kernel: protection fault trap, code=0 Stopped at ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace ktrops(ffff80002a5f72b0,deafbeaddeafbead,0,80000112,fffffd806b167038,fffffd807f7d74e0) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a5f72b0,deafbeaddeafbead,0,80000112,fffffd806b167038,fffffd807f7d74e0) at ktrops+0x4e sys/kern/kern_ktrace.c:561 doktrace(fffffd806b167038,4,112,0,ffff80002a5f72b0) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806b167038,4,112,0,ffff80002a5f72b0) at doktrace+0x524 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a5f72b0,ffff8000329aff40,ffff8000329afe90) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff8000329aff40) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2239f5eb30, count: -5 ddb> show registers rdi 0xffff800030f4a000 rsi 0x56b7 __ALIGN_SIZE+0x46b7 rbp 0xffff8000329afc60 rbx 0xdeafbeaddeafbead rdx 0xffff800030f4a000 rcx 0x56b6 __ALIGN_SIZE+0x46b6 rax 0xffffffff8222c9f3 ktrops+0x43 r8 0xfffffd806b167038 r9 0xfffffd807f7d74e0 r10 0xa5c7dd0c6668079c r11 0x6487dc7803a46610 r12 0xdeafbeaddeafbead r13 0xfffffd807f7d74e0 r14 0xffff80002a5f72b0 r15 0x80000112 __kernel_virt_to_phys+0x112 rip 0xffffffff8222c9fe ktrops+0x4e cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000329afbe0 ss 0 ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> show proc PROC (syz-executor.4) tid=18421 pid=38698 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=83, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a5f7800,0xffff80002a5f7ab8 process=0xffff8000ffff7250 user=0xffff8000329aa000, vmspace=0xfffffd8072f70de0 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 5918 474995 89061 0 2 0 syz-executor.7 5918 194608 89061 0 2 0x4000000 syz-executor.7 38698 30687 52849 0 2 0 syz-executor.4 *38698 18421 52849 0 7 0x4000000 syz-executor.4 51483 223524 30075 0 2 0 syz-executor.0 51483 299636 30075 0 2 0x4000000 syz-executor.0 23774 8149 76476 0 2 0x2 syz-executor.5 30075 89006 76476 0 3 0x82 nanoslp syz-executor.0 89532 427598 0 0 3 0x14280 nfsidl nfsio 96622 382475 0 0 3 0x14280 nfsidl nfsio 32199 48478 0 0 3 0x14280 nfsidl nfsio 62267 280966 0 0 3 0x14280 nfsidl nfsio 62486 513223 0 0 3 0x14280 nfsidl nfsio 13598 390196 0 0 3 0x14280 nfsidl nfsio 5813 504176 0 0 3 0x14280 nfsidl nfsio 14411 165550 0 0 3 0x14280 nfsidl nfsio 59351 1751 0 0 3 0x14280 nfsidl nfsio 76555 336296 0 0 3 0x14280 nfsidl nfsio 7486 280940 0 0 3 0x14280 nfsidl nfsio 11148 27778 0 0 3 0x14280 nfsidl nfsio 50945 235621 0 0 3 0x14280 nfsidl nfsio 80537 51288 0 0 3 0x14280 nfsidl nfsio 98871 354479 0 0 3 0x14280 nfsidl nfsio 16241 303274 0 0 3 0x14280 nfsidl nfsio 75790 171143 0 0 3 0x14280 nfsidl nfsio 65849 188404 0 0 3 0x14280 nfsidl nfsio 57742 253689 0 0 3 0x14280 nfsidl nfsio 76017 216129 0 0 3 0x14280 nfsidl nfsio 52849 257295 76476 0 3 0x82 nanoslp syz-executor.4 89061 305750 76476 0 3 0x82 nanoslp syz-executor.7 29765 490365 0 0 3 0x14200 bored sosplice 62697 330168 76476 0 2 0x2 syz-executor.6 88765 390488 76476 0 3 0x82 piperd syz-executor.1 76476 429908 17007 0 3 0x2000082 thrsleep syz-fuzzer 76476 274631 17007 0 3 0x6000082 nanoslp syz-fuzzer 76476 490759 17007 0 3 0x6000082 wait syz-fuzzer 76476 51951 17007 0 3 0x6000082 thrsleep syz-fuzzer 76476 294399 17007 0 3 0x6000082 wait syz-fuzzer 76476 193489 17007 0 3 0x6000082 thrsleep syz-fuzzer 76476 229630 17007 0 3 0x6000082 thrsleep syz-fuzzer 76476 312286 17007 0 3 0x6000082 wait syz-fuzzer 76476 245239 17007 0 3 0x6000082 wait syz-fuzzer 76476 239208 17007 0 3 0x6000082 thrsleep syz-fuzzer 76476 441182 17007 0 3 0x6000082 wait syz-fuzzer 76476 41167 17007 0 3 0x6000082 wait syz-fuzzer 76476 