kernel: protection fault trap, code=0 Stopped at ktrops+0x58: movq 0x8(%r14),%r14 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace ktrops(ffff80002a5bc528,dead4110dead4110,0,80000d30,fffffd8067b26890,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a5bc528,dead4110dead4110,0,80000d30,fffffd8067b26890,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8067b26890,4,d30,0,ffff80002a5bc528) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8067b26890,4,d30,0,ffff80002a5bc528) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a5bc528,ffff8000376210c0,ffff800037621010) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff8000376210c0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x5d329f95ef0, count: -5 ddb> show registers rdi 0xffff80002dbd2000 rsi 0x4ca2 __ALIGN_SIZE+0x3ca2 rbp 0xffff800037620de0 rbx 0xfffffd807f7d7750 rdx 0xffff80002dbd2000 rcx 0x4ca1 __ALIGN_SIZE+0x3ca1 rax 0xffffffff825a8ac3 ktrops+0x43 r8 0xfffffd8067b26890 r9 0xfffffd807f7d7750 r10 0x437643ba947e97c9 r11 0x729390d409ac16fe r12 0xffff80002a5bc528 r13 0xdead4110dead4110 r14 0xdead4110dead4110 r15 0x80000d30 __kernel_virt_to_phys+0xd30 rip 0xffffffff825a8ad8 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800037620d60 ss 0x10 ktrops+0x58: movq 0x8(%r14),%r14 ddb> show proc PROC (syz-executor) tid=183537 pid=71944 tcnt=3 stat=onproc flags process=8000010 proc=4000000 runpri=17, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a5bc018,0xffff80002a5bd1e0 process=0xffff80003760eed8 user=0xffff80003761c000, vmspace=0xfffffd80683dc170 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 82760 146715 29883 0 2 0x8000000 syz-executor 17057 166255 18812 0 2 0x8100002 sh 79806 492098 78 0 2 0x8000000 syz-executor 79806 462052 78 0 3 0xc000080 fsleep syz-executor 79806 477416 78 0 3 0xc000080 fsleep syz-executor 76391 211901 59210 0 2 0x8000000 syz-executor 76391 267864 59210 0 3 0xc000080 fsleep syz-executor 71944 459930 21931 60928 2 0x8000010 syz-executor 71944 511289 21931 60928 3 0xc000090 sbwait syz-executor *71944 183537 21931 60928 7 0xc000010 syz-executor 35188 205608 10244 0 2 0x8000000 syz-executor 35188 84656 10244 0 2 0xc000000 syz-executor 35188 502992 10244 0 3 0xc000080 fsleep syz-executor 21790 152756 4672 0 2 0x8000000 syz-executor 18812 275162 25977 0 3 0x8000082 wait syz-executor 29883 262755 25977 0 2 0x8000002 syz-executor 78 117924 25977 0 2 0x8000482 syz-executor 59210 27614 25977 0 2 0x8000482 syz-executor 14820 144498 25977 0 2 0x8000002 syz-executor 21931 498779 25977 0 2 0x8000482 syz-executor 10244 4610 25977 0 2 0x8000482 syz-executor 4672 275759 25977 0 2 0x8000002 syz-executor 4697 300491 1 0 3 0x18100083 ttyin getty 38013 403643 0 0 3 0x14200 bored sosplice 25977 434745 26494 0 3 0x8000082 kqread syz-executor 26494 302159 97386 0 3 0x810008a sigsusp ksh 97386 191947 92684 0 3 0x18000098 kqread sshd-session 92684 214305 40486 0 3 0x18000092 kqread sshd-session 40486 232150 1 0 3 0x18000088 kqread sshd 53282 286827 57789 73 2 0x19100010 syslogd 57789 115289 1 0 3 0x18100082 sbwait syslogd 54032 418570 1 0 3 0x18100080 kqread resolvd 91364 271420 89084 77 3 0x18100092 kqread dhcpleased 5135 304558 89084 77 3 0x18100092 kqread dhcpleased 89084 211025 1 0 3 0x18000080 kqread dhcpleased 47860 225999 0 0 3 0x14200 bored smr 71052 37979 0 0 2 0x14200 zerothread 20699 356949 0 0 3 0x14200 aiodoned aiodoned 11091 21950 0 0 3 0x14200 syncer update 52599 164541 0 0 3 0x14200 cleaner cleaner 74459 89226 0 0 3 0x14200 reaper reaper 96214 340177 0 0 3 0x14200 