kernel: protection fault trap, code=0 Stopped at ktrops+0x4f: movq 0x8(%r14),%r14 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace ktrops(ffff80002a69fc48,deaf4152deaf4152,0,a0c7df9b,fffffd8067e8e968,fffffd807f7d7138) at ktrops+0x4f ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a69fc48,deaf4152deaf4152,0,a0c7df9b,fffffd8067e8e968,fffffd807f7d7138) at ktrops+0x4f sys/kern/kern_ktrace.c:561 doktrace(fffffd8067e8e968,4,20c7df9b,0,ffff80002a69fc48) at doktrace+0x514 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8067e8e968,4,20c7df9b,0,ffff80002a69fc48) at doktrace+0x514 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a69fc48,ffff800037685710,ffff800037685660) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff800037685710) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x77ea8b0e950, count: -5 ddb> show registers rdi 0xffff800031164000 rsi 0xc54 rbp 0xffff800037685430 rbx 0xfffffd807f7d7138 rdx 0xffff800031164000 rcx 0xc53 rax 0xffffffff82592d23 ktrops+0x43 r8 0xfffffd8067e8e968 r9 0xfffffd807f7d7138 r10 0xf630eef038416b4 r11 0xe8f1c7e3114604ba r12 0xffff80002a69fc48 r13 0xdeaf4152deaf4152 r14 0xdeaf4152deaf4152 r15 0xa0c7df9b rip 0xffffffff82592d2f ktrops+0x4f cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000376853b0 ss 0 ktrops+0x4f: movq 0x8(%r14),%r14 ddb> show proc PROC (syz-executor.7) tid=192681 pid=35141 tcnt=2 stat=onproc flags process=8000000 proc=4000000 runpri=17, usrpri=84, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a69f9b8,0xffff80002f563c80 process=0xffff8000329bb688 user=0xffff800037680000, vmspace=0xfffffd80074a6560 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 35141 50301 95385 0 2 0x8000000 syz-executor.7 *35141 192681 95385 0 7 0xc000000 syz-executor.7 85712 210602 41880 0 2 0x8000000 syz-executor.4 85712 259742 41880 0 2 0xc000000 syz-executor.4 85712 95793 41880 0 2 0xc000000 syz-executor.4 85712 324242 41880 0 2 0xc000000 syz-executor.4 32800 185391 55180 0 2 0x8000000 syz-executor.5 32800 19690 55180 0 3 0xc000080 fsleep syz-executor.5 76891 59640 41870 0 2 0x8000000 syz-executor.3 76891 186416 41870 0 3 0xc000080 fsleep syz-executor.3 50799 504937 98992 0 3 0x8000080 nanoslp syz-executor.2 50799 256387 98992 0 3 0xc000080 fsleep syz-executor.2 10157 520733 26331 0 2 0x8000000 syz-executor.1 10157 442705 26331 0 3 0xc000080 sbwait syz-executor.1 10157 12659 26331 0 3 0xc000000 inode syz-executor.1 10157 70999 26331 0 3 0xc000080 fsleep syz-executor.1 10157 252582 26331 0 2 0xc000000 syz-executor.1 26331 36064 16114 0 3 0x8000082 nanoslp syz-executor.1 19328 431717 16114 0 2 0x8000002 syz-executor.6 55180 511132 16114 0 3 0x8000082 nanoslp syz-executor.5 90555 340534 16114 0 3 0x8000082 nanoslp syz-executor.0 98992 157084 16114 0 3 0x8000082 nanoslp syz-executor.2 95385 119441 16114 0 3 0x8000082 nanoslp syz-executor.7 41880 91731 16114 0 3 0x8000082 nanoslp syz-executor.4 41870 264517 16114 0 3 0x8000082 nanoslp syz-executor.3 2776 161039 0 0 3 0x14280 nfsidl nfsio 58624 201315 0 0 3 0x14280 nfsidl nfsio 99160 267471 