kernel: protection fault trap, code=0 Stopped at sblock+0x4a: movq 0x8(%rax),%rax ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace sblock(fffffd805bc9c580,fffffd805bc9c698,1) at sblock+0x4a soassertlocked sys/kern/uipc_socket2.c:323 [inline] sblock(fffffd805bc9c580,fffffd805bc9c698,1) at sblock+0x4a sys/kern/uipc_socket2.c:378 sosend(fffffd805bc9c580,0,ffff8000216a3950,0,0,0) at sosend+0x280 sys/kern/uipc_socket.c:517 fifo_write(ffff8000216a38a0) at fifo_write+0x7c sys/miscfs/fifofs/fifo_vnops.c:281 VOP_WRITE(fffffd8066f02960,ffff8000216a3950,3,fffffd807f7d79c0) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000215f17a0,fffffd8066f02960,fffffd807f7d79c0,ffff8000216a3a18,ffff8000216a39f0) at ktrwriteraw+0x13d sys/kern/kern_ktrace.c:666 ktrgenio(ffff8000215f17a0,1,1,ffff800000cbd7f0,3bc) at ktrgenio+0x27b ktrwrite2 sys/kern/kern_ktrace.c:630 [inline] ktrgenio(ffff8000215f17a0,1,1,ffff800000cbd7f0,3bc) at ktrgenio+0x27b sys/kern/kern_ktrace.c:265 dofilewritev(ffff8000215f17a0,1,ffff8000216a3b98,0,ffff8000216a3c90) at dofilewritev+0x38a sys/kern/sys_generic.c:402 sys_write(ffff8000215f17a0,ffff8000216a3c30,ffff8000216a3c90) at sys_write+0x83 sys/kern/sys_generic.c:301 syscall(ffff8000216a3d00) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x21c8ee940, count: -10 ddb> show registers rdi 0 rsi 0 rbp 0xffff8000216a3760 rbx 0xfffffd805bc9c698 rdx 0 rcx 0xffff8000215f17a4 rax 0xb19cf700a39a4aa9 r8 0 r9 0 r10 0xa577e3ff68c855a5 r11 0x2be420e0b3d8fb83 r12 0xfffffd805bc9c501 r13 0x1 r14 0xfffffd805bc9c6e8 r15 0xfffffd805bc9c580 rip 0xffffffff818a6dda sblock+0x4a cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000216a3700 ss 0x10 sblock+0x4a: movq 0x8(%rax),%rax ddb> show proc PROC (syz-fuzzer) pid=398514 stat=onproc flags process=2 proc=4000001 pri=24, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff8000216102b0,0xffff8000215f0fd0 process=0xffff800021612bd0 user=0xffff80002169e000, vmspace=0xfffffd807f016330 estcpu=0, cpticks=1, pctcpu=0.3 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 41272 278385 57515 0 2 0 syz-executor.7 41272 273658 57515 0 3 0x4000080 fsleep syz-executor.7 41272 509140 57515 0 3 0x4000080 fsleep syz-executor.7 8649 197880 20341 0 2 0 syz-executor.4 8649 389337 20341 0 3 0x4000080 fsleep syz-executor.4 8649 169858 20341 0 3 0x4000080 fsleep syz-executor.4 8649 150171 20341 0 3 0x4000080 fsleep syz-executor.4 15399 228195 36007 0 2 0x480 syz-executor.5 15399 29100 36007 0 3 0x4000080 fsleep syz-executor.5 15399 46506 36007 0 3 0x4000080 fsleep syz-executor.5 41820 394025 93572 0 3 0x82 nanoslp