss 0x------------001b 124 err 0x0 (for PFs: User 4, Wr 2, Rd 1), aux 0x0000000000000000 125 Addr 0x00000000004005f0 is in syz-executor at offset 0x00000000000005f0 126 VM Regions for proc 506 127 NR: Range: Prot, Flags, File, Off 128 00: (0x0000000000400000 - 0x00000000004b2000): 0x00000005, 0x00000001, 0xffff800101103840, 0x0000000000000000 129 01: (0x00000000004b2000 - 0x00000000004b3000): 0x00000005, 0x00000002, 0xffff800101103840, 0x00000000000b2000 130 02: (0x00000000006b3000 - 0x00000000006b6000): 0x00000003, 0x00000002, 0xffff800101103840, 0x00000000000b3000 131 03: (0x00000000006b6000 - 0x0000000000925000): 0x00000003, 0x00000002, 0x0000000000000000, 0x0000000000000000 132 04: (0x0000100000000000 - 0x0000100000024000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 133 05: (0x0000300000000000 - 0x0000300000001000): 0x00000003, 0x00000002, 0xffff800101103840, 0x0000000000000000 134 06: (0x0000300000001000 - 0x0000300000005000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 135 07: (0x0000300000005000 - 0x0000300000007000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 136 08: (0x0000300000007000 - 0x0000300000019000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 137 09: (0x00007f7fff8ff000 - 0x00007f7fff9ff000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 138 139 Backtrace of user context on Core 0: 140 Offsets only matter for shared libraries 141 #01 Addr 0x00000000004005f0 is in syz-executor at offset 0x00000000000005f0 142 #02 Addr 0x0000000000410394 is in syz-executor at offset 0x0000000000010394 143 #03 Addr 0x000000000c00007f has no VMR 144 kernel panic at kern/src/pagemap.c:222, from core 0: assertion failed: page && pm_slot_check_refcnt(*page->pg_tree_slot) 145 Entering Nanwan's Dungeon on Core 0 (Ints on): 146
