kernel: protection fault trap, code=0
Stopped at solock_shared+0x1c: movq 0x8(%r12),%rax
ddb{1}>
ddb{1}> set $lines = 0
ddb{1}> set $maxwidth = 0
ddb{1}> show panic
the kernel did not panic
ddb{1}> trace
solock_shared(ffff800010fdc2a8) at solock_shared+0x1c sys/kern/uipc_socket2.c:351
soreceive(ffff800010fdc2a8,0,ffff8000324f0d88,0,0,ffff8000324f0c9c,6d59710a1c86080b) at soreceive+0x690 sys/kern/uipc_socket.c:932
fifo_read(ffff8000324f0cf0) at fifo_read+0xd2 sys/miscfs/fifofs/fifo_vnops.c:256
VOP_READ(fffffd805c8f78b8,ffff8000324f0d88,64,fffffd807f7d72d8) at VOP_READ+0xc3 sys/kern/vfs_vops.c:227
vn_rdwr(0,fffffd805c8f78b8,ffff80001f052000,200,0,1,899544dd1390dbf3,0,ffff8000006aa000,0) at vn_rdwr+0x10a
vndstrategy(fffffd8065b38b28) at vndstrategy+0x3e2 sys/dev/vnd.c:342
readdoslabel(fffffd8065b38b28,ffffffff81538c60,ffff800000e4fe00,0,1) at readdoslabel+0x79 readdisksector sys/kern/subr_disk.c:323 [inline]
readdoslabel(fffffd8065b38b28,ffffffff81538c60,ffff800000e4fe00,0,1) at readdoslabel+0x79 sys/kern/subr_disk.c:354
readdisklabel(2902,ffffffff81538c60,ffff800000e4fe00,1) at readdisklabel+0x16b sys/arch/amd64/amd64/disksubr.c:99
vndioctl(2902,41946472,ffff800000e4fe00,1,ffff8000ffff1740) at vndioctl+0x4d8 sys/dev/vnd.c:619
VOP_IOCTL(fffffd806e417eb8,41946472,ffff800000e4fe00,1,fffffd807f7d78f0,ffff8000ffff1740) at VOP_IOCTL+0x9a sys/kern/vfs_vops.c:264
vn_ioctl(fffffd806a710e48,41946472,ffff800000e4fe00,ffff8000ffff1740) at vn_ioctl+0xc0 sys/kern/vfs_vnops.c:525
sys_ioctl(ffff8000ffff1740,ffff8000324f1d70,ffff8000324f1cc0) at sys_ioctl+0x4a9
syscall(ffff8000324f1d70) at syscall+0x8cf mi_syscall sys/sys/syscall_mi.h:180 [inline]
syscall(ffff8000324f1d70) at syscall+0x8cf sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xc1c803a5970, count: -14
ddb{1}> show registers
rdi 0xffff80002d6c4000
rsi 0x95d
rbp 0xffff8000324f0b60
rbx 0
rdx 0xffff80002d6c4000
rcx 0x95c
rax 0xffffffff81f01af9 solock_shared+0x19
r8 0x400
r9 0x1
r10 0x5ae5162676691534
r11 0x4fe5d8384dd78da5
r12 0x3249c62dd5aa3bf1
r13 0x1
r14 0xffff800010fdc2a8
r15 0x85
rip 0xffffffff81f01afc solock_shared+0x1c
cs 0x8
rflags 0x10246 __ALIGN_SIZE+0xf246
rsp 0xffff8000324f0b30
ss 0x10
solock_shared+0x1c: movq 0x8(%r12),%rax
ddb{1}> show proc
PROC (syz-executor.3) tid=204349 pid=4615 tcnt=3 stat=onproc
flags process=8000000 proc=4000000<THREAD>
runpri=24, usrpri=79, slppri=24, nice=20
wchan=0x0, wmesg=, ps_single=0x0
forw=0xffffffffffffffff, list=0xffff8000ffff0030,0xffff8000ffff1230
process=0xffff80002a15ac68 user=0xffff8000324ec000, vmspace=0xfffffd8067812c20
estcpu=29, cpticks=2, pctcpu=0.0, user=0, sys=0, intr=0
ddb{1}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
