kernel: protection fault trap, code=0 Stopped at done_flush+0x38: movl %eax,%dr6 ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic the kernel did not panic ddb{0}> trace done_flush() at done_flush+0x38 vm_run(ffff80002e4f8c40) at vm_run+0x1cf sys/arch/amd64/amd64/vmm.c:4524 vmmioctl(a00,c0205602,ffff80002e4f8c40,1,ffff8000fffed268) at vmmioctl+0x157 sys/arch/amd64/amd64/vmm.c:675 VOP_IOCTL(fffffd806ec957a0,c0205602,ffff80002e4f8c40,1,fffffd807f7d74e0,ffff8000fffed268) at VOP_IOCTL+0x96 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd8066ad55f0,c0205602,ffff80002e4f8c40,ffff8000fffed268) at vn_ioctl+0xbc sys/kern/vfs_vnops.c:525 sys_ioctl(ffff8000fffed268,ffff80002e4f8d58,ffff80002e4f8da0) at sys_ioctl+0x4a2 syscall(ffff80002e4f8e20) at syscall+0x4c2 mi_syscall sys/sys/syscall_mi.h:101 [inline] syscall(ffff80002e4f8e20) at syscall+0x4c2 sys/arch/amd64/amd64/trap.c:599 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x830f0c9e590, count: -8 ddb{0}> show registers rdi 0x6c14 __ALIGN_SIZE+0x5c14 rsi 0xffff80002962ae48 rbp 0xffff80002e4f8990 rbx 0x756e6547 rdx 0x49656e69 rcx 0x6c65746e rax 0xffffffffffffffff r8 0 r9 0x10000 __ALIGN_SIZE+0xf000 r10 0xf3634e1bc582b757 r11 0xed12c688f3331880 r12 0xffff80002962aba0 r13 0xffffffff829adff0 cpu_info_full_primary+0x1ff0 r14 0xffff80002962a800 r15 0xffff80002e4f8c40 rip 0xffffffff81522a00 done_flush+0x38 cs 0x8 rflags 0x10046 __ALIGN_SIZE+0xf046 rsp 0xffff80002e4f87e6 ss 0x10 done_flush+0x38: movl %eax,%dr6 ddb{0}> show proc PROC (syz-executor.4) pid=83306 stat=onproc flags process=0 proc=4000000 pri=32, usrpri=80, nice=20 forw=0xffffffffffffffff, list=0xffff8000fffed508,0xffff8000fffec2b8 process=0xffff8000ffff3258 user=0xffff80002e4f3000, vmspace=0xfffffd8069ec6180 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 81915 205464 44810 0 2 0 syz-executor.7 81915 231257 44810 0 2 0x4000000 syz-executor.7 97126 91646 96272 0 2 0 syz-executor.4 *97126 83306 96272 0 7 0x4000000 syz-executor.4 39253 421227 4616 0 3 0x80 nanoslp syz-executor.1 39253 54299 4616 0 3 0x4000080 fsleep syz-executor.1 39253 77079 4616 0 3 0x4000080 fsleep syz-executor.1 77760 493811 51680 0 3 0x80 nanoslp syz-executor.5 77760 503968 51680 0 3 0x4000080 fsleep syz-executor.5 55044 150905 55117 0 7 0 syz-executor.6 55044 424919 55117 0 2 0x4000000 syz-executor.6 55044 187794 55117 0 3 0x4000080 fsleep syz-executor.6 55044 64972 55117 0 2 0x4000000 syz-executor.6 5973 298663 18548 0 3 0x80 nanoslp syz-executor.3 5973 239768 18548 0 2 0x4000000 syz-executor.3 17917 302229 97641 0 3 0x2 biowait syz-executor.0 51680 338704 97641 0 3 0x82 nanoslp syz-executor.5 51917 466590 97641 0 3 0x82 nanoslp syz-executor.2 29138 47800 0 0 3 0x14280 nfsidl nfsio 6825 167875 0 0 3 0x14280 nfsidl nfsio 37329 369498 0 0 3 0x14280 nfsidl nfsio 75501 441499 0 0 3 0x14280 nfsidl nfsio 11215 21651 0 0 3 0x14280 nfsidl nfsio 69252 476487 0 0 3 0x14280 nfsidl nfsio 52490 37050 0 0 3 0x14280 nfsidl nfsio 4465 227345 0 0 3 0x14280 