kernel: protection fault trap, code=0 Stopped at solock_shared+0x1c: movq 0x8(%r12),%rax ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic the kernel did not panic ddb{1}> trace solock_shared(ffff800010fdc2a8) at solock_shared+0x1c sys/kern/uipc_socket2.c:351 soreceive(ffff800010fdc2a8,0,ffff8000324f0d88,0,0,ffff8000324f0c9c,6d59710a1c86080b) at soreceive+0x690 sys/kern/uipc_socket.c:932 fifo_read(ffff8000324f0cf0) at fifo_read+0xd2 sys/miscfs/fifofs/fifo_vnops.c:256 VOP_READ(fffffd805c8f78b8,ffff8000324f0d88,64,fffffd807f7d72d8) at VOP_READ+0xc3 sys/kern/vfs_vops.c:227 vn_rdwr(0,fffffd805c8f78b8,ffff80001f052000,200,0,1,899544dd1390dbf3,0,ffff8000006aa000,0) at vn_rdwr+0x10a vndstrategy(fffffd8065b38b28) at vndstrategy+0x3e2 sys/dev/vnd.c:342 readdoslabel(fffffd8065b38b28,ffffffff81538c60,ffff800000e4fe00,0,1) at readdoslabel+0x79 readdisksector sys/kern/subr_disk.c:323 [inline] readdoslabel(fffffd8065b38b28,ffffffff81538c60,ffff800000e4fe00,0,1) at readdoslabel+0x79 sys/kern/subr_disk.c:354 readdisklabel(2902,ffffffff81538c60,ffff800000e4fe00,1) at readdisklabel+0x16b sys/arch/amd64/amd64/disksubr.c:99 vndioctl(2902,41946472,ffff800000e4fe00,1,ffff8000ffff1740) at vndioctl+0x4d8 sys/dev/vnd.c:619 VOP_IOCTL(fffffd806e417eb8,41946472,ffff800000e4fe00,1,fffffd807f7d78f0,ffff8000ffff1740) at VOP_IOCTL+0x9a sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806a710e48,41946472,ffff800000e4fe00,ffff8000ffff1740) at vn_ioctl+0xc0 sys/kern/vfs_vnops.c:525 sys_ioctl(ffff8000ffff1740,ffff8000324f1d70,ffff8000324f1cc0) at sys_ioctl+0x4a9 syscall(ffff8000324f1d70) at syscall+0x8cf mi_syscall sys/sys/syscall_mi.h:180 [inline] syscall(ffff8000324f1d70) at syscall+0x8cf sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xc1c803a5970, count: -14 ddb{1}> show registers rdi 0xffff80002d6c4000 rsi 0x95d rbp 0xffff8000324f0b60 rbx 0 rdx 0xffff80002d6c4000 rcx 0x95c rax 0xffffffff81f01af9 solock_shared+0x19 r8 0x400 r9 0x1 r10 0x5ae5162676691534 r11 0x4fe5d8384dd78da5 r12 0x3249c62dd5aa3bf1 r13 0x1 r14 0xffff800010fdc2a8 r15 0x85 rip 0xffffffff81f01afc solock_shared+0x1c cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000324f0b30 ss 0x10 solock_shared+0x1c: movq 0x8(%r12),%rax ddb{1}> show proc PROC (syz-executor.3) tid=204349 pid=4615 tcnt=3 stat=onproc flags process=8000000 proc=4000000 runpri=24, usrpri=79, slppri=24, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff8000ffff0030,0xffff8000ffff1230 process=0xffff80002a15ac68 user=0xffff8000324ec000, vmspace=0xfffffd8067812c20 estcpu=29, cpticks=2, pctcpu=0.0, user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 15644 316006 68183 0 7 0x8000000 