Warning: Permanently added '10.128.1.75' (ED25519) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program kernel: protection fault trap, code=0 Stopped at ktrops+0x4a: movq 0x8(%rbx),%r14 ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic the kernel did not panic ddb{1}> trace ktrops(ffff800021228db8,dead4110dead4110,0,80000110,fffffd806c8be960,fffffd807f7d78f0) at ktrops+0x4a doktrace(fffffd806c8be960,4,110,ffffffff,ffff800021228db8) at doktrace+0x418 sys_ktrace(ffff800021228db8,ffff80002129dd78,ffff80002129ddc0) at sys_ktrace+0xd2 syscall(ffff80002129de40) at syscall+0x5e2 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7fffffb580, count: -5 ddb{1}> show registers rdi 0xffff800021228db8 rsi 0xdead4110dead4110 rbp 0xffff80002129db60 rbx 0xdead4110dead4110 rdx 0 rcx 0x80000110 __kernel_virt_to_phys+0x110 rax 0x1 r8 0xfffffd806c8be960 r9 0xfffffd807f7d78f0 r10 0xb3317854b9a36ef8 r11 0x88454647592a5fe8 r12 0xffff8000fffffaa0 r13 0xfffffd807f7d78f0 r14 0xffff800021228db8 r15 0x80000110 __kernel_virt_to_phys+0x110 rip 0xffffffff81721c4a ktrops+0x4a cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002129dae0 ss 0x10 ktrops+0x4a: movq 0x8(%rbx),%r14 ddb{1}> show proc PROC (syz-executor3847699085) pid=304831 stat=onproc flags process=0 proc=0 pri=17, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff800021229898,0xffff800021228b10 process=0xffff8000ffff5d68 user=0xffff800021298000, vmspace=0xfffffd806c8efdd8 estcpu=0, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 41544 130558 41762 0 2 0 syz-executor3847699085 80605 148549 7894 0 7 0 syz-executor3847699085 30033 131115 22981 0 3 0 biowait syz-executor3847699085 * 4743 304831 7899 0 7 0 syz-executor3847699085 31536 10075 79187 0 2 0 syz-executor3847699085 41762 321890 24567 0 2 0 syz-executor3847699085 22981 519200 24567 0 3 0x80 nanoslp syz-executor3847699085 7899 155987 24567 0 3 0x80 nanoslp syz-executor3847699085 64873 145342 24567 0 2 0x480 syz-executor3847699085 1042 12409 24567 0 2 0x480 syz-executor3847699085 95799 352792 24567 0 2 0 syz-executor3847699085 79187 12993 24567 0 3 0x80 nanoslp syz-executor3847699085 7894 178110 24567 0 3 0x80 nanoslp syz-executor3847699085 24567 332450 65298 0 3 0x82 nanoslp syz-executor3847699085 65298 445216 38344 0 3 0x10008a sigsusp ksh 38344 440753 77445 0 3 0x9a kqread sshd 90578 480712 1 0 3 0x100083 ttyin getty 77445 111471 1 0 3 0x88 kqread sshd 41253 368230 23015 74 3 0x1100092 bpf pflogd 23015 266927 1 0 3 0x80 netio pflogd 70886 275953 16415 73 3 0x1100090 kqread syslogd 16415 361131 1 0 3 0x100082 netio syslogd 80054 292563 1 0 3 0x100080 kqread resolvd 14182 149266 99715 77 3 0x100092 kqread dhcpleased 77097 429390 99715 77 3 0x100092 kqread dhcpleased 99715 334170 1 0 3 0x80 kqread dhcpleased 14542 243069 0 0 3 0x14200 bored smr 97743 17967 0 0 3 0x14200 pgzero zerothread 78237 193110 0 0 3 0x14200 aiodoned aiodoned 89418 13821 0 0 3 0x14200 syncer update 28500 314239 0 0 3 0x14200 cleaner cleaner 19300 123368 0 0 3 0x14200 reaper reaper 95427 181214 0 0 3 0x14200 pgdaemon pagedaemon 36095 138902 0 0 3 0x14200 bored viomb 59039 351399 0 0 3 0x40014200 acpi0 acpi0 26501 322349 0 0 3 