kernel: privileged instruction fault trap, code=0
Stopped at vmptrld+0x12: rdrand 0(%rdi)
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
the kernel did not panic
ddb{0}> trace
vmptrld() at vmptrld+0x12
vm_create(ffff800000afb000,ffff8000ffffd4c8) at vm_create+0x455 sys/dev/vmm/vmm.c:458
vmmioctl(a00,ca605601,ffff800000afb000,9,ffff8000ffffd4c8) at vmmioctl+0x46b sys/dev/vmm/vmm.c:-1
VOP_IOCTL(fffffd806ea95cb0,ca605601,ffff800000afb000,9,fffffd80097fd270,ffff8000ffffd4c8) at VOP_IOCTL+0xac sys/kern/vfs_vops.c:264
vn_ioctl(fffffd806898b3f8,ca605601,ffff800000afb000,ffff8000ffffd4c8) at vn_ioctl+0xf8 sys/kern/vfs_vnops.c:531
sys_ioctl(ffff8000ffffd4c8,ffff800030fd2910,ffff800030fd2860) at sys_ioctl+0x674 sys/kern/sys_generic.c:-1
syscall(ffff800030fd2910) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff800030fd2910) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:775
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x33f0b4392d0, count: -8
ddb{0}> show registers
rdi 0xffff80003c4fa988
rsi 0x1
rbp 0xffff800030fd2450
rbx 0
rdx 0
rcx 0x11e57ed0 __kernel_phys_end+0xe257ed0
rax 0
r8 0
r9 0
r10 0x9e80e212289893ef
r11 0x623454f63522973
r12 0x1
r13 0x1
r14 0xffff80003c4f9f00
r15 0xffff80003c4fa988
rip 0xffffffff82bcc002 vmptrld+0x12
cs 0x8
rflags 0x10246 __ALIGN_SIZE+0xf246
rsp 0xffff800030fd23f8
ss 0x10
vmptrld+0x12: rdrand 0(%rdi)
ddb{0}> show proc
PROC (syz-executor) tid=307435 pid=12522 tcnt=4 stat=onproc
flags process=0 proc=4000000<THREAD>
runpri=81, usrpri=81, slppri=32, nice=20
wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
forw=0xffffffffffffffff, list=0xffff8000fffea7e8,0xffff8000ffff3780
process=0xffff80003c410020 user=0xffff800030fcd000, vmspace=0xfffffd806931b210
estcpu=31, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
8490 170757 8728 0 2 0 syz-executor
8490 243082 8728 0 2 0x4000000 syz-executor
12522 309435 92053 0 3 0x80 nanoslp syz-executor
12522 308376 92053 0 2 0x4000000 syz-executor
*12522 307435 92053 0 7 0x4000000 syz-executor
12522 283692 92053 0 2 0x4000000 syz-executor
3003 94433 5036 0 2 0 syz-executor
3003 133338 5036 0 2 0x4000000 syz-executor
13269 115804 8749 0 2 0 syz-executor
13269 57030 8749 0 3 0x4000080 fsleep syz-executor
13269 188792 8749 0 3 0x4000080 fsleep syz-executor
3641 492929 717 0 2 0 syz-executor
3641 180429 717 0 2 0x4000000 syz-executor
3641 305138 717 0 2 0x4000000 syz-executor
43135 193131 30112 0 3 0x3000 suspend syz-executor
43135 83728 30112 0 2 0x4081000 syz-executor
43135 478704 30112 0 3 0x4081000 fltagain2 syz-executor
43135 50604 30112 0 3 0x4081000 fltagain2 syz-executor
92053 340674 97266 0 3 0x82 nanoslp syz-executor
8728 269069 97266 0 3 0x82 nanoslp syz-executor
31792 251926 0 0 3 0x14200 acct acct
44156 184079 0 0 3 0x14280 nfsidl nfsio
98547 318961 0 0 3 0x14280 nfsidl nfsio
52398 240418 0 0 3 0x14280 nfsidl nfsio
54220 23470 0 0 3 0x14280 nfsidl nfsio
76922 110426 0 0 3 0x14280 nfsidl nfsio
47689 258360 0 0 3 0x14280 nfsidl nfsio
86774 336492 0 0 3 0x14280 nfsidl nfsio
9934 272619 0 0 3 0x14280 nfsidl nfsio
