login: uvm_fault(0xffffffff825417a8, 0xffff800000a4b000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic kernel page fault uvm_fault(0xffffffff825417a8, 0xffff800000a4b000, 0, 1) -> e memcpy() at memcpy+0x15 end trace frame: 0xffff800020ea7300, count: 0 ddb{1}> trace memcpy() at memcpy+0x15 sysctl_iflist(0,ffff800020ea7358) at sysctl_iflist+0x255 sys/net/rtsock.c:1979 sysctl_rtable(ffff800020ea741c,3,12a520e10000,ffff800020ea7448,0,0) at sysctl_rtable+0x196 sys/net/rtsock.c:2076 sys_sysctl(ffff800020e6c758,ffff800020ea74b0,ffff800020ea7500) at sys_sysctl+0x20e sys/kern/kern_sysctl.c:252 syscall(ffff800020ea7580) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800020ea7580) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffeb8f0, count: -6 ddb{1}> show registers rdi 0xffff800000a362e8 rsi 0xffff800000a4b000 rbp 0xffff800020ea7200 rbx 0xe8 rdx 0xe8 rcx 0x5 rax 0xfffffffffffeb2e8 r8 0xffff800020ea7358 r9 0x5 r10 0x3bbf3ffa38ffdb74 r11 0xffff800000a36228 r12 0xffff800000a4af40 r13 0xe8 r14 0xffff800000a36228 r15 0x6 rip 0xffffffff812e0bb5 memcpy+0x15 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff800020ea7148 ss 0x10 memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> show proc PROC (dhclient) pid=86191 stat=onproc flags process=100010 proc=0 pri=24, usrpri=51, nice=20 forw=0xffffffffffffffff, list=0xffff800020e6c008,0xffff800020edfd60 process=0xffff800020e80f70 user=0xffff800020ea2000, vmspace=0xfffffd807efff2e0 estcpu=1, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 21320 303565 61432 0 7 0 syz-executor.0 21320 82958 61432 0 2 0x4000000 syz-executor.0 80791 431248 0 0 3 0x14200 bored sosplice 16848 98440 49213 0 3 0x82 nanosleep syz-executor.1 61432 300399 49213 0 3 0x82 nanosleep syz-executor.0 49213 516207 94270 0 3 0x82 thrsleep syz-fuzzer 49213 376473 94270 0 3 0x4000082 thrsleep syz-fuzzer 49213 306361 94270 0 3 0x4000082 thrsleep syz-fuzzer 49213 155029 94270 0 3 0x4000082 thrsleep syz-fuzzer 49213 130819 94270 0 3 0x4000082 thrsleep syz-fuzzer 49213 194010 94270 0 3 0x4000082 kqread syz-fuzzer 49213 277462 94270 0 3 0x4000082 thrsleep syz-fuzzer 49213 170568 94270 0 3 0x4000082 thrsleep syz-fuzzer 49213 347225 94270 0 3 0x4000082 thrsleep syz-fuzzer 49213 469635 94270 0 3 0x4000082 thrsleep syz-fuzzer 94270 47219 4260 0 3 0x10008a pause ksh 4260 144417 61547 0 3 0x92 select sshd 69322 178966 1 0 3 0x100083 ttyin getty 61547 133431 1 0 3 0x80 select sshd 63654 251392 86228 74 3 0x100092 bpf pflogd 86228 295969 1 0 3 0x80 netio pflogd 59338 397303 63710 73 3 0x100090 kqread syslogd 63710 65121 1 0 3 0x100082 netio syslogd *78808 86191 1 77 7 0x100010 dhclient 98536 396850 1 0 3 0x80 poll dhclient 52123 314563 0 0 3 0x14200 bored smr 94455 413429 0 0 3 0x14200 pgzero zerothread 95820 48925 0 0 3 0x14200 aiodoned aiodoned 13383 203232 0 0 3 0x14200 syncer update 60750 334384 0 0 3 0x14200 cleaner cleaner 83410 292331 0 0 3 0x14200 reaper reaper 65988 329599 0 0 3 0x14200 pgdaemon pagedaemon 57773 274075 0 0 3 0x14200 bored crynlk 85563 242097 0 0 3 0x14200 bored crypto 63594 362721 0 0 3 0x40014200 acpi0 acpi0 8414 339359 0 0 3 0x40014200 idle1 64083 88116 0 0 3 0x14200 bored softnet 90613 182370 0 0 3 0x14200 bored systqmp 45181 385980 0 0 3 0x14200 bored systq 31384 295184 0 0 3 0x40014200 bored softclock 96262 503992 0 0 3 0x40014200 idle0 1 408220 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 