0x40014200 idle1 6376 233704 0 0 3 0x14200 bored softnet 19319 470511 0 0 3 0x14200 bored softnet 2582 285665 0 0 3 0x14200 bored softnet 129 63016 0 0 3 0x14200 bored softnet 7159 212386 0 0 3 0x14200 bored systqmp 38430 88127 0 0 3 0x14200 bored systq 92466 154963 0 0 3 0x40014200 bored softclock 4207 85778 0 0 3 0x40014200 idle0 1 468295 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 30033 (syz-executor3847699085) thread 0xffff800021228b00 (131115) exclusive rrwlock inode r = 0 (0xfffffd806c8b1f80) #0 witness_lock+0x44d #1 rw_enter+0x3e1 #2 rrw_enter+0x8b #3 VOP_LOCK+0x87 #4 ufs_ihashins+0x42 #5 ffs_vget+0x141 #6 ffs_inode_alloc+0x1be #7 ufs_makeinode+0xae #8 ufs_create+0x41 #9 VOP_CREATE+0xbc #10 vn_open+0x28f #11 doopenat+0x26a #12 syscall+0x5e2 #13 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd806c8b12c0) #0 witness_lock+0x44d #1 rw_enter+0x3e1 #2 rrw_enter+0x8b #3 VOP_LOCK+0x87 #4 vn_lock+0x84 #5 vfs_lookup+0xd1 #6 namei+0x55a #7 vn_open+0x188 #8 doopenat+0x26a #9 syscall+0x5e2 #10 Xsyscall+0x128 Process 4743 (syz-executor3847699085) thread 0xffff800021228db8 (304831) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82db6228) #0 witness_lock+0x44d #1 __mp_acquire_count+0x48 #2 mi_switch+0x3bb #3 sleep_finish+0x180 #4 tsleep+0x12c #5 getblk+0x13c #6 bread+0x3a #7 ffs_update+0x14b #8 ufs_inactive+0x25f #9 VOP_INACTIVE+0xc4 #10 vrele+0xd2 #11 ktrsettrace+0xb3 #12 ktrops+0x1a4 #13 doktrace+0x418 #14 sys_ktrace+0xd2 #15 syscall+0x5e2 #16 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10173 6457K 6458K 78643K 11263 0 pcb 13 8K 8K 78643K 13 0 rtable 58 1K 2K 78643K 113 0 ifaddr 28 16K 16K 78643K 31 0 counters 44 33K 33K 78643K 44 0 ioctlops 0 0K 4K 78643K 1473 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1169 73K 73K 78643K 1185 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 1K 78643K 2 0 VM map 2 1K 1K 78643K 2 0 sem 2 0K 0K 78643K 2 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 1 0K 0K 78643K 1 0 proc 67 91K 91K 78643K 295 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 in_multi 11 0K 0K 78643K 11 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 25 122K 122K 78643K 25 0 exec 0 0K 1K 78643K 267 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 120 6K 6K 78643K 1812 0 UVM aobj 3 2K 2K 78643K 3 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 NDP 4 0K 0K 78643K 4 0 temp 23 5761K 5825K 78643K 3107 0 kqueue 11 16K 18K 78643K 24 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 20 0 17 1 0 1 1 0 8 0 rtentry 112 23 0 1 1 0 1 1 0 8 0 unpcb 144 35 0 20 1 0 1 1 0 8 0 syncache 296 5 0 5 2 1 1 1 0 8 1 tcpqe 32 63 0 63 1 1 0 1 0 8 0 tcpcb 776 8 0 5 1 0 1 1 0 8 0 arp 120 2 0 0 1 0 1 1 0 8 0 inpcb 368 32 0 26 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 9 0 7 2 1 1 1 0 8 0 pfstkey 128 9 0 7 2 1 1 1 0 8 0 pfstate 384 9 0 7 2 1 1 1 0 8 0 pfrule 1344 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 97 0 0 7 0 7 7 0 8 0 art_table 32 98 0 0 1 0 1 1 0 8 0 art_node 16 22 0 2 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1464 0 53 89 0 89 89 0 8 0 ffsino 272 1464 0 53 95 0 95 95 0 8 0 nchpl 144 1677 0 89 60 0 60 60 0 8 1 uvmvnodes 80 1478 0 0 31 