kernel: protection fault trap, code=0 Stopped at sys_msgrcv+0x3f2: movq 0x10(%r13),%rdi ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace sys_msgrcv(ffff800031539260,ffff80003c993d30,ffff80003c993c80) at sys_msgrcv+0x3f2 msg_copyout sys/kern/sysv_msg.c:639 [inline] sys_msgrcv(ffff800031539260,ffff80003c993d30,ffff80003c993c80) at sys_msgrcv+0x3f2 sys/kern/sysv_msg.c:349 syscall(ffff80003c993d30) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c993d30) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa0fddf6b000, count: -3 ddb> show registers rdi 0 rsi 0x200000001208 rbp 0xffff80003c993c60 rbx 0 rdx 0 rcx 0 rax 0xa r8 0x7f7fffffc000 r9 0 r10 0xc53e4262b04783 r11 0x66fe5ceb5a290dc8 r12 0xfffffd806860fe38 r13 0xdeaf4152deaf4152 r14 0xffff800001572100 r15 0xa rip 0xffffffff82b8cb32 sys_msgrcv+0x3f2 cs 0x8 rflags 0x10202 __ALIGN_SIZE+0xf202 rsp 0xffff80003c993bc0 ss 0x10 sys_msgrcv+0x3f2: movq 0x10(%r13),%rdi ddb> show proc PROC (syz-executor) tid=195888 pid=32666 tcnt=4 stat=onproc flags process=0 proc=4000000 runpri=36, usrpri=80, slppri=36, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000315382d0,0xffff800031538fd8 process=0xffff80003ca48490 user=0xffff80003c98e000, vmspace=0xfffffd8079a55d00 estcpu=30, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 47616 481731 24281 0 2 0 syz-executor 47616 157415 24281 0 3 0x4000080 fsleep syz-executor 47625 175107 25794 0 2 0 syz-executor 47625 503200 25794 0 2 0x4000000 syz-executor 47625 136100 25794 0 2 0x4000000 syz-executor 99073 493989 10090 0 2 0 syz-executor 99073 20274 10090 0 3 0x4000080 fsleep syz-executor 99073 4220 10090 0 3 0x4000080 fsleep syz-executor 72001 141347 4820 0 2 0 syz-executor 72001 466970 4820 0 2 0x4000000 syz-executor 6569 156844 92630 0 2 0 syz-executor 6569 370405 92630 0 3 0x4000080 fsleep syz-executor 6569 433499 92630 0 2 0x4000000 syz-executor 32666 78079 93344 0 2 0 syz-executor *32666 195888 93344 0 7 0x4000000 syz-executor 32666 208398 93344 0 3 0x4000080 fsleep syz-executor 32666 195559 93344 0 2 0x4000000 syz-executor 51610 295633 3984 0 4 0x82000 syz-executor 51610 223484 3984 0 4 0x4082000 syz-executor 51610 493529 3984 0 4 0x4082000 syz-executor 51610 500627 3984 0 2 0x4002000 syz-executor 92630 101052 28382 0 3 0x82 nanoslp syz-executor 21945 77469 0 0 3 0x14280 nfsidl nfsio 6130 255576 0 0 3 0x14280 nfsidl nfsio 63593 249887 0 0 3 0x14280 nfsidl nfsio 9910 113302 0 0 3 0x14280 nfsidl nfsio 75002 344896 0 0 3 0x14280 nfsidl nfsio 34497 177318 0 0 3 0x14280 nfsidl nfsio 96111 229978 0 0 3 0x14280 nfsidl nfsio 44114 490733 0 0 3 0x14280 nfsidl nfsio 19923 293864 0 0 3 0x14280 nfsidl nfsio 20434 216719 0 0 3 0x14280 nfsidl nfsio 24416 164411 0 0 3 0x14280 nfsidl