pgdaemon pagedaemon 6132 521095 0 0 3 0x14200 bored viomb 35634 428141 0 0 3 0x40014200 acpi0 acpi0 45211 221165 0 0 3 0x14200 bored softnet3 92489 498625 0 0 3 0x14200 bored softnet2 62548 90447 0 0 3 0x14200 bored softnet1 12697 158664 0 0 3 0x14200 bored softnet0 83998 164020 0 0 3 0x14200 bored systqmp 18241 175315 0 0 3 0x14200 bored systq 72198 408536 0 0 2 0x40014200 softclock 85672 388164 0 0 3 0x40014200 idle0 1 136777 0 0 3 0x8000082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10216 10182K 14406K 166960K 15228 0 pcb 17 16K 17K 166960K 549 0 rtable 207 9K 10K 166960K 2695 0 pf 37 14K 17K 166960K 290 0 ifaddr 41 7K 8K 166960K 359 0 ifgroup 58 2K 2K 166960K 473 0 sysctl 4 1K 3K 166960K 9 0 counters 32 17K 18K 166960K 140 0 ioctlops 0 0K 4K 166960K 379 0 iov 0 0K 18K 166960K 184 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1716 108K 108K 166960K 5179 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 54 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 202 0 dirhash 15 2K 3K 166960K 69 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 17 61K 97K 166960K 2714 0 sigio 1 0K 0K 166960K 32 0 proc 58 59K 124K 166960K 2519 0 subproc 104 6K 6K 166960K 977 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 314 0 in_multi 89 6K 7K 166960K 889 0 ether_multi 1 0K 0K 166960K 18 0 mrt 0 0K 0K 166960K 9 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 247 1102K 1102K 166960K 247 0 exec 0 0K 1K 166960K 1611 0 pfkey data 0 0K 0K 166960K 3 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 215 125K 143K 166960K 24341 0 UVM aobj 131 6K 6K 166960K 136 0 pinsyscall 38 76K 96K 166960K 5475 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 180 0 NDP 13 0K 2K 166960K 270 0 temp 76 6812K 6940K 166960K 76840 0 kqueue 14 22K 30K 166960K 269 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 729 0 726 4 3 1 3 0 8 0 rtentry 112 938 0 849 4 0 4 4 0 8 0 unpcb 144 2626 0 2607 18 15 3 11 0 8 2 syncache 336 11 0 11 3 3 0 1 0 8 0 tcpqe 32 4 0 4 2 2 0 1 0 8 0 tcpcb 808 913 0 907 18 17 1 8 0 8 0 arp 88 161 0 145 1 0 1 1 0 8 0 ipq 40 1 0 1 1 1 0 1 0 8 0 ipqe 40 2 0 2 1 1 0 1 0 8 0 inpcb 336 3361 0 3354 28 26 2 17 0 8 1 nd6 104 227 0 206 1 0 1 1 0 8 0 pkpcb 40 10 0 10 3 3 0 1 0 8 0 kcovpl 48 75 0 67 1 0 1 1 0 8 0 ppxss 1072 20 0 20 2 2 0 1 0 8 0 pfstscr 40 1 0 1 1 1 0 1 0 8 0 pffrag 232 11 0 11 1 1 0 1 0 482 0 pffrnode 88 11 0 11 1 1 0 1 0 8 0 pffrent 40 58 0 58 1 1 0 1 0 8 0 pfrktable 1344 1 0 1 1 1 0 1 0 8 0 pfanchor 1288 1 0 0 1 0 1 1 0 8 0 pfstkey 128 5 0 5 1 1 0 1 0 8 0 pfstate 344 3 0 3 1 1 0 1 0 8 0 pfrule 1344 7 0 5 3 2 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 3423 0 3052 36 10 26 30 0 8 0 art_table 32 3424 0 3052 4 0 4 4 0 8 0 art_node 16 873 0 794 1 0 1 1 0 8 0 sysvmsgpl 40 23 0 15 1 0 1 1 0 8 0 semapl 112 199 0 189 1 0 1 1 0 8 0 shmpl 112 133 0 5 4 0 4 4 0 8 0 dirhash 1024 56 0 37 3 0 3 3 0 8 0 dino2pl 256 5335 0 3721 101 0 101 101 0 8 0 ffsino 240 5335 0 3721 96 0 96 96 0 8 0 nchpl 144 8060 0 7445 66 41 25 66 0 8 0 uvmvnodes 80 7830 0 0 160 0 160 160 0 8 0 vnodes 216 7830 0 0 435 0 435 435 0 8 0 namei 1024 39188 0 39187 7 6 1 2 0 8 0 vcpupl 3904 13 0 2 2 0 2 2 0 8 0 vmpool 664 16 0 5 3 1 2 2 0 8 0 kstatmem 264 242 0 216 3 1 2 3 0 8 0 scsiplug 72 1 0 1 1 1 0 1 0 8 0 scxspl 216 59121 0 59121 17 16 1 8 1 8 1 plimitpl 152 996 0 979 1 0 1 1 0 8 0 sigapl 424 2889 0 2843 9 3 6 8 0 8 0 futexpl 64 35741 0 35737 1 0 1 1 0 8 0 knotepl 120 68795 0 68744 24 15 9 10 0 8 6 kqueuepl 184 717 0 706 4 0 4 4 0 8 3 pipepl 288 661 0 633 6 3 3 