0 0 3 0x14280 nfsidl nfsio 73065 450845 0 0 3 0x14280 nfsidl nfsio 26708 236132 0 0 3 0x14280 nfsidl nfsio 46959 187485 0 0 3 0x14280 nfsidl nfsio 69590 258536 0 0 3 0x14280 nfsidl nfsio 41085 442429 0 0 3 0x14280 nfsidl nfsio 49578 220624 0 0 3 0x14280 nfsidl nfsio 35745 293723 0 0 3 0x14280 nfsidl nfsio 74376 206839 0 0 3 0x14280 nfsidl nfsio 29629 265624 0 0 3 0x14280 nfsidl nfsio 56871 244476 0 0 3 0x14280 nfsidl nfsio 54316 23538 0 0 3 0x14280 nfsidl nfsio 96019 438495 0 0 3 0x14280 nfsidl nfsio 84318 188060 0 0 3 0x14280 nfsidl nfsio 7364 35223 0 0 3 0x14280 nfsidl nfsio 85114 275313 0 0 3 0x14280 nfsidl nfsio 19574 88768 0 0 3 0x14280 nfsidl nfsio 73636 63637 0 0 3 0x14280 nfsidl nfsio 5401 405965 1 0 3 0x18100083 ttyin getty 51147 152357 0 0 3 0x14200 bored sosplice 16114 272193 25955 0 3 0x1a000082 wait syz-fuzzer 16114 70651 25955 0 3 0x1e000082 nanoslp syz-fuzzer 16114 169586 25955 0 3 0x1e000082 thrsleep syz-fuzzer 16114 410555 25955 0 3 0x1e000082 wait syz-fuzzer 16114 107732 25955 0 3 0x1e000082 thrsleep syz-fuzzer 16114 28454 25955 0 3 0x1e000082 thrsleep syz-fuzzer 16114 337128 25955 0 3 0x1e000082 kqread syz-fuzzer 16114 61031 25955 0 3 0x1e000082 wait syz-fuzzer 16114 317992 25955 0 3 0x1e000082 thrsleep syz-fuzzer 16114 440065 25955 0 3 0x1e000082 wait syz-fuzzer 16114 228566 25955 0 3 0x1e000082 thrsleep syz-fuzzer 16114 470092 25955 0 3 0x1e000082 wait syz-fuzzer 16114 196078 25955 0 3 0x1e000082 wait syz-fuzzer 16114 374675 25955 0 3 0x1e000082 wait syz-fuzzer 16114 317215 25955 0 3 0x1e000082 wait syz-fuzzer 25955 161326 62940 0 3 0x810008a sigsusp ksh 62940 86513 41715 0 3 0x1800009a kqread sshd 41715 514035 1 0 3 0x18000088 kqread sshd 52686 77708 94499 73 3 0x19100090 kqread syslogd 94499 413214 1 0 3 0x18100082 sbwait syslogd 81444 466215 1 0 3 0x18100080 kqread resolvd 36277 464781 77307 77 3 0x18100092 kqread dhcpleased 75548 146667 77307 77 3 0x18100092 kqread dhcpleased 77307 147459 1 0 3 0x18000080 kqread dhcpleased 1016 288053 0 0 3 0x14200 bored smr 29251 76975 0 0 2 0x14200 zerothread 34754 266463 0 0 3 0x14200 aiodoned aiodoned 58046 377903 0 0 3 0x14200 syncer update 862 523493 0 0 3 0x14200 cleaner cleaner 39617 338962 0 0 3 0x14200 reaper reaper 80830 88258 0 0 3 0x14200 pgdaemon pagedaemon 59118 31185 0 0 3 0x14200 bored viomb 12358 114047 0 0 3 0x40014200 acpi0 acpi0 1785 517824 0 0 3 0x14200 bored softnet3 70178 417453 0 0 3 0x14200 bored softnet2 65279 20940 0 0 3 0x14200 bored softnet1 66066 210084 0 0 3 0x14200 bored softnet0 80236 133060 0 0 3 0x14200 bored systqmp 86232 333569 0 0 3 0x14200 bored systq 28517 477765 0 0 3 0x40014200 tmoslp softclock 79707 59160 0 0 3 0x40014200 idle0 1 430567 0 0 3 0x8080082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10180 6431K 7004K 166960K 12563 0 pcb 15 10K 10K 166960K 378 0 rtable 200 8K 10K 166960K 2557 0 pf 32 9K 10K 166960K 297 0 ifaddr 39 12K 14K 166960K 375 0 ifgroup 55 2K 2K 166960K 504 0 sysctl 4 1K 1K 166960K 10 0 counters 31 17K 18K 166960K 157 0 ioctlops 0 0K 2K 166960K 255 0 iov 0 0K 20K 