Warning: Permanently added '10.128.0.86' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program login: uvm_fault(0xffffffff82336280, 0xffff800000920000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic kernel page fault uvm_fault(0xffffffff82336280, 0xffff800000920000, 0, 1) -> e memcpy(fffffd807ebf1070,ffff80000091ff0d,1,fffffd807ebf1070,199b36c109bf68cd,ffff800020bc0b78) at memcpy+0x15 end trace frame: 0xffff800020bc0a80, count: 0 ddb{1}> trace memcpy(fffffd807ebf1070,ffff80000091ff0d,1,fffffd807ebf1070,199b36c109bf68cd,ffff800020bc0b78) at memcpy+0x15 rtrequest(1,ffff800020bc0b78,38,ffff800020bc0ac0,1) at rtrequest+0x83c rtm_output(ffff80000091ff00,ffff800020bc0b70,ffff800020bc0b78,38,1) at rtm_output+0x760 route_output(fffffd806f2ad400,fffffd806e9c3d88,0,0) at route_output+0x79b route_usrreq(fffffd806e9c3d88,9,fffffd806f2ad400,0,0,ffff800020b76970) at route_usrreq+0x35d sosend(fffffd806e9c3d88,0,ffff800020bc0e38,0,0,0) at sosend+0x6eb sendit(ffff800020b76970,3,ffff800020bc0ef8,0,ffff800020bc0fc0) at sendit+0x590 sys_sendto(ffff800020b76970,ffff800020bc0fd8,ffff800020bc0fc0) at sys_sendto+0x92 syscall(ffff800020bc1070) at syscall+0x5b8 Xsyscall(6,0,2f9,0,5e,0) at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffd37d0, count: -10 ddb{1}> show registers rdi 0xffff80000091fef0 rsi 0xffff80000091fffd rbp 0xffff800020bc0970 rbx 0xffff80000091ff0d rdx 0x100 rcx 0x2 rax 0xfffffffffffffef3 r8 0 r9 0x5 r10 0xd33723fbdbd27e34 r11 0xffff80000091fe00 r12 0xffff80000091fe00 r13 0x100 r14 0 r15 0xfffffd807ebf1070 rip 0xffffffff81668755 memcpy+0x15 cs 0x8 rflags 0x10202 __ALIGN_SIZE+0xf202 rsp 0xffff800020bc0908 ss 0x10 memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> show proc PROC (syz-executor3805) pid=70204 stat=onproc flags process=0 proc=0 pri=50, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff800020b772d0,0xffffffff8234cb00 process=0xffff800020b3a6a0 user=0xffff800020bbc000, vmspace=0xfffffd806e80e5a8 estcpu=36, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND *41114 70204 61171 0 7 0 syz-executor3805 61171 80878 24892 0 3 0x82 nanosleep syz-executor3805 24892 280297 46468 0 3 0x10008a pause ksh 46468 129658 27437 0 7 0x12 sshd 89829 346953 1 0 3 0x100083 ttyin getty 27437 433308 1 0 3 0x80 select sshd 2532 341308 35658 74 3 0x100092 bpf pflogd 35658 246119 1 0 3 0x80 netio pflogd 78304 313752 18362 73 2 0x100090 syslogd 18362 396437 1 0 3 0x100082 netio syslogd 47059 244627 1 77 3 0x100090 poll dhclient 25343 280720 1 0 3 0x80 poll dhclient 94556 270686 0 0 3 0x14200 pgzero zerothread 8523 480113 0 0 3 0x14200 aiodoned aiodoned 17742 12731 0 0 3 0x14200 syncer update 45887 198801 0 0 3 0x14200 cleaner cleaner 59701 232187 0 0 3 0x14200 reaper reaper 85014 356767 0 0 3 0x14200 pgdaemon pagedaemon 50344 145666 0 0 3 0x14200 bored crynlk 68146 187804 0 0 3 0x14200 bored crypto 55344 343456 0 0 3 0x40014200 acpi0 acpi0 94567 299646 0 0 3 0x40014200 idle1 39417 114075 0 0 3 0x14200 bored softnet 50402 172561 0 0 3 0x14200 bored systqmp 48898 11035 0 0 3 0x14200 bored systq 17519 64403 0 0 3 0x40014200 bored softclock 76464 141656 0 0 3 0x40014200 idle0 76361 231144 0 0 3 0x14200 bored smr 1 115882 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 41114 (syz-executor3805) thread 0xffff800020b76970 (70204) exclusive rwlock netlock r = 0 (0xffffffff82208928) locked @ /syzkaller/managers/multicore/kernel/sys/net/rtsock.c:883 #0 witness_lock+0x594 #1 rtm_output+0x6b0 #2 route_output+0x79b #3 route_usrreq+0x35d #4 sosend+0x6eb #5 sendit+0x590 #6 sys_sendto+0x92 #7 syscall+0x5b8 #8 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 1 (0xffffffff8234c580) locked @ /syzkaller/managers/multicore/kernel/sys/arch/amd64/amd64/trap.c:161 #0 witness_lock+0x594 #1 solock+0x7e #2 sosend+0x586 #3 sendit+0x590 #4 sys_sendto+0x92 #5 syscall+0x5b8 #6 