kernel: protection fault trap, code=0 Stopped at sys_semop+0x3d5: movzwl 0(%rax),%r15d ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace sys_semop(ffff80003c9d94f8,ffff80003c939770,ffff80003c9396c0) at sys_semop+0x3d5 sys/kern/sysv_sem.c:617 syscall(ffff80003c939770) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c939770) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xfb679ca7e70, count: -3 ddb> show registers rdi 0 rsi 0 rbp 0xffff80003c9396a0 rbx 0xdead4110dead4140 rdx 0 rcx 0 rax 0xdead4110dead4140 r8 0x7f7fffffc000 r9 0 r10 0xa6f2a107149bcaa3 r11 0x2483950ecd12f4b6 r12 0 r13 0xfffffd806bff2a80 r14 0xffff80003c939770 r15 0 rip 0xffffffff827596f5 sys_semop+0x3d5 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c9395b0 ss 0x10 sys_semop+0x3d5: movzwl 0(%rax),%r15d ddb> show proc PROC (syz-executor) tid=518536 pid=53252 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=84, usrpri=84, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80003c9d9790,0xffff80003c9d8fd8 process=0xffff8000ffffba98 user=0xffff80003c934000, vmspace=0xfffffd806c99dd00 estcpu=34, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 88900 285614 34010 0 2 0 syz-executor 88900 507097 34010 0 2 0x4000000 syz-executor 73927 10757 2750 0 2 0 syz-executor 73927 284922 2750 0 3 0x4000080 fsleep syz-executor 54951 362270 95445 0 2 0 syz-executor 54951 219596 95445 0 3 0x4000080 fsleep syz-executor 54951 65680 95445 0 3 0x4000080 fsleep syz-executor 83678 292985 68703 0 2 0 syz-executor 83678 385592 68703 0 3 0x4000080 fsleep syz-executor 83678 122954 68703 0 3 0x4000080 fsleep syz-executor 77820 138240 14430 0 2 0 syz-executor 34 198245 67747 0 2 0 syz-executor 34 51636 67747 0 3 0x4000080 fsleep syz-executor 53252 29329 62585 0 2 0 syz-executor *53252 518536 62585 0 7 0x4000000 syz-executor 53252 95709 62585 0 3 0x4000080 fsleep syz-executor 24572 101974 53863 0 2 0 syz-executor 24572 94950 53863 0 3 0x4000080 fsleep syz-executor 19182 504880 0 0 3 0x14200 acct acct 87864 409434 96877 0 3 0x82 sbwait sshd-session 67747 244089 53686 0 2 0x3 syz-executor 53863 430128 53686 0 2 0x3 syz-executor 95445 145463 53686 0 3 0x82 nanoslp syz-executor 14430 42376 53686 0 3 0x82 nanoslp syz-executor 62585 239919 53686 0 2 0x3 syz-executor 34010 2401 53686 0 3 0x82 nanoslp syz-executor 68703 111045 53686 0 3 0x82 nanoslp syz-executor 2750 434176 53686 0 3 0x82 nanoslp syz-executor 53686 182219 97791 0 3 0x82 kqread syz-executor 97791 115809 57568 0 3 0x10008a sigsusp ksh 57568 89633 48721 0 3 0x98 kqread sshd-session 48721 120561 96877 0 3 0x92 kqread sshd-session 10100 518245 1 0 3 0x100083 ttyopn getty 96877 242137 1 0 3 0x88 kqread sshd 37534 136113 91462 73 3 0x1100090 kqread syslogd 91462 90853 1 0 3 0x100082 sbwait syslogd 84799 38424 1 0 3 0x100080 kqread resolvd 3413 500326 50232 77 3 0x100092 kqread dhcpleased 18686 280766 50232 77 3 0x100092 kqread dhcpleased 50232 431808 1 0 3 0x80 kqread dhcpleased 117 515211 0 0 3 0x14200 bored smr 82023 186638 0 0 2 0x14200 zerothread 56275 61895 0 0 3 0x14200 aiodoned