syzbot


uvm_fault: db_read_bytes

Status: upstream: reported on 2024/02/20 12:48
Reported-by: syzbot+623eeb194558cd7e5e96@syzkaller.appspotmail.com
First crash: 95d, last: 14h31m

Sample crash report:
kernel: page fault trap, code=10
Stopped at      acpi_pdirpa+0x288ea:    uvm_fault(0xfffffd805a584580, 0x3ca79, 0, 1) -> e
kernel: page fault trap, code=0
Stopped at      db_read_bytes+0xd0:     movzbl  0xffffffffffffffff(%r15),%eax
    TID    PID    UID     PRFLAGS     PFLAGS  CPU  COMMAND
*162727  13760      0   0x8000000  0x4000000    0  syz-executor.3
db_read_bytes(3ca79,1,ffff800037660ae4) at db_read_bytes+0xd0 sys/arch/amd64/amd64/db_memrw.c:85
db_get_value(3ca79,1,0) at db_get_value+0x50 sys/ddb/db_access.c:61
db_disasm(3ca79,0) at db_disasm+0x82
db_trap(6,10) at db_trap+0x115 sys/ddb/db_trap.c:71
db_ktrap(6,10,ffff800037660d80) at db_ktrap+0x1ab sys/arch/amd64/amd64/db_interface.c:151
kerntrap(ffff800037660d80) at kerntrap+0x130 sys/arch/amd64/amd64/trap.c:323
alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b
acpi_pdirpa() at acpi_pdirpa+0x288ea
rt_match(fffffd80666684f8,0,1,0) at rt_match+0xc3 rt_clone sys/net/route.c:383 [inline]
rt_match(fffffd80666684f8,0,1,0) at rt_match+0xc3 sys/net/route.c:358
route_mpath(fffffd80666684e0,fffffd8063b01224,0,0) at route_mpath+0x8b sys/net/route.c:255
in_pcbselsrc(ffff800037661138,fffffd8063b01220,fffffd8066668468) at in_pcbselsrc+0x1b7 sys/netinet/in_pcb.c:975
in_pcbconnect(fffffd8066668468,fffffd8063b01200) at in_pcbconnect+0xe8 sys/netinet/in_pcb.c:523
tcp_connect(fffffd80584e7a00,fffffd8063b01200) at tcp_connect+0x29b sys/netinet/tcp_usrreq.c:654
sys_connect(ffff80002a6caa68,ffff800037661360,ffff8000376612b0) at sys_connect+0x238 sys/kern/uipc_syscalls.c:422
end trace frame: 0xffff800037661350, count: 0
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports.  Insufficient info makes it difficult to find and fix bugs.
ddb> 
ddb> set $lines = 0
ddb> set $maxwidth = 0
ddb> show panic
*cpu0: uvm_fault(0xfffffd805a584580, 0x3ca79, 0, 1) -> e
ddb> trace
db_read_bytes(3ca79,1,ffff800037660ae4) at db_read_bytes+0xd0 sys/arch/amd64/amd64/db_memrw.c:85
db_get_value(3ca79,1,0) at db_get_value+0x50 sys/ddb/db_access.c:61
db_disasm(3ca79,0) at db_disasm+0x82
db_trap(6,10) at db_trap+0x115 sys/ddb/db_trap.c:71
db_ktrap(6,10,ffff800037660d80) at db_ktrap+0x1ab sys/arch/amd64/amd64/db_interface.c:151
kerntrap(ffff800037660d80) at kerntrap+0x130 sys/arch/amd64/amd64/trap.c:323
alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b
acpi_pdirpa() at acpi_pdirpa+0x288ea
rt_match(fffffd80666684f8,0,1,0) at rt_match+0xc3 rt_clone sys/net/route.c:383 [inline]
rt_match(fffffd80666684f8,0,1,0) at rt_match+0xc3 sys/net/route.c:358
route_mpath(fffffd80666684e0,fffffd8063b01224,0,0) at route_mpath+0x8b sys/net/route.c:255
in_pcbselsrc(ffff800037661138,fffffd8063b01220,fffffd8066668468) at in_pcbselsrc+0x1b7 sys/netinet/in_pcb.c:975
in_pcbconnect(fffffd8066668468,fffffd8063b01200) at in_pcbconnect+0xe8 sys/netinet/in_pcb.c:523
tcp_connect(fffffd80584e7a00,fffffd8063b01200) at tcp_connect+0x29b sys/netinet/tcp_usrreq.c:654
sys_connect(ffff80002a6caa68,ffff800037661360,ffff8000376612b0) at sys_connect+0x238 sys/kern/uipc_syscalls.c:422
syscall(ffff800037661360) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x5ac748d7520, count: -16
ddb> show registers
rdi                                0
rsi                              0x1
rbp               0xffff800037660ad0
rbx                              0x1
rdx               0xffff800000de6ec0
rcx                             0x28
rax               0xffff80002a6caa68
r8                0xffff800037660c00
r9                0x8080808080808080
r10               0xa190065b642be5f7
r11               0x77f0119d7e928f3e
r12                              0x1
r13                              0x1
r14               0xffff800037660ae5
r15                          0x3ca7a    acpi_pdirpa+0x288eb
rip               0xffffffff8219fd40    db_read_bytes+0xd0