syz-executor.3 20341 202779 93572 0 2 0x482 syz-executor.4 53383 331369 93572 0 2 0x482 syz-executor.0 57515 53454 93572 0 3 0x82 nanoslp syz-executor.7 56396 477329 93572 0 2 0x2 syz-executor.2 46679 506300 93572 0 3 0x82 nanoslp syz-executor.1 76108 296285 0 0 3 0x14280 nfsidl nfsio 62146 251312 0 0 3 0x14280 nfsidl nfsio 18502 230511 0 0 3 0x14280 nfsidl nfsio 54046 289631 0 0 3 0x14280 nfsidl nfsio 53863 84107 0 0 3 0x14280 nfsidl nfsio 926 461806 0 0 3 0x14280 nfsidl nfsio 68691 430452 0 0 3 0x14280 nfsidl nfsio 9684 37538 0 0 3 0x14280 nfsidl nfsio 38215 466074 0 0 3 0x14280 nfsidl nfsio 19433 441030 0 0 3 0x14280 nfsidl nfsio 65932 193807 0 0 3 0x14280 nfsidl nfsio 932 161720 0 0 3 0x14280 nfsidl nfsio 58043 148720 0 0 3 0x14280 nfsidl nfsio 5549 248336 0 0 3 0x14280 nfsidl nfsio 31504 395181 0 0 3 0x14280 nfsidl nfsio 79544 482242 0 0 3 0x14280 nfsidl nfsio 29419 232241 0 0 3 0x14280 nfsidl nfsio 41706 26105 0 0 3 0x14280 nfsidl nfsio 40508 161433 0 0 3 0x14280 nfsidl nfsio 85369 249001 0 0 3 0x14280 nfsidl nfsio 36007 227629 93572 0 2 0x482 syz-executor.5 53739 341238 93572 0 2 0x2 syz-executor.6 84726 35488 0 0 3 0x14200 bored sosplice 93572 431367 28926 0 3 0x82 thrsleep syz-fuzzer 93572 417167 28926 0 2 0x4000002 syz-fuzzer 93572 54849 28926 0 3 0x4000082 thrsleep syz-fuzzer 93572 146445 28926 0 3 0x4000082 thrsleep syz-fuzzer 93572 62420 28926 0 3 0x4000082 thrsleep syz-fuzzer *93572 398514 28926 0 7 0x4000003 syz-fuzzer 93572 14602 28926 0 3 0x4000082 thrsleep syz-fuzzer 93572 161305 28926 0 3 0x4000082 thrsleep syz-fuzzer 93572 108799 28926 0 3 0x4000082 thrsleep syz-fuzzer 28926 412171 81252 0 3 0x10008a sigsusp ksh 81252 271669 57275 0 2 0x93 sshd 5111 297804 1 0 3 0x100083 ttyin getty 57275 491629 1 0 3 0x88 kqread sshd 45770 439117 40264 73 3 0x1100090 kqread syslogd 40264 448805 1 0 3 0x100082 netio syslogd 14347 291649 1 0 3 0x100080 kqread resolvd 27253 211386 18456 77 3 0x100092 kqread dhcpleased 12366 342980 18456 77 3 0x100092 kqread dhcpleased 18456 476559 1 0 3 0x80 kqread dhcpleased 84879 210974 0 0 3 0x14200 bored smr 86696 127246 0 0 2 0x14200 zerothread 51351 23196 0 0 3 0x14200 aiodoned aiodoned 441 222144 0 0 3 0x14200 syncer update 19688 436991 0 0 3 0x14200 cleaner cleaner 45034 279640 0 0 3 0x14200 reaper reaper 86030 165356 0 0 3 0x14200 pgdaemon pagedaemon 43711 61027 0 0 3 0x14200 bored viomb 62837 343062 0 0 3 0x40014200 acpi0 acpi0 90128 149256 0 0 3 0x14200 bored softnet 34796 46707 0 0 3 0x14200 bored softnet 22309 434226 0 0 3 0x14200 bored softnet 73736 221673 0 0 3 0x14200 bored softnet 72207 92925 0 0 