aiodoned 80289 222083 0 0 3 0x14200 syncer update 54794 21204 0 0 3 0x14200 cleaner cleaner 65143 292941 0 0 3 0x14200 reaper reaper 59346 398691 0 0 3 0x14200 pgdaemon pagedaemon 74100 287877 0 0 3 0x14200 bored viomb 60184 415317 0 0 3 0x40014200 acpi0 acpi0 44991 336739 0 0 3 0x14200 bored softnet0 50529 288134 0 0 3 0x14200 bored systqmp 24801 137350 0 0 3 0x14200 bored systq 125 444845 0 0 3 0x40014200 tmoslp softclock 51160 308667 0 0 3 0x40014200 idle0 1 73852 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11038 12125K 12807K 166960K 14598 0 pcb 17 13K 14K 166960K 227 0 rtable 208 9K 10K 166960K 534 0 pf 27 12K 15K 166960K 119 0 ifaddr 37 7K 8K 166960K 100 0 ifgroup 45 2K 2K 166960K 163 0 sysctl 4 1K 9K 166960K 27 0 counters 31 17K 18K 166960K 190 0 ioctlops 0 0K 5K 166960K 477 0 iov 0 0K 16K 166960K 184 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1426 90K 90K 166960K 2653 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 13 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 50 0 dirhash 12 2K 2K 166960K 21 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 240K 166960K 1103 0 sigio 0 0K 0K 166960K 20 0 proc 60 59K 100K 166960K 560 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 147 0 in_multi 80 5K 7K 166960K 154 0 ether_multi 1 0K 0K 166960K 9 0 mrt 2 0K 0K 166960K 11 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 85 387K 387K 166960K 85 0 exec 0 0K 1K 166960K 494 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 236 152K 169K 166960K 11801 0 UVM aobj 11 4K 4K 166960K 12 0 pinsyscall 41 82K 94K 166960K 2166 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 60 0 NDP 9 0K 2K 166960K 66 0 temp 64 8669K 8922K 166960K 27310 0 kqueue 13 20K 32K 166960K 235 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 88 0 85 1 0 1 1 0 8 0 rtentry 136 144 0 62 4 0 4 4 0 8 0 unpcb 144 634 0 616 5 0 5 5 0 8 4 syncache 336 8 0 8 2 1 1 1 0 8 1 tcpqe 32 1 0 1 1 0 1 1 0 8 1 tcpcb 736 473 0 467 13 6 7 7 0 8 6 arp 96 25 0 9 1 0 1 1 0 8 0 ipq 40 5 0 3 1 0 1 1 0 8 0 ipqe 40 8 0 6 1 0 1 1 0 8 0 inpcb 328 1071 0 1061 15 8 7 10 0 8 5 ip6q 72 3 0 1 1 0 1 1 0 8 0 ip6af 40 4 0 2 1 0 1 1 0 8 0 nd6 112 27 0 8 1 0 1 1 0 8 0 pkpcb 40 42 0 42 2 1 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 mppekey 1024 1 0 1 1 0 1 1 0 8 1 ppxss 1072 145 0 145 2 1 1 1 0 8 1 pppxif 1384 5 0 5 2 1 1 1 0 8 1 rttmr 136 3 0 3 2 1 1 1 0 8 1 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 683 0 313 33 3 30 31 0 8 5 art_table 40 685 0 313 5 0 5 5 0 8 0 art_node 32 144 0 71 1 0 1 1 0 8 0 sysvmsgpl 40 9 0 5 1 0 1 1 0 8 0 semapl 112 42 0 33 1 0 1 1 0 8 0 shmpl 112 7 0 0 1 0 1 1 0 8 0 dirhash 1024 23 0 6 3 0 3 3 0 8 0 dino2pl 256 3614 0 2119 95 0 95 95 0 8 0 ffsino 256 3614 0 2119 95 0 95 95 0 8 0 nchpl 144 5157 0 3467 64 0 64 64 0 8 0 rtmask 32 10 0 10 1 0 1 1 0 8 1 vnodes 216 4424 0 0 246 0 246 246 0 8 0 namei 1024 17471 0 17470 5 2 3 3 0 8 2 vcpupl 3904 1 0 0 1 0 1 1 0 8 0 vmpool 808 2 0 1 1 0 1 1 0 8 0 kstatmem 264 100 0 82 2 0 2 2 0 8 0 scsiplug 72 6 0 6 1 0 1 1 0 8 1 scxspl 216 