uvm_fault(0xfffffd806bc09330, 0x7b8, 0, 1) -> e kernel: page fault trap, code=0 Stopped at pfsync_state_import+0x10f: movq 0(%r15,%rbx,8),%r15 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic kernel page fault uvm_fault(0xfffffd806bc09330, 0x7b8, 0, 1) -> e pfsync_state_import(ffff800000aaee00,1) at pfsync_state_import+0x10f sys/net/if_pfsync.c:518 end trace frame: 0xffff80001e7c4d50, count: 0 ddb> trace pfsync_state_import(ffff800000aaee00,1) at pfsync_state_import+0x10f sys/net/if_pfsync.c:518 pfioctl(4900,c1084425,ffff800000aaee00,3,ffff80001d75d618) at pfioctl+0x284a sys/net/pf_ioctl.c:1686 VOP_IOCTL(fffffd806779d1a0,c1084425,ffff800000aaee00,3,fffffd806c3bf960,ffff80001d75d618) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:290 vn_ioctl(fffffd805777ee20,c1084425,ffff800000aaee00,ffff80001d75d618) at vn_ioctl+0xb5 sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80001d75d618,ffff80001e7c5038,ffff80001e7c5080) at sys_ioctl+0x4a1 syscall(ffff80001e7c5100) at syscall+0x507 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf7f2b21ad70, count: -7 ddb> show registers rdi 0xffffffff821ecf2f pfsync_state_import+0x10f rsi 0x456 rbp 0xffff80001e7c4bf0 rbx 0xf7 rdx 0x457 rcx 0xffff80001d7a6000 rax 0xffff80001d7a6000 r8 0xf8 r9 0x7 r10 0x611da9e40ab329e6 r11 0xef37c8dcd3140fc9 r12 0xffff800000bcdc00 r13 0xffff800000aaee00 r14 0x1 r15 0 rip 0xffffffff821ecf2f pfsync_state_import+0x10f cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80001e7c4b70 ss 0x10 pfsync_state_import+0x10f: movq 0(%r15,%rbx,8),%r15 ddb> show proc PROC (syz-executor.1) pid=434924 stat=onproc flags process=0 proc=4000000 pri=32, usrpri=78, nice=20 forw=0xffffffffffffffff, list=0xffff80001d75c778,0xffffffff82847870 process=0xffff80001d79e030 user=0xffff80001e7c0000, vmspace=0xfffffd806bc09330 estcpu=36, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 55823 399252 95235 0 2 0 syz-executor.1 *55823 434924 95235 0 7 0x4000000 syz-executor.1 88493 130323 0 0 3 0x14280 nfsidl nfsio 65275 204742 0 0 3 0x14280 nfsidl nfsio 52757 244338 0 0 3 0x14280 nfsidl nfsio 85269 373948 0 0 3 0x14280 nfsidl nfsio 59470 124151 0 0 3 0x14280 nfsidl nfsio 51635 213642 0 0 3 0x14280 nfsidl nfsio 97476 396139 0 0 3 0x14280 nfsidl nfsio 45698 430129 0 0 3 0x14280 nfsidl nfsio 48312 291404 0 0 3 0x14280 nfsidl nfsio 57177 467494 0 0 3 0x14280 nfsidl nfsio 14696 29048 0 0 3 0x14280 nfsidl nfsio 9864 268023 0 0 3 0x14280 nfsidl nfsio 60121 301277 0 0 3 0x14280 nfsidl nfsio 43791 520161 0 0 3 0x14280 nfsidl nfsio 39098 88811 0 0 3 0x14280 nfsidl nfsio 33830 296646 0 0 3 0x14280 nfsidl nfsio 77797 188414 0 0 3 0x14280 nfsidl nfsio 49401 491375 0 0 3 0x14280 nfsidl nfsio 48128 387973 0 0 3 0x14280 nfsidl nfsio 73095 55023 0 0 3 0x14280 nfsidl nfsio 99688 9601 0 0 3 0x14200 bored sosplice 55862 35098 38253 0 2 0x482 syz-executor.0 95235 378145 38253 0 2 0x482 syz-executor.1 38253 415771 88749 0 3 0x82 thrsleep syz-fuzzer 38253 146792 88749 0 2 0x4000482 syz-fuzzer 38253 140353 88749 0 3 0x4000082 thrsleep syz-fuzzer 38253 119412 88749 0 3 0x4000082 thrsleep syz-fuzzer 38253 65863 88749 0 2 0x4000482 syz-fuzzer 38253 158622 88749 0 3 0x4000082 kqread syz-fuzzer 38253 231688 88749 0 3 0x4000082 thrsleep syz-fuzzer 38253 30198 