kernel: protection fault trap, code=0 Stopped at sblock+0x4a: movq 0x8(%rax),%rax ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic the kernel did not panic ddb{1}> trace sblock(fffffd806fbe1018,fffffd806fbe10d0,1) at sblock+0x4a soassertlocked sys/kern/uipc_socket2.c:316 [inline] sblock(fffffd806fbe1018,fffffd806fbe10d0,1) at sblock+0x4a sys/kern/uipc_socket2.c:371 soreceive(fffffd806fbe1018,0,ffff8000231e4668,0,0,ffff8000231e457c,583fdfb301813917) at soreceive+0x204 sys/kern/uipc_socket.c:769 fifo_read(ffff8000231e45d0) at fifo_read+0xcb sys/miscfs/fifofs/fifo_vnops.c:251 VOP_READ(fffffd80752e21d8,ffff8000231e4668,64,fffffd807f7d73a8) at VOP_READ+0xbf sys/kern/vfs_vops.c:227 vn_rdwr(0,fffffd80752e21d8,ffff800020b4f000,200,0,1,48f411bd85bfa5dd,ffff8000006b6000,fffffd80798b2260,0) at vn_rdwr+0x105 vndstrategy(fffffd80798b2260) at vndstrategy+0x3c4 sys/dev/vnd.c:342 readdoslabel(fffffd80798b2260,ffffffff824457c0,ffff800000c51c00,0,1) at readdoslabel+0x122 readdisksector sys/kern/subr_disk.c:317 [inline] readdoslabel(fffffd80798b2260,ffffffff824457c0,ffff800000c51c00,0,1) at readdoslabel+0x122 sys/kern/subr_disk.c:359 readdisklabel(2902,ffffffff824457c0,ffff800000c51c00,1) at readdisklabel+0x165 sys/arch/amd64/amd64/disksubr.c:99 vndioctl(2902,41946472,ffff800000c51c00,1,ffff8000fffed500) at vndioctl+0x4b2 sys/dev/vnd.c:619 VOP_IOCTL(fffffd806e197768,41946472,ffff800000c51c00,1,fffffd807f7d7548,ffff8000fffed500) at VOP_IOCTL+0x96 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd8079f87ad0,41946472,ffff800000c51c00,ffff8000fffed500) at vn_ioctl+0xbc sys/kern/vfs_vnops.c:528 sys_ioctl(ffff8000fffed500,ffff8000231e5288,ffff8000231e52e0) at sys_ioctl+0x4a2 syscall(ffff8000231e5350) at syscall+0x484 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff8000231e5350) at syscall+0x484 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa8d5eb78c70, count: -14 ddb{1}> show registers rdi 0 rsi 0x40 rbp 0xffff8000231e4460 rbx 0x1 rdx 0xffff800000ba0b80 rcx 0x3d5 rax 0x119ae732c6fb8395 r8 0x400 r9 0x1 r10 0x20b05dc4f3654086 r11 0x38c27fb68bfe387d r12 0xfffffd806fbe1000 r13 0x1 r14 0xfffffd806fbe1120 r15 0xfffffd806fbe1018 rip 0xffffffff8128124a sblock+0x4a cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000231e4400 ss 0x10 sblock+0x4a: movq 0x8(%rax),%rax ddb{1}> show proc PROC (syz-executor.3) pid=227445 stat=onproc flags process=0 proc=4000000 pri=24, usrpri=69, nice=20 forw=0xffffffffffffffff, list=0xffff800021306d30,0xffff8000261aad30 process=0xffff8000231ba588 user=0xffff8000231e0000, vmspace=0xfffffd806ffd6460 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 35456 10745 84782 0 2 0 syz-executor.4 35456 392149 84782 0 3 0x4000080 fsleep syz-executor.4 93209 105695 78272 0 2 0 