kernel: protection fault trap, code=0 Stopped at lf_advlock+0x2f1: incl 0x28(%r12) ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace lf_advlock(ffff80000151b6e0,0,fffffd80616e5530,2,ffff80003c9cd6e0,20) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff80000151b6e0,0,fffffd80616e5530,2,ffff80003c9cd6e0,20) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd8063e39bd0,fffffd80616e5530,2,ffff80003c9cd6e0,20) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 vn_closefile(fffffd80616e5530,ffff80003c945a28) at vn_closefile+0xac sys/kern/vfs_vnops.c:615 fdrop(fffffd80616e5530,ffff80003c945a28) at fdrop+0x121 sys/kern/kern_descrip.c:1280 closef(fffffd80616e5530,ffff80003c945a28) at closef+0x190 sys/kern/kern_descrip.c:1264 fdfree(ffff80003c945a28) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80003c945a28,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80003c945a28,ffff80003c9cd9c0,ffff80003c9cd910) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003c9cd9c0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9cd9c0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7a3003f7e770, count: -10 ddb> show registers rdi 0xffff80003c945a2c rsi 0xffff80003c945a2c rbp 0xffff80003c9cd630 rbx 0 rdx 0 rcx 0xffffffff837b1ff0 cpu_info_full_primary+0x1ff0 rax 0xffff80003c945a28 r8 0 r9 0 r10 0x793a33754c4946ba r11 0x3bbd127e1ed2089e r12 0xdeaf4152deaf4152 r13 0x2 r14 0xffff80003c9cd6e0 r15 0x1 rip 0xffffffff81e5f481 lf_advlock+0x2f1 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c9cd5a0 ss 0x10 lf_advlock+0x2f1: incl 0x28(%r12) ddb> show proc PROC (syz-executor) tid=513955 pid=51035 tcnt=0 stat=onproc flags process=1008 proc=2000 runpri=32, usrpri=81, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff80003c945a28 scnt=-1 ecnt=1 forw=0xffffffffffffffff, list=0xffff80003c9474e8,0xffff80003c944810 process=0xffff8000ffff5b20 user=0xffff80003c9c8000, vmspace=0xfffffd806b21f018 estcpu=31, cpticks=6, pctcpu=0.5, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 51750 307470 34202 0 2 0 syz-executor 51750 471776 34202 0 2 0x4000000 syz-executor 51750 474299 34202 0 3 0x4000080 fsleep syz-executor 51750 251930 34202 0 3 0x4000080 fsleep syz-executor 51750 328909 34202 0 3 0x4000080 fsleep syz-executor 63644 428926 73884 0 2 0x10 syz-executor 63644 359486 73884 0 3 0x4000090 fifor syz-executor 63644 178734 73884 0 3 0x4000090 fsleep syz-executor 94324 476056 13644 0 2 0 syz-executor 94324 497440 13644 0 3 0x4000080 fsleep syz-executor 94324 105174 13644 0 3 0x4000080 fsleep syz-executor 94324 217726 13644 0 3 0x4000080 fsleep syz-executor 94324 101456 13644 0 3 0x4000080 fsleep syz-executor 34156 206395 0 0 3 0x14200 acct acct 88566 316766 0 0 3 0x14280 nfsidl nfsio 36205 89850 0 0 3 0x14280 nfsidl nfsio 93423 185353 0 0 3 0x14280 nfsidl nfsio 90222 83229 0 0 3 0x14280 nfsidl nfsio 94104 113139 0 0 3 0x14280 nfsidl nfsio 78079 129912 0 0 3 0x14280 nfsidl nfsio 48909 381045 0 0 3 0x14280 nfsidl nfsio 49517 52823 0 0 3 0x14280 nfsidl nfsio 41758 114591 0 0 3 