kernel: protection fault trap, code=0 Stopped at done_flush+0x38: movl %eax,%dr6 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002bf15840) at vm_run+0x163 vmmioctl(a00,c0205602,ffff80002bf15840,1,ffff80002a6782c0) at vmmioctl+0x299 sys/dev/vmm/vmm.c:242 VOP_IOCTL(fffffd806fd88360,c0205602,ffff80002bf15840,1,fffffd807f7d76e8,ffff80002a6782c0) at VOP_IOCTL+0x91 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd800759fcc0,c0205602,ffff80002bf15840,ffff80002a6782c0) at vn_ioctl+0xbb sys/kern/vfs_vnops.c:525 sys_ioctl(ffff80002a6782c0,ffff80002bf15a20,ffff80002bf15970) at sys_ioctl+0x49e syscall(ffff80002bf15a20) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x856e8e9b500, count: -8 ddb> show registers rdi 0x6c14 __ALIGN_SIZE+0x5c14 rsi 0xffff800032955630 rbp 0xffff80002bf15590 rbx 0x756e6547 rdx 0x49656e69 rcx 0x6c65746e rax 0xfffffffffffffffd r8 0 r9 0x10000 __ALIGN_SIZE+0xf000 r10 0x427e7b2bb32d14cf r11 0xe4255d0413c6463e r12 0xffff8000329553a8 r13 0x246 r14 0xffff800032955000 r15 0xac000400 rip 0xffffffff81ebfcdd done_flush+0x38 cs 0x8 rflags 0x10046 __ALIGN_SIZE+0xf046 rsp 0xffff80002bf15406 ss 0x10 done_flush+0x38: movl %eax,%dr6 ddb> show proc PROC (syz-executor.0) tid=370489 pid=84348 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=81, usrpri=81, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a679008,0xffffffff82e7e0a8 process=0xffff80002f3bc450 user=0xffff80002bf10000, vmspace=0xfffffd8077a95868 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 84348 332959 19676 0 3 0x80 fsleep syz-executor.0 *84348 370489 19676 0 7 0x4000000 syz-executor.0 51819 516277 83085 0 3 0x80 fsleep syz-executor.7 51819 305687 83085 0 3 0x4000000 smrbar syz-executor.7 40051 332892 14120 0 2 0 syz-executor.4 40051 6280 14120 0 3 0x4000080 fsleep syz-executor.4 40051 190327 14120 0 3 0x4000080 fsleep syz-executor.4 71807 455942 47928 0 2 0x480 syz-executor.6 71807 508586 47928 0 3 0x4000080 fsleep syz-executor.6 71807 94586 47928 0 3 0x4000080 fsleep syz-executor.6 28420 340512 37089 0 3 0x80 fsleep syz-executor.5 28420 255556 37089 0 3 0x4000080 fifor syz-executor.5 47928 220136 75642 0 3 0x82 nanoslp syz-executor.6 37089 237085 75642 0 2 0x482 syz-executor.5 36475 223427 0 0 3 0x14280 nfsidl nfsio 51052 49038 0 0 3 0x14280 nfsidl nfsio 28278 108819 0 0 3 0x14280 nfsidl nfsio 83460 382567 0 0 3 0x14280 nfsidl nfsio 33752 131405 0 0 3 0x14280 nfsidl nfsio 2052 101786 0 0 3 0x14280 nfsidl nfsio 57096 333980 0 0 3 0x14280 nfsidl nfsio 11665 491386 0 0 3 0x14280 nfsidl nfsio 42236 77166 0 0 3 0x14280 nfsidl nfsio 6774 461977 0 0 3 0x14280 nfsidl nfsio 86859 399490 0 0 3 0x14280 nfsidl nfsio 35006 70194 0 0 3 0x14280 nfsidl nfsio 64497 162880 0 0 3 0x14280 nfsidl nfsio 73994 196322 0 0 3 0x14280 nfsidl nfsio 70233 138563 0 0 3 0x14280 