kernel: protection fault trap, code=0 Stopped at ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace ktrops(ffff800030789008,dead4110dead4110,0,80000120,fffffd806329c6f0,fffffd807f7d7478) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff800030789008,dead4110dead4110,0,80000120,fffffd806329c6f0,fffffd807f7d7478) at ktrops+0x4e sys/kern/kern_ktrace.c:561 doktrace(fffffd806329c6f0,4,120,0,ffff800030789008) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806329c6f0,4,120,0,ffff800030789008) at doktrace+0x524 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff800030789008,ffff800036e3b4d0,ffff800036e3b520) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff800036e3b590) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x83d063ff970, count: -5 ddb> show registers rdi 0xffff800030789008 rsi 0xdead4110dead4110 rbp 0xffff800036e3b2c0 rbx 0xdead4110dead4110 rdx 0 rcx 0x80000120 __kernel_virt_to_phys+0x120 rax 0xffff800030789008 r8 0xfffffd806329c6f0 r9 0xfffffd807f7d7478 r10 0x937b721e22d868ce r11 0x28d9a4cc9fe77d3b r12 0xdead4110dead4110 r13 0xfffffd807f7d7478 r14 0xffff800030789008 r15 0x80000120 __kernel_virt_to_phys+0x120 rip 0xffffffff81d76cce ktrops+0x4e cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800036e3b240 ss 0 ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> show proc PROC (syz-executor.0) tid=32194 pid=62787 tcnt=3 stat=onproc flags process=10 proc=4000000 runpri=17, usrpri=81, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff800030789aa8,0xffff800030788d70 process=0xffff8000343f77a0 user=0xffff800036e36000, vmspace=0xfffffd807430ccf8 estcpu=31, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 62787 449059 61970 0 2 0x10 syz-executor.0 *62787 32194 61970 0 7 0x4000010 syz-executor.0 62787 467001 61970 0 3 0x4000090 fsleep syz-executor.0 24565 302501 24394 0 3 0x80 nanoslp syz-executor.3 24565 28322 24394 0 3 0x4000080 kqread syz-executor.3 29916 10321 35775 0 2 0x482 syz-executor.4 24681 360022 35775 0 2 0x2 syz-executor.2 24372 149880 0 0 3 0x14280 nfsidl nfsio 57957 351185 0 0 3 0x14280 nfsidl nfsio 33132 84325 0 0 3 0x14280 nfsidl nfsio 46785 432039 0 0 3 0x14280 nfsidl nfsio 32494 118455 0 0 3 0x14280 nfsidl nfsio 68634 53041 0 0 3 0x14280 nfsidl nfsio 2978 373892 0 0 3 0x14280 nfsidl nfsio 91604 485230 0 0 3 0x14280 nfsidl nfsio 36201 246645 0 0 3 0x14280 nfsidl nfsio 20730 139616 0 0 3 0x14280 nfsidl nfsio 22529 184126 0 0 3 0x14280 nfsidl nfsio 46959 95238 0 0 3 0x14280 nfsidl nfsio 21623 410388 0 0 3 0x14280 nfsidl nfsio 85097 202911 0 0 3 0x14280 nfsidl nfsio 16533 286737 0 0 3 0x14280 nfsidl nfsio 33083 485093 0 0 3 0x14280 nfsidl nfsio 48785 191383 0 0 3 0x14280 nfsidl nfsio 78459 123653 0 0 3 0x14280 nfsidl nfsio 80455 490677 0 0 3 0x14280 nfsidl nfsio 80719 433640 0 0 3 