15644 316006 68183 0 7 0x8000000 syz-executor.4
15644 476357 68183 0 2 0xc000000 syz-executor.4
65266 368105 58877 0 2 0x8000000 syz-executor.2
48288 292012 56184 0 2 0x8000000 syz-executor.7
48288 523850 56184 0 3 0xc000080 fsleep syz-executor.7
52058 414943 25249 60928 2 0x8000010 syz-executor.0
52058 265661 25249 60928 3 0xc000090 kqsel syz-executor.0
2455 193693 68544 0 3 0x8000080 nanoslp syz-executor.6
2455 117474 68544 0 3 0xc000080 sbwait syz-executor.6
2455 105032 68544 0 3 0xc000080 fsleep syz-executor.6
4615 102037 29378 0 3 0x8000080 nanoslp syz-executor.3
* 4615 204349 29378 0 7 0xc000000 syz-executor.3
4615 344610 29378 0 3 0xc000080 fsleep syz-executor.3
29378 360962 60085 0 3 0x8000082 nanoslp syz-executor.3
68544 166817 60085 0 3 0x8000082 nanoslp syz-executor.6
94067 214390 60085 0 3 0x8000082 nanoslp syz-executor.1
430 229894 60085 0 2 0x8000002 syz-executor.5
25249 5970 60085 0 3 0x8000082 nanoslp syz-executor.0
68183 95315 60085 0 3 0x8000082 nanoslp syz-executor.4
56184 489836 60085 0 3 0x8000082 nanoslp syz-executor.7
58877 186422 60085 0 3 0x8000082 nanoslp syz-executor.2
74342 60492 0 0 3 0x14200 bored sosplice
60085 376558 17891 0 3 0x1a000082 thrsleep syz-fuzzer
60085 467310 17891 0 3 0x1e000082 nanoslp syz-fuzzer
60085 108087 17891 0 3 0x1e000082 wait syz-fuzzer
60085 314555 17891 0 3 0x1e000082 thrsleep syz-fuzzer
60085 434836 17891 0 3 0x1e000082 wait syz-fuzzer
60085 294097 17891 0 3 0x1e000082 wait syz-fuzzer
60085 228539 17891 0 3 0x1e000082 thrsleep syz-fuzzer
60085 43354 17891 0 3 0x1e000082 kqread syz-fuzzer
60085 213612 17891 0 3 0x1e000082 wait syz-fuzzer
60085 172098 17891 0 3 0x1e000082 thrsleep syz-fuzzer
60085 131279 17891 0 3 0x1e000082 thrsleep syz-fuzzer
60085 398282 17891 0 3 0x1e000082 wait syz-fuzzer
60085 446336 17891 0 3 0x1e000082 wait syz-fuzzer
60085 383948 17891 0 3 0x1e000082 wait syz-fuzzer
60085 376704 17891 0 3 0x1e000082 thrsleep syz-fuzzer
60085 94749 17891 0 3 0x1e000082 wait syz-fuzzer
17891 512454 20615 0 3 0x810008a sigsusp ksh
20615 378221 35126 0 3 0x1800009a kqread sshd
32456 467935 1 0 3 0x18100083 ttyin getty
35126 54952 1 0 3 0x18000088 kqread sshd
29332 361456 22693 74 3 0x19100092 bpf pflogd
22693 471218 1 0 3 0x18000080 sbwait pflogd
55364 209207 89082 73 3 0x19100090 kqread syslogd
89082 231025 1 0 3 0x18100082 sbwait syslogd
84808 25282 1 0 3 0x18100080 kqread resolvd
50793 396087 79838 77 3 0x18100092 kqread dhcpleased
80965 208935 79838 77 3 0x18100092 kqread dhcpleased
79838 76847 1 0 3 0x18000080 kqread dhcpleased
9793 352759 0 0 3 0x14200 bored smr
85880 496330 0 0 2 0x14200 zerothread
2372 191782 0 0 3 0x14200 aiodoned aiodoned
96377 275903 0 0 3 0x14200 syncer update
73305 193654 0 0 3 0x14200 cleaner cleaner
