uvm_fault(0xfffffd80770e5120, 0x4, 0, 1) -> e kernel: page fault trap, code=0 Stopped at igmp_leavegroup+0xaf: movl 0x4(%rax),%r12d TID PID UID PRFLAGS PFLAGS CPU COMMAND igmp_leavegroup(ffff800000cdb200,ffff8000006b5000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000cdb200) at in_delmulti+0xd4 sys/netinet/in.c:926 ip_freemoptions(ffff800000c0e970) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd8077d11d68) at in_pcbdetach+0xfc sys/netinet/in_pcb.c:585 tcp_close(ffff800000d6a2f0) at tcp_close+0x13d sys/netinet/tcp_subr.c:526 tcp_detach(fffffd806e4c6e10) at tcp_detach+0x67 sys/netinet/tcp_usrreq.c:665 soclose(fffffd806e4c6e10,0) at soclose+0x245 sys/kern/uipc_socket.c:351 soo_close(fffffd8066558b58,ffff80002164f7b0) at soo_close+0x40 fdrop(fffffd8066558b58,ffff80002164f7b0) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd8066558b58,ffff80002164f7b0) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff80002164f7b0) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff80002164f7b0,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff80002164f7b0,ffff800029795970,ffff8000297959d0) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff800029795a40) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 end trace frame: 0xffff800029795ac0, count: 0 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd80770e5120, 0x4, 0, 1) -> e ddb> trace igmp_leavegroup(ffff800000cdb200,ffff8000006b5000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000cdb200) at in_delmulti+0xd4 sys/netinet/in.c:926 ip_freemoptions(ffff800000c0e970) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd8077d11d68) at in_pcbdetach+0xfc sys/netinet/in_pcb.c:585 tcp_close(ffff800000d6a2f0) at tcp_close+0x13d sys/netinet/tcp_subr.c:526 tcp_detach(fffffd806e4c6e10) at tcp_detach+0x67 sys/netinet/tcp_usrreq.c:665 soclose(fffffd806e4c6e10,0) at soclose+0x245 sys/kern/uipc_socket.c:351 soo_close(fffffd8066558b58,ffff80002164f7b0) at soo_close+0x40 fdrop(fffffd8066558b58,ffff80002164f7b0) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd8066558b58,ffff80002164f7b0) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff80002164f7b0) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff80002164f7b0,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff80002164f7b0,ffff800029795970,ffff8000297959d0) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff800029795a40) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffc2440, count: -15 ddb> show registers rdi 0 rsi 0 rbp 0xffff800029795580 rbx 0 rdx 0 rcx 0x1 rax 0 r8 0 r9 0 r10 0xfcd6b9463cab9dbb r11 0x68c0fbdd318deada r12 0 r13 0x3 r14 0xffff800000cdb200 r15 0xffff8000006b5000 rip 0xffffffff81e8d77f igmp_leavegroup+0xaf cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800029795550 ss 0x10 igmp_leavegroup+0xaf: movl 0x4(%rax),%r12d ddb> show proc PROC (syz-executor.4) pid=489936 stat=onproc flags process=1008 proc=2000 pri=32, usrpri=86, nice=20 forw=0xffffffffffffffff, list=0xffff80002164e2b0,0xffff80002164efe0 process=0xffff8000265327f8 user=0xffff800029790000, vmspace=0xfffffd80770e5120 estcpu=36, cpticks=3, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 50220 434427 64551 0 2 0 syz-executor.0 50220 102912 64551 0 3 0x4000080 fsleep syz-executor.0 52339 496322 13534 0 2 0 syz-executor.7 52339 400648 13534 0 3 0x4000080 fsleep syz-executor.7 38765 340153 56381 0 2 0 syz-executor.6 38765 459488 56381 0 3 0x4000080 fsleep syz-executor.6 56718 511975 79810 0 2 