kernel: protection fault trap, code=0 Stopped at done_flush+0x38: movl %eax,%dr6 ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic the kernel did not panic ddb{0}> trace done_flush() at done_flush+0x38 vm_run(ffff80002c904740) at vm_run+0x304 sys/arch/amd64/amd64/vmm.c:4492 vmmioctl(a00,c0205602,ffff80002c904740,41,ffff80002e3957b0) at vmmioctl+0x192 sys/arch/amd64/amd64/vmm.c:661 VOP_IOCTL(fffffd806ec94910,c0205602,ffff80002c904740,41,fffffd807f7d7600,ffff80002e3957b0) at VOP_IOCTL+0x96 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd8065f886a0,c0205602,ffff80002c904740,ffff80002e3957b0) at vn_ioctl+0xbc sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80002e3957b0,ffff80002c904858,ffff80002c9048b0) at sys_ioctl+0x4a2 syscall(ffff80002c904920) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff80002c904920) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf47449d1890, count: -8 ddb{0}> show registers rdi 0x6c14 __ALIGN_SIZE+0x5c14 rsi 0xffff80002e34fe38 rbp 0xffff80002c9044a0 rbx 0x756e6547 rdx 0x49656e69 rcx 0x6c65746e rax 0xfffffffffffffffe r8 0 r9 0x10000 __ALIGN_SIZE+0xf000 r10 0x1381c4455f1b2d73 r11 0x8ca91833fd7769dc r12 0xffffffff829d7278 dt_prov_static r13 0x246 r14 0xffff80002e34f800 r15 0xffff80002c904740 rip 0xffffffff81ebc850 done_flush+0x38 cs 0x8 rflags 0x10046 __ALIGN_SIZE+0xf046 rsp 0xffff80002c9042f6 ss 0x10 done_flush+0x38: movl %eax,%dr6 ddb{0}> show proc PROC (syz-executor.4) pid=414817 stat=onproc flags process=0 proc=4000000 pri=32, usrpri=83, nice=20 forw=0xffffffffffffffff, list=0xffff80002468aa90,0xffff80002e395d00 process=0xffff8000fffeba48 user=0xffff80002c8ff000, vmspace=0xfffffd806a2b4ba8 estcpu=36, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 11409 209349 47848 0 2 0 syz-executor.0 11409 132277 47848 0 2 0x4000000 syz-executor.0 12276 491528 16550 0 2 0 syz-executor.2 12276 481693 16550 0 3 0x4000080 fsleep syz-executor.2 43843 42287 37240 0 2 0 syz-executor.7 43843 28367 37240 0 3 0x4000080 fsleep syz-executor.7 43843 71650 37240 0 3 0x4000080 fsleep syz-executor.7 81423 61502 48608 0 2 0 syz-executor.4 *81423 414817 48608 0 7 0x4000000 syz-executor.4 20582 140996 44441 0 2 0 syz-executor.1 20582 213492 44441 0 2 0x4000000 syz-executor.1 78720 170756 52799 0 2 0 syz-executor.6 78720 13050 52799 0 3 0x4000080 fsleep syz-executor.6 98151 126702 22256 0 2 0 syz-executor.5 98151 446094 22256 0 2 0x4000000 syz-executor.5 98151 417082 22256 0 3 0x4000080 fsleep syz-executor.5 47153 5492 55010 0 2 0x2 syz-executor.3 52799 360986 55010 0 3 0x82 nanoslp syz-executor.6 44441 87163 55010 0 2 0x482 syz-executor.1 47848 263872 55010 0 2 0x482 syz-executor.0 22256 153008 55010 0 2 0x482 syz-executor.5 43586 300951 0 0 3 0x14200 acct acct 48608 73723 55010 0 3 0x82 nanoslp syz-executor.4 16550 253381 55010 0 2 0x482 syz-executor.2 37240 447945 55010 0 2 0x482 syz-executor.7 58133 424778 0 0 3 0x14280 nfsidl nfsio 32518 305487 0 0 3 0x14280 nfsidl nfsio 79256 326449 0 0 3 0x14280 nfsidl nfsio 87191 159327 0 0 3 0x14280 nfsidl