uvm_fault(0xffffffff835697c8, 0xffff80000124f010, 0, 1) -> e kernel: page fault trap, code=0 Stopped at arp_rtrequest+0x65e: movzwl 0xc(%r15,%rbx,1),%ecx TID PID UID PRFLAGS PFLAGS CPU COMMAND *199326 15539 0 0x8000000 0x4000000 0 syz-executor arp_rtrequest(ffff80000117e000,1,fffffd806c250630) at arp_rtrequest+0x65e arprequest sys/netinet/if_ether.c:281 [inline] arp_rtrequest(ffff80000117e000,1,fffffd806c250630) at arp_rtrequest+0x65e sys/netinet/if_ether.c:184 rtrequest(1,ffff800037640bb8,1,ffff800037640c88,0) at rtrequest+0xd2c sys/net/route.c:1103 rt_ifa_add(ffff800000a58800,240004,ffff800000a58858,0) at rt_ifa_add+0x38d sys/net/route.c:1273 rt_ifa_addlocal(ffff800000a58800) at rt_ifa_addlocal+0x1b1 sys/net/route.c:1381 in_ifinit(ffff80000117e000,ffff800000a58800,ffff800037640f30,0) at in_ifinit+0x26c sys/netinet/in.c:669 in_ioctl_set_ifaddr(8020690c,ffff800037640f20,ffff80000117e000) at in_ioctl_set_ifaddr+0x335 sys/netinet/in.c:386 ifioctl(fffffd806c522bf8,8020690c,ffff800037640f20,ffff80002a4d0530) at ifioctl+0x1519 pru_control sys/sys/protosw.h:355 [inline] ifioctl(fffffd806c522bf8,8020690c,ffff800037640f20,ffff80002a4d0530) at ifioctl+0x1519 sys/net/if.c:2449 sys_ioctl(ffff80002a4d0530,ffff800037641100,ffff800037641050) at sys_ioctl+0x678 syscall(ffff800037641100) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdfe998088f0, count: 5 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff835697c8, 0xffff80000124f010, 0, 1) -> e ddb> trace arp_rtrequest(ffff80000117e000,1,fffffd806c250630) at arp_rtrequest+0x65e arprequest sys/netinet/if_ether.c:281 [inline] arp_rtrequest(ffff80000117e000,1,fffffd806c250630) at arp_rtrequest+0x65e sys/netinet/if_ether.c:184 rtrequest(1,ffff800037640bb8,1,ffff800037640c88,0) at rtrequest+0xd2c sys/net/route.c:1103 rt_ifa_add(ffff800000a58800,240004,ffff800000a58858,0) at rt_ifa_add+0x38d sys/net/route.c:1273 rt_ifa_addlocal(ffff800000a58800) at rt_ifa_addlocal+0x1b1 sys/net/route.c:1381 in_ifinit(ffff80000117e000,ffff800000a58800,ffff800037640f30,0) at in_ifinit+0x26c sys/netinet/in.c:669 in_ioctl_set_ifaddr(8020690c,ffff800037640f20,ffff80000117e000) at in_ioctl_set_ifaddr+0x335 sys/netinet/in.c:386 ifioctl(fffffd806c522bf8,8020690c,ffff800037640f20,ffff80002a4d0530) at ifioctl+0x1519 pru_control sys/sys/protosw.h:355 [inline] ifioctl(fffffd806c522bf8,8020690c,ffff800037640f20,ffff80002a4d0530) at ifioctl+0x1519 sys/net/if.c:2449 sys_ioctl(ffff80002a4d0530,ffff800037641100,ffff800037641050) at sys_ioctl+0x678 syscall(ffff800037641100) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdfe998088f0, count: -10 ddb> show registers rdi 0x20 rsi 0x90 rbp 0xffff800037640aa0 rbx 0x14 rdx 0 rcx 0x100040600080100 rax 0xfffffd807ec91be0 r8 0x10 r9 0xfffffd806c250630 r10 0x1a3196b827dd7de1 r11 0xcd0742da7b73ed50 r12 0x123 r13 0xfffffd807ec91b00 r14 0xfffffd806c250630 