syz-executor.0 76568 43623 39312 0 2 0 syz-executor.5 76568 268169 39312 0 2 0x4000000 syz-executor.5 4932 42341 46832 0 2 0 syz-executor.7 4932 475709 46832 0 2 0x4000000 syz-executor.7 50055 42199 98013 0 2 0 syz-executor.6 50055 350147 98013 0 3 0x4000080 fsleep syz-executor.6 7536 286976 20682 0 3 0x80 nanoslp syz-executor.3 * 7536 227445 20682 0 7 0x4000000 syz-executor.3 69554 113406 7363 0 3 0x82 nanoslp syz-executor.2 20682 433785 7363 0 3 0x82 nanoslp syz-executor.3 15891 403697 0 0 3 0x14280 nfsidl nfsio 76622 502436 0 0 3 0x14280 nfsidl nfsio 83865 155797 0 0 3 0x14280 nfsidl nfsio 39632 516975 0 0 3 0x14280 nfsidl nfsio 40894 353271 0 0 3 0x14280 nfsidl nfsio 97072 122742 0 0 3 0x14280 nfsidl nfsio 10150 440047 0 0 3 0x14280 nfsidl nfsio 28013 338997 0 0 3 0x14280 nfsidl nfsio 57560 165279 0 0 3 0x14280 nfsidl nfsio 43468 347312 0 0 3 0x14280 nfsidl nfsio 50025 255305 0 0 3 0x14280 nfsidl nfsio 75000 170730 0 0 3 0x14280 nfsidl nfsio 43077 179771 0 0 3 0x14280 nfsidl nfsio 95068 343127 0 0 3 0x14280 nfsidl nfsio 36710 54930 0 0 3 0x14280 nfsidl nfsio 51137 524151 0 0 3 0x14280 nfsidl nfsio 34079 189611 0 0 3 0x14280 nfsidl nfsio 7839 459027 0 0 3 0x14280 nfsidl nfsio 29434 195199 0 0 3 0x14280 nfsidl nfsio 67860 341434 0 0 3 0x14280 nfsidl nfsio 78272 385819 7363 0 3 0x82 nanoslp syz-executor.0 39312 325541 7363 0 3 0x82 nanoslp syz-executor.5 3042 213634 7363 0 2 0x2 syz-executor.1 12046 118029 0 0 3 0x14200 acct acct 84782 178992 7363 0 3 0x82 nanoslp syz-executor.4 46832 418458 7363 0 3 0x82 nanoslp syz-executor.7 1502 511240 0 0 3 0x14200 bored sosplice 98013 124319 7363 0 3 0x82 nanoslp syz-executor.6 7363 217612 65584 0 3 0x82 thrsleep syz-fuzzer 7363 462787 65584 0 3 0x4000082 nanoslp syz-fuzzer 7363 478322 65584 0 3 0x4000082 nanoslp syz-fuzzer 7363 198136 65584 0 3 0x4000082 kqread syz-fuzzer 7363 141389 65584 0 3 0x4000082 thrsleep syz-fuzzer 7363 195575 65584 0 3 0x4000082 thrsleep syz-fuzzer 7363 402559 65584 0 3 0x4000082 thrsleep syz-fuzzer 7363 15375 65584 0 3 0x4000082 thrsleep syz-fuzzer 7363 366649 65584 0 3 0x4000082 thrsleep syz-fuzzer 65584 167816 79505 0 3 0x10008a sigsusp ksh 79505 92700 98629 0 3 0x9a kqread sshd 80199 287448 1 0 3 0x100083 ttyin getty 98629 78714 1 0 3 0x88 kqread sshd 94184 27089 18530 74 3 0x1100092 bpf pflogd 18530 455064 1 0 3 0x80 netio pflogd 80858 322899 36185 73 3 0x1100090 kqread syslogd 36185 338710 1 0 3 0x100082 netio syslogd 45600 102882 1 0 3 0x100080 kqread resolvd 58380 124022 68041 77 3 0x100092 kqread dhcpleased 80852 203420 68041 77 3 0x100092 kqread dhcpleased 68041 7060 1 0 3 0x80 kqread dhcpleased 62246 158348 0 0 3 0x14200 bored smr 82279 235993 0 0 2 0x14200 zerothread 71100 80327 0 0 3 0x14200 aiodoned aiodoned 11489 