kernel: protection fault trap, code=0 Stopped at lf_advlock+0x2f1: incl 0x28(%r12) ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace lf_advlock(ffff8000014874a0,0,fffffd806a915bd0,8,ffff80002f0f0f30,30) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff8000014874a0,0,fffffd806a915bd0,8,ffff80002f0f0f30,30) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd806cc601f0,fffffd806a915bd0,8,ffff80002f0f0f30,30) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 doopenat(ffff80002a7bdca0,ffffff9c,200000000040,b913f1,0,ffff80002f0f1020) at doopenat+0x504 sys/kern/vfs_syscalls.c:1170 syscall(ffff80002f0f10d0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80002f0f10d0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x178414539d0, count: -5 ddb> show registers rdi 0xffff800033916000 rsi 0x592 rbp 0xffff80002f0f0d20 rbx 0 rdx 0xffff800033916000 rcx 0x591 rax 0xffffffff81fa1331 rw_assert_wrlock+0xa1 r8 0xa0 r9 0 r10 0x786e799544d8ddb0 r11 0xb84a52ef80930628 r12 0xdeaf4152deaf4152 r13 0x8 r14 0xffff80002f0f0f30 r15 0x1 rip 0xffffffff8211e4c1 lf_advlock+0x2f1 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002f0f0c90 ss 0x10 lf_advlock+0x2f1: incl 0x28(%r12) ddb> show proc PROC (syz-executor) tid=494017 pid=59829 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=32, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a7bca78,0xffff80002a7bc2c0 process=0xffff80003c9b68a0 user=0xffff80002f0ec000, vmspace=0xfffffd806cc6da28 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 89238 188170 84368 0 2 0 syz-executor 89238 143543 84368 0 3 0x4000080 fsleep syz-executor 8394 405610 78871 0 2 0 syz-executor 8394 465296 78871 0 3 0x4000080 fsleep syz-executor 85506 512314 84844 0 2 0 syz-executor 85506 360734 84844 0 3 0x4000080 bell syz-executor 23427 272894 24020 0 2 0 syz-executor 23427 365686 24020 0 2 0x4000000 syz-executor 83230 330799 75714 0 2 0 syz-executor 83230 402707 75714 0 3 0x4000080 fsleep syz-executor 59829 434805 98754 0 2 0 syz-executor *59829 494017 98754 0 7 0x4000000 syz-executor 15341 408369 0 0 3 0x14280 nfsidl nfsio 52853 351476 0 0 3 0x14280 nfsidl nfsio 19230 352908 0 0 3 0x14280 nfsidl nfsio 3657 460625 0 0 3 0x14280 nfsidl nfsio 31362 349851 0 0 3 0x14280 nfsidl nfsio 55654 251197 0 0 3 0x14280 nfsidl nfsio 58893 432645 0 0 3 0x14280 nfsidl nfsio 39371 455858 0 0 3 0x14280 nfsidl nfsio 99163 296752 0 0 3 0x14280 nfsidl nfsio 24404 199667 0 0 3 0x14280 nfsidl nfsio 34195 455129 0 0 3 0x14280 nfsidl nfsio 72325 338624 0 0 3 0x14280 nfsidl nfsio 46981 277283 0 0 3 0x14280 nfsidl nfsio 16771 483059 0 0 3 0x14280 nfsidl nfsio 25789 444365 0 0 3 0x14280 nfsidl nfsio 29495 66862 0 0 3 0x14280 nfsidl nfsio 44144 476889 0 0 3 0x14280 nfsidl nfsio 2409 288651 0 0 3 0x14280 nfsidl nfsio 55463 122547 0 0 3 0x14280 nfsidl nfsio 80753 257503 0 0 3 0x14280 nfsidl nfsio 75714 77221 76061 0 3 0x82 nanoslp syz-executor 53608 452704 76061 0 2 0x2 syz-executor 24020 255313 76061 0 3 0x82 nanoslp syz-executor 98754 75641 76061 0 3 0x82 nanoslp syz-executor 84368 283786 76061 0 3 0x82 nanoslp syz-executor 70936 507588 76061 0 3 0x82 nanoslp syz-executor 84844 469027 76061 0 3 0x82 nanoslp syz-executor 78871 71658 76061 0 3 0x82 nanoslp syz-executor 76061 468212 35132 0 3 0x82 kqread syz-executor 35132 445811 88034 0 3 0x10008a sigsusp ksh 88034 290661 7077 0 3 0x98 kqread sshd-session 7077 95923 42473 0 3 0x92 kqread sshd-session 73028 254667 1 0 3 0x100083 ttyopn getty 42473 228654 1 0 3 0x88 kqread sshd 62237 1233 55018 73 3 0x1100090 kqread syslogd 55018 294024 1 0 3 0x100082 sbwait syslogd 59299 369301 1 0 3 0x100080 kqread resolvd 