r15 0xffff80000124eff0 rip 0xffffffff8132bf8e arp_rtrequest+0x65e cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800037640a20 ss 0x10 arp_rtrequest+0x65e: movzwl 0xc(%r15,%rbx,1),%ecx ddb> show proc PROC (syz-executor) tid=199326 pid=15539 tcnt=2 stat=onproc flags process=8000000 proc=4000000 runpri=32, usrpri=84, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a512a58,0xffff80002a4d1980 process=0xffff800037622268 user=0xffff80003763c000, vmspace=0xfffffd806c283010 estcpu=34, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 31661 288202 75356 0 2 0x8000000 syz-executor 31661 155089 75356 0 3 0xc000080 fsleep syz-executor 38012 294038 51635 0 2 0x8000000 syz-executor 38012 163518 51635 0 3 0xc000080 fsleep syz-executor 25563 141784 4301 0 2 0x8000000 syz-executor 25563 522873 4301 0 3 0xc000080 fsleep syz-executor 23255 159472 64930 0 2 0x8000000 syz-executor 23255 311840 64930 0 3 0xc000080 fsleep syz-executor 23255 200120 64930 0 3 0xc000080 fsleep syz-executor 15539 322166 15835 0 2 0x8000000 syz-executor *15539 199326 15835 0 7 0xc000000 syz-executor 9209 276729 50799 0 2 0x8000480 syz-executor 9209 75178 50799 0 3 0xc000080 rest syz-executor 9209 311884 50799 0 3 0xc000080 fsleep syz-executor 51635 78788 80829 0 2 0x8000482 syz-executor 51218 462048 80829 0 2 0x8000002 syz-executor 4301 243845 80829 0 2 0x8000482 syz-executor 86599 33629 80829 0 2 0x8000002 syz-executor 15835 418009 80829 0 2 0x8000482 syz-executor 64930 421309 80829 0 2 0x8000482 syz-executor 75356 433860 80829 0 2 0x8000482 syz-executor 50799 269558 80829 0 2 0x8000482 syz-executor 88109 272111 1 0 3 0x18100083 ttyopn getty 77512 146182 0 0 3 0x14280 nfsidl nfsio 97126 497124 0 0 3 0x14280 nfsidl nfsio 63223 446356 0 0 3 0x14280 nfsidl nfsio 68134 118686 0 0 3 0x14280 nfsidl nfsio 69684 251470 0 0 3 0x14280 nfsidl nfsio 24732 34462 0 0 3 0x14280 nfsidl nfsio 47077 303165 0 0 3 0x14280 nfsidl nfsio 86797 342312 0 0 3 0x14280 nfsidl nfsio 13717 155028 0 0 3 0x14280 nfsidl nfsio 29762 498166 0 0 3 0x14280 nfsidl nfsio 23560 417757 0 0 3 0x14280 nfsidl nfsio 97429 461001 0 0 3 0x14280 nfsidl nfsio 38517 433289 0 0 3 0x14280 nfsidl nfsio 86373 238799 0 0 3 0x14280 nfsidl nfsio 82382 219998 0 0 3 0x14280 nfsidl nfsio 35524 155760 0 0 3 0x14280 nfsidl nfsio 22150 5388 0 0 3 0x14280 nfsidl nfsio 83540 424764 0 0 3 0x14280 nfsidl nfsio 1783 449671 0 0 3 0x14280 nfsidl nfsio 24958 193718 0 0 3 0x14280 nfsidl nfsio 61661 414521 0 0 3 0x14200 bored sosplice 80829 213307 50600 0 3 0x8000082 kqread syz-executor 50600 270734 82749 0 3 0x810008a sigsusp ksh 82749 156250 86334 0 3 0x18000098 kqread sshd-session 86334 86647 25462 0 3 0x18000092 kqread sshd-session 25462 252027 1 0 3 0x18000088 kqread sshd 43808 111469 74889 73 2 0x19100010 syslogd 74889 296005 1 0 3 0x18100082 sbwait syslogd 7920 370127 1 0 3 0x18100080 