49823 367184 0 0 3 0x14200 reaper reaper
87750 311664 0 0 3 0x14200 pgdaemon pagedaemon
26003 458322 0 0 3 0x14200 bored viomb
3392 46577 0 0 3 0x40014200 acpi0 acpi0
37240 129789 0 0 3 0x40014200 idle1
63273 29940 0 0 3 0x14200 bored softnet3
28921 516599 0 0 3 0x14200 bored softnet2
51609 517289 0 0 3 0x14200 bored softnet1
47434 73062 0 0 3 0x14200 bored softnet0
35103 191319 0 0 3 0x14200 bored systqmp
48940 174596 0 0 3 0x14200 bored systq
71234 504772 0 0 3 0x14200 tmoslp softclockmp
84053 414690 0 0 3 0x40014200 tmoslp softclock
35758 334439 0 0 3 0x40014200 idle0
1 6605 0 0 3 0x8080082 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{1}> show all locks
Process 4615 (syz-executor.3) thread 0xffff8000ffff1740 (204349)
Process 430 (syz-executor.5) thread 0xffff80002a1af208 (229894)
ddb{1}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10222 6654K 6913K 166960K 16001 0
pcb 17 18K 20K 166960K 1129 0
rtable 267 17K 17K 166960K 2387 0
pf 43 11K 12K 166960K 285 0
ifaddr 51 16K 17K 166960K 324 0
ifgroup 76 3K 3K 166960K 489 0
sysctl 4 1K 1K 166960K 18 0
counters 74 37K 38K 166960K 288 0
ioctlops 1 0K 4K 166960K 1781 0
iov 0 0K 18K 166960K 372 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1474 93K 93K 166960K 4997 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 1K 9K 166960K 108 0
VM map 2 1K 1K 166960K 2 0
sem 19 1K 1K 166960K 143 0
dirhash 12 2K 2K 166960K 90 0
ACPI 1697 195K 286K 166960K 12548 0
file desc 16 57K 109K 166960K 5921 0
sigio 0 0K 0K 166960K 123 0
proc 72 103K 189K 166960K 2416 0
subproc 104 6K 8K 166960K 813 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 0 0K 0K 166960K 1261 0
in_multi 89 6K 7K 166960K 1024 0
ether_multi 1 0K 0K 166960K 68 0
mrt 3 0K 0K 166960K 31 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 109 493K 493K 166960K 109 0
exec 0 0K 1K 166960K 1758 0
pfkey data 0 0K 0K 166960K 4 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 338 318K 319K 166960K 52953 0
UVM aobj 113 3K 4K 166960K 135 0
pinsyscall 40 80K 108K 166960K 8442 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 1K 166960K 470 0
NDP 17 0K 2K 166960K 241 0
temp 75 6816K 7316K 166960K 183836 0
kqueue 14 20K 32K 166960K 851 0
SYN cache 2 16K 16K 166960K 2 0
ddb{1}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 24 0 0 1 0 1 1 0 8 0
rtpcb 120 565 0 562 1 0 1 1 0 8 0
rtentry 112 801 0 684 6 2 4 4 0 8 0
unpcb 144 3836 0 3818 19 17 2 4 0 8 1
syncache 336 4 0 4 1 1 0 1 0 8 0
tcpqe 32 29 54 29 2 2 0 1 0 8 0
tcpcb 808 1925 0 1920 39 37 2 8 0 8 1
arp 120 161 0 132 1 0 1 1 0 8 0
inpcb 392 7068 0 7060 101 92 9 18 0 8 8
nd6 136 203 0 179 1 0 1 1 0 8 0
pkpcb 40 29 0 29 17 17 0 1 0 8 0
kcovpl 48 61 0 53 1 0 1 1 0 8 0
