kernel: protection fault trap, code=0 Stopped at sys_semop+0x3d5: movzwl 0(%rax),%r15d ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace sys_semop(ffff80002a815798,ffff80003c989c40,ffff80003c989b90) at sys_semop+0x3d5 sys/kern/sysv_sem.c:617 syscall(ffff80003c989c40) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c989c40) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x5b4a8fca370, count: -3 ddb> show registers rdi 0 rsi 0 rbp 0xffff80003c989b70 rbx 0xdeaf4152deaf4152 rdx 0 rcx 0 rax 0xdeaf4152deaf4152 r8 0x7f7fffffc000 r9 0 r10 0x15b65b8a28f7b82c r11 0x221a764f9e9caf2f r12 0 r13 0xfffffd806384b8c0 r14 0xffff80003c989c40 r15 0 rip 0xffffffff8171cf65 sys_semop+0x3d5 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c989a80 ss 0x10 sys_semop+0x3d5: movzwl 0(%rax),%r15d ddb> show proc PROC (syz-executor) tid=204552 pid=86086 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=83, usrpri=83, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a814aa0,0xffffffff83938a60 process=0xffff80002a7928a0 user=0xffff80003c984000, vmspace=0xfffffd806c982740 estcpu=33, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 86086 67373 74230 0 2 0 syz-executor 86086 259124 74230 0 3 0x4000080 fsleep syz-executor *86086 204552 74230 0 7 0x4000000 syz-executor 43561 350031 51361 0 2 0 syz-executor 43561 452436 51361 0 3 0x4000080 fsleep syz-executor 52172 216731 92194 0 2 0 syz-executor 52172 369989 92194 0 3 0x4000000 fdlock syz-executor 52172 344333 92194 0 2 0x4000000 syz-executor 61310 439762 99745 0 2 0 syz-executor 61310 349026 99745 0 3 0x4000080 fsleep syz-executor 50358 136856 90687 0 2 0 syz-executor 50358 27494 90687 0 3 0x4000080 fsleep syz-executor 50358 151735 90687 0 3 0x4000080 fsleep syz-executor 50358 324996 90687 0 3 0x4000080 fsleep syz-executor 93099 379904 79527 0 3 0 vmmaplk syz-executor 93099 210432 79527 0 3 0x4000080 fsleep syz-executor 93099 262006 79527 0 2 0x4000000 syz-executor 38499 230968 30713 0 3 0x3000 suspend syz-executor 38499 213529 30713 0 2 0x4081000 syz-executor 56111 47693 25081 0 3 0x3000 suspend syz-executor 56111 415322 25081 0 2 0x4081000 syz-executor 90687 229444 36111 0 3 0x82 nanoslp syz-executor 30713 132434 36111 0 3 0x82 nanoslp syz-executor 99745 333321 36111 0 3 0x82 nanoslp syz-executor 92194 41124 36111 0 3 0x82 nanoslp syz-executor 79527 132815 36111 0 3 0x82 nanoslp syz-executor 74230 12660 36111 0 3 0x82 nanoslp syz-executor 51361 146487 36111 0 3 0x82 nanoslp syz-executor 25081 101768 36111 0 3 0x82 wait syz-executor 36111 471206 90934 0 3 0x82 kqread syz-executor 90934 355661 69974 0 3 0x10008a sigsusp ksh 69974 234428 19660 0 3 0x98 kqread sshd-session 19660 90802 8177 0 3 0x92 kqread sshd-session 29073 374729 1 0 3 0x100083 ttyopn getty 8177 479223 1 0 3 0x88 kqread sshd 76248 183636 9603 73 3 0x1100090 kqread syslogd 9603 349922 1 0 3 0x100082 sbwait syslogd 72432 70339 1 0 3 0x100080 kqread resolvd 57743 448244 76478 77 3 0x100092 kqread dhcpleased 70576 274025 76478 77 3 0x100092 kqread dhcpleased 76478 469603 1 0 3 0x80 kqread dhcpleased 52103 