kqread resolvd 11452 470513 43860 77 3 0x18100092 kqread dhcpleased 86923 385691 43860 77 3 0x18100092 kqread dhcpleased 43860 241380 1 0 3 0x18000080 kqread dhcpleased 70012 75748 0 0 3 0x14200 bored smr 84620 476109 0 0 2 0x14200 zerothread 70641 77187 0 0 3 0x14200 aiodoned aiodoned 54656 20071 0 0 3 0x14200 syncer update 94079 49341 0 0 3 0x14200 cleaner cleaner 3423 177964 0 0 3 0x14200 reaper reaper 43087 454574 0 0 3 0x14200 pgdaemon pagedaemon 73543 78201 0 0 3 0x14200 bored viomb 52888 259074 0 0 3 0x40014200 acpi0 acpi0 67327 229353 0 0 3 0x14200 bored softnet3 85877 197429 0 0 3 0x14200 bored softnet2 646 142611 0 0 3 0x14200 bored softnet1 51863 513768 0 0 3 0x14200 bored softnet0 46842 520371 0 0 2 0x14200 systqmp 87251 250538 0 0 3 0x14200 bored systq 18283 479244 0 0 2 0x40014200 softclock 18631 448406 0 0 3 0x40014200 idle0 1 204188 0 0 3 0x8000082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10193 10180K 10613K 166960K 12634 0 pcb 18 14K 16K 166960K 516 0 rtable 227 9K 9K 166960K 1720 0 pf 37 14K 114701K 166960K 161 0 ifaddr 44 8K 8K 166960K 227 0 ifgroup 58 2K 2K 166960K 250 0 sysctl 4 1K 1K 166960K 4 0 counters 32 17K 18K 166960K 82 0 ioctlops 0 0K 4K 166960K 330 0 iov 0 0K 16K 166960K 62 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1573 99K 99K 166960K 3209 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 20 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 39 0 dirhash 12 2K 2K 166960K 39 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 16 57K 97K 166960K 1632 0 sigio 0 0K 0K 166960K 19 0 proc 58 59K 124K 166960K 1686 0 subproc 104 6K 6K 166960K 624 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 407 0 in_multi 99 7K 7K 166960K 570 0 ether_multi 1 0K 0K 166960K 9 0 mrt 1 0K 0K 166960K 5 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 103 466K 466K 166960K 103 0 exec 0 0K 1K 166960K 1270 0 pfkey data 0 0K 0K 166960K 3 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 219 104K 105K 166960K 14490 0 UVM aobj 129 4K 4K 166960K 132 0 pinsyscall 37 74K 102K 166960K 3703 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 64 0 NDP 13 0K 2K 166960K 159 0 temp 75 6816K 6942K 166960K 46349 0 kqueue 13 20K 28K 166960K 184 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 375 0 372 3 2 1 3 0 8 0 rtentry 112 601 0 501 4 1 3 4 0 8 0 unpcb 144 2143 0 2127 11 5 6 6 0 8 5 syncache 336 3 0 3 1 1 0 1 0 8 0 tcpcb 808 603 0 598 15 7 8 8 0 8 7 arp 88 111 0 93 1 0 1 1 0 8 0 ipq 40 3 0 3 1 0 1 1 0 8 1 ipqe 40 46 0 46 1 0 1 1 0 8 1 inpcb 336 2273 0 2260 17 8 9 12 0 8 7 nd6 104 152 0 127 1 0 1 1 0 8 0 pkpcb 40 8 0 8 2 1 1 1 0 8 1 kcovpl 48 48 0 40 1 0 1 1 0 8 0 ppxss 1072 6 0 6 2 1 1 1 0 8 1 pfstscr 40 2 0 2 1 1 0 1 0 8 0 pfosfp 40 2 0 0 1 0 1 1 0 8 0 pfosfpen 112 2 0 0 1 0 1 1 0 8 0 pfanchor 1288 3 0 3 1 1 0 1 0 8 0 pftag 88 1 0 0 1 0 1 1 0 8 0 pfqueue 