kernel: protection fault trap, code=0 Stopped at lf_advlock+0x2f1: incl 0x28(%r12) ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace lf_advlock(ffff800000045620,0,fffffd8069935560,2,ffff80003c98f200,40) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff800000045620,0,fffffd8069935560,2,ffff80003c98f200,40) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd8064c33128,fffffd8069935560,2,ffff80003c98f200,40) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 closef(fffffd8069a1b080,ffff80002cd2da28) at closef+0x13f sys/kern/kern_descrip.c:-1 fdfree(ffff80002cd2da28) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80002cd2da28,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80002cd2da28,ffff80003c98f430,ffff80003c98f380) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003c98f430) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c98f430) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x727a59f5c3d0, count: -8 ddb> show registers rdi 0xffff80002cd2da2c rsi 0xffff80002cd2da2c rbp 0xffff80003c98f150 rbx 0 rdx 0 rcx 0xffffffff837b3ff0 cpu_info_full_primary+0x1ff0 rax 0xffff80002cd2da28 r8 0xa0 r9 0 r10 0xb530acc5394d4152 r11 0xdf946c6bf0c9d71 r12 0xdeafbeaddeafbead r13 0x2 r14 0xffff80003c98f200 r15 0x1 rip 0xffffffff8281a201 lf_advlock+0x2f1 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c98f0c0 ss 0x10 lf_advlock+0x2f1: incl 0x28(%r12) ddb> show proc PROC (syz-executor) tid=227409 pid=64297 tcnt=0 stat=onproc flags process=1008 proc=2000 runpri=32, usrpri=84, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff80002cd2da28 scnt=-1 ecnt=1 forw=0xffffffffffffffff, list=0xffff80002cd2c2d0,0xffff80002a822fb8 process=0xffff80003293a480 user=0xffff80003c98a000, vmspace=0xfffffd806ba325d0 estcpu=34, cpticks=23, pctcpu=0.22, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 16723 341382 40518 0 2 0 syz-executor 16723 67675 40518 0 3 0x4000080 fsleep syz-executor 69455 300950 78564 0 3 0 vmmaplk syz-executor 69455 393738 78564 0 2 0x4000000 syz-executor 69455 174880 78564 0 2 0x4000000 syz-executor 5613 285355 16057 0 2 0 syz-executor 5613 138091 16057 0 2 0x4000000 syz-executor 82925 112513 38305 60928 4 0x82014 syz-executor 82925 138034 38305 60928 4 0x4082014 syz-executor 82925 117131 38305 60928 2 0x4002014 syz-executor 82925 23341 38305 60928 4 0x4082014 syz-executor 25211 136164 0 0 3 0x14200 acct acct 40518 316459 29627 0 3 0x82 nanoslp syz-executor 16057 400535 29627 0 3 0x82 nanoslp syz-executor 78564 312469 29627 0 3 0x82 nanoslp syz-executor 12168 140086 1 0 3 0x100083 ttyin getty 75809 352822 0 0 3 0x14200 bored sosplice 26155 129948 29627 0 3 0x82 nanoslp syz-executor 5396 115915 29627 0 3 0x82 nanoslp syz-executor 67318 131169 29627 0 3 0x82 nanoslp syz-executor 38305 2560 29627 0 3 0x82 nanoslp syz-executor 3491 40330 29627 0 3 0x82 nanoslp