kernel: protection fault trap, code=0
Stopped at sys_semop+0x2f7: movzwl 0(%r13),%ebx
ddb>
ddb> set $lines = 0
ddb> set $maxwidth = 0
ddb> show panic
the kernel did not panic
ddb> trace
sys_semop(ffff80002a5c7a98,ffff80002a65b330,ffff80002a65b280) at sys_semop+0x2f7 sys/kern/sysv_sem.c:615
syscall(ffff80002a65b330) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xfb14b5fde40, count: -3
ddb> show registers
rdi 0
rsi 0
rbp 0xffff80002a65b250
rbx 0
rdx 0xffff80002a656000
rcx 0
rax 0xdeadbeefdeadbeef
r8 0x7f7fffffc000
r9 0xfffffd807f7d7af8
r10 0x6026e36e2a115ea6
r11 0x68251e1946981e3b
r12 0
r13 0xdeadbeefdeadbeef
r14 0xffff80002a65b330
r15 0xfffffd806c350e70
rip 0xffffffff81aa4ae7 sys_semop+0x2f7
cs 0x8
rflags 0x10246 __ALIGN_SIZE+0xf246
rsp 0xffff80002a65b150
ss 0x10
sys_semop+0x2f7: movzwl 0(%r13),%ebx
ddb> show proc
PROC (syz-executor113882395) tid=310877 pid=93763 tcnt=4 stat=onproc
flags process=2<EXEC> proc=4000000<THREAD>
runpri=4, usrpri=52, slppri=4, nice=20
wchan=0x0, wmesg=, ps_single=0x0
forw=0xffffffffffffffff, list=0xffff80002a5c72a0,0xffff80002a61c818
process=0xffff8000ffff50d0 user=0xffff80002a656000, vmspace=0xfffffd80074ba160
estcpu=2, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0
ddb> ps
PID TID PPID UID S FLAGS WAIT COMMAND
93763 152628 22222 0 2 0x482 syz-executor113882395
93763 217003 22222 0 3 0x4000082 fsleep syz-executor113882395
*93763 310877 22222 0 7 0x4000002 syz-executor113882395
93763 522996 22222 0 3 0x4000082 fsleep syz-executor113882395
22222 351092 7184 0 3 0x10008a sigsusp ksh
7184 353210 35762 0 3 0x9a kqread sshd
52309 486534 1 0 3 0x100083 ttyin getty
35762 230693 1 0 3 0x88 kqread sshd
26058 456709 8474 73 3 0x1100090 kqread syslogd
8474 520725 1 0 3 0x100082 netio syslogd
22939 381312 1 0 3 0x100080 kqread resolvd
92199 311396 92023 77 3 0x100092 kqread dhcpleased
15952 83569 92023 77 3 0x100092 kqread dhcpleased
92023 35345 1 0 3 0x80 kqread dhcpleased
78385 254162 0 0 3 0x14200 bored smr
38952 175134 0 0 3 0x14200 pgzero zerothread
99740 30578 0 0 3 0x14200 aiodoned aiodoned
63178 139637 0 0 3 0x14200 syncer update
51128 163003 0 0 3 0x14200 cleaner cleaner
67979 311066 0 0 3 0x14200 reaper reaper
55470 25643 0 0 3 0x14200 pgdaemon pagedaemon
26564 166329 0 0 3 0x14200 bored viomb
41572 145179 0 0 3 0x40014200 acpi0 acpi0
29343 398639 0 0 3 0x14200 bored softnet3
56889 393905 0 0 3 0x14200 bored softnet2
59457 403910 0 0 3 0x14200 bored softnet1
17941 312070 0 0 3 0x14200 bored softnet0
812 427211 0 0 3 0x14200 bored systqmp
98314 462004 0 0 3 0x14200 bored systq
60356 320132 0 0 3 0x40014200 tmoslp softclock
82014 213226 0 0 3 0x40014200 idle0
1 99025 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb> show all locks
No such command
ddb> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10137 6382K 6413K 166960K 11215 0
pcb 15 10K 10K 166960K 15 0
rtable 58 1K 2K 166960K 110 0
pf 12 6K 6K 166960K 12 0
ifaddr 11 5K 5K 166960K 11 0
ifgroup 17 1K 1K 166960K 17 0
counters 22 16K 16K 166960K 22 0
ioctlops 0 0K 2K 166960K 21 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1174 73K 74K 166960K 1187 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 1K 1K 166960K 2 0
VM map 2 1K 1K 166960K 2 0
sem 3 0K 0K 166960K 4 0
dirhash 12 2K 2K 166960K 12 0
ACPI 1697 195K 286K 166960K 12548 0
file desc 1 0K 0K 166960K 1 0
proc 55 58K 59K 166960K 246 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
in_multi 11 0K 0K 166960K 11 0
ether_multi 1 0K 0K 166960K 1 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 25 122K 122K 166960K 25 0
exec 0 0K 1K 166960K 243 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 98 12K 12K 166960K 2213 0
UVM aobj 3 2K 2K 166960K 3 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