0x14280 nfsidl nfsio 75865 291755 35775 0 2 0x482 syz-executor.5 74598 8887 35775 0 2 0x2 syz-executor.1 99550 372784 35775 0 2 0x2 syz-executor.6 24394 158528 35775 0 3 0x82 nanoslp syz-executor.3 61970 190000 35775 0 3 0x82 nanoslp syz-executor.0 61096 268978 0 0 3 0x14200 bored sosplice 35775 88584 60626 0 3 0x2000082 wait syz-fuzzer 35775 218470 60626 0 3 0x6000082 nanoslp syz-fuzzer 35775 111471 60626 0 3 0x6000082 wait syz-fuzzer 35775 294455 60626 0 3 0x6000082 thrsleep syz-fuzzer 35775 286985 60626 0 3 0x6000082 wait syz-fuzzer 35775 119038 60626 0 3 0x6000082 wait syz-fuzzer 35775 310946 60626 0 3 0x6000082 thrsleep syz-fuzzer 35775 340696 60626 0 3 0x6000082 wait syz-fuzzer 35775 393709 60626 0 3 0x6000082 thrsleep syz-fuzzer 35775 75698 60626 0 3 0x6000082 wait syz-fuzzer 35775 138900 60626 0 3 0x6000082 thrsleep syz-fuzzer 35775 308179 60626 0 3 0x6000082 wait syz-fuzzer 35775 487791 60626 0 3 0x6000082 thrsleep syz-fuzzer 35775 296846 60626 0 2 0x6000002 syz-fuzzer 60626 138005 64303 0 3 0x10008a sigsusp ksh 64303 474172 41194 0 2 0x12 sshd 19021 170928 1 0 3 0x100083 ttyin getty 41194 441108 1 0 3 0x88 kqread sshd 52548 343072 10544 73 3 0x1100090 kqread syslogd 10544 182555 1 0 3 0x100082 netio syslogd 86211 416921 1 0 3 0x100080 kqread resolvd 84788 404079 36872 77 3 0x100092 kqread dhcpleased 44261 414325 36872 77 3 0x100092 kqread dhcpleased 36872 506828 1 0 3 0x80 kqread dhcpleased 10862 464761 0 0 3 0x14200 bored smr 54976 201480 0 0 2 0x14200 zerothread 83248 15830 0 0 3 0x14200 aiodoned aiodoned 15464 103078 0 0 3 0x14200 syncer update 27443 330810 0 0 3 0x14200 cleaner cleaner 93473 487206 0 0 3 0x14200 reaper reaper 95720 332307 0 0 3 0x14200 pgdaemon pagedaemon 61072 90285 0 0 3 0x14200 bored viomb 11708 389069 0 0 3 0x40014200 acpi0 acpi0 25776 240132 0 0 3 0x14200 bored softnet3 34869 306128 0 0 3 0x14200 bored softnet2 17250 515564 0 0 3 0x14200 bored softnet1 2507 309348 0 0 2 0x14200 softnet0 3010 300367 0 0 3 0x14200 bored systqmp 38614 418604 0 0 3 0x14200 bored systq 91360 497338 0 0 3 0x40014200 tmoslp softclock 59706 120836 0 0 3 0x40014200 idle0 1 9348 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10185 6471K 6858K 166960K 12750 0 pcb 13 12K 14K 166960K 172 0 rtable 185 13K 15K 166960K 710 0 pf 27 8K 9K 166960K 61 0 ifaddr 34 9K 11K 166960K 92 0 ifgroup 46 2K 2K 166960K 110 0 sysctl 3 0K 0K 166960K 3 0 counters 29 17K 17K 166960K 44 0 ioctlops 0 0K 2K 166960K 59 0 iov 0 0K 14K 166960K 72 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1310 82K 82K 166960K 2034 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 11 0 VM map 2 1K 1K 166960K 2 0 sem 11 1K 1K 166960K 18 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 11 37K 69K 166960K 1602 0 sigio 0 0K 0K 166960K 36 0 proc 57 59K 75K 