48531 29447 0 0 3 0x14280 nfsidl nfsio
73418 295407 0 0 3 0x14280 nfsidl nfsio
51124 404892 0 0 3 0x14280 nfsidl nfsio
60989 277773 0 0 3 0x14280 nfsidl nfsio
9023 163645 0 0 3 0x14280 nfsidl nfsio
33562 177726 0 0 3 0x14280 nfsidl nfsio
87907 182490 0 0 3 0x14280 nfsidl nfsio
15703 101903 0 0 3 0x14280 nfsidl nfsio
24282 125895 0 0 3 0x14280 nfsidl nfsio
6977 349875 0 0 3 0x14280 nfsidl nfsio
57372 112699 0 0 3 0x14280 nfsidl nfsio
74625 302774 0 0 3 0x14280 nfsidl nfsio
30112 372205 97266 0 3 0x82 nanoslp syz-executor
8749 120057 97266 0 3 0x82 nanoslp syz-executor
89570 210486 97266 0 3 0x82 nanoslp syz-executor
717 516322 97266 0 3 0x82 nanoslp syz-executor
9487 228092 97266 0 2 0x2 syz-executor
5036 433697 97266 0 3 0x82 nanoslp syz-executor
97266 165033 142 0 3 0x82 kqread syz-executor
142 300253 24542 0 3 0x10008a sigsusp ksh
24542 396367 18901 0 3 0x98 kqread sshd-session
18901 251026 15904 0 3 0x92 kqread sshd-session
47571 437689 1 0 3 0x100083 ttyin getty
15904 57837 1 0 3 0x88 kqread sshd
97623 139920 586 74 3 0x1100092 bpf pflogd
586 208585 1 0 3 0x80 sbwait pflogd
70885 482826 81077 73 3 0x1100090 kqread syslogd
81077 256416 1 0 3 0x100082 sbwait syslogd
57931 463046 1 0 3 0x100080 kqread resolvd
77915 126514 48649 77 3 0x100092 kqread dhcpleased
60149 128257 48649 77 3 0x100092 kqread dhcpleased
48649 481892 1 0 3 0x80 kqread dhcpleased
48494 281754 0 0 3 0x14200 bored smr
76868 20389 0 0 2 0x14200 zerothread
17151 91236 0 0 3 0x14200 aiodoned aiodoned
8794 245570 0 0 3 0x14200 syncer update
46864 8321 0 0 3 0x14200 cleaner cleaner
39568 333869 0 0 3 0x14200 reaper reaper
58517 103032 0 0 3 0x14200 pgdaemon pagedaemon
85459 462841 0 0 3 0x14200 bored viomb
90949 392707 0 0 3 0x40014200 acpi0 acpi0
9440 149233 0 0 7 0x40014200 idle1
89474 222902 0 0 3 0x14200 bored softnet1
28090 76916 0 0 3 0x14200 bored softnet0
27048 93465 0 0 3 0x14200 bored systqmp
91993 249272 0 0 3 0x14200 bored systq
80524 508269 0 0 3 0x14200 tmoslp softclockmp
88765 333050 0 0 3 0x40014200 tmoslp softclock
16347 240728 0 0 3 0x40014200 idle0
1 445967 0 0 3 0x82 wait init
0 0 -1 0 3 0x10010200 scheduler swapper
ddb{0}> show all locks
Process 12522 (syz-executor) thread 0xffff80003c46ed28 (308376)
Process 3641 (syz-executor) thread 0xffff80003c46e7f8 (305138)
Process 43135 (syz-executor) thread 0xffff8000fffeb778 (83728)
Process 9487 (syz-executor) thread 0xffff8000ffffd9f8 (228092)
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10217 11111K 11445K 166960K 13197 0
pcb 17 13K 13K 166960K 162 0
rtable 255 10K 10K 166960K 590 0
pf 34 17K 18K 166960K 136 0
ifaddr 45 8K 8K 166960K 109 0
ifgroup 55 2K 2K 166960K 166 0
sysctl 4 1K 9K 166960K 19 0
counters 70 37K 37K 166960K 200 0
ioctlops 1 4K 5K 166960K 1912 0
iov 0 0K 12K 166960K 119 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1435 90K 90K 166960K 2579 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 1K 9K 166960K 12 0
VM map 2 1K 1K 166960K 2 0
sem 12 0K 0K 166960K 59 0
dirhash 12 2K 2K 166960K 18 0
ACPI 1692 195K 286K 166960K 12470 0