166960K 292 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1383 87K 87K 166960K 3249 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 3 5K 9K 166960K 98 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 239 0 dirhash 12 2K 3K 166960K 99 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 16 57K 73K 166960K 4355 0 sigio 0 0K 0K 166960K 66 0 proc 60 59K 100K 166960K 2500 0 subproc 104 6K 7K 166960K 932 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 451 0 in_multi 86 6K 7K 166960K 888 0 ether_multi 1 0K 0K 166960K 32 0 mrt 1 0K 0K 166960K 14 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 97 440K 440K 166960K 97 0 exec 0 0K 1K 166960K 1601 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 363 269K 273K 166960K 29789 0 UVM aobj 108 5K 7K 166960K 116 0 pinsyscall 36 72K 100K 166960K 7134 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 241 0 NDP 13 0K 2K 166960K 279 0 temp 77 6804K 7028K 166960K 82904 0 kqueue 12 18K 26K 166960K 455 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 406 0 403 1 0 1 1 0 8 0 rtentry 112 889 0 801 4 0 4 4 0 8 0 unpcb 144 2721 0 2704 6 0 6 6 0 8 5 syncache 336 87 0 87 1 0 1 1 0 8 1 sackhl 24 1 4 1 1 0 1 1 0 8 1 tcpqe 32 331 0 331 1 0 1 1 0 8 1 tcpcb 808 1528 0 1517 8 0 8 8 0 8 5 arp 88 166 0 154 1 0 1 1 0 8 0 ipq 40 17 0 16 1 0 1 1 0 8 0 ipqe 40 495 0 494 1 0 1 1 0 8 0 inpcb 360 4112 0 4097 11 0 11 11 0 8 8 ip6q 72 1 0 1 1 0 1 1 0 8 1 nd6 104 225 0 204 1 0 1 1 0 8 0 pkpcb 40 57 0 57 1 0 1 1 0 8 1 kcovpl 48 71 0 63 1 0 1 1 0 8 0 ppxss 1072 35 0 35 1 0 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 3374 0 2972 47 18 29 29 0 8 3 art_table 32 3375 0 2972 4 0 4 4 0 8 0 art_node 16 874 0 795 1 0 1 1 0 8 0 sysvmsgpl 40 31 0 21 1 0 1 1 0 8 0 semupl 112 1 0 1 1 0 1 1 0 8 1 semapl 112 236 0 226 1 0 1 1 0 8 0 shmpl 112 113 0 8 3 0 3 3 0 8 0 dirhash 1024 75 0 58 3 0 3 3 0 8 0 dino2pl 256 7306 0 5776 96 0 96 96 0 8 0 ffsino 240 7306 0 5776 91 0 91 91 0 8 0 nchpl 144 12896 0 11156 66 0 66 66 0 8 0 uvmvnodes 80 7562 0 0 155 0 155 155 0 8 0 vnodes 216 7562 0 0 421 0 421 421 0 8 0 namei 1024 46326 0 46325 3 0 3 3 0 8 2 vcpupl 2048 23 0 0 3 0 3 3 0 8 0 vmpool 664 38 0 15 2 0 2 2 0 8 0 kstatmem 264 276 0 252 3 0 3 3 0 8 0 scsiplug 72 7 0 7 1 0 1 1 0 8 1 scxspl 216 67277 0 67277 8 0 8 8 1 8 8 plimitpl 152 487 0 472 1 0 1 1 0 8 0 sigapl 424 4630 0 4565 8 0 8 8 0 8 0 futexpl 64 59064 0 59060 1 0 1 1 0 8 0 knotepl 120 35198 0 35116 11 0 11 11 0 8 7 kqueuepl 184 870 0 862 1 0 1 1 0 8 0 pipepl 288 707 0 679 3 0 3 3 0 8 0 fdescpl 432 4484 0 4457 4 0 4 4 0 8 0 filepl 120 24995 0 24743 14 0 14 14 0 8 4 lockfpl 104 1153 0 1150 1 0 1 1 0 8 0 lockfspl 48 449 0 446 1 0 1 1 0 8 0 sessionpl 144 89 0 73 1 0 1 1 0 8 0 pgrppl 48 127 0 111 1 0 1 1 0 8 0 ucredpl 104 3866 0 3854 1 0 1 1 0 8 0 zombiepl 144 4566 0 4565 1 0 1 1 0 8 0 processpl 1072 4630 0 4565 5 0 5 5 0 8 0 procpl 656 8794 0 8704 9 0 9 9 0 8 1 sosppl 168 94 0 93 1 0 1 1 0 8 0 sockpl 472 7334 0 7299 37 14 23 23 0 8 17 mcl64k 65536 136 0 136 1 0 1 1 0 8 1 mcl16k 16384 68 0 68 1 0 1 1 0 8 1 mcl12k 12288 