kernel: page fault trap, code=10 Stopped at 0 TID PID UID PRFLAGS PFLAGS CPU COMMAND *357225 34505 0 0x8000000 0x4000000 0 syz-executor.3 0(ffff800000e75000,b,fffffd80739b8328,ffff800032d354e0,1220,0) at 0 rtrequest(b,ffff800032d35588,83,ffff800032d35628,0) at rtrequest+0x9dc sys/net/route.c:1103 rt_match(fffffd8067e454b8,0,1,0) at rt_match+0xc3 rt_clone sys/net/route.c:383 [inline] rt_match(fffffd8067e454b8,0,1,0) at rt_match+0xc3 sys/net/route.c:358 route_mpath(fffffd8067e454a0,fffffd806aeca324,0,0) at route_mpath+0x8b sys/net/route.c:255 in_pcbselsrc(ffff800032d35778,fffffd806aeca320,fffffd8067e45428) at in_pcbselsrc+0x1b7 sys/netinet/in_pcb.c:975 in_pcbconnect(fffffd8067e45428,fffffd806aeca300) at in_pcbconnect+0xe8 sys/netinet/in_pcb.c:523 tcp_connect(fffffd80737e5400,fffffd806aeca300) at tcp_connect+0x29b sys/netinet/tcp_usrreq.c:654 sys_connect(ffff80002a608d08,ffff800032d359a0,ffff800032d358f0) at sys_connect+0x238 sys/kern/uipc_syscalls.c:422 syscall(ffff800032d359a0) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb1655433210, count: 6 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: attempt to execute user address 0x0 in supervisor mode ddb> trace 0(ffff800000e75000,b,fffffd80739b8328,ffff800032d354e0,1220,0) at 0 rtrequest(b,ffff800032d35588,83,ffff800032d35628,0) at rtrequest+0x9dc sys/net/route.c:1103 rt_match(fffffd8067e454b8,0,1,0) at rt_match+0xc3 rt_clone sys/net/route.c:383 [inline] rt_match(fffffd8067e454b8,0,1,0) at rt_match+0xc3 sys/net/route.c:358 route_mpath(fffffd8067e454a0,fffffd806aeca324,0,0) at route_mpath+0x8b sys/net/route.c:255 in_pcbselsrc(ffff800032d35778,fffffd806aeca320,fffffd8067e45428) at in_pcbselsrc+0x1b7 sys/netinet/in_pcb.c:975 in_pcbconnect(fffffd8067e45428,fffffd806aeca300) at in_pcbconnect+0xe8 sys/netinet/in_pcb.c:523 tcp_connect(fffffd80737e5400,fffffd806aeca300) at tcp_connect+0x29b sys/netinet/tcp_usrreq.c:654 sys_connect(ffff80002a608d08,ffff800032d359a0,ffff800032d358f0) at sys_connect+0x238 sys/kern/uipc_syscalls.c:422 syscall(ffff800032d359a0) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb1655433210, count: -9 ddb> show registers rdi 0xffff800000e75000 rsi 0xb rbp 0xffff800032d35570 rbx 0xffff8000006baca0 rdx 0xfffffd80739b8328 rcx 0xab1 rax 0xffffffff81473b55 rtrequest+0x9b5 r8 0x100 r9 0xfffffd80739b8328 r10 0x98037c95372aa98c r11 0 r12 0xffff800032d35628 r13 0 r14 0xfffffd80739b8328 r15 0xffff800032d35588 rip 0 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800032d35478 ss 0x10 0 ddb> show proc PROC (syz-executor.3) tid=357225 pid=34505 tcnt=5 stat=onproc flags process=8000000 proc=4000000 runpri=84, usrpri=84, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a683218,0xffff80002a6082d8 process=0xffff800034974460 user=0xffff800032d30000, vmspace=0xfffffd8069ab7420 