3 0x14200 bored systqmp 78873 289189 0 0 3 0x14200 bored systq 60552 219665 0 0 3 0x40014200 bored softclock 9921 313970 0 0 3 0x40014200 idle0 1 111071 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10223 6619K 7721K 78643K 28219 0 pcb 13 18K 20K 78643K 912 0 rtable 188 12K 12K 78643K 3033 0 ifaddr 89 20K 21K 78643K 920 0 sysctl 2 0K 0K 78643K 4 0 counters 27 17K 17K 78643K 110 0 ioctlops 0 0K 4K 78643K 1531 0 iov 0 0K 24K 78643K 535 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1399 87K 88K 78643K 6371 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 44 0 VM map 2 0K 0K 78643K 2 0 sem 12 0K 0K 78643K 904 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 13 45K 73K 78643K 4845 0 sigio 0 0K 0K 78643K 127 0 proc 61 59K 75K 78643K 1776 0 subproc 104 6K 6K 78643K 611 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 94 0 in_multi 64 4K 7K 78643K 653 0 ether_multi 1 0K 0K 78643K 33 0 mrt 1 0K 0K 78643K 32 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 247 1102K 1102K 78643K 247 0 exec 0 0K 2K 78643K 2611 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 346 634K 635K 78643K 27154 0 UVM aobj 131 6K 6K 78643K 137 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 238 0 NDP 12 0K 2K 78643K 198 0 temp 133 4730K 4981K 78643K 197894 0 kqueue 12 18K 26K 78643K 389 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 1240 0 1237 8 7 1 3 0 8 0 rtentry 112 716 0 646 4 1 3 4 0 8 0 unpcb 136 4439 0 4420 52 47 5 9 0 8 4 syncache 296 27 0 27 9 8 1 1 0 8 1 tcpqe 32 174 20 174 2 2 0 1 0 8 0 tcpcb 736 2159 0 2145 64 60 4 14 0 8 2 arp 88 100 0 86 1 0 1 1 0 8 0 ipq 40 68 0 67 2 1 1 1 0 8 0 ipqe 40 138 0 137 2 1 1 1 0 8 0 inpcb 312 5264 0 5255 78 74 4 22 0 8 3 nd6 48 160 0 145 1 0 1 1 0 8 0 pkpcb 40 74 0 74 2 2 0 1 0 8 0 kcovpl 48 47 0 39 1 0 1 1 0 8 0 ppxss 1152 18 0 18 5 5 0 1 0 8 0 pfstscr 40 83 0 79 1 0 1 1 0 8 0 pfrktable 1344 98 0 85 4 2 2 2 0 8 0 pftag 88 10 0 2 2 1 1 1 0 8 0 pfstitem 24 26 0 18 1 0 1 1 0 8 0 pfstkey 112 166 0 163 1 0 1 1 0 8 0 pfstate 336 83 0 79 1 0 1 1 0 8 0 pfrule 1360 252 0 211 7 3 4 4 0 8 0 rttmr 64 9 0 9 3 3 0 1 0 8 0 art_heap8 4096 2 0 1 2 1 1 2 0 8 0 art_heap4 256 2633 0 2341 43 19 24 29 0 8 3 art_table 32 2635 0 2342 5 1 4 4 0 8 1 art_node 16 612 0 551 1 0 1 1 0 8 0 semapl 112 902 0 892 1 0 1 1 0 8 0 shmpl 112 134 0 6 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 7689 0 6221 93 0 93 93 0 8 0 ffsino 240 7689 0 6221 87 0 87 87 0 8 0 nchpl 144 13993 0 12359 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 224 5926 0 0 349 0 349 349 0 8 0 namei 1024 59011 0 59009 3 2 1 2 0 8 0 vcpupl 