cs                               0x8
rflags                       0x10282    __ALIGN_SIZE+0xf282
rsp               0xffff800037660a70
ss                              0x10
db_read_bytes+0xd0:     movzbl  0xffffffffffffffff(%r15),%eax
ddb> show proc
PROC (syz-executor.3) tid=162727 pid=13760 tcnt=2 stat=onproc
    flags process=8000000 proc=4000000<THREAD>
    runpri=32, usrpri=84, slppri=32, nice=20
    wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
    forw=0xffffffffffffffff, list=0xffff80002a6caf88,0xffff80002a6082b8
    process=0xffff800033dc1968 user=0xffff80003765c000, vmspace=0xfffffd805a584580
    estcpu=34, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0
ddb> ps
   PID     TID   PPID    UID  S       FLAGS  WAIT          COMMAND
 77102  440377  74401      0  2   0x8000000                syz-executor.5
 77102  518766  74401      0  3   0xc000080  fsleep        syz-executor.5
 55924  484029  69998      0  2   0x8000000                syz-executor.2
 55924  137807  69998      0  3   0xc000080  fsleep        syz-executor.2
 13760  263929  23988      0  2   0x8000000                syz-executor.3
*13760  162727  23988      0  7   0xc000000                syz-executor.3
 61498   68741  66037      0  2   0x8000000                syz-executor.4
 61498  431169  66037      0  3   0xc000080  fsleep        syz-executor.4
 18084  394854   1950      0  3   0x8000082  nanoslp       syz-executor.6
 96594  446705   1950      0  2   0x8000002                syz-executor.0
 18077  105798   1950      0  3   0x8000082  nanoslp       syz-executor.7
 56264  152823  41306      0  3  0x18100082  netio         arp
 41306  171756  82498      0  3   0x810008a  sigsusp       sh
 82498   84612   1950      0  3   0x8000082  wait          syz-executor.1
 69998  374423   1950      0  3   0x8000082  nanoslp       syz-executor.2
 74401  418704   1950      0  3   0x8000082  nanoslp       syz-executor.5
 66037  310534   1950      0  3   0x8000082  nanoslp       syz-executor.4
 23988  424603   1950      0  3   0x8000082  nanoslp       syz-executor.3
 35863  482682      1      0  3  0x18100083  ttyin         getty
 82925  261732      0      0  3     0x14200  acct          acct
  6084  493580      0      0  3     0x14280  nfsidl        nfsio
  5142  222681      0      0  3     0x14280  nfsidl        nfsio
 71783  509081      0      0  3     0x14280  nfsidl        nfsio
 75612  189058      0      0  3     0x14280  nfsidl        nfsio
  9305  241716      0      0  3     0x14280  nfsidl        nfsio
 83669   19469      0      0  3     0x14280  nfsidl        nfsio
  6107   19582      0      0  3     0x14280  nfsidl        nfsio
 38782  330532      0      0  3     0x14280  nfsidl        nfsio
 17277  504723      0      0  3     0x14280  nfsidl        nfsio
 55785  218397      0      0  3     0x14280  nfsidl        nfsio
 79802  344361      0      0  3     0x14280  nfsidl        nfsio
 69389  377255      0      0  3     0x14280  nfsidl        nfsio
 43634  385065      0      0  3     0x14280  nfsidl        nfsio
 99955   69363      0      0  3     0x14280  nfsidl        nfsio
 29696  416645      0      0  3     0x14280  nfsidl        nfsio
 98762   78584      0      0  3     0x14280  nfsidl        nfsio
 65418   78575      0      0  3     0x14280  nfsidl        nfsio
 69029  412344      0      0  3     0x14280  nfsidl        nfsio
 78488  184690      0      0  3     0x14280  nfsidl        nfsio
 73911  188415      0      0  3     0x14280  nfsidl        nfsio
 29916   14774      0      0  3     0x14200  bored         sosplice
  1950  219566  86031      0  3  0x1a000082  wait          syz-fuzzer
  1950    7628  86031      0  3  0x1e000082  thrsleep      syz-fuzzer
  1950  396941  86031      0  3  0x1e000082  kqread        syz-fuzzer
  1950  495138  86031      0  3  0x1e000082  thrsleep      syz-fuzzer
  1950   92461  86031      0  3  0x1e000082  wait          syz-fuzzer
  1950  514939  86031      0  3  0x1e000082  wait          syz-fuzzer
