kernel: protection fault trap, code=0 Stopped at ktrops+0x4f: movq 0x8(%r14),%r14 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace ktrops(ffff80002a64f010,dead4110dead4110,0,80000112,fffffd807b9b0cc0,fffffd807f7d77b8) at ktrops+0x4f ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a64f010,dead4110dead4110,0,80000112,fffffd807b9b0cc0,fffffd807f7d77b8) at ktrops+0x4f sys/kern/kern_ktrace.c:561 doktrace(fffffd807b9b0cc0,4,112,0,ffff80002a64f010) at doktrace+0x514 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd807b9b0cc0,4,112,0,ffff80002a64f010) at doktrace+0x514 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a64f010,ffff80003789f5f0,ffff80003789f540) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff80003789f5f0) at syscall+0x538 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x60b100ca930, count: -5 ddb> show registers rdi 0xffff80003114e000 rsi 0xd10 rbp 0xffff80003789f320 rbx 0xfffffd807f7d77b8 rdx 0xffff80003114e000 rcx 0xd0f rax 0xffffffff81b56523 ktrops+0x43 r8 0xfffffd807b9b0cc0 r9 0xfffffd807f7d77b8 r10 0x85bcba27d26edf6f r11 0xa062f43fa798df5e r12 0xffff80002a64f010 r13 0xdead4110dead4110 r14 0xdead4110dead4110 r15 0x80000112 __kernel_virt_to_phys+0x112 rip 0xffffffff81b5652f ktrops+0x4f cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003789f2a0 ss 0x10 ktrops+0x4f: movq 0x8(%r14),%r14 ddb> show proc PROC (syz-executor.6) tid=52261 pid=61079 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=84, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a617558,0xffff80002a64f818 process=0xffff8000343a9d68 user=0xffff80003789a000, vmspace=0xfffffd807232a858 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 46807 233399 45632 0 2 0 syz-executor.0 92610 323268 83602 0 2 0 syz-executor.2 92610 313208 83602 0 3 0x4000080 fsleep syz-executor.2 61079 270859 20551 0 2 0 syz-executor.6 *61079 52261 20551 0 7 0x4000000 syz-executor.6 61079 518627 20551 0 3 0x4000080 fsleep syz-executor.6 70757 363139 5129 0 2 0 syz-executor.5 70757 441742 5129 0 3 0x4000080 fsleep syz-executor.5 1403 215048 56351 0 2 0 syz-executor.4 1403 455941 56351 0 3 0x4000080 fsleep syz-executor.4 1403 316652 56351 0 3 0x4000080 fsleep syz-executor.4 55628 346119 71983 0 2 0 syz-executor.1 55628 512607 71983 0 3 0x4000080 netio syz-executor.1 55628 131091 71983 0 3 0x4000080 fsleep syz-executor.1 55628 495773 71983 0 2 0x4000000 syz-executor.1 72120 424498 0 0 2 0x14280 nfsio 11914 251301 0 0 2 0x14280 nfsio 8231 482837 0 0 2 0x14280 nfsio 72389 78407 0 0 2 0x14280 nfsio 93559 396781 0 0 2 0x14280 nfsio 98793 177375 0 0 2 0x14280 nfsio 81139 391432 0 0 2 0x14280 nfsio 3206 152089 0 0 2 0x14280 nfsio 96950 372156 0 0 2 0x14280 nfsio 96981 420668 0 0 2 0x14280 nfsio 49842 307154 0 0 2 0x14280 nfsio 41561 114002 0 0 2 0x14280 nfsio 41370 98647 0 0 2 0x14280 nfsio 49142 139561 0 0 2 0x14280 nfsio 88423 456653 0 0 2 0x14280 nfsio 38291 263540 0 0 2 0x14280 nfsio 32374 458221 0 0 2 0x14280 nfsio 69524 77366 