syz-executor.4 15644 476357 68183 0 2 0xc000000 syz-executor.4 65266 368105 58877 0 2 0x8000000 syz-executor.2 48288 292012 56184 0 2 0x8000000 syz-executor.7 48288 523850 56184 0 3 0xc000080 fsleep syz-executor.7 52058 414943 25249 60928 2 0x8000010 syz-executor.0 52058 265661 25249 60928 3 0xc000090 kqsel syz-executor.0 2455 193693 68544 0 3 0x8000080 nanoslp syz-executor.6 2455 117474 68544 0 3 0xc000080 sbwait syz-executor.6 2455 105032 68544 0 3 0xc000080 fsleep syz-executor.6 4615 102037 29378 0 3 0x8000080 nanoslp syz-executor.3 * 4615 204349 29378 0 7 0xc000000 syz-executor.3 4615 344610 29378 0 3 0xc000080 fsleep syz-executor.3 29378 360962 60085 0 3 0x8000082 nanoslp syz-executor.3 68544 166817 60085 0 3 0x8000082 nanoslp syz-executor.6 94067 214390 60085 0 3 0x8000082 nanoslp syz-executor.1 430 229894 60085 0 2 0x8000002 syz-executor.5 25249 5970 60085 0 3 0x8000082 nanoslp syz-executor.0 68183 95315 60085 0 3 0x8000082 nanoslp syz-executor.4 56184 489836 60085 0 3 0x8000082 nanoslp syz-executor.7 58877 186422 60085 0 3 0x8000082 nanoslp syz-executor.2 74342 60492 0 0 3 0x14200 bored sosplice 60085 376558 17891 0 3 0x1a000082 thrsleep syz-fuzzer 60085 467310 17891 0 3 0x1e000082 nanoslp syz-fuzzer 60085 108087 17891 0 3 0x1e000082 wait syz-fuzzer 60085 314555 17891 0 3 0x1e000082 thrsleep syz-fuzzer 60085 434836 17891 0 3 0x1e000082 wait syz-fuzzer 60085 294097 17891 0 3 0x1e000082 wait syz-fuzzer 60085 228539 17891 0 3 0x1e000082 thrsleep syz-fuzzer 60085 43354 17891 0 3 0x1e000082 kqread syz-fuzzer 60085 213612 17891 0 3 0x1e000082 wait syz-fuzzer 60085 172098 17891 0 3 0x1e000082 thrsleep syz-fuzzer 60085 131279 17891 0 3 0x1e000082 thrsleep syz-fuzzer 60085 398282 17891 0 3 0x1e000082 wait syz-fuzzer 60085 446336 17891 0 3 0x1e000082 wait syz-fuzzer 60085 383948 17891 0 3 0x1e000082 wait syz-fuzzer 60085 376704 17891 0 3 0x1e000082 thrsleep syz-fuzzer 60085 94749 17891 0 3 0x1e000082 wait syz-fuzzer 17891 512454 20615 0 3 0x810008a sigsusp ksh 20615 378221 35126 0 3 0x1800009a kqread sshd 32456 467935 1 0 3 0x18100083 ttyin getty 35126 54952 1 0 3 0x18000088 kqread sshd 29332 361456 22693 74 3 0x19100092 bpf pflogd 22693 471218 1 0 3 0x18000080 sbwait pflogd 55364 209207 89082 73 3 0x19100090 kqread syslogd 89082 231025 1 0 3 0x18100082 sbwait syslogd 84808 25282 1 0 3 0x18100080 kqread resolvd 50793 396087 79838 77 3 0x18100092 kqread dhcpleased 80965 208935 79838 77 3 0x18100092 kqread dhcpleased 79838 76847 1 0 3 0x18000080 kqread dhcpleased 9793 352759 0 0 3 0x14200 bored smr 85880 496330 0 0 2 0x14200 zerothread 2372 191782 0 0 3 0x14200 aiodoned aiodoned 96377 275903 0 0 3 0x14200 syncer