nfsio 25126 149322 0 0 3 0x14280 nfsidl nfsio 95924 97080 0 0 3 0x14280 nfsidl nfsio 65347 187044 0 0 3 0x14280 nfsidl nfsio 46887 497037 0 0 3 0x14280 nfsidl nfsio 48928 11829 0 0 3 0x14280 nfsidl nfsio 87661 141955 0 0 3 0x14280 nfsidl nfsio 77740 325125 0 0 3 0x14280 nfsidl nfsio 15737 195603 0 0 3 0x14280 nfsidl nfsio 86248 34929 0 0 3 0x14280 nfsidl nfsio 72515 376077 0 0 3 0x14280 nfsidl nfsio 84972 124422 0 0 3 0x14280 nfsidl nfsio 67218 111577 0 0 3 0x14280 nfsidl nfsio 19754 74699 0 0 3 0x14280 nfsidl nfsio 87770 514635 0 0 3 0x14280 nfsidl nfsio 23175 322082 0 0 3 0x14280 nfsidl nfsio 11792 368337 0 0 3 0x14280 nfsidl nfsio 80002 274893 0 0 3 0x14200 bored sosplice 55010 78824 26777 0 3 0x82 kqread syz-fuzzer 55010 36884 26777 0 3 0x4000082 nanoslp syz-fuzzer 55010 126718 26777 0 3 0x4000082 nanoslp syz-fuzzer 55010 86736 26777 0 3 0x4000082 thrsleep syz-fuzzer 55010 483672 26777 0 3 0x4000082 thrsleep syz-fuzzer 55010 315642 26777 0 3 0x4000082 thrsleep syz-fuzzer 55010 423449 26777 0 3 0x4000082 thrsleep syz-fuzzer 55010 126589 26777 0 3 0x4000082 thrsleep syz-fuzzer 55010 512223 26777 0 3 0x4000082 thrsleep syz-fuzzer 26777 198197 73210 0 3 0x10008a sigsusp ksh 73210 174687 55108 0 3 0x9a kqread sshd 58705 386575 1 0 3 0x100083 ttyin getty 55108 6409 1 0 3 0x88 kqread sshd 56981 198067 55396 74 3 0x1100092 bpf pflogd 55396 355076 1 0 3 0x80 netio pflogd 45040 282209 62272 73 3 0x1100090 kqread syslogd 62272 168708 1 0 3 0x100082 netio syslogd 17376 486497 1 0 3 0x100080 kqread resolvd 44411 3869 68659 77 3 0x100092 kqread dhcpleased 65745 347685 68659 77 3 0x100092 kqread dhcpleased 68659 396901 1 0 3 0x80 kqread dhcpleased 59293 496569 0 0 3 0x14200 bored smr 58537 2515 0 0 2 0x14200 zerothread 4721 342604 0 0 3 0x14200 aiodoned aiodoned 56186 177703 0 0 3 0x14200 syncer update 20624 265553 0 0 3 0x14200 cleaner cleaner 68416 338374 0 0 3 0x14200 reaper reaper 99876 36209 0 0 3 0x14200 pgdaemon pagedaemon 60427 323409 0 0 3 0x14200 bored viomb 97620 358464 0 0 3 0x40014200 acpi0 acpi0 89204 140979 0 0 7 0x40014200 idle1 36853 172667 0 0 3 0x14200 bored softnet 18366 64561 0 0 3 0x14200 bored softnet 16823 517277 0 0 3 0x14200 bored softnet 4911 299414 0 0 3 0x14200 bored softnet 76595 105027 0 0 3 0x14200 bored systqmp 66861 23306 0 0 3 0x14200 bored systq 83052 287059 0 0 3 0x40014200 bored softclock 66385 464010 0 0 3 0x40014200 idle0 1 348941 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 81423 (syz-executor.4) thread 0xffff80002e3957b0 (414817) Process 47153 (syz-executor.3) thread 0xffff80002120a2b0 (5492) ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10223 6517K 7104K 78643K 25381 0 pcb 13 22K 26K 78643K 2224 0 rtable 181 11K 14K 78643K 2808 0 ifaddr 85 21K 24K 78643K 1063 0 sysctl 3 1K 1K 78643K 3 0 counters 52 35K 36K 78643K 368 0 ioctlops 0 0K 8K 78643K 3236 0 iov 0 0K 28K 78643K 1106 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 5 0 vnodes 1396 87K 88K 78643K 6455 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 60 0 VM