0 0 2 0x14280 nfsio 48899 452281 0 0 2 0x14280 nfsio 69344 454939 1 0 3 0x18100083 ttyin getty 83602 422024 3212 0 3 0x82 nanoslp syz-executor.2 71983 144579 3212 0 3 0x82 nanoslp syz-executor.1 20551 23376 3212 0 3 0x82 nanoslp syz-executor.6 47758 435075 3212 0 3 0x82 nanoslp syz-executor.7 45632 352051 3212 0 3 0x82 nanoslp syz-executor.0 33632 454810 3212 0 2 0x2 syz-executor.3 56351 334042 3212 0 3 0x82 nanoslp syz-executor.4 5129 19314 3212 0 3 0x82 nanoslp syz-executor.5 83491 92993 0 0 3 0x14200 acct acct 82717 12926 0 0 3 0x14200 bored sosplice 35799 96153 98162 0 3 0x18100082 netio ndp 98162 511002 1 0 3 0x810008a sigsusp sh 3212 159423 39677 0 3 0x1a000082 thrsleep syz-fuzzer 3212 477209 39677 0 3 0x1e000082 thrsleep syz-fuzzer 3212 302399 39677 0 3 0x1e000082 kqread syz-fuzzer 3212 357799 39677 0 3 0x1e000082 wait syz-fuzzer 3212 23801 39677 0 3 0x1e000082 wait syz-fuzzer 3212 379315 39677 0 3 0x1e000082 wait syz-fuzzer 3212 394939 39677 0 3 0x1e000082 thrsleep syz-fuzzer 3212 214787 39677 0 3 0x1e000082 wait syz-fuzzer 3212 284744 39677 0 3 0x1e000082 thrsleep syz-fuzzer 3212 267986 39677 0 3 0x1e000082 wait syz-fuzzer 3212 41480 39677 0 3 0x1e000082 thrsleep syz-fuzzer 3212 168022 39677 0 3 0x1e000082 wait syz-fuzzer 3212 6350 39677 0 3 0x1e000082 wait syz-fuzzer 3212 341805 39677 0 3 0x1e000082 wait syz-fuzzer 39677 69152 63231 0 3 0x810008a sigsusp ksh 63231 468955 6333 0 3 0x1800009a kqread sshd 6333 495574 1 0 3 0x18000088 kqread sshd 69037 416885 60541 73 3 0x19100090 kqread syslogd 60541 324643 1 0 3 0x18100082 netio syslogd 15092 119309 1 0 3 0x18100080 kqread resolvd 30036 40238 89616 77 3 0x18100092 kqread dhcpleased 45456 30627 89616 77 3 0x18100092 kqread dhcpleased 89616 376974 1 0 3 0x18000080 kqread dhcpleased 85519 457674 0 0 3 0x14200 bored smr 38450 6380 0 0 2 0x14200 zerothread 97467 191422 0 0 3 0x14200 aiodoned aiodoned 50215 179655 0 0 3 0x14200 syncer update 98713 221841 0 0 3 0x14200 cleaner cleaner 59450 217362 0 0 3 0x14200 reaper reaper 63852 175664 0 0 3 0x14200 pgdaemon pagedaemon 20268 172330 0 0 3 0x14200 bored viomb 75699 53407 0 0 3 0x40014200 acpi0 acpi0 90864 179800 0 0 3 0x14200 bored softnet3 55104 263340 0 0 3 0x14200 bored softnet2 6712 251738 0 0 3 0x14200 bored softnet1 82149 87569 0 0 3 0x14200 bored softnet0 32398 251584 0 0 3 0x14200 bored systqmp 60520 241219 0 0 3 0x14200 bored systq 64795 265195 0 0 3 0x40014200 tmoslp softclock 59996 421621 0 0 3 0x40014200 idle0 1 390433 0 0 3 0x8000082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10206 6436K 7328K 166960K 21097 0 pcb 15 18K 20K 166960K 398 0 rtable 237 7K 7K 166960K 2466 0 pf 34 9K 10K 166960K 276 0 ifaddr 45 12K 12K 166960K 331 0 ifgroup 59 2K 2K 166960K 489 0 sysctl 2 0K 2K 166960K 5 0 counters 32 17K 18K 166960K 144 0 ioctlops 0 0K 2K 166960K 420 0 iov 0 0K 28K 166960K 520 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1734 109K 109K 166960K 5791 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 