0x482 syz-executor.3 72409 270699 79810 0 2 0x482 syz-executor.4 64551 131269 79810 0 3 0x82 nanoslp syz-executor.0 15042 75471 79810 0 2 0x482 syz-executor.2 26435 518978 79810 0 2 0x2 syz-executor.5 13534 265413 79810 0 2 0x482 syz-executor.7 22140 283731 79810 0 2 0x482 syz-executor.1 56381 45564 79810 0 3 0x82 nanoslp syz-executor.6 58649 13698 0 0 3 0x14200 acct acct 14857 74588 1 0 3 0x100083 ttyin getty 41735 271755 0 0 3 0x14280 nfsidl nfsio 26377 443289 0 0 3 0x14280 nfsidl nfsio 83748 17279 0 0 3 0x14280 nfsidl nfsio 88368 212560 0 0 3 0x14280 nfsidl nfsio 92140 444387 0 0 3 0x14280 nfsidl nfsio 25675 276642 0 0 3 0x14280 nfsidl nfsio 60796 492826 0 0 3 0x14280 nfsidl nfsio 50760 308089 0 0 3 0x14280 nfsidl nfsio 78938 129462 0 0 3 0x14280 nfsidl nfsio 9625 55143 0 0 3 0x14280 nfsidl nfsio 80433 515350 0 0 3 0x14280 nfsidl nfsio 7452 431714 0 0 3 0x14280 nfsidl nfsio 11407 401727 0 0 3 0x14280 nfsidl nfsio 99104 460213 0 0 3 0x14280 nfsidl nfsio 91693 475634 0 0 3 0x14280 nfsidl nfsio 75074 420011 0 0 3 0x14280 nfsidl nfsio 38841 366467 0 0 3 0x14280 nfsidl nfsio 7423 478803 0 0 3 0x14280 nfsidl nfsio 91369 136267 0 0 3 0x14280 nfsidl nfsio 12761 478316 0 0 3 0x14280 nfsidl nfsio 73429 87522 0 0 3 0x14200 bored sosplice 79810 150900 74346 0 3 0x82 thrsleep syz-fuzzer 79810 62305 74346 0 2 0x4000482 syz-fuzzer 79810 289558 74346 0 3 0x4000082 thrsleep syz-fuzzer 79810 443375 74346 0 3 0x4000082 thrsleep syz-fuzzer 79810 265142 74346 0 3 0x4000082 thrsleep syz-fuzzer 79810 481462 74346 0 3 0x4000082 kqread syz-fuzzer 79810 391962 74346 0 3 0x4000082 thrsleep syz-fuzzer 79810 35604 74346 0 3 0x4000082 thrsleep syz-fuzzer 79810 368944 74346 0 3 0x4000082 thrsleep syz-fuzzer 74346 350206 68556 0 3 0x10008a sigsusp ksh 68556 358666 54718 0 3 0x9a kqread sshd 54718 193027 1 0 3 0x88 kqread sshd 50611 344503 64449 73 3 0x1100090 kqread syslogd 64449 54220 1 0 3 0x100082 netio syslogd 41986 373564 1 0 3 0x100080 kqread resolvd 12876 167000 45254 77 3 0x100092 kqread dhcpleased 84264 346207 45254 77 3 0x100092 kqread dhcpleased 45254 284492 1 0 3 0x80 kqread dhcpleased 31243 476701 0 0 3 0x14200 bored smr 19861 135169 0 0 2 0x14200 zerothread 47681 509415 0 0 3 0x14200 aiodoned aiodoned 71679 187201 0 0 3 0x14200 syncer update 18532 135506 0 0 3 0x14200 cleaner cleaner 1885 2900 0 0 3 0x14200 reaper reaper 21708 109328 0 0 3 0x14200 pgdaemon pagedaemon 32571 230640 0 0 3 0x14200 bored viomb 6368 270007 0 0 3 0x40014200 acpi0 acpi0 83794 225848 0 0 3 0x14200 bored softnet 10163 378596 0 0 3 0x14200 bored systqmp 74362 106267 0 0 3 0x14200 bored systq 59208 27792 0 0 2 0x40014200 softclock 24876 461423 0 0 3 0x40014200 idle0 1 459199 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10177 6436K 7404K 78643K 37575 0 pcb 14 22K 26K 78643K 1747 0 rtable 223 17K 20K 78643K 3531 0 ifaddr 100 24K 25K 78643K 1318 0 sysctl 3 1K 1K 78643K 3 0 counters 27 17K 17K 78643K 181 0 ioctlops 0 0K 4K 78643K 4802 0 iov 0 0K 28K 78643K 1634 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1481 93K 93K 78643K 11016 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 103 0 VM map 2 0K 0K 78643K 2 0 sem 12 1K 1K 78643K 296 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 14 49K 85K 78643K 12668 0 sigio 0 0K 0K 78643K 166 0 proc 60 55K 71K 78643K 2216 0 subproc 104 6K 6K 78643K 719 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 2 0K 1K 78643K 11094 0 in_multi 91 5K 7K 78643K 2202 0 ether_multi 1 0K 0K 78643K 115 