kernel: protection fault trap, code=0 Stopped at __x86_indirect_thunk_r11+0x14: ret ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic the kernel did not panic ddb{0}> trace __x86_indirect_thunk_r11() at __x86_indirect_thunk_r11+0x14 rt_clone(ffff80002a162708,ffff80002a162770,0) at rt_clone+0x98 sys/net/route.c:383 rtalloc(ffff80002a162770,1,0) at rtalloc+0xb6 rt_match sys/net/route.c:360 [inline] rtalloc(ffff80002a162770,1,0) at rtalloc+0xb6 sys/net/route.c:489 ip_multicast_if(ffff80002a162820,0,ffff80002a162808) at ip_multicast_if+0x14c sys/netinet/ip_output.c:1364 ip_setmoptions(c,fffffd806bc12120,fffffd8060345400,0) at ip_setmoptions+0x4a1 sys/netinet/ip_output.c:1533 sosetopt(ffff8000016e6000,0,c,fffffd8060345400) at sosetopt+0x117 sys_setsockopt(ffff8000ffff31d8,ffff80002a162a30,ffff80002a162980) at sys_setsockopt+0x2ba sys/kern/uipc_syscalls.c:1231 syscall(ffff80002a162a30) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a162a30) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x388a1cce270, count: -9 ddb{0}> show registers rdi 0xffff8000015b2800 rsi 0xb rbp 0xffff80002a1625e0 rbx 0xffff800000e44d90 rdx 0xfffffd806e6ece70 rcx 0xffff8000ffff31d8 rax 0xffffffff834d7ff0 cpu_info_full_primary+0x1ff0 r8 0x100 r9 0 r10 0x740f746e8f9a9f7c r11 0x4fc7900000000 r12 0xffff80002a162698 r13 0 r14 0xfffffd806e6ece70 r15 0xffff80002a1625f8 rip 0xffffffff82bb3304 __x86_indirect_thunk_r11+0x14 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002a1624e0 ss 0x10 __x86_indirect_thunk_r11+0x14: ret ddb{0}> show proc PROC (syz-executor) tid=9952 pid=74201 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=32, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000ffff3460,0xffffffff8361ba28 process=0xffff8000fffecdb8 user=0xffff80002a15d000, vmspace=0xfffffd807e877a50 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 10427 182495 45484 0 7 0 syz-executor 10427 13986 45484 0 2 0x4000000 syz-executor 35413 467585 99436 0 2 0x40 syz-executor 74201 227148 70134 0 2 0 syz-executor *74201 9952 70134 0 7 0x4000000 syz-executor 96133 219875 18523 0 3 0x3000 suspend syz-executor 96133 214496 18523 0 2 0x4081000 syz-executor 19352 437115 5958 0 2 0x480 syz-executor 19352 325273 5958 0 3 0x4000080 kqread syz-executor 19352 482949 5958 0 3 0x4000080 fsleep syz-executor 26888 30994 48807 0 2 0x480 syz-executor 26888 58062 48807 0 3 0x4000080 kqsel syz-executor 26888 198564 48807 0 3 0x4000080 fsleep syz-executor 24205 68589 40030 0 3 0x80 nanoslp syz-executor 24205 248903 40030 0 3 0x4000080 kqpoll syz-executor 24205 211875 40030 0 3 0x4000080 fsleep syz-executor 99436 266504 80290 0 3 0x82 ppwait syz-executor 81144 260814 80290 0 2 0x482 syz-executor 70134 197698 80290 0 2 0x2 syz-executor 18523 256936 80290 0 2 0x482 syz-executor 48807 121349 80290 0 3 0x82 nanoslp syz-executor 40030 169097 80290 0 2 0x482 syz-executor 5958 135583 80290 0 3 0x82 nanoslp syz-executor 45484 232969 80290 0 3 0x82 nanoslp syz-executor 65871 485513 0 0 3 0x14280 nfsidl nfsio 30266 368657 0 0 3 0x14280 nfsidl nfsio 95002 301272 0 0 3 0x14280 nfsidl nfsio 10409 296169 0 0 3 0x14280 nfsidl nfsio 93026 100816 0 0 3 0x14280 nfsidl nfsio 22228 367964 0 0 3 0x14280 nfsidl nfsio 30225 155362 0 0 3 0x14280 nfsidl nfsio 98944 401999 0 0 3 0x14280 nfsidl nfsio 91481 322090 0 0 3 0x14280 nfsidl