66 0 VM map 2 1K 1K 166960K 2 0 sem 10 1K 1K 166960K 10 0 dirhash 12 2K 2K 166960K 60 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 18 65K 89K 166960K 6477 0 sigio 0 0K 0K 166960K 439 0 proc 57 59K 91K 166960K 2251 0 subproc 117 7K 7K 166960K 907 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 845 0 in_multi 99 7K 7K 166960K 817 0 ether_multi 1 0K 0K 166960K 24 0 mrt 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 229 1023K 1023K 166960K 229 0 exec 0 0K 1K 166960K 1790 0 pfkey data 0 0K 0K 166960K 12 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 398 287K 295K 166960K 58513 0 UVM aobj 131 8K 8K 166960K 141 0 pinsyscall 25 50K 100K 166960K 3098 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 157 0 NDP 13 0K 2K 166960K 251 0 temp 74 6804K 7440K 166960K 45966 0 kqueue 12 18K 30K 166960K 507 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 463 0 459 3 0 3 3 0 8 2 rtentry 112 882 0 772 4 0 4 4 0 8 0 unpcb 144 3910 0 3895 13 7 6 6 0 8 5 syncache 336 65 0 65 3 2 1 1 0 8 1 tcpqe 32 169 0 169 2 1 1 1 0 8 1 tcpcb 808 1587 0 1582 23 14 9 10 0 8 8 arp 88 183 0 165 1 0 1 1 0 8 0 ipq 40 14 0 11 1 0 1 1 0 8 0 ipqe 40 34 0 31 1 0 1 1 0 8 0 inpcb 360 4437 0 4429 31 22 9 13 0 8 8 nd6 104 190 0 166 1 0 1 1 0 8 0 pkpcb 40 25 0 25 1 0 1 1 0 8 1 kcovpl 48 67 0 58 1 0 1 1 0 8 0 ppxss 1072 18 0 18 1 0 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 3057 0 2603 65 36 29 30 0 8 0 art_table 32 3058 0 2603 4 0 4 4 0 8 0 art_node 16 875 0 776 1 0 1 1 0 8 0 sysvmsgpl 40 46 0 6 1 0 1 1 0 8 0 semupl 112 5 0 5 1 1 0 1 0 8 0 semapl 112 8 0 0 1 0 1 1 0 8 0 shmpl 112 138 0 10 4 0 4 4 0 8 0 dirhash 1024 49 0 32 3 0 3 3 0 8 0 dino2pl 256 9393 0 7846 97 0 97 97 0 8 0 ffsino 240 9393 0 7846 92 0 92 92 0 8 0 nchpl 144 17627 0 15879 66 0 66 66 0 8 0 uvmvnodes 80 6442 0 0 132 0 132 132 0 8 0 vnodes 216 6442 0 0 358 0 358 358 0 8 0 namei 1024 63000 0 62999 5 4 1 2 0 8 0 vcpupl 2048 22 0 0 3 0 3 3 0 8 0 vmpool 664 22 0 0 2 0 2 2 0 8 0 kstatmem 264 250 0 224 3 0 3 3 0 8 1 scxspl 216 73056 0 73056 12 8 4 8 1 8 4 plimitpl 152 884 0 867 1 0 1 1 0 8 0 sigapl 424 6742 0 6675 9 0 9 9 0 8 1 futexpl 64 52036 0 52030 1 0 1 1 0 8 0 knotepl 120 81388 0 81306 25 15 10 16 0 8 7 kqueuepl 184 1034 0 1025 10 6 4 4 0 8 3 pipepl 288 1069 0 1038 16 7 9 11 0 8 6 fdescpl 432 6624 0 6595 4 0 4 4 0 8 0 filepl 120 36400 0 36141 36 21 15 22 0 8 6 lockfpl 104 1442 0 1439 2 1 1 2 0 8 0 lockfspl 48 452 0 449 1 0 1 1 0 8 0 sessionpl 144 83 0 66 1 0 1 1 0 8 0 pgrppl 48 264 0 247 1 0 1 1 0 8 0 ucredpl 104 4966 0 4952 1 0 1 1 0 8 0 zombiepl 144 6676 0 6675 2 1 1 1 0 8 0 processpl 1072 6742 0 6675 5 0 5 5 0 8 0 procpl 680 15070 0 14981 10 1 9 9 0 8 1 sosppl 168 82 0 82 3 2 1 1 0 8 1 sockpl 488 8856 0 8829 146 134 12 32 0 8 8 mcl64k 65536 189 0 189 3 2 1 1 0 8 1 mcl16k 16384 117 0 117 3 2 1 1 0 8 1 mcl12k 12288 175 0 175 3 2 1 1 0 8 1 mcl9k 9216 92 0 92 2 1 1 1 0 8 1 mcl8k 8192 375 0 375 4 2 2 2 0 8 2 mcl4k 4096 604 0 604 3 2 1 