40749 456858 43714 77 3 0x100092 kqread dhcpleased 35797 402335 43714 77 3 0x100092 kqread dhcpleased 43714 70059 1 0 3 0x80 kqread dhcpleased 1955 403725 0 0 3 0x14200 bored smr 97862 183527 0 0 2 0x14200 zerothread 17599 326919 0 0 3 0x14200 aiodoned aiodoned 82031 321697 0 0 3 0x14200 syncer update 84890 357468 0 0 3 0x14200 cleaner cleaner 24349 390137 0 0 2 0x14200 reaper 82853 73369 0 0 3 0x14200 pgdaemon pagedaemon 94691 24980 0 0 3 0x14200 bored viomb 57797 408103 0 0 3 0x40014200 acpi0 acpi0 18160 106364 0 0 3 0x14200 bored softnet0 78560 437864 0 0 3 0x14200 bored systqmp 45135 457057 0 0 3 0x14200 bored systq 36582 499411 0 0 3 0x40014200 tmoslp softclock 72766 91505 0 0 3 0x40014200 idle0 1 356308 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10175 11121K 11437K 166960K 12400 0 pcb 17 14K 15K 166960K 174 0 rtable 194 8K 9K 166960K 575 0 pf 30 13K 17K 166960K 87 0 ifaddr 33 5K 7K 166960K 63 0 ifgroup 42 1K 2K 166960K 89 0 sysctl 4 1K 9K 166960K 13 0 counters 31 17K 18K 166960K 58 0 ioctlops 0 0K 4K 166960K 209 0 iov 0 0K 20K 166960K 37 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1348 85K 85K 166960K 1835 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 13 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 93 0 dirhash 12 2K 2K 166960K 21 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 57K 93K 166960K 698 0 sigio 0 0K 0K 166960K 4 0 proc 60 59K 91K 166960K 517 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 1 0K 0K 166960K 58 0 in_multi 76 5K 7K 166960K 118 0 ether_multi 1 0K 0K 166960K 5 0 mrt 0 0K 0K 166960K 5 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 67 307K 307K 166960K 67 0 exec 0 0K 1K 166960K 407 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 213 150K 168K 166960K 7663 0 UVM aobj 26 10K 10K 166960K 29 0 pinsyscall 37 74K 95K 166960K 1776 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 42 0 NDP 9 0K 2K 166960K 42 0 temp 76 8672K 8740K 166960K 26837 0 kqueue 13 20K 30K 166960K 132 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 285 0 282 3 2 1 3 0 8 0 rtentry 136 119 0 41 4 0 4 4 0 8 0 unpcb 144 519 0 504 6 5 1 6 0 8 0 syncache 336 9 0 9 2 1 1 1 0 8 1 tcpqe 32 2 0 2 1 0 1 1 0 8 1 tcpcb 736 257 0 251 8 6 2 7 0 8 0 arp 96 19 0 4 1 0 1 1 0 8 0 ipq 40 3 0 0 1 0 1 1 0 8 0 ipqe 40 4 0 1 1 0 1 1 0 8 0 inpcb 328 670 0 658 7 5 2 7 0 8 0 ip6q 72 3 0 1 1 0 1 1 0 8 0 ip6af 40 4 0 3 1 0 1 1 0 8 0 nd6 112 26 0 8 1 0 1 1 0 8 0 pkpcb 40 5 0 5 1 1 0 1 0 8 0 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 22 0 22 2 1 1 1 0 8 1 pppxif 1384 1 0 1 1 1 0 1 0 8 0 pfstscr 40 4 0 4 1 1 0 1 0 8 0 pfrktable 1344 2 0 2 1 1 0 1 0 8 0 pfanchor 1288 1 0 0 1 0 1 1 0 8 0 pftag 88 2 0 0 1 0 1 1 0 8 0 pfstitem 24 2 0 0 1 0 1 1 0 8 0 pfstkey 128 6 0 4 1 0 1 1 0 8 0 pfstate 384 4 0 3 1 0 1 1 0 8 0 pfrule 1344 10 0 9 1 0 1 1 0 8 0 rttmr 136 1 0 1 1 1 0 1 0 8 0 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 506 0 145 30 5 25 30 0 8 0 art_table 40 509 0 145 5 0 5 5 0 8 0 art_node 32 119 0 49 1 0 1 1 0 8 0 sysvmsgpl 40 9 0 4 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 90 0 80 1 0 1 1 0 8 0 shmpl 112 22 0 3 1 0 1 1 0 8 0 dirhash 1024 23 0 6 3 0 3 3 0 8 0 dino2pl 256 2600 0 1099 95 0 95 95 0 8 0 ffsino 256 2600 0 1099 95 0 95 95 0 8 0 nchpl 144 3610 0 1916 63 0 63 63 0 8 0 rtmask 32 5 0 5 2 1 1 1 0 8 1 vnodes 216 2976 0 0 166 0 166 166 0 8 0 namei 1024 12006 0 12005 3 2 1 2 0 8 0 vcpupl 3904 4 0 0 1 0 1 1 0 8 0 vmpool 800 4 0 0 1 0 1 1 0 8 0 kstatmem 264 52 0 34 2 0 2 2 0 8 0 scsiplug 72 3 0 3 2 1 1 1 0 8 1 scxspl 216 13138 0 13138 11 7 4 8 1 8 4 plimitpl 152 133 0 117 1 0 1 1 0 8 0 sigapl 424 