nfsio 46450 82234 0 0 3 0x14280 nfsidl nfsio 59935 62881 0 0 3 0x14280 nfsidl nfsio 259 378063 0 0 3 0x14280 nfsidl nfsio 68863 507774 0 0 3 0x14280 nfsidl nfsio 93973 172537 0 0 3 0x14280 nfsidl nfsio 71254 460190 0 0 3 0x14280 nfsidl nfsio 3388 288364 0 0 3 0x14280 nfsidl nfsio 92315 376231 0 0 3 0x14280 nfsidl nfsio 17596 52074 0 0 3 0x14280 nfsidl nfsio 90191 35225 0 0 3 0x14280 nfsidl nfsio 91258 352330 0 0 3 0x14280 nfsidl nfsio 19787 283107 0 0 3 0x14200 acct acct 70083 407666 1 0 3 0x100083 ttyopn getty 94672 253879 0 0 3 0x14200 bored sosplice 80290 487312 76444 0 2 0x2 syz-executor 76444 154524 644 0 3 0x10008a sigsusp ksh 644 204110 67769 0 3 0x98 kqread sshd-session 67769 406791 18244 0 3 0x92 kqread sshd-session 18244 394961 1 0 3 0x88 kqread sshd 30686 389587 24477 74 3 0x1100092 bpf pflogd 24477 316847 1 0 3 0x80 sbwait pflogd 73983 369053 20514 73 2 0x1100010 syslogd 20514 433674 1 0 3 0x100082 sbwait syslogd 97505 254886 1 0 3 0x100080 kqread resolvd 16020 144620 56610 77 3 0x100092 kqread dhcpleased 82450 130350 56610 77 3 0x100092 kqread dhcpleased 56610 396506 1 0 3 0x80 kqread dhcpleased 6844 233931 0 0 3 0x14200 bored smr 60195 215949 0 0 2 0x14200 zerothread 2353 83394 0 0 3 0x14200 aiodoned aiodoned 51517 107388 0 0 3 0x14200 syncer update 48317 85674 0 0 3 0x14200 cleaner cleaner 63741 180661 0 0 3 0x14200 reaper reaper 66817 239128 0 0 3 0x14200 pgdaemon pagedaemon 65196 81910 0 0 3 0x14200 bored viomb 16968 476381 0 0 3 0x40014200 acpi0 acpi0 55252 347186 0 0 3 0x40014200 idle1 91317 490929 0 0 3 0x14200 bored softnet3 93346 474734 0 0 3 0x14200 bored softnet2 36179 116331 0 0 3 0x14200 bored softnet1 57267 295126 0 0 3 0x14200 bored softnet0 83412 256192 0 0 3 0x14200 bored systqmp 83805 421414 0 0 3 0x14200 bored systq 28508 160097 0 0 3 0x14200 tmoslp softclockmp 35974 523902 0 0 3 0x40014200 tmoslp softclock 59804 107739 0 0 3 0x40014200 idle0 1 523115 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 74201 (syz-executor) thread 0xffff8000ffff31d8 (9952) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff8357f2f0) #0 witness_lock+0x5bb stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5bb sys/kern/subr_witness.c:1155 #1 rt_clone+0x72 #2 rtalloc+0xb6 rt_match sys/net/route.c:360 [inline] #2 rtalloc+0xb6 sys/net/route.c:489 #3 ip_multicast_if+0x14c sys/netinet/ip_output.c:1364 #4 ip_setmoptions+0x4a1 sys/netinet/ip_output.c:1533 #5 sosetopt+0x117 #6 sys_setsockopt+0x2ba sys/kern/uipc_syscalls.c:1231 #7 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #7 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #8 Xsyscall+0x128 exclusive rwlock netlock r = 0 (0xffffffff8341daa0) #0 witness_lock+0x5bb stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5bb sys/kern/subr_witness.c:1155 #1 sosetopt+0xf2 sys/kern/uipc_socket.c:2027 #2 sys_setsockopt+0x2ba sys/kern/uipc_syscalls.c:1231 #3 syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] #3 syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 #4 Xsyscall+0x128 Process 73983 (syslogd) thread 0xffff8000ffffd6d8 (369053) exclusive rrwlock inode r = 0 (0xfffffd806e1561b0) #0 witness_lock+0x5bb stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5bb sys/kern/subr_witness.c:1155 #1 rw_enter+0x41b sys/kern/kern_rwlock.c:309 #2 rrw_enter+0xbe sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0xa6 sys/kern/vfs_vops.c:524 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:564 #5 sys_fsync+0x152 sys/kern/vfs_syscalls.c:2926 #6 syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline] #6 syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577 #7 Xsyscall+0x128 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10235 14220K 14715K 166960K 14506 0 pcb 17 17K 21K 166960K 489 0 rtable 236 9K 9K 166960K 2049 0 pf 38 18K 21K 166960K 243 0 ifaddr 45 8K 8K 166960K 292 0 ifgroup 59 2K 2K 166960K 371 0 sysctl 3 1K 1K 166960K 6 0 counters 66 36K 37K 166960K 230 0 ioctlops 0 0K 4K 166960K 1666 0 iov 0 0K 20K 166960K 275 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1520 95K 96K 166960K 3759 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 23 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 62 0 dirhash 12 2K 2K 166960K 24 0 ACPI 1690 195K 286K 166960K 12418 0 file desc 18 65K 93K 166960K 2540 0 sigio 0 0K 0K 166960K 97 0 proc 72 91K 140K 166960K 2122 0 subproc 104 6K 6K 166960K 780 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 2 0K 0K 166960K 299 0 in_multi 96 7K 7K 166960K 686 0 ether_multi 1 0K 0K 166960K 6 0 mrt 1 0K 0K 166960K 5 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 247 1102K 1102K 166960K 247 0 exec 0 0K 1K 166960K 1294 0 pfkey data 0 0K 0K 166960K 4 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 251 73K 92K 166960K 22079 0 UVM aobj 37 6K 6K 166960K 44 0 pinsyscall 43 86K 106K 166960K 5025 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 123 0 NDP 21 1K 1K 166960K 214 0 temp 77 6824K 7084K 166960K 86270 0 kqueue 13 20K 31K 166960K 316 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 331 0 327 3 2 1 3 0 8 0 rtentry 112 723 0 618 3 0 3 3 0 8 0 unpcb 144 1728 0 1708 14 13 1 4 0 8 0 syncache 336 18 0 18 4 4 0 1 0 8 0 tcpqe 32 5 0 5 3 3 0 1 0 8 0 tcpcb 808 885 0 877 31 30 1 14 0 8 0 arp 120 133 0 111 1 0 1 1 0 8 0 inpcb 336 2991 0 2976 39 37 2 18 0 8 0 nd6 136 183 0 160 1 0 1 1 0 8 0 pkpcb 40 14 0 14 6 6 0 1 0 8 0 kcovpl 48 60 0 52 1 0 1 1 0 8 0 ppxss 1168 16 0 16 3 3 0 1 0 8 0 pffrag 232 21 0 17 1 0 1 1 0 482 0 pffrnode 88 20 0 16 1 0 1 1 0 8 0 pffrent 40 170 0 165 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfrktable 1344 3 0 1 1 0 1 1 0 8 0 pfanchor 1288 2 0 0 1 0 1 1 0 8 0 pfstitem 24 207 0 154 1 0 1 1 0 8 0 pfstkey 128 207 0 154 3 0 3 3 0 8 0 pfstate 376 207 0 154 7 0 7 7 0 8 0 pfrule 1344 24 0 17 2 1 1 2 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 2838 0 2405 34 6 28 28 0 8 0 art_table 32 2840 0 2405 5 1 4 4 0 8 0 art_node 16 720 0 628 1 0 1 1 0 8 0 sysvmsgpl 40 10 0 6 1 0 1 1 0 8 0 semapl 112 59 0 49 1 0 1 1 0 8 0 shmpl 112 41 0 7 1 0 1 1 0 8 0 dirhash 1024 25 0 8 3 0 3 3 0 8 0 dino2pl 256 4671 0 3072 101 0 101 101 0 8 0 ffsino 272 4671 0 3072 107 0 107 107 0 8 0 nchpl 144 7371 0 6762 64 39 25 63 0 8 0 uvmvnodes 80 6131 0 0 126 0 126 126 0 8 0 vnodes 216 6131 0 0 341 0 341 341 0 8 0 namei 1024 31397 0 31397 3 2 1 2 0 8 1 percpumem 16 129 0 82 1 0 1 1 0 8 0 pfiaddrpl 120 1 0 0 1 0 1 1 0 8 0 kstatmem 264 190 0 164 4 2 2 3 0 8 0 scsiplug 72 6 0 6 4 4 0 1 0 8 0 scxspl 216 44854 0 44854 13 12 1 8 1 8 1 plimitpl 152 538 0 521 1 0 1 1 0 8 0 sigapl 424 2773 0 2701 9 0 9 9 0 8 0 futexpl 64 26344 0 26341 5 4 1 1 0 8 0 knotepl 120 453 0 0 11 0 11 11 