ppxss 1168 19 0 19 10 10 0 1 0 8 0
pffrag 232 101 0 97 3 2 1 1 0 482 0
pffrnode 88 62 0 59 3 2 1 1 0 8 0
pffrent 40 1070 0 1029 2 1 1 1 0 8 0
pfosfp 40 1428 0 1005 5 0 5 5 0 8 0
pfosfpen 112 1428 0 714 21 0 21 21 0 8 0
pfstitem 24 534 0 458 1 0 1 1 0 8 0
pfstkey 128 534 0 458 4 1 3 3 0 8 0
pfstate 376 534 0 458 13 3 10 10 0 8 0
pfrule 1344 21 0 16 2 1 1 2 0 8 0
art_heap8 4096 3 0 2 3 2 1 3 0 8 0
art_heap4 256 3021 0 2557 63 34 29 30 0 8 0
art_table 32 3024 0 2559 6 2 4 4 0 8 0
art_node 16 784 0 682 1 0 1 1 0 8 0
semupl 112 5 0 5 3 3 0 1 0 8 0
semapl 112 136 0 119 1 0 1 1 0 8 0
shmpl 112 132 0 22 4 0 4 4 0 8 0
dirhash 1024 69 0 52 3 0 3 3 0 8 0
dino2pl 256 11011 0 9465 98 0 98 98 0 8 0
ffsino 272 11011 0 9465 106 2 104 104 0 8 0
nchpl 144 19841 0 19229 67 41 26 67 0 8 0
uvmvnodes 80 9131 0 0 187 0 187 187 0 8 0
vnodes 216 9131 0 0 508 0 508 508 0 8 0
namei 1024 66981 0 66981 13 12 1 2 0 8 1
percpumem 16 158 0 107 1 0 1 1 0 8 0
vcpupl 3904 29 0 0 4 0 4 4 0 8 0
vmpool 696 46 0 17 4 1 3 3 0 8 0
kstatmem 264 248 0 214 7 4 3 3 0 8 0
scsiplug 72 17 0 17 11 11 0 1 0 8 0
scxspl 216 125487 0 125487 27 24 3 8 1 8 3
plimitpl 152 775 0 757 1 0 1 1 0 8 0
sigapl 424 6153 0 6104 10 3 7 9 0 8 0
futexpl 64 88755 0 88752 7 6 1 1 0 8 0
knotepl 120 962 0 0 19 0 19 19 0 8 0
kqueuepl 216 1624 0 1613 5 4 1 3 0 8 0
pipepl 320 1028 0 1000 4 1 3 4 0 8 0
fdescpl 496 6110 0 6081 6 1 5 6 0 8 0
filepl 152 38771 0 38519 47 31 16 17 0 8 4
lockfpl 104 2074 0 2072 1 0 1 1 0 8 0
lockfspl 48 732 0 730 1 0 1 1 0 8 0
sessionpl 144 74 0 57 1 0 1 1 0 8 0
pgrppl 48 218 0 201 1 0 1 1 0 8 0
ucredpl 104 5674 0 5659 1 0 1 1 0 8 0
zombiepl 144 6105 0 6104 2 1 1 1 0 8 0
processpl 1136 6153 0 6104 6 1 5 6 0 8 0
procpl 656 12831 0 12760 12 4 8 10 0 8 1
srpgc 96 44 0 44 13 13 0 1 0 8 0
sosppl 168 75 0 75 26 26 0 1 0 8 0
sockpl 664 11564 0 11535 85 74 11 17 0 8 8
mcl64k 65536 6 0 0 1 0 1 1 0 8 0
mcl16k 16384 2 0 0 1 0 1 1 0 8 0
mcl12k 12288 2 0 0 1 0 1 1 0 8 0
mcl9k 9216 2 0 0 1 0 1 1 0 8 0
mcl8k 8192 5 0 0 1 0 1 1 0 8 0
mcl4k 4096 6 0 0 1 0 1 1 0 8 0
mcl2k2 2112 1 0 0 1 0 1 1 0 8 0
mcl2k 2048 566 0 0 49 8 41 49 0 8 1
mtagpl 96 76 0 0 2 0 2 2 0 8 0
mbufpl 256 1456 0 0 75 0 75 75 0 8 0
bufpl 280 19342 0 10209 653 0 653 653 0 8 0
anonpl 24 930570 0 924026 229 161 68 134 0 186 2
amapchunkpl 152 174152 0 173443 150 111 39 56 0 158 6
amappl16 200 23480 0 23334 180 168 12 33 0 8 0
amappl15 192 89 0 89 2 2 0 1 0 8 0
amappl14 184 392 0 377 2 1 1 2 0 8 0
amappl13 176 13 0 13 2 2 0 1 0 8 0
amappl12 168 7574 0 7543 4 2 2 3 0 8 0
amappl11 160 63 0 49 1 0 1 1 0 8 0
amappl10 152 112 0 103 1 0 1 1 0 8 0
amappl9 144 369 0 369 3 3 0 1 0 8 0
amappl8 136 311 0 269 2 0 2 2 0 8 0
amappl7 128 67 0 51 1 0 1 1 0 8 0
