kernel: protection fault trap, code=0 Stopped at lf_advlock+0x2f1: incl 0x28(%r12) ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace lf_advlock(ffff80000142e8e0,0,fffffd80761398d8,2,ffff80003c98b130,40) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff80000142e8e0,0,fffffd80761398d8,2,ffff80003c98b130,40) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd806eae88d0,fffffd80761398d8,2,ffff80003c98b130,40) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 closef(fffffd8072209178,ffff80003c984a88) at closef+0x13f sys/kern/kern_descrip.c:-1 fdfree(ffff80003c984a88) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80003c984a88,b,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80003c984a88,ffff80003c98b360,ffff80003c98b2b0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003c98b360) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c98b360) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x760739d0cf50, count: -8 ddb> show registers rdi 0xffff80003c984a8c rsi 0xffff80003c984a8c rbp 0xffff80003c98b080 rbx 0 rdx 0 rcx 0xffffffff837edff0 cpu_info_full_primary+0x1ff0 rax 0xffff80003c984a88 r8 0xa0 r9 0 r10 0xc461dddbc84e62d4 r11 0xa9e76253b75b2644 r12 0xdead4110dead4110 r13 0x2 r14 0xffff80003c98b130 r15 0x1 rip 0xffffffff81222701 lf_advlock+0x2f1 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c98aff0 ss 0x10 lf_advlock+0x2f1: incl 0x28(%r12) ddb> show proc PROC (syz-executor) tid=155039 pid=87372 tcnt=0 stat=onproc flags process=1008 proc=2000 runpri=32, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff80003c984a88 scnt=-1 ecnt=1 forw=0xffffffffffffffff, list=0xffff80003c985780,0xffff80002a786548 process=0xffff80003c9ca420 user=0xffff80003c986000, vmspace=0xfffffd80673f82f8 estcpu=36, cpticks=4, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 5874 324587 44367 0 2 0 syz-executor 5874 442744 44367 0 2 0x4000000 syz-executor 5874 85974 44367 0 3 0x4000080 fsleep syz-executor 1182 36040 75733 0 2 0 syz-executor 1182 470392 75733 0 3 0x4000080 fsleep syz-executor 1182 49824 75733 0 3 0x4000080 fsleep syz-executor 1182 470586 75733 0 3 0x4000080 fsleep syz-executor 20031 32120 64262 0 2 0xc82 syz-executor 44367 135084 64262 0 2 0xc82 syz-executor 58258 422421 64262 0 2 0xc82 syz-executor 71582 366479 64262 0 2 0x2 syz-executor 1609 457290 64262 0 2 0x2 syz-executor 99915 299531 64262 0 2 0xc82 syz-executor 95667 408403 64262 0 2 0xc82 syz-executor 75733 224207 64262 0 2 0xc82 syz-executor 64262 101280 42730 0 3 0x82 kqread syz-executor 42730 313237 69005 0 3 0x10008a sigsusp ksh 69005 465605 42693 0 3 0x98 kqread sshd-session 42693 70993 86793 0 3 0x92 kqread sshd-session 2069 76844 1 0 3 0x100083 ttyopn getty 86793 56667 1 0 3 0x88 kqread sshd 98276 57418 65653 73 3 0x1100090 kqread syslogd 65653 246513 1 0 3 0x100082 sbwait syslogd 91615 167160 1 0 3 0x100080 kqread resolvd 82356 420997 79315 77 3 0x100092 kqread dhcpleased 38289 315128 79315 77 3 0x100092 kqread dhcpleased 79315 49513 1 0 3 0x80 kqread dhcpleased 84908 76688 0 0 3 0x14200 bored smr 7787 15556 0 0 2 0x14200 zerothread 75858 335962 0 0 3 0x14200 aiodoned aiodoned 57057 355710 0 0 3 0x14200 syncer update 21074 519704 0 0 3 0x14200 cleaner cleaner 53839 104317 0 0 3 0x14200 reaper reaper 34472 363320 0 0 3 0x14200 pgdaemon pagedaemon 9919 276123 0 0 3 0x14200 bored viomb 36134 33519 0 0 3 0x40014200 acpi0 acpi0 55663 436078 0 0 3 0x14200 bored softnet0 39600 358275 0 0 3 0x14200 bored systqmp 75568 517119 0 0 3 0x14200 bored systq 22633 14740 