kernel: page fault trap, code=10 Stopped at 0 TID PID UID PRFLAGS PFLAGS CPU COMMAND *392618 9173 0 0 0x4000000 0 syz-executor 0(ffff800001187800,b,fffffd807a2ec558,ffff800033c333d0,1220,0) at 0 rtrequest(b,ffff800033c33478,3,ffff800033c33518,0) at rtrequest+0xd2c sys/net/route.c:1103 rt_match(ffff800033c33680,ffff800033c3369c,1,0) at rt_match+0xf0 rt_clone sys/net/route.c:383 [inline] rt_match(ffff800033c33680,ffff800033c3369c,1,0) at rt_match+0xf0 sys/net/route.c:358 route_mpath(ffff800033c33668,fffffd8072c149f0,fffffd8072c149ec,0) at route_mpath+0xb8 sys/net/route.c:255 in_ouraddr(fffffd8072c14900,ffff80000119d800,ffff800033c33668,20) at in_ouraddr+0xc2 ip_input_if(ffff800033c33758,ffff800033c33764,ffff80002b99e000,0,ffff80000119d800) at ip_input_if+0x3dd sys/netinet/ip_input.c:508 ipv4_input(ffff80000119d800,fffffd8072c14900) at ipv4_input+0x50 sys/netinet/ip_input.c:337 ether_input(ffff80000119d800,fffffd8072c14900) at ether_input+0x6e4 tun_dev_write(5d05,ffff800033c33ad8,ffff80002b99e000,2) at tun_dev_write+0x301 sys/net/if_tun.c:914 spec_write(ffff800033c33930) at spec_write+0x117 sys/kern/spec_vnops.c:302 VOP_WRITE(fffffd806c77d7c8,ffff800033c33ad8,11,fffffd807f7d7750) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 vn_write(fffffd807dd851f0,ffff800033c33ad8,0) at vn_write+0x1c3 sys/kern/vfs_vnops.c:408 dofilewritev(ffff80003601ea48,c8,ffff800033c33ad8,0,ffff800033c33b90) at dofilewritev+0x23c sys/kern/sys_generic.c:380 sys_write(ffff80003601ea48,ffff800033c33c40,ffff800033c33b90) at sys_write+0xa2 sys/kern/sys_generic.c:300 syscall(ffff800033c33c40) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 end trace frame: 0xffff800033c33cc0, count: 0 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: attempt to execute user address 0x0 in supervisor mode ddb> trace 0(ffff800001187800,b,fffffd807a2ec558,ffff800033c333d0,1220,0) at 0 rtrequest(b,ffff800033c33478,3,ffff800033c33518,0) at rtrequest+0xd2c sys/net/route.c:1103 rt_match(ffff800033c33680,ffff800033c3369c,1,0) at rt_match+0xf0 rt_clone sys/net/route.c:383 [inline] rt_match(ffff800033c33680,ffff800033c3369c,1,0) at rt_match+0xf0 sys/net/route.c:358 route_mpath(ffff800033c33668,fffffd8072c149f0,fffffd8072c149ec,0) at route_mpath+0xb8 sys/net/route.c:255 in_ouraddr(fffffd8072c14900,ffff80000119d800,ffff800033c33668,20) at in_ouraddr+0xc2 ip_input_if(ffff800033c33758,ffff800033c33764,ffff80002b99e000,0,ffff80000119d800) at ip_input_if+0x3dd sys/netinet/ip_input.c:508 ipv4_input(ffff80000119d800,fffffd8072c14900) at ipv4_input+0x50 sys/netinet/ip_input.c:337 ether_input(ffff80000119d800,fffffd8072c14900) at ether_input+0x6e4 tun_dev_write(5d05,ffff800033c33ad8,ffff80002b99e000,2) at tun_dev_write+0x301 sys/net/if_tun.c:914 spec_write(ffff800033c33930) at spec_write+0x117 sys/kern/spec_vnops.c:302 VOP_WRITE(fffffd806c77d7c8,ffff800033c33ad8,11,fffffd807f7d7750) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 vn_write(fffffd807dd851f0,ffff800033c33ad8,0) at vn_write+0x1c3 