317472 0 0 3 0x14200 bored smr 38099 69023 0 0 2 0x14200 zerothread 82135 368029 0 0 3 0x14200 aiodoned aiodoned 51221 480451 0 0 3 0x14200 syncer update 79045 262901 0 0 3 0x14200 cleaner cleaner 28188 105978 0 0 3 0x14200 reaper reaper 46344 24321 0 0 3 0x14200 pgdaemon pagedaemon 69647 503539 0 0 3 0x14200 bored viomb 12704 143852 0 0 3 0x40014200 acpi0 acpi0 57827 490272 0 0 3 0x14200 bored softnet0 9357 234327 0 0 3 0x14200 bored systqmp 52849 383671 0 0 3 0x14200 bored systq 29451 253883 0 0 3 0x40014200 tmoslp softclock 2193 68978 0 0 3 0x40014200 idle0 1 348912 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11048 12169K 14548K 166960K 14112 0 pcb 18 16K 17K 166960K 277 0 rtable 255 10K 10K 166960K 549 0 pf 30 12K 16K 166960K 80 0 ifaddr 41 7K 8K 166960K 79 0 ifgroup 50 2K 2K 166960K 111 0 sysctl 4 1K 9K 166960K 13 0 counters 33 17K 18K 166960K 137 0 ioctlops 0 0K 4K 166960K 192 0 iov 0 0K 16K 166960K 107 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1496 94K 94K 166960K 2159 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 12 0 VM map 2 1K 1K 166960K 2 0 sem 12 1K 1K 166960K 23 0 dirhash 12 2K 2K 166960K 24 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 240K 166960K 717 0 sigio 0 0K 0K 166960K 12 0 proc 61 67K 108K 166960K 553 0 subproc 72 4K 4K 166960K 81 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 3 0K 0K 166960K 56 0 in_multi 97 7K 7K 166960K 135 0 ether_multi 1 0K 0K 166960K 6 0 mrt 2 0K 0K 166960K 8 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 97 440K 440K 166960K 97 0 exec 0 0K 1K 166960K 498 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 247 159K 168K 166960K 7891 0 UVM aobj 20 11K 13K 166960K 25 0 pinsyscall 39 78K 94K 166960K 1813 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 33 0 NDP 11 0K 2K 166960K 49 0 temp 47 8672K 8738K 166960K 21594 0 kqueue 13 20K 32K 166960K 152 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 149 0 145 3 2 1 3 0 8 0 rtentry 136 158 0 55 4 0 4 4 0 8 0 unpcb 144 688 0 671 11 5 6 6 0 8 5 syncache 336 5 0 5 2 2 0 1 0 8 0 tcpcb 736 244 0 238 7 6 1 7 0 8 0 arp 96 25 0 7 1 0 1 1 0 8 0 ipq 40 2 0 0 1 0 1 1 0 8 0 ipqe 40 2 0 0 1 0 1 1 0 8 0 inpcb 328 872 0 857 18 11 7 7 0 8 5 ip6q 72 3 0 0 1 0 1 1 0 8 0 ip6af 40 3 0 0 1 0 1 1 0 8 0 nd6 112 35 0 8 1 0 1 1 0 8 0 pkpcb 40 5 0 5 3 2 1 1 0 8 1 kcovpl 48 9 0 1 1 0 1 1 0 8 0 ppxss 1072 95 0 95 2 1 1 1 0 8 1 pppxif 1384 72 0 72 2 1 1 1 0 8 1 pfrule 1360 1 0 1 1 0 1 1 0 8 1 rttmr 136 2 0 2 1 0 1 1 0 8 1 art_heap8 4096 4 0 0 4 0 4 4 0 8 0 art_heap4 256 598 0 166 31 2 29 30 0 8 0 art_table 40 602 0 166 5 0 5 5 0 8 0 art_node 32 156 0 63 1 0 1 1 0 8 0 sysvmsgpl 40 9 0 6 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 18 0 9 1 0 1 1 0 8 0 shmpl 112 18 0 4 1 0 1 1 0 8 0 dirhash 1024 25 0 8 3 0 3 3 0 8 0 dino2pl 256 2701 0 1200 95 0 95 95 0 8 0 ffsino 256 2701 0 1200 95 0 95 95 0 8 0 nchpl 144 3644 0 1953 64 0 64 64 0 8 0 rtmask 32 9 0 9 3 2 1 1 0 8 1 vnodes 216 3304 0 0 184 0 184 184 0 8 0 namei 1024 12929 0 12929 2 1 1 1 0 8 1 vcpupl 3904 3 0 0 1 0 1 1 0 8 0 vmpool 808 