nfsidl nfsio 81098 427207 0 0 3 0x14280 nfsidl nfsio 11267 386154 0 0 3 0x14280 nfsidl nfsio 54042 499119 0 0 3 0x14280 nfsidl nfsio 77481 180233 0 0 3 0x14280 nfsidl nfsio 29203 498321 0 0 3 0x14280 nfsidl nfsio 19676 251058 75642 0 2 0x482 syz-executor.0 83085 404244 75642 0 3 0x82 nanoslp syz-executor.7 14120 48181 75642 0 3 0x82 nanoslp syz-executor.4 68337 301739 75642 0 3 0x82 nanoslp syz-executor.3 5970 122435 75642 0 2 0x482 syz-executor.2 82758 330468 0 0 3 0x14200 acct acct 71273 333886 0 0 3 0x14200 bored sosplice 75642 82886 7384 0 3 0x2000082 wait syz-fuzzer 75642 441149 7384 0 3 0x6000082 nanoslp syz-fuzzer 75642 1509 7384 0 3 0x6000082 kqread syz-fuzzer 75642 101977 7384 0 3 0x6000082 thrsleep syz-fuzzer 75642 258935 7384 0 3 0x6000082 thrsleep syz-fuzzer 75642 456989 7384 0 3 0x6000082 wait syz-fuzzer 75642 519981 7384 0 2 0x6000002 syz-fuzzer 75642 277382 7384 0 3 0x6000082 wait syz-fuzzer 75642 285954 7384 0 3 0x6000082 wait syz-fuzzer 75642 327396 7384 0 3 0x6000082 wait syz-fuzzer 75642 319206 7384 0 3 0x6000082 thrsleep syz-fuzzer 75642 281950 7384 0 3 0x6000082 wait syz-fuzzer 75642 338810 7384 0 3 0x6000082 wait syz-fuzzer 75642 45622 7384 0 3 0x6000082 thrsleep syz-fuzzer 7384 95587 85453 0 3 0x10008a sigsusp ksh 85453 318089 3960 0 3 0x9a kqread sshd 82654 454470 1 0 3 0x100083 ttyin getty 3960 63765 1 0 3 0x88 kqread sshd 79121 384298 69621 73 3 0x1100090 kqread syslogd 69621 24936 1 0 3 0x100082 netio syslogd 84524 318626 1 0 3 0x100080 kqread resolvd 26333 109281 81832 77 3 0x100092 kqread dhcpleased 59678 20052 81832 77 3 0x100092 kqread dhcpleased 81832 350110 1 0 3 0x80 kqread dhcpleased 28200 456378 0 0 3 0x14200 bored smr 67835 270429 0 0 2 0x14200 zerothread 63053 429958 0 0 3 0x14200 aiodoned aiodoned 98449 513211 0 0 3 0x14200 syncer update 67637 411543 0 0 3 0x14200 cleaner cleaner 24105 244884 0 0 3 0x14200 reaper reaper 23704 2271 0 0 3 0x14200 pgdaemon pagedaemon 10337 290204 0 0 3 0x14200 bored viomb 5311 515280 0 0 3 0x40014200 acpi0 acpi0 28994 391905 0 0 3 0x14200 bored softnet3 79675 451877 0 0 3 0x14200 bored softnet2 41169 155890 0 0 3 0x14200 bored softnet1 15188 133145 0 0 3 0x14200 bored softnet0 21588 329610 0 0 3 0x14200 bored systqmp 90290 474747 0 0 3 0x14200 bored systq 81417 357446 0 0 2 0x40014200 softclock 27615 369215 0 0 3 0x40014200 idle0 1 520564 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10267 6446K 7004K 166960K 17147 0 pcb 15 15K 17K 166960K 406 0 rtable 174 13K 15K 166960K 1565 0 pf 27 8K 9K 166960K 239 0 ifaddr 33 10K 11K 166960K 254 0 ifgroup 44 1K 2K 166960K 362 0 sysctl 2 0K 0K 166960K 2 0 counters 29 17K 17K 166960K 129 0 ioctlops 0 0K 2K 166960K 534 0 iov 0 0K 20K 166960K 530 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1483 93K 93K 166960K 4166 