  1950  229728  86031      0  3  0x1e000082  thrsleep      syz-fuzzer
  1950  150267  86031      0  3  0x1e000082  thrsleep      syz-fuzzer
  1950   50642  86031      0  3  0x1e000082  wait          syz-fuzzer
  1950  341326  86031      0  3  0x1e000082  wait          syz-fuzzer
  1950  206636  86031      0  3  0x1e000082  thrsleep      syz-fuzzer
  1950  220324  86031      0  3  0x1e000082  wait          syz-fuzzer
  1950  478280  86031      0  3  0x1e000082  wait          syz-fuzzer
  1950  191888  86031      0  3  0x1e000082  wait          syz-fuzzer
  1950   94903  86031      0  3  0x1e000082  thrsleep      syz-fuzzer
 86031   63166  26025      0  3   0x810008a  sigsusp       ksh
 26025  254153  79731      0  3  0x1800009a  kqread        sshd
 79731  441842      1      0  3  0x18000088  kqread        sshd
 17390  454209  34413     73  3  0x19100090  kqread        syslogd
 34413  423295      1      0  3  0x18100082  sbwait        syslogd
 23620  372416      1      0  3  0x18100080  kqread        resolvd
 90083  303321  11660     77  3  0x18100092  kqread        dhcpleased
 36241   12513  11660     77  3  0x18100092  kqread        dhcpleased
 11660  291642      1      0  3  0x18000080  kqread        dhcpleased
 22132   43069      0      0  3     0x14200  bored         smr
 49434  229233      0      0  2     0x14200                zerothread
 47293   31652      0      0  3     0x14200  aiodoned      aiodoned
 82036  297407      0      0  3     0x14200  syncer        update
 24481  357638      0      0  3     0x14200  cleaner       cleaner
 12968  519596      0      0  3     0x14200  reaper        reaper
 91069    4602      0      0  3     0x14200  pgdaemon      pagedaemon
  7868   12036      0      0  3     0x14200  bored         viomb
 71419  431252      0      0  3  0x40014200  acpi0         acpi0
 32149  444641      0      0  3     0x14200  bored         softnet3
  1432  198822      0      0  3     0x14200  bored         softnet2
 44493  397591      0      0  3     0x14200  bored         softnet1
 87789  262640      0      0  3     0x14200  bored         softnet0
 96894  517572      0      0  3     0x14200  bored         systqmp
 92004  338676      0      0  3     0x14200  bored         systq
 74273   98912      0      0  2  0x40014200                softclock
  4651   14150      0      0  3  0x40014200                idle0
     1  311068      0      0  3   0x8080082  wait          init
     0       0     -1      0  3     0x10200  scheduler     swapper
ddb> show all locks
No such command
ddb> show malloc
           Type InUse  MemUse  HighUse   Limit  Requests Type Lim
         devbuf 10206   6684K   10855K 166960K     17881        0
            pcb    17     17K      18K 166960K       529        0
         rtable   199      8K      10K 166960K      3738        0
             pf    38     10K      11K 166960K       316        0
         ifaddr    42     12K      13K 166960K       504        0
        ifgroup    67      2K       2K 166960K       587        0
         sysctl     4      1K       2K 166960K         7        0
       counters    34     18K      18K 166960K       167        0
       ioctlops     0      0K       2K 166960K       362        0
            iov     0      0K      24K 166960K       197        0
          mount     1      1K       1K 166960K         1        0
            log     0      0K       0K 166960K         4        0
         vnodes  1430     90K      91K 166960K      5777        0
      UFS quota     1     32K      32K 166960K         1        0
      UFS mount     5     36K      36K 166960K         5        0
            shm     2      1K       9K 166960K        58        0
         VM map     2      1K       1K 166960K         2        0
            sem    12      0K       0K 166960K       431        0
        dirhash    12      2K       3K 166960K       138        0
           ACPI  1697    195K     286K 166960K     12548        0
