./file0/dev/zero./file0./file0./file0/dev/zero./file0./file0./file0/dev/zero./file0./file0kernel: protection fault trap, code=0 Stopped at done_flush+0x38: movl %eax,%dr6 ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic the kernel did not panic ddb{0}> trace done_flush() at done_flush+0x38 vm_run(ffff8000246805e0) at vm_run+0x304 sys/arch/amd64/amd64/vmm.c:4297 vmmioctl(a00,c0205602,ffff8000246805e0,ca,ffff80002e362d20) at vmmioctl+0x8f sys/arch/amd64/amd64/vmm.c:492 VOP_IOCTL(fffffd806e22bc90,c0205602,ffff8000246805e0,ca,fffffd807f7d88a0,ffff80002e362d20) at VOP_IOCTL+0x96 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806490b4c0,c0205602,ffff8000246805e0,ffff80002e362d20) at vn_ioctl+0xbc sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80002e362d20,ffff8000246806f8,ffff800024680750) at sys_ioctl+0x4a2 syscall(ffff8000246807c0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff8000246807c0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x86263793030, count: -8 ddb{0}> show registers rdi 0x6c14 __ALIGN_SIZE+0x5c14 rsi 0xffff80002af23638 rbp 0xffff800024680350 rbx 0x756e6547 rdx 0x49656e69 rcx 0x6c65746e rax 0x8b60b35d925d08 r8 0 r9 0x10000 __ALIGN_SIZE+0xf000 r10 0xe5dcf6db88863818 r11 0xa8076d070afff2c1 r12 0xffffffff829009e0 dt_prov_static r13 0x246 r14 0xffff80002af23000 r15 0xffff8000246805e0 rip 0xffffffff81d17ab0 done_flush+0x38 cs 0x8 rflags 0x10046 __ALIGN_SIZE+0xf046 rsp 0xffff8000246801a6 ss 0x10 done_flush+0x38: movl %eax,%dr6 ddb{0}> show proc PROC (syz-executor.1) pid=416456 stat=onproc flags process=0 proc=4000000 pri=32, usrpri=83, nice=20 forw=0xffffffffffffffff, list=0xffff80002e362000,0xffff80002af442b0 process=0xffff8000295bdd40 user=0xffff80002467b000, vmspace=0xfffffd805d94eb88 estcpu=33, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 57666 404461 77562 0 2 0 syz-executor.3 89191 300352 67773 0 2 0 syz-executor.6 89191 428730 67773 0 3 0x4000080 fsleep syz-executor.6 89191 221754 67773 0 2 0x4000000 syz-executor.6 14980 331926 89032 0 2 0 syz-executor.5 14980 337215 89032 0 3 0x4000080 fsleep syz-executor.5 77498 427947 34608 0 2 0 syz-executor.4 77498 366488 34608 0 3 0x4000080 fsleep syz-executor.4 84043 90807 43376 0 2 0 syz-executor.1 *84043 416456 43376 0 7 0x4000000 syz-executor.1 49694 380711 58791 0 2 0 syz-executor.0 49694 161489 58791 0 3 0x4000080 fsleep syz-executor.0 49694 299076 58791 0 3 0x4000080 fsleep syz-executor.0 53470 99254 15087 0 2 0 syz-executor.7 53470 466991 15087 0 3 0x4000080 fsleep syz-executor.7 10946 335504 72158 0 2 0x482 syz-executor.2 89032 320218 72158 0 2 0x482 syz-executor.5 58114 95032 1 0 3 0x100083 ttyin getty 43376 470845 72158 0 2 0x482 syz-executor.1 67773 492716 72158 0 3 0x82 nanoslp syz-executor.6 34608 370690 72158 0 2 0x482 syz-executor.4 15087 499147 72158 0 2 0x482 syz-executor.7 58791 451778 72158 0 2 0x482 syz-executor.0 6379 494626 0 0 3 0x14280 nfsidl nfsio 20304 155538 0 0 3 0x14280 nfsidl nfsio 66633 460643 0 0 3 0x14280 nfsidl nfsio 63028 485754 0 0 3 0x14280 nfsidl nfsio 1877 88290 0 0 3 0x14280 nfsidl nfsio 87364 432892 0 0 3 0x14280 nfsidl nfsio 97394 232195 