kernel: protection fault trap, code=0 Stopped at ktrops+0x4f: movq 0x8(%r14),%r14 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace ktrops(ffff80002a62c010,deafbeaddeafbead,0,80000330,fffffd80688d9b08,fffffd807f7d79c0) at ktrops+0x4f ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a62c010,deafbeaddeafbead,0,80000330,fffffd80688d9b08,fffffd807f7d79c0) at ktrops+0x4f sys/kern/kern_ktrace.c:561 doktrace(fffffd80688d9b08,4,330,0,ffff80002a62c010) at doktrace+0x514 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd80688d9b08,4,330,0,ffff80002a62c010) at doktrace+0x514 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a62c010,ffff80002d9bbad0,ffff80002d9bba20) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff80002d9bbad0) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2e3d0c79400, count: -5 ddb> show registers rdi 0xffff800030f8c000 rsi 0xfa6 rbp 0xffff80002d9bb7f0 rbx 0xfffffd807f7d79c0 rdx 0xffff800030f8c000 rcx 0xfa5 rax 0xffffffff81941c93 ktrops+0x43 r8 0xfffffd80688d9b08 r9 0xfffffd807f7d79c0 r10 0xc32cb9e9f7b0b344 r11 0x27d149802fff470d r12 0xffff80002a62c010 r13 0xdeafbeaddeafbead r14 0xdeafbeaddeafbead r15 0x80000330 __kernel_virt_to_phys+0x330 rip 0xffffffff81941c9f ktrops+0x4f cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002d9bb770 ss 0x10 ktrops+0x4f: movq 0x8(%r14),%r14 ddb> show proc PROC (syz-executor.7) tid=479837 pid=48505 tcnt=2 stat=onproc flags process=c000000 proc=4000000 runpri=17, usrpri=80, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a6b2038,0xffffffff82d5cde0 process=0xffff80002a69ccc8 user=0xffff80002d9b6000, vmspace=0xfffffd8067782170 estcpu=30, cpticks=1, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 48505 2104 78058 0 3 0xc000080 fsleep syz-executor.7 *48505 479837 78058 0 7 0xc000000 syz-executor.7 33655 88619 50323 0 3 0x8000080 fsleep syz-executor.0 33655 463182 50323 0 3 0xc000080 sbwait syz-executor.0 33655 368658 50323 0 3 0xc000080 fsleep syz-executor.0 76337 245379 50298 0 3 0x8000080 fsleep syz-executor.2 76337 398612 50298 0 3 0xc000080 netacc syz-executor.2 50092 445469 30046 0 2 0x8000002 syz-executor.5 78058 172759 30046 0 3 0x8000082 nanoslp syz-executor.7 71336 163589 1 0 3 0x8000080 fsleep syz-executor.5 71336 271612 1 0 3 0xc000080 ttyout syz-executor.5 50298 415530 30046 0 3 0x8000082 nanoslp syz-executor.2 94672 181674 30046 0 3 0x8000082 nanoslp syz-executor.1 28290 470774 30046 0 2 0x8000002 syz-executor.3 98271 161628 1 0 3 0x8000080 fsleep syz-executor.3 98271 431351 1 0 3 0xc000080 kqsel syz-executor.3 97812 375112 30046 0 2 0x8000002 syz-executor.6 50323 181833 30046 0 3 0x8000082 nanoslp syz-executor.0 10706 234848 0 0 3 0x14200 bored sosplice 84883 180414 0 0 3 0x14280 nfsidl nfsio 18935 404026 0 0 3 0x14280 nfsidl nfsio 54192 413180 0 0 3 0x14280 nfsidl nfsio 22111 61849 0 0 3 0x14280 nfsidl nfsio 57007 226449 0 0 3 0x14280 nfsidl nfsio 30757 33552 0 0 3 0x14280 nfsidl nfsio 92362 