kernel: protection fault trap, code=0 Stopped at done_flush+0x38: movl %eax,%dr6 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002e862f50) at vm_run+0x302 sys/arch/amd64/amd64/vmm.c:4463 vmmioctl(a00,c0205602,ffff80002e862f50,1,ffff80002e82a2a0) at vmmioctl+0x192 sys/arch/amd64/amd64/vmm.c:656 VOP_IOCTL(fffffd806ec8c048,c0205602,ffff80002e862f50,1,fffffd807f7d8780,ffff80002e82a2a0) at VOP_IOCTL+0x8d sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806c75fe20,c0205602,ffff80002e862f50,ffff80002e82a2a0) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80002e82a2a0,ffff80002e863068,ffff80002e8630c0) at sys_ioctl+0x49e syscall(ffff80002e863130) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x66b1cdb4210, count: -8 ddb> show registers rdi 0x6c14 __ALIGN_SIZE+0x5c14 rsi 0xffff80002e7b7498 rbp 0xffff80002e862cb0 rbx 0x756e6547 rdx 0x49656e69 rcx 0x6c65746e rax 0xfffffffffffffffe r8 0 r9 0x10000 __ALIGN_SIZE+0xf000 r10 0xdefdae37ea00c60d r11 0x65da378256f30669 r12 0xffff80002e7b71d0 r13 0xffffffff82919f80 dt_prov_static r14 0xffff80002e7b6e80 r15 0xffff80002e862f50 rip 0xffffffff81670d00 done_flush+0x38 cs 0x8 rflags 0x10046 __ALIGN_SIZE+0xf046 rsp 0xffff80002e862b16 ss 0x10 done_flush+0x38: movl %eax,%dr6 ddb> show proc PROC (syz-executor.6) pid=236477 stat=onproc flags process=0 proc=4000000 pri=32, usrpri=79, nice=20 forw=0xffffffffffffffff, list=0xffff80002e82ad20,0xffff80002e82aa90 process=0xffff80002e838040 user=0xffff80002e85e000, vmspace=0xfffffd806c67dab0 estcpu=36, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 90434 242395 36565 0 2 0 syz-executor.5 90434 288546 36565 0 3 0x4000080 fsleep syz-executor.5 90434 286980 36565 0 2 0x4000000 syz-executor.5 73355 406102 24657 0 2 0 syz-executor.7 73355 504512 24657 0 3 0x4000080 fsleep syz-executor.7 82759 429707 81260 0 2 0 syz-executor.6 *82759 236477 81260 0 7 0x4000000 syz-executor.6 90760 519990 30123 0 2 0 syz-executor.0 90760 456078 30123 0 3 0x4000080 fsleep syz-executor.0 75797 459574 99177 0 2 0 syz-executor.1 75797 439266 99177 0 3 0x4000080 fsleep syz-executor.1 75797 98310 99177 0 3 0x4000080 fsleep syz-executor.1 35656 511594 95238 0 2 0 syz-executor.4 35656 362187 95238 0 3 0x4000080 fsleep syz-executor.4 99177 406001 57673 0 2 0x482 syz-executor.1 29845 401233 0 0 3 0x14200 acct acct 5136 324005 57673 0 2 0x2 syz-executor.3 30123 310786 57673 0 2 0x482 syz-executor.0 31617 484190 0 0 3 0x14200 bored sosplice 31048 262273 0 0 3 0x14280 nfsidl nfsio 85053 272224 0 0 3 0x14280 nfsidl nfsio 81818 381322 0 0 3 0x14280 nfsidl nfsio 71546 357941 0 0 3 0x14280 nfsidl nfsio 66037 435353 0 0 3 0x14280 nfsidl nfsio 87686 286382 0 0 3 0x14280 nfsidl nfsio 88718 138291 0 0 3 0x14280 nfsidl nfsio 71536 152473 0 0 3 0x14280 nfsidl nfsio 56282 452712 0 0 3 0x14280 