kernel: protection fault trap, code=0 Stopped at done_flush+0x38: movl %eax,%dr6 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002e8a1b00) at vm_run+0x302 sys/arch/amd64/amd64/vmm.c:4485 vmmioctl(a00,c0205602,ffff80002e8a1b00,1,ffff800027f5ba50) at vmmioctl+0x192 sys/arch/amd64/amd64/vmm.c:661 VOP_IOCTL(fffffd806e889048,c0205602,ffff80002e8a1b00,1,fffffd807f7d76c0,ffff800027f5ba50) at VOP_IOCTL+0x8d sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806514e168,c0205602,ffff80002e8a1b00,ffff800027f5ba50) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:531 sys_ioctl(ffff800027f5ba50,ffff80002e8a1c18,ffff80002e8a1c70) at sys_ioctl+0x49e syscall(ffff80002e8a1ce0) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf107dc77380, count: -8 ddb> show registers rdi 0x6c14 __ALIGN_SIZE+0x5c14 rsi 0xffff80002e866cd8 rbp 0xffff80002e8a1860 rbx 0x756e6547 rdx 0x49656e69 rcx 0x6c65746e rax 0x100000000 r8 0 r9 0x10000 __ALIGN_SIZE+0xf000 r10 0x15097521f6a2c8c8 r11 0x443957533c5d95b7 r12 0xffff80002e866a10 r13 0xffffffff8299ebe8 dt_prov_static r14 0xffff80002e8666c0 r15 0xffff80002e8a1b00 rip 0xffffffff8215b1a0 done_flush+0x38 cs 0x8 rflags 0x10046 __ALIGN_SIZE+0xf046 rsp 0xffff80002e8a16c6 ss 0x10 done_flush+0x38: movl %eax,%dr6 ddb> show proc PROC (syz-executor.4) pid=23890 stat=onproc flags process=0 proc=4000000 pri=32, usrpri=82, nice=20 forw=0xffffffffffffffff, list=0xffff80002b3bca80,0xffff800027f5a800 process=0xffff80002161e048 user=0xffff80002e89c000, vmspace=0xfffffd80781d0cd0 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 66222 181219 48093 0 2 0 syz-executor.6 66222 307573 48093 0 3 0x4000080 fsleep syz-executor.6 55332 373811 85425 0 2 0 syz-executor.3 55332 16246 85425 0 3 0x4000080 fsleep syz-executor.3 37393 282213 2702 0 2 0 syz-executor.4 *37393 23890 2702 0 7 0x4000000 syz-executor.4 11155 458783 30663 0 2 0 syz-executor.1 51965 91978 96572 0 3 0x80 nanoslp syz-executor.2 51965 221070 96572 0 3 0x4000080 fsleep syz-executor.2 51965 468560 96572 0 3 0x4000080 fsleep syz-executor.2 95224 300971 1489 0 2 0 syz-executor.5 95224 421952 1489 0 3 0x4000080 netio syz-executor.5 96572 168677 80826 0 3 0x82 nanoslp syz-executor.2 85425 55744 80826 0 3 0x82 nanoslp syz-executor.3 68378 191390 80826 0 2 0x2 syz-executor.0 30663 274937 80826 0 3 0x82 nanoslp syz-executor.1 6157 366222 80826 0 2 0x2 syz-executor.7 48093 50594 80826 0 3 0x82 nanoslp syz-executor.6 2702 33638 80826 0 3 0x82 nanoslp syz-executor.4 79149 137472 0 0 3 0x14200 acct acct 74342 189059 0 0 3 0x14280 nfsidl nfsio 5346 413720 0 0 3 0x14280 nfsidl nfsio 15775 393415 0 0 3 0x14280 nfsidl nfsio 85339 232755 0 0 3 0x14280 nfsidl nfsio 1626 195563 0 0 3 0x14280 nfsidl nfsio 39351 109946 0 0 3 0x14280 nfsidl nfsio 18177 492644 0 0 3 0x14280 nfsidl nfsio 27902 30039 0 0 3 0x14280 nfsidl