300950 0 0 3 0x14280 nfsidl nfsio 43542 384932 0 0 3 0x14280 nfsidl nfsio 18649 240712 0 0 3 0x14280 nfsidl nfsio 30137 383811 0 0 3 0x14280 nfsidl nfsio 30117 484184 0 0 3 0x14280 nfsidl nfsio 47260 515423 0 0 3 0x14280 nfsidl nfsio 17136 357519 0 0 3 0x14280 nfsidl nfsio 40564 250143 0 0 3 0x14280 nfsidl nfsio 58807 90367 0 0 3 0x14280 nfsidl nfsio 71301 257817 0 0 3 0x14280 nfsidl nfsio 36424 273926 0 0 3 0x14280 nfsidl nfsio 19727 284920 0 0 3 0x14280 nfsidl nfsio 24097 129811 0 0 3 0x14280 nfsidl nfsio 11264 94459 0 0 3 0x14280 nfsidl nfsio 30046 495629 61077 0 3 0x1a000082 wait syz-fuzzer 30046 281118 61077 0 3 0x1e000082 nanoslp syz-fuzzer 30046 241643 61077 0 3 0x1e000082 wait syz-fuzzer 30046 450329 61077 0 3 0x1e000082 wait syz-fuzzer 30046 299494 61077 0 3 0x1e000082 wait syz-fuzzer 30046 248493 61077 0 3 0x1e000082 wait syz-fuzzer 30046 310770 61077 0 3 0x1e000082 thrsleep syz-fuzzer 30046 172493 61077 0 3 0x1e000082 thrsleep syz-fuzzer 30046 144315 61077 0 3 0x1e000082 wait syz-fuzzer 30046 195181 61077 0 3 0x1e000082 kqread syz-fuzzer 30046 241680 61077 0 3 0x1e000082 thrsleep syz-fuzzer 30046 157153 61077 0 3 0x1e000082 wait syz-fuzzer 30046 29817 61077 0 3 0x1e000082 wait syz-fuzzer 30046 285793 61077 0 3 0x1e000082 thrsleep syz-fuzzer 61077 232109 27766 0 3 0x810008a sigsusp ksh 27766 516405 67907 0 3 0x1800009a kqread sshd 66326 279955 1 0 3 0x18100083 ttyin getty 67907 169896 1 0 3 0x18000088 kqread sshd 31042 320018 14962 73 3 0x19100090 kqread syslogd 14962 507038 1 0 3 0x18100082 sbwait syslogd 95496 417905 1 0 3 0x18100080 kqread resolvd 4614 449405 85166 77 3 0x18100092 kqread dhcpleased 90602 415933 85166 77 3 0x18100092 kqread dhcpleased 85166 194380 1 0 3 0x18000080 kqread dhcpleased 82291 69253 0 0 3 0x14200 bored smr 4501 203848 0 0 3 0x14200 pgzero zerothread 97040 10100 0 0 3 0x14200 aiodoned aiodoned 84098 311094 0 0 3 0x14200 syncer update 41047 484427 0 0 3 0x14200 cleaner cleaner 65814 369520 0 0 3 0x14200 reaper reaper 21549 420585 0 0 3 0x14200 pgdaemon pagedaemon 78166 262876 0 0 3 0x14200 bored viomb 49560 100493 0 0 3 0x40014200 acpi0 acpi0 39052 382116 0 0 3 0x14200 bored softnet3 63197 218520 0 0 3 0x14200 bored softnet2 66852 12962 0 0 3 0x14200 bored softnet1 7043 71518 0 0 2 0x14200 softnet0 45849 429653 0 0 3 0x14200 bored systqmp 34832 64590 0 0 3 0x14200 bored systq 20287 255122 0 0 3 0x40014200 tmoslp softclock 53852 522783 0 0 3 0x40014200 idle0 1 368980 0 0 3 0x8000082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10186 6488K 11035K 166960K 15050 0 pcb 17 14K 16K 166960K 350 0 rtable 239 9K 9K 166960K 1154 0 pf 31 9K 10K 166960K 119 0 ifaddr 43 11K 11K 166960K 158 0 ifgroup 54 2K 2K 166960K 198 0 sysctl 4 1K 1K 166960K 6 0 counters 31 17K 17K 166960K 73 0 ioctlops 0 0K 2K 166960K 132 0 iov 0 0K 24K 166960K 100 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1446 91K 91K 166960K 3269 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 