update 73305 193654 0 0 3 0x14200 cleaner cleaner 49823 367184 0 0 3 0x14200 reaper reaper 87750 311664 0 0 3 0x14200 pgdaemon pagedaemon 26003 458322 0 0 3 0x14200 bored viomb 3392 46577 0 0 3 0x40014200 acpi0 acpi0 37240 129789 0 0 3 0x40014200 idle1 63273 29940 0 0 3 0x14200 bored softnet3 28921 516599 0 0 3 0x14200 bored softnet2 51609 517289 0 0 3 0x14200 bored softnet1 47434 73062 0 0 3 0x14200 bored softnet0 35103 191319 0 0 3 0x14200 bored systqmp 48940 174596 0 0 3 0x14200 bored systq 71234 504772 0 0 3 0x14200 tmoslp softclockmp 84053 414690 0 0 3 0x40014200 tmoslp softclock 35758 334439 0 0 3 0x40014200 idle0 1 6605 0 0 3 0x8080082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 4615 (syz-executor.3) thread 0xffff8000ffff1740 (204349) Process 430 (syz-executor.5) thread 0xffff80002a1af208 (229894) ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10222 6654K 6913K 166960K 16001 0 pcb 17 18K 20K 166960K 1129 0 rtable 267 17K 17K 166960K 2387 0 pf 43 11K 12K 166960K 285 0 ifaddr 51 16K 17K 166960K 324 0 ifgroup 76 3K 3K 166960K 489 0 sysctl 4 1K 1K 166960K 18 0 counters 74 37K 38K 166960K 288 0 ioctlops 1 0K 4K 166960K 1781 0 iov 0 0K 18K 166960K 372 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1474 93K 93K 166960K 4997 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 108 0 VM map 2 1K 1K 166960K 2 0 sem 19 1K 1K 166960K 143 0 dirhash 12 2K 2K 166960K 90 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 16 57K 109K 166960K 5921 0 sigio 0 0K 0K 166960K 123 0 proc 72 103K 189K 166960K 2416 0 subproc 104 6K 8K 166960K 813 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 1261 0 in_multi 89 6K 7K 166960K 1024 0 ether_multi 1 0K 0K 166960K 68 0 mrt 3 0K 0K 166960K 31 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 109 493K 493K 166960K 109 0 exec 0 0K 1K 166960K 1758 0 pfkey data 0 0K 0K 166960K 4 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 338 318K 319K 166960K 52953 0 UVM aobj 113 3K 4K 166960K 135 0 pinsyscall 40 80K 108K 166960K 8442 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 470 0 NDP 17 0K 2K 166960K 241 0 temp 75 6816K 7316K 166960K 183836 0 kqueue 14 20K 32K 166960K 851 0 SYN cache 2 16K 16K 166960K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 565 0 562 1 0 1 1 0 8 0 rtentry 112 801 0 684 6 2 4 4 0 8 0 unpcb 144 3836 0 3818 19 17 2 4 0 8 1 syncache 336 4 0 4 1 1 0 1 0 8 0 tcpqe 32 29 54 29 2 2 0 1 0 8 0 tcpcb 808 1925 0 1920 39 37 2 8 0 8 1 arp 120 161 0 132 1 0 1 1 0 8 0 inpcb 392 7068 0 7060 101 92 9 18 0 8 8 nd6 136 203 0 179 1 0 1 1 0 8 0 pkpcb 40 29 0 29 17 17 0 1 0 8 0 kcovpl 48 61 0 53 1 0 1 1 0 8 0 ppxss 1168 19 0 19 10 10 0 1 0 