kernel: protection fault trap, code=0 Stopped at ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace ktrops(ffff80002a693d38,deadbeefdeadbeef,0,80000530,fffffd807d6d7db0,fffffd807f7d77b8) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a693d38,deadbeefdeadbeef,0,80000530,fffffd807d6d7db0,fffffd807f7d77b8) at ktrops+0x4e sys/kern/kern_ktrace.c:561 doktrace(fffffd807d6d7db0,4,530,0,ffff80002a693d38) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd807d6d7db0,4,530,0,ffff80002a693d38) at doktrace+0x524 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a693d38,ffff80002f525a40,ffff80002f525990) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff80002f525a40) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x16b69f5ade0, count: -5 ddb> show registers rdi 0xffff800032986000 rsi 0x5ec rbp 0xffff80002f525760 rbx 0xdeadbeefdeadbeef rdx 0xffff800032986000 rcx 0x5eb rax 0xffffffff813d34d3 ktrops+0x43 r8 0xfffffd807d6d7db0 r9 0xfffffd807f7d77b8 r10 0xdceb1661ce332df9 r11 0x80d4f825af28c0b9 r12 0xdeadbeefdeadbeef r13 0xfffffd807f7d77b8 r14 0xffff80002a693d38 r15 0x80000530 __kernel_virt_to_phys+0x530 rip 0xffffffff813d34de ktrops+0x4e cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002f5256e0 ss 0x10 ktrops+0x4e: movq 0x8(%rbx),%r14 ddb> show proc PROC (syz-executor.3) tid=391777 pid=71843 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=81, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a692aa0,0xffff80002a6922b8 process=0xffff80002f560448 user=0xffff80002f520000, vmspace=0xfffffd80698b09b0 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 17460 97501 42747 0 2 0 syz-executor.4 17460 72288 42747 0 3 0x4000000 inode syz-executor.4 80698 271053 86691 0 3 0x2 biowait syz-executor.7 71843 141773 74133 0 2 0 syz-executor.3 *71843 391777 74133 0 7 0x4000000 syz-executor.3 71973 7937 86691 0 2 0x482 syz-executor.6 42747 197336 86691 0 2 0x482 syz-executor.4 74133 235062 86691 0 2 0x482 syz-executor.3 45323 76580 86691 0 2 0x2 syz-executor.2 60616 416022 86691 0 2 0x2 syz-executor.1 8796 437146 86691 0 2 0x2 syz-executor.5 80276 372324 86691 0 2 0x2 syz-executor.0 86691 203832 44559 0 3 0x2000082 wait syz-fuzzer 86691 20106 44559 0 3 0x6000082 nanoslp syz-fuzzer 86691 29433 44559 0 3 0x6000082 wait syz-fuzzer 86691 195886 44559 0 3 0x6000082 wait syz-fuzzer 86691 342252 44559 0 3 0x6000082 thrsleep syz-fuzzer 86691 308461 44559 0 3 0x6000082 thrsleep syz-fuzzer 86691 310286 44559 0 3 0x6000082 wait syz-fuzzer 86691 413277 44559 0 3 0x6000082 wait syz-fuzzer 86691 509075 44559 0 3 0x6000082 wait syz-fuzzer 86691 321129 44559 0 3 0x6000082 thrsleep syz-fuzzer 86691 365889 44559 0 3 0x6000082 wait syz-fuzzer 86691 500248 44559 0 3 0x6000082 thrsleep syz-fuzzer 86691 348843 44559 0 3 0x6000082 thrsleep syz-fuzzer 86691 4002 44559 0 3 0x6000082 wait syz-fuzzer 44559 157379 18524 0 3 0x10008a sigsusp ksh 18524 185018 55095 0 3 0x9a kqread sshd 77612 375130 1 0 3 0x100083 ttyin getty 55095 50398 1 0 3 0x88 kqread sshd 28819 519263 18385 73 3 0x1100090 kqread syslogd 18385 254609 1 0 3 0x100082 netio syslogd 50568 46523 1 0 3 0x100080 kqread resolvd 7870 355925 68757 77 3 0x100092 kqread dhcpleased 77185 400322 68757 77 3 0x100092 kqread