264 3 0 1 1 0 1 1 0 8 0 pfstitem 24 3 0 2 1 0 1 1 0 8 0 pfstkey 128 9 0 6 1 0 1 1 0 8 0 pfstate 344 5 0 4 1 0 1 1 0 8 0 pfrule 1344 9 0 8 2 1 1 1 0 8 0 art_heap8 4096 4 0 2 4 2 2 4 0 8 0 art_heap4 256 2350 0 1908 34 5 29 30 0 8 1 art_table 32 2354 0 1910 4 0 4 4 0 8 0 art_node 16 597 0 507 1 0 1 1 0 8 0 sysvmsgpl 40 15 0 6 1 0 1 1 0 8 0 semapl 112 35 0 25 1 0 1 1 0 8 0 shmpl 112 129 0 3 4 0 4 4 0 8 0 dirhash 1024 36 0 19 3 0 3 3 0 8 0 dino2pl 256 3518 0 1950 99 0 99 99 0 8 0 ffsino 240 3518 0 1950 94 0 94 94 0 8 0 nchpl 144 5118 0 3392 65 0 65 65 0 8 0 uvmvnodes 80 5013 0 0 103 0 103 103 0 8 0 vnodes 216 5013 0 0 279 0 279 279 0 8 0 namei 1024 23595 0 23594 2 1 1 2 0 8 0 vcpupl 3904 5 0 0 1 0 1 1 0 8 0 vmpool 664 8 0 3 1 0 1 1 0 8 0 kstatmem 264 126 0 100 3 0 3 3 0 8 1 scsiplug 72 2 0 2 1 0 1 1 0 8 1 scxspl 216 33815 0 33815 8 7 1 8 1 8 1 plimitpl 152 550 0 533 1 0 1 1 0 8 0 sigapl 424 1856 0 1791 8 0 8 8 0 8 0 futexpl 64 17064 0 17058 1 0 1 1 0 8 0 knotepl 120 76367 0 76320 25 15 10 17 0 8 7 kqueuepl 184 777 0 768 7 3 4 4 0 8 3 pipepl 288 407 0 380 10 3 7 7 0 8 5 fdescpl 432 1818 0 1790 5 1 4 5 0 8 0 filepl 120 14819 0 14571 21 6 15 16 0 8 5 lockfpl 104 314 0 311 1 0 1 1 0 8 0 lockfspl 48 140 0 137 1 0 1 1 0 8 0 sessionpl 144 63 0 55 1 0 1 1 0 8 0 pgrppl 48 124 0 108 1 0 1 1 0 8 0 ucredpl 104 1666 0 1655 1 0 1 1 0 8 0 zombiepl 144 1791 0 1791 2 1 1 1 0 8 1 processpl 1096 1856 0 1791 6 0 6 6 0 8 0 procpl 648 3373 0 3300 8 0 8 8 0 8 1 sosppl 168 3 0 3 1 1 0 1 0 8 0 sockpl 504 4848 0 4815 90 78 12 24 0 8 7 mcl64k 65536 8 0 8 1 1 0 1 0 8 0 mcl16k 16384 2 0 2 1 1 0 1 0 8 0 mcl12k 12288 5 0 5 1 1 0 1 0 8 0 mcl9k 9216 2 0 2 1 1 0 1 0 8 0 mcl8k 8192 35 0 35 2 1 1 1 0 8 1 mcl4k 4096 7 0 7 1 1 0 1 0 8 0 mcl2k 2048 8527 0 8430 27 11 16 25 0 8 3 mtagpl 96 28 0 26 1 0 1 1 0 8 0 mbufpl 256 22213 0 21978 73 54 19 64 0 8 0 bufpl 280 11592 0 4143 533 0 533 533 0 8 0 anonpl 24 312056 0 308814 107 32 75 77 0 187 38 amapchunkpl 152 47626 0 47164 51 20 31 40 0 158 9 amappl16 200 6420 0 6394 45 30 15 15 0 8 10 amappl15 192 8 0 7 1 0 1 1 0 8 0 amappl14 184 187 0 177 1 0 1 1 0 8 0 amappl13 176 5 0 5 1 1 0 1 0 8 0 amappl12 168 3069 0 3041 3 1 2 3 0 8 0 amappl11 160 50 0 40 1 0 1 1 0 8 0 amappl10 152 3 0 2 1 0 1 1 0 8 0 amappl9 144 136 0 136 2 1 1 1 0 8 1 amappl8 136 22 0 21 1 0 1 1 0 8 0 amappl7 128 177 0 167 1 0 1 1 0 8 0 amappl6 120 560 0 559 1 0 1 1 0 8 0 amappl5 112 289 0 281 1 0 1 1 0 8 0 amappl4 104 410 0 395 1 0 1 1 0 8 0 amappl3 96 9203 0 9097 5 1 4 4 0 8 1 amappl2 88 1164 0 1107 2 0 2 2 0 8 0 amappl1 80 14472 0 13950 14 2 12 14 0 8 0 amappl 88 13786 0 13624 5 0 5 5 0 92 0 dma65536 65536 1 0 1 1 1 0 1 0 8 0 dma16384 16384 1 0 1 1 1 0 1 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma2048 2048 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 8 0 8 1 1 0 1 0 8 0 dma16 16 20 0 19 1 0 1 1 0 8 0 aobjpl 