syz-executor 29627 222014 35621 0 3 0x82 kqread syz-executor 35621 9740 94865 0 3 0x10008a sigsusp ksh 94865 375635 61693 0 3 0x98 kqread sshd-session 61693 166575 37184 0 3 0x92 kqread sshd-session 37184 150204 1 0 3 0x88 kqread sshd 38587 424558 12006 73 3 0x1100090 kqread syslogd 12006 162468 1 0 3 0x100082 sbwait syslogd 89685 359078 1 0 3 0x100080 kqread resolvd 53062 346407 32852 77 3 0x100092 kqread dhcpleased 16838 168926 32852 77 3 0x100092 kqread dhcpleased 32852 284780 1 0 3 0x80 kqread dhcpleased 63133 7277 0 0 3 0x14200 bored smr 78499 385491 0 0 2 0x14200 zerothread 53016 409686 0 0 3 0x14200 aiodoned aiodoned 20002 284621 0 0 3 0x14200 syncer update 44925 83342 0 0 3 0x14200 cleaner cleaner 66886 177718 0 0 2 0x14200 reaper 10116 447664 0 0 3 0x14200 pgdaemon pagedaemon 71196 483710 0 0 3 0x14200 bored viomb 72090 285573 0 0 3 0x40014200 acpi0 acpi0 87992 208308 0 0 3 0x14200 bored softnet7 80072 115376 0 0 3 0x14200 bored softnet6 36112 273147 0 0 3 0x14200 bored softnet5 37077 341314 0 0 3 0x14200 bored softnet4 80735 67499 0 0 3 0x14200 bored softnet3 97373 514606 0 0 3 0x14200 bored softnet2 80411 291541 0 0 3 0x14200 bored softnet1 75792 412297 0 0 3 0x14200 bored softnet0 84863 145936 0 0 3 0x14200 bored systqmp 99274 431191 0 0 3 0x14200 bored systq 20240 390608 0 0 3 0x40014200 tmoslp softclock 85241 416357 0 0 3 0x40014200 idle0 1 67072 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10251 11291K 12698K 166960K 14461 0 pcb 17 14K 16K 166960K 489 0 rtable 204 11K 11K 166960K 681 0 pf 41 14K 131086K 166960K 276 0 ifaddr 43 7K 8K 166960K 157 0 ifgroup 64 2K 2K 166960K 269 0 sysctl 4 1K 9K 166960K 34 0 counters 36 18K 18K 166960K 202 0 ioctlops 0 0K 4K 166960K 690 0 iov 0 0K 20K 166960K 105 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1484 93K 94K 166960K 3387 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 2K 9K 166960K 47 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 142 0 dirhash 12 2K 2K 166960K 36 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 17 61K 106K 166960K 1975 0 sigio 0 0K 0K 166960K 46 0 proc 60 59K 100K 166960K 759 0 subproc 72 4K 4K 166960K 99 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 1 0K 0K 166960K 251 0 in_multi 80 5K 7K 166960K 208 0 ether_multi 1 0K 0K 166960K 16 0 mrt 1 0K 0K 166960K 8 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 247 1102K 1102K 166960K 247 0 exec 0 0K 1K 166960K 853 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 238 156K 168K 166960K 20017 0 UVM aobj 56 4K 6K 166960K 68 0 pinsyscall 38 76K 94K 166960K 3102 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 127 0 NDP 15 0K 2K 166960K 105 0 temp 79 8644K 8772K 166960K 90613 0 kqueue 16 24K 34K 166960K 373 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 200 0 197 2 1 1 2 0 8 0 rtentry 136 224 0 153 4 0 4 4 0 8 0 unpcb 144 