nfsio 5515 306026 0 0 3 0x14280 nfsidl nfsio 59369 251825 0 0 3 0x14280 nfsidl nfsio 21872 487452 0 0 3 0x14280 nfsidl nfsio 51708 516155 0 0 3 0x14280 nfsidl nfsio 40269 23355 0 0 3 0x14280 nfsidl nfsio 10656 112690 0 0 3 0x14280 nfsidl nfsio 48245 311508 0 0 3 0x14280 nfsidl nfsio 63691 82376 0 0 3 0x14280 nfsidl nfsio 28263 328413 0 0 3 0x14280 nfsidl nfsio 19051 464162 0 0 3 0x14200 bored sosplice 25794 58678 28382 0 3 0x82 nanoslp syz-executor 24281 142716 28382 0 3 0x82 nanoslp syz-executor 4820 404240 28382 0 2 0x3 syz-executor 93344 165659 28382 0 3 0x82 nanoslp syz-executor 19132 221273 28382 0 3 0x82 nanoslp syz-executor 10090 244927 28382 0 3 0x82 nanoslp syz-executor 3984 107159 28382 0 3 0x82 nanoslp syz-executor 28382 500793 52242 0 3 0x82 kqread syz-executor 52242 498943 1245 0 3 0x10008a sigsusp ksh 1245 105494 52992 0 3 0x98 kqread sshd-session 52992 419963 73081 0 3 0x92 kqread sshd-session 24985 290473 1 0 3 0x100083 ttyopn getty 73081 154195 1 0 3 0x88 kqread sshd 5939 252493 11294 73 3 0x1100090 kqread syslogd 11294 455293 1 0 3 0x100082 sbwait syslogd 50035 17596 1 0 3 0x100080 kqread resolvd 97940 240718 49934 77 3 0x100092 kqread dhcpleased 97328 248959 49934 77 3 0x100092 kqread dhcpleased 49934 107961 1 0 3 0x80 kqread dhcpleased 13934 261510 0 0 3 0x14200 bored smr 32167 70069 0 0 2 0x14200 zerothread 45955 337625 0 0 3 0x14200 aiodoned aiodoned 76337 322500 0 0 3 0x14200 syncer update 66764 462909 0 0 3 0x14200 cleaner cleaner 12105 421433 0 0 3 0x14200 reaper reaper 39649 138319 0 0 3 0x14200 pgdaemon pagedaemon 46704 338404 0 0 3 0x14200 bored viomb 48332 338243 0 0 3 0x40014200 acpi0 acpi0 47613 55934 0 0 3 0x14200 bored softnet7 52413 383305 0 0 3 0x14200 bored softnet6 72162 116276 0 0 3 0x14200 bored softnet5 18821 429549 0 0 3 0x14200 bored softnet4 19406 349312 0 0 3 0x14200 bored softnet3 24778 472828 0 0 3 0x14200 bored softnet2 79753 227737 0 0 3 0x14200 bored softnet1 52276 427625 0 0 3 0x14200 bored softnet0 42125 483406 0 0 3 0x14200 bored systqmp 26911 471546 0 0 3 0x14200 bored systq 96357 209267 0 0 3 0x40014200 tmoslp softclock 79462 151692 0 0 3 0x40014200 idle0 1 277708 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10205 11048K 11335K 166960K 12072 0 pcb 17 15K 16K 166960K 170 0 rtable 216 8K 8K 166960K 382 0 pf 32 13K 17K 166960K 86 0 ifaddr 43 7K 8K 166960K 70 0 ifgroup 50 2K 2K 166960K 101 0 sysctl 3 1K 9K 166960K 10 0 counters 32 17K 18K 166960K 56 0 ioctlops 0 0K 4K 166960K 175 0 iov 0 0K 24K 166960K 44 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1409 89K 89K 166960K 1912 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 11 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 24 0 dirhash 