0 31 31 0 8 0 vnodes 216 1478 0 0 83 0 83 83 0 8 0 namei 1024 4658 0 4657 3 1 2 2 0 8 1 percpumem 16 35 0 0 1 0 1 1 0 8 0 kstatmem 264 8 0 0 1 0 1 1 0 8 0 scxspl 216 5117 0 5116 18 17 1 8 0 8 0 plimitpl 152 17 0 10 1 0 1 1 0 8 0 sigapl 424 358 0 311 7 1 6 6 0 8 0 knotepl 120 48 0 0 2 0 2 2 0 8 0 kqueuepl 216 20 0 13 1 0 1 1 0 8 0 pipepl 320 90 0 87 2 1 1 1 0 8 0 fdescpl 496 341 0 313 4 0 4 4 0 8 0 filepl 152 1285 0 1223 3 0 3 3 0 8 0 lockfpl 104 31 0 26 1 0 1 1 0 8 0 lockfspl 48 18 0 13 1 0 1 1 0 8 0 sessionpl 144 18 0 9 1 0 1 1 0 8 0 pgrppl 48 18 0 9 1 0 1 1 0 8 0 ucredpl 104 71 0 59 1 0 1 1 0 8 0 zombiepl 144 313 0 311 2 1 1 1 0 8 0 processpl 1072 358 0 311 4 0 4 4 0 8 0 procpl 696 358 0 311 5 0 5 5 0 8 0 sockpl 488 87 0 63 5 1 4 4 0 8 0 mcl8k 8192 8 0 0 1 0 1 1 0 8 0 mcl4k 4096 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 281 0 0 31 4 27 31 0 8 0 mtagpl 96 2 0 0 1 0 1 1 0 8 0 mbufpl 256 354 0 0 20 1 19 20 0 8 0 bufpl 288 2479 0 93 171 0 171 171 0 8 0 anonpl 24 101365 0 98476 31 13 18 26 0 186 0 amapchunkpl 152 4619 0 4477 8 2 6 6 0 158 0 amappl16 200 1932 0 1920 6 5 1 5 0 8 0 amappl15 192 7 0 7 1 1 0 1 0 8 0 amappl14 184 100 0 89 1 0 1 1 0 8 0 amappl13 176 5 0 5 1 1 0 1 0 8 0 amappl12 168 327 0 326 2 1 1 1 0 8 0 amappl11 160 49 0 35 1 0 1 1 0 8 0 amappl10 152 4 0 4 1 1 0 1 0 8 0 amappl9 144 949 0 949 2 1 1 1 0 8 1 amappl8 136 24 0 23 2 1 1 1 0 8 0 amappl7 128 98 0 85 1 0 1 1 0 8 0 amappl6 120 89 0 82 1 0 1 1 0 8 0 amappl5 112 83 0 74 1 0 1 1 0 8 0 amappl4 104 395 0 371 1 0 1 1 0 8 0 amappl3 96 528 0 483 2 0 2 2 0 8 0 amappl2 88 531 0 476 2 0 2 2 0 8 0 amappl1 80 9981 0 9363 16 3 13 13 0 8 0 amappl 88 1468 0 1407 3 1 2 2 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 2 0 0 1 0 1 1 0 8 0 uaddrrnd 24 341 0 313 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 341 0 313 1 0 1 1 0 8 0 vmmpekpl 168 7182 0 7164 1 0 1 1 0 8 0 vmmpepl 168 32524 0 30985 75 8 67 67 0 357 0 vmsppl 440 340 0 313 5 1 4 4 0 8 0 rwobjpl 56 13176 0 10893 34 1 33 33 0 8 0 pdppl 4096 689 0 626 89 24 65 65 0 8 2 pvpl 32 197777 0 191923 69 21 48 57 0 265 0 pmappl 248 340 0 313 2 0 2 2 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 515 0 32 14 0 14 14 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff82b24ff0) at x86_ipi_db+0x1a x86_ipi_handler() at x86_ipi_handler+0xb7 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __mp_lock(ffffffff82db6020) at __mp_lock+0x122 intr_handler(ffff8000212aefa0,ffff80000006ba00) at intr_handler+0x5e Xintr_ioapic_edge21_untramp() at Xintr_ioapic_edge21_untramp+0x18f __mp_lock(ffffffff82db6020) at __mp_lock+0x122 syscall(ffff8000212af170) at syscall+0x5cd Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7fffffb5f0, count: -9 ddb{0}> machine ddbcpu 1 Stopped at ktrops+0x4a: movq 0x8(%rbx),%r14 ddb{1}> trace ktrops(ffff800021228db8,dead4110dead4110,0,80000110,fffffd806c8be960,fffffd807f7d78f0) at ktrops+0x4a doktrace(fffffd806c8be960,4,110,ffffffff,ffff800021228db8) at doktrace+0x418 sys_ktrace(ffff800021228db8,ffff80002129dd78,ffff80002129ddc0) at sys_ktrace+0xd2 syscall(ffff80002129de40) at syscall+0x5e2 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7fffffb580, count: -5