0 0 3 0x14280 nfsidl nfsio 37764 509404 0 0 3 0x14280 nfsidl nfsio 54132 477332 0 0 3 0x14280 nfsidl nfsio 86855 3072 0 0 3 0x14280 nfsidl nfsio 41549 290939 0 0 3 0x14280 nfsidl nfsio 8625 350963 0 0 3 0x14280 nfsidl nfsio 30108 256684 0 0 3 0x14280 nfsidl nfsio 96512 168482 0 0 3 0x14280 nfsidl nfsio 36593 148789 0 0 3 0x14280 nfsidl nfsio 88324 17383 0 0 3 0x14280 nfsidl nfsio 24666 370187 0 0 3 0x14280 nfsidl nfsio 2605 284832 0 0 3 0x14280 nfsidl nfsio 13271 322678 0 0 3 0x14280 nfsidl nfsio 51063 219054 0 0 3 0x14280 nfsidl nfsio 77562 305965 72158 0 3 0x82 nanoslp syz-executor.3 8541 263247 0 0 3 0x14200 acct acct 78310 44637 0 0 3 0x14200 bored sosplice 72158 277905 13504 0 3 0x82 thrsleep syz-fuzzer 72158 36675 13504 0 3 0x4000082 thrsleep syz-fuzzer 72158 115588 13504 0 3 0x4000082 thrsleep syz-fuzzer 72158 193916 13504 0 3 0x4000082 thrsleep syz-fuzzer 72158 89974 13504 0 3 0x4000082 kqread syz-fuzzer 72158 364655 13504 0 3 0x4000082 thrsleep syz-fuzzer 72158 369055 13504 0 3 0x4000082 thrsleep syz-fuzzer 72158 4626 13504 0 3 0x4000082 thrsleep syz-fuzzer 72158 401783 13504 0 3 0x4000082 thrsleep syz-fuzzer 13504 348543 10652 0 3 0x10008a sigsusp ksh 10652 233919 77949 0 3 0x9a poll sshd 77949 261091 1 0 3 0x88 poll sshd 70691 424159 42417 74 3 0x100092 bpf pflogd 42417 90244 1 0 3 0x80 netio pflogd 18560 127198 40720 73 3 0x100090 kqread syslogd 40720 103983 1 0 3 0x100082 netio syslogd 39780 22098 1 0 3 0x100080 kqread resolvd 93520 468841 11844 77 3 0x100092 kqread dhcpleased 72251 21413 11844 77 3 0x100092 kqread dhcpleased 11844 495015 1 0 3 0x80 kqread dhcpleased 88598 184951 0 0 3 0x14200 bored smr 73214 399595 0 0 2 0x14200 zerothread 72196 500907 0 0 3 0x14200 aiodoned aiodoned 2610 339719 0 0 3 0x14200 syncer update 52369 79106 0 0 3 0x14200 cleaner cleaner 55898 464483 0 0 3 0x14200 reaper reaper 30023 484187 0 0 3 0x14200 pgdaemon pagedaemon 69227 176939 0 0 3 0x14200 bored viomb 97477 414485 0 0 3 0x40014200 acpi0 acpi0 7490 153519 0 0 7 0x40014200 idle1 59943 518060 0 0 2 0x14200 softnet 76214 389299 0 0 3 0x14200 bored systqmp 79055 511613 0 0 3 0x14200 bored systq 11185 489941 0 0 2 0x40014200 softclock 62090 388644 0 0 3 0x40014200 idle0 1 101867 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 84043 (syz-executor.1) thread 0xffff80002e362d20 (416456) exclusive rwlock vcpu r = 0 (0xffff80002af233b0) #0 witness_lock+0x44d #1 vm_run+0x2e0 sys/arch/amd64/amd64/vmm.c:4264 #2 vmmioctl+0x8f sys/arch/amd64/amd64/vmm.c:492 #3 VOP_IOCTL+0x96 sys/kern/vfs_vops.c:264 #4 vn_ioctl+0xbc sys/kern/vfs_vnops.c:531 #5 sys_ioctl+0x4a2 #6 syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] #6 syscall+0x489 sys/arch/amd64/amd64/trap.c:585 #7 Xsyscall+0x128 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10223 6514K 7387K 78643K 58193 0 pcb 13 24K 28K 78643K 5603 0 rtable 219 18K 19K 78643K 5538 0 ifaddr 96 27K 30K 78643K 2289 0 sysctl 2 0K 0K 78643K 2 0 counters 56 35K 36K 78643K 916 0 ioctlops 0 0K 4K 78643K 40400 0 iov 0 0K 32K 78643K 3826 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1476 92K 93K 78643K 18637 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 