kernel: integer divide fault trap, code=0 Stopped at tcp_update_sndspace+0x1e1: divl %ecx,%eax ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic the kernel did not panic ddb{0}> trace tcp_update_sndspace(ffff800000cde918) at tcp_update_sndspace+0x1e1 sys/netinet/tcp_usrreq.c:1514 tcp_output(ffff800000cde918) at tcp_output+0x23c8 sys/netinet/tcp_output.c:993 tcp_connect(fffffd8063e957e8,fffffd8067b26100) at tcp_connect+0x348 sys/netinet/tcp_usrreq.c:679 sys_connect(ffff8000212c7608,ffff8000247335b8,ffff800024733600) at sys_connect+0x203 sys/kern/uipc_syscalls.c:422 syscall(ffff800024733680) at syscall+0x606 mi_syscall sys/sys/syscall_mi.h:110 [inline] syscall(ffff800024733680) at syscall+0x606 sys/arch/amd64/amd64/trap.c:625 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xeb6185bd900, count: -6 ddb{0}> show registers rdi 0xffff80002e5fe000 rsi 0x393 rbp 0xffff800024733300 rbx 0x4000 __ALIGN_SIZE+0x3000 rdx 0 rcx 0 rax 0x4000 __ALIGN_SIZE+0x3000 r8 0xd0 r9 0xb495e36abc3f81ae r10 0x2d0204d58952d8ff r11 0x7cae48898360b2fd r12 0x800 r13 0x800 r14 0x4000 __ALIGN_SIZE+0x3000 r15 0xfffffd8063e957e8 rip 0xffffffff82165851 tcp_update_sndspace+0x1e1 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000247332a0 ss 0x10 tcp_update_sndspace+0x1e1: divl %ecx,%eax ddb{0}> show proc PROC (syz-executor.4) pid=163340 stat=onproc flags process=0 proc=4000000 pri=32, usrpri=65, nice=20 forw=0xffffffffffffffff, list=0xffff8000212c6870,0xffff8000212af340 process=0xffff8000247361a0 user=0xffff80002472e000, vmspace=0xfffffd80089ea370 estcpu=30, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 91233 196203 89181 0 7 0 syz-executor.2 91233 152855 89181 0 2 0x4000000 syz-executor.2 60338 398827 53698 0 2 0 syz-executor.4 *60338 163340 53698 0 7 0x4000000 syz-executor.4 30759 281017 79680 0 3 0x80 nanoslp syz-executor.1 30759 55029 79680 0 3 0x4000080 fsleep syz-executor.1 14049 445027 1346 0 3 0x80 nanoslp syz-executor.3 14049 282043 1346 0 3 0x4000080 bell syz-executor.3 14049 36837 1346 0 3 0x4000080 fsleep syz-executor.3 14049 511646 1346 0 3 0x4000080 fsleep syz-executor.3 53698 166530 11627 0 3 0x82 nanoslp syz-executor.4 79878 102783 11627 0 2 0x2 syz-executor.0 79680 257900 11627 0 3 0x82 nanoslp syz-executor.1 41085 258880 11627 0 2 0x2 syz-executor.7 5754 508461 11627 0 3 0x82 nanoslp syz-executor.5 89181 94913 11627 0 3 0x82 nanoslp syz-executor.2 76436 460964 8988 0 3 0x100082 netio arp 8988 367381 1 0 3 0x10008a sigsusp sh 82346 85373 11627 0 3 0x2 biowait syz-executor.6 1346 381851 11627 0 3 0x82 nanoslp syz-executor.3 20256 281120 1 0 3 0x100083 ttyin getty 58119 21058 0 0 3 0x14200 acct acct 75224 293214 0 0 3 0x14280 nfsidl nfsio 71564 29793 0 0 3 0x14280 nfsidl nfsio 40224 162160 0 0 3 0x14280 nfsidl nfsio 66511 333900 0 0 3 0x14280 nfsidl nfsio 31003 454184 0 0 3 0x14280 nfsidl nfsio 78525 13929 0 0 3 0x14280 nfsidl nfsio 17888 54210 0 0 3 0x14280 nfsidl nfsio 30273 315714 0 0 3 0x14280 nfsidl nfsio 