      file desc    17     61K      93K 166960K      4374        0
          sigio     0      0K       0K 166960K        50        0
           proc    58     59K     116K 166960K      3604        0
        subproc   104      6K       7K 166960K      1485        0
    NFS srvsock     1      0K       0K 166960K         1        0
     NFS daemon     1     16K      16K 166960K         1        0
    ip_moptions     0      0K       0K 166960K       611        0
       in_multi    69      5K       7K 166960K      1356        0
    ether_multi     1      0K       0K 166960K        46        0
            mrt     1      0K       0K 166960K        15        0
    ISOFS mount     1     32K      32K 166960K         1        0
  MSDOSFS mount     1     16K      16K 166960K         1        0
           ttys   103    466K     466K 166960K       103        0
           exec     0      0K       1K 166960K      2030        0
     pfkey data     0      0K       0K 166960K         7        0
            tdb     3      0K       0K 166960K         3        0
        VM swap     8     62K      64K 166960K        10        0
       UVM amap   314    160K     176K 166960K     35149        0
       UVM aobj    41      2K       2K 166960K        46        0
     pinsyscall    38     76K     100K 166960K      8246        0
        memdesc     1      4K       4K 166960K         1        0
    crypto data     1      1K       1K 166960K         1        0
    ip6_options     0      0K       0K 166960K       158        0
            NDP    15      0K       2K 166960K       364        0
           temp    76   6804K    6932K 166960K    163432        0
         kqueue    12     18K      28K 166960K       369        0
      SYN cache     2     16K      16K 166960K         2        0
ddb> show all pools
Name      Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
rtpcb      120      624    0      620     2     0     2     2     0     8    1
rtentry    112     1312    0     1227     4     0     4     4     0     8    0
unpcb      144     2413    0     2399     3     0     3     3     0     8    2
syncache   336       18    0       18     1     0     1     1     0     8    1
sackhl      24        1    0        1     1     0     1     1     0     8    1
tcpqe       32       18    0       18     1     0     1     1     0     8    1
tcpcb      808     1303    0     1295     8     0     8     8     0     8    7
arp         88      242    0      225     1     0     1     1     0     8    0
ipq         40       10    0        9     1     0     1     1     0     8    0
ipqe        40       22    0       21     1     0     1     1     0     8    0
inpcb      352     4576    0     4562    18     9     9    14     0     8    7
nd6        104      348    0      327     1     0     1     1     0     8    0
pkpcb       40       90    0       90     1     0     1     1     0     8    1
kcovpl      48      114    0      106     1     0     1     1     0     8    0
ppxss      1072      14    0       14     1     0     1     1     0     8    1
art_heap8  4096       3    0        2     3     0     3     3     0     8    2
art_heap4  256     5221    0     4864    71    45    26    29     0     8    1
art_table   32     5224    0     4866     4     0     4     4     0     8    0
art_node    16     1304    0     1232     1     0     1     1     0     8    0
sysvmsgpl   40       22    0       15     1     0     1     1     0     8    0
semupl     112        4    0        4     1     0     1     1     0     8    1
semapl     112      425    0      415     1     0     1     1     0     8    0
shmpl      112       43    0        5     2     0     2     2     0     8    0
dirhash    1024     101    0       84     3     0     3     3     0     8    0
dino2pl    256     7121    0     5598    96     0    96    96     0     8    0
ffsino     240     7121    0     5598    91     0    91    91     0     8    0
nchpl      144    12822    0    12240    66    32    34    66     0     8    8
