uvm_fault(0xfffffd806ba6b5d0, 0x200000003340, 0, 1) -> d
kernel: page fault trap, code=0
Stopped at _copyin+0x62: repe movsl (%rsi),%es:(%rdi)
TID PID UID PRFLAGS PFLAGS CPU COMMAND
*493006 97724 0 0 0x4000000 0 syz-executor
_copyin() at _copyin+0x62
icmp6_sysctl(ffff800035d494dc,1,0,ffff800035d49508,200000003340,4) at icmp6_sysctl+0x28f sys/netinet6/icmp6.c:1826
net_sysctl(ffff800035d494d4,3,0,ffff800035d49508,200000003340,4,12a83bdd4b0be007) at net_sysctl+0x64e sys/kern/uipc_domain.c:260
sys_sysctl(ffff80002a7f8a80,ffff800035d49630,ffff800035d49580) at sys_sysctl+0x3e5 sys/kern/kern_sysctl.c:-1
syscall(ffff800035d49630) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline]
syscall(ffff800035d49630) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xf0a670ff980, count: 9
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb>
ddb> set $lines = 0
ddb> set $maxwidth = 0
ddb> show panic
*cpu0: uvm_fault(0xfffffd806ba6b5d0, 0x200000003340, 0, 1) -> d
ddb> trace
_copyin() at _copyin+0x62
icmp6_sysctl(ffff800035d494dc,1,0,ffff800035d49508,200000003340,4) at icmp6_sysctl+0x28f sys/netinet6/icmp6.c:1826
net_sysctl(ffff800035d494d4,3,0,ffff800035d49508,200000003340,4,12a83bdd4b0be007) at net_sysctl+0x64e sys/kern/uipc_domain.c:260
sys_sysctl(ffff80002a7f8a80,ffff800035d49630,ffff800035d49580) at sys_sysctl+0x3e5 sys/kern/kern_sysctl.c:-1
syscall(ffff800035d49630) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline]
syscall(ffff800035d49630) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xf0a670ff980, count: -6
ddb> show registers
rdi 0xffff800035d49314
rsi 0x200000003340
rbp 0xffff800035d49380
rbx 0x200000003340
rdx 0x200000003344
rcx 0x1
rax 0x4
r8 0x7f7fffffc000
r9 0
r10 0xe0d369b36a4f939e
r11 0xffffffff817d7800 copy_fault
r12 0
r13 0
r14 0x4
r15 0
rip 0xffffffff817d77c2 _copyin+0x62
cs 0x8
rflags 0x50202 acpi_pdirpa+0x3c073
rsp 0xffff800035d492e0
ss 0x10
_copyin+0x62: repe movsl (%rsi),%es:(%rdi)
ddb> show proc
PROC (syz-executor) tid=493006 pid=97724 tcnt=3 stat=onproc
flags process=0 proc=4000000<THREAD>
runpri=32, usrpri=51, slppri=32, nice=20
wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
forw=0xffffffffffffffff, list=0xffff80002a7f8fb0,0xffff80002a7f87f8
process=0xffff80002cd316d8 user=0xffff800035d44000, vmspace=0xfffffd806ba6b5d0
estcpu=1, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0
ddb> ps
PID TID PPID UID S FLAGS WAIT COMMAND
92741 90858 72314 0 3 0x80 fsleep syz-executor
92741 483376 72314 0 2 0x4000000 syz-executor
53644 299588 20550 0 2 0 syz-executor
53644 160581 20550 0 3 0x4000080 fsleep syz-executor
28689 345075 44985 0 2 0 syz-executor
28689 450566 44985 0 3 0x4000080 fsleep syz-executor
28689 415483 44985 0 3 0x4000080 fsleep syz-executor