1984 188 0 0 24 0 24 24 0 8 0 vmpool 528 189 0 1 13 0 13 13 0 8 0 pfiaddrpl 120 36 0 19 2 1 1 1 0 8 0 kstatmem 264 190 0 166 2 0 2 2 0 8 0 scxspl 216 41644 0 41644 18 17 1 8 0 8 1 plimitpl 152 628 0 614 1 0 1 1 0 8 0 sigapl 424 5076 0 5012 8 0 8 8 0 8 0 futexpl 64 49519 0 49512 1 0 1 1 0 8 0 knotepl 120 66225 0 66145 40 37 3 14 0 8 0 kqueuepl 184 1933 0 1925 32 29 3 6 0 8 2 pipepl 304 1098 0 1070 25 22 3 8 0 8 0 fdescpl 432 5038 0 5014 4 0 4 4 0 8 0 filepl 120 41493 0 41253 74 57 17 17 0 8 9 lockfpl 104 1628 0 1626 4 3 1 2 0 8 0 lockfspl 48 440 0 438 1 0 1 1 0 8 0 sessionpl 144 62 0 46 1 0 1 1 0 8 0 pgrppl 48 71 0 55 1 0 1 1 0 8 0 ucredpl 96 5816 0 5803 1 0 1 1 0 8 0 zombiepl 144 5015 0 5012 1 0 1 1 0 8 0 processpl 1000 5076 0 5012 11 2 9 9 0 8 0 procpl 672 11946 0 11867 18 10 8 9 0 8 0 sosppl 168 66 0 66 8 7 1 1 0 8 1 sockpl 448 11022 0 10991 230 214 16 33 0 8 12 pool(sockpl): free list modified: page 0xfffffd805bc9c000; item ordinal 0; addr 0xfffffd805bc9c580 (p 0xfffffd8064e7e000); offset 0x10=0xdead9eef mcl64k 65536 187 0 187 11 10 1 1 0 8 1 mcl16k 16384 51 0 51 13 13 0 1 0 8 0 mcl12k 12288 151 0 151 8 7 1 1 0 8 1 mcl9k 9216 144 0 144 12 11 1 1 0 8 1 mcl8k 8192 291 0 291 9 8 1 1 0 8 1 mcl4k 4096 572 0 572 2 1 1 1 0 8 1 mcl2k2 2112 44 0 44 10 9 1 1 0 8 1 mcl2k 2048 76763 0 76643 35 18 17 17 0 8 1 mtagpl 96 3860 0 3177 32 15 17 29 0 8 0 mbufpl 256 162055 0 161176 113 52 61 85 0 8 2 bufpl 288 13430 0 7023 458 0 458 458 0 8 0 anonpl 24 916769 0 901691 177 45 132 132 0 188 20 amapchunkpl 152 82315 0 81705 65 37 28 41 0 158 1 amappl16 200 12727 0 12084 71 28 43 47 0 8 8 amappl15 192 433 0 432 2 1 1 1 0 8 0 amappl14 184 288 0 286 5 4 1 1 0 8 0 amappl13 176 968 0 963 1 0 1 1 0 8 0 amappl12 168 758 0 752 2 1 1 1 0 8 0 amappl11 160 488 0 469 1 0 1 1 0 8 0 amappl10 152 415 0 411 1 0 1 1 0 8 0 amappl9 144 1572 0 1566 1 0 1 1 0 8 0 amappl8 136 1744 0 1678 3 0 3 3 0 8 0 amappl7 128 800 0 786 1 0 1 1 0 8 0 amappl6 120 1514 0 1494 2 1 1 2 0 8 0 amappl5 112 3510 0 3500 1 0 1 1 0 8 0 amappl4 104 2441 0 2409 2 1 1 2 0 8 0 amappl3 96 14482 0 14440 2 0 2 2 0 8 0 amappl2 88 6457 0 6398 3 1 2 3 0 8 0 amappl1 80 118285 0 117712 22 7 15 19 0 8 0 amappl 88 25962 0 25779 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 136 0 6 3 0 3 3 0 8 0 uaddrrnd 24 5227 0 5015 2 0 2 2 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 5227 0 5015 2 0 2 2 0 8 0 vmmpekpl 168 37641 0 37562 4 0 4 4 0 8 0 vmmpepl 168 504715 0 501572 213 46 167 167 0 357 10 vmsppl 272 5226 0 5015 17 2 15 15 0 8 0 rwobjpl 24 122330 0 114655 49 0 49 49 0 8 1 pdppl 4096 10460 0 10218 597 345 252 