0x14280 nfsidl nfsio 66650 383147 0 0 3 0x14280 nfsidl nfsio 34011 225128 0 0 3 0x14280 nfsidl nfsio 64118 95604 0 0 3 0x14280 nfsidl nfsio 45068 471249 0 0 3 0x14280 nfsidl nfsio 42996 324960 0 0 3 0x14280 nfsidl nfsio 94478 147901 0 0 3 0x14280 nfsidl nfsio 51473 502200 0 0 3 0x14280 nfsidl nfsio 66747 150680 0 0 3 0x14280 nfsidl nfsio 49955 478531 0 0 3 0x14280 nfsidl nfsio 24144 359896 0 0 3 0x14280 nfsidl nfsio 59180 368750 0 0 3 0x14280 nfsidl nfsio 34202 6078 19649 0 3 0x82 nanoslp syz-executor 73884 272655 19649 0 3 0x82 nanoslp syz-executor 77326 496497 19649 0 3 0x2 lockflk syz-executor 13644 321929 19649 0 3 0x82 nanoslp syz-executor 25938 352153 19649 0 3 0x82 nanoslp syz-executor 43651 262708 19649 0 2 0x3 syz-executor 12620 70026 19649 0 3 0x82 nanoslp syz-executor 42906 214055 19649 0 3 0x82 nanoslp syz-executor 19649 19158 43699 0 3 0x82 kqread syz-executor 43699 58603 4142 0 3 0x10008a sigsusp ksh 4142 51236 9054 0 3 0x98 kqread sshd-session 9054 435413 88760 0 3 0x92 kqread sshd-session 82646 469180 1 0 3 0x100083 ttyopn getty 88760 149045 1 0 3 0x88 kqread sshd 35985 57266 69736 73 3 0x1100090 kqread syslogd 69736 335021 1 0 3 0x100082 sbwait syslogd 8066 490413 1 0 3 0x100080 kqread resolvd 42330 171811 41752 77 3 0x100092 kqread dhcpleased 28131 294461 41752 77 3 0x100092 kqread dhcpleased 41752 157829 1 0 3 0x80 kqread dhcpleased 92154 388079 0 0 3 0x14200 bored smr 66017 429705 0 0 2 0x14200 zerothread 11690 142924 0 0 3 0x14200 aiodoned aiodoned 82556 114778 0 0 3 0x14200 syncer update 76594 120873 0 0 3 0x14200 cleaner cleaner 14778 160135 0 0 2 0x14200 reaper 34360 484115 0 0 3 0x14200 pgdaemon pagedaemon 22150 478312 0 0 3 0x14200 bored viomb 65366 341612 0 0 3 0x40014200 acpi0 acpi0 68305 292001 0 0 3 0x14200 bored softnet0 67303 24881 0 0 3 0x14200 bored systqmp 26737 403019 0 0 3 0x14200 bored systq 53015 145384 0 0 3 0x40014200 tmoslp softclock 34319 28142 0 0 3 0x40014200 idle0 1 259302 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10380 11618K 11708K 166960K 12584 0 pcb 18 13K 14K 166960K 182 0 rtable 184 8K 8K 166960K 469 0 pf 31 13K 67481K 166960K 91 0 ifaddr 33 5K 7K 166960K 78 0 ifgroup 50 2K 2K 166960K 108 0 sysctl 4 1K 9K 166960K 12 0 counters 32 17K 18K 166960K 73 0 ioctlops 0 0K 4K 166960K 165 0 iov 0 0K 16K 166960K 25 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1500 94K 94K 166960K 2079 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 16 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 84 0 dirhash 12 2K 2K 166960K 24 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 15 53K 240K 166960K 798 0 sigio 0 0K 0K 166960K 12 0 proc 60 59K 108K 166960K 550 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 83 0 in_multi 64 4K 7K 166960K 128 0 ether_multi 1 0K 0K 166960K 11 0 mrt 0 0K 0K 166960K 9 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 265 1182K 1182K 166960K 265 0 exec 0 0K 1K 166960K 554 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 228 159K 184K 166960K 9130 0 UVM aobj 25 2K 2K 166960K 