g Ãg Ãuvm_fault(0xfffffd803f00b840, 0x100000008, 0, 2) -> e kernel: page fault trap, code=0 Stopped at arp_rtrequest+0x15f: movq %rcx,0x8(%r15) ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic kernel page fault uvm_fault(0xfffffd803f00b840, 0x100000008, 0, 2) -> e arp_rtrequest() at arp_rtrequest+0x15f sys/netinet/if_ether.c:201 end trace frame: 0xffff800017a1c020, count: 0 ddb> trace arp_rtrequest() at arp_rtrequest+0x15f sys/netinet/if_ether.c:201 rtm_output(ffff8000009e3600,ffff800017a1c0d8,ffff800017a1c030,40,0) at rtm_output+0xbf4 sys/net/rtsock.c:1040 route_output(fffffd802c56a100,fffffd80363e0d88,0,0) at route_output+0x7d7 sys/net/rtsock.c:814 route_usrreq(fffffd80363e0d88,9,fffffd802c56a100,0,0,ffff800014950028) at route_usrreq+0x363 sys/net/rtsock.c:271 sosend(fffffd80363e0d88,0,ffff800017a1c2d0,0,0,48e) at sosend+0x660 sys/kern/uipc_socket.c:513 sendit(ffff800014950028,3,ffff800017a1c3b0,40e,ffff800017a1c4c0) at sendit+0x53c sys/kern/uipc_syscalls.c:662 sys_sendto(ffff800014950028,ffff800017a1c458,ffff800017a1c4c0) at sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 syscall(ffff800017a1c530) at syscall+0x511 Xsyscall(6,0,ffffffffffffffd8,0,6,80f8e5bc010) at Xsyscall+0x128 end of kernel end trace frame: 0x811975f78f0, count: -9 ddb> show registers rdi 0xffffffff812f5717 arp_rtrequest+0x157 rsi 0x197 rbp 0xffff800017a1bf80 rbx 0xffff800000025220 rdx 0x198 rcx 0xdeafbeaddeafbead rax 0xffff800000025228 r8 0x40 r9 0x5 r10 0xffff800000a17140 r11 0x4623f498f5eee96 r12 0xffff8000001722a8 r13 0x2 r14 0xfffffd802e1f4078 r15 0x100000000 rip 0xffffffff812f571f arp_rtrequest+0x15f cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800017a1bf00 ss 0x10 arp_rtrequest+0x15f: movq %rcx,0x8(%r15) ddb> show proc PROC (syz-executor.1) pid=431564 stat=onproc flags process=0 proc=4000000 pri=50, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff8000ffff8260,0xffffffff822ccf20 process=0xffff8000149529f0 user=0xffff800017a17000, vmspace=0xfffffd803f00b840 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 97196 489614 147 0 2 0 syz-executor.1 *97196 431564 147 0 7 0x4000000 syz-executor.1 55561 128307 1092 0 2 0 syz-executor.0 55561 323000 1092 0 2 0x4000000 syz-executor.0 55561 507124 1092 0 3 0x4000000 inode syz-executor.0 1092 351611 12935 0 3 0x82 nanosleep syz-executor.0 147 103733 12935 0 3 0x82 nanosleep syz-executor.1 18687 69644 1 0 3 0x100083 ttyopn getty 28122 76842 0 0 3 0x14200 bored sosplice 12935 268439 68570 0 3 0x82 thrsleep syz-fuzzer 12935 427920 68570 0 3 0x4000082 thrsleep syz-fuzzer 12935 517452 68570 0 3 0x4000082 thrsleep syz-fuzzer 12935 429691 68570 0 3 0x4000082 kqread syz-fuzzer 12935 442984 68570 0 3 0x4000082 thrsleep syz-fuzzer 12935 485713 68570 0 3 0x4000082 thrsleep