166960K 792 0 subproc 91 5K 6K 166960K 273 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 46 0 in_multi 72 5K 7K 166960K 221 0 ether_multi 1 0K 0K 166960K 1 0 mrt 0 0K 0K 166960K 3 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 73 334K 334K 166960K 73 0 exec 0 0K 1K 166960K 802 0 tdb 3 0K 0K 166960K 3 0 pagedep 1 8K 8K 166960K 1 0 inodedep 1 32K 32K 166960K 1 0 newblk 1 0K 0K 166960K 1 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 308 83K 94K 166960K 16262 0 UVM aobj 18 2K 2K 166960K 21 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 20 0 NDP 10 0K 2K 166960K 62 0 temp 70 5923K 6002K 166960K 10884 0 kqueue 13 20K 40K 166960K 424 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 183 0 180 4 3 1 3 0 8 0 rtentry 112 239 0 155 4 0 4 4 0 8 0 unpcb 144 883 0 868 13 7 6 6 0 8 5 syncache 312 19 0 19 2 2 0 1 0 8 0 tcpqe 32 140 0 140 2 2 0 1 0 8 0 tcpcb 808 338 0 334 11 4 7 7 0 8 6 arp 88 42 0 29 1 0 1 1 0 8 0 ipq 40 5 0 5 1 1 0 1 0 8 0 ipqe 40 11 0 11 1 1 0 1 0 8 0 inpcb 336 1014 0 1007 27 10 17 17 0 8 16 nd6 104 57 0 39 1 0 1 1 0 8 0 pkpcb 40 3 0 3 1 1 0 1 0 8 0 kcovpl 48 21 0 14 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 988 0 597 37 11 26 29 0 8 0 art_table 32 989 0 597 4 0 4 4 0 8 0 art_node 16 236 0 159 1 0 1 1 0 8 0 sysvmsgpl 40 53 0 14 1 0 1 1 0 8 0 semupl 112 5 0 5 2 2 0 1 0 8 0 semapl 112 12 0 3 1 0 1 1 0 8 0 shmpl 112 18 0 3 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 3558 0 2122 91 0 91 91 0 8 0 ffsino 240 3558 0 2122 86 0 86 86 0 8 0 nchpl 144 6051 0 4413 63 1 62 63 0 8 0 uvmvnodes 80 4090 0 0 84 0 84 84 0 8 0 vnodes 216 4090 0 0 228 0 228 228 0 8 0 namei 1024 21442 0 21442 2 1 1 2 0 8 1 vcpupl 2048 16 0 0 2 0 2 2 0 8 0 vmpool 664 19 0 3 2 0 2 2 0 8 0 kstatmem 264 50 0 30 2 0 2 2 0 8 0 scxspl 216 17646 0 17646 9 8 1 8 1 8 1 plimitpl 152 205 0 191 1 0 1 1 0 8 0 sigapl 424 1886 0 1825 8 0 8 8 0 8 0 futexpl 64 15397 0 15396 1 0 1 1 0 8 0 knotepl 120 19967 0 19890 19 15 4 17 0 8 0 kqueuepl 184 2351 0 2342 15 11 4 9 0 8 3 pipepl 288 577 0 552 10 7 3 7 0 8 1 fdescpl 432 1849 0 1827 4 0 4 4 0 8 0 filepl 120 13828 0 13577 29 16 13 21 0 8 5 lockfpl 104 496 0 494 3 1 2 2 0 8 1 lockfspl 48 116 0 114 1 0 1 1 0 8 0 sessionpl 144 33 0 18 1 0 1 1 0 8 0 pgrppl 48 50 0 35 1 0 1 1 0 8 0 ucredpl 104 1563 0 1551 1 0 1 1 0 8 0 zombiepl 144 1827 0 1825 1 0 1 1 0 8 0 processpl 1008 1886 0 1825 10 1 9 9 0 8 0 procpl 680 4012 0 3935 9 1 8 8 0 8 0 sosppl 168 18 0 18 2 2 0 1 0 8 0 sockpl 456 2089 0 2064 59 31 28 28 0 8 24 mcl64k 65536 48 0 48 1 0 1 1 0 8 1 mcl16k 16384 32 0 32 2 2 0 1 0 8 0 mcl12k 12288 54 0 54 2 1 1 1 0 8 1 mcl9k 9216 19 0 19 3 2 1 1 0 8 1 mcl8k 8192 136 0 136 3 2 1 1 0 8 1 mcl4k 4096 207 0 207 2 1 1 2 0 8 1 mcl2k2 2112 12 0 12 2 1 1 1 0 8 1 mcl2k 2048 69274 0 69222 33 25 8 31 0 8 0 mtagpl 