map 2 1K 1K 78643K 2 0 sem 12 1K 1K 78643K 781 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 17 61K 89K 78643K 9374 0 sigio 0 0K 0K 78643K 885 0 proc 72 91K 115K 78643K 2387 0 subproc 104 6K 6K 78643K 819 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 446 0 in_multi 67 4K 7K 78643K 901 0 ether_multi 1 0K 0K 78643K 52 0 mrt 1 0K 0K 78643K 29 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 247 1102K 1102K 78643K 247 0 exec 0 0K 2K 78643K 3563 0 pfkey data 0 0K 0K 78643K 3 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 386 584K 589K 78643K 52294 0 UVM aobj 131 4K 4K 78643K 171 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 240 0 NDP 14 0K 2K 78643K 302 0 temp 292 5056K 5272K 78643K 70102 0 kqueue 12 18K 24K 78643K 709 0 SYN cache 2 16K 16K 78643K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 521 0 518 5 3 2 3 0 8 1 rtentry 112 873 0 806 5 1 4 4 0 8 0 unpcb 136 8127 0 8112 78 75 3 6 0 8 2 syncache 296 86 0 86 17 17 0 1 0 8 0 tcpqe 32 159 0 159 9 9 0 1 0 8 0 tcpcb 736 9347 0 9297 166 159 7 20 0 8 2 arp 120 151 0 139 1 0 1 1 0 8 0 inpcb 312 15487 0 15480 129 120 9 17 0 8 8 ip6q 72 3 0 3 1 1 0 1 0 8 0 ip6af 40 9 0 9 1 1 0 1 0 8 0 nd6 48 208 0 193 1 0 1 1 0 8 0 pkpcb 40 45 0 45 9 8 1 1 0 8 1 kcovpl 48 63 0 55 1 0 1 1 0 8 0 ppxss 1248 58 0 58 13 12 1 1 0 8 1 pfstscr 40 3 0 3 1 1 0 1 0 8 0 pffrag 232 15 0 15 3 3 0 1 0 482 0 pffrnode 88 15 0 15 3 3 0 1 0 8 0 pffrent 40 48 0 48 5 5 0 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfrktable 1344 90 0 79 4 3 1 2 0 8 0 pftag 88 3 0 0 1 0 1 1 0 8 0 pfqueue 264 4 0 4 1 1 0 1 0 8 0 pfstitem 24 31 0 29 1 0 1 1 0 8 0 pfstkey 112 35 0 33 1 0 1 1 0 8 0 pfstate 336 30 0 28 2 1 1 2 0 8 0 pfsrctr 152 9 0 9 1 1 0 1 0 8 0 pfrule 1360 110 0 69 4 0 4 4 0 8 0 rttmr 64 7 0 7 2 2 0 1 0 8 0 art_heap8 4096 2 0 1 2 1 1 2 0 8 0 art_heap4 256 3655 0 3335 48 21 27 30 0 8 1 art_table 32 3657 0 3336 4 0 4 4 0 8 0 art_node 16 864 0 806 1 0 1 1 0 8 0 sysvmsgpl 40 5 0 3 1 0 1 1 0 8 0 semapl 112 779 0 769 1 0 1 1 0 8 0 shmpl 112 168 0 40 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 13405 0 11945 92 0 92 92 0 8 0 ffsino 272 13405 0 11945 98 0 98 98 0 8 0 nchpl 144 25273 0 23631 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 224 5926 0 0 349 0 349 349 0 8 0 namei 1024 92498 0 92497 5 4 1 2 0 8 0 percpumem 16 196 0 158 1 0 1 1 0 8 0 vcpupl 2048 34 0 0 5 0 5 5 0 8 0 vmpool 560 112 0 78 3 0 3 3 0 8 0 pfiaddrpl 120 42 0 23 1 0 1 1 0 8 0 kstatmem 264 340 0 316 3 1 2 3 0 8 0 scsiplug 72 6 0 6 2 2 0 1 0 8 0 scxspl 216 70181 0 70181 16 15 1 8 0 8 1 plimitpl 152 1372 0 1357 1 0 1 1 0 8 0 sigapl 424 9584 0 9515 10 2 8 8 0 8 0 futexpl 64 95426 0 95421 2 1 1 1 0 8 0 knotepl 120 587 0 0 9 0 9 9 0 8 0 kqueuepl 216 2398 0 2390 47 44 3 5 0 8 2 pipepl 336 3064 0 3036 89 84 5 8 0 8 2 fdescpl 496 9545 0 9515 5 0 5 5 0 8 0 filepl 152 71620 0 71378 113 97 16 20 0 8 6 lockfpl 104 2663 0 2661 8 7 1 4 0 8 0 lockfspl 48 700 0 698 1 0 1 1 0 8 0 sessionpl 144 79 0 62 1 0 1 1 0 8 0 pgrppl 48 160 0 143 1 0 1 1 0 8 0 ucredpl 96 7861 