kernel: protection fault trap, code=0 Stopped at done_flush+0x38: movl %eax,%dr6 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002ffd1750) at vm_run+0x163 vmmioctl(a00,c0205602,ffff80002ffd1750,1,ffff800037842808) at vmmioctl+0x299 sys/dev/vmm/vmm.c:242 VOP_IOCTL(fffffd80717181b0,c0205602,ffff80002ffd1750,1,fffffd807f7d74e0,ffff800037842808) at VOP_IOCTL+0x91 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd8066250798,c0205602,ffff80002ffd1750,ffff800037842808) at vn_ioctl+0xbb sys/kern/vfs_vnops.c:525 sys_ioctl(ffff800037842808,ffff80002ffd1860,ffff80002ffd18b0) at sys_ioctl+0x49e syscall(ffff80002ffd1920) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x5e8b58c4640, count: -8 ddb> show registers rdi 0x6c14 __ALIGN_SIZE+0x5c14 rsi 0xffff800035e35e30 rbp 0xffff80002ffd14a0 rbx 0x756e6547 rdx 0x49656e69 rcx 0x6c65746e rax 0xfffffffffffffffc r8 0 r9 0x10000 __ALIGN_SIZE+0xf000 r10 0x39238cf5de4da56a r11 0x4beaf424470ba46c r12 0xffff800035e35ba8 r13 0xffff80002ffd13d6 r14 0xffff800035e35800 r15 0x246 rip 0xffffffff8186c12b done_flush+0x38 cs 0x8 rflags 0x10046 __ALIGN_SIZE+0xf046 rsp 0xffff80002ffd1306 ss 0x10 done_flush+0x38: movl %eax,%dr6 ddb> show proc PROC (syz-executor.2) tid=479125 pid=23560 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=32, usrpri=75, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff8000378437f8,0xffff800037843ab0 process=0xffff80002a694be0 user=0xffff80002ffcc000, vmspace=0xfffffd805de3e000 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 18211 311543 86499 0 2 0 syz-executor.0 23560 368584 34019 0 2 0 syz-executor.2 *23560 479125 34019 0 7 0x4000000 syz-executor.2 24536 311689 44667 0 2 0 syz-executor.4 24536 29649 44667 0 3 0x4000080 fsleep syz-executor.4 30907 219698 22740 0 2 0 syz-executor.7 30907 466538 22740 0 3 0x4000080 fsleep syz-executor.7 30907 364802 22740 0 3 0x4000080 fsleep syz-executor.7 45325 304523 25779 0 2 0 syz-executor.6 45325 364053 25779 0 3 0x4000080 fifor syz-executor.6 69666 287560 87071 0 2 0x480 syz-executor.5 69666 467462 87071 0 3 0x4000080 kqread syz-executor.5 69666 78263 87071 0 3 0x4000080 fsleep syz-executor.5 15442 273101 5170 0 3 0x80 nanoslp syz-executor.3 15442 113689 5170 0 3 0x4000080 kqread syz-executor.3 15442 66975 5170 0 3 0x4000080 fsleep syz-executor.3 15442 195624 5170 0 3 0x4000080 fsleep syz-executor.3 34019 300215 45332 0 3 0x82 nanoslp syz-executor.2 69073 498959 45332 0 2 0x2 syz-executor.1 22740 188205 45332 0 3 0x82 nanoslp syz-executor.7 44667 300032 45332 0 3 0x82 nanoslp syz-executor.4 87071 44480 45332 0 2 0x482 syz-executor.5 5170 438301 45332 0 2 0x482 syz-executor.3 25779 239099 45332 0 2 0x482 syz-executor.6 86499 2467 45332 0 3 0x82 nanoslp syz-executor.0 58765 378330 0 0 3 0x14280 nfsidl nfsio 85437 396280 0 0 3 0x14280 nfsidl nfsio 78979 120605 0 0 3 0x14280 nfsidl nfsio 78757 372866 0 0 3 0x14280 nfsidl nfsio 70501 61532 0 0 3 0x14280 nfsidl nfsio 28924 351689 0 