0 mrt 2 0K 0K 78643K 20 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 91 413K 413K 78643K 91 0 exec 0 0K 2K 78643K 3054 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 515 900K 901K 78643K 154261 0 UVM aobj 131 4K 4K 78643K 137 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 2 0K 0K 78643K 1231 0 NDP 12 0K 2K 78643K 294 0 temp 158 4765K 5071K 78643K 249829 0 kqueue 12 18K 28K 78643K 937 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 1246 0 1243 21 18 3 5 0 8 2 rtentry 112 827 0 737 4 1 3 4 0 8 0 unpcb 136 10189 0 10176 98 92 6 9 0 8 5 syncache 296 53 0 53 15 15 0 1 0 8 0 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpqe 32 14 0 14 5 5 0 1 0 8 0 tcpcb 736 14707 0 14553 341 327 14 22 0 8 0 arp 88 139 0 123 1 0 1 1 0 8 0 ipq 40 62 0 62 7 6 1 1 0 8 1 ipqe 40 280 0 280 7 6 1 1 0 8 1 inpcb 312 24394 0 24384 218 207 11 16 0 8 10 rttmr 72 3 0 3 1 1 0 1 0 8 0 ip6q 72 5 0 5 2 2 0 1 0 8 0 ip6af 40 13 0 13 2 2 0 1 0 8 0 nd6 48 199 0 179 1 0 1 1 0 8 0 pkpcb 40 31 0 31 7 7 0 1 0 8 0 kcovpl 48 55 0 47 1 0 1 1 0 8 0 ppxss 1152 54 0 54 10 10 0 1 0 8 0 pfstscr 40 77 0 62 1 0 1 1 0 8 0 pfosfp 40 17 0 14 1 0 1 1 0 8 0 pfosfpen 112 17 0 3 1 0 1 1 0 8 0 pfrktable 1344 412 0 407 4 3 1 1 0 8 0 pftag 88 17 0 11 1 0 1 1 0 8 0 pfstitem 24 110 0 87 1 0 1 1 0 8 0 pfstkey 112 178 0 169 1 0 1 1 0 8 0 pfstate 320 110 0 98 1 0 1 1 0 8 0 pfrule 1360 1058 0 1004 16 10 6 6 0 8 1 art_heap8 4096 6 0 5 4 3 1 3 0 8 0 art_heap4 256 3467 0 3074 56 28 28 33 0 8 0 art_table 32 3473 0 3079 5 1 4 5 0 8 0 art_node 16 826 0 747 1 0 1 1 0 8 0 sysvmsgpl 40 7 0 1 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 293 0 283 1 0 1 1 0 8 0 shmpl 112 134 0 6 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 19069 0 17565 95 0 95 95 0 8 0 ffsino 240 19069 0 17565 89 0 89 89 0 8 0 nchpl 144 35807 0 34188 63 1 62 63 0 8 0 uvmvnodes 80 6175 0 0 127 0 127 127 0 8 0 vnodes 224 6175 0 0 364 0 364 364 0 8 0 namei 1024 131450 0 131450 11 10 1 2 0 8 1 vcpupl 1984 196 0 0 25 0 25 25 0 8 0 vmpool 528 217 0 21 14 0 14 14 0 8 0 pfiaddrpl 120 98 0 91 7 6 1 1 0 8 0 scsiplug 72 6 0 6 2 2 0 1 0 8 0 scxspl 216 99974 0 99974 31 27 4 8 0 8 4 plimitpl 152 1204 0 1190 1 0 1 1 0 8 0 sigapl 424 12875 0 12812 9 1 8 8 0 8 0 futexpl 64 134636 0 134633 8 7 1 1 0 8 0 knotepl 120 149119 0 149039 76 69 7 11 0 8 4 kqueuepl 184 3804 0 3796 59 57 2 4 0 8 1 pipepl 304 3025 0 2997 79 71 8 12 0 8 5 fdescpl 432 12838 0 12813 4 0 4 4 0 8 0 filepl 120 107174 0 106932 145 131 14 19 0 8 6 lockfpl 104 4292 0 4289 12 11 1 2 0 8 0 lockfspl 48 1024 0 1021 1 0 1 1 0 8 0 sessionpl 144 72 0 56 1 0 1 1 0 8 0 pgrppl 48 243 0 227 1 0 1 1 0 8 0 ucredpl 96 15371 0 15358 1 0 1 1 0 8 0 zombiepl 144 12816 0 12812 7 6 1 1 0 8 0 processpl 1000 12875 0 12812 12 3 9 9 0 8 0 procpl 672 31958 0 31884 25 17 8 9 0 8 0 sosppl 168 62 0 62 14 14 0 1 0 8 0 sockpl 448 35933 0 35907 608 590 18 36 0 8 14 mcl64k 65536 496 0 496 32 31 1 1 0 8 1 mcl16k 16384 90 0 90 32 31 1 1 0 8 1 mcl12k 12288 355 0 355 34 33 1 1 0 8 1 mcl9k 9216 244 0 244 38 37 1 1 0 8 1 mcl8k 8192 727 0 727 28 27 1 1 0 8 1 mcl4k 4096 1418 0 1418 19 18 1 1 0 8 1 mcl2k2 2112 100 0 100 35 35 0 1 0 8 0 mcl2k 2048 101983 0 101928 28 19 9 10 0 8 1 mtagpl 96 3374 0 3291 25 19 6 13 0 8 0 mbufpl 256 267434 0 267129 152 121 31 76 0 8 0 bufpl 288 26889 0 20481 458 0 458 458 0 8 0 anonpl 24 3761974 0 3734721 427 240 187 188 0 188 12 amapchunkpl 152 384052 0 382881 152 102 50 54 0 158 1 amappl16 200 46986 0 46181 222 167 55 67 0 8 7 