sys/kern/vfs_vnops.c:408 dofilewritev(ffff80003601ea48,c8,ffff800033c33ad8,0,ffff800033c33b90) at dofilewritev+0x23c sys/kern/sys_generic.c:380 sys_write(ffff80003601ea48,ffff800033c33c40,ffff800033c33b90) at sys_write+0xa2 sys/kern/sys_generic.c:300 syscall(ffff800033c33c40) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9c213475bb0, count: -15 ddb> show registers rdi 0xffff800001187800 rsi 0xb rbp 0xffff800033c33460 rbx 0xffff800001285710 rdx 0xfffffd807a2ec558 rcx 0x27b rax 0xffffffff820303f5 rtrequest+0xd05 r8 0x10 r9 0xfffffd807a2ec558 r10 0x4fd14e3e3729aca9 r11 0 r12 0xffff800033c33518 r13 0 r14 0xfffffd807a2ec558 r15 0xffff800033c33478 rip 0 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800033c33368 ss 0x10 0 ddb> show proc PROC (syz-executor) tid=392618 pid=9173 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=32, usrpri=85, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80003601e7c0,0xffff80003601e2c0 process=0xffff8000327f59c8 user=0xffff800033c2e000, vmspace=0xfffffd806c3d26c8 estcpu=35, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 75831 403426 71689 0 2 0 syz-executor 75831 391848 71689 0 3 0x4000080 fsleep syz-executor 49780 419412 80046 0 2 0 syz-executor 49780 465295 80046 0 3 0x4000080 fsleep syz-executor 49780 199882 80046 0 3 0x4000080 fsleep syz-executor 9173 156318 42649 0 2 0 syz-executor * 9173 392618 42649 0 7 0x4000000 syz-executor 14770 267186 1104 0 2 0 syz-executor 14770 54759 1104 0 3 0x4000080 fsleep syz-executor 47450 418325 92212 0 2 0 syz-executor 47450 519173 92212 0 3 0x4000080 fsleep syz-executor 47450 154568 92212 0 2 0x4000000 syz-executor 64428 321920 97618 0 2 0 syz-executor 64428 253915 97618 0 3 0x4000080 fsleep syz-executor 64428 457501 97618 0 2 0x4000000 syz-executor 69834 283533 6717 0 2 0 syz-executor 50531 10225 57597 0 2 0 syz-executor 80046 427020 2905 0 3 0x82 nanoslp syz-executor 57597 488745 2905 0 3 0x82 nanoslp syz-executor 42649 237923 2905 0 3 0x82 nanoslp syz-executor 97618 19915 2905 0 3 0x82 nanoslp syz-executor 1104 68942 2905 0 3 0x82 nanoslp syz-executor 71689 28981 2905 0 3 0x82 nanoslp syz-executor 6717 382640 2905 0 3 0x82 nanoslp syz-executor 92212 432400 2905 0 3 0x82 nanoslp syz-executor 4002 21558 0 0 3 0x14200 acct acct 88434 74827 1 0 3 0x100083 ttyin getty 53161 378817 0 0 3 0x14200 bored sosplice 2905 300459 32287 0 3 0x82 kqread syz-executor 32287 483920 92604 0 3 0x10008a sigsusp ksh 92604 400271 40360 0 3 0x98 kqread sshd-session 40360 29970 70953 0 3 0x92 kqread sshd-session 70953 74723 1 0 3 0x88 kqread sshd 80656 149127 8263 73 3 0x1100090 kqread syslogd 8263 231056 1 0 3 0x100082 sbwait syslogd 19465 486796 1 0 3 0x100080 kqread resolvd 38085 266733 10818 77 3 0x100092 kqread dhcpleased 44007 153139 10818 77 3 0x100092 kqread dhcpleased 10818 332170 1 0 3 0x80 kqread dhcpleased 87290 359394 0 0 3 0x14200 bored smr 28084 278349 0 0 2 0x14200 zerothread 96136 289139 0 0 3 0x14200 aiodoned aiodoned 48728 226412 0 0 3 0x14200 syncer