78808 (dhclient) thread 0xffff800020e6c758 (86191) exclusive rwlock netlock r = 0 (0xffffffff824ad988) #0 witness_lock+0x4c7 stacktrace_save sys/sys/stacktrace.h:36 [inline] #0 witness_lock+0x4c7 sys/kern/subr_witness.c:1164 #1 sysctl_rtable+0x187 sys/net/rtsock.c:2075 #2 sys_sysctl+0x20e sys/kern/kern_sysctl.c:252 #3 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #3 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #4 Xsyscall+0x128 exclusive rwlock sysctllk r = 0 (0xffffffff8253c180) #0 witness_lock+0x4c7 stacktrace_save sys/sys/stacktrace.h:36 [inline] #0 witness_lock+0x4c7 sys/kern/subr_witness.c:1164 #1 rw_enter+0x453 sys/kern/kern_rwlock.c:311 #2 sys_sysctl+0x1ac sys/kern/kern_sysctl.c:236 #3 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #3 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #4 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 1 (0xffffffff82665700) #0 witness_lock+0x4c7 stacktrace_save sys/sys/stacktrace.h:36 [inline] #0 witness_lock+0x4c7 sys/kern/subr_witness.c:1164 #1 syscall+0x400 mi_syscall sys/sys/syscall_mi.h:93 [inline] #1 syscall+0x400 sys/arch/amd64/amd64/trap.c:570 #2 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9498 6411K 6786K 78643K 10780 0 pcb 14 8K 8K 78643K 146 0 rtable 98 3K 3K 78643K 233 0 ifaddr 67 14K 15K 78643K 83 0 counters 43 33K 34K 78643K 45 0 ioctlops 0 0K 4K 78643K 1475 0 iov 0 0K 16K 78643K 18 0 mount 1 1K 1K 78643K 1 0 vnodes 1222 77K 77K 78643K 1289 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 3 0 VM map 2 1K 1K 78643K 2 0 sem 12 1K 1K 78643K 40 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1824 197K 290K 78643K 13058 0 file desc 5 13K 25K 78643K 161 0 sigio 0 0K 0K 78643K 4 0 proc 61 63K 95K 78643K 448 0 subproc 32 2K 2K 78643K 34 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 19 0 in_multi 67 3K 3K 78643K 80 0 ether_multi 1 0K 0K 78643K 6 0 mrt 0 0K 0K 78643K 5 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 43 201K 201K 78643K 43 0 exec 0 0K 1K 78643K 215 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 109 22K 38K 78643K 1453 0 UVM aobj 4 4K 4K 78643K 4 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 28 0 NDP 9 0K 0K 78643K 14 0 temp 88 3046K 3110K 78643K 3219 0 kqueue 4 5K 9K 78643K 15 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 6 0 2 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 80 37 0 35 1 0 1 1 0 8 0 rtentry 112 48 0 8 2 0 2 2 0 8 0 unpcb 120 121 0 111 1 0 1 1 0 8 0 syncache 264 5 0 5 2 1 1 1 0 8 1 tcpqe 32 260 0 260 1 1 0 1 0 8 0 tcpcb 544 53 0 48 1 0 1 1 0 8 0 inpcb 280 287 0 278 2 0 2 2 0 8 1 rttmr 72 2 0 2 1 0 1 1 0 8 1 nd6 48 7 0 1 1 0 1 1 0 8 0 pkpcb 40 4 0 4 1 0 1 1 0 8 1 pffrag 232 3 0 2 1 0 1 1 0 482 0 pffrnode 88 3 0 2 1 0 1 1 0 8 0 pffrent 40 92 0 91 1 0 1 1 0 8 0 pfosfp 40 846 0 423 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 36 0 3 1 0 1 1 0 8 0 pfstkey 112 36 0 3 1 0 1 1 0 8 0 pfstate 328 36 0 3 3 0 3 3 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 203 0 19 13 0 13 13 0 8 1 art_table 32 204 0 19 2 0 2 2 0 8 0 art_node 16 47 0 11 1 0 1 1 0 8 0 sysvmsgpl 40 6 0 1 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 30 0 20 1 0 1 1 0 8 0 shmpl 112 2 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1604 0 197 89 0 89 89 0 8 0 ffsino 272 1604 0 197 94 0 94 94 0 8 0 nchpl 144 1991 0 384 60 0 60 60 0 8 0 uvmvnodes 72 1691 0 0 31 0 31 31 0 8 0 