nfsio 87270 235337 0 0 3 0x14280 nfsidl nfsio 6928 252409 0 0 3 0x14280 nfsidl nfsio 59242 70271 0 0 3 0x14280 nfsidl nfsio 71300 86155 0 0 3 0x14280 nfsidl nfsio 78129 480905 0 0 3 0x14280 nfsidl nfsio 2497 258159 0 0 3 0x14280 nfsidl nfsio 83009 355958 0 0 3 0x14280 nfsidl nfsio 80403 34162 0 0 3 0x14280 nfsidl nfsio 99647 502730 0 0 3 0x14280 nfsidl nfsio 74802 23106 0 0 3 0x14280 nfsidl nfsio 65686 439140 0 0 3 0x14280 nfsidl nfsio 11095 284244 0 0 3 0x14280 nfsidl nfsio 78738 230550 0 0 3 0x14200 bored sosplice 1489 106934 80826 0 3 0x82 nanoslp syz-executor.5 80826 136470 44783 0 3 0x82 kqread syz-fuzzer 80826 185880 44783 0 3 0x4000082 thrsleep syz-fuzzer 80826 97383 44783 0 3 0x4000082 thrsleep syz-fuzzer 80826 381808 44783 0 3 0x4000082 thrsleep syz-fuzzer 80826 462526 44783 0 3 0x4000082 thrsleep syz-fuzzer 80826 356787 44783 0 3 0x4000082 thrsleep syz-fuzzer 80826 276417 44783 0 3 0x4000082 thrsleep syz-fuzzer 80826 159768 44783 0 3 0x4000082 thrsleep syz-fuzzer 80826 167152 44783 0 3 0x4000082 thrsleep syz-fuzzer 44783 140242 30785 0 3 0x10008a sigsusp ksh 30785 383954 9824 0 3 0x9a kqread sshd 14298 515235 1 0 3 0x100083 ttyin getty 9824 322768 1 0 3 0x88 kqread sshd 49367 522394 94157 73 3 0x1100090 kqread syslogd 94157 521663 1 0 3 0x100082 netio syslogd 94505 479454 1 0 3 0x100080 kqread resolvd 45588 315771 7472 77 3 0x100092 kqread dhcpleased 56491 254147 7472 77 3 0x100092 kqread dhcpleased 7472 125461 1 0 3 0x80 kqread dhcpleased 74991 141278 0 0 3 0x14200 bored smr 27691 116681 0 0 2 0x14200 zerothread 2162 42087 0 0 3 0x14200 aiodoned aiodoned 61048 163817 0 0 3 0x14200 syncer update 27330 98662 0 0 3 0x14200 cleaner cleaner 49622 432773 0 0 3 0x14200 reaper reaper 90404 472119 0 0 3 0x14200 pgdaemon pagedaemon 43414 412762 0 0 3 0x14200 bored viomb 26089 7669 0 0 3 0x40014200 acpi0 acpi0 28749 36461 0 0 3 0x14200 bored softnet 26673 357197 0 0 3 0x14200 bored softnet 92906 182400 0 0 3 0x14200 bored softnet 76431 449614 0 0 3 0x14200 bored softnet 33897 96577 0 0 3 0x14200 bored systqmp 27898 412934 0 0 3 0x14200 bored systq 86516 373852 0 0 3 0x40014200 bored softclock 84783 523369 0 0 3 0x40014200 idle0 1 5198 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10197 6489K 7661K 78643K 24279 0 pcb 13 16K 19K 78643K 599 0 rtable 213 11K 12K 78643K 862 0 ifaddr 89 19K 20K 78643K 389 0 sysctl 2 0K 0K 78643K 2 0 counters 27 17K 17K 78643K 82 0 ioctlops 0 0K 4K 78643K 722 0 iov 1 16K 16K 78643K 420 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 5 0 vnodes 1394 87K 88K 78643K 6582 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 37 0 VM map 2 0K 0K 78643K 2 0 sem 33 6K 10K 78643K 252 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 16 57K 85K 78643K 4558 0 sigio 0 0K 0K 78643K 59 0 proc 59 59K 83K 78643K 861 0 subproc 104 6K 6K 