kernel: protection fault trap, code=0 Stopped at ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace ktrops(ffff80002a7142a8,deaf4152deaf4152,0,80000120,fffffd80591e1138,fffffd807f7d7138) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:700 [inline] ktrops(ffff80002a7142a8,deaf4152deaf4152,0,80000120,fffffd80591e1138,fffffd807f7d7138) at ktrops+0x4e sys/kern/kern_ktrace.c:543 doktrace(fffffd80591e1138,4,120,0,ffff80002a7142a8) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:568 [inline] doktrace(fffffd80591e1138,4,120,0,ffff80002a7142a8) at doktrace+0x524 sys/kern/kern_ktrace.c:490 sys_ktrace(ffff80002a7142a8,ffff8000378d7580,ffff8000378d75d0) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:531 syscall(ffff8000378d7640) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9c581942df0, count: -5 ddb> show registers rdi 0xffff80002a7142a8 rsi 0xdeaf4152deaf4152 rbp 0xffff8000378d7370 rbx 0xdeaf4152deaf4152 rdx 0 rcx 0x80000120 __kernel_virt_to_phys+0x120 rax 0xffff80002a7142a8 r8 0xfffffd80591e1138 r9 0xfffffd807f7d7138 r10 0x734ffcc7f1e06284 r11 0x10972703d9b1fa1a r12 0xdeaf4152deaf4152 r13 0xfffffd807f7d7138 r14 0xffff80002a7142a8 r15 0x80000120 __kernel_virt_to_phys+0x120 rip 0xffffffff817428ae ktrops+0x4e cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000378d72f0 ss 0 ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> show proc PROC (syz-executor.2) tid=435300 pid=96909 tcnt=3 stat=onproc flags process=10 proc=4000000 runpri=17, usrpri=79, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a714550,0xffff80002a715550 process=0xffff80002a734fc0 user=0xffff8000378d2000, vmspace=0xfffffd805ab73000 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 66212 441507 87646 0 2 0 syz-executor.3 96909 437977 71532 0 2 0x10 syz-executor.2 96909 104024 71532 0 2 0x4000010 syz-executor.2 *96909 435300 71532 0 7 0x4000010 syz-executor.2 93016 134566 60519 0 3 0x80 nanoslp syz-executor.1 93016 404566 60519 0 3 0x4000080 fsleep syz-executor.1 69785 203717 71586 0 2 0 syz-executor.0 69785 317017 71586 0 3 0x4000080 fsleep syz-executor.0 69785 207930 71586 0 3 0x4000080 fsleep syz-executor.0 69785 289751 71586 0 3 0x4000080 fifor syz-executor.0 30873 51533 29572 0 2 0 syz-executor.5 30873 117268 29572 0 3 0x4000080 fsleep syz-executor.5 30873 121092 29572 0 3 0x4000080 fsleep syz-executor.5 30143 66960 26477 0 2 0x2 syz-executor.4 4519 397369 0 0 3 0x14200 acct acct 43305 412953 26477 0 3 0x82 nanoslp syz-executor.7 29572 130791 26477 0 3 0x82 nanoslp syz-executor.5 71532 473954 26477 0 3 0x82 nanoslp syz-executor.2 47254 178147 26477 0 3 0x82 nanoslp syz-executor.6 78802 153958 0 0 3 0x14280 nfsidl nfsio 30921 345046 0 0 3 0x14280 nfsidl nfsio 77229 181427 0 0 3 0x14280 nfsidl nfsio 9172 369322 0 0 3 0x14280 nfsidl nfsio 64820 346248 0 0 3 0x14280 nfsidl nfsio 65104 415279 0 0 3 0x14280 nfsidl nfsio 62367 290861 0 0 3 0x14280 nfsidl nfsio 18107 5128 0 0 3 0x14280 nfsidl nfsio 6511 355061 0 0 3 0x14280 nfsidl nfsio 79285 231226 0 0 3 0x14280 nfsidl nfsio 17095 106851 0 0 3 0x14280 