vnodes 208 1691 0 0 89 0 89 89 0 8 0 namei 1024 5568 0 5568 1 0 1 1 0 8 1 percpumem 16 33 0 1 1 0 1 1 0 8 0 scxspl 192 5494 0 5494 5 3 2 3 0 8 2 plimitpl 152 31 0 23 1 0 1 1 0 8 0 sigapl 424 377 0 345 4 0 4 4 0 8 0 futexpl 56 2295 0 2295 1 0 1 1 0 8 1 knotepl 112 73 0 54 1 0 1 1 0 8 0 kqueuepl 144 27 0 24 1 0 1 1 0 8 0 pipelkpl 48 93 0 83 1 0 1 1 0 8 0 pipepl 120 186 0 167 1 0 1 1 0 8 0 fdescpl 496 361 0 345 3 0 3 3 0 8 0 filepl 152 2219 0 2117 5 0 5 5 0 8 1 lockfpl 104 49 0 48 1 0 1 1 0 8 0 lockfspl 48 20 0 19 1 0 1 1 0 8 0 sessionpl 112 18 0 7 1 0 1 1 0 8 0 pgrppl 48 20 0 9 1 0 1 1 0 8 0 ucredpl 96 389 0 380 1 0 1 1 0 8 0 zombiepl 144 345 0 344 1 0 1 1 0 8 0 processpl 984 377 0 344 5 0 5 5 0 8 0 procpl 624 682 0 639 4 0 4 4 0 8 0 sosppl 128 4 0 4 1 0 1 1 0 8 1 sockpl 400 453 0 432 4 0 4 4 0 8 1 mcl64k 65536 7 0 0 1 0 1 1 0 8 0 mcl12k 12288 1 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 3 0 0 1 0 1 1 0 8 0 mcl4k 4096 4 0 0 1 0 1 1 0 8 0 mcl2k 2048 250 0 0 31 0 31 31 0 8 0 mtagpl 80 15 0 0 1 0 1 1 0 8 0 mbufpl 256 294 0 0 17 0 17 17 0 8 0 bufpl 280 3591 0 133 247 0 247 247 0 8 0 anonpl 16 44640 0 31186 56 1 55 55 0 124 0 amapchunkpl 152 2190 0 2057 19 10 9 19 0 158 1 amappl16 192 1343 0 625 37 0 37 37 0 8 0 amappl15 184 11 0 8 1 0 1 1 0 8 0 amappl14 176 90 0 85 1 0 1 1 0 8 0 amappl13 168 90 0 88 1 0 1 1 0 8 0 amappl12 160 8 0 4 1 0 1 1 0 8 0 amappl11 152 52 0 37 1 0 1 1 0 8 0 amappl10 144 17 0 13 1 0 1 1 0 8 0 amappl9 136 435 0 432 1 0 1 1 0 8 0 amappl8 128 396 0 370 1 0 1 1 0 8 0 amappl7 120 116 0 105 1 0 1 1 0 8 0 amappl6 112 26 0 22 1 0 1 1 0 8 0 amappl5 104 224 0 208 1 0 1 1 0 8 0 amappl4 96 552 0 522 1 0 1 1 0 8 0 amappl3 88 170 0 163 1 0 1 1 0 8 0 amappl2 80 1916 0 1845 2 0 2 2 0 8 0 amappl1 72 17967 0 17524 23 13 10 18 0 8 0 amappl 80 941 0 897 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 3 0 0 1 0 1 1 0 8 0 uaddrrnd 24 361 0 345 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 361 0 345 1 0 1 1 0 8 0 vmmpekpl 168 6750 0 6713 2 0 2 2 0 8 0 vmmpepl 168 50255 0 48399 106 17 89 99 0 357 2 vmsppl 368 360 0 345 2 0 2 2 0 8 0 pdppl 4096 730 0 690 6 0 6 6 0 8 0 pvpl 32 160035 0 143357 142 1 141 141 0 265 4 pmappl 232 360 0 345 2 1 1 2 0 8 0 extentpl 40 53 0 36 1 0 1 1 0 8 0 phpool 112 273 0 3 8 0 8 8 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff824d9ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:352 x86_ipi_handler() at x86_ipi_handler+0xc6 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __mp_lock(ffffffff826654f8) at __mp_lock+0x127 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff826654f8) at __mp_lock+0x127 sys/kern/kern_lock.c:147 softintr_dispatch(0) at softintr_dispatch+0x4e sys/arch/amd64/amd64/softintr.c:89 Xsoftclock() at Xsoftclock+0x1f end of kernel end trace frame: 0x7f7fffff0d80, count: -6 ddb{0}> machine ddbcpu 1 Stopped at memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> trace memcpy() at memcpy+0x15 sysctl_iflist(0,ffff800020ea7358) at sysctl_iflist+0x255 sys/net/rtsock.c:1979 sysctl_rtable(ffff800020ea741c,3,12a520e10000,ffff800020ea7448,0,0) at sysctl_rtable+0x196 sys/net/rtsock.c:2076 sys_sysctl(ffff800020e6c758,ffff800020ea74b0,ffff800020ea7500) at sys_sysctl+0x20e sys/kern/kern_sysctl.c:252 syscall(ffff800020ea7580) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800020ea7580) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffeb8f0, count: -6