kernel: protection fault trap, code=0 Stopped at done_flush+0x38: movl %eax,%dr6 ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic the kernel did not panic ddb{1}> trace end trace frame: 0x0, count: -1 ddb{1}> show registers rdi 0x6c14 __ALIGN_SIZE+0x5c14 rsi 0xffff80003c403c18 rbp 0 rbx 0x756e6547 rdx 0x49656e69 rcx 0x6c65746e rax 0x100000001 r8 0 r9 0x10000 __ALIGN_SIZE+0xf000 r10 0 r11 0 r12 0 r13 0 r14 0 r15 0 rip 0xffffffff8142f92b done_flush+0x38 cs 0x8 rflags 0x10046 __ALIGN_SIZE+0xf046 rsp 0xffff80002a30bcb8 ss 0x10 done_flush+0x38: movl %eax,%dr6 ddb{1}> show proc PROC (syz-executor) tid=195291 pid=7270 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=84, usrpri=84, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80003afd9ca8,0xffff800031fa4570 process=0xffff80003c485838 user=0xffff80002a307000, vmspace=0xfffffd800b0631e8 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 44527 142063 19892 0 2 0 syz-executor 64857 260284 41727 0 2 0 syz-executor 64857 303658 41727 0 3 0x4000080 fsleep syz-executor 23979 456586 68844 60929 2 0x10 syz-executor 23979 31994 68844 60929 3 0x4000090 fsleep syz-executor 23979 439998 68844 60929 3 0x4000090 fsleep syz-executor 7270 283104 72097 0 2 0 syz-executor * 7270 195291 72097 0 7 0x4000000 syz-executor 7270 308462 72097 0 3 0x4000080 fsleep syz-executor 3835 34720 44929 0 2 0 syz-executor 3835 262954 44929 0 7 0x4000000 syz-executor 3835 265046 44929 0 3 0x4000080 fsleep syz-executor 3835 392702 44929 0 3 0x4000080 fsleep syz-executor 22904 397030 0 0 3 0x14200 acct acct 72097 15420 88684 0 2 0xc82 syz-executor 19892 188083 88684 0 3 0x82 nanoslp syz-executor 32351 16305 88684 0 2 0x2 syz-executor 57043 119392 1 0 3 0x100083 ttyopn getty 41727 326165 88684 0 2 0xc82 syz-executor 68844 418894 88684 0 3 0x82 nanoslp syz-executor 31884 96613 88684 0 2 0x2 syz-executor 90154 296498 88684 0 2 0x10000c82 syz-executor 76678 515272 29260 0 3 0x100082 sbwait ndp 29260 102178 1 0 3 0x10008a sigsusp sh 44929 48446 88684 0 3 0x82 nanoslp syz-executor 88684 69195 97011 0 2 0x82 syz-executor 97011 506995 52973 0 3 0x10008a sigsusp ksh 52973 426704 59284 0 3 0x98 kqread sshd-session 59284 506050 6465 0 3 0x92 kqread sshd-session 6465 278704 1 0 3 0x88 kqread sshd 40576 332949 20563 74 3 0x1100092 bpf pflogd 20563 7299 1 0 3 0x80 sbwait pflogd 48051 494816 45612 73 3 0x1100090 kqread syslogd 45612 477513 1 0 3 0x100082 sbwait syslogd 74308 375400 1 0 3 0x100080 kqread resolvd 10848 211530 51188 77 3 0x100092 kqread dhcpleased 1265 284945 51188 77 3 0x100092 kqread dhcpleased 51188 492591 1 0 3 0x80 kqread dhcpleased 82636 325333 0 0 3 0x14200 bored smr 91550 304949 0 0 2 0x14200 zerothread 43749 184052 0 0 3 0x14200 aiodoned aiodoned 29944 349017 0 0 3 0x14200 syncer update 13973 476024 0 0 3 0x14200 cleaner cleaner 53138 495936 0 0 3 0x14200 reaper reaper 18933 4001 0 0 3 0x14200 pgdaemon pagedaemon 39176 205427 0 0 3 0x14200 bored viomb 37654 463606 0 0 3 0x40014200 acpi0 acpi0 55958 347268 0 0 3 0x40014200 idle1 98362 448562 0 0 3 0x14200 bored softnet1 27003 273224 0 0 3 0x14200 bored softnet0 19457 162834 0 0 3 0x14200 bored systqmp 93281 301246 0 0 3 0x14200 bored systq 56141 304335 0 0 3 