0 3 0x14280 nfsidl nfsio 39677 130979 0 0 3 0x14280 nfsidl nfsio 98371 113064 0 0 3 0x14280 nfsidl nfsio 49185 69888 0 0 3 0x14280 nfsidl nfsio 49436 374573 0 0 3 0x14280 nfsidl nfsio 13610 242068 0 0 3 0x14280 nfsidl nfsio 54826 105076 0 0 3 0x14280 nfsidl nfsio 4144 502760 0 0 3 0x14280 nfsidl nfsio 98030 32051 0 0 3 0x14280 nfsidl nfsio 44846 101643 0 0 3 0x14280 nfsidl nfsio 63314 136044 0 0 3 0x14280 nfsidl nfsio 87762 241311 0 0 3 0x14280 nfsidl nfsio 76481 294638 0 0 3 0x14280 nfsidl nfsio 73577 167615 0 0 3 0x14280 nfsidl nfsio 47366 496957 0 0 3 0x14280 nfsidl nfsio 73777 98707 0 0 3 0x14200 bored sosplice 45332 158188 89755 0 3 0x2000082 wait syz-fuzzer 45332 448935 89755 0 3 0x6000082 nanoslp syz-fuzzer 45332 39288 89755 0 3 0x6000082 wait syz-fuzzer 45332 54057 89755 0 3 0x6000082 wait syz-fuzzer 45332 461537 89755 0 3 0x6000082 wait syz-fuzzer 45332 383658 89755 0 3 0x6000082 thrsleep syz-fuzzer 45332 260810 89755 0 3 0x6000082 thrsleep syz-fuzzer 45332 50154 89755 0 3 0x6000082 kqread syz-fuzzer 45332 352321 89755 0 3 0x6000082 wait syz-fuzzer 45332 484511 89755 0 3 0x6000082 wait syz-fuzzer 45332 97281 89755 0 3 0x6000082 thrsleep syz-fuzzer 45332 521060 89755 0 3 0x6000082 wait syz-fuzzer 45332 129549 89755 0 3 0x6000082 thrsleep syz-fuzzer 45332 161289 89755 0 3 0x6000082 wait syz-fuzzer 89755 44281 8478 0 3 0x10008a sigsusp ksh 8478 461053 86235 0 3 0x9a kqread sshd 69725 178517 1 0 3 0x100083 ttyin getty 86235 390430 1 0 3 0x88 kqread sshd 4670 277346 77684 73 3 0x1100090 kqread syslogd 77684 347139 1 0 3 0x100082 netio syslogd 11663 68921 1 0 3 0x100080 kqread resolvd 87995 301030 69111 77 3 0x100092 kqread dhcpleased 45046 495697 69111 77 3 0x100092 kqread dhcpleased 69111 266951 1 0 3 0x80 kqread dhcpleased 84326 233301 0 0 3 0x14200 bored smr 91568 117721 0 0 2 0x14200 zerothread 71366 21104 0 0 3 0x14200 aiodoned aiodoned 28711 303518 0 0 3 0x14200 syncer update 63547 462538 0 0 3 0x14200 cleaner cleaner 21693 513074 0 0 3 0x14200 reaper reaper 72323 446440 0 0 3 0x14200 pgdaemon pagedaemon 96000 23231 0 0 3 0x14200 bored viomb 44888 278123 0 0 3 0x40014200 acpi0 acpi0 2137 209289 0 0 3 0x14200 bored softnet3 19012 182257 0 0 3 0x14200 bored softnet2 3582 233005 0 0 3 0x14200 bored softnet1 77623 483002 0 0 3 0x14200 bored softnet0 94843 494214 0 0 3 0x14200 bored systqmp 31108 3290 0 0 3 0x14200 bored systq 99398 425200 0 0 2 0x40014200 softclock 65286 6380 0 0 3 0x40014200 idle0 1 466881 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10500 6527K 9126K 166960K 53440 0 pcb 13 20K 24K 166960K 726 0 rtable 178 13K 15K 166960K 1581 0 pf 31 9K 10K 166960K 385 0 ifaddr 35 11K 14K 166960K 294 0 ifgroup 54 2K 2K 166960K 590 0 sysctl 4 1K 1K 166960K 12 0 counters 31 17K 17K 166960K 180 0 ioctlops 0 0K 2K 166960K 709 0 iov 0 0K 24K 166960K 689 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1722 108K 108K 166960K 11758 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 