kernel: protection fault trap, code=0 Stopped at sys_semop+0x45b: movzwl 0(%rax),%r15d ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace sys_semop(ffff80002a7f07d0,ffff80003c955230,ffff80003c955180) at sys_semop+0x45b sys/kern/sysv_sem.c:615 syscall(ffff80003c955230) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c955230) at syscall+0x97e sys/arch/amd64/amd64/trap.c:637 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d2029af3d0, count: -3 ddb> show registers rdi 0 rsi 0 rbp 0xffff80003c955150 rbx 0 rdx 0 rcx 0 rax 0xdeafbeaddeafbead r8 0x7f7fffffc000 r9 0 r10 0x8bda99187cbe444d r11 0xe109c4709315b7ba r12 0xffff8000014e6204 r13 0 r14 0xffff80003c955230 r15 0 rip 0xffffffff826a761b sys_semop+0x45b cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c955030 ss 0x10 sys_semop+0x45b: movzwl 0(%rax),%r15d ddb> show proc PROC (syz-executor) tid=311593 pid=92125 tcnt=4 stat=onproc flags process=0 proc=4000000 runpri=50, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a7f0cf0,0xffff80002a776018 process=0xffff80003892e8c8 user=0xffff80003c950000, vmspace=0xfffffd806c297178 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 92125 64542 90058 0 2 0 syz-executor *92125 311593 90058 0 7 0x4000000 syz-executor 92125 132158 90058 0 3 0x4000080 fsleep syz-executor 92125 479276 90058 0 3 0x4000080 fsleep syz-executor 30447 19373 3257 0 3 0x80 nanoslp syz-executor 30447 73241 3257 0 3 0x4000080 fsleep syz-executor 30447 437091 3257 0 3 0x4000080 fsleep syz-executor 30447 320174 3257 0 3 0x4000080 fsleep syz-executor 52477 128721 67818 0 3 0x80 fsleep syz-executor 52477 61239 67818 0 3 0x4000080 kqread syz-executor 35350 56637 59426 0 3 0x80 fsleep syz-executor 35350 326719 59426 0 3 0x4000080 kqpoll syz-executor 66965 19820 77482 0 3 0x80 fsleep syz-executor 66965 2958 77482 0 3 0x4000080 fifow syz-executor 49400 102570 99392 0 3 0x80 fsleep syz-executor 49400 458903 99392 0 3 0x4000080 kqread syz-executor 51127 402162 16245 0 3 0x80 fsleep syz-executor 51127 491713 16245 0 3 0x4000080 ttyin syz-executor 66797 263312 73702 0 3 0x80 fsleep syz-executor 66797 110332 73702 0 3 0x4000080 kqpoll syz-executor 284 76967 1 0 3 0x100083 ttyopn getty 45350 294603 1628 0 3 0x82 sbwait sshd-session 99392 42178 70810 0 3 0x82 nanoslp syz-executor 92820 388890 0 0 3 0x14280 nfsidl nfsio 32260 459096 0 0 3 0x14280 nfsidl nfsio 61768 493655 0 0 3 0x14280 nfsidl nfsio 81923 508916 0 0 3 0x14280 nfsidl nfsio 48560 215791 0 0 3 0x14280 nfsidl nfsio 23330 405411 0 0 3 0x14280 nfsidl nfsio 48641 269228 0 0 3 0x14280 nfsidl nfsio 79249 91822 0 0 3 0x14280 nfsidl nfsio 64470 7014 0 0 3 0x14280 nfsidl nfsio 99630 158474 0 0 3 0x14280 nfsidl nfsio 56845 5493 0 0 