24982 51838 0 0 3 0x14280 nfsidl nfsio 90335 287543 0 0 3 0x14280 nfsidl nfsio 91127 308908 0 0 3 0x14280 nfsidl nfsio 6512 246393 0 0 3 0x14280 nfsidl nfsio 76388 143258 0 0 3 0x14280 nfsidl nfsio 16438 116354 0 0 3 0x14280 nfsidl nfsio 72124 421168 0 0 3 0x14280 nfsidl nfsio 89530 71710 0 0 3 0x14280 nfsidl nfsio 83410 9466 0 0 3 0x14280 nfsidl nfsio 43532 102457 0 0 3 0x14280 nfsidl nfsio 94689 364579 0 0 3 0x14280 nfsidl nfsio 8893 427734 0 0 3 0x14280 nfsidl nfsio 90043 127053 0 0 3 0x14200 bored sosplice 11627 361540 42858 0 3 0x82 wait syz-fuzzer 11627 29383 42858 0 3 0x4000082 nanoslp syz-fuzzer 11627 98616 42858 0 3 0x4000082 kqread syz-fuzzer 11627 181702 42858 0 3 0x4000082 wait syz-fuzzer 11627 388612 42858 0 3 0x4000082 wait syz-fuzzer 11627 439713 42858 0 3 0x4000082 wait syz-fuzzer 11627 57871 42858 0 3 0x4000082 wait syz-fuzzer 11627 227804 42858 0 3 0x4000082 thrsleep syz-fuzzer 11627 404257 42858 0 3 0x4000082 thrsleep syz-fuzzer 11627 81737 42858 0 3 0x4000082 wait syz-fuzzer 11627 472499 42858 0 3 0x4000082 thrsleep syz-fuzzer 11627 165586 42858 0 3 0x4000082 thrsleep syz-fuzzer 11627 217516 42858 0 3 0x4000082 thrsleep syz-fuzzer 11627 254295 42858 0 3 0x4000082 thrsleep syz-fuzzer 11627 453741 42858 0 3 0x4000082 wait syz-fuzzer 11627 312575 42858 0 3 0x4000082 wait syz-fuzzer 42858 117822 99982 0 3 0x10008a sigsusp ksh 99982 274860 91493 0 3 0x9a kqread sshd 91493 280434 1 0 3 0x88 kqread sshd 12812 449845 99087 74 3 0x1100092 bpf pflogd 99087 460348 1 0 3 0x80 netio pflogd 44860 444628 2681 73 3 0x1100090 kqread syslogd 2681 404041 1 0 3 0x100082 netio syslogd 9160 240835 1 0 3 0x100080 kqread resolvd 18503 120683 17143 77 3 0x100092 kqread dhcpleased 26578 126689 17143 77 3 0x100092 kqread dhcpleased 17143 93334 1 0 3 0x80 kqread dhcpleased 99858 213968 0 0 3 0x14200 bored smr 54661 473350 0 0 2 0x14200 zerothread 80555 197894 0 0 3 0x14200 aiodoned aiodoned 75245 142515 0 0 3 0x14200 syncer update 55377 160029 0 0 3 0x14200 cleaner cleaner 42963 86250 0 0 3 0x14200 reaper reaper 32125 33311 0 0 3 0x14200 pgdaemon pagedaemon 31333 248352 0 0 3 0x14200 bored viomb 23432 330143 0 0 3 0x40014200 acpi0 acpi0 61638 382577 0 0 3 0x40014200 idle1 70181 493929 0 0 3 0x14200 bored softnet 58143 415578 0 0 3 0x14200 bored softnet 88673 437543 0 0 3 0x14200 bored softnet 78138 78095 0 0 3 0x14200 bored softnet 21660 162 0 0 3 0x14200 bored systqmp 73895 311375 0 0 3 0x14200 bored systq 12433 516364 0 0 3 0x40014200 bored softclock 84774 445757 0 0 3 0x40014200 idle0 1 77407 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10263 6537K 8150K 78643K 27351 0 pcb 13 22K 30K 78643K 1754 0 rtable 233 18K 19K 78643K 2981 0 ifaddr 99 31K 32K 78643K 1254 0 sysctl 3 1K 1K 78643K 12 0 counters 62 36K 36K 78643K 864 0 ioctlops 0 0K 4K 78643K 2417 0 iov 0 0K 32K 78643K 4885 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1605 100K 100K 78643K 7604 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 