96 132 0 44 4 1 3 3 0 8 0 mbufpl 256 120796 0 120581 85 22 63 63 0 8 40 bufpl 288 6611 0 214 458 0 458 458 0 8 0 anonpl 24 320319 0 308892 100 16 84 100 0 188 0 amapchunkpl 152 52641 0 51943 50 11 39 48 0 158 6 amappl16 200 7995 0 7578 35 12 23 33 0 8 0 amappl15 192 66 0 66 1 1 0 1 0 8 0 amappl14 184 185 0 173 2 1 1 2 0 8 0 amappl13 176 10 0 10 2 2 0 1 0 8 0 amappl12 168 2627 0 2604 2 0 2 2 0 8 0 amappl11 160 49 0 38 1 0 1 1 0 8 0 amappl10 152 54 0 45 1 0 1 1 0 8 0 amappl9 144 210 0 209 1 0 1 1 0 8 0 amappl8 136 257 0 192 3 0 3 3 0 8 0 amappl7 128 214 0 189 2 0 2 2 0 8 0 amappl6 120 398 0 388 1 0 1 1 0 8 0 amappl5 112 157 0 148 1 0 1 1 0 8 0 amappl4 104 466 0 444 2 1 1 2 0 8 0 amappl3 96 10216 0 10151 3 0 3 3 0 8 0 amappl2 88 2360 0 2293 3 1 2 3 0 8 0 amappl1 80 15444 0 14947 22 10 12 22 0 8 0 amappl 88 15632 0 15448 6 0 6 6 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 20 0 3 1 0 1 1 0 8 0 uaddrrnd 24 1868 0 1830 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1868 0 1830 1 0 1 1 0 8 0 vmmpekpl 168 19754 0 19698 3 0 3 3 0 8 0 vmmpepl 168 135627 0 133648 136 33 103 121 0 357 2 vmsppl 368 1867 0 1830 4 0 4 4 0 8 0 rwobjpl 24 41986 0 36491 34 0 34 34 0 8 0 pdppl 4096 3742 0 3676 155 78 77 79 0 8 11 pvpl 32 762640 0 746256 361 71 290 361 0 265 133 pmappl 216 1867 0 1830 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1027 0 168 25 0 25 25 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff800030789008,dead4110dead4110,0,80000120,fffffd806329c6f0,fffffd807f7d7478) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff800030789008,dead4110dead4110,0,80000120,fffffd806329c6f0,fffffd807f7d7478) at ktrops+0x4e sys/kern/kern_ktrace.c:561 doktrace(fffffd806329c6f0,4,120,0,ffff800030789008) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806329c6f0,4,120,0,ffff800030789008) at doktrace+0x524 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff800030789008,ffff800036e3b4d0,ffff800036e3b520) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff800036e3b590) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x83d063ff970, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff800030789008,dead4110dead4110,0,80000120,fffffd806329c6f0,fffffd807f7d7478) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff800030789008,dead4110dead4110,0,80000120,fffffd806329c6f0,fffffd807f7d7478) at ktrops+0x4e sys/kern/kern_ktrace.c:561 doktrace(fffffd806329c6f0,4,120,0,ffff800030789008) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806329c6f0,4,120,0,ffff800030789008) at doktrace+0x524 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff800030789008,ffff800036e3b4d0,ffff800036e3b520) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff800036e3b590) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x83d063ff970, count: -5