219989 17007 0 2 0x6000002 syz-fuzzer 76476 473852 17007 0 3 0x6000082 thrsleep syz-fuzzer 17007 271553 46792 0 3 0x10008a sigsusp ksh 46792 169700 57071 0 3 0x9a kqread sshd 55295 477176 1 0 3 0x100083 ttyin getty 57071 111700 1 0 3 0x88 kqread sshd 6773 139942 54655 73 3 0x1100090 kqread syslogd 54655 151155 1 0 3 0x100082 netio syslogd 26951 498326 1 0 3 0x100080 kqread resolvd 52139 309307 56184 77 3 0x100092 kqread dhcpleased 11901 241484 56184 77 3 0x100092 kqread dhcpleased 56184 337688 1 0 3 0x80 kqread dhcpleased 84498 61788 0 0 3 0x14200 bored smr 59108 159198 0 0 2 0x14200 zerothread 78586 310489 0 0 3 0x14200 aiodoned aiodoned 15011 168918 0 0 3 0x14200 syncer update 13431 247180 0 0 3 0x14200 cleaner cleaner 53634 427697 0 0 3 0x14200 reaper reaper 41722 128595 0 0 3 0x14200 pgdaemon pagedaemon 2340 75548 0 0 3 0x14200 bored viomb 88040 246113 0 0 3 0x40014200 acpi0 acpi0 29615 155721 0 0 3 0x14200 bored softnet3 9368 471571 0 0 3 0x14200 bored softnet2 49578 343227 0 0 3 0x14200 bored softnet1 50366 113834 0 0 3 0x14200 bored softnet0 42893 504829 0 0 3 0x14200 bored systqmp 70078 430851 0 0 3 0x14200 bored systq 8642 32712 0 0 3 0x40014200 tmoslp softclock 15926 521129 0 0 3 0x40014200 idle0 1 310348 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10216 6494K 6949K 166960K 17993 0 pcb 15 18K 20K 166960K 434 0 rtable 141 13K 16K 166960K 851 0 pf 25 8K 9K 166960K 118 0 ifaddr 27 8K 11K 166960K 108 0 ifgroup 42 1K 2K 166960K 205 0 sysctl 2 0K 0K 166960K 2 0 counters 28 17K 17K 166960K 67 0 ioctlops 0 0K 2K 166960K 194 0 iov 0 0K 32K 166960K 360 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1444 90K 90K 166960K 4507 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 39 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 644 0 dirhash 12 2K 2K 166960K 18 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 11 37K 73K 166960K 2855 0 sigio 0 0K 0K 166960K 94 0 proc 58 59K 75K 166960K 755 0 subproc 78 4K 6K 166960K 195 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 276 0 in_multi 50 3K 7K 166960K 219 0 ether_multi 1 0K 0K 166960K 1 0 mrt 1 0K 0K 166960K 2 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 223 996K 996K 166960K 223 0 exec 0 0K 1K 166960K 591 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 319 215K 242K 166960K 28094 0 UVM aobj 131 4K 4K 166960K 135 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 57 0 NDP 10 0K 1K 166960K 79 0 temp 66 6703K 6784K 166960K 32385 0 kqueue 12 18K 28K 166960K 215 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 284 0 281 3 1 2 2 0 8 1 rtentry 112 207 0 148 4 1 3 4 0 8 0 unpcb 144 2308 0 2295 27 21 6 10 0 8 5 syncache 320 37 0 37 5 5 0 1 0 8 0 tcpqe 32 309 0 309 5 5 0 1 0 8 0 tcpcb 808 851 0 838 33 25 8 9 0 8 6 arp 88 38 0 30 1 0 1 1 0 8 0 inpcb 344 2744 0 2728 49 41 8 14 0 8 6 nd6 104 47 0 37 1 0 1 1 0 8 0 pkpcb 40 5 0 5 2 2 0 1 0 8 0 kcovpl 48 15 0 9 1 0 1 1 0 8 0 ppxss 1072 4 0 4 1 1 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 850 0 572 38 16 22 30 0 8 2 art_table 32 851 0 572 4 0 4 4 0 8 0 art_node 16 206 0 152 1 0 1 1 0 8 0 sysvmsgpl 40 24 0 2 1 0 1 1 0 8 0 semapl 112 642 0 632 1 0 1 1 0 8 0 shmpl 112 132 0 4 4 0 4 4 0 8 0 dirhash 1024 21 0 4 3 0 3 3 0 8 0 dino2pl 256 5172 0 3739 91 0 91 91 0 8 0 ffsino 240 5172 0 3739 86 0 86 86 0 8 0 nchpl 144 9109 0 7477 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 34376 0 34375 6 5 1 3 0 8 0 vcpupl 2048 58 0 0 8 0 8 8 0 8 0 vmpool 664 58 0 0 5 0 5 5 0 8 0 kstatmem 264 96 0 78 2 0 2 2 0 8 0 scxspl 216 27722 0 27722 24 22 2 8 1 8 2 plimitpl 152 282 0 269 1 0 1 1 0 8 0 sigapl 424 3237 0 3178 9 1 8 8 0 8 0 futexpl 64 31876 