28689 410953 44985 0 3 0x4000080 fsleep syz-executor
97724 337688 12531 0 2 0 syz-executor
*97724 493006 12531 0 7 0x4000000 syz-executor
97724 442309 12531 0 3 0x4000080 fsleep syz-executor
66563 519895 22862 0 2 0 syz-executor
66563 131191 22862 0 3 0x4000080 fsleep syz-executor
1204 35907 85170 0 3 0x80 fsleep syz-executor
1204 30879 85170 0 3 0x4000080 fifor syz-executor
1204 440675 85170 0 3 0x4000080 fsleep syz-executor
11058 108412 32174 0 3 0x80 fsleep syz-executor
11058 276651 32174 0 2 0x4000000 syz-executor
26872 185839 0 0 3 0x14200 bored sosplice
32174 443532 24114 0 2 0xc82 syz-executor
12531 69148 24114 0 2 0xc82 syz-executor
22862 512580 24114 0 3 0x82 nanoslp syz-executor
79166 144786 24114 0 2 0x2 syz-executor
72314 207698 24114 0 3 0x82 nanoslp syz-executor
44985 267824 24114 0 2 0xc82 syz-executor
85170 462170 24114 0 2 0xc82 syz-executor
20550 219102 24114 0 2 0xc82 syz-executor
24114 82707 12547 0 3 0x82 kqread syz-executor
12547 165837 35593 0 3 0x10008a sigsusp ksh
35593 429788 46951 0 3 0x98 kqread sshd-session
46951 141349 8456 0 3 0x92 kqread sshd-session
95131 304036 1 0 3 0x100083 ttyin getty
8456 96904 1 0 3 0x88 kqread sshd
77321 420816 99252 73 3 0x1100090 kqread syslogd
99252 137620 1 0 3 0x100082 sbwait syslogd
99630 43363 1 0 3 0x100080 kqread resolvd
56282 322453 17420 77 3 0x100092 kqread dhcpleased
36317 30822 17420 77 3 0x100092 kqread dhcpleased
17420 106046 1 0 3 0x80 kqread dhcpleased
89489 391038 0 0 3 0x14200 bored smr
41921 361141 0 0 2 0x14200 zerothread
58475 435354 0 0 3 0x14200 aiodoned aiodoned
26727 16388 0 0 3 0x14200 syncer update
78329 426357 0 0 3 0x14200 cleaner cleaner
51097 253339 0 0 3 0x14200 reaper reaper
50744 294156 0 0 3 0x14200 pgdaemon pagedaemon
44042 381995 0 0 3 0x14200 bored viomb
8918 11190 0 0 3 0x40014200 acpi0 acpi0
26774 403677 0 0 3 0x14200 bored softnet7
92930 209521 0 0 3 0x14200 bored softnet6
21403 516075 0 0 3 0x14200 bored softnet5
8497 369551 0 0 3 0x14200 bored softnet4
48759 87102 0 0 3 0x14200 bored softnet3
1163 109181 0 0 3 0x14200 bored softnet2
36328 46742 0 0 3 0x14200 bored softnet1
60505 193424 0 0 3 0x14200 bored softnet0
25042 196548 0 0 3 0x14200 bored systqmp
34533 103940 0 0 3 0x14200 bored systq
98840 10582 0 0 2 0x40014200 softclock
23335 493779 0 0 3 0x40014200 idle0
1 4714 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb> show all locks
No such command
ddb> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10185 11123K 11308K 166960K 11340 0
pcb 17 12K 12K 166960K 32 0
rtable 211 6K 7K 166960K 271 0
pf 30 12K 13K 166960K 39 0
ifaddr 42 7K 7K 166960K 49 0
ifgroup 50 2K 2K 166960K 61 0
sysctl 3 1K 9K 166960K 7 0
counters 32 17K 18K 166960K 40 0
ioctlops 0 0K 2K 166960K 73 0