0 7849 1 0 1 1 0 8 0 zombiepl 144 9515 0 9515 2 1 1 1 0 8 1 processpl 1064 9584 0 9515 5 0 5 5 0 8 0 procpl 672 23460 0 23374 24 16 8 10 0 8 0 srpgc 96 101 0 101 12 11 1 1 0 8 1 sosppl 168 22 0 22 7 7 0 1 0 8 0 sockpl 480 24222 0 24197 389 377 12 29 0 8 8 mcl64k 65536 6 0 0 1 0 1 1 0 8 0 mcl16k 16384 4 0 0 1 0 1 1 0 8 0 mcl12k 12288 11 0 0 2 0 2 2 0 8 0 mcl9k 9216 5 0 0 1 0 1 1 0 8 0 mcl8k 8192 12 0 0 2 0 2 2 0 8 0 mcl4k 4096 11 0 0 2 0 2 2 0 8 0 mcl2k2 2112 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 284 0 0 26 0 26 26 0 8 0 mtagpl 96 615 0 0 14 1 13 14 0 8 0 mbufpl 256 1072 0 0 53 0 53 53 0 8 0 bufpl 288 16715 0 10383 453 0 453 453 0 8 0 anonpl 24 1751019 0 1735043 220 106 114 136 0 186 0 amapchunkpl 152 151190 0 150415 46 13 33 42 0 158 0 amappl16 200 23546 0 22962 103 71 32 44 0 8 0 amappl15 192 1406 0 1405 1 0 1 1 0 8 0 amappl14 184 690 0 686 1 0 1 1 0 8 0 amappl13 176 1477 0 1472 1 0 1 1 0 8 0 amappl12 168 942 0 937 1 0 1 1 0 8 0 amappl11 160 1167 0 1148 4 3 1 2 0 8 0 amappl10 152 1429 0 1424 1 0 1 1 0 8 0 amappl9 144 1528 0 1523 1 0 1 1 0 8 0 amappl8 136 3063 0 2971 5 1 4 4 0 8 0 amappl7 128 1866 0 1846 1 0 1 1 0 8 0 amappl6 120 1603 0 1583 2 1 1 2 0 8 0 amappl5 112 8524 0 8502 1 0 1 1 0 8 0 amappl4 104 3952 0 3919 3 2 1 2 0 8 0 amappl3 96 27716 0 27661 2 0 2 2 0 8 0 amappl2 88 11325 0 11253 3 1 2 3 0 8 0 amappl1 80 222481 0 221793 24 9 15 20 0 8 0 amappl 88 50737 0 50515 6 0 6 6 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 170 0 40 3 0 3 3 0 8 0 uaddrrnd 24 9657 0 9593 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 9657 0 9593 1 0 1 1 0 8 0 vmmpekpl 168 73153 0 73086 5 1 4 4 0 8 0 vmmpepl 168 935422 0 932598 279 148 131 150 0 357 0 vmsppl 368 9656 0 9593 7 1 6 6 0 8 0 rwobjpl 56 222376 0 214616 129 18 111 114 0 8 1 pdppl 4096 19321 0 19220 579 476 103 103 0 8 2 pvpl 32 3551206 0 3530991 370 179 191 230 0 265 0 pmappl 248 9656 0 9593 5 0 5 5 0 8 0 extentpl 40 58 0 38 1 0 1 1 0 8 0 phpool 112 1770 0 869 27 0 27 27 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace done_flush() at done_flush+0x38 vm_run(ffff80002c904740) at vm_run+0x304 sys/arch/amd64/amd64/vmm.c:4492 vmmioctl(a00,c0205602,ffff80002c904740,41,ffff80002e3957b0) at vmmioctl+0x192 sys/arch/amd64/amd64/vmm.c:661 VOP_IOCTL(fffffd806ec94910,c0205602,ffff80002c904740,41,fffffd807f7d7600,ffff80002e3957b0) at VOP_IOCTL+0x96 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd8065f886a0,c0205602,ffff80002c904740,ffff80002e3957b0) at vn_ioctl+0xbc sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80002e3957b0,ffff80002c904858,ffff80002c9048b0) at sys_ioctl+0x4a2 syscall(ffff80002c904920) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff80002c904920) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf47449d1890, count: -8 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{1}> trace x86_ipi_db(ffff800020cd8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206 sched_idle(ffff800020cd8ff0) at sched_idle+0x417 sys/kern/kern_sched.c:178 end trace frame: 0x0, count: -5