kernel: protection fault trap, code=0 Stopped at fill_file+0xa26: movl 0x8(%rax),%eax ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic the kernel did not panic ddb> trace fill_file(ffff800000c76800,fffffd806777b978,fffffd806eff86c8,3,0,ffff8000217c2be8,e4ff9b7f1ef006f9,ff70,3) at fill_file+0xa26 sys/kern/kern_sysctl.c:1298 sysctl_file(ffff80002e914fd8,4,20000080,ffff80002e915008,ffff80002e909a50) at sysctl_file+0x62d sys/kern/kern_sysctl.c:1466 kern_sysctl(ffff80002e914fd4,5,20000080,ffff80002e915008,0,0,5e9d0e3203b28a80) at kern_sysctl+0x107 sys/kern/kern_sysctl.c:447 sys_sysctl(ffff80002e909a50,ffff80002e915078,ffff80002e9150d0) at sys_sysctl+0x209 sys/kern/kern_sysctl.c:248 syscall(ffff80002e915140) at syscall+0x447 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4abacf16a20, count: -6 ddb> show registers rdi 0xffff80002e909a54 rsi 0xffff80002e909a54 rbp 0xffff80002e914b60 rbx 0x11 rdx 0 rcx 0x1 rax 0x825733dafda48dbc r8 0 r9 0 r10 0xe56dae3a06feccc9 r11 0x22cac25e9ed4c0d7 r12 0xfffffd806eff86c8 r13 0x3 r14 0xffff8000217c2be8 r15 0xffff800000c76800 rip 0xffffffff81b97596 fill_file+0xa26 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002e914a40 ss 0x10 fill_file+0xa26: movl 0x8(%rax),%eax ddb> show proc PROC (syz-executor.3) pid=257388 stat=onproc flags process=0 proc=4000000 pri=32, usrpri=83, nice=20 forw=0xffffffffffffffff, list=0xffff800021703a40,0xffff80002e908fe0 process=0xffff8000217c37a0 user=0xffff80002e910000, vmspace=0xfffffd8069b15008 estcpu=33, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 65962 380750 93534 0 2 0 syz-executor.7 65962 468473 93534 0 2 0x4000000 syz-executor.7 74207 169996 28009 0 2 0 syz-executor.0 74207 327174 28009 0 2 0x4000000 syz-executor.0 66294 12975 38047 0 3 0x80 nanoslp syz-executor.5 66294 93234 38047 0 3 0x4000080 piperd syz-executor.5 66294 513113 38047 0 3 0x4000080 fsleep syz-executor.5 36019 101905 45393 0 3 0x80 nanoslp syz-executor.1 36019 501847 45393 0 3 0x4000080 fsleep syz-executor.1 36019 365175 45393 0 2 0x4000000 syz-executor.1 78243 163024 544 0 2 0 syz-executor.2 78243 456741 544 0 2 0x4000000 syz-executor.2 49075 94673 29349 0 2 0 syz-executor.4 49075 451660 29349 0 2 0x4000000 syz-executor.4 80686 446668 42637 0 3 0x80 nanoslp syz-executor.3 *80686 257388 42637 0 7 0x4000000 syz-executor.3 88350 214773 82214 0 2 0 syz-executor.6 88350 521060 82214 0 3 0x4000080 fsleep syz-executor.6 88350 341918 82214 0 3 0x4000080 fsleep syz-executor.6 82214 442763 60019 0 3 0x82 nanoslp syz-executor.6 544 390700 60019 0 3 0x82 nanoslp syz-executor.2 58306 295151 0 0 3 0x14280 nfsidl nfsio 78869 178179 0 0 3 0x14280 nfsidl nfsio 99649 25124 0 0 3 0x14280 nfsidl nfsio 92984 224615 0 0 3 0x14280 nfsidl nfsio 70337 215888 0 0 3 0x14280 nfsidl nfsio 64233 14776 0 0 3 0x14280 nfsidl nfsio 30037 384221 0 0 3 0x14280 nfsidl nfsio 17833 111900 0 0 3 0x14280 nfsidl nfsio 64359 50968 0 0 3 0x14280 nfsidl nfsio 78072 407449 0 0 3 