3 0x14280 nfsidl nfsio 10606 294164 0 0 3 0x14280 nfsidl nfsio 34936 282955 0 0 3 0x14280 nfsidl nfsio 58056 300218 0 0 3 0x14280 nfsidl nfsio 19462 197142 0 0 3 0x14280 nfsidl nfsio 8801 351331 0 0 3 0x14280 nfsidl nfsio 96968 8352 0 0 3 0x14280 nfsidl nfsio 4647 431846 0 0 3 0x14280 nfsidl nfsio 33261 469691 0 0 3 0x14280 nfsidl nfsio 52010 307684 0 0 3 0x14280 nfsidl nfsio 54168 111995 0 0 3 0x14200 acct acct 20413 139125 0 0 3 0x14200 bored sosplice 90058 509876 70810 0 3 0x82 nanoslp syz-executor 16245 108989 70810 0 3 0x82 nanoslp syz-executor 77482 335677 70810 0 3 0x82 nanoslp syz-executor 73702 37806 70810 0 3 0x82 nanoslp syz-executor 3257 130448 70810 0 2 0xc82 syz-executor 67818 151118 70810 0 3 0x82 nanoslp syz-executor 59426 417723 70810 0 3 0x82 nanoslp syz-executor 70810 515590 18442 0 3 0x82 kqread syz-executor 18442 354459 13303 0 3 0x10008a sigsusp ksh 13303 434073 99148 0 3 0x98 kqread sshd-session 99148 129013 1628 0 3 0x92 kqread sshd-session 1628 80844 1 0 3 0x88 kqread sshd 38118 309943 73804 73 3 0x1100090 kqread syslogd 73804 201751 1 0 3 0x100082 sbwait syslogd 93749 378737 1 0 3 0x100080 kqread resolvd 98457 304883 33958 77 3 0x100092 kqread dhcpleased 59539 359280 33958 77 3 0x100092 kqread dhcpleased 33958 460233 1 0 3 0x80 kqread dhcpleased 39409 36458 0 0 3 0x14200 bored smr 59890 238740 0 0 2 0x14200 zerothread 41205 389971 0 0 3 0x14200 aiodoned aiodoned 61306 477165 0 0 3 0x14200 syncer update 43898 212566 0 0 3 0x14200 cleaner cleaner 23985 327496 0 0 3 0x14200 reaper reaper 88688 377905 0 0 3 0x14200 pgdaemon pagedaemon 53953 317844 0 0 3 0x14200 bored viomb 65964 397217 0 0 3 0x40014200 acpi0 acpi0 90955 72457 0 0 3 0x14200 bored softnet3 64583 242981 0 0 3 0x14200 bored softnet2 42336 512855 0 0 3 0x14200 bored softnet1 94025 67613 0 0 3 0x14200 bored softnet0 15797 290220 0 0 3 0x14200 bored systqmp 90206 359410 0 0 3 0x14200 bored systq 20582 207980 0 0 2 0x40014200 softclock 5838 37554 0 0 3 0x40014200 idle0 1 515425 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10194 11258K 11573K 166960K 13156 0 pcb 17 13K 13K 166960K 144 0 rtable 229 9K 10K 166960K 498 0 pf 37 14K 18K 166960K 92 0 ifaddr 41 7K 7K 166960K 70 0 ifgroup 58 2K 2K 166960K 106 0 sysctl 4 1K 9K 166960K 15 0 counters 34 18K 18K 166960K 58 0 ioctlops 0 0K 4K 166960K 177 0 iov 0 0K 20K 166960K 115 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1520 95K 96K 166960K 2529 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 11 0 VM map 2 1K 1K 166960K 2 0 sem 12 1K 1K 166960K 33 0 dirhash 12 2K 2K 166960K 18 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 97K 166960K 936 0 sigio 0 0K 0K 166960K 114 0 proc 60 59K 124K 166960K 