0 31876 1 0 1 1 0 8 1 knotepl 120 45317 0 45246 18 15 3 11 0 8 0 kqueuepl 184 438 0 430 5 4 1 4 0 8 0 pipepl 288 892 0 870 23 18 5 12 0 8 2 fdescpl 432 3120 0 3098 4 0 4 4 0 8 0 filepl 120 22863 0 22667 48 36 12 17 0 8 4 lockfpl 104 1193 0 1191 1 0 1 1 0 8 0 lockfspl 48 528 0 526 1 0 1 1 0 8 0 sessionpl 144 30 0 16 1 0 1 1 0 8 0 pgrppl 48 53 0 39 1 0 1 1 0 8 0 ucredpl 104 3563 0 3553 1 0 1 1 0 8 0 zombiepl 144 3178 0 3178 2 1 1 1 0 8 1 processpl 1072 3237 0 3178 5 0 5 5 0 8 0 procpl 680 7276 0 7201 11 2 9 9 0 8 1 sosppl 168 46 0 46 4 3 1 1 0 8 1 sockpl 488 5346 0 5314 123 110 13 33 0 8 8 mcl64k 65536 146 0 146 5 4 1 1 0 8 1 mcl16k 16384 74 0 74 6 5 1 1 0 8 1 mcl12k 12288 111 0 111 5 4 1 1 0 8 1 mcl9k 9216 98 0 98 7 6 1 1 0 8 1 mcl8k 8192 203 0 203 5 4 1 1 0 8 1 mcl4k 4096 301 0 301 5 4 1 1 0 8 1 mcl2k2 2112 20 0 20 5 4 1 1 0 8 1 mcl2k 2048 74626 0 74569 38 29 9 30 0 8 1 mtagpl 96 242 0 219 4 3 1 3 0 8 0 mbufpl 256 148007 0 147867 205 186 19 64 0 8 0 bufpl 280 9395 0 3001 457 0 457 457 0 8 0 anonpl 24 434050 0 422253 120 24 96 108 0 188 1 amapchunkpl 152 90078 0 89341 57 19 38 40 0 158 4 amappl16 200 9609 0 9167 38 13 25 34 0 8 0 amappl15 192 11 0 11 1 1 0 1 0 8 0 amappl14 184 183 0 172 2 1 1 2 0 8 0 amappl13 176 45 0 43 1 0 1 1 0 8 0 amappl12 168 3860 0 3835 2 0 2 2 0 8 0 amappl11 160 57 0 47 1 0 1 1 0 8 0 amappl10 152 34 0 27 2 1 1 1 0 8 0 amappl9 144 197 0 196 1 0 1 1 0 8 0 amappl8 136 244 0 184 3 0 3 3 0 8 0 amappl7 128 209 0 185 2 0 2 2 0 8 0 amappl6 120 361 0 350 1 0 1 1 0 8 0 amappl5 112 189 0 180 1 0 1 1 0 8 0 amappl4 104 483 0 462 2 1 1 2 0 8 0 amappl3 96 17943 0 17878 3 0 3 3 0 8 0 amappl2 88 3718 0 3652 3 1 2 3 0 8 0 amappl1 80 19697 0 19209 22 11 11 22 0 8 0 amappl 88 27445 0 27258 6 0 6 6 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 134 0 4 3 0 3 3 0 8 0 uaddrrnd 24 3178 0 3098 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 3178 0 3098 1 0 1 1 0 8 0 vmmpekpl 168 27372 0 27310 3 0 3 3 0 8 0 vmmpepl 168 202223 0 200180 169 64 105 136 0 357 1 vmsppl 352 3177 0 3098 8 0 8 8 0 8 0 rwobjpl 24 59067 0 51622 46 0 46 46 0 8 0 pdppl 4096 6362 0 6254 268 148 120 122 0 8 12 pvpl 32 1053880 0 1037227 386 211 175 361 0 265 4 pmappl 216 3177 0 3098 5 0 5 5 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 835 0 448 13 0 13 13 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a5f72b0,deafbeaddeafbead,0,80000112,fffffd806b167038,fffffd807f7d74e0) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a5f72b0,deafbeaddeafbead,0,80000112,fffffd806b167038,fffffd807f7d74e0) at ktrops+0x4e sys/kern/kern_ktrace.c:561 doktrace(fffffd806b167038,4,112,0,ffff80002a5f72b0) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806b167038,4,112,0,ffff80002a5f72b0) at doktrace+0x524 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a5f72b0,ffff8000329aff40,ffff8000329afe90) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff8000329aff40) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2239f5eb30, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a5f72b0,deafbeaddeafbead,0,80000112,fffffd806b167038,fffffd807f7d74e0) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a5f72b0,deafbeaddeafbead,0,80000112,fffffd806b167038,fffffd807f7d74e0) at ktrops+0x4e sys/kern/kern_ktrace.c:561 doktrace(fffffd806b167038,4,112,0,ffff80002a5f72b0) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806b167038,4,112,0,ffff80002a5f72b0) at doktrace+0x524 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a5f72b0,ffff8000329aff40,ffff8000329afe90) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff8000329aff40) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2239f5eb30, count: -5