Warning: Permanently added '10.128.0.148' (ED25519) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program kernel: protection fault trap, code=0 Stopped at ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace ktrops(ffff8000216652c0,dead4110dead4110,0,80000110,fffffd806c48c880,fffffd807f7d7a28) at ktrops+0x4e doktrace(fffffd806c48c880,4,110,0,ffff8000216652c0) at doktrace+0x524 sys_ktrace(ffff8000216652c0,ffff8000216f2ba0,ffff8000216f2bf0) at sys_ktrace+0xd6 syscall(ffff8000216f2c70) at syscall+0x4a8 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6fdbc2b7f9b0, count: -5 ddb> show registers rdi 0xffff8000216652c0 rsi 0xdead4110dead4110 rbp 0xffff8000216f2990 rbx 0xdead4110dead4110 rdx 0 rcx 0x80000110 __kernel_virt_to_phys+0x110 rax 0x1 r8 0xfffffd806c48c880 r9 0xfffffd807f7d7a28 r10 0x5f1aa15784b2bb98 r11 0x4b19bb212028ae45 r12 0xdead4110dead4110 r13 0xfffffd807f7d7a28 r14 0xffff8000216652c0 r15 0x80000110 __kernel_virt_to_phys+0x110 rip 0xffffffff8142fc0e ktrops+0x4e cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000216f2910 ss 0 ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> show proc PROC (syz-executor1499578484) tid=13605 pid=77797 tcnt=1 stat=onproc flags process=0 proc=0 runpri=17, usrpri=53, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff800021666d50,0xffff800021665ac8 process=0xffff8000ffff77a0 user=0xffff8000216ed000, vmspace=0xfffffd8073cb6a20 estcpu=6, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 99659 183788 48922 0 2 0 syz-executor1499578484 64981 22429 863 0 2 0 syz-executor1499578484 *77797 13605 85408 0 7 0 syz-executor1499578484 40577 71464 62978 0 2 0x480 syz-executor1499578484 24567 329690 62978 0 2 0x480 syz-executor1499578484 48922 336187 62978 0 3 0x80 nanoslp syz-executor1499578484 863 167472 62978 0 3 0x80 nanoslp syz-executor1499578484 50165 248468 62978 0 2 0x480 syz-executor1499578484 49217 283564 62978 0 2 0 syz-executor1499578484 30563 324670 62978 0 3 0x80 nanoslp syz-executor1499578484 85408 307546 62978 0 2 0x480 syz-executor1499578484 62978 392398 57458 0 3 0x82 nanoslp syz-executor1499578484 57458 480783 66084 0 3 0x10008a sigsusp ksh 66084 406428 27790 0 3 0x9a kqread sshd 63719 74948 1 0 3 0x100083 ttyin getty 27790 195306 1 0 3 0x88 kqread sshd 4520 488313 58530 73 3 0x1100090 kqread syslogd 58530 29273 1 0 3 0x100082 netio syslogd 44796 455003 1 0 3 0x100080 kqread resolvd 25354 265669 84104 77 3 0x100092 kqread dhcpleased 7321 415188 84104 77 3 0x100092 kqread dhcpleased 84104 106160 1 0 3 0x80 kqread dhcpleased 7946 483929 0 0 3 0x14200 bored smr 3709 36310 0 0 3 0x14200 pgzero zerothread 87277 442149 0 0 3 0x14200 aiodoned aiodoned 3539 194949 0 0 3 0x14200 syncer update 52459 498150 0 0 3 0x14200 cleaner cleaner 99538 146669 0 0 3 0x14200 reaper reaper 63732 512865 0 0 3 0x14200 pgdaemon pagedaemon 77790 133059 0 0 3 0x14200 bored viomb 62339 265837 0 0 3 0x40014200 acpi0 acpi0 36154 198021 0 0 3 0x14200 bored softnet3 80070 111482 0 0 3 0x14200 bored softnet2 86852 144032 0 0 3 0x14200 bored softnet1 42886 136565 0 0 3 0x14200 bored softnet0 90222 112812 0 0 3 0x14200 bored systqmp 89147 5587 0 0 3 0x14200 bored systq 31555 265548 0 0 3 0x40014200 tmoslp softclock 97808 73709 0 0 3 0x40014200 idle0 1 232975 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10139 6382K 6413K 78643K 11217 0 pcb 13 8K 8K 78643K 13 0 rtable 58 1K 2K 78643K 112 0 pf 12 6K 6K 78643K 12 0 ifaddr 11 5K 5K 78643K 11 0 ifgroup 17 1K 1K 78643K 17 0 counters 20 16K 16K 78643K 20 0 ioctlops 0 0K 2K 78643K 21 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1174 73K 74K 78643K 1187 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 1K 78643K 2 0 VM map 2 1K 1K 78643K 2 0 sem 2 0K 0K 78643K 2 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 1 0K 0K 78643K 1 0 proc 55 58K 59K 78643K 246 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 in_multi 11 0K 0K 78643K 11 