72 131 0 3 3 0 3 3 0 8 0 uaddrrnd 24 1826 0 1793 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1826 0 1793 1 0 1 1 0 8 0 vmmpekpl 168 15403 0 15355 3 0 3 3 0 8 0 vmmpepl 168 116803 0 115104 95 4 91 91 0 357 8 vmsppl 344 1825 0 1793 5 1 4 4 0 8 0 rwobjpl 24 39947 0 33961 38 0 38 38 0 8 0 pdppl 4096 3658 0 3591 171 100 71 82 0 8 4 pvpl 32 918932 0 909625 476 246 230 358 0 265 123 pmappl 216 1825 0 1793 4 1 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 651 0 279 13 1 12 13 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace arp_rtrequest(ffff80000117e000,1,fffffd806c250630) at arp_rtrequest+0x65e arprequest sys/netinet/if_ether.c:281 [inline] arp_rtrequest(ffff80000117e000,1,fffffd806c250630) at arp_rtrequest+0x65e sys/netinet/if_ether.c:184 rtrequest(1,ffff800037640bb8,1,ffff800037640c88,0) at rtrequest+0xd2c sys/net/route.c:1103 rt_ifa_add(ffff800000a58800,240004,ffff800000a58858,0) at rt_ifa_add+0x38d sys/net/route.c:1273 rt_ifa_addlocal(ffff800000a58800) at rt_ifa_addlocal+0x1b1 sys/net/route.c:1381 in_ifinit(ffff80000117e000,ffff800000a58800,ffff800037640f30,0) at in_ifinit+0x26c sys/netinet/in.c:669 in_ioctl_set_ifaddr(8020690c,ffff800037640f20,ffff80000117e000) at in_ioctl_set_ifaddr+0x335 sys/netinet/in.c:386 ifioctl(fffffd806c522bf8,8020690c,ffff800037640f20,ffff80002a4d0530) at ifioctl+0x1519 pru_control sys/sys/protosw.h:355 [inline] ifioctl(fffffd806c522bf8,8020690c,ffff800037640f20,ffff80002a4d0530) at ifioctl+0x1519 sys/net/if.c:2449 sys_ioctl(ffff80002a4d0530,ffff800037641100,ffff800037641050) at sys_ioctl+0x678 syscall(ffff800037641100) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdfe998088f0, count: -10 ddb> machine ddbcpu 1 No such command ddb> trace arp_rtrequest(ffff80000117e000,1,fffffd806c250630) at arp_rtrequest+0x65e arprequest sys/netinet/if_ether.c:281 [inline] arp_rtrequest(ffff80000117e000,1,fffffd806c250630) at arp_rtrequest+0x65e sys/netinet/if_ether.c:184 rtrequest(1,ffff800037640bb8,1,ffff800037640c88,0) at rtrequest+0xd2c sys/net/route.c:1103 rt_ifa_add(ffff800000a58800,240004,ffff800000a58858,0) at rt_ifa_add+0x38d sys/net/route.c:1273 rt_ifa_addlocal(ffff800000a58800) at rt_ifa_addlocal+0x1b1 sys/net/route.c:1381 in_ifinit(ffff80000117e000,ffff800000a58800,ffff800037640f30,0) at in_ifinit+0x26c sys/netinet/in.c:669 in_ioctl_set_ifaddr(8020690c,ffff800037640f20,ffff80000117e000) at in_ioctl_set_ifaddr+0x335 sys/netinet/in.c:386 ifioctl(fffffd806c522bf8,8020690c,ffff800037640f20,ffff80002a4d0530) at ifioctl+0x1519 pru_control sys/sys/protosw.h:355 [inline] ifioctl(fffffd806c522bf8,8020690c,ffff800037640f20,ffff80002a4d0530) at ifioctl+0x1519 sys/net/if.c:2449 sys_ioctl(ffff80002a4d0530,ffff800037641100,ffff800037641050) at sys_ioctl+0x678 syscall(ffff800037641100) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdfe998088f0, count: -10