1710 0 1690 10 6 4 6 0 8 2 syncache 336 7 0 7 2 2 0 1 0 8 0 tcpqe 32 3 0 3 1 1 0 1 0 8 0 tcpcb 736 642 0 636 16 9 7 7 0 8 6 arp 88 21 0 13 1 0 1 1 0 8 0 ipq 40 7 0 6 2 1 1 1 0 8 0 ipqe 40 15 0 14 2 1 1 1 0 8 0 inpcb 328 2016 0 1961 26 15 11 13 0 8 6 ip6q 72 109 0 108 1 0 1 1 0 8 0 ip6af 40 219 0 218 1 0 1 1 0 8 0 nd6 104 40 0 24 1 0 1 1 0 8 0 pkpcb 40 47 0 47 3 2 1 1 0 8 1 kcovpl 48 11 0 3 1 0 1 1 0 8 0 mppekey 1024 1 0 1 1 0 1 1 0 8 1 ppxss 1072 142 0 141 4 3 1 1 0 8 0 pppxif 1384 13 0 13 3 2 1 1 0 8 1 pfstscr 40 9 0 8 1 0 1 1 0 8 0 pfrktable 1344 2 0 2 1 1 0 1 0 8 0 pftag 88 5 0 2 1 0 1 1 0 8 0 pfstitem 24 5 0 0 1 0 1 1 0 8 0 pfstkey 128 15 0 10 1 0 1 1 0 8 0 pfstate 384 8 0 5 1 0 1 1 0 8 0 pfrule 1344 46 0 46 2 2 0 1 0 8 0 rttmr 136 1 0 1 1 1 0 1 0 8 0 art_heap8 4096 5 0 0 5 0 5 5 0 8 0 art_heap4 256 840 0 485 32 9 23 30 0 8 0 art_table 40 845 0 485 5 0 5 5 0 8 1 art_node 32 222 0 160 1 0 1 1 0 8 0 sysvmsgpl 40 7 0 4 1 0 1 1 0 8 0 semupl 112 4 0 4 1 1 0 1 0 8 0 semapl 112 135 0 125 1 0 1 1 0 8 0 shmpl 112 65 0 12 2 0 2 2 0 8 0 dirhash 1024 33 0 16 3 0 3 3 0 8 0 dino2pl 256 5261 0 3764 95 0 95 95 0 8 0 ffsino 256 5261 0 3764 95 0 95 95 0 8 0 nchpl 144 7969 0 6272 63 0 63 63 0 8 0 rtmask 32 14 0 14 3 2 1 1 0 8 1 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 29185 0 29184 7 5 2 2 0 8 1 kstatmem 264 166 0 136 3 0 3 3 0 8 0 scsiplug 72 9 0 9 3 2 1 1 0 8 1 scxspl 216 43004 0 43004 16 15 1 8 1 8 1 plimitpl 152 665 0 649 1 0 1 1 0 8 0 sigapl 424 2277 0 2225 9 0 9 9 0 8 2 knotepl 120 420738 0 420686 67 57 10 17 0 8 8 kqueuepl 184 899 0 886 7 6 1 4 0 8 0 pipepl 304 319 0 291 5 2 3 5 0 8 0 fdescpl 448 2231 0 2202 5 1 4 5 0 8 0 filepl 120 15926 0 15649 20 7 13 14 0 8 1 lockfpl 104 859 0 856 2 0 2 2 0 8 1 lockfspl 48 376 0 373 1 0 1 1 0 8 0 sessionpl 144 29 0 21 1 0 1 1 0 8 0 pgrppl 48 71 0 55 1 0 1 1 0 8 0 ucredpl 104 2906 0 2893 1 0 1 1 0 8 0 zombiepl 144 3100 0 3096 2 1 1 1 0 8 0 processpl 1168 2277 0 2225 6 0 6 6 0 8 2 procpl 664 5434 0 5375 9 1 8 9 0 8 1 sosppl 168 4 0 4 2 1 1 1 0 8 1 sockpl 552 4117 0 4039 31 16 15 15 0 8 7 mcl64k 65536 133 0 133 4 3 1 1 0 8 1 mcl16k 16384 13 0 13 4 3 1 1 0 8 1 mcl12k 12288 7 0 7 3 2 1 1 0 8 1 mcl9k 9216 1 0 1 1 0 1 1 0 8 1 mcl8k 8192 76 0 76 4 3 1 1 0 8 1 mcl4k 4096 5114 0 5064 15 7 8 12 0 8 1 mcl2k2 2112 2 0 2 1 1 0 1 0 8 0 mcl2k 2048 2922 0 2921 4 1 3 3 0 8 2 mtagpl 96 36 0 18 1 0 1 1 0 8 0 mbufpl 256 32916 0 32776 48 26 22 44 0 8 8 bufpl 280 16264 0 10036 446 0 446 446 0 8 0 anonpl 24 355922 0 346795 147 71 76 134 0 187 1 amapchunkpl 152 67945 0 67365 58 27 31 38 0 158 5 amappl16 200 7903 0 7611 63 36 27 56 0 8 0 amappl15 192 4 0 4 2 2 0 1 0 8 0 amappl14 184 165 0 155 1 0 1 1 0 8 0 amappl13 176 2 0 2 1 1 0 1 0 8 0 amappl12 168 2892 0 2863 3 1 2 3 0 8 0 amappl11 160 44 0 34 1 0 1 1 0 8 0 amappl10 152 20 0 19 2 1 1 1 0 8 0 amappl9 144 245 0 245 1 1 0 