12 2K 2K 166960K 21 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 97K 166960K 675 0 sigio 0 0K 0K 166960K 24 0 proc 60 59K 124K 166960K 543 0 subproc 72 4K 4K 166960K 82 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 79 0 in_multi 103 7K 7K 166960K 126 0 ether_multi 1 0K 0K 166960K 2 0 mrt 0 0K 0K 166960K 4 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 223 996K 996K 166960K 223 0 exec 0 0K 1K 166960K 511 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 235 151K 174K 166960K 7559 0 UVM aobj 13 2K 2K 166960K 13 0 pinsyscall 39 78K 96K 166960K 1748 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 33 0 NDP 11 0K 2K 166960K 45 0 temp 53 8638K 8707K 166960K 21672 0 kqueue 13 20K 28K 166960K 134 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 80 0 77 1 0 1 1 0 8 0 rtentry 136 129 0 38 4 0 4 4 0 8 0 unpcb 144 636 0 619 6 2 4 4 0 8 3 syncache 336 8 0 8 2 1 1 1 0 8 1 tcpqe 32 4 0 4 2 1 1 1 0 8 1 tcpcb 736 263 0 254 14 12 2 13 0 8 1 arp 88 16 0 3 1 0 1 1 0 8 0 ipq 40 1 0 0 1 0 1 1 0 8 0 ipqe 40 8 0 7 1 0 1 1 0 8 0 inpcb 328 729 0 716 16 11 5 13 0 8 3 nd6 104 27 0 9 1 0 1 1 0 8 0 pkpcb 40 14 0 13 2 1 1 1 0 8 0 kcovpl 48 9 0 1 1 0 1 1 0 8 0 ppxss 1072 17 0 17 2 1 1 1 0 8 1 pppxif 1384 3 0 3 2 1 1 1 0 8 1 pfstscr 40 1 0 1 1 1 0 1 0 8 0 pfstitem 24 4 0 0 1 0 1 1 0 8 0 pfstkey 128 5 0 1 1 0 1 1 0 8 0 pfstate 384 3 0 1 1 0 1 1 0 8 0 pfrule 1344 3 0 3 1 1 0 1 0 8 0 rttmr 136 2 0 2 1 1 0 1 0 8 0 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 650 0 182 32 2 30 30 0 8 0 art_table 40 653 0 182 5 0 5 5 0 8 0 art_node 32 129 0 48 1 0 1 1 0 8 0 sysvmsgpl 40 7 0 6 1 0 1 1 0 8 0 semupl 112 2 0 2 1 1 0 1 0 8 0 semapl 112 21 0 11 1 0 1 1 0 8 0 shmpl 112 10 0 0 1 0 1 1 0 8 0 dirhash 1024 23 0 6 3 0 3 3 0 8 0 dino2pl 256 2584 0 1091 95 0 95 95 0 8 0 ffsino 256 2584 0 1091 95 0 95 95 0 8 0 nchpl 144 3492 0 1811 63 0 63 63 0 8 0 rtmask 32 1 0 1 1 1 0 1 0 8 0 uvmvnodes 80 2992 0 0 62 0 62 62 0 8 0 vnodes 216 2992 0 0 167 0 167 167 0 8 0 namei 1024 12170 0 12168 3 2 1 2 0 8 0 kstatmem 264 54 0 32 2 0 2 2 0 8 0 scsiplug 72 6 0 6 1 1 0 1 0 8 0 scxspl 216 12329 0 12329 8 7 1 8 1 8 1 plimitpl 152 206 0 190 1 0 1 1 0 8 0 sigapl 424 980 0 909 9 0 9 9 0 8 0 knotepl 120 27673 0 27626 36 28 8 18 0 8 6 kqueuepl 184 271 0 262 3 2 1 3 0 8 0 pipepl 304 147 0 120 3 0 3 3 0 8 0 fdescpl 448 939 0 909 5 1 4 5 0 8 0 filepl 120 5737 0 5521 14 3 11 12 0 8 3 lockfpl 104 259 0 257 2 1 1 2 0 8 0 lockfspl 48 119 0 117 1 0 1 1 0 8 0 sessionpl 144 27 0 19 1 0 1 1 0 8 0 pgrppl 48 48 0 32 1 0 1 1 0 8 0 ucredpl 104 868 0 857 1 0 1 1 0 8 0 zombiepl 144 1035 0 1034 1 0 1 1 0 8 0 processpl 1168 980 0 909 6 0 6 6 0 8 0 procpl 664 1858 0 1773 8 0 8 8 0 8 0 sosppl 168 3 0 3 1 0 1 1 0 