Warning: Permanently added '10.128.1.89' (ED25519) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program kernel: protection fault trap, code=0 Stopped at ktrops+0x4e: movq 0x8(%rbx),%r14 ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic the kernel did not panic ddb{1}> trace ktrops(ffff800021234590,deaf4152deaf4152,0,80000206,fffffd806d43a7e0,fffffd807f7d7548) at ktrops+0x4e doktrace(fffffd806d43a7e0,4,206,0,ffff800021234590) at doktrace+0x524 sys_ktrace(ffff800021234590,ffff80002129b800,ffff80002129b850) at sys_ktrace+0xd6 syscall(ffff80002129b8d0) at syscall+0x5e2 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f2d54125fa0, count: -5 ddb{1}> show registers rdi 0xffff800021234590 rsi 0xdeaf4152deaf4152 rbp 0xffff80002129b5f0 rbx 0xdeaf4152deaf4152 rdx 0 rcx 0x80000206 __kernel_virt_to_phys+0x206 rax 0x1 r8 0xfffffd806d43a7e0 r9 0xfffffd807f7d7548 r10 0xcb7a2e4ca0c05d18 r11 0x729f6e27c46128a9 r12 0xdeaf4152deaf4152 r13 0xfffffd807f7d7548 r14 0xffff800021234590 r15 0x80000206 __kernel_virt_to_phys+0x206 rip 0xffffffff818c45ce ktrops+0x4e cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002129b570 ss 0x10 ktrops+0x4e: movq 0x8(%rbx),%r14 ddb{1}> show proc PROC (syz-executor404257629) pid=283748 stat=onproc flags process=0 proc=0 pri=17, usrpri=54, nice=20 forw=0xffffffffffffffff, list=0xffff8000211f2010,0xffff800021234dc8 process=0xffff8000211f7ab8 user=0xffff800021296000, vmspace=0xfffffd806c911758 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 68368 35559 84448 0 2 0 syz-executor404257629 * 4200 283748 82141 0 7 0 syz-executor404257629 84448 254955 717 0 3 0x80 nanoslp syz-executor404257629 79145 111833 717 0 3 0x80 nanoslp syz-executor404257629 92127 252545 717 0 2 0 syz-executor404257629 85496 323767 717 0 2 0 syz-executor404257629 39682 159023 717 0 3 0x80 nanoslp syz-executor404257629 58178 334170 717 0 3 0 getblk syz-executor404257629 82141 465940 717 0 3 0x80 nanoslp syz-executor404257629 20 219141 717 0 7 0 syz-executor404257629 717 187721 23302 0 3 0x82 nanoslp syz-executor404257629 23302 337850 94778 0 3 0x10008a sigsusp ksh 94778 76855 86238 0 2 0x12 sshd 32817 450519 1 0 3 0x100083 ttyin getty 86238 93335 1 0 3 0x88 kqread sshd 86153 233530 19069 74 3 0x1100092 bpf pflogd 19069 313196 1 0 3 0x80 netio pflogd 6189 523280 41837 73 3 0x1100090 kqread syslogd 41837 461303 1 0 3 0x100082 netio syslogd 3133 329371 1 0 3 0x100080 kqread resolvd 60006 144046 36320 77 3 0x100092 kqread dhcpleased 87773 178877 36320 77 3 0x100092 kqread dhcpleased 36320 202917 1 0 3 0x80 kqread dhcpleased 83496 142055 0 0 3 0x14200 bored smr 58868 256029 0 0 3 0x14200 pgzero zerothread 70050 74568 0 0 3 0x14200 aiodoned aiodoned 32275 239046 0 0 3 0x14200 