syz-fuzzer 12935 475411 68570 0 3 0x4000082 thrsleep syz-fuzzer 12935 464661 68570 0 3 0x4000082 thrsleep syz-fuzzer 68570 428419 45477 0 3 0x10008a pause ksh 45477 450510 61776 0 3 0x92 select sshd 61776 466117 1 0 3 0x80 select sshd 99717 316992 64435 73 2 0x100090 syslogd 64435 222652 1 0 3 0x100082 netio syslogd 29089 65200 1 77 3 0x100090 poll dhclient 26011 293272 1 0 3 0x80 poll dhclient 84925 153554 0 0 2 0x14200 zerothread 9865 342000 0 0 3 0x14200 aiodoned aiodoned 30651 24151 0 0 3 0x14200 syncer update 873 438501 0 0 3 0x14200 cleaner cleaner 33133 270615 0 0 3 0x14200 reaper reaper 14802 139656 0 0 3 0x14200 pgdaemon pagedaemon 19739 138201 0 0 3 0x14200 bored crynlk 41498 275793 0 0 3 0x14200 bored crypto 95004 258690 0 0 3 0x40014200 acpi0 acpi0 23989 216913 0 0 3 0x14200 bored softnet 95477 121759 0 0 3 0x14200 bored systqmp 24244 107471 0 0 3 0x14200 bored systq 23401 224918 0 0 3 0x40014200 bored softclock 68018 178896 0 0 3 0x40014200 idle0 56118 111892 0 0 3 0x14200 bored smr 1 293915 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9518 6392K 6916K 78643K 14102 0 0 pcb 24 9K 10K 78643K 903 0 0 rtable 124 5K 5K 78643K 610 0 0 ifaddr 61 13K 14K 78643K 196 0 0 counters 19 16K 16K 78643K 19 0 0 ioctlops 0 0K 2K 78643K 102 0 0 iov 1 8K 28K 78643K 206 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1209 76K 77K 78643K 2820 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 5K 78643K 25 0 0 VM map 2 0K 0K 78643K 2 0 0 sem 12 1K 1K 78643K 44 0 0 dirhash 12 2K 2K 78643K 12 0 0 ACPI 1793 195K 288K 78643K 12537 0 0 file desc 6 17K 25K 78643K 1969 0 0 sigio 0 0K 0K 78643K 26 0 0 proc 42 30K 54K 78643K 649 0 0 subproc 32 2K 2K 78643K 89 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 ip_moptions 0 0K 0K 78643K 190 0 0 in_multi 33 2K 2K 78643K 99 0 0 ether_multi 1 0K 0K 78643K 2 0 0 mrt 0 0K 0K 78643K 2 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 84 371K 371K 78643K 84 0 0 exec 0 0K 1K 78643K 343 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 88 20K 30K 78643K 5443 0 0 UVM aobj 60 7K 7K 78643K 67 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 ip6_options 0 0K 0K 78643K 49 0 0 NDP 17 0K 0K 78643K 57 0 0 temp 179 2715K 2843K 78643K 9068 0 0 kqueue 0 0K 0K 78643K 43 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 12 0 6 1 0 1 1 0 8 0 inpcbpl 280 756 0 749 1 0 1 1 0 8 0 plimitpl 152 56 0 49 1 0 1 1 0 8 0 rtentry 112 88 0 42 2 0 2 2 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 tcpcb 544 240 0 236 1 0 1 1 0 8 0 nd6 48 15 0 9 2 1 1 1 0 8 0 ppxss 1128 25 0 25 9 9 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 368 0 139 17 2 15 15 0 8 0 art_table 32 369 0 139 2 0 2 2 0 8 0 art_node 16 79 0 37 1 0 1 1 0 8 0 sysvmsgpl 40 16 0 6 1 0 1 1 0 8 0 semupl 112 2 0 