estcpu=34, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 73807 350208 44426 0 2 0x8000000 syz-executor.1 73807 254989 44426 0 2 0xc000000 syz-executor.1 4940 253935 59302 0 2 0x8000000 syz-executor.4 4940 401748 59302 0 3 0xc000080 fsleep syz-executor.4 4940 404280 59302 0 3 0xc000080 fsleep syz-executor.4 4940 99609 59302 0 3 0xc000080 fsleep syz-executor.4 48305 359659 34049 0 2 0x8000000 syz-executor.6 48305 455000 34049 0 3 0xc000080 fsleep syz-executor.6 48305 379083 34049 0 3 0xc000080 fsleep syz-executor.6 81062 339095 32523 0 2 0x8000000 syz-executor.0 81062 445144 32523 0 3 0xc000080 fsleep syz-executor.0 20908 301465 17739 0 2 0x8000000 syz-executor.7 20908 172008 17739 0 2 0xc000000 syz-executor.7 20908 448974 17739 0 3 0xc000080 fsleep syz-executor.7 34505 297071 95498 0 2 0x8000000 syz-executor.3 34505 9415 95498 0 3 0xc000080 fsleep syz-executor.3 34505 364714 95498 0 3 0xc000080 fsleep syz-executor.3 34505 102097 95498 0 3 0xc000080 fsleep syz-executor.3 *34505 357225 95498 0 7 0xc000000 syz-executor.3 4410 304093 15225 0 2 0x8000002 syz-executor.5 51870 226875 15225 0 2 0x8000002 syz-executor.2 59302 8 15225 0 2 0x8000482 syz-executor.4 44426 122445 15225 0 2 0x8000482 syz-executor.1 95498 219677 15225 0 2 0x8000482 syz-executor.3 17739 303686 15225 0 3 0x8000082 nanoslp syz-executor.7 34049 168036 15225 0 3 0x8000082 nanoslp syz-executor.6 32523 43491 15225 0 2 0x8000482 syz-executor.0 25323 327708 1 0 3 0x18100083 ttyopn getty 23109 346741 0 0 3 0x14280 nfsidl nfsio 47737 305151 0 0 3 0x14280 nfsidl nfsio 15130 346483 0 0 3 0x14280 nfsidl nfsio 29156 296169 0 0 3 0x14280 nfsidl nfsio 48760 461037 0 0 3 0x14280 nfsidl nfsio 30658 96997 0 0 3 0x14280 nfsidl nfsio 21225 171009 0 0 3 0x14280 nfsidl nfsio 2882 436172 0 0 3 0x14280 nfsidl nfsio 5046 215810 0 0 3 0x14280 nfsidl nfsio 18747 328559 0 0 3 0x14280 nfsidl nfsio 60726 141869 0 0 3 0x14280 nfsidl nfsio 51361 77784 0 0 3 0x14280 nfsidl nfsio 5071 51014 0 0 3 0x14280 nfsidl nfsio 82821 492339 0 0 3 0x14280 nfsidl nfsio 32213 107900 0 0 3 0x14280 nfsidl nfsio 4710 208301 0 0 3 0x14280 nfsidl nfsio 28973 245195 0 0 3 0x14280 nfsidl nfsio 59967 359867 0 0 3 0x14280 nfsidl nfsio 24153 310277 0 0 3 0x14280 nfsidl nfsio 38220 51993 0 0 3 0x14280 nfsidl nfsio 51362 145393 0 0 3 0x14200 bored sosplice 15225 484232 29330 0 3 0x1a000082 wait syz-fuzzer 15225 443331 29330 0 2 0x1e000482 syz-fuzzer 15225 63491 29330 0 3 0x1e000082 thrsleep syz-fuzzer 15225 479797 29330 0 3 0x1e000082 wait syz-fuzzer 15225 171589 29330 0 3 0x1e000082 thrsleep syz-fuzzer 15225 8853 29330 0 3 0x1e000082 wait syz-fuzzer 15225 138471 29330 0 3 0x1e000082 kqread syz-fuzzer 15225 95174 29330 0 3 0x1e000082 wait syz-fuzzer 15225 235703 29330 0 3 0x1e000082 wait syz-fuzzer 15225 