4 0 1 1 0 1 1 0 8 0 kstatmem 264 62 0 40 3 0 3 3 0 8 1 scsiplug 72 2 0 2 2 1 1 1 0 8 1 scxspl 216 14045 0 14045 9 7 2 8 1 8 2 plimitpl 152 175 0 158 1 0 1 1 0 8 0 sigapl 424 1012 0 969 9 3 6 8 0 8 0 knotepl 120 24738 0 24691 40 30 10 17 0 8 8 kqueuepl 184 215 0 206 1 0 1 1 0 8 0 pipepl 304 165 0 138 3 0 3 3 0 8 0 fdescpl 448 979 0 949 5 1 4 5 0 8 0 filepl 120 6369 0 6137 15 3 12 12 0 8 3 lockfpl 104 133 0 129 1 0 1 1 0 8 0 lockfspl 48 60 0 57 1 0 1 1 0 8 0 sessionpl 144 23 0 15 1 0 1 1 0 8 0 pgrppl 48 45 0 29 1 0 1 1 0 8 0 ucredpl 104 983 0 971 1 0 1 1 0 8 0 zombiepl 144 1094 0 1093 1 0 1 1 0 8 0 processpl 1152 1012 0 969 5 0 5 5 0 8 0 procpl 664 1900 0 1844 9 3 6 7 0 8 0 sosppl 176 3 0 3 1 1 0 1 0 8 0 sockpl 552 1728 0 1692 27 15 12 13 0 8 8 mcl64k 65536 43 0 43 2 1 1 1 0 8 1 mcl16k 16384 2 0 2 1 1 0 1 0 8 0 mcl8k 8192 44 0 44 3 2 1 1 0 8 1 mcl4k 4096 3211 0 3157 15 7 8 14 0 8 0 mcl2k 2048 801 0 795 3 1 2 3 0 8 0 mtagpl 96 36 0 4 1 0 1 1 0 8 0 mbufpl 256 10383 0 10168 28 8 20 22 0 8 5 bufpl 280 4882 0 121 341 0 341 341 0 8 0 anonpl 24 164115 0 159439 86 54 32 57 0 187 3 amapchunkpl 152 25977 0 25439 41 9 32 32 0 158 10 amappl16 200 3144 0 3037 36 30 6 15 0 8 0 amappl15 192 63 0 62 2 1 1 1 0 8 0 amappl14 184 8 0 8 1 1 0 1 0 8 0 amappl13 176 429 0 428 1 0 1 1 0 8 0 amappl12 168 1328 0 1289 2 0 2 2 0 8 0 amappl11 160 32 0 32 1 1 0 1 0 8 0 amappl10 152 41 0 31 1 0 1 1 0 8 0 amappl9 144 252 0 252 1 1 0 1 0 8 0 amappl8 136 39 0 38 1 0 1 1 0 8 0 amappl7 128 100 0 99 1 0 1 1 0 8 0 amappl6 120 285 0 273 1 0 1 1 0 8 0 amappl5 112 84 0 77 1 0 1 1 0 8 0 amappl4 104 396 0 372 1 0 1 1 0 8 0 amappl3 96 4535 0 4435 3 0 3 3 0 8 0 amappl2 88 1090 0 1019 2 0 2 2 0 8 0 amappl1 80 11630 0 11076 14 2 12 13 0 8 0 amappl 88 7080 0 6903 6 1 5 5 0 92 0 uvmvnodes 80 114 0 0 3 0 3 3 0 8 0 dma8192 8192 1 0 1 1 0 1 1 0 8 1 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 254 0 254 2 1 1 1 0 8 1 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 24 0 5 1 0 1 1 0 8 0 uaddrrnd 24 979 0 949 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 979 0 949 1 0 1 1 0 8 0 vmmpekpl 168 9147 0 9111 3 0 3 3 0 8 0 vmmpepl 168 68810 0 66869 105 20 85 93 0 357 0 vmsppl 368 978 0 949 4 1 3 4 0 8 0 rwobjpl 40 20609 0 19531 15 2 13 13 0 8 0 pdppl 4096 1973 0 1903 107 37 70 83 0 8 0 pvpl 32 442226 0 432049 186 91 95 127 0 265 8 pmappl 216 982 0 950 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 413 0 72 10 0 10 10 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace sys_semop(ffff80002a815798,ffff80003c989c40,ffff80003c989b90) at sys_semop+0x3d5 sys/kern/sysv_sem.c:617 syscall(ffff80003c989c40) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c989c40) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x5b4a8fca370, count: -3 ddb> machine ddbcpu 1 No such command ddb> trace sys_semop(ffff80002a815798,ffff80003c989c40,ffff80003c989b90) at sys_semop+0x3d5 sys/kern/sysv_sem.c:617 syscall(ffff80003c989c40) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c989c40) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x5b4a8fca370, count: -3