8 0 pffrag 232 101 0 97 3 2 1 1 0 482 0 pffrnode 88 62 0 59 3 2 1 1 0 8 0 pffrent 40 1070 0 1029 2 1 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 534 0 458 1 0 1 1 0 8 0 pfstkey 128 534 0 458 4 1 3 3 0 8 0 pfstate 376 534 0 458 13 3 10 10 0 8 0 pfrule 1344 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 3 0 2 3 2 1 3 0 8 0 art_heap4 256 3021 0 2557 63 34 29 30 0 8 0 art_table 32 3024 0 2559 6 2 4 4 0 8 0 art_node 16 784 0 682 1 0 1 1 0 8 0 semupl 112 5 0 5 3 3 0 1 0 8 0 semapl 112 136 0 119 1 0 1 1 0 8 0 shmpl 112 132 0 22 4 0 4 4 0 8 0 dirhash 1024 69 0 52 3 0 3 3 0 8 0 dino2pl 256 11011 0 9465 98 0 98 98 0 8 0 ffsino 272 11011 0 9465 106 2 104 104 0 8 0 nchpl 144 19841 0 19229 67 41 26 67 0 8 0 uvmvnodes 80 9131 0 0 187 0 187 187 0 8 0 vnodes 216 9131 0 0 508 0 508 508 0 8 0 namei 1024 66981 0 66981 13 12 1 2 0 8 1 percpumem 16 158 0 107 1 0 1 1 0 8 0 vcpupl 3904 29 0 0 4 0 4 4 0 8 0 vmpool 696 46 0 17 4 1 3 3 0 8 0 kstatmem 264 248 0 214 7 4 3 3 0 8 0 scsiplug 72 17 0 17 11 11 0 1 0 8 0 scxspl 216 125487 0 125487 27 24 3 8 1 8 3 plimitpl 152 775 0 757 1 0 1 1 0 8 0 sigapl 424 6153 0 6104 10 3 7 9 0 8 0 futexpl 64 88755 0 88752 7 6 1 1 0 8 0 knotepl 120 962 0 0 19 0 19 19 0 8 0 kqueuepl 216 1624 0 1613 5 4 1 3 0 8 0 pipepl 320 1028 0 1000 4 1 3 4 0 8 0 fdescpl 496 6110 0 6081 6 1 5 6 0 8 0 filepl 152 38771 0 38519 47 31 16 17 0 8 4 lockfpl 104 2074 0 2072 1 0 1 1 0 8 0 lockfspl 48 732 0 730 1 0 1 1 0 8 0 sessionpl 144 74 0 57 1 0 1 1 0 8 0 pgrppl 48 218 0 201 1 0 1 1 0 8 0 ucredpl 104 5674 0 5659 1 0 1 1 0 8 0 zombiepl 144 6105 0 6104 2 1 1 1 0 8 0 processpl 1136 6153 0 6104 6 1 5 6 0 8 0 procpl 656 12831 0 12760 12 4 8 10 0 8 1 srpgc 96 44 0 44 13 13 0 1 0 8 0 sosppl 168 75 0 75 26 26 0 1 0 8 0 sockpl 664 11564 0 11535 85 74 11 17 0 8 8 mcl64k 65536 6 0 0 1 0 1 1 0 8 0 mcl16k 16384 2 0 0 1 0 1 1 0 8 0 mcl12k 12288 2 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 5 0 0 1 0 1 1 0 8 0 mcl4k 4096 6 0 0 1 0 1 1 0 8 0 mcl2k2 2112 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 566 0 0 49 8 41 49 0 8 1 mtagpl 96 76 0 0 2 0 2 2 0 8 0 mbufpl 256 1456 0 0 75 0 75 75 0 8 0 bufpl 280 19342 0 10209 653 0 653 653 0 8 0 anonpl 24 930570 0 924026 229 161 68 134 0 186 2 amapchunkpl 152 174152 0 173443 150 111 39 56 0 158 6 amappl16 200 23480 0 23334 180 168 12 33 0 8 0 amappl15 192 89 0 89 2 2 0 1 0 8 0 amappl14 184 392 0 377 2 1 1 2 0 8 0 amappl13 176 13 0 13 2 2 0 1 0 8 0 amappl12 168 7574 0 7543 4 2 2 3 0 8 0 amappl11 160 63 0 49 1 0 1 1 0 8 0 amappl10 152 112 0 103 1 0 1 1 0 8 0 amappl9 144 369 0 369 3 3 0 1 0 8 0 amappl8 136 311 0 269 2 0 2 2 0 8 0 amappl7 128 67 0 51 1 0 1 1 0 8 0 amappl6 