104 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 502 0 dirhash 12 2K 2K 166960K 57 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 17 61K 69K 166960K 10260 0 sigio 0 0K 0K 166960K 410 0 proc 57 59K 75K 166960K 1622 0 subproc 104 6K 6K 166960K 468 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 1382 0 in_multi 73 5K 7K 166960K 638 0 ether_multi 1 0K 0K 166960K 4 0 mrt 1 0K 0K 166960K 5 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 79 360K 360K 166960K 79 0 exec 0 0K 1K 166960K 1753 0 tdb 3 0K 0K 166960K 3 0 pagedep 1 8K 8K 166960K 1 0 inodedep 1 32K 32K 166960K 1 0 newblk 1 0K 0K 166960K 1 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 509 723K 723K 166960K 96982 0 UVM aobj 131 4K 4K 166960K 134 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 193 0 NDP 12 0K 1K 166960K 239 0 temp 74 5920K 6212K 166960K 139346 0 kqueue 14 22K 26K 166960K 713 0 SYN cache 2 1236K 1244K 166960K 3 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 417 0 414 3 2 1 3 0 8 0 rtentry 112 482 0 403 5 1 4 4 0 8 0 unpcb 144 6194 0 6179 77 75 2 8 0 8 1 syncache 312 92 0 92 18 18 0 1 0 8 0 sackhl 24 2 0 2 2 2 0 1 0 8 0 tcpqe 32 220 0 220 15 15 0 1 0 8 0 tcpcb 808 2278 0 2251 86 76 10 11 0 8 5 arp 88 81 0 71 1 0 1 1 0 8 0 ipq 40 5 0 5 4 4 0 1 0 8 0 ipqe 40 17 0 17 4 4 0 1 0 8 0 inpcb 336 15311 0 15281 149 135 14 21 0 8 8 nd6 104 126 0 110 1 0 1 1 0 8 0 pkpcb 40 53 0 53 5 4 1 1 0 8 1 kcovpl 48 36 0 28 1 0 1 1 0 8 0 ppxss 1160 59 0 59 13 12 1 1 0 8 1 art_heap8 4096 4 0 3 3 1 2 3 0 8 1 art_heap4 256 1999 0 1615 40 12 28 31 0 8 0 art_table 32 2003 0 1618 4 0 4 4 0 8 0 art_node 16 478 0 405 1 0 1 1 0 8 0 semapl 112 497 0 487 1 0 1 1 0 8 0 shmpl 112 131 0 3 5 1 4 4 0 8 0 dirhash 1024 47 0 30 3 0 3 3 0 8 0 dino2pl 256 14843 0 13353 94 0 94 94 0 8 0 ffsino 240 14843 0 13353 88 0 88 88 0 8 0 nchpl 144 28365 0 26724 63 0 63 63 0 8 0 uvmvnodes 80 6230 0 0 128 0 128 128 0 8 0 vnodes 216 6230 0 0 347 0 347 347 0 8 0 namei 1024 103318 0 103317 9 8 1 3 0 8 0 vcpupl 2048 126 0 1 16 0 16 16 0 8 0 vmpool 664 205 0 80 12 1 11 11 0 8 0 kstatmem 264 322 0 298 2 0 2 2 0 8 0 scxspl 216 90451 0 90451 35 31 4 8 1 8 4 plimitpl 152 1292 0 1277 1 0 1 1 0 8 0 sigapl 424 10524 0 10459 8 0 8 8 0 8 0 futexpl 64 110915 0 110909 4 3 1 1 0 8 0 knotepl 120 90177 0 90092 40 33 7 16 0 8 3 kqueuepl 184 4904 0 4893 80 76 4 7 0 8 3 pipepl 288 5569 0 5538 95 88 7 13 0 8 4 fdescpl 432 10486 0 10458 4 0 4 4 0 8 0 filepl 120 82895 0 82577 131 116 15 21 0 8 5 lockfpl 104 3012 0 3010 8 7 1 2 0 8 0 lockfspl 48 1000 0 998 1 0 1 1 0 8 0 sessionpl 144 51 0 35 1 0 1 1 0 8 0 pgrppl 48 259 0 243 1 0 1 1 0 8 0 ucredpl 104 7729 0 7707 1 0 1 1 0 8 0 zombiepl 144 10459 0 10459 1 0 1 1 0 8 1 processpl 1008 10524 0 10459 10 1 9 9 0 8 0 procpl 680 26477 0 26389 26 17 9 9 0 8 1 sosppl 168 74 0 73 9 8 1 1 0 8 0 sockpl 456 22060 0 22012 401 383 18 41 0 8 8 mcl64k 65536 401 0 392 11 9 2 2 0 8 0 mcl16k 16384 190 0 189 19 18 1 1 