0 8 0 kqueuepl 216 534 0 521 3 2 1 3 0 8 0 pipepl 320 684 0 657 8 5 3 8 0 8 0 fdescpl 496 2732 0 2700 5 0 5 5 0 8 0 filepl 152 18430 0 18172 38 27 11 21 0 8 0 lockfpl 104 753 0 750 2 1 1 2 0 8 0 lockfspl 48 325 0 322 1 0 1 1 0 8 0 sessionpl 144 90 0 81 1 0 1 1 0 8 0 pgrppl 48 212 0 195 1 0 1 1 0 8 0 ucredpl 104 2972 0 2958 1 0 1 1 0 8 0 zombiepl 144 2703 0 2701 2 1 1 1 0 8 0 processpl 1160 2773 0 2701 7 1 6 6 0 8 0 procpl 648 5529 0 5448 8 0 8 8 0 8 0 srpgc 96 12 0 12 4 4 0 1 0 8 0 sosppl 168 15 0 15 6 6 0 1 0 8 0 sockpl 664 5092 0 5055 46 42 4 20 0 8 0 mcl64k 65536 9 0 0 2 0 2 2 0 8 0 mcl16k 16384 2 0 0 1 0 1 1 0 8 0 mcl12k 12288 1 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 5 0 0 1 0 1 1 0 8 0 mcl4k 4096 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 305 0 0 32 0 32 32 0 8 0 mtagpl 96 86 0 0 3 0 3 3 0 8 0 mbufpl 256 1308 0 0 77 0 77 77 0 8 0 bufpl 280 9979 0 3812 442 0 442 442 0 8 0 anonpl 24 343783 0 339089 100 40 60 72 0 185 20 amapchunkpl 152 69906 0 69304 52 17 35 35 0 158 11 amappl16 200 5604 0 5589 77 69 8 27 0 8 4 amappl15 192 20 0 19 1 0 1 1 0 8 0 amappl14 184 244 0 232 1 0 1 1 0 8 0 amappl13 176 4 0 4 2 2 0 1 0 8 0 amappl12 168 4205 0 4174 3 1 2 2 0 8 0 amappl11 160 118 0 104 1 0 1 1 0 8 0 amappl10 152 68 0 67 1 0 1 1 0 8 0 amappl9 144 280 0 280 1 1 0 1 0 8 0 amappl8 136 20 0 17 1 0 1 1 0 8 0 amappl7 128 219 0 206 1 0 1 1 0 8 0 amappl6 120 679 0 676 1 0 1 1 0 8 0 amappl5 112 355 0 343 1 0 1 1 0 8 0 amappl4 104 517 0 496 1 0 1 1 0 8 0 amappl3 96 14082 0 13963 4 0 4 4 0 8 0 amappl2 88 1534 0 1465 2 0 2 2 0 8 0 amappl1 80 21337 0 20768 15 1 14 15 0 8 0 amappl 88 21054 0 20866 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 7 0 7 2 2 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 43 0 7 1 0 1 1 0 8 0 uaddrrnd 24 2732 0 2700 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2732 0 2700 1 0 1 1 0 8 0 vmmpekpl 168 24210 0 24154 5 1 4 4 0 8 0 vmmpepl 168 171444 0 169536 141 50 91 103 0 357 7 vmsppl 440 2731 0 2700 6 2 4 5 0 8 0 rwobjpl 56 52475 0 45361 106 2 104 104 0 8 0 pdppl 4096 5471 0 5400 186 111 75 85 0 8 4 pvpl 32 29510 0 0 238 0 238 238 0 265 0 pmappl 248 2731 0 2700 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 630 0 195 13 0 13 13 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace __x86_indirect_thunk_r11() at __x86_indirect_thunk_r11+0x14 rt_clone(ffff80002a162708,ffff80002a162770,0) at rt_clone+0x98 sys/net/route.c:383 rtalloc(ffff80002a162770,1,0) at rtalloc+0xb6 rt_match sys/net/route.c:360 [inline] rtalloc(ffff80002a162770,1,0) at rtalloc+0xb6 sys/net/route.c:489 ip_multicast_if(ffff80002a162820,0,ffff80002a162808) at ip_multicast_if+0x14c sys/netinet/ip_output.c:1364 ip_setmoptions(c,fffffd806bc12120,fffffd8060345400,0) at ip_setmoptions+0x4a1 sys/netinet/ip_output.c:1533 sosetopt(ffff8000016e6000,0,c,fffffd8060345400) at sosetopt+0x117 sys_setsockopt(ffff8000ffff31d8,ffff80002a162a30,ffff80002a162980) at sys_setsockopt+0x2ba sys/kern/uipc_syscalls.c:1231 syscall(ffff80002a162a30) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a162a30) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x388a1cce270, count: -9 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp ddb{1}> trace x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 end of kernel end trace frame: 0x74ce95321bd0, count: -3