uvmvnodes   80     8342    0        0   171     0   171   171     0     8    0
vnodes     216     8342    0        0   464     0   464   464     0     8    0
namei      1024   52380    0    52379     3     0     3     3     0     8    2
vcpupl     3904      19    0        1     3     0     3     3     0     8    0
vmpool     664       35    0       17     2     0     2     2     0     8    0
kstatmem   264      296    0      266     3     0     3     3     0     8    0
scsiplug    72        6    0        6     1     0     1     1     0     8    1
scxspl     216    83697    0    83697     8     0     8     8     1     8    8
plimitpl   152      759    0      741     1     0     1     1     0     8    0
sigapl     424     4482    0     4415     9     0     9     9     0     8    0
futexpl     64    60439    0    60436     1     0     1     1     0     8    0
knotepl    120    12444    0    12360    24    12    12    18     0     8    8
kqueuepl   184      896    0      888     4     0     4     4     0     8    3
pipepl     288      925    0      897     3     0     3     3     0     8    0
fdescpl    432     4442    0     4414     5     0     5     5     0     8    1
filepl     120    28195    0    27942    13     0    13    13     0     8    4
lockfpl    104     1008    0     1005     1     0     1     1     0     8    0
lockfspl    48      397    0      394     1     0     1     1     0     8    0
sessionpl  144      128    0      112     1     0     1     1     0     8    0
pgrppl      48      274    0      258     1     0     1     1     0     8    0
ucredpl    104     4312    0     4301     1     0     1     1     0     8    0
zombiepl   144     4417    0     4415     1     0     1     1     0     8    0
processpl  1080    4482    0     4415     5     0     5     5     0     8    0
procpl     656     7886    0     7801     9     0     9     9     0     8    1
sosppl     168       12    0       12     1     0     1     1     0     8    1
sockpl     504     7727    0     7697    44    32    12    21     0     8    8
mcl64k     65536    164    0      164     1     0     1     1     0     8    1
mcl16k     16384     33    0       33     1     0     1     1     0     8    1
mcl12k     12288     28    0       28     1     0     1     1     0     8    1
mcl9k      9216       8    0        8     1     0     1     1     0     8    1
mcl8k      8192     107    0      107     1     0     1     1     0     8    1
mcl4k      4096      53    0       53     1     0     1     1     0     8    1
mcl2k2     2112       1    0        1     1     0     1     1     0     8    1
mcl2k      2048   28192    0    28091    35    14    21    34     0     8    8
mtagpl      96      107    0      101     1     0     1     1     0     8    0
mbufpl     256    72402    0    72211    29     9    20    24     0     8    3
bufpl      280    14396    0     6054   597     0   597   597     0     8    0
anonpl      24   672837    0   666620   145     0   145   145     0   188   85
amapchunkpl 152  113803    0   113130    49     0    49    49     0   158   21
amappl16   200    16193    0    16061   101    82    19    57     0     8    7
amappl15   192        8    0        8     1     0     1     1     0     8    1
amappl14   184      467    0      456     2     0     2     2     0     8    1
amappl13   176       46    0       46     1     0     1     1     0     8    1
amappl12   168     6581    0     6552     2     0     2     2     0     8    0
amappl11   160       67    0       56     1     0     1     1     0     8    0
amappl10   152      151    0      142     1     0     1     1     0     8    0
amappl9    144      183    0      183     1     0     1     1     0     8    1
amappl8    136      374    0      344     2     0     2     2     0     8    0
amappl7    128       66    0       50     1     0     1     1     0     8    0
amappl6    120     1668    0     1651     2     0     2     2     0     8    1