2 1 1 0 1 0 8 0 semapl 112 42 0 32 1 0 1 1 0 8 0 shmpl 112 65 0 7 2 0 2 2 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 4708 0 3275 47 0 47 47 0 8 0 ffsino 240 4708 0 3275 85 0 85 85 0 8 0 nchpl 144 7599 0 5981 61 0 61 61 0 8 0 uvmvnodes 72 5678 0 0 104 0 104 104 0 8 0 vnodes 200 5678 0 0 299 0 299 299 0 8 0 namei 1024 23480 0 23480 5 4 1 1 0 8 1 scsiplug 64 8 0 8 4 4 0 1 0 8 0 scxspl 192 26932 0 26932 12 11 1 7 0 8 1 sigapl 432 2133 0 2119 2 0 2 2 0 8 0 futexpl 56 29560 0 29560 3 2 1 1 0 8 1 knotepl 112 473 0 454 1 0 1 1 0 8 0 kqueuepl 104 460 0 458 1 0 1 1 0 8 0 pipepl 112 1126 0 1107 3 2 1 2 0 8 0 fdescpl 424 2134 0 2119 2 0 2 2 0 8 0 filepl 120 12182 0 12084 4 0 4 4 0 8 1 lockfpl 104 582 0 581 4 3 1 1 0 8 0 lockfspl 48 202 0 201 4 3 1 1 0 8 0 sessionpl 112 22 0 12 1 0 1 1 0 8 0 pgrppl 48 42 0 32 1 0 1 1 0 8 0 ucredpl 96 2646 0 2639 1 0 1 1 0 8 0 zombiepl 144 2119 0 2119 3 2 1 1 0 8 1 processpl 840 2149 0 2119 4 0 4 4 0 8 0 procpl 600 4569 0 4529 6 2 4 4 0 8 0 sosppl 128 25 0 25 7 7 0 1 0 8 0 sockpl 384 1562 0 1544 5 2 3 3 0 8 1 mcl64k 65536 54 0 54 8 8 0 1 0 8 0 mcl16k 16384 7 0 7 6 6 0 1 0 8 0 mcl12k 12288 27 0 27 8 8 0 1 0 8 0 mcl9k 9216 34 0 34 8 8 0 1 0 8 0 mcl8k 8192 24 0 24 12 12 0 1 0 8 0 mcl4k 4096 80 0 80 5 5 0 1 0 8 0 mcl2k2 2112 8 0 8 5 5 0 1 0 8 0 mcl2k 2048 55737 0 55695 14 8 6 11 0 8 0 mtagpl 80 2 0 2 1 1 0 1 0 8 0 mbufpl 256 100049 0 99943 11 4 7 9 0 8 0 bufpl 256 11375 0 5675 357 0 357 357 0 8 0 anonpl 16 186873 0 179037 114 72 42 59 0 62 0 amapchunkpl 152 9333 0 9243 44 39 5 14 0 158 1 amappl16 192 11035 0 10489 79 51 28 39 0 8 0 amappl15 184 4 0 2 1 0 1 1 0 8 0 amappl14 176 56 0 53 2 1 1 1 0 8 0 amappl13 168 14 0 12 2 1 1 1 0 8 0 amappl12 160 155 0 152 1 0 1 1 0 8 0 amappl11 152 61 0 47 1 0 1 1 0 8 0 amappl10 144 69 0 68 2 1 1 1 0 8 0 amappl9 136 1533 0 1530 1 0 1 1 0 8 0 amappl8 128 1087 0 1072 1 0 1 1 0 8 0 amappl7 120 44 0 40 1 0 1 1 0 8 0 amappl6 112 58 0 52 1 0 1 1 0 8 0 amappl5 104 336 0 325 1 0 1 1 0 8 0 amappl4 96 2104 0 2082 1 0 1 1 0 8 0 amappl3 88 538 0 524 1 0 1 1 0 8 0 amappl2 80 15902 0 15827 4 2 2 3 0 8 0 amappl1 72 46562 0 46126 23 13 10 19 0 8 0 amappl 80 4853 0 4817 1 0 1 1 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma64 64 259 0 259 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 17 0 17 1 1 0 1 0 8 0 aobjpl 64 66 0 7 1 0 1 1 0 8 0 uaddrrnd 24 2134 0 2119 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2134 0 2119 1 0 1 1 0 8 0 vmmpekpl 168 16753 0 16727 2 0 2 2 0 8 0 vmmpepl 168 217700 0 216092 150 63 87 87 0 357 17 vmsppl 264 2133 0 2119 3 1 2 2 0 8 1 pdppl 4096 4275 0 4238 7 1 6 6 0 8 1 pvpl 32 575288 0 564239 330 123 207 250 0 265 98 pmappl 200 2133 0 2119 1 0 1 1 0 8 0 extentpl 40 41 0 26 1 0 1 1 0 8 0 phpool 112 534 0 52 14 0 14 14 0 8 0