nfsidl nfsio 99406 363488 0 0 3 0x14280 nfsidl nfsio 22918 74387 0 0 3 0x14280 nfsidl nfsio 94087 287377 0 0 3 0x14280 nfsidl nfsio 47154 370953 0 0 3 0x14280 nfsidl nfsio 97962 447536 0 0 3 0x14280 nfsidl nfsio 42491 314162 0 0 3 0x14280 nfsidl nfsio 75496 87772 0 0 3 0x14280 nfsidl nfsio 17889 413846 0 0 3 0x14280 nfsidl nfsio 56121 331206 0 0 3 0x14280 nfsidl nfsio 23046 267043 0 0 3 0x14280 nfsidl nfsio 13446 266335 0 0 3 0x14280 nfsidl nfsio 73019 502503 0 0 3 0x14280 nfsidl nfsio 55206 167478 0 0 3 0x14200 bored sosplice 96272 408658 97641 0 3 0x82 nanoslp syz-executor.4 55117 486720 97641 0 3 0x82 nanoslp syz-executor.6 44810 205538 97641 0 3 0x82 nanoslp syz-executor.7 18548 10281 97641 0 3 0x82 nanoslp syz-executor.3 4616 334021 97641 0 3 0x82 nanoslp syz-executor.1 97641 330578 68538 0 3 0x82 wait syz-fuzzer 97641 395885 68538 0 3 0x4000082 nanoslp syz-fuzzer 97641 203728 68538 0 3 0x4000082 wait syz-fuzzer 97641 131238 68538 0 3 0x4000082 thrsleep syz-fuzzer 97641 423888 68538 0 3 0x4000082 thrsleep syz-fuzzer 97641 177386 68538 0 3 0x4000082 thrsleep syz-fuzzer 97641 308642 68538 0 3 0x4000082 thrsleep syz-fuzzer 97641 159671 68538 0 3 0x4000082 wait syz-fuzzer 97641 41114 68538 0 3 0x4000082 thrsleep syz-fuzzer 97641 201338 68538 0 3 0x4000082 wait syz-fuzzer 97641 299730 68538 0 3 0x4000082 kqread syz-fuzzer 97641 155611 68538 0 3 0x4000082 wait syz-fuzzer 97641 95718 68538 0 3 0x4000082 wait syz-fuzzer 97641 336133 68538 0 3 0x4000082 wait syz-fuzzer 97641 364098 68538 0 3 0x4000082 thrsleep syz-fuzzer 97641 261230 68538 0 3 0x4000082 wait syz-fuzzer 68538 72694 79161 0 3 0x10008a sigsusp ksh 79161 283093 9218 0 3 0x9a kqread sshd 80621 253327 1 0 3 0x100083 ttyin getty 9218 287431 1 0 3 0x88 kqread sshd 25040 458522 88274 74 3 0x1100092 bpf pflogd 88274 172774 1 0 3 0x80 netio pflogd 33070 137209 79690 73 3 0x1100090 kqread syslogd 79690 305733 1 0 3 0x100082 netio syslogd 73910 394694 1 0 3 0x100080 kqread resolvd 27220 505932 36251 77 3 0x100092 kqread dhcpleased 53616 241390 36251 77 3 0x100092 kqread dhcpleased 36251 142107 1 0 3 0x80 kqread dhcpleased 15080 282134 0 0 3 0x14200 bored smr 36984 267704 0 0 2 0x14200 zerothread 35051 347435 0 0 3 0x14200 aiodoned aiodoned 54464 294024 0 0 3 0x14200 syncer update 51398 125255 0 0 3 0x14200 cleaner cleaner 63508 495415 0 0 3 0x14200 reaper reaper 79261 410594 0 0 3 0x14200 pgdaemon pagedaemon 53761 255198 0 0 3 0x14200 bored viomb 53680 364254 0 0 3 0x40014200 acpi0 acpi0 91310 61024 0 0 3 0x40014200 idle1 69308 305875 0 0 3 0x14200 bored softnet 61352 240164 0 0 3 0x14200 bored softnet 12364 314103 0 0 3 0x14200 bored softnet 77444 477445 0 0 3 0x14200 bored softnet 66457 36599 0 0 3 0x14200 bored systqmp 14172 203937 0 0 3 0x14200 bored systq 47968 250244 0 0 3 0x40014200 bored softclock 46366 218941 0 0 3 0x40014200 idle0 1 146084 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10198 6477K 6744K 78643K 12634 0 pcb 13 14K 16K 78643K 198 0 rtable 231 7K 8K 78643K 