151 0 VM map 2 1K 1K 78643K 2 0 sem 12 0K 0K 78643K 1592 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 16 57K 93K 78643K 10799 0 sigio 0 0K 0K 78643K 448 0 proc 71 91K 128K 78643K 2501 0 subproc 117 7K 7K 78643K 852 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 1033 0 in_multi 98 6K 6K 78643K 1011 0 ether_multi 1 0K 0K 78643K 30 0 mrt 1 0K 0K 78643K 48 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 247 1102K 1102K 78643K 247 0 exec 0 0K 1K 78643K 2551 0 pfkey data 0 0K 0K 78643K 35 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 404 96K 109K 78643K 76231 0 UVM aobj 131 4K 4K 78643K 131 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 362 0 NDP 19 0K 1K 78643K 426 0 temp 158 5779K 5907K 78643K 253968 0 kqueue 12 18K 28K 78643K 1239 0 SYN cache 2 16K 16K 78643K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 1161 0 1157 16 15 1 3 0 8 0 rtentry 112 939 0 844 5 2 3 4 0 8 0 unpcb 144 12062 0 12041 84 83 1 10 0 8 0 syncache 296 70 0 70 16 16 0 1 0 8 0 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpqe 32 83 0 83 10 10 0 1 0 8 0 tcpcb 776 3799 0 3793 124 123 1 14 0 8 0 arp 120 142 0 125 1 0 1 1 0 8 0 inpcb 368 11678 0 11669 175 170 5 24 0 8 4 nd6 48 216 0 194 1 0 1 1 0 8 0 pkpcb 40 56 0 56 5 5 0 1 0 8 0 kcovpl 48 65 0 56 1 0 1 1 0 8 0 mppekey 1024 70 0 70 2 2 0 1 0 8 0 ppxss 1256 223 0 223 15 15 0 1 0 8 0 pppxif 1456 125 0 125 11 11 0 1 0 8 0 pfstscr 40 10 0 10 2 2 0 1 0 8 0 pffrag 232 35 0 34 2 1 1 1 0 482 0 pffrnode 88 32 0 31 2 1 1 1 0 8 0 pffrent 40 192 0 191 2 1 1 1 0 8 0 pfosfp 40 1431 0 1007 5 0 5 5 0 8 0 pfosfpen 112 1431 0 716 21 0 21 21 0 8 0 pfanchor 1280 274 0 140 18 5 13 17 0 8 0 pfqueue 264 3 0 3 1 1 0 1 0 8 0 pfstitem 24 242 0 214 1 0 1 1 0 8 0 pfstkey 128 252 0 224 2 0 2 2 0 8 0 pfstate 384 246 0 218 10 6 4 5 0 8 0 pfrule 1344 21 0 16 2 1 1 2 0 8 0 rttmr 136 13 0 13 5 5 0 1 0 8 0 art_heap8 4096 3 0 1 3 1 2 2 0 8 0 art_heap4 256 4509 0 4055 71 42 29 30 0 8 0 art_table 32 4512 0 4056 7 3 4 4 0 8 0 art_node 16 938 0 854 1 0 1 1 0 8 0 sysvmsgpl 40 28 0 15 1 0 1 1 0 8 0 semapl 112 1590 0 1580 1 0 1 1 0 8 0 shmpl 112 128 0 0 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 16641 0 15132 95 0 95 95 0 8 0 ffsino 272 16641 0 15132 102 0 102 102 0 8 0 nchpl 144 33511 0 31868 63 0 63 63 0 8 0 rtmask 32 4 0 4 2 2 0 1 0 8 0 uvmvnodes 80 6262 0 0 128 0 128 128 0 8 0 vnodes 216 6262 0 0 348 0 348 348 0 8 0 namei 1024 117944 0 117942 7 6 1 2 0 8 0 percpumem 16 445 0 401 1 0 1 1 0 8 0 vmpool 696 16 0 16 5 5 0 1 0 8 0 kstatmem 264 566 0 528 6 3 3 3 0 8 0 scsiplug 72 8 0 8 2 2 0 1 0 8 0 scxspl 216 94869 0 94868 40 39 1 8 0 8 0 plimitpl 152 1259 0 1242 1 0 1 1 0 8 0 sigapl 424 11026 0 10957 11 2 9 9 0 8 0 futexpl 64 108179 0 108176 5 4 1 1 0 8 0 knotepl 120 807 0 0 15 0 15 15 0 8 0 kqueuepl 216 3286 0 3278 29 28 1 5 0 8 0 pipepl 320 3092 0 3061 71 68 3 8 0 8 0 fdescpl 496 10987 0 10958 5 0 5 5 0 8 0 filepl 152 85933 0 85668 114 102 12 23 0 8 0 lockfpl 104 3900 0 3898 7 