nfsidl nfsio 60875 287396 0 0 3 0x14280 nfsidl nfsio 20334 203174 0 0 3 0x14280 nfsidl nfsio 48733 192811 0 0 3 0x14280 nfsidl nfsio 53623 485383 0 0 3 0x14280 nfsidl nfsio 37750 523482 0 0 3 0x14280 nfsidl nfsio 11626 177970 0 0 3 0x14280 nfsidl nfsio 7129 425099 0 0 3 0x14280 nfsidl nfsio 13 450418 0 0 3 0x14280 nfsidl nfsio 12062 418842 0 0 3 0x14280 nfsidl nfsio 71586 214787 26477 0 3 0x82 nanoslp syz-executor.0 87646 34697 26477 0 2 0x2 syz-executor.3 60519 102211 26477 0 3 0x82 nanoslp syz-executor.1 92355 412866 1 0 3 0x100083 ttyin getty 68071 353864 0 0 3 0x14200 bored sosplice 26477 334325 88575 0 3 0x2000082 thrsleep syz-fuzzer 26477 180961 88575 0 3 0x6000082 nanoslp syz-fuzzer 26477 368947 88575 0 3 0x6000082 wait syz-fuzzer 26477 369422 88575 0 3 0x6000082 wait syz-fuzzer 26477 188411 88575 0 3 0x6000082 wait syz-fuzzer 26477 405144 88575 0 3 0x6000082 thrsleep syz-fuzzer 26477 420988 88575 0 3 0x6000082 wait syz-fuzzer 26477 68115 88575 0 3 0x6000082 thrsleep syz-fuzzer 26477 513729 88575 0 3 0x6000082 kqread syz-fuzzer 26477 359964 88575 0 3 0x6000082 thrsleep syz-fuzzer 26477 469835 88575 0 3 0x6000082 wait syz-fuzzer 26477 181226 88575 0 3 0x6000082 wait syz-fuzzer 26477 50558 88575 0 3 0x6000082 wait syz-fuzzer 26477 494398 88575 0 3 0x6000082 wait syz-fuzzer 88575 217269 71377 0 3 0x10008a sigsusp ksh 71377 219676 36537 0 3 0x9a kqread sshd 36537 95894 1 0 3 0x88 kqread sshd 60319 148275 43721 73 3 0x1100090 kqread syslogd 43721 2089 1 0 3 0x100082 netio syslogd 97677 2993 1 0 3 0x100080 kqread resolvd 90254 470336 37015 77 3 0x100092 kqread dhcpleased 62784 230072 37015 77 3 0x100092 kqread dhcpleased 37015 444218 1 0 3 0x80 kqread dhcpleased 49979 441633 0 0 3 0x14200 bored smr 35833 226259 0 0 2 0x14200 zerothread 77341 410362 0 0 3 0x14200 aiodoned aiodoned 28852 50406 0 0 3 0x14200 syncer update 19054 358031 0 0 3 0x14200 cleaner cleaner 8025 418930 0 0 3 0x14200 reaper reaper 4572 80824 0 0 3 0x14200 pgdaemon pagedaemon 32297 266786 0 0 3 0x14200 bored viomb 54449 6708 0 0 3 0x40014200 acpi0 acpi0 35591 406013 0 0 3 0x14200 bored softnet3 48617 320505 0 0 3 0x14200 bored softnet2 65967 423533 0 0 3 0x14200 bored softnet1 25558 267143 0 0 3 0x14200 bored softnet0 22201 90339 0 0 3 0x14200 bored systqmp 52047 164630 0 0 3 0x14200 bored systq 46011 50908 0 0 3 0x40014200 tmoslp softclock 91426 329694 0 0 3 0x40014200 idle0 1 42437 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10229 6507K 7808K 166960K 54348 0 pcb 13 16K 18K 166960K 2216 0 rtable 225 15K 16K 166960K 3425 0 pf 34 9K 10K 166960K 640 0 ifaddr 42 14K 17K 166960K 511 0 ifgroup 59 2K 2K 166960K 1017 0 sysctl 4 1K 1K 166960K 9 0 counters 30 17K 17K 166960K 306 0 ioctlops 0 0K 2K 166960K 1448 0 iov 0 0K 26K 166960K 2717 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1567 98K 99K 166960K 16581 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 219 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 1588 0 dirhash 12 2K 2K 166960K 129 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 15 53K 77K 166960K 