amappl5    112      575    0      563     1     0     1     1     0     8    0
amappl4    104     1318    0     1284     2     0     2     2     0     8    0
amappl3     96    21007    0    20923     3     0     3     3     0     8    0
amappl2     88     5113    0     5041     3     0     3     3     0     8    1
amappl1     80    29016    0    28497    22     2    20    22     0     8    7
amappl      88    33687    0    33484     6     0     6     6     0    92    0
dma4096    4096       1    0        1     1     0     1     1     0     8    1
dma1024    1024       1    0        0     1     0     1     1     0     8    0
dma256     256        6    0        6     1     0     1     1     0     8    1
dma128     128      253    0      253     1     0     1     1     0     8    1
dma64       64        6    0        6     1     0     1     1     0     8    1
dma32       32        7    0        7     1     0     1     1     0     8    1
dma16       16       18    0       17     1     0     1     1     0     8    0
aobjpl      72       45    0        5     1     0     1     1     0     8    0
uaddrrnd    24     4477    0     4431     1     0     1     1     0     8    0
uaddrbest   32        2    0        0     1     0     1     1     0     8    0
uaddr       24     4477    0     4431     1     0     1     1     0     8    0
vmmpekpl   168    35430    0    35374     4     0     4     4     0     8    0
vmmpepl    168   313807    0   311920   126     0   126   126     0   357   35
vmsppl     344     4476    0     4431     5     0     5     5     0     8    0
rwobjpl     24    84970    0    75456    58     0    58    58     0     8    0
pdppl      4096    8960    0     8880   421   337    84    93     0     8    4
pvpl        32  1863308    0  1850643   367    21   346   367     0   265  206
pmappl     216     4476    0     4431     3     0     3     3     0     8    0
extentpl    40       56    0       38     1     0     1     1     0     8    0
phpool     112      815    0      437    12     0    12    12     0     8    0
ddb> machine ddbcpu 0
No such command
ddb> trace
db_read_bytes(3ca79,1,ffff800037660ae4) at db_read_bytes+0xd0 sys/arch/amd64/amd64/db_memrw.c:85
db_get_value(3ca79,1,0) at db_get_value+0x50 sys/ddb/db_access.c:61
db_disasm(3ca79,0) at db_disasm+0x82
db_trap(6,10) at db_trap+0x115 sys/ddb/db_trap.c:71
db_ktrap(6,10,ffff800037660d80) at db_ktrap+0x1ab sys/arch/amd64/amd64/db_interface.c:151
kerntrap(ffff800037660d80) at kerntrap+0x130 sys/arch/amd64/amd64/trap.c:323
alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b
acpi_pdirpa() at acpi_pdirpa+0x288ea
rt_match(fffffd80666684f8,0,1,0) at rt_match+0xc3 rt_clone sys/net/route.c:383 [inline]
rt_match(fffffd80666684f8,0,1,0) at rt_match+0xc3 sys/net/route.c:358
route_mpath(fffffd80666684e0,fffffd8063b01224,0,0) at route_mpath+0x8b sys/net/route.c:255
in_pcbselsrc(ffff800037661138,fffffd8063b01220,fffffd8066668468) at in_pcbselsrc+0x1b7 sys/netinet/in_pcb.c:975
in_pcbconnect(fffffd8066668468,fffffd8063b01200) at in_pcbconnect+0xe8 sys/netinet/in_pcb.c:523
tcp_connect(fffffd80584e7a00,fffffd8063b01200) at tcp_connect+0x29b sys/netinet/tcp_usrreq.c:654
sys_connect(ffff80002a6caa68,ffff800037661360,ffff8000376612b0) at sys_connect+0x238 sys/kern/uipc_syscalls.c:422
syscall(ffff800037661360) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x5ac748d7520, count: -16
ddb> machine ddbcpu 1
No such command
ddb> trace
db_read_bytes(3ca79,1,ffff800037660ae4) at db_read_bytes+0xd0 sys/arch/amd64/amd64/db_memrw.c:85
db_get_value(3ca79,1,0) at db_get_value+0x50 sys/ddb/db_access.c:61
db_disasm(3ca79,0) at db_disasm+0x82
db_trap(6,10) at db_trap+0x115 sys/ddb/db_trap.c:71
db_ktrap(6,10,ffff800037660d80) at db_ktrap+0x1ab sys/arch/amd64/amd64/db_interface.c:151
kerntrap(ffff800037660d80) at kerntrap+0x130 sys/arch/amd64/amd64/trap.c:323
alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b
acpi_pdirpa() at acpi_pdirpa+0x288ea