syncer update 78090 269327 0 0 3 0x14200 cleaner cleaner 73094 230812 0 0 3 0x14200 reaper reaper 96501 485580 0 0 3 0x14200 pgdaemon pagedaemon 30238 56218 0 0 3 0x14200 bored viomb 87901 17470 0 0 3 0x40014200 acpi0 acpi0 31050 355663 0 0 3 0x40014200 idle1 49447 241133 0 0 3 0x14200 bored softnet3 54403 336066 0 0 3 0x14200 bored softnet2 1765 489142 0 0 3 0x14200 bored softnet1 79758 521177 0 0 3 0x14200 bored softnet0 61374 336058 0 0 3 0x14200 bored systqmp 53075 256227 0 0 3 0x14200 bored systq 14604 199754 0 0 3 0x40014200 bored softclock 45598 450414 0 0 3 0x40014200 idle0 1 11492 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 4200 (syz-executor404257629) thread 0xffff800021234590 (283748) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82d76e58) #0 witness_lock+0x44d #1 __mp_acquire_count+0x48 #2 mi_switch+0x3c3 #3 sleep_finish+0x184 #4 tsleep+0x12b #5 getblk+0x14c #6 bread+0x3e #7 ffs_update+0x14f #8 ufs_inactive+0x263 #9 VOP_INACTIVE+0xc4 #10 vrele+0xd6 #11 ktrsettrace+0xb7 #12 ktrops+0x1a8 #13 doktrace+0x524 #14 sys_ktrace+0xd6 #15 syscall+0x5e2 #16 Xsyscall+0x128 Process 85496 (syz-executor404257629) thread 0xffff8000211acae8 (323767) exclusive rrwlock inode r = 0 (0xfffffd806e3002c8) #0 witness_lock+0x44d #1 rw_enter+0x3e5 #2 rrw_enter+0x8f #3 VOP_LOCK+0x8b #4 vn_lock+0x84 #5 vget+0x200 #6 ufs_ihashget+0x121 #7 ffs_vget+0x7c #8 ufs_lookup+0x13ba #9 VOP_LOOKUP+0x5c #10 vfs_lookup+0x6f5 #11 namei+0x55a #12 dounlinkat+0x9d #13 syscall+0x5e2 #14 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd806e300e78) #0 witness_lock+0x44d #1 rw_enter+0x3e5 #2 rrw_enter+0x8f #3 VOP_LOCK+0x8b #4 vn_lock+0x84 #5 vget+0x200 #6 cache_lookup+0x2b4 #7 ufs_lookup+0x1ac #8 VOP_LOOKUP+0x5c #9 vfs_lookup+0x6f5 #10 namei+0x55a #11 dounlinkat+0x9d #12 syscall+0x5e2 #13 Xsyscall+0x128 Process 58178 (syz-executor404257629) thread 0xffff800021214018 (334170) exclusive rrwlock inode r = 0 (0xfffffd806cdee700) #0 witness_lock+0x44d #1 rw_enter+0x3e5 #2 rrw_enter+0x8f #3 VOP_LOCK+0x8b #4 ufs_ihashins+0x46 #5 ffs_vget+0x141 #6 ffs_inode_alloc+0x1c2 #7 ufs_mkdir+0xf8 #8 VOP_MKDIR+0xc3 #9 domkdirat+0x125 #10 syscall+0x5e2 #11 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd806c7c4f78) #0 witness_lock+0x44d #1 rw_enter+0x3e5 #2 rrw_enter+0x8f #3 VOP_LOCK+0x8b #4 vn_lock+0x84 #5 vfs_lookup+0xd5 #6 namei+0x55a #7 domkdirat+0x79 #8 syscall+0x5e2 #9 Xsyscall+0x128 Process 20 (syz-executor404257629) thread 0xffff800021214840 (219141) exclusive rrwlock inode r = 0 (0xfffffd806cdee4e0) #0 witness_lock+0x44d #1 rw_enter+0x3e5 #2 rrw_enter+0x8f #3 VOP_LOCK+0x8b #4 ufs_ihashins+0x46 #5 ffs_vget+0x141 #6 ffs_inode_alloc+0x1c2 #7 ufs_mkdir+0xf8 #8 VOP_MKDIR+0xc3 #9 domkdirat+0x125 #10 syscall+0x5e2 #11 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd807e9f4d58) #0 witness_lock+0x44d #1 rw_enter+0x3e5 #2 rrw_enter+0x8f #3 VOP_LOCK+0x8b #4 vn_lock+0x84 #5 vfs_lookup+0xd5 #6 namei+0x55a #7 domkdirat+0x79 #8 syscall+0x5e2 #9 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10153 6455K 6456K 78643K 11243 0 pcb 13 8K 8K 78643K 13 0 rtable 58 1K 2K 78643K 116 0 ifaddr 28 16K 16K 78643K 31 0 counters 44 33K 33K 78643K 44 0 ioctlops 0 0K 4K 78643K 1475 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1176 74K 74K 78643K 1192 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 1K 78643K 2 0 VM map 2 1K 1K 78643K 2 0 sem 2 0K 0K 78643K 2 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 1 0K 0K 78643K 1 0 proc 67 91K 91K 78643K 302 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 in_multi 11 0K 0K 78643K 11 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 25 122K 122K 78643K 25 0 exec 0 0K 1K 78643K 272 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 124 6K 6K 78643K 2645 0 UVM aobj 3 2K 2K 78643K 3 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 NDP 4 0K 0K 78643K 4 0 temp 23 5849K 5913K 78643K 3443 0 kqueue 11 16K 18K 78643K 24 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 21 0 18 1 0 1 1 0 8 0 rtentry 112 23 0 1 1 0 1 1 0 8 0 unpcb 144 35 0 20 1 0 1 1 0 8 0 syncache 296 5 0 5 2 1 1 1 0 8 1 tcpqe 32 66 0 66 1 1 0 1 0 8 0 tcpcb 776 8 0 5 1 0 1 1 0 8 0 arp 120 2 0 0 1 0 1 1 0 8 0 inpcb 368 33 0 27 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 9 0 7 2 1 1 1 0 8 0 pfstkey 128 9 0 7 2 1 1 1 0 8 0 pfstate 384 9 0 7 2 1 1 1 0 8 0 pfrule 1344 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 97 0 0 7 0 7 7 0 8 0 art_table 32 98 0 0 1 0 1 1 0 8 0 art_node 16 22 0 2 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1569 0 134 90 0 90 90 0 8 0 ffsino 272 1569 0 134 96 0 96 96 0 8 0 nchpl 144 1881 0 294 60 0 60 60 0 8 1 uvmvnodes 80 1583 0 0 33 0 33 33 0 8 0 vnodes 216 1583 0 0 88 0 88 88 0 8 0 namei 1024 5154 0 5152 3 1 2 2 0 8 1 percpumem 16 35 0 0 1 0 1 1 0 8 0 kstatmem 264 8 0 0 1 0 1 1 0 8 0 scxspl 216 5620 0 5620 13 12 1 8 0 8 1 plimitpl 152 17 0 10 1 0 1 1 0 8 0 sigapl 424 412 0 368 7 1 6 6 0 8 0 knotepl 120 42 0 0 2 0 2 2 0 8 0 kqueuepl 216 20 0 13 1 0 1 1 0 8 0 pipepl 320 95 0 92 2 1 1 1 0 8 0 fdescpl 496 395 0 370 4 0 4 4 0 8 0 filepl 152 1403 0 1343 3 0 3 3 0 8 0 lockfpl 104 6 0 4 1 0 1 1 0 8 0 lockfspl 48 4 0 2 1 0 1 1 0 8 0 sessionpl 144 18 0 9 1 0 1 1 0 8 0 pgrppl 48 18 0 9 1 0 1 1 0 8 0 ucredpl 104 71 0 59 1 0 1 1 0 8 0 zombiepl 144 370 0 368 2 1 1 1 0 8 0 processpl 1072 412 0 368 4 0 4 4 0 8 0 procpl 696 412 0 368 5 0 5 5 0 8 0 sockpl 488 89 0 65 5 1 4 4 0 8 0 mcl8k 8192 3 0 0 1 0 1 1 0 