26 0 pinsyscall 36 72K 96K 166960K 1863 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 1 0K 0K 166960K 38 0 NDP 11 0K 2K 166960K 52 0 temp 55 8646K 8742K 166960K 34173 0 kqueue 13 20K 32K 166960K 168 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 83 0 80 1 0 1 1 0 8 0 rtentry 136 129 0 59 4 0 4 4 0 8 0 unpcb 144 403 0 386 2 0 2 2 0 8 1 syncache 336 5 0 5 2 1 1 1 0 8 1 tcpqe 32 2 0 2 1 0 1 1 0 8 1 tcpcb 736 313 0 307 10 6 4 7 0 8 3 arp 96 19 0 7 1 0 1 1 0 8 0 ipq 40 4 0 0 1 0 1 1 0 8 0 ipqe 40 9 0 2 1 0 1 1 0 8 0 inpcb 328 783 0 773 12 5 7 7 0 8 4 ip6q 72 1 0 1 1 0 1 1 0 8 1 ip6af 40 2 0 2 1 0 1 1 0 8 1 nd6 112 29 0 13 1 0 1 1 0 8 0 pkpcb 40 5 0 5 2 1 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 38 0 38 1 0 1 1 0 8 1 pppxif 1384 2 0 2 1 0 1 1 0 8 1 pfrktable 1344 2 0 2 1 0 1 1 0 8 1 pfstitem 24 2 0 0 1 0 1 1 0 8 0 pfstkey 128 2 0 0 1 0 1 1 0 8 0 pfstate 384 1 0 0 1 0 1 1 0 8 0 pfrule 1344 2 0 1 1 0 1 1 0 8 0 rttmr 136 2 0 2 1 1 0 1 0 8 0 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 549 0 262 30 5 25 30 0 8 5 art_table 40 552 0 262 5 0 5 5 0 8 0 art_node 32 129 0 67 1 0 1 1 0 8 0 sysvmsgpl 40 6 0 4 1 0 1 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 81 0 71 1 0 1 1 0 8 0 shmpl 112 23 0 1 1 0 1 1 0 8 0 dirhash 1024 25 0 8 3 0 3 3 0 8 0 dino2pl 256 2826 0 1327 95 0 95 95 0 8 0 ffsino 256 2826 0 1327 95 0 95 95 0 8 0 nchpl 144 3944 0 2247 64 0 64 64 0 8 0 rtmask 32 12 0 12 1 0 1 1 0 8 1 vnodes 216 3346 0 0 186 0 186 186 0 8 0 namei 1024 13367 0 13366 3 2 1 2 0 8 0 kstatmem 264 72 0 50 3 1 2 3 0 8 0 scsiplug 72 3 0 3 2 1 1 1 0 8 1 scxspl 216 11989 0 11989 9 1 8 8 1 8 8 plimitpl 152 342 0 326 1 0 1 1 0 8 0 sigapl 424 1095 0 1033 8 0 8 8 0 8 0 knotepl 120 31611 0 31563 32 22 10 16 0 8 8 kqueuepl 184 313 0 303 4 3 1 4 0 8 0 pipepl 304 154 0 127 3 0 3 3 0 8 0 fdescpl 448 1060 0 1033 5 1 4 5 0 8 0 filepl 120 6373 0 6118 14 3 11 11 0 8 1 lockfpl 104 427 0 424 2 0 2 2 0 8 0 lockfspl 48 154 0 151 1 0 1 1 0 8 0 sessionpl 144 23 0 15 1 0 1 1 0 8 0 pgrppl 48 43 0 27 1 0 1 1 0 8 0 ucredpl 104 909 0 896 1 0 1 1 0 8 0 zombiepl 144 1290 0 1287 1 0 1 1 0 8 0 processpl 1152 1095 0 1033 5 0 5 5 0 8 0 procpl 664 2192 0 2120 8 0 8 8 0 8 0 sosppl 176 6 0 6 2 1 1 1 0 8 1 sockpl 552 1289 0 1259 13 5 8 8 0 8 4 mcl64k 65536 123 0 122 2 1 1 1 0 8 0 mcl16k 16384 10 0 10 1 1 0 1 0 8 0 mcl12k 12288 4 0 4 1 1 0 1 0 8 0 mcl9k 9216 2 0 2 1 1 0 1 0 8 0 mcl8k 8192 20 0 20 2 1 1 1 0 8 1 mcl4k 4096 3394 0 3344 14 7 7 14 0 8 0 mcl2k 2048 1115 0 1109 3 1 2 2 0 8 0 mtagpl 96 11 0 5 1 0 1 1 0 8 0 mbufpl 256 11725 0 11586 19 4 15 15 0 8 4 bufpl 280 3686 0 121 255 0 255 255 0 8 0 anonpl 24 168758 0 165679 43 9 34 34 0 187 7 amapchunkpl 152 31552 0 31108 48 11 37 37 0 158 12 amappl16 200 2549 0 2520 6 3 3 5 0 8 0 amappl15 192 5 0 5 1 1 0 1 0 8 0 amappl14 184 8 0 7 1 0 1 1 0 8 0 amappl13 176 407 0 405 1 0 1 1 0 8 0 amappl12 168 1402 0 1366 2 0 2 2 0 8 0 amappl11 160 49 0 49 1 1 0 1 0 8 0 amappl10 152 41 0 31 1 0 1 1 0 8 0 amappl9 144 249 0 249 1 1 0 1 0 8 0 amappl8 136 44 0 43 