20038 0 20038 10 2 8 8 1 8 8 plimitpl 152 266 0 250 1 0 1 1 0 8 0 sigapl 424 1394 0 1349 9 1 8 8 0 8 2 knotepl 120 44903 0 44855 24 14 10 16 0 8 7 kqueuepl 184 414 0 405 4 0 4 4 0 8 3 pipepl 304 283 0 255 8 5 3 8 0 8 0 fdescpl 448 1359 0 1328 5 1 4 5 0 8 0 filepl 120 8798 0 8582 15 3 12 12 0 8 5 lockfpl 104 329 0 325 1 0 1 1 0 8 0 lockfspl 48 140 0 136 1 0 1 1 0 8 0 sessionpl 144 23 0 14 1 0 1 1 0 8 0 pgrppl 48 47 0 30 1 0 1 1 0 8 0 ucredpl 104 1677 0 1665 1 0 1 1 0 8 0 zombiepl 144 1882 0 1882 1 0 1 1 0 8 1 processpl 1152 1394 0 1349 5 0 5 5 0 8 1 procpl 664 3015 0 2960 9 1 8 8 0 8 3 sosppl 176 1 0 1 1 0 1 1 0 8 1 sockpl 552 1872 0 1841 16 6 10 10 0 8 6 mcl64k 65536 52 0 52 2 1 1 1 0 8 1 mcl16k 16384 4 0 4 2 1 1 1 0 8 1 mcl9k 9216 3 0 3 1 0 1 1 0 8 1 mcl8k 8192 25 0 25 2 1 1 1 0 8 1 mcl4k 4096 3771 0 3719 15 7 8 15 0 8 0 mcl2k 2048 1760 0 1757 10 4 6 6 0 8 5 mtagpl 96 223 0 161 4 0 4 4 0 8 0 mbufpl 256 16235 0 16053 81 61 20 74 0 8 2 bufpl 280 6747 0 526 445 0 445 445 0 8 0 anonpl 24 217109 0 213821 87 22 65 65 0 187 28 amapchunkpl 152 40546 0 40064 44 15 29 34 0 158 10 amappl16 200 4210 0 4177 44 32 12 25 0 8 8 amappl15 192 22 0 22 1 1 0 1 0 8 0 amappl14 184 8 0 8 2 1 1 1 0 8 1 amappl13 176 407 0 406 1 0 1 1 0 8 0 amappl12 168 1701 0 1661 2 0 2 2 0 8 0 amappl11 160 12 0 12 1 1 0 1 0 8 0 amappl10 152 43 0 33 1 0 1 1 0 8 0 amappl9 144 247 0 247 1 1 0 1 0 8 0 amappl8 136 28 0 27 1 0 1 1 0 8 0 amappl7 128 99 0 98 1 0 1 1 0 8 0 amappl6 120 265 0 253 1 0 1 1 0 8 0 amappl5 112 78 0 69 1 0 1 1 0 8 0 amappl4 104 391 0 364 1 0 1 1 0 8 0 amappl3 96 6896 0 6805 3 0 3 3 0 8 0 amappl2 88 1493 0 1414 3 0 3 3 0 8 1 amappl1 80 13473 0 12853 17 0 17 17 0 8 3 amappl 88 10905 0 10745 5 0 5 5 0 92 0 uvmvnodes 80 128 0 0 3 0 3 3 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 7 0 7 1 1 0 1 0 8 0 dma128 128 255 0 255 2 1 1 1 0 8 1 dma64 64 7 0 7 2 1 1 1 0 8 1 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 11 0 1 1 0 1 1 0 8 0 uaddrrnd 24 1359 0 1328 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1359 0 1328 1 0 1 1 0 8 0 vmmpekpl 168 12657 0 12621 3 0 3 3 0 8 0 vmmpepl 168 91987 0 90029 115 8 107 107 0 357 13 vmsppl 368 1358 0 1328 4 1 3 4 0 8 0 rwobjpl 40 26410 0 25329 17 1 16 16 0 8 0 pdppl 4096 2729 0 2659 105 35 70 83 0 8 0 pvpl 32 597662 0 588609 177 31 146 146 0 265 50 pmappl 216 1360 0 1329 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 479 0 126 12 0 12 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace sys_semop(ffff80003c9d94f8,ffff80003c939770,ffff80003c9396c0) at sys_semop+0x3d5 sys/kern/sysv_sem.c:617 syscall(ffff80003c939770) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c939770) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xfb679ca7e70, count: -3 ddb> machine ddbcpu 1 No such command ddb> trace sys_semop(ffff80003c9d94f8,ffff80003c939770,ffff80003c9396c0) at sys_semop+0x3d5 sys/kern/sysv_sem.c:617 syscall(ffff80003c939770) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c939770) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xfb679ca7e70, count: -3