311685 29330 0 3 0x1e000082 wait syz-fuzzer 15225 408813 29330 0 3 0x1e000082 thrsleep syz-fuzzer 15225 427358 29330 0 3 0x1e000082 wait syz-fuzzer 15225 192605 29330 0 3 0x1e000082 wait syz-fuzzer 15225 169727 29330 0 3 0x1e000082 thrsleep syz-fuzzer 29330 283182 38349 0 3 0x810008a sigsusp ksh 38349 68771 67651 0 3 0x1800009a kqread sshd 67651 89797 1 0 3 0x18000088 kqread sshd 8361 418744 93856 73 3 0x19100090 kqread syslogd 93856 381807 1 0 3 0x18100082 sbwait syslogd 71630 373039 1 0 3 0x18100080 kqread resolvd 10335 474886 28543 77 3 0x18100092 kqread dhcpleased 47828 297390 28543 77 3 0x18100092 kqread dhcpleased 28543 15596 1 0 3 0x18000080 kqread dhcpleased 5542 64529 0 0 3 0x14200 bored smr 41748 320643 0 0 2 0x14200 zerothread 11427 349382 0 0 3 0x14200 aiodoned aiodoned 75971 112688 0 0 3 0x14200 syncer update 13756 200371 0 0 3 0x14200 cleaner cleaner 39616 168742 0 0 3 0x14200 reaper reaper 32805 122306 0 0 3 0x14200 pgdaemon pagedaemon 72736 20268 0 0 3 0x14200 bored viomb 11908 472071 0 0 3 0x40014200 acpi0 acpi0 72565 226327 0 0 3 0x14200 bored softnet3 27150 150605 0 0 3 0x14200 bored softnet2 73114 258386 0 0 3 0x14200 bored softnet1 35917 261200 0 0 3 0x14200 bored softnet0 31967 2073 0 0 3 0x14200 bored systqmp 90524 150059 0 0 3 0x14200 bored systq 91836 445354 0 0 2 0x40014200 softclock 63338 119799 0 0 3 0x40014200 idle0 1 251178 0 0 3 0x8080082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10207 6511K 10802K 166960K 18198 0 pcb 17 12K 12K 166960K 560 0 rtable 252 11K 12K 166960K 4847 0 pf 43 11K 12K 166960K 469 0 ifaddr 52 14K 14K 166960K 681 0 ifgroup 78 3K 3K 166960K 860 0 sysctl 3 0K 1K 166960K 15 0 counters 37 18K 18K 166960K 229 0 ioctlops 0 0K 2K 166960K 402 0 iov 0 0K 28K 166960K 200 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1505 95K 95K 166960K 6208 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 68K 76K 166960K 80 0 VM map 2 1K 1K 166960K 2 0 sem 19 29K 49K 166960K 114 0 dirhash 12 2K 3K 166960K 114 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 16 57K 101K 166960K 4878 0 sigio 1 0K 0K 166960K 38 0 proc 58 59K 124K 166960K 4474 0 subproc 104 6K 7K 166960K 1876 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 516 0 in_multi 87 6K 7K 166960K 1665 0 ether_multi 1 0K 0K 166960K 8 0 mrt 1 0K 0K 166960K 9 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 103 466K 466K 166960K 103 0 exec 0 0K 1K 166960K 2429 0 pfkey data 0 0K 0K 166960K 5 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 311 158K 166K 166960K 37879 0 UVM aobj 122 6K 6K 166960K 137 0 pinsyscall 36 72K 101K 166960K 9672 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 165 0 NDP 18 0K 2K 166960K 496 0 temp 77 6800K 6928K 166960K 179592 0 kqueue 13 20K 28K 166960K 444 