586 0 subproc 72 4K 4K 166960K 81 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 103 0 in_multi 91 6K 7K 166960K 144 0 ether_multi 1 0K 0K 166960K 5 0 mrt 0 0K 0K 166960K 9 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 73 334K 334K 166960K 73 0 exec 0 0K 1K 166960K 496 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 3 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 243 152K 166K 166960K 9937 0 UVM aobj 82 3K 3K 166960K 85 0 pinsyscall 41 82K 96K 166960K 2033 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 41 0 NDP 13 0K 1K 166960K 45 0 temp 55 8682K 8805K 166960K 9398 0 kqueue 13 20K 31K 166960K 144 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 91 0 88 1 0 1 1 0 8 0 rtentry 136 147 0 47 4 0 4 4 0 8 0 unpcb 144 855 0 833 7 5 2 6 0 8 1 syncache 336 10 0 10 2 1 1 1 0 8 1 tcpqe 32 4 0 4 2 1 1 1 0 8 1 tcpcb 736 441 0 429 10 3 7 7 0 8 5 arp 88 26 0 9 1 0 1 1 0 8 0 ipq 40 3 0 0 1 0 1 1 0 8 0 ipqe 40 3 0 0 1 0 1 1 0 8 0 inpcb 328 1072 0 1051 13 5 8 8 0 8 5 ip6q 72 2 0 1 1 0 1 1 0 8 0 ip6af 40 3 0 2 1 0 1 1 0 8 0 nd6 104 33 0 10 1 0 1 1 0 8 0 pkpcb 40 9 0 9 2 1 1 1 0 8 1 kcovpl 48 9 0 1 1 0 1 1 0 8 0 ppxss 1072 16 0 16 2 1 1 1 0 8 1 pppxif 1384 5 0 5 2 1 1 1 0 8 1 pfstscr 40 1 0 1 1 0 1 1 0 8 1 pfrktable 1344 3 0 3 2 1 1 1 0 8 1 pfanchor 1288 1 0 0 1 0 1 1 0 8 0 pftag 88 5 0 5 2 1 1 1 0 8 1 pfqueue 320 1 0 1 1 0 1 1 0 8 1 pfstitem 24 4 0 2 1 0 1 1 0 8 0 pfstkey 128 16 0 12 1 0 1 1 0 8 0 pfstate 384 8 0 7 1 0 1 1 0 8 0 pfrule 1344 11 0 9 1 0 1 1 0 8 0 rttmr 136 2 0 2 1 1 0 1 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 616 0 200 31 3 28 31 0 8 0 art_table 32 618 0 200 4 0 4 4 0 8 0 art_node 16 144 0 55 1 0 1 1 0 8 0 sysvmsgpl 40 6 0 3 1 0 1 1 0 8 0 semapl 112 30 0 21 1 0 1 1 0 8 0 shmpl 112 82 0 3 3 0 3 3 0 8 0 dirhash 1024 21 0 4 3 0 3 3 0 8 0 dino2pl 256 3050 0 1560 95 0 95 95 0 8 0 ffsino 248 3050 0 1560 95 0 95 95 0 8 0 nchpl 144 4386 0 2701 63 0 63 63 0 8 0 rtmask 32 4 0 4 2 1 1 1 0 8 1 uvmvnodes 80 3986 0 0 82 0 82 82 0 8 0 vnodes 216 3986 0 0 222 0 222 222 0 8 0 namei 1024 17005 0 17005 2 1 1 2 0 8 1 kstatmem 264 54 0 28 2 0 2 2 0 8 0 scsiplug 72 7 0 7 2 1 1 1 0 8 1 scxspl 216 12820 0 12820 10 2 8 8 1 8 8 plimitpl 152 218 0 202 1 0 1 1 0 8 0 sigapl 424 1244 0 1175 8 0 8 8 0 8 0 knotepl 120 33445 0 33397 23 13 10 15 0 8 7 kqueuepl 184 318 0 304 4 3 1 4 0 8 0 pipepl 296 244 0 217 8 0 8 8 0 8 5 fdescpl 440 1206 0 1175 5 1 4 5 0 8 0 filepl 120 9303 0 9073 23 8 15 16 0 8 6 lockfpl 104 387 0 384 1 0 1 1 0 8 0 lockfspl 48 176 0 173 1 0 1 1 0 8 0 sessionpl 144 30 0 21 1 0 1 1 0 8 0 pgrppl 48 54 0 37 1 0 1 1 0 8 0 ucredpl 104 2112 0 2100 1 0 1 1 0 8 0 zombiepl 144 1335 0 1335 1 0 1 1 0 8 1 processpl 1160 1244 