8 0 mcl4k 4096 3 0 0 1 0 1 1 0 8 0 mcl2k 2048 263 0 0 33 0 33 33 0 8 0 mtagpl 96 3 0 0 1 0 1 1 0 8 0 mbufpl 256 283 0 0 18 0 18 18 0 8 0 bufpl 288 2600 0 99 179 0 179 179 0 8 0 anonpl 24 175491 0 173306 27 13 14 25 0 186 0 amapchunkpl 152 8766 0 8543 10 1 9 9 0 158 0 amappl16 200 5100 0 5091 6 5 1 5 0 8 0 amappl15 192 43 0 43 1 1 0 1 0 8 0 amappl14 184 114 0 103 1 0 1 1 0 8 0 amappl13 176 9 0 9 1 1 0 1 0 8 0 amappl12 168 875 0 853 2 1 1 2 0 8 0 amappl11 160 51 0 37 1 0 1 1 0 8 0 amappl10 152 13 0 13 2 1 1 1 0 8 1 amappl9 144 166 0 166 1 1 0 1 0 8 0 amappl8 136 48 0 46 1 0 1 1 0 8 0 amappl7 128 32 0 27 1 0 1 1 0 8 0 amappl6 120 166 0 153 1 0 1 1 0 8 0 amappl5 112 123 0 114 1 0 1 1 0 8 0 amappl4 104 500 0 464 3 1 2 2 0 8 0 amappl3 96 2196 0 2137 3 1 2 2 0 8 0 amappl2 88 490 0 445 3 1 2 2 0 8 0 amappl1 80 9750 0 9245 16 4 12 12 0 8 0 amappl 88 2342 0 2263 2 0 2 2 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 2 0 0 1 0 1 1 0 8 0 uaddrrnd 24 395 0 370 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 395 0 370 1 0 1 1 0 8 0 vmmpekpl 168 7477 0 7457 1 0 1 1 0 8 0 vmmpepl 168 36924 0 35649 66 7 59 59 0 357 2 vmsppl 464 394 0 370 4 0 4 4 0 8 0 rwobjpl 56 19106 0 16772 34 1 33 33 0 8 0 pdppl 4096 797 0 740 87 24 63 63 0 8 6 pvpl 32 282040 0 276859 63 20 43 56 0 265 0 pmappl 248 394 0 370 2 0 2 2 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 523 0 27 15 0 15 15 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff82c1aff0) at x86_ipi_db+0x1e x86_ipi_handler() at x86_ipi_handler+0xb7 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x44 __mp_acquire_count(ffffffff82d76c50,1) at __mp_acquire_count+0x48 mi_switch() at mi_switch+0x3c3 sleep_finish(ffff800021258fc0,1) at sleep_finish+0x184 tsleep(fffffd807efb0120,11,ffffffff82811bf8,0) at tsleep+0x12b biowait(fffffd807efb0120) at biowait+0x91 bwrite(fffffd807efb0120) at bwrite+0x21f ffs_update(fffffd807e9f4cc0,1) at ffs_update+0x281 ufs_mkdir(ffff8000212592f0) at ufs_mkdir+0x443 VOP_MKDIR(fffffd806d349298,ffff800021259450,ffff800021259480,ffff800021259380) at VOP_MKDIR+0xc3 domkdirat(ffff800021214840,ffffff9c,7f2d54125fb0,1ff) at domkdirat+0x125 syscall(ffff800021259600) at syscall+0x5e2 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f2d54126010, count: -16 ddb{0}> machine ddbcpu 1 Stopped at ktrops+0x4e: movq 0x8(%rbx),%r14 ddb{1}> trace ktrops(ffff800021234590,deaf4152deaf4152,0,80000206,fffffd806d43a7e0,fffffd807f7d7548) at ktrops+0x4e doktrace(fffffd806d43a7e0,4,206,0,ffff800021234590) at doktrace+0x524 sys_ktrace(ffff800021234590,ffff80002129b800,ffff80002129b850) at sys_ktrace+0xd6 syscall(ffff80002129b8d0) at syscall+0x5e2 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f2d54125fa0, count: -5