rt_match(fffffd80666684f8,0,1,0) at rt_match+0xc3 rt_clone sys/net/route.c:383 [inline]
rt_match(fffffd80666684f8,0,1,0) at rt_match+0xc3 sys/net/route.c:358
route_mpath(fffffd80666684e0,fffffd8063b01224,0,0) at route_mpath+0x8b sys/net/route.c:255
in_pcbselsrc(ffff800037661138,fffffd8063b01220,fffffd8066668468) at in_pcbselsrc+0x1b7 sys/netinet/in_pcb.c:975
in_pcbconnect(fffffd8066668468,fffffd8063b01200) at in_pcbconnect+0xe8 sys/netinet/in_pcb.c:523
tcp_connect(fffffd80584e7a00,fffffd8063b01200) at tcp_connect+0x29b sys/netinet/tcp_usrreq.c:654
sys_connect(ffff80002a6caa68,ffff800037661360,ffff8000376612b0) at sys_connect+0x238 sys/kern/uipc_syscalls.c:422
syscall(ffff800037661360) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x5ac748d7520, count: -16

Crashes (30):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/05/25 00:36 openbsd 4aaef610e0a6 a10a183e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/20 02:45 openbsd 676865473293 c0f1611a .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/19 21:13 openbsd 63371a7f711d c0f1611a .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/18 17:49 openbsd 1b2581db680c c0f1611a .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/13 10:29 openbsd 30293cdc5e30 9026e142 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore uvm_fault: db_read_bytes
2024/05/11 11:49 openbsd 1b9599294b30 9026e142 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/10 10:15 openbsd 898e5d067977 375932ce .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore uvm_fault: db_read_bytes
2024/05/09 17:48 openbsd a7b9eedcb4c1 de979bc2 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/09 15:47 openbsd a7b9eedcb4c1 de979bc2 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/09 05:36 openbsd 1b9cf3a3fa61 20bf80e1 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/08 13:38 openbsd 8fad29a3d36d 9473be88 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/08 07:38 openbsd 7284c0c62173 4cf3f9b3 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/08 02:29 openbsd 7284c0c62173 4cf3f9b3 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/07 15:51 openbsd debf255c65d9 cb2dcc0e .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/06 07:36 openbsd 4580bd6ebd98 610f2a54 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/05 17:51 openbsd 5ec8126aae72 610f2a54 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/05/01 00:48 openbsd ab0363c32c56 3ba885bc .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/04/27 14:39 openbsd 22bab8566a4f 07b455f9 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore uvm_fault: db_read_bytes
2024/04/26 05:16 openbsd 8fa0fb927089 8bdc0f22 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/04/25 21:36 openbsd 8fa0fb927089 8bdc0f22 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/04/25 01:57 openbsd 799d9b3d961e a604cf37 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/04/24 01:03 openbsd e6c7c102cf5d 21339d7b .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/04/22 04:03 openbsd e1cb65bb8aa8 af24b050 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/04/22 03:34 openbsd e1cb65bb8aa8 af24b050 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore uvm_fault: db_read_bytes
2024/04/21 21:22 openbsd 8a9424f8c5c9 af24b050 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore uvm_fault: db_read_bytes
2024/04/21 11:02 openbsd 8a9424f8c5c9 af24b050 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/04/08 05:23 openbsd c112ccd4e935 ca620dd8 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/04/06 03:26 openbsd 3f7c134ffe9c ca620dd8 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/04/05 17:32 openbsd 2ee472d028ec ca620dd8 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-main uvm_fault: db_read_bytes
2024/02/20 12:47 openbsd d8131725ee7c 3af7dd65 .config console log report [disk image] [bsd.gdb] [kernel image] ci-openbsd-multicore uvm_fault: db_read_bytes
* Struck through repros no longer work on HEAD.