78643K 247 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 220 0 in_multi 92 6K 6K 78643K 293 0 ether_multi 1 0K 0K 78643K 23 0 mrt 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 175 784K 784K 78643K 175 0 exec 0 0K 2K 78643K 1322 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 311 378K 378K 78643K 25003 0 UVM aobj 28 2K 2K 78643K 40 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 110 0 NDP 13 0K 2K 78643K 109 0 temp 137 4736K 5759K 78643K 77030 0 kqueue 13 20K 24K 78643K 263 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 180 0 177 3 2 1 3 0 8 0 rtentry 112 267 0 173 4 1 3 4 0 8 0 unpcb 136 2645 0 2632 25 22 3 6 0 8 2 syncache 296 38 0 38 9 9 0 1 0 8 0 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpqe 32 62 0 62 5 5 0 1 0 8 0 tcpcb 736 1576 0 1568 67 52 15 15 0 8 14 arp 88 47 0 30 1 0 1 1 0 8 0 ipq 40 7 0 7 2 2 0 1 0 8 0 ipqe 40 13 0 13 2 2 0 1 0 8 0 inpcb 312 3596 0 3585 65 55 10 14 0 8 8 nd6 48 62 0 40 1 0 1 1 0 8 0 pkpcb 40 11 0 11 2 2 0 1 0 8 0 kcovpl 48 19 0 11 1 0 1 1 0 8 0 ppxss 1152 23 0 23 6 6 0 1 0 8 0 pfrktable 1344 6 0 4 1 0 1 1 0 8 0 pfrule 1360 14 0 10 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 1146 0 716 42 15 27 29 0 8 0 art_table 32 1147 0 716 4 0 4 4 0 8 0 art_node 16 266 0 183 1 0 1 1 0 8 0 sysvmsgpl 40 25 0 19 2 1 1 1 0 8 0 semapl 112 244 0 213 1 0 1 1 0 8 0 shmpl 112 37 0 12 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 6965 0 5527 91 0 91 91 0 8 0 ffsino 240 6965 0 5527 85 0 85 85 0 8 0 nchpl 144 12776 0 11139 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 224 5926 0 0 349 0 349 349 0 8 0 namei 1024 46015 0 46013 3 2 1 2 0 8 0 vcpupl 1984 18 0 0 3 0 3 3 0 8 0 vmpool 528 23 0 5 2 0 2 2 0 8 0 pfiaddrpl 120 4 0 0 1 0 1 1 0 8 0 kstatmem 264 136 0 110 2 0 2 2 0 8 0 scsiplug 72 2 0 2 1 1 0 1 0 8 0 scxspl 216 41323 0 41323 13 12 1 8 0 8 1 plimitpl 152 387 0 373 1 0 1 1 0 8 0 sigapl 424 4836 0 4771 8 0 8 8 0 8 0 futexpl 64 36875 0 36871 4 3 1 1 0 8 0 knotepl 120 54127 0 54046 19 13 6 14 0 8 2 kqueuepl 184 754 0 745 15 14 1 4 0 8 0 pipepl 304 772 0 743 27 22 5 8 0 8 2 fdescpl 432 4798 0 4771 4 0 4 4 0 8 0 filepl 120 29020 0 28781 55 38 17 18 0 8 8 lockfpl 104 1395 0 1393 6 5 1 2 0 8 0 lockfspl 48 303 0 301 1 0 1 1 0 8 0 sessionpl 144 34 0 18 1 0 1 1 0 8 0 pgrppl 48 57 0 41 1 0 1 1 0 8 0 ucredpl 96 2929 0 2919 1 0 1 1 0 8 0 zombiepl 144 4771 0 4771 1 0 1 1 0 8 1 processpl 1000 4836 0 4771 10 1 9 9 0 8 0 procpl 672 11168 0 11089 13 5 8 8 0 8 1 sosppl 168 38 0 38 6 6 0 1 0 8 0 sockpl 448 6439 0 6415 153 131 22 30 0 8 19 mcl64k 65536 396 0 396 10 9 1 1 0 8 1 mcl16k 16384 36 0 36 11 10 1 1 0 8 1 mcl12k 12288 218 0 218 11 10 1 1 0 8 1 mcl9k 9216 59 0 59 10 9 1 1 0 8 1 mcl8k 8192 372 0 372 9 8 1 1 0 8 1 mcl4k 4096 345 0 345 8 7 1 1 0 8 1 mcl2k2 2112 21 0 21 7 6 1 1 0 8 1 mcl2k 2048 73819 0 73772 