update 29491 207785 0 0 3 0x14200 cleaner cleaner 96925 325258 0 0 3 0x14200 reaper reaper 41804 384444 0 0 3 0x14200 pgdaemon pagedaemon 62403 519300 0 0 3 0x14200 bored viomb 69781 228956 0 0 3 0x40014200 acpi0 acpi0 72745 308197 0 0 3 0x14200 bored softnet3 28948 225939 0 0 3 0x14200 bored softnet2 82975 403433 0 0 3 0x14200 bored softnet1 18195 162957 0 0 3 0x14200 bored softnet0 97030 132775 0 0 3 0x14200 bored systqmp 85820 355831 0 0 3 0x14200 bored systq 37929 434418 0 0 3 0x40014200 tmoslp softclock 99362 478760 0 0 3 0x40014200 idle0 1 231588 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10230 10118K 10503K 166960K 15032 0 pcb 17 16K 17K 166960K 542 0 rtable 240 9K 10K 166960K 4033 0 pf 39 14K 22K 166960K 383 0 ifaddr 45 9K 10K 166960K 539 0 ifgroup 63 2K 2K 166960K 600 0 sysctl 3 1K 3K 166960K 8 0 counters 33 17K 18K 166960K 174 0 ioctlops 0 0K 4K 166960K 478 0 iov 0 0K 28K 166960K 237 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1502 94K 95K 166960K 5139 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 68K 72K 166960K 52 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 143 0 dirhash 15 2K 3K 166960K 60 0 ACPI 1690 195K 286K 166960K 12418 0 file desc 18 65K 97K 166960K 4157 0 sigio 0 0K 0K 166960K 61 0 proc 60 59K 124K 166960K 3782 0 subproc 104 6K 7K 166960K 1575 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 523 0 in_multi 97 7K 7K 166960K 1400 0 ether_multi 1 0K 0K 166960K 22 0 mrt 0 0K 0K 166960K 10 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 223 996K 996K 166960K 223 0 exec 0 0K 1K 166960K 2485 0 pfkey data 0 0K 0K 166960K 6 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 217 72K 95K 166960K 33509 0 UVM aobj 82 3K 3K 166960K 92 0 pinsyscall 39 78K 98K 166960K 8038 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 134 0 NDP 14 0K 2K 166960K 393 0 temp 81 6816K 6956K 166960K 136066 0 kqueue 13 20K 30K 166960K 445 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 522 0 518 1 0 1 1 0 8 0 rtentry 112 1416 0 1309 4 0 4 4 0 8 0 unpcb 144 3281 0 3264 23 19 4 11 0 8 3 syncache 336 18 0 18 5 4 1 1 0 8 1 tcpqe 32 10 0 10 4 4 0 1 0 8 0 tcpcb 808 1158 0 1154 32 24 8 8 0 8 7 arp 88 264 0 244 1 0 1 1 0 8 0 ipq 40 9 0 9 2 1 1 1 0 8 1 ipqe 40 61 0 61 2 1 1 1 0 8 1 inpcb 336 4086 0 4076 29 22 7 8 0 8 6 nd6 104 364 0 340 1 0 1 1 0 8 0 pkpcb 40 24 0 24 5 4 1 1 0 8 1 kcovpl 48 121 0 113 1 0 1 1 0 8 0 ppxss 1072 21 0 21 4 4 0 1 0 8 0 pfstkey 128 2 0 2 1 1 0 1 0 8 0 pfstate 344 2 0 2 1 1 0 1 0 8 0 pfrule 1344 1 0 1 1 1 0 1 0 8 0 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 5511 0 5076 42 14 28 31 0 8 0 art_table 32 5514 0 5076 4 0 4 4 0 8 0 art_node 16 1403 0 1308 1 0 1 1 0 8 0 sysvmsgpl 40 3 0 1 1 0 1 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 141 0 131 1 0 1 1 0 8 0 shmpl 112 89 0 10 3 0 3 3 0 8 0 dirhash 1024 50 0 31 3 0 3 3 0 8 0 dino2pl 256 6286 0 4578 107 0 107 107 0 8 0 ffsino 240 6286 0 4578 101 0 101 101 0 8 0 nchpl 144 10030 0 8205 68 0 68 68 0 8 0 uvmvnodes 80 