1 0 8 0 amappl8 136 37 0 35 1 0 1 1 0 8 0 amappl7 128 126 0 116 1 0 1 1 0 8 0 amappl6 120 204 0 199 1 0 1 1 0 8 0 amappl5 112 125 0 118 1 0 1 1 0 8 0 amappl4 104 288 0 272 1 0 1 1 0 8 0 amappl3 96 13627 0 13522 4 0 4 4 0 8 0 amappl2 88 691 0 634 2 0 2 2 0 8 0 amappl1 80 16135 0 15587 13 0 13 13 0 8 0 amappl 88 18950 0 18778 5 0 5 5 0 92 0 dma65536 65536 1 0 1 1 1 0 1 0 8 0 dma4096 4096 2 0 2 2 2 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 7 0 7 2 2 0 1 0 8 0 dma128 128 255 0 255 2 2 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 8 0 8 2 2 0 1 0 8 0 dma16 16 20 0 19 1 0 1 1 0 8 0 aobjpl 72 67 0 12 1 0 1 1 0 8 0 uaddrrnd 24 2231 0 2202 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2231 0 2202 1 0 1 1 0 8 0 vmmpekpl 168 18618 0 18575 3 0 3 3 0 8 0 vmmpepl 168 144511 0 142369 131 26 105 131 0 357 0 vmsppl 368 2230 0 2201 4 1 3 4 0 8 0 rwobjpl 40 44241 0 37143 77 4 73 73 0 8 0 pdppl 4096 4468 0 4402 118 52 66 82 0 8 0 pvpl 32 994644 0 979775 261 107 154 245 0 265 2 pmappl 216 2230 0 2201 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 474 0 127 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace lf_advlock(ffff800000045620,0,fffffd8069935560,2,ffff80003c98f200,40) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff800000045620,0,fffffd8069935560,2,ffff80003c98f200,40) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd8064c33128,fffffd8069935560,2,ffff80003c98f200,40) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 closef(fffffd8069a1b080,ffff80002cd2da28) at closef+0x13f sys/kern/kern_descrip.c:-1 fdfree(ffff80002cd2da28) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80002cd2da28,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80002cd2da28,ffff80003c98f430,ffff80003c98f380) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003c98f430) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c98f430) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x727a59f5c3d0, count: -8 ddb> machine ddbcpu 1 No such command ddb> trace lf_advlock(ffff800000045620,0,fffffd8069935560,2,ffff80003c98f200,40) at lf_advlock+0x2f1 ls_ref sys/kern/vfs_lockf.c:138 [inline] lf_advlock(ffff800000045620,0,fffffd8069935560,2,ffff80003c98f200,40) at lf_advlock+0x2f1 sys/kern/vfs_lockf.c:278 VOP_ADVLOCK(fffffd8064c33128,fffffd8069935560,2,ffff80003c98f200,40) at VOP_ADVLOCK+0x87 sys/kern/vfs_vops.c:623 closef(fffffd8069a1b080,ffff80002cd2da28) at closef+0x13f sys/kern/kern_descrip.c:-1 fdfree(ffff80002cd2da28) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80002cd2da28,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80002cd2da28,ffff80003c98f430,ffff80003c98f380) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003c98f430) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c98f430) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x727a59f5c3d0, count: -8