5 0 8 0 fdescpl 432 2848 0 2819 5 1 4 5 0 8 0 filepl 120 23371 0 23126 26 15 11 17 0 8 3 lockfpl 104 1049 0 1046 2 1 1 2 0 8 0 lockfspl 48 407 0 404 1 0 1 1 0 8 0 sessionpl 144 92 0 84 1 0 1 1 0 8 0 pgrppl 48 206 0 190 1 0 1 1 0 8 0 ucredpl 104 3982 0 3970 1 0 1 1 0 8 0 zombiepl 144 3885 0 3885 1 0 1 1 0 8 1 processpl 1088 2889 0 2843 5 1 4 5 0 8 0 procpl 648 6123 0 6070 10 4 6 9 0 8 1 sosppl 168 6 0 6 3 3 0 1 0 8 0 sockpl 504 6756 0 6727 113 103 10 40 0 8 5 mcl64k 65536 26 0 26 4 3 1 1 0 8 1 mcl16k 16384 4 0 4 2 2 0 1 0 8 0 mcl12k 12288 2 0 2 1 1 0 1 0 8 0 mcl9k 9216 3 0 3 2 2 0 1 0 8 0 mcl8k 8192 58 0 58 4 3 1 1 0 8 1 mcl4k 4096 10 0 10 2 2 0 1 0 8 0 mcl2k 2048 11680 0 11582 33 19 14 30 0 8 0 mtagpl 96 42 0 41 2 1 1 1 0 8 0 mbufpl 256 42479 0 42322 600 586 14 545 0 8 0 bufpl 280 13594 0 5698 565 0 565 565 0 8 0 anonpl 24 395931 0 392703 119 72 47 52 0 187 17 amapchunkpl 152 80301 0 79895 84 50 34 48 0 158 16 amappl16 200 6403 0 6383 42 31 11 15 0 8 8 amappl15 192 15 0 15 1 1 0 1 0 8 0 amappl14 184 242 0 232 1 0 1 1 0 8 0 amappl13 176 11 0 11 1 1 0 1 0 8 0 amappl12 168 4538 0 4510 3 1 2 3 0 8 0 amappl11 160 52 0 42 1 0 1 1 0 8 0 amappl10 152 8 0 8 1 1 0 1 0 8 0 amappl9 144 138 0 138 1 1 0 1 0 8 0 amappl8 136 22 0 20 1 0 1 1 0 8 0 amappl7 128 234 0 224 1 0 1 1 0 8 0 amappl6 120 821 0 818 1 0 1 1 0 8 0 amappl5 112 392 0 383 1 0 1 1 0 8 0 amappl4 104 500 0 482 1 0 1 1 0 8 0 amappl3 96 15497 0 15402 4 0 4 4 0 8 0 amappl2 88 1563 0 1503 2 0 2 2 0 8 0 amappl1 80 19355 0 18825 14 2 12 13 0 8 0 amappl 88 23367 0 23217 6 1 5 5 0 92 0 dma65536 65536 1 0 1 1 1 0 1 0 8 0 dma4096 4096 2 0 2 2 2 0 1 0 8 0 dma2048 2048 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 254 0 254 2 2 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 20 0 19 1 0 1 1 0 8 0 aobjpl 72 135 0 5 3 0 3 3 0 8 0 uaddrrnd 24 2864 0 2824 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2864 0 2824 1 0 1 1 0 8 0 vmmpekpl 168 24898 0 24854 3 0 3 3 0 8 0 vmmpepl 168 178034 0 176332 111 20 91 92 0 357 14 vmsppl 344 2863 0 2824 5 1 4 4 0 8 0 rwobjpl 24 57583 0 48771 56 1 55 55 0 8 0 pdppl 4096 5734 0 5659 247 168 79 82 0 8 4 pvpl 32 1351307 0 1342146 513 387 126 226 0 265 32 pmappl 216 2863 0 2824 4 1 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1315 0 957 26 13 13 26 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a5bc528,dead4110dead4110,0,80000d30,fffffd8067b26890,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a5bc528,dead4110dead4110,0,80000d30,fffffd8067b26890,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8067b26890,4,d30,0,ffff80002a5bc528) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8067b26890,4,d30,0,ffff80002a5bc528) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a5bc528,ffff8000376210c0,ffff800037621010) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff8000376210c0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x5d329f95ef0, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a5bc528,dead4110dead4110,0,80000d30,fffffd8067b26890,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a5bc528,dead4110dead4110,0,80000d30,fffffd8067b26890,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8067b26890,4,d30,0,ffff80002a5bc528) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8067b26890,4,d30,0,ffff80002a5bc528) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a5bc528,ffff8000376210c0,ffff800037621010) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff8000376210c0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x5d329f95ef0, count: -5