nfsidl nfsio 93256 241681 0 0 3 0x14280 nfsidl nfsio 8001 379173 0 0 3 0x14280 nfsidl nfsio 44070 395812 0 0 3 0x14280 nfsidl nfsio 50753 215680 0 0 3 0x14280 nfsidl nfsio 83612 29028 0 0 3 0x14280 nfsidl nfsio 74033 484547 0 0 3 0x14280 nfsidl nfsio 9465 85676 0 0 3 0x14280 nfsidl nfsio 19692 106595 0 0 3 0x14280 nfsidl nfsio 63006 322367 0 0 3 0x14280 nfsidl nfsio 43895 506815 0 0 3 0x14280 nfsidl nfsio 91997 73504 0 0 3 0x14280 nfsidl nfsio 81260 291203 57673 0 2 0x482 syz-executor.6 24657 487037 57673 0 2 0x482 syz-executor.7 36565 445693 57673 0 3 0x82 nanoslp syz-executor.5 95238 243998 57673 0 2 0x482 syz-executor.4 56922 179593 57673 0 2 0x2 syz-executor.2 57673 465050 7570 0 3 0x82 thrsleep syz-fuzzer 57673 46954 7570 0 3 0x4000082 thrsleep syz-fuzzer 57673 151806 7570 0 3 0x4000082 kqread syz-fuzzer 57673 14034 7570 0 3 0x4000082 thrsleep syz-fuzzer 57673 330934 7570 0 3 0x4000082 thrsleep syz-fuzzer 57673 74693 7570 0 3 0x4000082 thrsleep syz-fuzzer 57673 104810 7570 0 3 0x4000082 thrsleep syz-fuzzer 57673 497755 7570 0 3 0x4000082 thrsleep syz-fuzzer 7570 224587 50075 0 3 0x10008a sigsusp ksh 50075 34667 50335 0 3 0x9a kqread sshd 27952 195699 1 0 3 0x100083 ttyin getty 50335 185980 1 0 3 0x88 kqread sshd 39087 63636 13134 73 3 0x1100090 kqread syslogd 13134 428346 1 0 3 0x100082 netio syslogd 5611 490790 1 0 3 0x100080 kqread resolvd 15920 512772 20841 77 3 0x100092 kqread dhcpleased 9456 270125 20841 77 3 0x100092 kqread dhcpleased 20841 399171 1 0 3 0x80 kqread dhcpleased 32361 83497 0 0 3 0x14200 bored smr 40397 176354 0 0 2 0x14200 zerothread 4727 455509 0 0 3 0x14200 aiodoned aiodoned 23540 408150 0 0 3 0x14200 syncer update 59273 79458 0 0 3 0x14200 cleaner cleaner 88837 418643 0 0 3 0x14200 reaper reaper 60030 455285 0 0 3 0x14200 pgdaemon pagedaemon 70173 432814 0 0 3 0x14200 bored viomb 16177 6952 0 0 3 0x40014200 acpi0 acpi0 73217 382599 0 0 3 0x14200 bored softnet 28410 192914 0 0 3 0x14200 bored systqmp 717 343755 0 0 3 0x14200 bored systq 41166 462865 0 0 2 0x40014200 softclock 6092 522382 0 0 3 0x40014200 idle0 1 84507 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10167 6521K 7048K 78643K 14923 0 pcb 14 11K 13K 78643K 533 0 rtable 250 8K 10K 78643K 531 0 ifaddr 83 18K 18K 78643K 288 0 counters 27 17K 17K 78643K 59 0 ioctlops 0 0K 4K 78643K 244 0 iov 0 0K 16K 78643K 391 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1348 84K 84K 78643K 2288 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 30 0 VM map 2 0K 0K 78643K 2 0 sem 12 0K 0K 78643K 342 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 16 57K 77K 78643K 1960 0 sigio 0 0K 0K 78643K 471 0 proc 58 55K 71K 78643K 603 0 subproc 104 6K 6K 78643K 146 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 81 0 in_multi 99 6K 7K 78643K 