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9450 6382K 6383K 78643K 10537 0 0 pcb 26 9K 9K 78643K 96 0 0 rtable 67 2K 2K 78643K 253 0 0 ifaddr 25 7K 7K 78643K 26 0 0 counters 39 33K 33K 78643K 39 0 0 ioctlops 0 0K 4K 78643K 1467 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1167 73K 73K 78643K 1172 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 1K 78643K 2 0 0 VM map 2 1K 1K 78643K 2 0 0 sem 2 0K 0K 78643K 2 0 0 dirhash 12 2K 2K 78643K 12 0 0 ACPI 1808 196K 290K 78643K 12628 0 0 file desc 1 0K 0K 78643K 1 0 0 proc 52 50K 58K 78643K 279 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 in_multi 11 0K 0K 78643K 11 0 0 ether_multi 1 0K 0K 78643K 1 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 18 79K 79K 78643K 18 0 0 exec 0 0K 1K 78643K 176 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 56 3K 3K 78643K 791 0 0 UVM aobj 2 2K 2K 78643K 2 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 NDP 4 0K 0K 78643K 4 0 0 temp 78 2369K 2424K 78643K 1992 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 2 0 0 1 0 1 1 0 8 0 inpcbpl 280 29 0 23 1 0 1 1 0 8 0 plimitpl 152 14 0 8 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtentry 112 62 0 39 1 0 1 1 0 8 0 syncache 264 5 0 5 2 1 1 1 0 8 1 tcpcb 544 8 0 5 1 0 1 1 0 8 0 pfosfp 40 846 0 423 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 8 0 2 1 0 1 1 0 8 0 pfstkey 112 8 0 2 1 0 1 1 0 8 0 pfstate 328 8 0 2 1 0 1 1 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 96 0 0 6 0 6 6 0 8 0 art_table 32 97 0 0 1 0 1 1 0 8 0 art_node 16 22 0 2 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 1390 0 17 45 0 45 45 0 8 0 ffsino 272 1390 0 17 92 0 92 92 0 8 0 nchpl 144 1563 0 32 57 0 57 57 0 8 0 uvmvnodes 72 1400 0 0 26 0 26 26 0 8 0 vnodes 200 1400 0 0 74 0 74 74 0 8 0 namei 1024 3525 0 3525 3 2 1 1 0 8 1 percpumem 16 30 0 0 1 0 1 1 0 8 0 scxspl 192 2430 0 2430 9 8 1 6 0 8 1 sigapl 432 241 0 228 2 0 2 2 0 8 0 knotepl 112 5 0 0 1 0 1 1 0 8 0 kqueuepl 104 1 0 0 1 0 1 1 0 8 0 pipepl 112 128 0 121 3 2 1 1 0 8 0 fdescpl 488 242 0 228 3 0 3 3 0 8 0 filepl 152 984 0 936 2 0 2 2 0 8 0 lockfpl 104 6 0 6 1 1 0 1 0 8 0 lockfspl 32 3 0 3 1 1 0 1 0 8 0 sessionpl 112 18 0 9 1 0 1 1 0 8 0 pgrppl 48 18 0 9 1 0 1 1 0 8 0 ucredpl 96 52 0 43 1 0 1 1 0 8 0 zombiepl 144 228 0 228 3 2 1 1 0 8 1 processpl 840 257 0 228 4 0 4 4 0 8 0 procpl 600 257 0 228 3 0 3 3 0 8 0 sockpl 384 112 0 93 2 0 2 2 0 8 0 mcl4k 4096 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 64 0 0 8 0 8 8 0 8 0 mtagpl 80 1 0 0 1 0 1 1 0 8 0 mbufpl 256 82 0 0 5 0 5 5 0 8 0 bufpl 256 2122 0 248 118 0 118 118 0 8 0 anonpl 16 18949 0 17761 9 3 6 7 0 125 1 amapchunkpl 152 585 0 547 2 0 2 2 0 158 0 amappl16 192 118 0 112 1 0 1 1 0 8 0 amappl15 184 1 0 0 1 0 1 1 0 8 0 amappl14 176 24 0 21 1 0 1 1 0 8 0 amappl13 168 16 0 13 1 0 1 1 0 8 0 amappl12 160 5 0 5 1 1 0 1 0 8 0 amappl11 152 206 0 193 1 0 1 1 0 8 0 amappl10 144 56 0 54 1 0 1 1 0 8 0 amappl9 136 221 0 219 1 0 1 1 0 8 0 amappl8 128 94 0 90 1 0 1 1 0 8 0 amappl7 120 21 0 19 1 0 1 1 0 8 0 amappl6 112 44 0 39 1 0 1 1 0 8 0 amappl5 104 173 0 159 1 0 1 1 0 8 0 amappl4 96 307 0 284 1 0 1 1 0 8 0 amappl3 88 111 0 106 1 0 1 1 0 8 0 amappl2 80 636 0 598 1 0 1 1 0 8 0 amappl1 72 13246 0 12833 16 6 10 16 0 8 0 amappl 72 459 0 437 1 0 1 1 0 75 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma64 64 259 0 259 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 17 0 17 1 1 0 1 0 8 0 aobjpl 64 1 0 0 1 0 1 1 0 8 0 uaddrrnd 24 242 0 228 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 242 0 228 1 0 1 1 0 8 0 vmmpekpl 168 5555 0 5534 3 1 2 2 0 8 1 vmmpepl 168 27232 0 26467 53 17 36 50 0 357 0 vmsppl 360 241 0 228 2 0 2 2 0 8 0 pdppl 4096 492 0 456 6 0 6 6 0 8 0 pvpl 32 79804 0 76787 38 9 29 29 0 265 4 pmappl 224 241 0 228 1 0 1 1 0 8 0 extentpl 40 39 0 25 1 0 1 1 0 8 0 phpool 112 248 0 5 7 0 7 7 0 8 0 ddb{1}>