189 0 VM map 2 1K 1K 78643K 2 0 sem 22 16K 32K 78643K 4247 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12598 0 file desc 17 61K 89K 78643K 30066 0 sigio 0 0K 0K 78643K 411 0 proc 71 87K 111K 78643K 4290 0 subproc 104 13K 13K 78643K 1179 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 1489 0 in_multi 76 5K 7K 78643K 2179 0 ether_multi 1 0K 0K 78643K 388 0 mrt 1 0K 0K 78643K 149 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 253 1129K 1129K 78643K 253 0 exec 0 0K 2K 78643K 6324 0 pfkey data 0 0K 0K 78643K 79 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 787 2043K 2060K 78643K 370885 0 UVM aobj 131 6K 6K 78643K 152 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 3089 0 NDP 13 0K 2K 78643K 710 0 temp 144 4702K 8798K 78643K 266987 0 kqueue 13 20K 28K 78643K 1528 0 SYN cache 2 16K 16K 78643K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 2714 0 2711 40 39 1 5 0 8 0 rtentry 112 1596 0 1507 7 4 3 4 0 8 0 unpcb 136 15365 0 15350 164 160 4 10 0 8 3 syncache 296 146 0 146 36 36 0 1 0 8 0 tcpqe 32 55 0 55 19 19 0 1 0 8 0 tcpcb 736 13416 0 13412 427 419 8 20 0 8 7 arp 120 203 0 185 1 0 1 1 0 8 0 inpcb 304 37318 0 37308 476 467 9 21 0 8 7 rttmr 72 41 0 41 10 10 0 1 0 8 0 ip6q 72 9 0 9 3 3 0 1 0 8 0 ip6af 40 27 0 27 3 3 0 1 0 8 0 nd6 48 403 0 380 1 0 1 1 0 8 0 pkpcb 40 141 0 141 18 18 0 1 0 8 0 kcovpl 48 87 0 79 1 0 1 1 0 8 0 ppxss 1248 111 0 111 27 27 0 1 0 8 0 pfstscr 40 3 0 3 1 1 0 1 0 8 0 pffrag 232 193 0 191 17 16 1 1 0 482 0 pffrnode 88 193 0 191 17 16 1 1 0 8 0 pffrent 40 2052 0 2050 18 17 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfrke_plain 168 15 0 15 3 3 0 1 0 8 0 pfrktable 1344 52 0 47 1 0 1 1 0 8 0 pftag 88 1 0 0 1 0 1 1 0 8 0 pfstitem 24 85 0 83 1 0 1 1 0 8 0 pfstkey 112 91 0 89 2 1 1 2 0 8 0 pfstate 320 88 0 86 4 3 1 4 0 8 0 pfrule 1360 57 0 40 3 1 2 2 0 8 0 art_heap8 4096 8 0 6 7 5 2 4 0 8 0 art_heap4 256 6873 0 6440 56 26 30 32 0 8 0 art_table 32 6881 0 6446 7 2 5 5 0 8 0 art_node 16 1428 0 1350 1 0 1 1 0 8 0 sysvmsgpl 40 55 0 16 1 0 1 1 0 8 0 semupl 112 6 0 6 1 1 0 1 0 8 0 semapl 112 4237 0 4217 1 0 1 1 0 8 0 shmpl 112 149 0 21 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 41992 0 40434 99 1 98 98 0 8 0 ffsino 272 41992 0 40434 105 0 105 105 0 8 0 nchpl 144 80588 0 78958 63 0 63 63 0 8 0 rtmask 32 14 0 14 2 2 0 1 0 8 0 uvmvnodes 80 6001 0 0 123 0 123 123 0 8 0 vnodes 224 6001 0 0 353 0 353 353 0 8 0 namei 1024 321639 0 321639 18 17 1 2 0 8 1 percpumem 16 470 0 430 1 0 1 1 0 8 0 vcpupl 2048 286 0 1 36 0 36 36 0 8 0 vmpool 560 498 0 213 23 2 21 21 0 8 0 pfiaddrpl 120 14 0 4 1 0 1 1 0 8 0 scsiplug 72 29 0 29 9 9 0 1 0 8 0 scxspl 216 238267 0 238267 49 48 1 8 0 8 1 plimitpl 152 3965 0 3950 1 0 1 1 0 8 0 sigapl 424 30265 0 30199 10 2 8 8 0 8 0 futexpl 64 318400 0 318394 14 13 1 1 0 8 0 knotepl 112 361 0 0 5 0 5 5 0 8 0 kqueuepl 216 9021 0 9005 171 166 5 9 0 8 4 pipepl 336 8618 0 8590 252 242 10 13 0 8 7 fdescpl 496 30205 0 30175 8 4 4 5 0 8 0 filepl 152 244508 0 244266 404 385 19 24 0 8 8 lockfpl 104 11822 0 11819 31 30 1 4 0 8 0 lockfspl 48 3213 0 3210 1 0 1 1 0 8 0 sessionpl 144 111 0 94 