0x14280 nfsidl nfsio 7120 505232 0 0 3 0x14280 nfsidl nfsio 64152 148501 0 0 3 0x14280 nfsidl nfsio 44235 412867 0 0 3 0x14280 nfsidl nfsio 43429 41847 0 0 3 0x14280 nfsidl nfsio 7734 45994 0 0 3 0x14280 nfsidl nfsio 26673 140883 0 0 3 0x14280 nfsidl nfsio 59607 358014 0 0 3 0x14280 nfsidl nfsio 46245 315818 0 0 3 0x14280 nfsidl nfsio 57765 118036 0 0 3 0x14280 nfsidl nfsio 2761 486637 0 0 3 0x14280 nfsidl nfsio 70726 99140 0 0 3 0x14200 bored sosplice 50208 102140 0 0 3 0x14200 acct acct 38047 375592 60019 0 3 0x82 nanoslp syz-executor.5 29349 240828 60019 0 3 0x82 nanoslp syz-executor.4 93534 9523 60019 0 3 0x82 nanoslp syz-executor.7 45393 39234 60019 0 3 0x82 nanoslp syz-executor.1 42637 325677 60019 0 3 0x82 nanoslp syz-executor.3 28009 357419 60019 0 3 0x82 nanoslp syz-executor.0 60019 365002 32492 0 3 0x82 thrsleep syz-fuzzer 60019 307391 32492 0 3 0x4000082 nanoslp syz-fuzzer 60019 488114 32492 0 3 0x4000082 kqread syz-fuzzer 60019 53846 32492 0 3 0x4000082 wait syz-fuzzer 60019 65114 32492 0 3 0x4000082 wait syz-fuzzer 60019 75387 32492 0 3 0x4000082 thrsleep syz-fuzzer 60019 345138 32492 0 3 0x4000082 wait syz-fuzzer 60019 97600 32492 0 3 0x4000082 wait syz-fuzzer 60019 509883 32492 0 3 0x4000082 thrsleep syz-fuzzer 60019 183379 32492 0 3 0x4000082 wait syz-fuzzer 60019 237880 32492 0 3 0x4000082 wait syz-fuzzer 60019 479006 32492 0 3 0x4000082 thrsleep syz-fuzzer 60019 7789 32492 0 3 0x4000082 wait syz-fuzzer 60019 120946 32492 0 3 0x4000082 wait syz-fuzzer 32492 362355 40604 0 3 0x10008a sigsusp ksh 40604 40909 70567 0 2 0x1a sshd 86559 305476 1 0 3 0x100083 ttyin getty 70567 63142 1 0 3 0x88 kqread sshd 28973 222727 90142 73 3 0x1100090 kqread syslogd 90142 445371 1 0 3 0x100082 netio syslogd 25116 133164 1 0 3 0x100080 kqread resolvd 49415 5549 70598 77 3 0x100092 kqread dhcpleased 29143 70927 70598 77 3 0x100092 kqread dhcpleased 70598 347878 1 0 3 0x80 kqread dhcpleased 52963 510052 0 0 3 0x14200 bored smr 2705 60194 0 0 2 0x14200 zerothread 44018 6493 0 0 3 0x14200 aiodoned aiodoned 70042 126764 0 0 3 0x14200 syncer update 47529 383021 0 0 3 0x14200 cleaner cleaner 89367 365737 0 0 3 0x14200 reaper reaper 73361 260286 0 0 3 0x14200 pgdaemon pagedaemon 69806 346930 0 0 3 0x14200 bored viomb 84784 480112 0 0 3 0x40014200 acpi0 acpi0 33633 275157 0 0 3 0x14200 bored softnet 34722 449394 0 0 3 0x14200 bored softnet 20526 258732 0 0 3 0x14200 bored softnet 70521 376279 0 0 3 0x14200 bored softnet 84466 200012 0 0 3 0x14200 bored systqmp 14330 92357 0 0 3 0x14200 bored systq 89322 318484 0 0 3 0x40014200 bored softclock 35607 242077 0 0 3 0x40014200 idle0 1 20793 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10174 6406K 6658K 78643K 12119 0 pcb 13 10K 11K 78643K 168 0 rtable 169 15K 16K 78643K 624 0 ifaddr 76 17K 18K 78643K 300 0 sysctl 2 0K 0K 78643K 2 0 counters 23 16K 17K 78643K 74 0 ioctlops 0 0K 4K 78643K 278 0 iov 0 0K 16K 78643K 76 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1326 