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 40 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 453 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 14 49K 73K 166960K 4322 0 sigio 0 0K 0K 166960K 192 0 proc 58 59K 75K 166960K 1555 0 subproc 91 5K 7K 166960K 547 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 243 0 in_multi 66 4K 7K 166960K 518 0 ether_multi 1 0K 0K 166960K 13 0 mrt 0 0K 0K 166960K 6 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 229 1023K 1023K 166960K 229 0 exec 0 0K 1K 166960K 1354 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 380 344K 353K 166960K 41812 0 UVM aobj 131 4K 4K 166960K 131 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 150 0 NDP 10 0K 1K 166960K 196 0 temp 70 6763K 6892K 166960K 38526 0 kqueue 13 20K 26K 166960K 343 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 584 0 581 4 1 3 3 0 8 2 rtentry 112 501 0 424 4 0 4 4 0 8 1 unpcb 144 3564 0 3549 16 7 9 9 0 8 8 syncache 336 37 0 37 2 1 1 1 0 8 1 tcpqe 32 124 0 124 2 1 1 1 0 8 1 tcpcb 808 1505 0 1494 22 13 9 14 0 8 7 arp 88 86 0 74 1 0 1 1 0 8 0 ipq 40 74 0 74 2 1 1 1 0 8 1 ipqe 40 151 0 151 2 1 1 1 0 8 1 inpcb 360 3711 0 3697 28 19 9 13 0 8 7 nd6 104 130 0 115 1 0 1 1 0 8 0 pkpcb 40 56 0 56 1 0 1 1 0 8 1 kcovpl 48 42 0 35 1 0 1 1 0 8 0 ppxss 1072 48 0 47 2 1 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 2083 0 1757 42 13 29 29 0 8 4 art_table 32 2084 0 1757 4 0 4 4 0 8 0 art_node 16 494 0 424 1 0 1 1 0 8 0 semupl 112 7 0 7 1 1 0 1 0 8 0 semapl 112 444 0 434 1 0 1 1 0 8 0 shmpl 112 128 0 0 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 6822 0 5359 92 0 92 92 0 8 0 ffsino 240 6822 0 5359 87 0 87 87 0 8 0 nchpl 144 12533 0 10878 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 45727 0 45727 4 3 1 3 0 8 1 vcpupl 2048 30 0 0 4 0 4 4 0 8 0 vmpool 664 76 0 46 3 0 3 3 0 8 0 kstatmem 264 220 0 200 2 0 2 2 0 8 0 scxspl 216 40264 0 40264 9 7 2 8 1 8 2 plimitpl 152 643 0 629 1 0 1 1 0 8 0 sigapl 424 4647 0 4582 8 0 8 8 0 8 0 futexpl 64 35866 0 35859 1 0 1 1 0 8 0 knotepl 120 38093 0 38011 7 0 7 7 0 8 4 kqueuepl 184 856 0 847 4 0 4 4 0 8 3 pipepl 288 1049 0 1022 13 2 11 11 0 8 8 fdescpl 432 4529 0 4504 4 0 4 4 0 8 0 filepl 120 29035 0 28808 27 11 16 19 0 8 7 lockfpl 104 1780 0 1776 3 1 2 2 0 8 1 lockfspl 48 496 0 493 1 0 1 1 0 8 0 sessionpl 144 57 0 42 1 0 1 1 0 8 0 pgrppl 48 82 0 67 1 0 1 1 0 8 0 ucredpl 104 4000 0 3985 1 0 1 1 0 8 0 zombiepl 144 4584 0 4582 1 0 1 1 0 8 0 processpl 1072 4647 0 4582 5 0 5 5 0 8 0 procpl 680 11454 0 11369 10 1 9 9 0 8 1 sosppl 168 43 0 43 1 0 1 1 0 8 1 sockpl 488 7926 0 7894 155 142 13 38 0 8 8 mcl64k 65536 199 0 199 2 1 1 1 0 8 1 mcl16k 16384 98 0 98 2 1 1 1 0 8 1 mcl12k 12288 177 0 177 2 1 1 1 0 8 1 mcl9k 9216 96 0 96 2 1 1 1 0 8 1 mcl8k 8192 329 0 329 2 1 1 1 0 8 1 