0x14200 tmoslp softclockmp 13444 10452 0 0 3 0x40014200 tmoslp softclock 99002 295801 0 0 3 0x40014200 idle0 1 126349 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb{1}> show all locks Process 7270 (syz-executor) thread 0xffff80003afd82b8 (195291) Process 32351 (syz-executor) thread 0xffff80003afd87e8 (16305) ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11098 12176K 12431K 166960K 15004 0 pcb 17 16K 32K 166960K 1061 0 rtable 195 12K 14K 166960K 1077 0 pf 32 17K 81K 166960K 348 0 ifaddr 33 7K 9K 166960K 248 0 ifgroup 48 2K 3K 166960K 434 0 sysctl 4 1K 9K 166960K 34 0 counters 68 36K 38K 166960K 576 0 ioctlops 0 0K 8K 166960K 2508 0 iov 0 0K 16K 166960K 227 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1399 88K 89K 166960K 4436 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 3 0 VM map 2 1K 1K 166960K 2 0 sem 16 16K 16K 166960K 174 0 dirhash 12 2K 2K 166960K 69 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 17 61K 248K 166960K 3480 0 sigio 0 0K 0K 166960K 121 0 proc 72 115K 180K 166960K 1251 0 subproc 81 5K 5K 166960K 189 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 703 0 in_multi 62 4K 7K 166960K 369 0 ether_multi 1 0K 0K 166960K 41 0 mrt 1 0K 0K 166960K 82 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 247 1102K 1102K 166960K 247 0 exec 0 0K 1K 166960K 1171 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 4 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 243 178K 213K 166960K 33665 0 UVM aobj 94 39K 39K 166960K 97 0 pinsyscall 43 86K 108K 166960K 5154 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 333 0 NDP 11 0K 2K 166960K 186 0 temp 76 9084K 9340K 166960K 190620 0 kqueue 14 22K 34K 166960K 672 0 SYN cache 2 16K 16K 166960K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 26 0 0 1 0 1 1 0 8 0 rtpcb 120 363 0 359 3 2 1 2 0 8 0 rtentry 176 339 0 269 7 2 5 6 0 8 0 unpcb 144 2599 0 2582 19 17 2 6 0 8 1 syncache 336 24 0 24 9 8 1 1 0 8 1 tcpqe 32 5 0 5 3 2 1 1 0 8 1 tcpcb 736 1087 0 1082 20 16 4 7 0 8 3 arp 136 54 0 40 1 0 1 1 0 8 0 inpcb 328 4188 0 4180 33 29 4 10 0 8 2 nd6 152 73 0 55 1 0 1 1 0 8 0 pkpcb 40 14 0 14 8 8 0 1 0 8 0 kcovpl 48 21 0 12 1 0 1 1 0 8 0 mppekey 1024 2 0 2 2 2 0 1 0 8 0 ppxss 1192 203 0 203 4 3 1 1 0 8 1 pppxif 1576 17 0 17 7 6 1 1 0 8 1 pffrag 232 60 0 54 1 0 1 1 0 482 0 pffrnode 88 57 0 51 1 0 1 1 0 8 0 pffrent 40 113 0 106 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfrktable 1344 4 0 4 3 3 0 1 0 8 0 pfanchor 1288 1 0 0 1 0 1 1 0 8 0 pfstitem 24 208 0 158 1 0 1 1 0 8 0 pfstkey 128 208 0 158 3 0 3 3 0 8 0 pfstate 448 208 0 158 10 1 9 10 0 8 0 pfrule 1360 22 0 16 2 1 1 2 0 8 0 rttmr 136 5 0 5 4 4 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 1510 0 1208 36 10 26 29 0 8 2 art_table 40 1511 0 1208 5 0 5 5 0 8 0 art_node 32 337 0 279 1 0 1 1 0 8 0 sysvmsgpl 40 4 0 2 2 1 1 1 0 8 0 semupl 112 4 0 4 3 3 0 1 0 8 0 semapl 112 162 0 148 1 0 1 1 0 8 0 shmpl 112 77 0 3 3 0 3 3 0 8 0 dirhash 1024 55 0 38 3 0 3 3 0 8 0 dino2pl 256 8373 0 6884 94 0 94 94 0 8 0 ffsino 296 8373 0 6884 115 0 115 115 0 8 0 nchpl 144 13042 0 11299 65 0 65 65 0 8 0 rtmask 32 24 0 24 3 3 0 1 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 48802 0 48801 5 4 1 2 