file desc 18 65K 89K 166960K 996 0
sigio 0 0K 0K 166960K 27 0
proc 72 115K 164K 166960K 671 0
subproc 72 4K 4K 166960K 90 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 1 0K 0K 166960K 108 0
in_multi 95 7K 7K 166960K 178 0
ether_multi 1 0K 0K 166960K 15 0
mrt 2 0K 0K 166960K 11 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 121 546K 546K 166960K 121 0
exec 0 0K 1K 166960K 587 0
fusefs mount 1 32K 32K 166960K 1 0
pfkey data 0 0K 0K 166960K 1 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 251 159K 186K 166960K 11150 0
UVM aobj 69 5K 7K 166960K 72 0
pinsyscall 43 86K 103K 166960K 2177 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 1K 166960K 70 0
NDP 12 0K 2K 166960K 73 0
temp 67 8676K 8743K 166960K 42112 0
kqueue 15 24K 30K 166960K 201 0
SYN cache 2 16K 16K 166960K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 26 0 0 1 0 1 1 0 8 0
rtpcb 120 97 0 94 1 0 1 1 0 8 0
rtentry 176 176 0 67 6 0 6 6 0 8 0
unpcb 144 585 0 562 7 5 2 6 0 8 0
syncache 336 5 0 5 2 2 0 1 0 8 0
tcpqe 32 1 0 1 1 1 0 1 0 8 0
tcpcb 736 595 0 589 16 9 7 7 0 8 6
arp 136 30 0 6 1 0 1 1 0 8 0
inpcb 328 1398 0 1386 14 7 7 8 0 8 5
nd6 152 35 0 10 1 0 1 1 0 8 0
pkpcb 40 7 0 7 2 2 0 1 0 8 0
kcovpl 48 10 0 2 1 0 1 1 0 8 0
mppekey 1024 1 0 1 1 1 0 1 0 8 0
ppxss 1192 54 0 53 2 1 1 1 0 8 0
pppxif 1504 6 0 6 2 1 1 1 0 8 1
pffrag 232 24 0 17 1 0 1 1 0 482 0
pffrnode 88 7 0 1 1 0 1 1 0 8 0
pffrent 40 43 0 36 1 0 1 1 0 8 0
pfosfp 40 1428 0 1005 5 0 5 5 0 8 0
pfosfpen 112 1428 0 714 21 0 21 21 0 8 0
pfrktable 1344 1 0 1 1 1 0 1 0 8 0
pfstitem 24 72 0 21 1 0 1 1 0 8 0
pfstkey 128 72 0 21 2 0 2 2 0 8 0
pfstate 448 72 0 21 7 0 7 7 0 8 0
pfrule 1344 21 0 16 2 1 1 2 0 8 0
rttmr 136 2 0 2 2 2 0 1 0 8 0
art_heap8 4096 2 0 0 2 0 2 2 0 8 0
art_heap4 256 777 0 309 34 4 30 30 0 8 0
art_table 40 779 0 309 5 0 5 5 0 8 0
art_node 32 175 0 80 1 0 1 1 0 8 0
sysvmsgpl 40 8 0 6 1 0 1 1 0 8 0
semupl 112 1 0 1 1 1 0 1 0 8 0
semapl 112 54 0 44 1 0 1 1 0 8 0
shmpl 112 65 0 0 2 0 2 2 0 8 0
dirhash 1024 21 0 4 3 0 3 3 0 8 0
dino2pl 256 3340 0 1828 96 0 96 96 0 8 0
ffsino 296 3340 0 1828 118 1 117 118 0 8 0
nchpl 144 4779 0 4204 64 41 23 64 0 8 0
rtmask 32 11 0 11 2 1 1 1 0 8 1
vnodes 216 4182 0 0 233 0 233 233 0 8 0
namei 1024 16518 0 16516 3 2 1 1 0 8 0
percpumem 16 115 0 65 1 0 1 1 0 8 0
vcpupl 3968 2 0 1 1 0 1 1 0 8 0
vmpool 840 4 0 3 1 0 1 1 0 8 0
kstatmem 264 104 0 78 4 2 2 3 0 8 0
scsiplug 72 4 0 4 1 1 0 1 0 8 0
scxspl 216 33325 0 33325 10 7 3 8 1 8 3
plimitpl 152 294 0 270 1 0 1 1 0 8 0
sigapl 424 1323 0 1254 8 0 8 8 0 8 0
knotepl 120 569 0 0 18 0 18 18 0 8 0
kqueuepl 224 438 0 426 10 3 7 7 0 8 6
pipepl 344 335 0 306 15 6 9 9 0 8 6
fdescpl 528 1285 0 1253 3 0 3 3 0 8 0
filepl 160 8952 0 8715 29 13 16 22 0 8 4
lockfpl 104 251 0 249 1 0 1 1 0 8 0
lockfspl 48 112 0 110 1 0 1 1 0 8 0
sessionpl 144 25 0 16 1 0 1 1 0 8 0
pgrppl 48 48 0 31 1 0 1 1 0 8 0
ucredpl 104 1303 0 1288 1 0 1 1 0 8 0
zombiepl 144 1483 0 1481 1 0 1 1 0 8 0
processpl 1232 1323 0 1254 6 0 6 6 0 8 0
procpl 664 2763 0 2682 8 0 8 8 0 8 0
sosppl 176 6 0 6 3 2 1 1 0 8 1