0 0 3 0x40014200 tmoslp softclock 44838 493464 0 0 3 0x40014200 idle0 1 374788 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10203 11042K 12225K 166960K 13307 0 pcb 17 15K 17K 166960K 492 0 rtable 206 11K 11K 166960K 524 0 pf 30 12K 16K 166960K 138 0 ifaddr 38 6K 7K 166960K 94 0 ifgroup 50 2K 2K 166960K 162 0 sysctl 4 1K 9K 166960K 11 0 counters 32 17K 18K 166960K 91 0 ioctlops 0 0K 6K 166960K 225 0 iov 0 0K 20K 166960K 62 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1455 91K 92K 166960K 2354 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 17 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 108 0 dirhash 15 2K 2K 166960K 33 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 15 53K 236K 166960K 1250 0 sigio 0 0K 0K 166960K 19 0 proc 60 59K 75K 166960K 588 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 130 0 in_multi 74 5K 7K 166960K 131 0 ether_multi 1 0K 0K 166960K 13 0 mrt 2 0K 0K 166960K 13 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 241 1076K 1076K 166960K 241 0 exec 0 0K 1K 166960K 604 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 4 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 235 151K 180K 166960K 13273 0 UVM aobj 27 6K 6K 166960K 33 0 pinsyscall 37 74K 89K 166960K 2320 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 72 0 NDP 11 0K 2K 166960K 66 0 temp 73 8655K 8759K 166960K 44062 0 kqueue 13 20K 30K 166960K 241 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 126 0 122 1 0 1 1 0 8 0 rtentry 136 130 0 49 4 0 4 4 0 8 0 unpcb 144 904 0 889 2 0 2 2 0 8 1 syncache 336 6 0 6 1 1 0 1 0 8 0 tcpqe 32 3 0 3 1 1 0 1 0 8 0 tcpcb 736 540 0 533 10 6 4 7 0 8 3 arp 96 21 0 6 1 0 1 1 0 8 0 ipq 40 4 0 3 1 0 1 1 0 8 0 ipqe 40 5 0 4 1 0 1 1 0 8 0 inpcb 328 1634 0 1621 20 13 7 12 0 8 5 ip6q 72 36 0 34 1 0 1 1 0 8 0 ip6af 40 70 0 68 1 0 1 1 0 8 0 nd6 112 26 0 7 1 0 1 1 0 8 0 pkpcb 40 15 0 15 2 1 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 47 0 47 2 1 1 1 0 8 1 pppxif 1384 1 0 1 1 0 1 1 0 8 1 pfosfp 40 1 0 0 1 0 1 1 0 8 0 pfosfpen 112 1 0 0 1 0 1 1 0 8 0 pfrktable 1344 1 0 1 1 0 1 1 0 8 1 pfrule 1344 7 0 6 2 1 1 1 0 8 0 rttmr 136 2 0 2 2 1 1 1 0 8 1 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 607 0 270 31 5 26 31 0 8 2 art_table 40 609 0 270 5 0 5 5 0 8 0 art_node 32 130 0 60 1 0 1 1 0 8 0 sysvmsgpl 40 83 0 78 1 0 1 1 0 8 0 semapl 112 103 0 93 1 0 1 1 0 8 0 shmpl 112 30 0 6 1 0 1 1 0 8 0 dirhash 1024 31 0 12 3 0 3 3 0 8 0 dino2pl 256 3748 0 2247 95 0 95 95 0 8 0 ffsino 256 3748 0 2247 95 0 95 95 0 8 0 nchpl 144 5529 0 3843 64 0 64 64 0 8 0 rtmask 32 12 0 12 2 1 1 1 0 8 1 vnodes 216 4374 0 0 243 0 243 243 0 8 0 namei 1024 19365 0 19362 5 2 3 3 0 8 2 kstatmem 264 100 0 78 2 0 2 2 0 8 0 scsiplug 72 6 0 6 2 1 1 1 0 8 1 scxspl 216 19452 0 19452 15 7 8 8 1 8 8 plimitpl 152 392 0 375 1 0 1 1 0 8 0 sigapl 424 1548 0 1507 8 0 8 8 0 8 3 knotepl 120 65873 0 65826 31 21 10 25 0 8 6 kqueuepl 184 534 0 525 7 3 4 4 0 8 3 pipepl 304 302 0 275 8 0 8 8 0 8 5 fdescpl 448 1514 0 1486 4 0 4 4 0 8 0 filepl 120 10223 0 9995 16 4 12 13 0 8 4 lockfpl 104 526 0 523 1 0 1 1 0 8 0 lockfspl 48 193 0 190 1 0 1 1 0 8 0 sessionpl 144 22 0 14 1 0 1 1 0 8 0 pgrppl 48 173 0 156 1 0 1 1 0 8 0 ucredpl 104 1538 0 1526 1 0 1 1 0 8 0 zombiepl 144 1918 0 1914 1 0 1 1 0 8 0 processpl 1152 1548 0 1507 5 0 5 5 0 8 1 procpl 664 3462 0 3416 8 0 8 8 0 8 3 sosppl 176 11 0 11 2 1 1 1 0 8 1 sockpl 552 2722 0 2690 18 10 8 12 0 8 5 mcl64k 65536 208 0 208 1 0 1 1 0 8 1 mcl16k 16384 5 0 5 2 1 1 1 0 8 1 mcl12k 12288 3 