372142 0 0 3 0x14200 syncer update 74768 234922 0 0 3 0x14200 cleaner cleaner 93426 231303 0 0 7 0x14200 reaper 2470 25520 0 0 3 0x14200 pgdaemon pagedaemon 83967 152852 0 0 3 0x14200 bored viomb 30005 286309 0 0 3 0x40014200 acpi0 acpi0 6410 302830 0 0 3 0x40014200 idle1 33565 335033 0 0 3 0x14200 bored softnet 46505 461868 0 0 3 0x14200 bored softnet 23457 162992 0 0 3 0x14200 bored softnet 96784 345914 0 0 3 0x14200 bored softnet 69889 426348 0 0 3 0x14200 bored systqmp 88565 50299 0 0 3 0x14200 bored systq 93735 49431 0 0 3 0x40014200 bored softclock 73816 227805 0 0 3 0x40014200 idle0 1 274283 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10223 6681K 7004K 78643K 20262 0 pcb 14 16K 20K 78643K 2909 0 rtable 202 9K 9K 78643K 4588 0 ifaddr 84 20K 21K 78643K 1156 0 sysctl 3 1K 1K 78643K 3 0 counters 54 35K 36K 78643K 374 0 ioctlops 1 0K 8K 78643K 3008 0 iov 0 0K 24K 78643K 589 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 5 0 vnodes 1331 83K 83K 78643K 5071 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 15 0 VM map 2 1K 1K 78643K 2 0 sem 11 3K 4K 78643K 23 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 16 57K 89K 78643K 7698 0 sigio 1 0K 0K 78643K 228 0 proc 70 91K 128K 78643K 4267 0 subproc 104 6K 6K 78643K 1789 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 59 0 in_multi 79 5K 6K 78643K 1600 0 ether_multi 1 0K 0K 78643K 14 0 mrt 1 0K 0K 78643K 326 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 229 1023K 1023K 78643K 229 0 exec 0 0K 2K 78643K 4097 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 285 187K 187K 78643K 42679 0 UVM aobj 95 3K 3K 78643K 98 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 126 0 NDP 14 0K 2K 78643K 450 0 temp 130 4724K 5748K 78643K 69353 0 kqueue 12 18K 24K 78643K 547 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 442 0 439 3 2 1 3 0 8 0 rtentry 112 1679 0 1591 4 1 3 4 0 8 0 unpcb 136 8473 0 8456 44 36 8 8 0 8 7 syncache 296 12 0 12 4 4 0 1 0 8 0 tcpqe 32 140 0 140 3 3 0 1 0 8 0 tcpcb 736 1774 0 1768 65 59 6 14 0 8 5 arp 120 280 0 264 1 0 1 1 0 8 0 inpcb 320 10714 0 10706 100 92 8 17 0 8 7 ip6q 72 7 0 7 1 1 0 1 0 8 0 ip6af 40 21 0 21 1 1 0 1 0 8 0 nd6 48 421 0 400 1 0 1 1 0 8 0 pkpcb 40 10 0 10 3 3 0 1 0 8 0 kcovpl 48 137 0 129 1 0 1 1 0 8 0 ppxss 1256 16 0 16 5 5 0 1 0 8 0 pffrag 232 10 0 10 2 2 0 1 0 482 0 pffrnode 88 10 0 10 2 2 0 1 0 8 0 pffrent 40 29 0 29 2 2 0 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfrktable 1344 3 0 1 1 0 1 1 0 8 0 pfstitem 24 31 0 29 1 0 1 1 0 8 0 pfstkey 120 31 0 29 1 0 1 1 0 8 0 pfstate 336 31 0 29 3 2 1 3 0 8 0 pfrule 1360 35 0 24 3 2 1 2 0 8 0 rttmr 136 85 0 85 3 3 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 6782 0 6424 39 16 23 30 0 8 0 art_table 32 6783 0 6424 