83K 83K 78643K 1640 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 11 0 VM map 2 0K 0K 78643K 2 0 sem 12 1K 1K 78643K 124 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 18 65K 77K 78643K 1098 0 sigio 0 0K 0K 78643K 20 0 proc 58 59K 75K 78643K 594 0 subproc 104 6K 6K 78643K 143 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 30 0 in_multi 55 3K 6K 78643K 165 0 ether_multi 1 0K 0K 78643K 1 0 mrt 0 0K 0K 78643K 6 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 67 307K 307K 78643K 67 0 exec 0 0K 1K 78643K 506 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 279 132K 137K 78643K 8284 0 UVM aobj 18 2K 2K 78643K 18 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 20 0 NDP 9 0K 2K 78643K 69 0 temp 117 4730K 4796K 78643K 8465 0 kqueue 12 18K 24K 78643K 99 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 89 0 84 1 0 1 1 0 8 0 rtentry 112 168 0 100 4 0 4 4 0 8 0 unpcb 144 1322 0 1305 14 8 6 6 0 8 5 syncache 296 5 0 5 2 2 0 1 0 8 0 tcpqe 32 48 0 48 3 3 0 1 0 8 0 tcpcb 768 505 0 501 19 11 8 8 0 8 7 arp 88 24 0 14 1 0 1 1 0 8 0 ipq 40 8 0 8 2 2 0 1 0 8 0 ipqe 40 56 0 56 2 2 0 1 0 8 0 inpcb 336 1230 0 1221 25 18 7 12 0 8 6 nd6 48 34 0 22 1 0 1 1 0 8 0 pkpcb 40 3 0 3 2 2 0 1 0 8 0 kcovpl 48 11 0 3 1 0 1 1 0 8 0 ppxss 1160 29 0 29 4 3 1 1 0 8 1 pppxif 1608 9 0 9 2 2 0 1 0 8 0 pfrktable 1344 29 0 26 3 2 1 1 0 8 0 pfanchor 1280 264 0 71 18 1 17 17 0 8 0 pftag 88 3 0 2 1 0 1 1 0 8 0 pfrule 1360 27 0 22 3 2 1 1 0 8 0 rttmr 136 3 0 3 2 2 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 738 0 452 29 8 21 29 0 8 1 art_table 32 739 0 452 4 0 4 4 0 8 0 art_node 16 167 0 106 1 0 1 1 0 8 0 sysvmsgpl 40 39 0 8 1 0 1 1 0 8 0 semapl 112 122 0 112 1 0 1 1 0 8 0 shmpl 112 15 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 2847 0 1421 90 0 90 90 0 8 0 ffsino 240 2847 0 1421 85 0 85 85 0 8 0 nchpl 144 4421 0 2785 63 0 63 63 0 8 0 uvmvnodes 80 3169 0 0 65 0 65 65 0 8 0 vnodes 216 3169 0 0 177 0 177 177 0 8 0 namei 1024 15901 0 15901 4 3 1 2 0 8 1 vcpupl 2048 4 0 0 1 0 1 1 0 8 0 vmpool 536 4 0 0 1 0 1 1 0 8 0 pfiaddrpl 120 10 0 8 2 1 1 1 0 8 0 kstatmem 264 92 0 74 2 0 2 2 0 8 0 scsiplug 72 6 0 6 1 0 1 1 0 8 1 scxspl 216 21582 0 21582 9 8 1 8 0 8 1 plimitpl 152 254 0 239 1 0 1 1 0 8 0 sigapl 424 1404 0 1337 8 0 8 8 0 8 0 futexpl 64 11620 0 11616 4 3 1 1 0 8 0 knotepl 120 30652 0 30571 10 4 6 7 0 8 2 kqueuepl 184 301 0 293 4 0 4 4 0 8 3 pipepl 288 315 0 286 6 0 6 6 0 8 3 fdescpl 432 1366 0 1337 7 3 4 4 0 8 0 filepl 120 9531 0 9281 25 10 15 15 0 8 6 lockfpl 104 522 0 518 3 2 1 2 0 8 0 lockfspl 48 131 0 127 1 0 1 1 0 8 0 sessionpl 144 26 0 10 1 0 1 1 0 8 0 pgrppl 48 37 0 21 1 0 1 1 0 8 0 ucredpl 104 933 0 923 1 0 1 1 0 8 0 zombiepl 144 1337 0 1337 1 0 1 1 0 8 1 processpl 1000 1404 0 1337 11 2 9 9 0 8 0 procpl 672 3032 0 2941 11 2 9 9 0 8 1 sosppl 168 12 0 12 2 1 1 1 0 8 1 sockpl 456 2646 0 2613 82 71 11 24 0 8 6 mcl64k 65536 18 0 18 3 3 0 1 0 8 0 mcl16k 16384 