1 0 1 1 0 8 0 pgrppl 48 243 0 226 1 0 1 1 0 8 0 ucredpl 96 26322 0 26303 1 0 1 1 0 8 0 zombiepl 144 30199 0 30198 13 12 1 1 0 8 0 processpl 1064 30265 0 30198 6 1 5 5 0 8 0 procpl 672 77672 0 77589 40 32 8 9 0 8 0 srpgc 96 94 0 94 23 23 0 1 0 8 0 sosppl 168 735 0 735 40 40 0 1 0 8 0 sockpl 480 55638 0 55613 1245 1233 12 41 0 8 8 mcl64k 65536 17 0 0 3 0 3 3 0 8 0 mcl16k 16384 11 0 0 2 0 2 2 0 8 0 mcl12k 12288 17 0 0 2 0 2 2 0 8 0 mcl9k 9216 7 0 0 1 0 1 1 0 8 0 mcl8k 8192 17 0 0 3 0 3 3 0 8 0 mcl4k 4096 17 0 0 3 0 3 3 0 8 0 mcl2k2 2112 5 0 0 1 0 1 1 0 8 0 mcl2k 2048 484 0 0 21 4 17 21 0 8 0 mtagpl 96 1691 0 0 21 0 21 21 0 8 0 mbufpl 256 11559 0 0 639 1 638 638 0 8 0 bufpl 288 55296 0 48956 454 0 454 454 0 8 0 anonpl 24 8451864 0 8420549 665 465 200 211 0 186 8 amapchunkpl 152 926094 0 924940 281 231 50 59 0 158 0 amappl16 200 86756 0 85575 390 324 66 74 0 8 0 amappl15 192 5109 0 5101 1 0 1 1 0 8 0 amappl14 184 3030 0 3024 1 0 1 1 0 8 0 amappl13 176 3813 0 3808 1 0 1 1 0 8 0 amappl12 168 2834 0 2825 1 0 1 1 0 8 0 amappl11 160 3356 0 3339 1 0 1 1 0 8 0 amappl10 152 2026 0 2019 1 0 1 1 0 8 0 amappl9 144 5922 0 5917 1 0 1 1 0 8 0 amappl8 136 8723 0 8572 7 1 6 6 0 8 0 amappl7 128 6360 0 6347 1 0 1 1 0 8 0 amappl6 120 5915 0 5882 2 0 2 2 0 8 0 amappl5 112 25302 0 25278 1 0 1 1 0 8 0 amappl4 104 10707 0 10663 2 0 2 2 0 8 0 amappl3 96 6271 0 6246 1 0 1 1 0 8 0 amappl2 88 7523 0 7427 3 0 3 3 0 8 0 amappl1 80 533358 0 532763 14 0 14 14 0 8 0 amappl 88 368090 0 367683 13 3 10 10 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 151 0 21 3 0 3 3 0 8 0 uaddrrnd 24 30703 0 30388 2 0 2 2 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 30703 0 30388 2 0 2 2 0 8 0 vmmpekpl 168 206510 0 206408 6 1 5 5 0 8 0 vmmpepl 168 2752251 0 2748261 815 634 181 218 0 357 0 vmsppl 368 30702 0 30388 30 1 29 29 0 8 0 rwobjpl 56 644705 0 636090 172 50 122 124 0 8 0 pdppl 4096 61413 0 61061 1665 1311 354 355 0 8 2 pvpl 32 14040498 0 14014877 863 636 227 267 0 265 9 pmappl 248 30702 0 30388 22 2 20 20 0 8 0 extentpl 40 57 0 38 1 0 1 1 0 8 0 phpool 112 3829 0 2030 53 1 52 52 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace done_flush() at done_flush+0x38 vm_run(ffff8000246805e0) at vm_run+0x304 sys/arch/amd64/amd64/vmm.c:4297 vmmioctl(a00,c0205602,ffff8000246805e0,ca,ffff80002e362d20) at vmmioctl+0x8f sys/arch/amd64/amd64/vmm.c:492 VOP_IOCTL(fffffd806e22bc90,c0205602,ffff8000246805e0,ca,fffffd807f7d88a0,ffff80002e362d20) at VOP_IOCTL+0x96 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806490b4c0,c0205602,ffff8000246805e0,ffff80002e362d20) at vn_ioctl+0xbc sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80002e362d20,ffff8000246806f8,ffff800024680750) at sys_ioctl+0x4a2 syscall(ffff8000246807c0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff8000246807c0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x86263793030, count: -8 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{1}> trace x86_ipi_db(ffff800020ce8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206 sched_idle(ffff800020ce8ff0) at sched_idle+0x417 sys/kern/kern_sched.c:178 end trace frame: 0x0, count: -5