0 1175 6 0 6 6 0 8 0 procpl 656 2439 0 2358 8 0 8 8 0 8 0 sosppl 168 9 0 8 2 1 1 1 0 8 0 sockpl 528 2055 0 2009 16 9 7 12 0 8 3 mcl64k 65536 92 0 92 2 1 1 1 0 8 1 mcl16k 16384 2 0 2 1 1 0 1 0 8 0 mcl9k 9216 1 0 1 1 1 0 1 0 8 0 mcl8k 8192 8 0 8 2 1 1 1 0 8 1 mcl4k 4096 3515 0 3463 13 5 8 13 0 8 1 mcl2k2 2112 5 0 5 2 1 1 1 0 8 1 mcl2k 2048 987 0 984 7 5 2 6 0 8 1 mtagpl 96 47 0 23 1 0 1 1 0 8 0 mbufpl 256 18544 0 18371 31 11 20 26 0 8 6 bufpl 280 3572 0 124 247 0 247 247 0 8 0 anonpl 24 171858 0 168371 66 8 58 58 0 187 29 amapchunkpl 152 32502 0 31986 45 13 32 33 0 158 12 amappl16 200 2821 0 2784 17 4 13 15 0 8 8 amappl15 192 3 0 3 1 1 0 1 0 8 0 amappl14 184 118 0 107 1 0 1 1 0 8 0 amappl13 176 4 0 4 1 1 0 1 0 8 0 amappl12 168 1844 0 1813 3 1 2 3 0 8 0 amappl11 160 45 0 35 1 0 1 1 0 8 0 amappl10 152 5 0 5 1 1 0 1 0 8 0 amappl9 144 250 0 250 1 1 0 1 0 8 0 amappl8 136 22 0 21 1 0 1 1 0 8 0 amappl7 128 110 0 98 1 0 1 1 0 8 0 amappl6 120 186 0 182 1 0 1 1 0 8 0 amappl5 112 116 0 109 1 0 1 1 0 8 0 amappl4 104 319 0 302 1 0 1 1 0 8 0 amappl3 96 6442 0 6324 5 1 4 4 0 8 0 amappl2 88 682 0 620 2 0 2 2 0 8 0 amappl1 80 12862 0 12216 15 0 15 15 0 8 0 amappl 88 9079 0 8905 6 1 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma2048 2048 1 0 1 1 1 0 1 0 8 0 dma1024 1024 3 0 2 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 255 0 255 2 1 1 1 0 8 1 dma64 64 7 0 7 2 1 1 1 0 8 1 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 20 0 19 1 0 1 1 0 8 0 aobjpl 72 84 0 3 2 0 2 2 0 8 0 uaddrrnd 24 1206 0 1175 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1206 0 1175 1 0 1 1 0 8 0 vmmpekpl 168 11303 0 11264 3 0 3 3 0 8 0 vmmpepl 168 81032 0 78979 100 0 100 100 0 357 7 vmsppl 360 1205 0 1175 4 1 3 4 0 8 0 rwobjpl 32 26354 0 21320 41 0 41 41 0 8 0 pdppl 4096 2419 0 2350 119 50 69 83 0 8 0 pvpl 32 498157 0 488300 163 22 141 141 0 265 56 pmappl 216 1205 0 1175 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 324 0 85 8 0 8 8 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace sys_semop(ffff80002a7f07d0,ffff80003c955230,ffff80003c955180) at sys_semop+0x45b sys/kern/sysv_sem.c:615 syscall(ffff80003c955230) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c955230) at syscall+0x97e sys/arch/amd64/amd64/trap.c:637 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d2029af3d0, count: -3 ddb> machine ddbcpu 1 No such command ddb> trace sys_semop(ffff80002a7f07d0,ffff80003c955230,ffff80003c955180) at sys_semop+0x45b sys/kern/sysv_sem.c:615 syscall(ffff80003c955230) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c955230) at syscall+0x97e sys/arch/amd64/amd64/trap.c:637 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d2029af3d0, count: -3