iov 0 0K 24K 166960K 9 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1340 84K 84K 166960K 1410 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 1K 5K 166960K 3 0
VM map 2 1K 1K 166960K 2 0
sem 2 0K 0K 166960K 2 0
dirhash 12 2K 2K 166960K 12 0
ACPI 1692 195K 286K 166960K 12470 0
file desc 17 61K 97K 166960K 210 0
proc 59 59K 124K 166960K 483 0
subproc 72 4K 4K 166960K 72 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 0 0K 0K 166960K 4 0
in_multi 99 7K 7K 166960K 100 0
ether_multi 1 0K 0K 166960K 1 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 43 201K 201K 166960K 43 0
exec 0 0K 1K 166960K 351 0
fusefs mount 1 32K 32K 166960K 1 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 223 143K 156K 166960K 3390 0
UVM aobj 3 2K 2K 166960K 4 0
pinsyscall 38 76K 96K 166960K 1232 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 0K 166960K 2 0
NDP 11 0K 2K 166960K 31 0
temp 37 8630K 8695K 166960K 4019 0
kqueue 13 20K 30K 166960K 44 0
SYN cache 2 16K 16K 166960K 2 0
ddb> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
rtpcb 120 40 0 37 1 0 1 1 0 8 0
rtentry 136 97 0 2 4 0 4 4 0 8 0
unpcb 144 116 0 95 2 0 2 2 0 8 1
syncache 336 3 0 3 1 0 1 1 0 8 1
tcpcb 736 23 0 18 1 0 1 1 0 8 0
arp 88 10 0 0 1 0 1 1 0 8 0
inpcb 328 105 0 96 2 0 2 2 0 8 1
nd6 104 17 0 0 1 0 1 1 0 8 0
kcovpl 48 8 0 0 1 0 1 1 0 8 0
mppekey 1024 1 0 1 1 0 1 1 0 8 1
ppxss 1072 7 0 7 1 0 1 1 0 8 1
pppxif 1384 1 0 1 1 0 1 1 0 8 1
art_heap8 4096 1 0 0 1 0 1 1 0 8 0
art_heap4 256 454 0 6 28 0 28 28 0 8 0
art_table 40 455 0 6 5 0 5 5 0 8 0
art_node 32 97 0 12 1 0 1 1 0 8 0
sysvmsgpl 40 1 0 1 1 0 1 1 0 8 1
shmpl 112 1 0 1 1 0 1 1 0 8 1
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino2pl 256 1696 0 192 95 0 95 95 0 8 0
ffsino 256 1696 0 192 95 0 95 95 0 8 0
nchpl 144 1970 0 290 63 0 63 63 0 8 0
rtmask 32 2 0 2 1 0 1 1 0 8 1
uvmvnodes 80 1799 0 0 37 0 37 37 0 8 0
vnodes 216 1799 0 0 100 0 100 100 0 8 0
namei 1024 5791 0 5789 2 0 2 2 0 8 1
kstatmem 264 30 0 8 2 0 2 2 0 8 0
scsiplug 72 3 0 3 1 0 1 1 0 8 1
scxspl 216 6825 0 6825 8 0 8 8 1 8 8
plimitpl 152 35 0 19 1 0 1 1 0 8 0
sigapl 424 492 0 442 7 0 7 7 0 8 1
knotepl 120 7083 0 7036 12 2 10 12 0 8 8
kqueuepl 184 58 0 48 1 0 1 1 0 8 0
pipepl 304 102 0 75 3 0 3 3 0 8 0
fdescpl 448 471 0 442 5 0 5 5 0 8 1
filepl 120 1700 0 1484 8 0 8 8 0 8 1
lockfpl 104 32 0 29 1 0 1 1 0 8 0
lockfspl 48 17 0 14 1 0 1 1 0 8 0
sessionpl 144 21 0 13 1 0 1 1 0 8 0
pgrppl 48 30 0 14 1 0 1 1 0 8 0
ucredpl 104 122 0 111 1 0 1 1 0 8 0
zombiepl 144 442 0 442 1 0 1 1 0 8 1
processpl 1168 492 0 442 5 0 5 5 0 8 1
procpl 664 601 0 540 6 0 6 6 0 8 0
sosppl 168 1 0 1 1 0 1 1 0 8 1
sockpl 552 263 0 230 5 0 5 5 0 8 2
mcl64k 65536 5 0 5 1 0 1 1 0 8 1
mcl8k 8192 5 0 5 1 0 1 1 0 8 1
mcl4k 4096 2520 0 2471 11 0 11 11 0 8 4
mcl2k 2048 253 0 252 1 0 1 1 0 8 0