8 1 sockpl 552 1479 0 1445 17 9 8 13 0 8 4 mcl64k 65536 59 0 59 1 0 1 1 0 8 1 mcl16k 16384 8 0 8 2 1 1 1 0 8 1 mcl12k 12288 1 0 1 1 1 0 1 0 8 0 mcl9k 9216 5 0 5 2 1 1 1 0 8 1 mcl8k 8192 21 0 20 1 0 1 1 0 8 0 mcl4k 4096 3250 0 3200 16 8 8 15 0 8 1 mcl2k2 2112 6 0 6 2 1 1 1 0 8 1 mcl2k 2048 888 0 885 2 0 2 2 0 8 1 mtagpl 96 13 0 6 1 0 1 1 0 8 0 mbufpl 256 9935 0 9724 16 1 15 15 0 8 0 bufpl 280 4325 0 119 301 0 301 301 0 8 0 anonpl 24 140125 0 136871 55 9 46 46 0 187 19 amapchunkpl 152 25016 0 24515 43 14 29 35 0 158 7 amappl16 200 2028 0 1999 19 7 12 15 0 8 8 amappl15 192 6 0 6 1 1 0 1 0 8 0 amappl14 184 111 0 101 1 0 1 1 0 8 0 amappl13 176 4 0 4 1 1 0 1 0 8 0 amappl12 168 1571 0 1541 3 1 2 3 0 8 0 amappl11 160 47 0 37 1 0 1 1 0 8 0 amappl10 152 19 0 19 1 1 0 1 0 8 0 amappl9 144 247 0 247 1 1 0 1 0 8 0 amappl8 136 24 0 23 1 0 1 1 0 8 0 amappl7 128 103 0 93 1 0 1 1 0 8 0 amappl6 120 197 0 193 1 0 1 1 0 8 0 amappl5 112 136 0 130 1 0 1 1 0 8 0 amappl4 104 277 0 263 1 0 1 1 0 8 0 amappl3 96 4787 0 4675 4 0 4 4 0 8 0 amappl2 88 655 0 600 2 0 2 2 0 8 0 amappl1 80 11410 0 10848 15 1 14 14 0 8 1 amappl 88 6777 0 6608 5 0 5 5 0 92 0 dma16384 16384 1 0 1 1 0 1 1 0 8 1 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 7 0 7 2 1 1 1 0 8 1 dma128 128 256 0 256 1 1 0 1 0 8 0 dma64 64 7 0 7 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 12 0 0 1 0 1 1 0 8 0 uaddrrnd 24 939 0 909 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 939 0 909 1 0 1 1 0 8 0 vmmpekpl 168 9004 0 8963 3 0 3 3 0 8 0 vmmpepl 168 64846 0 62932 105 5 100 100 0 357 13 vmsppl 368 938 0 909 4 1 3 4 0 8 0 rwobjpl 40 21689 0 17827 41 0 41 41 0 8 1 pdppl 4096 1884 0 1818 104 38 66 82 0 8 0 pvpl 32 399869 0 391094 135 16 119 119 0 265 33 pmappl 216 938 0 909 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 409 0 69 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace sys_msgrcv(ffff800031539260,ffff80003c993d30,ffff80003c993c80) at sys_msgrcv+0x3f2 msg_copyout sys/kern/sysv_msg.c:639 [inline] sys_msgrcv(ffff800031539260,ffff80003c993d30,ffff80003c993c80) at sys_msgrcv+0x3f2 sys/kern/sysv_msg.c:349 syscall(ffff80003c993d30) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c993d30) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa0fddf6b000, count: -3 ddb> machine ddbcpu 1 No such command ddb> trace sys_msgrcv(ffff800031539260,ffff80003c993d30,ffff80003c993c80) at sys_msgrcv+0x3f2 msg_copyout sys/kern/sysv_msg.c:639 [inline] sys_msgrcv(ffff800031539260,ffff80003c993d30,ffff80003c993c80) at sys_msgrcv+0x3f2 sys/kern/sysv_msg.c:349 syscall(ffff80003c993d30) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c993d30) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa0fddf6b000, count: -3