mcl4k 4096 469 0 469 2 1 1 1 0 8 1 mcl2k2 2112 28 0 28 2 1 1 1 0 8 1 mcl2k 2048 78473 0 78412 30 20 10 26 0 8 1 mtagpl 96 509 0 369 9 1 8 8 0 8 2 mbufpl 256 159202 0 158950 120 90 30 62 0 8 8 bufpl 280 10898 0 4509 457 0 457 457 0 8 0 anonpl 24 560069 0 547837 115 2 113 113 0 188 19 amapchunkpl 152 132935 0 132106 53 5 48 48 0 158 11 amappl16 200 11084 0 10617 41 7 34 38 0 8 8 amappl15 192 41 0 40 1 0 1 1 0 8 0 amappl14 184 264 0 250 2 1 1 2 0 8 0 amappl13 176 13 0 13 1 1 0 1 0 8 0 amappl12 168 5676 0 5649 2 0 2 2 0 8 0 amappl11 160 56 0 45 1 0 1 1 0 8 0 amappl10 152 63 0 53 1 0 1 1 0 8 0 amappl9 144 166 0 165 1 0 1 1 0 8 0 amappl8 136 340 0 282 3 0 3 3 0 8 0 amappl7 128 259 0 234 2 0 2 2 0 8 0 amappl6 120 788 0 777 1 0 1 1 0 8 0 amappl5 112 217 0 208 1 0 1 1 0 8 0 amappl4 104 650 0 627 2 1 1 2 0 8 0 amappl3 96 26323 0 26237 3 0 3 3 0 8 0 amappl2 88 5194 0 5122 3 1 2 3 0 8 0 amappl1 80 26809 0 26306 22 10 12 22 0 8 0 amappl 88 40961 0 40719 7 0 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 130 0 0 3 0 3 3 0 8 0 uaddrrnd 24 4605 0 4550 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4605 0 4550 1 0 1 1 0 8 0 vmmpekpl 168 39604 0 39540 4 0 4 4 0 8 0 vmmpepl 168 302362 0 300152 164 23 141 141 0 357 30 vmsppl 352 4604 0 4550 6 0 6 6 0 8 0 rwobjpl 24 80595 0 73042 46 0 46 46 0 8 0 pdppl 4096 9216 0 9130 391 298 93 93 0 8 7 pvpl 32 1517261 0 1499234 424 200 224 362 0 265 49 pmappl 216 4604 0 4550 4 0 4 4 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 832 0 447 12 0 12 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002bf15840) at vm_run+0x163 vmmioctl(a00,c0205602,ffff80002bf15840,1,ffff80002a6782c0) at vmmioctl+0x299 sys/dev/vmm/vmm.c:242 VOP_IOCTL(fffffd806fd88360,c0205602,ffff80002bf15840,1,fffffd807f7d76e8,ffff80002a6782c0) at VOP_IOCTL+0x91 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd800759fcc0,c0205602,ffff80002bf15840,ffff80002a6782c0) at vn_ioctl+0xbb sys/kern/vfs_vnops.c:525 sys_ioctl(ffff80002a6782c0,ffff80002bf15a20,ffff80002bf15970) at sys_ioctl+0x49e syscall(ffff80002bf15a20) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x856e8e9b500, count: -8 ddb> machine ddbcpu 1 No such command ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002bf15840) at vm_run+0x163 vmmioctl(a00,c0205602,ffff80002bf15840,1,ffff80002a6782c0) at vmmioctl+0x299 sys/dev/vmm/vmm.c:242 VOP_IOCTL(fffffd806fd88360,c0205602,ffff80002bf15840,1,fffffd807f7d76e8,ffff80002a6782c0) at VOP_IOCTL+0x91 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd800759fcc0,c0205602,ffff80002bf15840,ffff80002a6782c0) at vn_ioctl+0xbb sys/kern/vfs_vnops.c:525 sys_ioctl(ffff80002a6782c0,ffff80002bf15a20,ffff80002bf15970) at sys_ioctl+0x49e syscall(ffff80002bf15a20) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x856e8e9b500, count: -8