147 0 147 1 0 1 1 0 8 1 mcl9k 9216 34 0 34 1 0 1 1 0 8 1 mcl8k 8192 255 0 255 1 0 1 1 0 8 1 mcl4k 4096 602 0 602 1 0 1 1 0 8 1 mcl2k2 2112 53 0 53 1 0 1 1 0 8 1 mcl2k 2048 46363 0 46307 37 23 14 32 0 8 4 mtagpl 96 38 0 38 1 0 1 1 0 8 1 mbufpl 256 132115 0 131939 142 118 24 63 0 8 5 bufpl 280 14894 0 7210 549 0 549 549 0 8 0 anonpl 24 609768 0 603747 112 0 112 112 0 188 55 amapchunkpl 152 90120 0 89557 37 0 37 37 0 158 7 amappl16 200 14979 0 14868 75 59 16 44 0 8 8 amappl15 192 8 0 8 1 0 1 1 0 8 1 amappl14 184 349 0 337 2 0 2 2 0 8 1 amappl13 176 19 0 19 1 0 1 1 0 8 1 amappl12 168 6075 0 6044 2 0 2 2 0 8 0 amappl11 160 49 0 38 1 0 1 1 0 8 0 amappl10 152 142 0 132 1 0 1 1 0 8 0 amappl9 144 195 0 193 1 0 1 1 0 8 0 amappl8 136 524 0 419 4 0 4 4 0 8 0 amappl7 128 138 0 123 1 0 1 1 0 8 0 amappl6 120 1241 0 1221 2 0 2 2 0 8 1 amappl5 112 466 0 454 1 0 1 1 0 8 0 amappl4 104 1060 0 1025 2 0 2 2 0 8 1 amappl3 96 15792 0 15732 3 0 3 3 0 8 1 amappl2 88 5259 0 5182 4 0 4 4 0 8 2 amappl1 80 98590 0 97925 22 3 19 22 0 8 4 amappl 88 28498 0 28304 6 0 6 6 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 115 0 8 2 0 2 2 0 8 0 uaddrrnd 24 4522 0 4472 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4522 0 4472 1 0 1 1 0 8 0 vmmpekpl 168 33917 0 33858 4 0 4 4 0 8 0 vmmpepl 168 361649 0 359588 123 0 123 123 0 357 19 vmsppl 344 4521 0 4472 5 0 5 5 0 8 0 rwobjpl 24 125589 0 116652 55 0 55 55 0 8 0 pdppl 4096 9050 0 8967 366 277 89 89 0 8 6 pvpl 32 1671906 0 1659786 361 11 350 361 0 265 217 pmappl 216 4521 0 4472 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 808 0 436 12 0 12 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a69fc48,deaf4152deaf4152,0,a0c7df9b,fffffd8067e8e968,fffffd807f7d7138) at ktrops+0x4f ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a69fc48,deaf4152deaf4152,0,a0c7df9b,fffffd8067e8e968,fffffd807f7d7138) at ktrops+0x4f sys/kern/kern_ktrace.c:561 doktrace(fffffd8067e8e968,4,20c7df9b,0,ffff80002a69fc48) at doktrace+0x514 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8067e8e968,4,20c7df9b,0,ffff80002a69fc48) at doktrace+0x514 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a69fc48,ffff800037685710,ffff800037685660) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff800037685710) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x77ea8b0e950, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a69fc48,deaf4152deaf4152,0,a0c7df9b,fffffd8067e8e968,fffffd807f7d7138) at ktrops+0x4f ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a69fc48,deaf4152deaf4152,0,a0c7df9b,fffffd8067e8e968,fffffd807f7d7138) at ktrops+0x4f sys/kern/kern_ktrace.c:561 doktrace(fffffd8067e8e968,4,20c7df9b,0,ffff80002a69fc48) at doktrace+0x514 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8067e8e968,4,20c7df9b,0,ffff80002a69fc48) at doktrace+0x514 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a69fc48,ffff800037685710,ffff800037685660) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff800037685710) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x77ea8b0e950, count: -5