1 0 1 1 0 8 0 amappl7 128 79 0 78 1 0 1 1 0 8 0 amappl6 120 263 0 252 1 0 1 1 0 8 0 amappl5 112 75 0 68 1 0 1 1 0 8 0 amappl4 104 384 0 360 1 0 1 1 0 8 0 amappl3 96 5102 0 5019 3 0 3 3 0 8 0 amappl2 88 1191 0 1121 2 0 2 2 0 8 0 amappl1 80 11895 0 11367 16 1 15 15 0 8 2 amappl 88 8319 0 8164 6 1 5 5 0 92 0 uvmvnodes 80 3345 0 0 69 0 69 69 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma2048 2048 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 25 0 1 1 0 1 1 0 8 0 uaddrrnd 24 1060 0 1033 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1060 0 1033 1 0 1 1 0 8 0 vmmpekpl 168 10043 0 10009 3 0 3 3 0 8 1 vmmpepl 168 72337 0 70639 92 0 92 92 0 357 10 vmsppl 368 1059 0 1032 4 1 3 4 0 8 0 rwobjpl 40 24399 0 20198 43 0 43 43 0 8 0 pdppl 4096 2126 0 2064 106 40 66 82 0 8 4 pvpl 32 468681 0 460324 119 21 98 100 0 265 11 pmappl 216 1059 0 1032 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 401 0 74 10 0 10 10 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace lf_advlock(ffff80000151b6e0,0,fffffd80616e5530,2,ffff80003c9cd6e0,20) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff80000151b6e0,0,fffffd80616e5530,2,ffff80003c9cd6e0,20) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd8063e39bd0,fffffd80616e5530,2,ffff80003c9cd6e0,20) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 vn_closefile(fffffd80616e5530,ffff80003c945a28) at vn_closefile+0xac sys/kern/vfs_vnops.c:615 fdrop(fffffd80616e5530,ffff80003c945a28) at fdrop+0x121 sys/kern/kern_descrip.c:1280 closef(fffffd80616e5530,ffff80003c945a28) at closef+0x190 sys/kern/kern_descrip.c:1264 fdfree(ffff80003c945a28) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80003c945a28,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80003c945a28,ffff80003c9cd9c0,ffff80003c9cd910) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003c9cd9c0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9cd9c0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7a3003f7e770, count: -10 ddb> machine ddbcpu 1 No such command ddb> trace lf_advlock(ffff80000151b6e0,0,fffffd80616e5530,2,ffff80003c9cd6e0,20) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff80000151b6e0,0,fffffd80616e5530,2,ffff80003c9cd6e0,20) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd8063e39bd0,fffffd80616e5530,2,ffff80003c9cd6e0,20) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 vn_closefile(fffffd80616e5530,ffff80003c945a28) at vn_closefile+0xac sys/kern/vfs_vnops.c:615 fdrop(fffffd80616e5530,ffff80003c945a28) at fdrop+0x121 sys/kern/kern_descrip.c:1280 closef(fffffd80616e5530,ffff80003c945a28) at closef+0x190 sys/kern/kern_descrip.c:1264 fdfree(ffff80003c945a28) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80003c945a28,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80003c945a28,ffff80003c9cd9c0,ffff80003c9cd910) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003c9cd9c0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9cd9c0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7a3003f7e770, count: -10