dhcpleased 68757 515013 1 0 3 0x80 kqread dhcpleased 58948 370736 0 0 3 0x14200 bored smr 70790 498042 0 0 2 0x14200 zerothread 8983 55729 0 0 3 0x14200 aiodoned aiodoned 52788 341450 0 0 3 0x14200 syncer update 54618 17104 0 0 3 0x14200 cleaner cleaner 28072 181284 0 0 3 0x14200 reaper reaper 34343 225613 0 0 3 0x14200 pgdaemon pagedaemon 23551 455808 0 0 3 0x14200 bored viomb 58397 93540 0 0 3 0x40014200 acpi0 acpi0 69892 337809 0 0 3 0x14200 bored softnet3 59634 430929 0 0 3 0x14200 bored softnet2 61036 485270 0 0 3 0x14200 bored softnet1 75166 474716 0 0 3 0x14200 bored softnet0 97796 279779 0 0 3 0x14200 bored systqmp 70579 403228 0 0 3 0x14200 bored systq 8629 95658 0 0 3 0x40014200 tmoslp softclock 28197 208753 0 0 3 0x40014200 idle0 1 144400 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10158 6398K 6416K 166960K 11261 0 pcb 15 10K 10K 166960K 15 0 rtable 212 6K 6K 166960K 382 0 pf 27 8K 8K 166960K 31 0 ifaddr 39 10K 11K 166960K 49 0 ifgroup 46 2K 2K 166960K 54 0 counters 29 17K 17K 166960K 31 0 ioctlops 0 0K 2K 166960K 157 0 iov 0 0K 0K 166960K 429 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1279 80K 80K 166960K 1332 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 5 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 47 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 12 38K 73K 166960K 1198 0 proc 55 58K 75K 166960K 498 0 subproc 91 5K 6K 166960K 117 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 in_multi 88 6K 7K 166960K 110 0 ether_multi 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 25 122K 122K 166960K 25 0 exec 0 0K 1K 166960K 378 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 241 70K 78K 166960K 11939 0 UVM aobj 3 2K 2K 166960K 9 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 NDP 10 0K 1K 166960K 30 0 temp 55 6756K 6828K 166960K 17650 0 kqueue 12 18K 22K 166960K 26 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 39 0 36 1 0 1 1 0 8 0 rtentry 112 122 0 23 4 0 4 4 0 8 0 unpcb 144 333 0 320 1 0 1 1 0 8 0 syncache 336 4 0 4 1 0 1 1 0 8 1 tcpqe 32 42 0 42 1 0 1 1 0 8 1 tcpcb 808 11 0 6 1 0 1 1 0 8 0 arp 88 20 0 4 1 0 1 1 0 8 0 inpcb 360 65 0 57 1 0 1 1 0 8 0 nd6 104 27 0 6 1 0 1 1 0 8 0 kcovpl 48 9 0 2 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 497 0 88 29 0 29 29 0 8 2 art_table 32 498 0 88 4 0 4 4 0 8 0 art_node 16 121 0 31 1 0 1 1 0 8 0 semapl 112 45 0 35 1 0 1 1 0 8 0 shmpl 112 6 0 6 1 0 1 1 0 8 1 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 3254 0 1761 94 0 94 94 0 8 0 ffsino 240 3254 0 1761 88 0 88 88 0 8 0 nchpl 144 5777 0 4132 63 0 63 63 0 8 0 uvmvnodes 80 3408 0 0 70 0 70 70 0 8 0 vnodes 216 3408 0 0 190 0 190 190 0 8 0 namei 1024 15523 0 15518 3 0 3 3 0 8 2 kstatmem 264 24 0 4 2 0 2 2 0 8 0 scxspl 216 16560 0 16559 8 0 8 8 1 8 7 plimitpl 152 35 0 20 1 0 1 1 0 8 0 sigapl 424 1496 0 1456 6 0 6 6 0 8 0 futexpl 64 12181 0 12181 1 0 1 1 0 8 1 knotepl 120 12003 0 11919 4 0 4 4 0 8 1 kqueuepl 184 22 0 14 1 0 1 1 0 8 0 pipepl 288 149 0 121 3 0 3 3 0 8 0 fdescpl 432 1480 0 1457 4 0 4 4 0 8 1 filepl 120 4496 0 4272 10 0 10 10 0 8 2 lockfpl 104 26 0 24 1 0 1 1 0 8 0 lockfspl 48 11 0 9 1 0 1 1 0 8 0 sessionpl 144 24 0 9 1 0 1 1 0 8 0 pgrppl 48 29 0 14 1 0 1 