20501 0 sigio 1 0K 0K 166960K 652 0 proc 58 59K 83K 166960K 3000 0 subproc 104 6K 7K 166960K 905 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 1678 0 in_multi 88 6K 7K 166960K 918 0 ether_multi 1 0K 0K 166960K 13 0 mrt 1 0K 0K 166960K 10 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 223 996K 996K 166960K 223 0 exec 0 0K 1K 166960K 5730 0 pfkey data 0 0K 0K 166960K 7 0 tdb 3 0K 0K 166960K 3 0 pagedep 1 8K 8K 166960K 1 0 inodedep 1 32K 32K 166960K 1 0 newblk 1 0K 0K 166960K 1 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 559 771K 779K 166960K 190342 0 UVM aobj 131 6K 6K 166960K 137 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 2 0K 0K 166960K 571 0 NDP 13 0K 2K 166960K 424 0 temp 74 5916K 6300K 166960K 188933 0 kqueue 12 18K 30K 166960K 1425 0 SYN cache 2 1236K 1244K 166960K 3 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 1842 0 1839 26 25 1 3 0 8 0 rtentry 112 831 0 730 6 2 4 4 0 8 0 unpcb 144 44110 0 44089 236 228 8 15 0 8 7 syncache 312 231 0 231 37 36 1 1 0 8 1 sackhl 24 3 0 3 3 3 0 1 0 8 0 tcpqe 32 362 0 362 31 30 1 1 0 8 1 tcpcb 808 4865 0 4843 177 168 9 16 0 8 5 arp 88 140 0 124 1 0 1 1 0 8 0 ipq 40 18 0 18 9 8 1 1 0 8 1 ipqe 40 45 0 45 9 8 1 1 0 8 1 inpcb 336 14822 0 14797 181 173 8 14 0 8 3 nd6 104 217 0 194 1 0 1 1 0 8 0 pkpcb 40 127 0 127 14 14 0 1 0 8 0 kcovpl 48 68 0 60 1 0 1 1 0 8 0 ppxss 1160 100 0 100 22 22 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 3195 0 2768 49 19 30 31 0 8 0 art_table 32 3196 0 2768 4 0 4 4 0 8 0 art_node 16 782 0 690 1 0 1 1 0 8 0 sysvmsgpl 40 47 0 45 1 0 1 1 0 8 0 semapl 112 1586 0 1576 1 0 1 1 0 8 0 shmpl 112 134 0 6 4 0 4 4 0 8 0 dirhash 1024 95 0 78 3 0 3 3 0 8 0 dino2pl 256 29974 0 28426 97 0 97 97 0 8 0 ffsino 240 29974 0 28426 92 0 92 92 0 8 0 nchpl 144 58932 0 58433 63 41 22 63 0 8 0 uvmvnodes 80 7482 0 0 153 0 153 153 0 8 0 vnodes 216 7482 0 0 416 0 416 416 0 8 0 namei 1024 217803 0 217803 21 20 1 2 0 8 1 vcpupl 2048 222 0 0 28 0 28 28 0 8 0 vmpool 664 409 0 187 19 0 19 19 0 8 0 kstatmem 264 578 0 552 5 2 3 3 0 8 0 scxspl 216 188947 0 188946 43 42 1 8 1 8 0 plimitpl 152 1832 0 1817 1 0 1 1 0 8 0 sigapl 424 20720 0 20654 9 1 8 8 0 8 0 futexpl 64 202165 0 202160 7 6 1 1 0 8 0 knotepl 120 185367 0 185286 142 131 11 18 0 8 8 kqueuepl 184 3942 0 3934 62 61 1 10 0 8 0 pipepl 288 4973 0 4945 104 101 3 11 0 8 0 fdescpl 432 20659 0 20633 4 0 4 4 0 8 0 filepl 120 164399 0 164154 201 186 15 24 0 8 4 lockfpl 104 12926 0 12924 34 32 2 4 0 8 1 lockfspl 48 5090 0 5088 5 4 1 2 0 8 0 sessionpl 144 83 0 67 1 0 1 1 0 8 0 pgrppl 48 1033 0 1017 1 0 1 1 0 8 0 ucredpl 104 18054 0 18043 1 0 1 1 0 8 0 zombiepl 144 20656 0 20654 5 4 1 1 0 8 0 processpl 1008 20720 0 20654 13 4 9 9 0 8 0 procpl 680 51400 0 51313 21 13 8 9 0 8 0 sosppl 168 256 0 256 25 24 1 1 0 8 1 sockpl 456 60948 0 60899 1255 1218 37 58 0 8 30 mcl64k 65536 917 0 917 22 21 1 1 0 8 1 mcl16k 16384 431 0 431 37 36 1 1 0 8 1 mcl12k 12288 737 0 737 25 24 1 1 0 8 1 mcl9k 9216 393 0 393 34 33 1 1 0 8 1 mcl8k 8192 1173 0 1173 21 20 1 1 0 8 1 mcl4k 4096 2521 0 2521 27 26 1 