0 8 0 percpumem 16 303 0 254 1 0 1 1 0 8 0 vcpupl 3968 17 0 0 3 0 3 3 0 8 0 vmpool 848 17 0 0 2 0 2 2 0 8 0 kstatmem 264 280 0 254 6 3 3 3 0 8 0 acpiwqpl 32 1 0 1 1 0 1 1 1 8 1 scsiplug 72 17 0 17 8 8 0 1 0 8 0 scxspl 216 87976 0 87976 22 21 1 8 1 8 1 plimitpl 152 1060 0 1042 1 0 1 1 0 8 0 sigapl 424 3826 0 3777 10 2 8 9 0 8 0 knotepl 120 690 0 0 19 0 19 19 0 8 0 kqueuepl 224 1311 0 1300 18 17 1 5 0 8 0 pipepl 344 496 0 466 13 8 5 6 0 8 1 fdescpl 528 3780 0 3749 3 0 3 3 0 8 0 filepl 160 27541 0 27307 52 37 15 22 0 8 0 lockfpl 104 1402 0 1399 2 1 1 2 0 8 0 lockfspl 48 600 0 597 1 0 1 1 0 8 0 sessionpl 144 58 0 49 1 0 1 1 0 8 0 pgrppl 48 177 0 159 1 0 1 1 0 8 0 ucredpl 104 5140 0 5126 1 0 1 1 0 8 0 zombiepl 144 4609 0 4608 2 1 1 1 0 8 0 processpl 1232 3826 0 3777 6 0 6 6 0 8 0 procpl 664 9571 0 9514 8 1 7 8 0 8 0 sosppl 176 17 0 17 7 7 0 1 0 8 0 sockpl 752 7441 0 7412 66 58 8 20 0 8 4 mcl64k 65536 9 0 0 2 0 2 2 0 8 0 mcl16k 16384 4 0 0 1 0 1 1 0 8 0 mcl12k 12288 3 0 0 1 0 1 1 0 8 0 mcl9k 9216 1 0 0 1 0 1 1 0 8 0 mcl8k 8192 4 0 0 1 0 1 1 0 8 0 mcl4k 4096 123 0 0 15 0 15 15 0 8 0 mcl2k2 2112 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 61 0 0 6 0 6 6 0 8 0 mtagpl 96 9 0 0 1 0 1 1 0 8 0 mbufpl 256 4494 0 0 276 0 276 276 0 8 0 bufpl 280 35563 0 29433 440 1 439 439 0 8 0 anonpl 32 16490 0 0 133 0 133 133 0 246 0 amapchunkpl 152 114996 0 114417 79 38 41 41 0 158 9 amappl16 200 13228 0 13092 119 104 15 36 0 8 0 amappl15 192 7 0 6 1 0 1 1 0 8 0 amappl14 184 590 0 587 1 0 1 1 0 8 0 amappl13 176 205 0 192 1 0 1 1 0 8 0 amappl12 168 4100 0 4071 2 0 2 2 0 8 0 amappl11 160 80 0 79 2 1 1 1 0 8 0 amappl10 152 71 0 57 1 0 1 1 0 8 0 amappl9 144 265 0 265 1 1 0 1 0 8 0 amappl8 136 156 0 153 1 0 1 1 0 8 0 amappl7 128 216 0 201 1 0 1 1 0 8 0 amappl6 120 292 0 289 1 0 1 1 0 8 0 amappl5 112 183 0 171 1 0 1 1 0 8 0 amappl4 104 437 0 414 1 0 1 1 0 8 0 amappl3 96 24086 0 23981 4 0 4 4 0 8 0 amappl2 88 937 0 871 3 1 2 3 0 8 0 amappl1 80 33578 0 32950 27 10 17 21 0 8 0 amappl 88 31916 0 31753 5 0 5 5 0 92 0 uvmvnodes 80 216 0 0 5 0 5 5 0 8 0 dma4096 4096 3 0 3 2 2 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 9 0 9 3 3 0 1 0 8 0 dma128 128 260 0 260 5 5 0 1 0 8 0 dma64 64 9 0 9 4 4 0 1 0 8 0 dma32 32 8 0 8 2 2 0 1 0 8 0 dma16 16 22 0 21 1 0 1 1 0 8 0 aobjpl 72 96 0 3 2 0 2 2 0 8 0 uaddrrnd 24 3780 0 3749 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 3780 0 3749 1 0 1 1 0 8 0 vmmpekpl 168 31829 0 31755 5 1 4 4 0 8 0 vmmpepl 168 258879 0 256844 169 60 109 126 0 357 0 vmsppl 488 3779 0 3749 5 0 5 5 0 8 0 rwobjpl 80 71524 0 70115 49 11 38 40 0 8 0 pdppl 4096 7601 0 7515 183 90 93 93 0 8 7 pvpl 32 24242 0 0 195 0 195 195 0 265 0 pmappl 256 3796 0 3749 4 0 4 4 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 676 0 137 16 0 16 16 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff8391cff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 copyout() at copyout+0x5a syscall(ffff80003c4d1ee0) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80003c4d1ee0) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xcf62204eab0, count: -6 ddb{0}> machine ddbcpu 1 Stopped at done_flush+0x38: movl %eax,%dr6 ddb{1}> trace end trace frame: 0x0, count: -1