7699 0 0 158 0 158 158 0 8 0 vnodes 216 7699 0 0 428 0 428 428 0 8 0 namei 1024 47216 0 47216 6 4 2 2 0 8 2 kstatmem 264 310 0 282 3 1 2 3 0 8 0 acpiwqpl 32 2 0 2 1 0 1 1 1 8 1 scsiplug 72 5 0 5 4 3 1 1 0 8 1 scxspl 216 77138 0 77138 12 11 1 8 1 8 1 plimitpl 152 919 0 903 1 0 1 1 0 8 0 sigapl 424 4242 0 4194 8 2 6 8 0 8 0 futexpl 64 39572 0 39566 1 0 1 1 0 8 0 knotepl 120 102647 0 102600 35 25 10 16 0 8 8 kqueuepl 184 779 0 770 4 3 1 4 0 8 0 pipepl 288 974 0 947 10 7 3 7 0 8 0 fdescpl 432 4200 0 4170 5 1 4 5 0 8 0 filepl 120 26612 0 26368 30 19 11 17 0 8 3 lockfpl 104 1099 0 1097 2 1 1 2 0 8 0 lockfspl 48 447 0 445 1 0 1 1 0 8 0 sessionpl 144 135 0 127 1 0 1 1 0 8 0 pgrppl 48 352 0 336 1 0 1 1 0 8 0 ucredpl 104 4816 0 4805 1 0 1 1 0 8 0 zombiepl 144 4893 0 4893 3 2 1 1 0 8 1 processpl 1096 4242 0 4194 5 1 4 5 0 8 0 procpl 648 8245 0 8188 9 3 6 7 0 8 0 sosppl 168 16 0 16 5 4 1 1 0 8 1 sockpl 504 7959 0 7928 103 91 12 42 0 8 7 mcl64k 65536 55 0 55 5 4 1 1 0 8 1 mcl16k 16384 14 0 14 4 4 0 1 0 8 0 mcl12k 12288 7 0 7 3 3 0 1 0 8 0 mcl9k 9216 7 0 7 3 3 0 1 0 8 0 mcl8k 8192 51 0 51 3 3 0 1 0 8 0 mcl4k 4096 14 0 14 3 3 0 1 0 8 0 mcl2k2 2112 1 0 1 1 1 0 1 0 8 0 mcl2k 2048 14196 0 14102 30 16 14 26 0 8 1 mtagpl 96 242 0 238 3 2 1 2 0 8 0 mbufpl 256 51235 0 50991 37 19 18 24 0 8 1 bufpl 280 14072 0 6372 551 0 551 551 0 8 0 anonpl 24 572803 0 569124 170 118 52 103 0 187 13 amapchunkpl 152 108268 0 107840 87 58 29 41 0 158 11 amappl16 200 9736 0 9728 82 72 10 15 0 8 8 amappl15 192 75 0 75 2 2 0 1 0 8 0 amappl14 184 344 0 334 1 0 1 1 0 8 0 amappl13 176 11 0 11 2 2 0 1 0 8 0 amappl12 168 5878 0 5865 3 1 2 3 0 8 0 amappl11 160 81 0 71 1 0 1 1 0 8 0 amappl10 152 9 0 9 1 1 0 1 0 8 0 amappl9 144 128 0 128 1 1 0 1 0 8 0 amappl8 136 70 0 68 1 0 1 1 0 8 0 amappl7 128 325 0 314 1 0 1 1 0 8 0 amappl6 120 1251 0 1249 1 0 1 1 0 8 0 amappl5 112 564 0 555 1 0 1 1 0 8 0 amappl4 104 631 0 615 1 0 1 1 0 8 0 amappl3 96 20713 0 20633 5 2 3 4 0 8 0 amappl2 88 2228 0 2165 2 0 2 2 0 8 0 amappl1 80 45077 0 44370 20 3 17 17 0 8 1 amappl 88 32062 0 31899 5 0 5 5 0 92 0 dma65536 65536 2 0 2 2 2 0 1 0 8 0 dma32768 32768 1 0 1 1 1 0 1 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 254 0 254 2 2 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 8 0 8 2 2 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 91 0 10 2 0 2 2 0 8 0 uaddrrnd 24 4200 0 4170 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4200 0 4170 1 0 1 1 0 8 0 vmmpekpl 168 34133 0 34084 3 0 3 3 0 8 0 vmmpepl 168 275389 0 273531 126 31 95 95 0 357 9 vmsppl 344 4199 0 4170 5 2 3 4 0 8 0 rwobjpl 24 89000 0 80274 56 1 55 55 0 8 0 pdppl 4096 8406 0 8340 284 218 66 82 0 8 0 pvpl 32 2157542 0 2147215 888 663 225 390 0 265 126 pmappl 216 4199 0 4170 3 1 2 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 813 0 438 12 0 12 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace 0(ffff800001187800,b,fffffd807a2ec558,ffff800033c333d0,1220,0) at 0 rtrequest(b,ffff800033c33478,3,ffff800033c33518,0) at rtrequest+0xd2c