1 0 8 0 ucredpl 104 57 0 47 1 0 1 1 0 8 0 zombiepl 144 1457 0 1456 1 0 1 1 0 8 0 processpl 1072 1496 0 1456 4 0 4 4 0 8 0 procpl 680 2584 0 2529 6 0 6 6 0 8 1 sockpl 488 437 0 413 4 0 4 4 0 8 1 mcl64k 65536 5 0 5 1 0 1 1 0 8 1 mcl16k 16384 211 0 211 1 0 1 1 0 8 1 mcl12k 12288 217 0 217 1 0 1 1 0 8 1 mcl9k 9216 11 0 11 1 0 1 1 0 8 1 mcl8k 8192 19 0 19 1 0 1 1 0 8 1 mcl4k 4096 15 0 15 1 0 1 1 0 8 1 mcl2k 2048 15901 0 15857 27 13 14 27 0 8 7 mtagpl 96 4 0 4 1 0 1 1 0 8 1 mbufpl 256 37525 0 37360 16 2 14 14 0 8 1 bufpl 280 6581 0 189 457 0 457 457 0 8 0 anonpl 24 259143 0 252248 55 0 55 55 0 188 11 amapchunkpl 152 38337 0 37757 28 0 28 28 0 158 2 amappl16 200 6004 0 5834 10 0 10 10 0 8 0 amappl15 192 28 0 27 1 0 1 1 0 8 0 amappl14 184 161 0 151 2 0 2 2 0 8 1 amappl13 176 18 0 17 1 0 1 1 0 8 0 amappl12 168 2112 0 2089 2 0 2 2 0 8 0 amappl11 160 56 0 46 1 0 1 1 0 8 0 amappl10 152 23 0 14 1 0 1 1 0 8 0 amappl9 144 134 0 133 1 0 1 1 0 8 0 amappl8 136 175 0 132 2 0 2 2 0 8 0 amappl7 128 160 0 141 2 0 2 2 0 8 0 amappl6 120 264 0 254 1 0 1 1 0 8 0 amappl5 112 115 0 107 1 0 1 1 0 8 0 amappl4 104 639 0 617 2 0 2 2 0 8 1 amappl3 96 8569 0 8505 3 0 3 3 0 8 1 amappl2 88 1927 0 1861 3 0 3 3 0 8 1 amappl1 80 13081 0 12591 22 3 19 22 0 8 8 amappl 88 11443 0 11286 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 8 0 6 1 0 1 1 0 8 0 uaddrrnd 24 1480 0 1457 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1480 0 1457 1 0 1 1 0 8 0 vmmpekpl 168 14288 0 14244 3 0 3 3 0 8 0 vmmpepl 168 102231 0 100556 112 0 112 112 0 357 28 vmsppl 352 1479 0 1457 3 0 3 3 0 8 0 rwobjpl 24 33311 0 28818 28 0 28 28 0 8 0 pdppl 4096 2966 0 2914 96 36 60 68 0 8 8 pvpl 32 618584 0 606557 363 16 347 363 0 265 244 pmappl 216 1479 0 1457 2 0 2 2 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 375 0 51 10 0 10 10 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a693d38,deadbeefdeadbeef,0,80000530,fffffd807d6d7db0,fffffd807f7d77b8) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a693d38,deadbeefdeadbeef,0,80000530,fffffd807d6d7db0,fffffd807f7d77b8) at ktrops+0x4e sys/kern/kern_ktrace.c:561 doktrace(fffffd807d6d7db0,4,530,0,ffff80002a693d38) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd807d6d7db0,4,530,0,ffff80002a693d38) at doktrace+0x524 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a693d38,ffff80002f525a40,ffff80002f525990) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff80002f525a40) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x16b69f5ade0, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a693d38,deadbeefdeadbeef,0,80000530,fffffd807d6d7db0,fffffd807f7d77b8) at ktrops+0x4e ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a693d38,deadbeefdeadbeef,0,80000530,fffffd807d6d7db0,fffffd807f7d77b8) at ktrops+0x4e sys/kern/kern_ktrace.c:561 doktrace(fffffd807d6d7db0,4,530,0,ffff80002a693d38) at doktrace+0x524 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd807d6d7db0,4,530,0,ffff80002a693d38) at doktrace+0x524 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a693d38,ffff80002f525a40,ffff80002f525990) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff80002f525a40) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x16b69f5ade0, count: -5