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 775 0 771 3 0 3 3 0 8 2 rtentry 112 1743 0 1638 4 0 4 4 0 8 0 unpcb 144 2503 0 2489 2 0 2 2 0 8 1 syncache 336 14 0 14 1 0 1 1 0 8 1 tcpqe 32 1 0 1 1 0 1 1 0 8 1 tcpcb 808 991 0 985 2 0 2 2 0 8 1 arp 88 316 0 295 1 0 1 1 0 8 0 ipq 40 17 0 15 1 0 1 1 0 8 0 ipqe 40 200 0 198 1 0 1 1 0 8 0 inpcb 352 4009 0 3999 3 0 3 3 0 8 1 nd6 104 451 0 428 1 0 1 1 0 8 0 pkpcb 40 37 0 37 1 0 1 1 0 8 1 kcovpl 48 144 0 136 1 0 1 1 0 8 0 ppxss 1072 15 0 15 1 0 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 6797 0 6412 96 69 27 30 0 8 2 art_table 32 6798 0 6412 4 0 4 4 0 8 0 art_node 16 1729 0 1639 1 0 1 1 0 8 0 sysvmsgpl 40 26 0 15 1 0 1 1 0 8 0 semupl 112 2 0 2 1 0 1 1 0 8 1 semapl 112 108 0 91 1 0 1 1 0 8 0 shmpl 112 134 0 15 4 0 4 4 0 8 0 dirhash 1024 89 0 72 3 0 3 3 0 8 0 dino2pl 256 7265 0 5735 97 0 97 97 0 8 0 ffsino 240 7265 0 5735 91 0 91 91 0 8 0 nchpl 144 12987 0 11254 66 0 66 66 0 8 0 uvmvnodes 80 10630 0 0 217 0 217 217 0 8 0 vnodes 216 10630 0 0 591 0 591 591 0 8 0 namei 1024 57615 0 57614 2 0 2 2 0 8 1 vcpupl 3904 20 0 1 3 0 3 3 0 8 0 vmpool 664 25 0 6 2 0 2 2 0 8 0 kstatmem 264 420 0 384 3 0 3 3 0 8 0 scsiplug 72 10 0 10 1 0 1 1 0 8 1 scxspl 216 103013 0 103013 8 0 8 8 1 8 8 plimitpl 152 818 0 803 1 0 1 1 0 8 0 sigapl 424 4929 0 4865 9 0 9 9 0 8 0 futexpl 64 65215 0 65205 1 0 1 1 0 8 0 knotepl 120 13205 0 13121 24 13 11 18 0 8 6 kqueuepl 184 1126 0 1117 1 0 1 1 0 8 0 pipepl 288 1181 0 1153 3 0 3 3 0 8 0 fdescpl 432 4888 0 4861 5 0 5 5 0 8 1 filepl 120 29700 0 29447 13 0 13 13 0 8 3 lockfpl 104 1329 0 1326 1 0 1 1 0 8 0 lockfspl 48 599 0 596 1 0 1 1 0 8 0 sessionpl 144 164 0 148 1 0 1 1 0 8 0 pgrppl 48 214 0 198 1 0 1 1 0 8 0 ucredpl 104 4256 0 4245 1 0 1 1 0 8 0 zombiepl 144 4865 0 4865 1 0 1 1 0 8 1 processpl 1080 4929 0 4865 6 0 6 6 0 8 0 procpl 656 8409 0 8319 9 0 9 9 0 8 1 sosppl 168 11 0 11 1 0 1 1 0 8 1 sockpl 504 7372 0 7345 12 1 11 12 0 8 7 mcl64k 65536 304 0 304 1 0 1 1 0 8 1 mcl16k 16384 47 0 47 1 0 1 1 0 8 1 mcl12k 12288 24 0 24 1 0 1 1 0 8 1 mcl9k 9216 5 0 5 1 0 1 1 0 8 1 mcl8k 8192 153 0 153 1 0 1 1 0 8 1 mcl4k 4096 30 0 30 1 0 1 1 0 8 1 mcl2k2 2112 8 0 8 1 0 1 1 0 8 1 mcl2k 2048 30412 0 30313 37 17 20 37 0 8 6 mtagpl 96 210 0 202 2 0 2 2 0 8 1 mbufpl 256 81293 0 81087 146 121 25 62 0 8 8 bufpl 280 20913 0 10286 760 0 760 760 0 8 0 anonpl 24 675993 0 669504 93 0 93 93 0 188 36 amapchunkpl 152 122921 0 122222 46 0 46 46 0 158 18 amappl16 200 12764 0 12614 60 42 18 26 0 8 8 amappl15 192 34 0 34 1 0 1 1 0 8 1 amappl14 184 572 0 559 2 0 2 2 0 8 1 amappl13 176 47 0 46 1 0 1 1 0 8 0 amappl12 168 7542 0 7515 2 0 2 2 0 8 0 amappl11 160 194 0 176 1 0 1 1 0 8 0 amappl10 152 241 0 238 1 0 1 1 0 8 0 amappl9 144 171 0 171 1 0 1 1 0 8 1 amappl8 136 589 0 555 2 0 2 2 0 8 0 amappl7 128 77 0 63 1 0 1 