1 0 8 1 mcl2k2 2112 43 0 43 3 2 1 1 0 8 1 mcl2k 2048 80588 0 80539 37 25 12 30 0 8 5 mtagpl 96 960 0 830 7 0 7 7 0 8 3 mbufpl 256 181863 0 181551 91 69 22 66 0 8 0 bufpl 280 17772 0 11329 461 0 461 461 0 8 0 anonpl 24 795239 0 781210 183 0 183 183 0 188 80 amapchunkpl 152 195601 0 194731 84 10 74 74 0 158 38 amappl16 200 14017 0 13608 42 12 30 34 0 8 8 amappl15 192 92 0 90 1 0 1 1 0 8 0 amappl14 184 332 0 318 2 0 2 2 0 8 0 amappl13 176 15 0 14 1 0 1 1 0 8 0 amappl12 168 8099 0 8068 2 0 2 2 0 8 0 amappl11 160 53 0 43 1 0 1 1 0 8 0 amappl10 152 96 0 86 1 0 1 1 0 8 0 amappl9 144 176 0 175 1 0 1 1 0 8 0 amappl8 136 380 0 310 3 0 3 3 0 8 0 amappl7 128 79 0 65 1 0 1 1 0 8 0 amappl6 120 1024 0 1003 2 0 2 2 0 8 0 amappl5 112 500 0 488 1 0 1 1 0 8 0 amappl4 104 996 0 959 2 0 2 2 0 8 0 amappl3 96 36245 0 36164 4 1 3 3 0 8 1 amappl2 88 7422 0 7347 4 1 3 4 0 8 0 amappl1 80 35355 0 34825 22 9 13 22 0 8 0 amappl 88 57387 0 57139 7 0 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 140 0 10 3 0 3 3 0 8 0 uaddrrnd 24 6646 0 6595 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 6646 0 6595 1 0 1 1 0 8 0 vmmpekpl 168 48733 0 48674 4 0 4 4 0 8 0 vmmpepl 168 430745 0 428445 156 23 133 133 0 357 20 vmsppl 352 6645 0 6595 6 0 6 6 0 8 1 rwobjpl 24 104811 0 96747 49 0 49 49 0 8 0 pdppl 4096 13298 0 13212 469 379 90 96 0 8 4 pvpl 32 2125231 0 2105043 571 234 337 388 0 265 154 pmappl 216 6645 0 6595 4 0 4 4 0 8 1 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 931 0 547 12 0 12 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a64f010,dead4110dead4110,0,80000112,fffffd807b9b0cc0,fffffd807f7d77b8) at ktrops+0x4f ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a64f010,dead4110dead4110,0,80000112,fffffd807b9b0cc0,fffffd807f7d77b8) at ktrops+0x4f sys/kern/kern_ktrace.c:561 doktrace(fffffd807b9b0cc0,4,112,0,ffff80002a64f010) at doktrace+0x514 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd807b9b0cc0,4,112,0,ffff80002a64f010) at doktrace+0x514 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a64f010,ffff80003789f5f0,ffff80003789f540) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff80003789f5f0) at syscall+0x538 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x60b100ca930, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a64f010,dead4110dead4110,0,80000112,fffffd807b9b0cc0,fffffd807f7d77b8) at ktrops+0x4f ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a64f010,dead4110dead4110,0,80000112,fffffd807b9b0cc0,fffffd807f7d77b8) at ktrops+0x4f sys/kern/kern_ktrace.c:561 doktrace(fffffd807b9b0cc0,4,112,0,ffff80002a64f010) at doktrace+0x514 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd807b9b0cc0,4,112,0,ffff80002a64f010) at doktrace+0x514 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a64f010,ffff80003789f5f0,ffff80003789f540) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff80003789f5f0) at syscall+0x538 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x60b100ca930, count: -5