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 25 122K 122K 78643K 25 0 exec 0 0K 1K 78643K 253 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 104 5K 5K 78643K 2179 0 UVM aobj 3 2K 2K 78643K 3 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 NDP 3 0K 0K 78643K 3 0 temp 1 5896K 5960K 78643K 2805 0 kqueue 11 16K 18K 78643K 24 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 21 0 18 1 0 1 1 0 8 0 rtentry 112 23 0 1 1 0 1 1 0 8 0 unpcb 144 33 0 20 1 0 1 1 0 8 0 syncache 304 5 0 5 2 1 1 1 0 8 1 tcpqe 32 56 0 56 1 1 0 1 0 8 0 tcpcb 808 8 0 5 1 0 1 1 0 8 0 arp 88 2 0 0 1 0 1 1 0 8 0 inpcb 336 26 0 20 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 96 0 0 6 0 6 6 0 8 0 art_table 32 97 0 0 1 0 1 1 0 8 0 art_node 16 22 0 2 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1450 0 40 89 0 89 89 0 8 0 ffsino 240 1450 0 40 83 0 83 83 0 8 0 nchpl 144 1652 0 57 60 0 60 60 0 8 0 uvmvnodes 80 1459 0 0 30 0 30 30 0 8 0 vnodes 216 1459 0 0 82 0 82 82 0 8 0 namei 1024 4356 0 4354 3 1 2 2 0 8 1 kstatmem 264 6 0 0 1 0 1 1 0 8 0 scxspl 216 5058 0 5058 10 9 1 8 1 8 1 plimitpl 152 16 0 10 1 0 1 1 0 8 0 sigapl 424 329 0 285 5 0 5 5 0 8 0 knotepl 120 3780 0 3751 3 1 2 2 0 8 1 kqueuepl 184 20 0 13 1 0 1 1 0 8 0 pipepl 288 88 0 85 2 1 1 1 0 8 0 fdescpl 432 313 0 289 3 0 3 3 0 8 0 filepl 120 1145 0 1088 2 0 2 2 0 8 0 lockfpl 104 6 0 4 1 0 1 1 0 8 0 lockfspl 48 4 0 2 1 0 1 1 0 8 0 sessionpl 144 17 0 9 1 0 1 1 0 8 0 pgrppl 48 17 0 9 1 0 1 1 0 8 0 ucredpl 104 66 0 56 1 0 1 1 0 8 0 zombiepl 144 289 0 285 2 1 1 1 0 8 0 processpl 1008 329 0 285 7 1 6 6 0 8 0 procpl 680 329 0 285 4 0 4 4 0 8 0 sockpl 456 80 0 58 3 0 3 3 0 8 0 mcl8k 8192 9 0 9 2 1 1 1 0 8 1 mcl4k 4096 5 0 5 2 1 1 1 0 8 1 mcl2k 2048 11776 0 11737 41 31 10 36 0 8 4 mtagpl 96 4 0 4 1 1 0 1 0 8 0 mbufpl 256 18949 0 18906 21 15 6 19 0 8 2 bufpl 288 2495 0 88 172 0 172 172 0 8 0 anonpl 24 196267 0 194367 26 13 13 24 0 188 1 amapchunkpl 152 8557 0 8394 8 1 7 7 0 158 0 amappl16 200 5966 0 5961 6 5 1 5 0 8 0 amappl15 192 16 0 16 1 1 0 1 0 8 0 amappl14 184 105 0 96 1 0 1 1 0 8 0 amappl13 176 20 0 20 1 1 0 1 0 8 0 amappl12 168 796 0 781 1 0 1 1 0 8 0 amappl11 160 48 0 38 1 0 1 1 0 8 0 amappl10 152 18 0 18 2 1 1 1 0 8 1 amappl9 144 174 0 174 1 1 0 1 0 8 0 amappl8 136 27 0 25 1 0 1 1 0 8 0 amappl7 128 16 0 15 1 0 1 1 0 8 0 amappl6 120 150 0 137 1 0 1 1 0 8 0 amappl5 112 109 0 101 1 0 1 1 0 8 0 amappl4 104 418 0 388 1 0 1 1 0 8 0 amappl3 96 2271 0 2231 2 0 2 2 0 8 1 amappl2 88 472 0 430 3 1 2 2 0 8 0 amappl1 80 9186 0 8723 15 4 11 11 0 8 0 amappl 88 1907 0 1842 2 0 2 2 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 2 0 0 1 0 1 1 0 8 0 uaddrrnd 24 313 0 289 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 313 0 289 1 0 1 1 0 8 0 vmmpekpl 168 6891 0 6870 1 0 1 1 0 8 0 vmmpepl 168 34952 0 33824 59 8 51 51 0 357 1 vmsppl 368 312 0 289 3 0 3 3 0 8 0 rwobjpl 24 19650 0 17545 14 1 13 14 0 8 0 pdppl 4096 632 0 578 80 22 58 58 0 8 4 pvpl 32 291381 0 286830 60 22 38 52 0 265 0 pmappl 216 312 0 289 2 0 2 2 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 517 0 74 13 0 13 13 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff8000216652c0,dead4110dead4110,0,80000110,fffffd806c48c880,fffffd807f7d7a28) at ktrops+0x4e doktrace(fffffd806c48c880,4,110,0,ffff8000216652c0) at doktrace+0x524 sys_ktrace(ffff8000216652c0,ffff8000216f2ba0,ffff8000216f2bf0) at sys_ktrace+0xd6 syscall(ffff8000216f2c70) at syscall+0x4a8 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6fdbc2b7f9b0, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff8000216652c0,dead4110dead4110,0,80000110,fffffd806c48c880,fffffd807f7d7a28) at ktrops+0x4e doktrace(fffffd806c48c880,4,110,0,ffff8000216652c0) at doktrace+0x524 sys_ktrace(ffff8000216652c0,ffff8000216f2ba0,ffff8000216f2bf0) at sys_ktrace+0xd6 syscall(ffff8000216f2c70) at syscall+0x4a8 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6fdbc2b7f9b0, count: -5