0 8 0 mcl12k 12288 381 0 381 16 15 1 1 0 8 1 mcl9k 9216 158 0 158 25 24 1 1 0 8 1 mcl8k 8192 960 0 960 11 10 1 1 0 8 1 mcl4k 4096 1474 0 1474 5 4 1 1 0 8 1 mcl2k2 2112 92 0 92 25 24 1 1 0 8 1 mcl2k 2048 89123 0 89071 68 58 10 32 0 8 1 mtagpl 96 4300 0 4206 34 31 3 29 0 8 0 mbufpl 256 273792 0 273585 590 561 29 153 0 8 0 bufpl 288 22563 0 16169 458 0 458 458 0 8 0 anonpl 24 1092695 0 1078093 287 176 111 164 0 188 12 amapchunkpl 152 308122 0 307203 141 103 38 69 0 158 0 amappl16 200 20570 0 20135 103 71 32 36 0 8 8 amappl15 192 25 0 25 1 1 0 1 0 8 0 amappl14 184 244 0 232 2 1 1 2 0 8 0 amappl13 176 14 0 14 2 2 0 1 0 8 0 amappl12 168 11534 0 11504 2 0 2 2 0 8 0 amappl11 160 55 0 43 1 0 1 1 0 8 0 amappl10 152 54 0 46 2 1 1 1 0 8 0 amappl9 144 201 0 200 1 0 1 1 0 8 0 amappl8 136 643 0 534 5 1 4 4 0 8 0 amappl7 128 272 0 249 2 0 2 2 0 8 0 amappl6 120 757 0 740 1 0 1 1 0 8 0 amappl5 112 295 0 286 1 0 1 1 0 8 0 amappl4 104 731 0 703 2 1 1 2 0 8 0 amappl3 96 60594 0 60501 3 0 3 3 0 8 0 amappl2 88 11502 0 11425 3 1 2 3 0 8 0 amappl1 80 47750 0 47246 22 10 12 22 0 8 0 amappl 88 96022 0 95734 7 0 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 133 0 3 3 0 3 3 0 8 0 uaddrrnd 24 10691 0 10538 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 10691 0 10538 1 0 1 1 0 8 0 vmmpekpl 168 89569 0 89490 4 0 4 4 0 8 0 vmmpepl 168 634315 0 631855 285 154 131 133 0 357 8 vmsppl 368 10690 0 10538 15 1 14 14 0 8 0 rwobjpl 24 153575 0 145668 51 1 50 50 0 8 2 pdppl 4096 21388 0 21201 643 455 188 188 0 8 1 pvpl 32 2993538 0 2973074 618 419 199 360 0 265 27 pmappl 216 10690 0 10538 9 0 9 9 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 2450 0 1473 29 0 29 29 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002ffd1750) at vm_run+0x163 vmmioctl(a00,c0205602,ffff80002ffd1750,1,ffff800037842808) at vmmioctl+0x299 sys/dev/vmm/vmm.c:242 VOP_IOCTL(fffffd80717181b0,c0205602,ffff80002ffd1750,1,fffffd807f7d74e0,ffff800037842808) at VOP_IOCTL+0x91 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd8066250798,c0205602,ffff80002ffd1750,ffff800037842808) at vn_ioctl+0xbb sys/kern/vfs_vnops.c:525 sys_ioctl(ffff800037842808,ffff80002ffd1860,ffff80002ffd18b0) at sys_ioctl+0x49e syscall(ffff80002ffd1920) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x5e8b58c4640, count: -8 ddb> machine ddbcpu 1 No such command ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002ffd1750) at vm_run+0x163 vmmioctl(a00,c0205602,ffff80002ffd1750,1,ffff800037842808) at vmmioctl+0x299 sys/dev/vmm/vmm.c:242 VOP_IOCTL(fffffd80717181b0,c0205602,ffff80002ffd1750,1,fffffd807f7d74e0,ffff800037842808) at VOP_IOCTL+0x91 sys/kern/vfs_vops.c:264 vn_ioctl(fffffd8066250798,c0205602,ffff80002ffd1750,ffff800037842808) at vn_ioctl+0xbb sys/kern/vfs_vnops.c:525 sys_ioctl(ffff800037842808,ffff80002ffd1860,ffff80002ffd18b0) at sys_ioctl+0x49e syscall(ffff80002ffd1920) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x5e8b58c4640, count: -8