mtagpl 96 4 0 4 1 0 1 1 0 8 1
mbufpl 256 4507 0 4362 11 0 11 11 0 8 0
bufpl 280 2906 0 117 200 0 200 200 0 8 0
anonpl 24 106075 0 103003 29 0 29 29 0 187 7
amapchunkpl 152 10530 0 10059 25 0 25 25 0 158 6
amappl16 200 1998 0 1975 5 0 5 5 0 8 3
amappl15 192 3 0 3 1 0 1 1 0 8 1
amappl14 184 106 0 96 1 0 1 1 0 8 0
amappl13 176 4 0 4 1 0 1 1 0 8 1
amappl12 168 1078 0 1049 3 0 3 3 0 8 1
amappl11 160 48 0 37 1 0 1 1 0 8 0
amappl10 152 8 0 8 1 0 1 1 0 8 1
amappl9 144 262 0 261 1 0 1 1 0 8 0
amappl8 136 18 0 16 1 0 1 1 0 8 0
amappl7 128 98 0 88 1 0 1 1 0 8 0
amappl6 120 170 0 167 1 0 1 1 0 8 0
amappl5 112 110 0 104 1 0 1 1 0 8 0
amappl4 104 260 0 245 1 0 1 1 0 8 0
amappl3 96 1648 0 1542 3 0 3 3 0 8 0
amappl2 88 612 0 558 2 0 2 2 0 8 0
amappl1 80 8061 0 7521 13 0 13 13 0 8 1
amappl 88 2748 0 2587 4 0 4 4 0 92 0
dma4096 4096 1 0 1 1 0 1 1 0 8 1
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 0 1 1 0 8 1
dma128 128 254 0 254 1 0 1 1 0 8 1
dma64 64 6 0 6 1 0 1 1 0 8 1
dma32 32 7 0 7 1 0 1 1 0 8 1
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 3 0 1 1 0 1 1 0 8 0
uaddrrnd 24 471 0 442 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 471 0 442 1 0 1 1 0 8 0
vmmpekpl 168 5193 0 5170 2 0 2 2 0 8 0
vmmpepl 168 36076 0 34265 82 0 82 82 0 357 3
vmsppl 368 470 0 442 4 0 4 4 0 8 1
rwobjpl 40 14448 0 11821 27 0 27 27 0 8 0
pdppl 4096 948 0 884 98 32 66 82 0 8 2
pvpl 32 235415 0 226685 80 0 80 80 0 265 9
pmappl 216 470 0 442 3 0 3 3 0 8 1
extentpl 40 45 0 27 1 0 1 1 0 8 0
phpool 112 367 0 32 11 0 11 11 0 8 0
ddb> machine ddbcpu 0
No such command
ddb> trace
_copyin() at _copyin+0x62
icmp6_sysctl(ffff800035d494dc,1,0,ffff800035d49508,200000003340,4) at icmp6_sysctl+0x28f sys/netinet6/icmp6.c:1826
net_sysctl(ffff800035d494d4,3,0,ffff800035d49508,200000003340,4,12a83bdd4b0be007) at net_sysctl+0x64e sys/kern/uipc_domain.c:260
sys_sysctl(ffff80002a7f8a80,ffff800035d49630,ffff800035d49580) at sys_sysctl+0x3e5 sys/kern/kern_sysctl.c:-1
syscall(ffff800035d49630) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline]
syscall(ffff800035d49630) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xf0a670ff980, count: -6
ddb> machine ddbcpu 1
No such command
ddb> trace
_copyin() at _copyin+0x62
icmp6_sysctl(ffff800035d494dc,1,0,ffff800035d49508,200000003340,4) at icmp6_sysctl+0x28f sys/netinet6/icmp6.c:1826
net_sysctl(ffff800035d494d4,3,0,ffff800035d49508,200000003340,4,12a83bdd4b0be007) at net_sysctl+0x64e sys/kern/uipc_domain.c:260
sys_sysctl(ffff80002a7f8a80,ffff800035d49630,ffff800035d49580) at sys_sysctl+0x3e5 sys/kern/kern_sysctl.c:-1
syscall(ffff800035d49630) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline]
syscall(ffff800035d49630) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0xf0a670ff980, count: -6