sys/net/route.c:1103 rt_match(ffff800033c33680,ffff800033c3369c,1,0) at rt_match+0xf0 rt_clone sys/net/route.c:383 [inline] rt_match(ffff800033c33680,ffff800033c3369c,1,0) at rt_match+0xf0 sys/net/route.c:358 route_mpath(ffff800033c33668,fffffd8072c149f0,fffffd8072c149ec,0) at route_mpath+0xb8 sys/net/route.c:255 in_ouraddr(fffffd8072c14900,ffff80000119d800,ffff800033c33668,20) at in_ouraddr+0xc2 ip_input_if(ffff800033c33758,ffff800033c33764,ffff80002b99e000,0,ffff80000119d800) at ip_input_if+0x3dd sys/netinet/ip_input.c:508 ipv4_input(ffff80000119d800,fffffd8072c14900) at ipv4_input+0x50 sys/netinet/ip_input.c:337 ether_input(ffff80000119d800,fffffd8072c14900) at ether_input+0x6e4 tun_dev_write(5d05,ffff800033c33ad8,ffff80002b99e000,2) at tun_dev_write+0x301 sys/net/if_tun.c:914 spec_write(ffff800033c33930) at spec_write+0x117 sys/kern/spec_vnops.c:302 VOP_WRITE(fffffd806c77d7c8,ffff800033c33ad8,11,fffffd807f7d7750) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 vn_write(fffffd807dd851f0,ffff800033c33ad8,0) at vn_write+0x1c3 sys/kern/vfs_vnops.c:408 dofilewritev(ffff80003601ea48,c8,ffff800033c33ad8,0,ffff800033c33b90) at dofilewritev+0x23c sys/kern/sys_generic.c:380 sys_write(ffff80003601ea48,ffff800033c33c40,ffff800033c33b90) at sys_write+0xa2 sys/kern/sys_generic.c:300 syscall(ffff800033c33c40) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9c213475bb0, count: -15 ddb> machine ddbcpu 1 No such command ddb> trace 0(ffff800001187800,b,fffffd807a2ec558,ffff800033c333d0,1220,0) at 0 rtrequest(b,ffff800033c33478,3,ffff800033c33518,0) at rtrequest+0xd2c sys/net/route.c:1103 rt_match(ffff800033c33680,ffff800033c3369c,1,0) at rt_match+0xf0 rt_clone sys/net/route.c:383 [inline] rt_match(ffff800033c33680,ffff800033c3369c,1,0) at rt_match+0xf0 sys/net/route.c:358 route_mpath(ffff800033c33668,fffffd8072c149f0,fffffd8072c149ec,0) at route_mpath+0xb8 sys/net/route.c:255 in_ouraddr(fffffd8072c14900,ffff80000119d800,ffff800033c33668,20) at in_ouraddr+0xc2 ip_input_if(ffff800033c33758,ffff800033c33764,ffff80002b99e000,0,ffff80000119d800) at ip_input_if+0x3dd sys/netinet/ip_input.c:508 ipv4_input(ffff80000119d800,fffffd8072c14900) at ipv4_input+0x50 sys/netinet/ip_input.c:337 ether_input(ffff80000119d800,fffffd8072c14900) at ether_input+0x6e4 tun_dev_write(5d05,ffff800033c33ad8,ffff80002b99e000,2) at tun_dev_write+0x301 sys/net/if_tun.c:914 spec_write(ffff800033c33930) at spec_write+0x117 sys/kern/spec_vnops.c:302 VOP_WRITE(fffffd806c77d7c8,ffff800033c33ad8,11,fffffd807f7d7750) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 vn_write(fffffd807dd851f0,ffff800033c33ad8,0) at vn_write+0x1c3 sys/kern/vfs_vnops.c:408 dofilewritev(ffff80003601ea48,c8,ffff800033c33ad8,0,ffff800033c33b90) at dofilewritev+0x23c sys/kern/sys_generic.c:380 sys_write(ffff80003601ea48,ffff800033c33c40,ffff800033c33b90) at sys_write+0xa2 sys/kern/sys_generic.c:300 syscall(ffff800033c33c40) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9c213475bb0, count: -15