13K 166960K 55 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 199 0 dirhash 12 2K 2K 166960K 39 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 15 53K 81K 166960K 2016 0 sigio 1 0K 0K 166960K 35 0 proc 58 59K 83K 166960K 1194 0 subproc 130 8K 8K 166960K 403 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 402 0 in_multi 98 7K 7K 166960K 388 0 ether_multi 1 0K 0K 166960K 17 0 mrt 1 0K 0K 166960K 7 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 97 440K 440K 166960K 97 0 exec 0 0K 1K 166960K 772 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 280 91K 109K 166960K 18540 0 UVM aobj 91 7K 7K 166960K 102 0 pinsyscall 36 72K 100K 166960K 3733 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 122 0 NDP 12 0K 2K 166960K 114 0 temp 87 6804K 6880K 166960K 50952 0 kqueue 12 18K 26K 166960K 260 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 280 0 277 2 0 2 2 0 8 1 rtentry 112 387 0 279 4 0 4 4 0 8 0 unpcb 144 1263 0 1246 2 0 2 2 0 8 1 syncache 336 12 0 12 1 0 1 1 0 8 1 tcpqe 32 19 0 19 1 0 1 1 0 8 1 tcpcb 808 669 0 663 8 0 8 8 0 8 7 arp 88 67 0 51 1 0 1 1 0 8 0 ipq 40 5 0 4 1 0 1 1 0 8 0 ipqe 40 92 0 91 1 0 1 1 0 8 0 inpcb 352 2006 0 1997 14 5 9 14 0 8 8 nd6 104 101 0 75 1 0 1 1 0 8 0 pkpcb 40 34 0 34 1 0 1 1 0 8 1 kcovpl 48 31 0 21 1 0 1 1 0 8 0 ppxss 1072 15 0 15 1 0 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 1463 0 1000 35 6 29 29 0 8 0 art_table 32 1464 0 1000 4 0 4 4 0 8 0 art_node 16 376 0 278 1 0 1 1 0 8 0 sysvmsgpl 40 11 0 10 1 0 1 1 0 8 0 semupl 112 7 0 7 1 0 1 1 0 8 1 semapl 112 194 0 184 1 0 1 1 0 8 0 shmpl 112 99 0 11 3 0 3 3 0 8 0 dirhash 1024 35 0 18 3 0 3 3 0 8 0 dino2pl 256 4597 0 3077 96 0 96 96 0 8 0 ffsino 240 4597 0 3077 90 0 90 90 0 8 0 nchpl 144 7527 0 6939 66 33 33 66 0 8 8 uvmvnodes 80 6138 0 0 126 0 126 126 0 8 0 vnodes 216 6138 0 0 341 0 341 341 0 8 0 namei 1024 28179 0 28179 3 0 3 3 0 8 3 vcpupl 3904 7 0 2 1 0 1 1 0 8 0 vmpool 664 10 0 5 1 0 1 1 0 8 0 kstatmem 264 108 0 84 2 0 2 2 0 8 0 scsiplug 72 1 0 1 1 0 1 1 0 8 1 scxspl 216 39602 0 39602 8 0 8 8 1 8 8 plimitpl 152 325 0 307 1 0 1 1 0 8 0 sigapl 424 2295 0 2231 8 0 8 8 0 8 0 futexpl 64 34087 0 34081 1 0 1 1 0 8 0 knotepl 120 8141 0 8061 19 7 12 17 0 8 8 kqueuepl 184 643 0 633 4 0 4 4 0 8 3 pipepl 288 415 0 386 3 0 3 3 0 8 0 fdescpl 432 2253 0 2226 4 0 4 4 0 8 0 filepl 120 14953 0 14677 12 0 12 12 0 8 2 lockfpl 104 632 0 630 1 0 1 1 0 8 0 lockfspl 48 269 0 267 1 0 1 1 0 8 0 sessionpl 144 45 0 27 1 0 1 1 0 8 0 pgrppl 48 113 0 95 1 0 1 1 0 8 0 ucredpl 104 2289 0 2279 1 0 1 1 0 8 0 zombiepl 144 2233 0 2231 1 0 1 1 0 8 0 processpl 1080 2295 0 2231 5 0 5 5 0 8 0 procpl 656 4199 0 4116 9 0 9 9 0 8 1 sosppl 168 10 0 10 1 0 1 1 0 8 1 sockpl 504 3597 0 3568 21 10 11 21 0 8 6 mcl64k 65536 142 0 142 1 0 1 1 0 8 1 mcl16k 16384 27 0 27 1 0 1 1 0 8 1 mcl12k 12288 39 0 39 1 0 1 1 0 8 1 mcl9k 9216 2 0 2 1 0 1 1 0 8 1 mcl8k 8192 74 0 74 1 0 1 1 0 8 1 mcl4k 4096 30 0 