amappl6 120 1095 0 1078 3 2 1 2 0 8 0
amappl5 112 376 0 361 1 0 1 1 0 8 0
amappl4 104 961 0 922 2 0 2 2 0 8 0
amappl3 96 31720 0 31635 3 0 3 3 0 8 0
amappl2 88 6685 0 6609 5 3 2 4 0 8 0
amappl1 80 30436 0 29887 23 10 13 23 0 8 0
amappl 88 51631 0 51415 8 2 6 6 0 92 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 134 0 22 3 0 3 3 0 8 0
uaddrrnd 24 6157 0 6099 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 6157 0 6099 1 0 1 1 0 8 0
vmmpekpl 168 44936 0 44872 4 0 4 4 0 8 0
vmmpepl 168 387737 0 385706 210 106 104 118 0 357 0
vmsppl 440 6156 0 6099 9 2 7 7 0 8 0
rwobjpl 56 104724 0 94267 176 28 148 151 0 8 0
pdppl 4096 12321 0 12227 328 230 98 112 0 8 4
pvpl 32 45283 0 0 367 1 366 366 0 265 0
pmappl 248 6156 0 6099 4 0 4 4 0 8 0
extentpl 40 56 0 38 1 0 1 1 0 8 0
phpool 112 795 0 338 14 0 14 14 0 8 0
ddb{1}> machine ddbcpu 0
Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp
ddb{0}> trace
x86_ipi_db(ffffffff82cddff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
end of kernel
end trace frame: 0x72c7ef814710, count: -3
ddb{0}> machine ddbcpu 1
Stopped at solock_shared+0x1c: movq 0x8(%r12),%rax
ddb{1}> trace
solock_shared(ffff800010fdc2a8) at solock_shared+0x1c sys/kern/uipc_socket2.c:351
soreceive(ffff800010fdc2a8,0,ffff8000324f0d88,0,0,ffff8000324f0c9c,6d59710a1c86080b) at soreceive+0x690 sys/kern/uipc_socket.c:932
fifo_read(ffff8000324f0cf0) at fifo_read+0xd2 sys/miscfs/fifofs/fifo_vnops.c:256
VOP_READ(fffffd805c8f78b8,ffff8000324f0d88,64,fffffd807f7d72d8) at VOP_READ+0xc3 sys/kern/vfs_vops.c:227
vn_rdwr(0,fffffd805c8f78b8,ffff80001f052000,200,0,1,899544dd1390dbf3,0,ffff8000006aa000,0) at vn_rdwr+0x10a
vndstrategy(fffffd8065b38b28) at vndstrategy+0x3e2 sys/dev/vnd.c:342
readdoslabel(fffffd8065b38b28,ffffffff81538c60,ffff800000e4fe00,0,1) at readdoslabel+0x79 readdisksector sys/kern/subr_disk.c:323 [inline]
readdoslabel(fffffd8065b38b28,ffffffff81538c60,ffff800000e4fe00,0,1) at readdoslabel+0x79 sys/kern/subr_disk.c:354
readdisklabel(2902,ffffffff81538c60,ffff800000e4fe00,1) at readdisklabel+0x16b sys/arch/amd64/amd64/disksubr.c:99
vndioctl(2902,41946472,ffff800000e4fe00,1,ffff8000ffff1740) at vndioctl+0x4d8 sys/dev/vnd.c:619
VOP_IOCTL(fffffd806e417eb8,41946472,ffff800000e4fe00,1,fffffd807f7d78f0,ffff8000ffff1740) at VOP_IOCTL+0x9a sys/kern/vfs_vops.c:264
vn_ioctl(fffffd806a710e48,41946472,ffff800000e4fe00,ffff8000ffff1740) at vn_ioctl+0xc0 sys/kern/vfs_vnops.c:525
sys_ioctl(ffff8000ffff1740,ffff8000324f1d70,ffff8000324f1cc0) at sys_ioctl+0x4a9
syscall(ffff8000324f1d70) at syscall+0x8cf mi_syscall sys/sys/syscall_mi.h:180 [inline]
syscall(ffff8000324f1d70) at syscall+0x8cf sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xc1c803a5970, count: -14