31 23 8 22 0 8 0 mtagpl 96 614 0 462 10 6 4 8 0 8 0 mbufpl 256 147519 0 147161 45 19 26 38 0 8 0 bufpl 288 10916 0 4512 458 0 458 458 0 8 0 anonpl 24 870436 0 853531 166 61 105 124 0 188 1 amapchunkpl 152 72754 0 72143 63 37 26 35 0 158 1 amappl16 200 12747 0 12121 89 55 34 43 0 8 0 amappl15 192 489 0 488 1 0 1 1 0 8 0 amappl14 184 464 0 459 1 0 1 1 0 8 0 amappl13 176 224 0 223 1 0 1 1 0 8 0 amappl12 168 37 0 34 2 1 1 1 0 8 0 amappl11 160 1403 0 1380 3 2 1 2 0 8 0 amappl10 152 1188 0 1182 1 0 1 1 0 8 0 amappl9 144 757 0 751 1 0 1 1 0 8 0 amappl8 136 1831 0 1759 3 0 3 3 0 8 0 amappl7 128 1158 0 1145 1 0 1 1 0 8 0 amappl6 120 520 0 501 2 1 1 2 0 8 0 amappl5 112 4976 0 4961 1 0 1 1 0 8 0 amappl4 104 2984 0 2953 2 1 1 2 0 8 0 amappl3 96 12861 0 12811 2 0 2 2 0 8 0 amappl2 88 5268 0 5200 3 1 2 3 0 8 0 amappl1 80 111694 0 111064 23 9 14 19 0 8 0 amappl 88 24292 0 24120 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 39 0 12 1 0 1 1 0 8 0 uaddrrnd 24 4821 0 4776 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4821 0 4776 1 0 1 1 0 8 0 vmmpekpl 168 34877 0 34814 3 0 3 3 0 8 0 vmmpepl 168 460159 0 457549 201 79 122 147 0 357 5 vmsppl 272 4820 0 4776 6 2 4 4 0 8 0 rwobjpl 24 113368 0 105784 48 1 47 47 0 8 0 pdppl 4096 9648 0 9570 339 257 82 82 0 8 4 pvpl 32 1817933 0 1796364 305 126 179 240 0 265 4 pmappl 216 4820 0 4776 5 2 3 3 0 8 0 extentpl 40 58 0 38 1 0 1 1 0 8 0 phpool 112 1431 0 592 25 0 25 25 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002e8a1b00) at vm_run+0x302 sys/arch/amd64/amd64/vmm.c:4485 vmmioctl(a00,c0205602,ffff80002e8a1b00,1,ffff800027f5ba50) at vmmioctl+0x192 sys/arch/amd64/amd64/vmm.c:661 VOP_IOCTL(fffffd806e889048,c0205602,ffff80002e8a1b00,1,fffffd807f7d76c0,ffff800027f5ba50) at VOP_IOCTL+0x8d sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806514e168,c0205602,ffff80002e8a1b00,ffff800027f5ba50) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:531 sys_ioctl(ffff800027f5ba50,ffff80002e8a1c18,ffff80002e8a1c70) at sys_ioctl+0x49e syscall(ffff80002e8a1ce0) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf107dc77380, count: -8 ddb> machine ddbcpu 1 No such command ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002e8a1b00) at vm_run+0x302 sys/arch/amd64/amd64/vmm.c:4485 vmmioctl(a00,c0205602,ffff80002e8a1b00,1,ffff800027f5ba50) at vmmioctl+0x192 sys/arch/amd64/amd64/vmm.c:661 VOP_IOCTL(fffffd806e889048,c0205602,ffff80002e8a1b00,1,fffffd807f7d76c0,ffff800027f5ba50) at VOP_IOCTL+0x8d sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806514e168,c0205602,ffff80002e8a1b00,ffff800027f5ba50) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:531 sys_ioctl(ffff800027f5ba50,ffff80002e8a1c18,ffff80002e8a1c70) at sys_ioctl+0x49e syscall(ffff80002e8a1ce0) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf107dc77380, count: -8