6 1 2 0 8 0 lockfspl 48 1158 0 1156 1 0 1 1 0 8 0 sessionpl 144 82 0 64 1 0 1 1 0 8 0 pgrppl 48 121 0 103 1 0 1 1 0 8 0 ucredpl 104 8043 0 8030 1 0 1 1 0 8 0 zombiepl 144 10958 0 10957 2 1 1 1 0 8 0 processpl 1072 11026 0 10957 6 1 5 6 0 8 0 procpl 696 30697 0 30607 19 10 9 11 0 8 0 srpgc 96 72 0 72 15 15 0 1 0 8 0 sosppl 168 89 0 89 15 15 0 1 0 8 0 sockpl 488 25040 0 25006 520 510 10 36 0 8 5 mcl64k 65536 26 0 0 4 1 3 3 0 8 0 mcl16k 16384 45 0 0 4 1 3 3 0 8 0 mcl12k 12288 25 0 0 2 0 2 2 0 8 0 mcl9k 9216 22 0 0 2 0 2 2 0 8 0 mcl8k 8192 43 0 0 5 2 3 5 0 8 0 mcl4k 4096 25 0 0 3 0 3 3 0 8 0 mcl2k2 2112 12 0 0 1 0 1 1 0 8 0 mcl2k 2048 510 0 0 59 19 40 59 0 8 0 mtagpl 96 427 0 0 10 0 10 10 0 8 0 mbufpl 256 1587 0 0 93 0 93 93 0 8 0 bufpl 288 25336 0 19013 452 0 452 452 0 8 0 anonpl 24 2237795 0 2220917 236 101 135 161 0 186 0 amapchunkpl 152 213166 0 212359 71 29 42 50 0 158 0 amappl16 200 20060 0 19471 129 96 33 44 0 8 0 amappl15 192 11 0 9 1 0 1 1 0 8 0 amappl14 184 351 0 335 2 1 1 2 0 8 0 amappl13 176 9 0 9 2 2 0 1 0 8 0 amappl12 168 1111 0 1106 1 0 1 1 0 8 0 amappl11 160 53 0 39 1 0 1 1 0 8 0 amappl10 152 89 0 81 1 0 1 1 0 8 0 amappl9 144 1032 0 1032 6 6 0 1 0 8 0 amappl8 136 690 0 565 5 0 5 5 0 8 0 amappl7 128 313 0 285 2 0 2 2 0 8 0 amappl6 120 532 0 512 2 1 1 2 0 8 0 amappl5 112 531 0 521 1 0 1 1 0 8 0 amappl4 104 1396 0 1351 2 0 2 2 0 8 0 amappl3 96 32520 0 32467 2 0 2 2 0 8 0 amappl2 88 12107 0 12025 5 3 2 4 0 8 0 amappl1 80 255039 0 254196 30 10 20 28 0 8 0 amappl 88 74826 0 74611 9 1 8 8 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 130 0 0 3 0 3 3 0 8 0 uaddrrnd 24 11003 0 10974 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 11003 0 10974 1 0 1 1 0 8 0 vmmpekpl 168 92210 0 92148 4 0 4 4 0 8 0 vmmpepl 168 1041169 0 1038136 314 153 161 195 0 357 0 vmsppl 440 11002 0 10974 6 2 4 5 0 8 0 rwobjpl 56 276770 0 268427 142 23 119 120 0 8 0 pdppl 4096 22013 0 21948 600 529 71 83 0 8 6 pvpl 32 4410353 0 4387390 525 293 232 366 0 265 0 pmappl 248 11002 0 10974 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1696 0 790 27 0 27 27 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace tcp_update_sndspace(ffff800000cde918) at tcp_update_sndspace+0x1e1 sys/netinet/tcp_usrreq.c:1514 tcp_output(ffff800000cde918) at tcp_output+0x23c8 sys/netinet/tcp_output.c:993 tcp_connect(fffffd8063e957e8,fffffd8067b26100) at tcp_connect+0x348 sys/netinet/tcp_usrreq.c:679 sys_connect(ffff8000212c7608,ffff8000247335b8,ffff800024733600) at sys_connect+0x203 sys/kern/uipc_syscalls.c:422 syscall(ffff800024733680) at syscall+0x606 mi_syscall sys/sys/syscall_mi.h:110 [inline] syscall(ffff800024733680) at syscall+0x606 sys/arch/amd64/amd64/trap.c:625 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xeb6185bd900, count: -6 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{1}> trace x86_ipi_db(ffff800020d68ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 end of kernel end trace frame: 0x7f7ffffd28c0, count: -3