amappl15 192 5075 0 5070 1 0 1 1 0 8 0 amappl14 184 1501 0 1497 1 0 1 1 0 8 0 amappl13 176 1757 0 1755 1 0 1 1 0 8 0 amappl12 168 1400 0 1396 2 1 1 1 0 8 0 amappl11 160 580 0 566 1 0 1 1 0 8 0 amappl10 152 863 0 857 1 0 1 1 0 8 0 amappl9 144 1262 0 1257 1 0 1 1 0 8 0 amappl8 136 3773 0 3652 5 0 5 5 0 8 0 amappl7 128 2335 0 2323 1 0 1 1 0 8 0 amappl6 120 1151 0 1126 2 1 1 2 0 8 0 amappl5 112 10630 0 10615 1 0 1 1 0 8 0 amappl4 104 3940 0 3894 2 0 2 2 0 8 0 amappl3 96 2674 0 2656 1 0 1 1 0 8 0 amappl2 88 4056 0 3995 3 1 2 3 0 8 0 amappl1 80 226272 0 225733 18 5 13 18 0 8 0 amappl 88 152666 0 152385 11 3 8 8 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 136 0 6 3 0 3 3 0 8 0 uaddrrnd 24 13055 0 12834 2 0 2 2 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 13055 0 12834 2 0 2 2 0 8 0 vmmpekpl 168 89260 0 89178 6 2 4 4 0 8 0 vmmpepl 168 1176001 0 1173088 300 152 148 152 0 357 0 vmsppl 272 13054 0 12834 16 1 15 15 0 8 0 rwobjpl 24 288255 0 280079 54 3 51 51 0 8 0 pdppl 4096 26116 0 25864 974 714 260 260 0 8 8 pvpl 32 6055266 0 6032058 563 331 232 244 0 265 25 pmappl 216 13054 0 12834 17 4 13 13 0 8 0 extentpl 40 58 0 38 1 0 1 1 0 8 0 phpool 112 3183 0 2139 30 0 30 30 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace igmp_leavegroup(ffff800000cdb200,ffff8000006b5000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000cdb200) at in_delmulti+0xd4 sys/netinet/in.c:926 ip_freemoptions(ffff800000c0e970) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd8077d11d68) at in_pcbdetach+0xfc sys/netinet/in_pcb.c:585 tcp_close(ffff800000d6a2f0) at tcp_close+0x13d sys/netinet/tcp_subr.c:526 tcp_detach(fffffd806e4c6e10) at tcp_detach+0x67 sys/netinet/tcp_usrreq.c:665 soclose(fffffd806e4c6e10,0) at soclose+0x245 sys/kern/uipc_socket.c:351 soo_close(fffffd8066558b58,ffff80002164f7b0) at soo_close+0x40 fdrop(fffffd8066558b58,ffff80002164f7b0) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd8066558b58,ffff80002164f7b0) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff80002164f7b0) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff80002164f7b0,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff80002164f7b0,ffff800029795970,ffff8000297959d0) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff800029795a40) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffc2440, count: -15 ddb> machine ddbcpu 1 No such command ddb> trace igmp_leavegroup(ffff800000cdb200,ffff8000006b5000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000cdb200) at in_delmulti+0xd4 sys/netinet/in.c:926 ip_freemoptions(ffff800000c0e970) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd8077d11d68) at in_pcbdetach+0xfc sys/netinet/in_pcb.c:585 tcp_close(ffff800000d6a2f0) at tcp_close+0x13d sys/netinet/tcp_subr.c:526 tcp_detach(fffffd806e4c6e10) at tcp_detach+0x67 sys/netinet/tcp_usrreq.c:665 soclose(fffffd806e4c6e10,0) at soclose+0x245 sys/kern/uipc_socket.c:351 soo_close(fffffd8066558b58,ffff80002164f7b0) at soo_close+0x40 fdrop(fffffd8066558b58,ffff80002164f7b0) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd8066558b58,ffff80002164f7b0) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff80002164f7b0) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff80002164f7b0,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff80002164f7b0,ffff800029795970,ffff8000297959d0) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff800029795a40) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffc2440, count: -15