208 0 ether_multi 1 0K 0K 78643K 24 0 mrt 1 0K 0K 78643K 4 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 67 307K 307K 78643K 67 0 exec 0 0K 2K 78643K 1107 0 pfkey data 0 0K 4K 78643K 3 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 261 195K 196K 78643K 11943 0 UVM aobj 107 8K 8K 78643K 107 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 71 0 NDP 11 0K 1K 78643K 69 0 temp 137 4740K 4806K 78643K 24648 0 kqueue 12 18K 24K 78643K 143 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 94 0 91 2 1 1 2 0 8 0 rtentry 112 151 0 38 4 0 4 4 0 8 0 unpcb 136 1179 0 1166 14 13 1 6 0 8 0 syncache 296 10 0 10 3 3 0 1 0 8 0 tcpqe 32 215 0 215 2 2 0 1 0 8 0 tcpcb 736 779 0 769 25 24 1 14 0 8 0 arp 88 24 0 6 1 0 1 1 0 8 0 ipq 40 2 0 1 2 1 1 1 0 8 0 ipqe 40 7 0 6 2 1 1 1 0 8 0 inpcb 312 3114 0 3105 34 30 4 11 0 8 3 nd6 48 40 0 13 1 0 1 1 0 8 0 pkpcb 40 3 0 3 1 1 0 1 0 8 0 kcovpl 48 11 0 3 1 0 1 1 0 8 0 ppxss 1152 12 0 12 2 1 1 1 0 8 1 pfosfp 40 3 0 2 1 0 1 1 0 8 0 pfosfpen 112 3 0 2 1 0 1 1 0 8 0 pfrktable 1344 22 0 21 1 0 1 1 0 8 0 pftag 88 1 0 0 1 0 1 1 0 8 0 pfstitem 24 2 0 0 1 0 1 1 0 8 0 pfstkey 112 6 0 4 1 0 1 1 0 8 0 pfstate 320 3 0 2 1 0 1 1 0 8 0 pfrule 1360 58 0 53 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 596 0 132 29 0 29 29 0 8 0 art_table 32 597 0 132 4 0 4 4 0 8 0 art_node 16 150 0 47 1 0 1 1 0 8 0 sysvmsgpl 40 18 0 9 1 0 1 1 0 8 0 semapl 112 238 0 228 1 0 1 1 0 8 0 shmpl 112 104 0 0 3 0 3 3 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 4059 0 2621 91 0 91 91 0 8 0 ffsino 240 4059 0 2621 85 0 85 85 0 8 0 nchpl 144 6764 0 5128 63 0 63 63 0 8 0 uvmvnodes 80 4884 0 0 100 0 100 100 0 8 0 vnodes 224 4884 0 0 288 0 288 288 0 8 0 namei 1024 24290 0 24288 4 3 1 2 0 8 0 vcpupl 1984 7 0 0 1 0 1 1 0 8 0 vmpool 528 22 0 15 1 0 1 1 0 8 0 pfiaddrpl 120 6 0 6 1 1 0 1 0 8 0 scxspl 216 19884 0 19884 17 16 1 8 0 8 1 plimitpl 152 151 0 137 1 0 1 1 0 8 0 sigapl 424 2260 0 2198 8 0 8 8 0 8 0 futexpl 64 20359 0 20353 4 3 1 1 0 8 0 knotepl 120 37916 0 37836 23 20 3 11 0 8 0 kqueuepl 184 497 0 489 7 6 1 4 0 8 0 pipepl 304 525 0 497 18 15 3 8 0 8 0 fdescpl 432 2225 0 2198 4 0 4 4 0 8 0 filepl 120 15553 0 15315 32 23 9 17 0 8 1 lockfpl 104 907 0 905 3 2 1 2 0 8 0 lockfspl 48 213 0 211 1 0 1 1 0 8 0 sessionpl 144 26 0 10 1 0 1 1 0 8 0 pgrppl 48 26 0 10 1 0 1 1 0 8 0 ucredpl 96 1426 0 1416 1 0 1 1 0 8 0 zombiepl 144 2198 0 2198 4 3 1 1 0 8 1 processpl 1000 2260 0 2198 9 0 9 9 0 8 0 procpl 672 5212 0 5135 14 7 7 8 0 8 0 sosppl 168 21 0 21 6 6 0 1 0 8 0 sockpl 448 4390 0 4365 67 60 7 19 0 8 4 mcl64k 65536 63 0 63 5 4 1 1 0 8 1 mcl16k 16384 13 0 13 3 3 0 1 0 8 0 mcl12k 12288 103 0 103 7 7 0 1 0 8 0 mcl9k 9216 121 0 121 7 7 0 1 0 8 0 mcl8k 8192 122 0 122 7 6 1 1 0 8 1 mcl4k 4096 371 0 371 7 6 1 1 0 8 1 mcl2k2 2112 16 0 16 5 5 0 