554 0 ifaddr 74 16K 17K 78643K 151 0 sysctl 2 0K 0K 78643K 2 0 counters 60 35K 36K 78643K 114 0 ioctlops 0 0K 4K 78643K 1591 0 iov 0 0K 24K 78643K 325 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1358 85K 85K 78643K 1910 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 11 0 VM map 2 1K 1K 78643K 2 0 sem 11 1K 1K 78643K 11 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 16 57K 89K 78643K 1296 0 sigio 0 0K 0K 78643K 2 0 proc 70 91K 128K 78643K 694 0 subproc 104 6K 6K 78643K 143 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 165 0 in_multi 98 6K 6K 78643K 152 0 ether_multi 1 0K 0K 78643K 6 0 mrt 0 0K 0K 78643K 16 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 61 281K 281K 78643K 61 0 exec 0 0K 1K 78643K 637 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 339 121K 135K 78643K 11459 0 UVM aobj 64 2K 2K 78643K 64 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 22 0 NDP 12 0K 1K 78643K 50 0 temp 128 4690K 5705K 78643K 14586 0 kqueue 12 18K 26K 78643K 137 0 SYN cache 2 16K 16K 78643K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 149 0 146 3 0 3 3 0 8 2 rtentry 112 151 0 45 4 0 4 4 0 8 0 unpcb 144 622 0 607 7 5 2 6 0 8 1 syncache 296 7 0 7 2 2 0 1 0 8 0 tcpqe 32 71 0 71 2 2 0 1 0 8 0 tcpcb 776 550 0 545 21 14 7 14 0 8 6 arp 120 24 0 8 1 0 1 1 0 8 0 inpcb 368 1423 0 1416 32 25 7 13 0 8 6 nd6 48 33 0 9 1 0 1 1 0 8 0 kcovpl 48 11 0 3 1 0 1 1 0 8 0 ppxss 1256 18 0 18 3 2 1 1 0 8 1 pppxif 1448 4 0 4 1 1 0 1 0 8 0 pffrag 232 2 0 2 1 1 0 1 0 482 0 pffrnode 88 2 0 2 1 1 0 1 0 8 0 pffrent 40 4 0 4 1 1 0 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfanchor 1280 129 0 67 11 5 6 11 0 8 0 pfqueue 264 3 0 3 1 1 0 1 0 8 0 pfstitem 24 33 0 24 1 0 1 1 0 8 0 pfstkey 128 33 0 24 1 0 1 1 0 8 0 pfstate 384 33 0 24 3 1 2 3 0 8 0 pfrule 1344 21 0 20 2 1 1 2 0 8 0 rttmr 136 3 0 3 1 1 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 612 0 160 32 3 29 29 0 8 0 art_table 32 613 0 160 4 0 4 4 0 8 0 art_node 16 150 0 54 1 0 1 1 0 8 0 sysvmsgpl 40 14 0 12 3 2 1 1 0 8 0 semapl 112 9 0 0 1 0 1 1 0 8 0 shmpl 112 61 0 0 2 0 2 2 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 3018 0 1581 91 0 91 91 0 8 0 ffsino 272 3018 0 1581 97 0 97 97 0 8 0 nchpl 144 4912 0 3268 63 0 63 63 0 8 0 rtmask 32 4 0 4 2 1 1 1 0 8 1 uvmvnodes 80 3625 0 0 74 0 74 74 0 8 0 vnodes 216 3625 0 0 202 0 202 202 0 8 0 namei 1024 17194 0 17194 3 2 1 2 0 8 1 percpumem 16 69 0 27 1 0 1 1 0 8 0 vcpupl 2048 2 0 0 1 0 1 1 0 8 0 vmpool 568 4 0 2 1 0 1 1 0 8 0 kstatmem 264 56 0 32 2 0 2 2 0 8 0 scxspl 216 14842 0 14841 11 10 1 8 0 8 0 plimitpl 152 320 0 304 1 0 1 1 0 8 0 sigapl 424 1618 0 1550 10 2 8 8 0 8 0 futexpl 64 10126 0 10122 2 1 1 1 0 8 0 knotepl 120 316 0 0 8 0 8 8 0 8 0 kqueuepl 216 228 0 219 3 2 1 3 0 8 0 pipepl 320 1123 0 1095 18 12 6 9 0 8 3 fdescpl 496 1580 0 1551 5 0 5 5 0 8 0 filepl 152 10979 0 10737 32 16 16 19 0 8 5 lockfpl 104 910 0 908 4 3 1 2 0 8 0 lockfspl 48 213 0 211 1 0 1 1 0 8 0 sessionpl 144 27 0 10 1 0 1 1 0 8 0 