30 1 0 1 1 0 8 1 mcl2k2 2112 1 0 1 1 0 1 1 0 8 1 mcl2k 2048 21733 0 21632 37 17 20 37 0 8 7 mtagpl 96 65 0 56 1 0 1 1 0 8 0 mbufpl 256 50505 0 50340 95 73 22 92 0 8 7 bufpl 280 9795 0 3118 477 0 477 477 0 8 0 anonpl 24 369190 0 363244 65 0 65 65 0 188 24 amapchunkpl 152 61575 0 60926 39 0 39 39 0 158 7 amappl16 200 8068 0 7926 29 13 16 21 0 8 8 amappl15 192 11 0 11 1 0 1 1 0 8 1 amappl14 184 235 0 223 2 0 2 2 0 8 1 amappl13 176 30 0 30 1 0 1 1 0 8 1 amappl12 168 3214 0 3186 2 0 2 2 0 8 0 amappl11 160 70 0 60 1 0 1 1 0 8 0 amappl10 152 86 0 73 1 0 1 1 0 8 0 amappl9 144 172 0 172 1 0 1 1 0 8 1 amappl8 136 196 0 169 2 0 2 2 0 8 0 amappl7 128 50 0 38 1 0 1 1 0 8 0 amappl6 120 604 0 590 2 0 2 2 0 8 1 amappl5 112 249 0 236 1 0 1 1 0 8 0 amappl4 104 653 0 625 2 0 2 2 0 8 1 amappl3 96 12084 0 12003 3 0 3 3 0 8 0 amappl2 88 2774 0 2704 4 0 4 4 0 8 2 amappl1 80 16722 0 16235 22 3 19 22 0 8 8 amappl 88 17737 0 17546 6 0 6 6 0 92 1 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 101 0 11 2 0 2 2 0 8 0 uaddrrnd 24 2263 0 2231 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2263 0 2231 1 0 1 1 0 8 0 vmmpekpl 168 19421 0 19353 4 0 4 4 0 8 0 vmmpepl 168 156174 0 154346 113 0 113 113 0 357 25 vmsppl 344 2262 0 2231 4 0 4 4 0 8 0 rwobjpl 24 47560 0 40237 46 0 46 46 0 8 1 pdppl 4096 4532 0 4467 263 192 71 75 0 8 6 pvpl 32 956876 0 944849 371 17 354 371 0 265 240 pmappl 216 2262 0 2231 3 0 3 3 0 8 1 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 663 0 298 13 0 13 13 0 8 1 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a62c010,deafbeaddeafbead,0,80000330,fffffd80688d9b08,fffffd807f7d79c0) at ktrops+0x4f ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a62c010,deafbeaddeafbead,0,80000330,fffffd80688d9b08,fffffd807f7d79c0) at ktrops+0x4f sys/kern/kern_ktrace.c:561 doktrace(fffffd80688d9b08,4,330,0,ffff80002a62c010) at doktrace+0x514 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd80688d9b08,4,330,0,ffff80002a62c010) at doktrace+0x514 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a62c010,ffff80002d9bbad0,ffff80002d9bba20) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff80002d9bbad0) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2e3d0c79400, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a62c010,deafbeaddeafbead,0,80000330,fffffd80688d9b08,fffffd807f7d79c0) at ktrops+0x4f ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a62c010,deafbeaddeafbead,0,80000330,fffffd80688d9b08,fffffd807f7d79c0) at ktrops+0x4f sys/kern/kern_ktrace.c:561 doktrace(fffffd80688d9b08,4,330,0,ffff80002a62c010) at doktrace+0x514 ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd80688d9b08,4,330,0,ffff80002a62c010) at doktrace+0x514 sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a62c010,ffff80002d9bbad0,ffff80002d9bba20) at sys_ktrace+0xd6 sys/kern/kern_ktrace.c:549 syscall(ffff80002d9bbad0) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2e3d0c79400, count: -5