0 3 1 1 0 1 0 8 0 mcl9k 9216 2 0 2 1 1 0 1 0 8 0 mcl8k 8192 16 0 16 2 1 1 1 0 8 1 mcl4k 4096 4017 0 3965 14 6 8 14 0 8 1 mcl2k2 2112 2 0 2 2 1 1 1 0 8 1 mcl2k 2048 1987 0 1978 3 0 3 3 0 8 1 mtagpl 96 8 0 6 1 0 1 1 0 8 0 mbufpl 256 18134 0 17954 16 0 16 16 0 8 2 bufpl 280 8612 0 2390 445 0 445 445 0 8 0 anonpl 24 238571 0 234942 67 18 49 49 0 187 10 amapchunkpl 152 46452 0 45950 54 18 36 38 0 158 13 amappl16 200 4505 0 4472 37 25 12 15 0 8 8 amappl15 192 19 0 19 1 1 0 1 0 8 0 amappl14 184 5 0 5 1 1 0 1 0 8 0 amappl13 176 423 0 422 1 0 1 1 0 8 0 amappl12 168 1858 0 1821 2 0 2 2 0 8 0 amappl11 160 3 0 3 1 1 0 1 0 8 0 amappl10 152 50 0 40 1 0 1 1 0 8 0 amappl9 144 243 0 242 1 0 1 1 0 8 0 amappl8 136 24 0 22 1 0 1 1 0 8 0 amappl7 128 98 0 96 1 0 1 1 0 8 0 amappl6 120 265 0 253 1 0 1 1 0 8 0 amappl5 112 76 0 67 1 0 1 1 0 8 0 amappl4 104 388 0 364 1 0 1 1 0 8 0 amappl3 96 7844 0 7755 3 0 3 3 0 8 0 amappl2 88 1722 0 1652 2 0 2 2 0 8 0 amappl1 80 13622 0 13077 13 0 13 13 0 8 0 amappl 88 12367 0 12201 5 0 5 5 0 92 0 uvmvnodes 80 4374 0 0 90 0 90 90 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma512 512 2 0 2 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 255 0 255 1 1 0 1 0 8 0 dma64 64 9 0 9 2 1 1 1 0 8 1 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 32 0 6 1 0 1 1 0 8 0 uaddrrnd 24 1514 0 1486 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1514 0 1486 1 0 1 1 0 8 0 vmmpekpl 168 13629 0 13596 2 0 2 2 0 8 0 vmmpepl 168 100282 0 98517 110 17 93 98 0 357 9 vmsppl 368 1513 0 1486 4 1 3 4 0 8 0 rwobjpl 40 32058 0 26798 55 0 55 55 0 8 0 pdppl 4096 3035 0 2972 95 28 67 77 0 8 4 pvpl 32 689874 0 680676 149 26 123 123 0 265 18 pmappl 216 1513 0 1486 2 0 2 2 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 387 0 54 10 0 10 10 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace lf_advlock(ffff80000142e8e0,0,fffffd80761398d8,2,ffff80003c98b130,40) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff80000142e8e0,0,fffffd80761398d8,2,ffff80003c98b130,40) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd806eae88d0,fffffd80761398d8,2,ffff80003c98b130,40) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 closef(fffffd8072209178,ffff80003c984a88) at closef+0x13f sys/kern/kern_descrip.c:-1 fdfree(ffff80003c984a88) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80003c984a88,b,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80003c984a88,ffff80003c98b360,ffff80003c98b2b0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003c98b360) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c98b360) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x760739d0cf50, count: -8 ddb> machine ddbcpu 1 No such command ddb> trace lf_advlock(ffff80000142e8e0,0,fffffd80761398d8,2,ffff80003c98b130,40) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff80000142e8e0,0,fffffd80761398d8,2,ffff80003c98b130,40) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd806eae88d0,fffffd80761398d8,2,ffff80003c98b130,40) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 closef(fffffd8072209178,ffff80003c984a88) at closef+0x13f sys/kern/kern_descrip.c:-1 fdfree(ffff80003c984a88) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80003c984a88,b,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80003c984a88,ffff80003c98b360,ffff80003c98b2b0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003c98b360) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c98b360) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x760739d0cf50, count: -8