pgrppl 48 35 0 18 1 0 1 1 0 8 0 ucredpl 104 672 0 660 1 0 1 1 0 8 0 zombiepl 144 1551 0 1550 1 0 1 1 0 8 0 processpl 1072 1618 0 1550 5 0 5 5 0 8 0 procpl 672 4501 0 4409 12 3 9 10 0 8 0 srpgc 96 2 0 2 1 1 0 1 0 8 0 sosppl 168 22 0 22 2 2 0 1 0 8 0 sockpl 488 2194 0 2169 62 50 12 25 0 8 8 mcl64k 65536 5 0 0 1 0 1 1 0 8 0 mcl16k 16384 8 0 0 1 0 1 1 0 8 0 mcl12k 12288 9 0 0 1 0 1 1 0 8 0 mcl9k 9216 3 0 0 1 0 1 1 0 8 0 mcl8k 8192 14 0 0 2 0 2 2 0 8 0 mcl4k 4096 16 0 0 2 0 2 2 0 8 0 mcl2k2 2112 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 456 0 0 56 0 56 56 0 8 0 mtagpl 96 107 0 0 3 0 3 3 0 8 0 mbufpl 256 499 0 0 31 0 31 31 0 8 0 bufpl 288 6044 0 156 421 0 421 421 0 8 0 anonpl 24 367219 0 349934 120 6 114 116 0 186 2 amapchunkpl 152 33609 0 32846 47 12 35 41 0 158 0 amappl16 200 4105 0 3573 34 3 31 31 0 8 2 amappl15 192 8 0 8 1 1 0 1 0 8 0 amappl14 184 148 0 134 2 1 1 2 0 8 0 amappl13 176 10 0 9 1 0 1 1 0 8 0 amappl12 168 458 0 456 1 0 1 1 0 8 0 amappl11 160 46 0 32 1 0 1 1 0 8 0 amappl10 152 48 0 36 1 0 1 1 0 8 0 amappl9 144 954 0 953 1 0 1 1 0 8 0 amappl8 136 185 0 128 2 0 2 2 0 8 0 amappl7 128 159 0 133 2 0 2 2 0 8 0 amappl6 120 165 0 154 1 0 1 1 0 8 0 amappl5 112 143 0 134 1 0 1 1 0 8 0 amappl4 104 519 0 489 2 1 1 2 0 8 0 amappl3 96 4426 0 4368 2 0 2 2 0 8 0 amappl2 88 1997 0 1917 3 1 2 3 0 8 0 amappl1 80 39192 0 38391 25 7 18 23 0 8 0 amappl 88 10883 0 10684 6 0 6 6 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 63 0 0 2 0 2 2 0 8 0 uaddrrnd 24 1584 0 1553 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1584 0 1553 1 0 1 1 0 8 0 vmmpekpl 168 22843 0 22778 4 0 4 4 0 8 0 vmmpepl 168 155308 0 152448 183 44 139 168 0 357 8 vmsppl 368 1583 0 1553 4 1 3 4 0 8 0 rwobjpl 56 47528 0 42088 79 1 78 78 0 8 0 pdppl 4096 3175 0 3108 140 69 71 81 0 8 4 pvpl 32 770472 0 747472 278 69 209 270 0 265 10 pmappl 248 1583 0 1553 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 924 0 104 24 0 24 24 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace done_flush() at done_flush+0x38 vm_run(ffff80002e4f8c40) at vm_run+0x1cf sys/arch/amd64/amd64/vmm.c:4524 vmmioctl(a00,c0205602,ffff80002e4f8c40,1,ffff8000fffed268) at vmmioctl+0x157 sys/arch/amd64/amd64/vmm.c:675 VOP_IOCTL(fffffd806ec957a0,c0205602,ffff80002e4f8c40,1,fffffd807f7d74e0,ffff8000fffed268) at VOP_IOCTL+0x96 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd8066ad55f0,c0205602,ffff80002e4f8c40,ffff8000fffed268) at vn_ioctl+0xbc sys/kern/vfs_vnops.c:525 sys_ioctl(ffff8000fffed268,ffff80002e4f8d58,ffff80002e4f8da0) at sys_ioctl+0x4a2 syscall(ffff80002e4f8e20) at syscall+0x4c2 mi_syscall sys/sys/syscall_mi.h:101 [inline] syscall(ffff80002e4f8e20) at syscall+0x4c2 sys/arch/amd64/amd64/trap.c:599 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x830f0c9e590, count: -8 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{1}> trace x86_ipi_db(ffff800020dd8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 end of kernel end trace frame: 0x7f7ffffc87d0, count: -3