252 0 8 10 pvpl 32 1929223 0 1910881 326 117 209 230 0 265 31 pmappl 216 5226 0 5015 13 0 13 13 0 8 1 extentpl 40 58 0 38 1 0 1 1 0 8 0 phpool 112 1869 0 824 31 0 31 31 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace sblock(fffffd805bc9c580,fffffd805bc9c698,1) at sblock+0x4a soassertlocked sys/kern/uipc_socket2.c:323 [inline] sblock(fffffd805bc9c580,fffffd805bc9c698,1) at sblock+0x4a sys/kern/uipc_socket2.c:378 sosend(fffffd805bc9c580,0,ffff8000216a3950,0,0,0) at sosend+0x280 sys/kern/uipc_socket.c:517 fifo_write(ffff8000216a38a0) at fifo_write+0x7c sys/miscfs/fifofs/fifo_vnops.c:281 VOP_WRITE(fffffd8066f02960,ffff8000216a3950,3,fffffd807f7d79c0) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000215f17a0,fffffd8066f02960,fffffd807f7d79c0,ffff8000216a3a18,ffff8000216a39f0) at ktrwriteraw+0x13d sys/kern/kern_ktrace.c:666 ktrgenio(ffff8000215f17a0,1,1,ffff800000cbd7f0,3bc) at ktrgenio+0x27b ktrwrite2 sys/kern/kern_ktrace.c:630 [inline] ktrgenio(ffff8000215f17a0,1,1,ffff800000cbd7f0,3bc) at ktrgenio+0x27b sys/kern/kern_ktrace.c:265 dofilewritev(ffff8000215f17a0,1,ffff8000216a3b98,0,ffff8000216a3c90) at dofilewritev+0x38a sys/kern/sys_generic.c:402 sys_write(ffff8000215f17a0,ffff8000216a3c30,ffff8000216a3c90) at sys_write+0x83 sys/kern/sys_generic.c:301 syscall(ffff8000216a3d00) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x21c8ee940, count: -10 ddb> machine ddbcpu 1 No such command ddb> trace sblock(fffffd805bc9c580,fffffd805bc9c698,1) at sblock+0x4a soassertlocked sys/kern/uipc_socket2.c:323 [inline] sblock(fffffd805bc9c580,fffffd805bc9c698,1) at sblock+0x4a sys/kern/uipc_socket2.c:378 sosend(fffffd805bc9c580,0,ffff8000216a3950,0,0,0) at sosend+0x280 sys/kern/uipc_socket.c:517 fifo_write(ffff8000216a38a0) at fifo_write+0x7c sys/miscfs/fifofs/fifo_vnops.c:281 VOP_WRITE(fffffd8066f02960,ffff8000216a3950,3,fffffd807f7d79c0) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000215f17a0,fffffd8066f02960,fffffd807f7d79c0,ffff8000216a3a18,ffff8000216a39f0) at ktrwriteraw+0x13d sys/kern/kern_ktrace.c:666 ktrgenio(ffff8000215f17a0,1,1,ffff800000cbd7f0,3bc) at ktrgenio+0x27b ktrwrite2 sys/kern/kern_ktrace.c:630 [inline] ktrgenio(ffff8000215f17a0,1,1,ffff800000cbd7f0,3bc) at ktrgenio+0x27b sys/kern/kern_ktrace.c:265 dofilewritev(ffff8000215f17a0,1,ffff8000216a3b98,0,ffff8000216a3c90) at dofilewritev+0x38a sys/kern/sys_generic.c:402 sys_write(ffff8000215f17a0,ffff8000216a3c30,ffff8000216a3c90) at sys_write+0x83 sys/kern/sys_generic.c:301 syscall(ffff8000216a3d00) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x21c8ee940, count: -10