4 0 4 4 0 8 0 art_node 16 1674 0 1598 1 0 1 1 0 8 0 sysvmsgpl 40 2 0 0 1 0 1 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 9 0 0 1 0 1 1 0 8 0 shmpl 112 95 0 3 3 0 3 3 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 8629 0 7182 91 0 91 91 0 8 0 ffsino 272 8629 0 7182 97 0 97 97 0 8 0 nchpl 144 16872 0 15225 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 224 5926 0 0 349 0 349 349 0 8 0 namei 1024 65087 0 65087 3 2 1 2 0 8 1 percpumem 16 199 0 160 1 0 1 1 0 8 0 vcpupl 2048 13 0 0 2 0 2 2 0 8 0 vmpool 560 24 0 11 2 1 1 2 0 8 0 pfiaddrpl 120 3 0 0 1 0 1 1 0 8 0 kstatmem 264 344 0 320 3 1 2 3 0 8 0 scxspl 216 46489 0 46489 16 15 1 8 0 8 1 plimitpl 152 489 0 474 1 0 1 1 0 8 0 sigapl 424 7767 0 7698 10 2 8 8 0 8 0 futexpl 64 55624 0 55622 1 0 1 1 0 8 0 knotepl 120 387 0 0 11 0 11 11 0 8 0 kqueuepl 224 951 0 943 13 12 1 5 0 8 0 pipepl 336 1667 0 1639 42 39 3 8 0 8 0 fdescpl 496 7728 0 7699 7 3 4 5 0 8 0 filepl 152 45183 0 44940 84 67 17 22 0 8 7 lockfpl 104 890 0 888 2 1 1 2 0 8 0 lockfspl 48 277 0 275 1 0 1 1 0 8 0 sessionpl 144 153 0 136 1 0 1 1 0 8 0 pgrppl 48 164 0 147 1 0 1 1 0 8 0 ucredpl 104 2118 0 2106 1 0 1 1 0 8 0 zombiepl 144 7699 0 7698 2 1 1 1 0 8 0 processpl 1064 7767 0 7698 5 0 5 5 0 8 0 procpl 672 17845 0 17763 21 12 9 9 0 8 1 srpgc 96 251 0 251 7 6 1 1 0 8 1 sosppl 168 18 0 18 4 4 0 1 0 8 0 sockpl 480 19645 0 19617 383 371 12 45 0 8 8 mcl64k 65536 16 0 0 2 0 2 2 0 8 0 mcl16k 16384 10 0 0 2 0 2 2 0 8 0 mcl12k 12288 17 0 0 2 0 2 2 0 8 0 mcl9k 9216 10 0 0 1 0 1 1 0 8 0 mcl8k 8192 26 0 0 3 0 3 3 0 8 0 mcl4k 4096 17 0 0 3 0 3 3 0 8 0 mcl2k2 2112 8 0 0 1 0 1 1 0 8 0 mcl2k 2048 255 0 0 21 0 21 21 0 8 0 mtagpl 96 303 0 0 6 0 6 6 0 8 0 mbufpl 256 645 0 0 36 0 36 36 0 8 0 bufpl 288 11491 0 5159 453 0 453 453 0 8 0 anonpl 24 1263563 0 1249529 129 24 105 115 0 186 0 amapchunkpl 152 115398 0 114755 37 9 28 33 0 158 0 amappl16 200 14305 0 13768 46 17 29 38 0 8 0 amappl15 192 941 0 941 2 1 1 1 0 8 1 amappl14 184 698 0 693 1 0 1 1 0 8 0 amappl13 176 2670 0 2664 1 0 1 1 0 8 0 amappl12 168 1129 0 1123 1 0 1 1 0 8 0 amappl11 160 884 0 861 4 2 2 2 0 8 1 amappl10 152 332 0 322 1 0 1 1 0 8 0 amappl9 144 1461 0 1455 1 0 1 1 0 8 0 amappl8 136 3258 0 3181 3 0 3 3 0 8 0 amappl7 128 1303 0 1291 1 0 1 1 0 8 0 amappl6 120 2021 0 2000 2 1 1 2 0 8 0 amappl5 112 3064 0 3048 1 0 1 1 0 8 0 amappl4 104 5322 0 5288 2 0 2 2 0 8 0 amappl3 96 21492 0 21440 2 0 2 2 0 8 0 amappl2 88 10840 0 10774 3 1 2 3 0 8 0 amappl1 80 177232 0 176569 24 9 15 20 0 8 0 amappl 88 40381 0 40204 6 1 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 97 0 3 2 0 2 2 0 8 0 uaddrrnd 24 7752 0 7710 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 7752 0 7710 1 0 1 1 0 8 0 vmmpekpl 168 60126 0 60066 4 0 4 4 0 8 0 vmmpepl 