15 0 15 2 1 1 1 0 8 1 mcl12k 12288 35 0 35 4 3 1 1 0 8 1 mcl9k 9216 23 0 23 6 6 0 1 0 8 0 mcl8k 8192 143 0 143 5 4 1 1 0 8 1 mcl4k 4096 162 0 162 4 3 1 1 0 8 1 mcl2k2 2112 7 0 7 3 2 1 1 0 8 1 mcl2k 2048 78453 0 78390 14 5 9 12 0 8 0 mtagpl 96 146 0 99 4 2 2 3 0 8 0 mbufpl 256 134742 0 134470 69 47 22 65 0 8 1 bufpl 288 6266 0 136 438 0 438 438 0 8 0 anonpl 24 299148 0 281989 188 29 159 172 0 188 51 amapchunkpl 152 25233 0 24514 73 25 48 57 0 158 20 amappl16 200 2526 0 1972 47 12 35 39 0 8 5 amappl15 192 4 0 3 1 0 1 1 0 8 0 amappl14 184 160 0 147 2 1 1 2 0 8 0 amappl12 168 428 0 424 1 0 1 1 0 8 0 amappl11 160 40 0 30 1 0 1 1 0 8 0 amappl10 152 27 0 17 1 0 1 1 0 8 0 amappl9 144 956 0 954 1 0 1 1 0 8 0 amappl8 136 141 0 91 2 0 2 2 0 8 0 amappl7 128 40 0 27 1 0 1 1 0 8 0 amappl6 120 273 0 261 2 1 1 2 0 8 0 amappl5 112 89 0 79 1 0 1 1 0 8 0 amappl4 104 479 0 456 1 0 1 1 0 8 0 amappl3 96 3372 0 3313 2 0 2 2 0 8 0 amappl2 88 1755 0 1685 3 1 2 3 0 8 0 amappl1 80 32682 0 31928 23 7 16 21 0 8 0 amappl 88 7903 0 7713 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 17 0 0 1 0 1 1 0 8 0 uaddrrnd 24 1370 0 1337 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1370 0 1337 1 0 1 1 0 8 0 vmmpekpl 168 14700 0 14645 3 0 3 3 0 8 0 vmmpepl 168 129499 0 126726 154 27 127 129 0 357 6 vmsppl 272 1369 0 1337 5 2 3 3 0 8 0 rwobjpl 24 37653 0 32782 30 0 30 30 0 8 0 pdppl 4096 2746 0 2678 174 106 68 70 0 8 0 pvpl 32 667181 0 644204 348 72 276 305 0 265 84 pmappl 216 1369 0 1337 2 0 2 2 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 964 0 204 22 0 22 22 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace fill_file(ffff800000c76800,fffffd806777b978,fffffd806eff86c8,3,0,ffff8000217c2be8,e4ff9b7f1ef006f9,ff70,3) at fill_file+0xa26 sys/kern/kern_sysctl.c:1298 sysctl_file(ffff80002e914fd8,4,20000080,ffff80002e915008,ffff80002e909a50) at sysctl_file+0x62d sys/kern/kern_sysctl.c:1466 kern_sysctl(ffff80002e914fd4,5,20000080,ffff80002e915008,0,0,5e9d0e3203b28a80) at kern_sysctl+0x107 sys/kern/kern_sysctl.c:447 sys_sysctl(ffff80002e909a50,ffff80002e915078,ffff80002e9150d0) at sys_sysctl+0x209 sys/kern/kern_sysctl.c:248 syscall(ffff80002e915140) at syscall+0x447 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4abacf16a20, count: -6 ddb> machine ddbcpu 1 No such command ddb> trace fill_file(ffff800000c76800,fffffd806777b978,fffffd806eff86c8,3,0,ffff8000217c2be8,e4ff9b7f1ef006f9,ff70,3) at fill_file+0xa26 sys/kern/kern_sysctl.c:1298 sysctl_file(ffff80002e914fd8,4,20000080,ffff80002e915008,ffff80002e909a50) at sysctl_file+0x62d sys/kern/kern_sysctl.c:1466 kern_sysctl(ffff80002e914fd4,5,20000080,ffff80002e915008,0,0,5e9d0e3203b28a80) at kern_sysctl+0x107 sys/kern/kern_sysctl.c:447 sys_sysctl(ffff80002e909a50,ffff80002e915078,ffff80002e9150d0) at sys_sysctl+0x209 sys/kern/kern_sysctl.c:248 syscall(ffff80002e915140) at syscall+0x447 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4abacf16a20, count: -6