3 0 8 1 mcl2k2 2112 136 0 136 39 38 1 1 0 8 1 mcl2k 2048 110637 0 110573 77 67 10 29 0 8 0 mtagpl 96 6116 0 5576 44 23 21 23 0 8 0 mbufpl 256 394971 0 394318 750 686 64 105 0 8 1 bufpl 288 42098 0 34615 535 0 535 535 0 8 0 anonpl 24 2150388 0 2136294 277 167 110 184 0 188 0 amapchunkpl 152 606568 0 605704 174 136 38 63 0 158 0 amappl16 200 44206 0 43689 281 253 28 52 0 8 0 amappl15 192 15 0 15 1 1 0 1 0 8 0 amappl14 184 355 0 342 2 1 1 2 0 8 0 amappl13 176 15 0 14 1 0 1 1 0 8 0 amappl12 168 22171 0 22144 2 0 2 2 0 8 0 amappl11 160 69 0 59 1 0 1 1 0 8 0 amappl10 152 91 0 82 1 0 1 1 0 8 0 amappl9 144 277 0 276 2 1 1 1 0 8 0 amappl8 136 788 0 646 6 1 5 5 0 8 0 amappl7 128 370 0 345 2 0 2 2 0 8 0 amappl6 120 1286 0 1268 1 0 1 1 0 8 0 amappl5 112 560 0 551 1 0 1 1 0 8 0 amappl4 104 953 0 927 2 1 1 2 0 8 0 amappl3 96 118501 0 118405 4 1 3 3 0 8 0 amappl2 88 22068 0 21993 3 1 2 3 0 8 0 amappl1 80 85747 0 85245 22 10 12 22 0 8 0 amappl 88 188795 0 188509 8 0 8 8 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 136 0 6 3 0 3 3 0 8 0 uaddrrnd 24 21068 0 20820 2 0 2 2 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 21068 0 20820 2 0 2 2 0 8 0 vmmpekpl 168 137476 0 137372 5 0 5 5 0 8 0 vmmpepl 168 1245077 0 1242474 459 323 136 149 0 357 1 vmsppl 368 21067 0 20820 24 1 23 23 0 8 0 rwobjpl 24 289194 0 279907 61 4 57 58 0 8 0 pdppl 4096 42143 0 41862 1053 766 287 287 0 8 6 pvpl 32 5792519 0 5772938 704 519 185 323 0 265 0 pmappl 216 21067 0 20820 14 0 14 14 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 3360 0 2155 37 1 36 36 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a7142a8,deaf4152deaf4152,0,80000120,fffffd80591e1138,fffffd807f7d7138) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:700 [inline] ktrops(ffff80002a7142a8,deaf4152deaf4152,0,80000120,fffffd80591e1138,fffffd807f7d7138) at ktrops+0x4e sys/kern/kern_ktrace.c:543 doktrace(fffffd80591e1138,4,120,0,ffff80002a7142a8) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:568 [inline] doktrace(fffffd80591e1138,4,120,0,ffff80002a7142a8) at doktrace+0x524 sys/kern/kern_ktrace.c:490 sys_ktrace(ffff80002a7142a8,ffff8000378d7580,ffff8000378d75d0) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:531 syscall(ffff8000378d7640) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9c581942df0, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a7142a8,deaf4152deaf4152,0,80000120,fffffd80591e1138,fffffd807f7d7138) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:700 [inline] ktrops(ffff80002a7142a8,deaf4152deaf4152,0,80000120,fffffd80591e1138,fffffd807f7d7138) at ktrops+0x4e sys/kern/kern_ktrace.c:543 doktrace(fffffd80591e1138,4,120,0,ffff80002a7142a8) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:568 [inline] doktrace(fffffd80591e1138,4,120,0,ffff80002a7142a8) at doktrace+0x524 sys/kern/kern_ktrace.c:490 sys_ktrace(ffff80002a7142a8,ffff8000378d7580,ffff8000378d75d0) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:531 syscall(ffff8000378d7640) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9c581942df0, count: -5