168 804311 0 801670 194 61 133 142 0 357 10 vmsppl 368 7751 0 7709 8 4 4 5 0 8 0 rwobjpl 56 179555 0 171943 110 1 109 110 0 8 0 pdppl 4096 15511 0 15431 870 788 82 84 0 8 2 pvpl 32 2880260 0 2861678 277 103 174 244 0 265 0 pmappl 248 7751 0 7709 4 1 3 3 0 8 0 extentpl 40 58 0 38 1 0 1 1 0 8 0 phpool 112 1755 0 919 25 0 25 25 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff8297eff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __mp_lock(ffffffff82b2eb48) at __mp_lock+0x122 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82b2eb48) at __mp_lock+0x122 sys/kern/kern_lock.c:147 uvm_unmap_detach(ffff800021239500,1) at uvm_unmap_detach+0x113 sys/uvm/uvm_map.c:1615 uvm_map_teardown(fffffd806ee8d2e8) at uvm_map_teardown+0x262 sys/uvm/uvm_map.c:2789 uvmspace_free(fffffd806ee8d2e8) at uvmspace_free+0xa6 sys/uvm/uvm_map.c:3684 reaper(ffff800021233a48) at reaper+0x19a sys/kern/kern_exit.c:454 end trace frame: 0x0, count: -8 ddb{0}> machine ddbcpu 1 Stopped at sblock+0x4a: movq 0x8(%rax),%rax ddb{1}> trace sblock(fffffd806fbe1018,fffffd806fbe10d0,1) at sblock+0x4a soassertlocked sys/kern/uipc_socket2.c:316 [inline] sblock(fffffd806fbe1018,fffffd806fbe10d0,1) at sblock+0x4a sys/kern/uipc_socket2.c:371 soreceive(fffffd806fbe1018,0,ffff8000231e4668,0,0,ffff8000231e457c,583fdfb301813917) at soreceive+0x204 sys/kern/uipc_socket.c:769 fifo_read(ffff8000231e45d0) at fifo_read+0xcb sys/miscfs/fifofs/fifo_vnops.c:251 VOP_READ(fffffd80752e21d8,ffff8000231e4668,64,fffffd807f7d73a8) at VOP_READ+0xbf sys/kern/vfs_vops.c:227 vn_rdwr(0,fffffd80752e21d8,ffff800020b4f000,200,0,1,48f411bd85bfa5dd,ffff8000006b6000,fffffd80798b2260,0) at vn_rdwr+0x105 vndstrategy(fffffd80798b2260) at vndstrategy+0x3c4 sys/dev/vnd.c:342 readdoslabel(fffffd80798b2260,ffffffff824457c0,ffff800000c51c00,0,1) at readdoslabel+0x122 readdisksector sys/kern/subr_disk.c:317 [inline] readdoslabel(fffffd80798b2260,ffffffff824457c0,ffff800000c51c00,0,1) at readdoslabel+0x122 sys/kern/subr_disk.c:359 readdisklabel(2902,ffffffff824457c0,ffff800000c51c00,1) at readdisklabel+0x165 sys/arch/amd64/amd64/disksubr.c:99 vndioctl(2902,41946472,ffff800000c51c00,1,ffff8000fffed500) at vndioctl+0x4b2 sys/dev/vnd.c:619 VOP_IOCTL(fffffd806e197768,41946472,ffff800000c51c00,1,fffffd807f7d7548,ffff8000fffed500) at VOP_IOCTL+0x96 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd8079f87ad0,41946472,ffff800000c51c00,ffff8000fffed500) at vn_ioctl+0xbc sys/kern/vfs_vnops.c:528 sys_ioctl(ffff8000fffed500,ffff8000231e5288,ffff8000231e52e0) at sys_ioctl+0x4a2 syscall(ffff8000231e5350) at syscall+0x484 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff8000231e5350) at syscall+0x484 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa8d5eb78c70, count: -14