1 0 8 0 mcl2k 2048 78918 0 78871 19 11 8 12 0 8 0 mtagpl 96 357 0 282 5 1 4 4 0 8 0 mbufpl 256 138176 0 137900 27 3 24 26 0 8 0 bufpl 288 6466 0 150 452 0 452 452 0 8 0 anonpl 24 408875 0 388518 156 33 123 128 0 188 0 amapchunkpl 152 34147 0 33501 32 4 28 30 0 158 0 amappl16 200 5587 0 4692 65 17 48 48 0 8 0 amappl15 192 944 0 939 1 0 1 1 0 8 0 amappl14 184 247 0 241 1 0 1 1 0 8 0 amappl13 176 97 0 96 1 0 1 1 0 8 0 amappl12 168 98 0 97 2 1 1 1 0 8 0 amappl11 160 317 0 299 1 0 1 1 0 8 0 amappl10 152 182 0 181 1 0 1 1 0 8 0 amappl9 144 874 0 865 1 0 1 1 0 8 0 amappl8 136 655 0 595 3 0 3 3 0 8 0 amappl7 128 129 0 120 1 0 1 1 0 8 0 amappl6 120 593 0 575 2 1 1 2 0 8 0 amappl5 112 1617 0 1603 1 0 1 1 0 8 0 amappl4 104 1542 0 1513 2 1 1 2 0 8 0 amappl3 96 5827 0 5782 3 1 2 2 0 8 0 amappl2 88 2652 0 2591 3 1 2 3 0 8 0 amappl1 80 54046 0 53408 21 7 14 19 0 8 0 amappl 88 11345 0 11177 5 1 4 4 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 106 0 0 2 0 2 2 0 8 0 uaddrrnd 24 2247 0 2213 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2247 0 2213 1 0 1 1 0 8 0 vmmpekpl 168 19712 0 19660 3 0 3 3 0 8 0 vmmpepl 168 216322 0 213479 171 47 124 134 0 357 0 vmsppl 272 2246 0 2213 5 2 3 3 0 8 0 rwobjpl 24 57436 0 50577 42 0 42 42 0 8 0 pdppl 4096 4500 0 4433 217 146 71 71 0 8 4 pvpl 32 887521 0 862583 281 79 202 239 0 265 0 pmappl 216 2246 0 2213 2 0 2 2 0 8 0 extentpl 40 58 0 38 1 0 1 1 0 8 0 phpool 112 1085 0 300 23 0 23 23 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002e862f50) at vm_run+0x302 sys/arch/amd64/amd64/vmm.c:4463 vmmioctl(a00,c0205602,ffff80002e862f50,1,ffff80002e82a2a0) at vmmioctl+0x192 sys/arch/amd64/amd64/vmm.c:656 VOP_IOCTL(fffffd806ec8c048,c0205602,ffff80002e862f50,1,fffffd807f7d8780,ffff80002e82a2a0) at VOP_IOCTL+0x8d sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806c75fe20,c0205602,ffff80002e862f50,ffff80002e82a2a0) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80002e82a2a0,ffff80002e863068,ffff80002e8630c0) at sys_ioctl+0x49e syscall(ffff80002e863130) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x66b1cdb4210, count: -8 ddb> machine ddbcpu 1 No such command ddb> trace done_flush() at done_flush+0x38 vm_run(ffff80002e862f50) at vm_run+0x302 sys/arch/amd64/amd64/vmm.c:4463 vmmioctl(a00,c0205602,ffff80002e862f50,1,ffff80002e82a2a0) at vmmioctl+0x192 sys/arch/amd64/amd64/vmm.c:656 VOP_IOCTL(fffffd806ec8c048,c0205602,ffff80002e862f50,1,fffffd807f7d8780,ffff80002e82a2a0) at VOP_IOCTL+0x8d sys/kern/vfs_vops.c:264 vn_ioctl(fffffd806c75fe20,c0205602,ffff80002e862f50,ffff80002e82a2a0) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80002e82a2a0,ffff80002e863068,ffff80002e8630c0) at sys_ioctl+0x49e syscall(ffff80002e863130) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x66b1cdb4210, count: -8