sockpl 752 2106 0 2068 27 15 12 18 0 8 7
mcl64k 65536 4 0 0 1 0 1 1 0 8 0
mcl16k 16384 2 0 0 1 0 1 1 0 8 0
mcl12k 12288 2 0 0 1 0 1 1 0 8 0
mcl9k 9216 1 0 0 1 0 1 1 0 8 0
mcl8k 8192 2 0 0 1 0 1 1 0 8 0
mcl4k 4096 124 0 0 16 0 16 16 0 8 0
mcl2k 2048 29 0 0 4 0 4 4 0 8 0
mtagpl 96 18 0 0 1 0 1 1 0 8 0
mbufpl 256 1134 0 0 71 0 71 71 0 8 0
bufpl 280 13858 0 7722 439 0 439 439 0 8 0
anonpl 32 13542 0 0 110 0 110 110 0 246 0
amapchunkpl 152 37083 0 36574 47 19 28 31 0 158 5
amappl16 200 4406 0 4276 55 39 16 28 0 8 8
amappl15 192 2 0 2 1 1 0 1 0 8 0
amappl14 184 7 0 7 1 1 0 1 0 8 0
amappl13 176 447 0 446 1 0 1 1 0 8 0
amappl12 168 1660 0 1617 3 0 3 3 0 8 0
amappl11 160 2 0 2 1 1 0 1 0 8 0
amappl10 152 48 0 33 1 0 1 1 0 8 0
amappl9 144 290 0 290 1 1 0 1 0 8 0
amappl8 136 25 0 23 1 0 1 1 0 8 0
amappl7 128 88 0 87 1 0 1 1 0 8 0
amappl6 120 296 0 283 1 0 1 1 0 8 0
amappl5 112 76 0 65 1 0 1 1 0 8 0
amappl4 104 427 0 397 1 0 1 1 0 8 0
amappl3 96 7087 0 6973 5 1 4 4 0 8 0
amappl2 88 552 0 490 2 0 2 2 0 8 0
amappl1 80 12827 0 12228 17 3 14 15 0 8 0
amappl 88 10226 0 10053 5 0 5 5 0 92 0
uvmvnodes 80 124 0 0 3 0 3 3 0 8 0
dma32768 32768 1 0 1 1 1 0 1 0 8 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma2048 2048 2 0 2 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 256 0 256 2 2 0 1 0 8 0
dma64 64 7 0 7 2 2 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 71 0 3 2 0 2 2 0 8 0
uaddrrnd 24 1285 0 1253 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 1285 0 1253 1 0 1 1 0 8 0
vmmpekpl 168 12107 0 12061 4 0 4 4 0 8 0
vmmpepl 168 87246 0 85177 122 16 106 106 0 357 6
vmsppl 488 1284 0 1253 6 1 5 5 0 8 0
rwobjpl 80 25395 0 24161 38 5 33 33 0 8 3
pdppl 4096 2585 0 2513 105 31 74 83 0 8 2
pvpl 32 20467 0 0 167 1 166 166 0 265 0
pmappl 256 1288 0 1256 3 0 3 3 0 8 0
extentpl 40 45 0 27 1 0 1 1 0 8 0
phpool 112 371 0 53 10 0 10 10 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
vmptrld() at vmptrld+0x12
vm_create(ffff800000afb000,ffff8000ffffd4c8) at vm_create+0x455 sys/dev/vmm/vmm.c:458
vmmioctl(a00,ca605601,ffff800000afb000,9,ffff8000ffffd4c8) at vmmioctl+0x46b sys/dev/vmm/vmm.c:-1
VOP_IOCTL(fffffd806ea95cb0,ca605601,ffff800000afb000,9,fffffd80097fd270,ffff8000ffffd4c8) at VOP_IOCTL+0xac sys/kern/vfs_vops.c:264
vn_ioctl(fffffd806898b3f8,ca605601,ffff800000afb000,ffff8000ffffd4c8) at vn_ioctl+0xf8 sys/kern/vfs_vnops.c:531
sys_ioctl(ffff8000ffffd4c8,ffff800030fd2910,ffff800030fd2860) at sys_ioctl+0x674 sys/kern/sys_generic.c:-1
syscall(ffff800030fd2910) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff800030fd2910) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:775
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x33f0b4392d0, count: -8
ddb{0}> machine ddbcpu 1
Stopped at x86_ipi_db+0x27: addq $0x8,%rsp
ddb{1}> trace
x86_ipi_db(ffff8000299ddff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
acpicpu_idle() at acpicpu_idle+0x457 sys/dev/acpi/acpicpu_x86.c:1224
sched_idle(ffff8000299ddff0) at sched_idle+0x391 sys/kern/kern_sched.c:191
end trace frame: 0x0, count: -5