1 0 8 0 amappl6 120 2000 0 1986 2 0 2 2 0 8 1 amappl5 112 712 0 699 1 0 1 1 0 8 0 amappl4 104 1571 0 1537 2 0 2 2 0 8 0 amappl3 96 22197 0 22108 3 0 3 3 0 8 0 amappl2 88 5664 0 5594 4 0 4 4 0 8 2 amappl1 80 32983 0 32493 22 3 19 22 0 8 7 amappl 88 36125 0 35917 6 0 6 6 0 92 1 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 136 0 15 3 0 3 3 0 8 0 uaddrrnd 24 4913 0 4867 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4913 0 4867 1 0 1 1 0 8 0 vmmpekpl 168 39898 0 39838 4 0 4 4 0 8 0 vmmpepl 168 343024 0 341136 117 0 117 117 0 357 29 vmsppl 344 4912 0 4867 5 0 5 5 0 8 0 rwobjpl 24 91069 0 79199 73 0 73 73 0 8 0 pdppl 4096 9832 0 9753 437 356 81 96 0 8 2 pvpl 32 2003796 0 1990962 398 42 356 398 0 265 224 pmappl 216 4912 0 4867 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 935 0 564 12 0 12 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace 0(ffff800000e75000,b,fffffd80739b8328,ffff800032d354e0,1220,0) at 0 rtrequest(b,ffff800032d35588,83,ffff800032d35628,0) at rtrequest+0x9dc sys/net/route.c:1103 rt_match(fffffd8067e454b8,0,1,0) at rt_match+0xc3 rt_clone sys/net/route.c:383 [inline] rt_match(fffffd8067e454b8,0,1,0) at rt_match+0xc3 sys/net/route.c:358 route_mpath(fffffd8067e454a0,fffffd806aeca324,0,0) at route_mpath+0x8b sys/net/route.c:255 in_pcbselsrc(ffff800032d35778,fffffd806aeca320,fffffd8067e45428) at in_pcbselsrc+0x1b7 sys/netinet/in_pcb.c:975 in_pcbconnect(fffffd8067e45428,fffffd806aeca300) at in_pcbconnect+0xe8 sys/netinet/in_pcb.c:523 tcp_connect(fffffd80737e5400,fffffd806aeca300) at tcp_connect+0x29b sys/netinet/tcp_usrreq.c:654 sys_connect(ffff80002a608d08,ffff800032d359a0,ffff800032d358f0) at sys_connect+0x238 sys/kern/uipc_syscalls.c:422 syscall(ffff800032d359a0) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb1655433210, count: -9 ddb> machine ddbcpu 1 No such command ddb> trace 0(ffff800000e75000,b,fffffd80739b8328,ffff800032d354e0,1220,0) at 0 rtrequest(b,ffff800032d35588,83,ffff800032d35628,0) at rtrequest+0x9dc sys/net/route.c:1103 rt_match(fffffd8067e454b8,0,1,0) at rt_match+0xc3 rt_clone sys/net/route.c:383 [inline] rt_match(fffffd8067e454b8,0,1,0) at rt_match+0xc3 sys/net/route.c:358 route_mpath(fffffd8067e454a0,fffffd806aeca324,0,0) at route_mpath+0x8b sys/net/route.c:255 in_pcbselsrc(ffff800032d35778,fffffd806aeca320,fffffd8067e45428) at in_pcbselsrc+0x1b7 sys/netinet/in_pcb.c:975 in_pcbconnect(fffffd8067e45428,fffffd806aeca300) at in_pcbconnect+0xe8 sys/netinet/in_pcb.c:523 tcp_connect(fffffd80737e5400,fffffd806aeca300) at tcp_connect+0x29b sys/netinet/tcp_usrreq.c:654 sys_connect(ffff80002a608d08,ffff800032d359a0,ffff800032d358f0) at sys_connect+0x238 sys/kern/uipc_syscalls.c:422 syscall(ffff800032d359a0) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb1655433210, count: -9