120 1095 0 1078 3 2 1 2 0 8 0 amappl5 112 376 0 361 1 0 1 1 0 8 0 amappl4 104 961 0 922 2 0 2 2 0 8 0 amappl3 96 31720 0 31635 3 0 3 3 0 8 0 amappl2 88 6685 0 6609 5 3 2 4 0 8 0 amappl1 80 30436 0 29887 23 10 13 23 0 8 0 amappl 88 51631 0 51415 8 2 6 6 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 134 0 22 3 0 3 3 0 8 0 uaddrrnd 24 6157 0 6099 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 6157 0 6099 1 0 1 1 0 8 0 vmmpekpl 168 44936 0 44872 4 0 4 4 0 8 0 vmmpepl 168 387737 0 385706 210 106 104 118 0 357 0 vmsppl 440 6156 0 6099 9 2 7 7 0 8 0 rwobjpl 56 104724 0 94267 176 28 148 151 0 8 0 pdppl 4096 12321 0 12227 328 230 98 112 0 8 4 pvpl 32 45283 0 0 367 1 366 366 0 265 0 pmappl 248 6156 0 6099 4 0 4 4 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 795 0 338 14 0 14 14 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff82cddff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 end of kernel end trace frame: 0x72c7ef814710, count: -3 ddb{0}> machine ddbcpu 1 Stopped at solock_shared+0x1c: movq 0x8(%r12),%rax ddb{1}> trace solock_shared(ffff800010fdc2a8) at solock_shared+0x1c sys/kern/uipc_socket2.c:351 soreceive(ffff800010fdc2a8,0,ffff8000324f0d88,0,0,ffff8000324f0c9c,6d59710a1c86080b) at soreceive+0x690 sys/kern/uipc_socket.c:932 fifo_read(ffff8000324f0cf0) at fifo_read+0xd2 sys/miscfs/fifofs/fifo_vnops.c:256 VOP_READ(fffffd805c8f78b8,ffff8000324f0d88,64,fffffd807f7d72d8) at VOP_READ+0xc3 sys/kern/vfs_vops.c:227 vn_rdwr(0,fffffd805c8f78b8,ffff80001f052000,200,0,1,899544dd1390dbf3,0,ffff8000006aa000,0) at vn_rdwr+0x10a vndstrategy(fffffd8065b38b28) at vndstrategy+0x3e2 sys/dev/vnd.c:342 readdoslabel(fffffd8065b38b28,ffffffff81538c60,ffff800000e4fe00,0,1) at readdoslabel+0x79 readdisksector sys/kern/subr_disk.c:323 [inline] readdoslabel(fffffd8065b38b28,ffffffff81538c60,ffff800000e4fe00,0,1) at readdoslabel+0x79 sys/kern/subr_disk.c:354 readdisklabel(2902,ffffffff81538c60,ffff800000e4fe00,1) at readdisklabel+0x16b sys/arch/amd64/amd64/disksubr.c:99 vndioctl(2902,41946472,ffff800000e4fe00,1,ffff8000ffff1740) at vndioctl+0x4d8 sys/dev/vnd.c:619 VOP_IOCTL(fffffd806e417eb8,41946472,ffff800000e4fe00,1,fffffd807f7d78f0,ffff8000ffff1740) at VOP_IOCTL+0x9a sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806a710e48,41946472,ffff800000e4fe00,ffff8000ffff1740) at vn_ioctl+0xc0 sys/kern/vfs_vnops.c:525 sys_ioctl(ffff8000ffff1740,ffff8000324f1d70,ffff8000324f1cc0) at sys_ioctl+0x4a9 syscall(ffff8000324f1d70) at syscall+0x8cf mi_syscall sys/sys/syscall_mi.h:180 [inline] syscall(ffff8000324f1d70) at syscall+0x8cf sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xc1c803a5970, count: -14