NDP 3 0K 0K 166960K 3 0
temp 1 6748K 6812K 166960K 2781 0
kqueue 11 16K 18K 166960K 24 0
SYN cache 2 16K 16K 166960K 2 0
ddb> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
rtpcb 120 20 0 17 1 0 1 1 0 8 0
rtentry 112 23 0 1 1 0 1 1 0 8 0
unpcb 144 33 0 20 1 0 1 1 0 8 0
syncache 336 5 0 5 1 0 1 1 0 8 1
tcpqe 32 73 0 73 1 0 1 1 0 8 1
tcpcb 808 8 0 5 1 0 1 1 0 8 0
arp 88 2 0 0 1 0 1 1 0 8 0
inpcb 360 26 0 20 1 0 1 1 0 8 0
art_heap8 4096 1 0 0 1 0 1 1 0 8 0
art_heap4 256 97 0 0 7 0 7 7 0 8 0
art_table 32 98 0 0 1 0 1 1 0 8 0
art_node 16 22 0 2 1 0 1 1 0 8 0
semapl 112 1 0 1 1 0 1 1 0 8 1
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino2pl 256 1423 0 37 87 0 87 87 0 8 0
ffsino 240 1423 0 37 82 0 82 82 0 8 0
nchpl 144 1606 0 47 58 0 58 58 0 8 0
uvmvnodes 80 1432 0 0 30 0 30 30 0 8 0
vnodes 216 1432 0 0 80 0 80 80 0 8 0
namei 1024 4258 0 4258 1 0 1 1 0 8 1
kstatmem 264 6 0 0 1 0 1 1 0 8 0
scxspl 216 5322 0 5322 8 0 8 8 1 8 8
plimitpl 152 17 0 10 1 0 1 1 0 8 0
sigapl 424 308 0 279 4 0 4 4 0 8 0
futexpl 64 8 0 6 1 0 1 1 0 8 0
knotepl 120 3728 0 3699 2 0 2 2 0 8 1
kqueuepl 184 20 0 13 1 0 1 1 0 8 0
pipepl 288 87 0 84 1 0 1 1 0 8 0
fdescpl 432 292 0 279 2 0 2 2 0 8 0
filepl 120 1127 0 1073 2 0 2 2 0 8 0
lockfpl 104 6 0 4 1 0 1 1 0 8 0
lockfspl 48 4 0 2 1 0 1 1 0 8 0
sessionpl 144 17 0 9 1 0 1 1 0 8 0
pgrppl 48 17 0 9 1 0 1 1 0 8 0
ucredpl 104 66 0 56 1 0 1 1 0 8 0
zombiepl 144 279 0 279 1 0 1 1 0 8 1
processpl 1072 308 0 279 3 0 3 3 0 8 0
procpl 680 311 0 279 3 0 3 3 0 8 0
sockpl 488 79 0 57 3 0 3 3 0 8 0
mcl8k 8192 4 0 4 1 0 1 1 0 8 1
mcl4k 4096 10 0 10 1 0 1 1 0 8 1
mcl2k 2048 12212 0 12170 33 19 14 32 0 8 7
mtagpl 96 4 0 4 1 0 1 1 0 8 1
mbufpl 256 19597 0 19550 17 5 12 17 0 8 6
bufpl 280 2514 0 86 174 0 174 174 0 8 0
anonpl 24 212230 0 210341 24 0 24 24 0 188 12
amapchunkpl 152 9280 0 9112 7 0 7 7 0 158 0
amappl16 200 6224 0 6224 5 0 5 5 0 8 5
amappl15 192 16 0 16 1 0 1 1 0 8 1
amappl14 184 109 0 99 1 0 1 1 0 8 0
amappl13 176 10 0 10 1 0 1 1 0 8 1
amappl12 168 799 0 786 1 0 1 1 0 8 0
amappl11 160 51 0 41 1 0 1 1 0 8 0
amappl10 152 19 0 19 1 0 1 1 0 8 1
amappl9 144 104 0 104 1 0 1 1 0 8 1
amappl8 136 55 0 53 1 0 1 1 0 8 0
amappl7 128 87 0 76 1 0 1 1 0 8 0
amappl6 120 119 0 114 1 0 1 1 0 8 0
amappl5 112 109 0 101 1 0 1 1 0 8 0
amappl4 104 324 0 308 1 0 1 1 0 8 0
amappl3 96 2484 0 2446 1 0 1 1 0 8 0
amappl2 88 619 0 570 2 0 2 2 0 8 0
amappl1 80 8820 0 8391 11 0 11 11 0 8 0
amappl 88 1945 0 1886 2 0 2 2 0 92 0
dma4096 4096 1 0 1 1 0 1 1 0 8 1
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 0 1 1 0 8 1
dma128 128 253 0 253 1 0 1 1 0 8 1
dma64 64 6 0 6 1 0 1 1 0 8 1
dma32 32 7 0 7 1 0 1 1 0 8 1
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 2 0 0 1 0 1 1 0 8 0
uaddrrnd 24 292 0 279 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 292 0 279 1 0 1 1 0 8 0
vmmpekpl 168 6777 0 6760 1 0 1 1 0 8 0
vmmpepl 168 35111 0 34174 46 0 46 46 0 357 5
vmsppl 352 291 0 279 2 0 2 2 0 8 0
rwobjpl 24 19927 0 17856 14 0 14 14 0 8 1
pdppl 4096 590 0 558 48 14 34 40 0 8 2
pvpl 32 306152 0 301874 52 0 52 52 0 265 15
pmappl 216 291 0 279 1 0 1 1 0 8 0
extentpl 40 56 0 38 1 0 1 1 0 8 0
phpool 112 290 0 38 8 0 8 8 0 8 0
ddb> machine ddbcpu 0
No such command
ddb> trace
sys_semop(ffff80002a5c7a98,ffff80002a65b330,ffff80002a65b280) at sys_semop+0x2f7 sys/kern/sysv_sem.c:615
syscall(ffff80002a65b330) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xfb14b5fde40, count: -3
ddb> machine ddbcpu 1
No such command
ddb> trace
sys_semop(ffff80002a5c7a98,ffff80002a65b330,ffff80002a65b280) at sys_semop+0x2f7 sys/kern/sysv_sem.c:615
syscall(ffff80002a65b330) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xfb14b5fde40, count: -3
ddb>