1008 0 946 8 0 8 8 0 8 0 knotepl 120 25482 0 25435 23 12 11 15 0 8 8 kqueuepl 184 262 0 253 4 3 1 4 0 8 0 pipepl 304 222 0 195 5 2 3 5 0 8 0 fdescpl 448 974 0 946 5 1 4 5 0 8 0 filepl 120 5785 0 5566 11 3 8 11 0 8 0 lockfpl 104 239 0 237 1 0 1 1 0 8 0 lockfspl 48 103 0 101 1 0 1 1 0 8 0 sessionpl 144 21 0 13 1 0 1 1 0 8 0 pgrppl 48 33 0 17 1 0 1 1 0 8 0 ucredpl 104 692 0 679 1 0 1 1 0 8 0 zombiepl 144 988 0 987 2 1 1 1 0 8 0 processpl 1152 1008 0 946 5 0 5 5 0 8 0 procpl 664 1834 0 1765 7 0 7 7 0 8 0 sosppl 176 3 0 3 1 1 0 1 0 8 0 sockpl 552 1501 0 1471 13 9 4 12 0 8 1 mcl64k 65536 104 0 104 2 1 1 1 0 8 1 mcl12k 12288 1 0 1 1 1 0 1 0 8 0 mcl9k 9216 1 0 1 1 1 0 1 0 8 0 mcl8k 8192 11 0 10 1 0 1 1 0 8 0 mcl4k 4096 3196 0 3139 15 7 8 15 0 8 0 mcl2k 2048 1162 0 1160 10 9 1 10 0 8 0 mtagpl 96 92 0 15 3 0 3 3 0 8 1 mbufpl 256 13620 0 13393 209 191 18 209 0 8 0 bufpl 280 4423 0 120 308 0 308 308 0 8 0 anonpl 24 168968 0 165943 53 21 32 44 0 187 8 amapchunkpl 152 25595 0 25172 32 7 25 27 0 158 4 amappl16 200 2980 0 2948 20 17 3 15 0 8 0 amappl15 192 10 0 10 1 1 0 1 0 8 0 amappl14 184 8 0 7 1 0 1 1 0 8 0 amappl13 176 408 0 407 1 0 1 1 0 8 0 amappl12 168 1357 0 1320 2 0 2 2 0 8 0 amappl11 160 5 0 5 1 1 0 1 0 8 0 amappl10 152 40 0 30 1 0 1 1 0 8 0 amappl9 144 251 0 251 1 1 0 1 0 8 0 amappl8 136 22 0 20 1 0 1 1 0 8 0 amappl7 128 81 0 80 1 0 1 1 0 8 0 amappl6 120 260 0 249 1 0 1 1 0 8 0 amappl5 112 91 0 83 1 0 1 1 0 8 0 amappl4 104 377 0 352 1 0 1 1 0 8 0 amappl3 96 4954 0 4859 3 0 3 3 0 8 0 amappl2 88 504 0 450 2 0 2 2 0 8 0 amappl1 80 11307 0 10774 13 1 12 13 0 8 0 amappl 88 6871 0 6728 4 0 4 4 0 92 0 uvmvnodes 80 117 0 0 3 0 3 3 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 7 0 7 1 1 0 1 0 8 0 dma128 128 254 0 254 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 28 0 3 1 0 1 1 0 8 0 uaddrrnd 24 974 0 946 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 974 0 946 1 0 1 1 0 8 0 vmmpekpl 168 9166 0 9134 2 0 2 2 0 8 0 vmmpepl 168 66904 0 65183 91 10 81 91 0 357 1 vmsppl 368 973 0 945 4 1 3 4 0 8 0 rwobjpl 40 19650 0 18690 13 2 11 13 0 8 0 pdppl 4096 1963 0 1894 109 38 71 81 0 8 2 pvpl 32 447802 0 439375 136 36 100 115 0 265 19 pmappl 216 977 0 945 3 1 2 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 597 0 264 16 4 12 16 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace lf_advlock(ffff8000014874a0,0,fffffd806a915bd0,8,ffff80002f0f0f30,30) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff8000014874a0,0,fffffd806a915bd0,8,ffff80002f0f0f30,30) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd806cc601f0,fffffd806a915bd0,8,ffff80002f0f0f30,30) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 doopenat(ffff80002a7bdca0,ffffff9c,200000000040,b913f1,0,ffff80002f0f1020) at doopenat+0x504 sys/kern/vfs_syscalls.c:1170 syscall(ffff80002f0f10d0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80002f0f10d0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x178414539d0, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace lf_advlock(ffff8000014874a0,0,fffffd806a915bd0,8,ffff80002f0f0f30,30) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff8000014874a0,0,fffffd806a915bd0,8,ffff80002f0f0f30,30) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd806cc601f0,fffffd806a915bd0,8,ffff80002f0f0f30,30) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 doopenat(ffff80002a7bdca0,ffffff9c,200000000040,b913f1,0,ffff80002f0f1020) at doopenat+0x504 sys/kern/vfs_syscalls.c:1170 syscall(ffff80002f0f10d0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80002f0f10d0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x178414539d0, count: -5