88749 0 3 0x4000082 thrsleep syz-fuzzer 88749 320196 94202 0 3 0x10008a pause ksh 94202 476811 14988 0 3 0x92 select sshd 15460 227861 1 0 3 0x100083 ttyin getty 14988 270327 1 0 3 0x80 select sshd 54273 460200 6427 73 3 0x100090 kqread syslogd 6427 288418 1 0 3 0x100082 netio syslogd 96871 224057 1 77 3 0x100090 poll dhclient 87787 159983 1 0 3 0x80 poll dhclient 44528 242759 0 0 3 0x14200 bored smr 74454 504457 0 0 2 0x14200 zerothread 62868 98746 0 0 3 0x14200 aiodoned aiodoned 97119 471408 0 0 3 0x14200 syncer update 79918 307409 0 0 3 0x14200 cleaner cleaner 24319 248680 0 0 3 0x14200 reaper reaper 83170 438136 0 0 3 0x14200 pgdaemon pagedaemon 31783 58748 0 0 3 0x14200 bored crynlk 41397 124685 0 0 3 0x14200 bored crypto 61753 358044 0 0 3 0x40014200 acpi0 acpi0 29120 455219 0 0 3 0x14200 bored softnet 7253 14072 0 0 3 0x14200 bored systqmp 50180 421634 0 0 3 0x14200 bored systq 32033 432073 0 0 2 0x40014200 softclock 20797 7285 0 0 3 0x40014200 idle0 1 423596 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9489 6465K 6975K 78643K 13233 0 pcb 13 8K 8K 78643K 76 0 rtable 128 8K 10K 78643K 1384 0 ifaddr 76 17K 17K 78643K 635 0 sysctl 2 0K 0K 78643K 2 0 counters 21 16K 16K 78643K 29 0 ioctlops 1 0K 4K 78643K 9246 0 iov 0 0K 16K 78643K 246 0 mount 1 1K 1K 78643K 1 0 vnodes 1225 77K 77K 78643K 1798 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 22 0 VM map 2 0K 0K 78643K 2 0 sem 12 1K 1K 78643K 14 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1809 195K 288K 78643K 12938 0 file desc 5 13K 25K 78643K 6457 0 sigio 0 0K 0K 78643K 26 0 proc 49 38K 63K 78643K 386 0 subproc 32 2K 2K 78643K 36 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 23 0 in_multi 49 2K 2K 78643K 111 0 ether_multi 1 0K 0K 78643K 11 0 mrt 0 0K 0K 78643K 4 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 37 175K 175K 78643K 37 0 exec 0 0K 1K 78643K 213 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 125 23K 26K 78643K 15852 0 UVM aobj 68 3K 3K 78643K 80 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 43 0 NDP 9 0K 0K 78643K 25 0 temp 105 3865K 3929K 78643K 17307 0 kqueue 3 4K 22K 78643K 37 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 6 0 0 1 0 1 1 0 8 0 rtpcb 80 55 0 53 1 0 1 1 0 8 0 rtentry 112 68 0 26 2 0 2 2 0 8 0 unpcb 120 4378 0 4367 3 2 1 2 0 8 0 syncache 264 11 0 11 2 2 0 1 0 8 0 tcpqe 32 48 0 48 2 2 0 1 0 8 0 tcpcb 544 128 0 124 1 0 1 1 0 8 0 inpcb 296 376 0 369 4 3 1 2 0 8 0 rttmr 72 1 0 1 1 1 0 1 0 8 0 nd6 48 16 0 11 1 0 1 1 0 8 0 pkpcb 40 2 0 2 1 0 1 1 0 8 1 ppxss 1128 2 0 2 2 2 0 1 0 8 0 pfosfp 40 300 0 277 2 1 1 1 0 8 0 pfosfpen 112 2399 0 2198 43 37 6 9 0 8 0 pfrktable 1344 532 0 523 2 0 2 2 0 8 1 pftag 88 21 0 12 1 0 1 1 0 8 0 pfqueue 264 30 0 24 1 0 1 1 0 8 0 pfrule 1360 855 0 174 57 0 57 57 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 298 0 112 13 1 12 13 0 8 0 art_table 32 299 0 112 2 0 2 2 0 8 0 art_node 16 67 0 28 1 0 1 1 0 8 0 sysvmsgpl 40 12 0 4 3 2 1 1 0 8 0 semupl 112 6 0 6 1 1 0 1 0 8 0 semapl 112 10 0 0 1 0 1 1 0 8 0 shmpl 112 77 0 12 2 0 2 2 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 7969 0 6571 88 0 88 88 0 8 0 ffsino 240 7969 0 6571 83 0 83 83 0 8 0 nchpl 144 15661 0 14066 60 0 60 60 0 8 0 uvmvnodes 72 5926 0 0 108 0 108 108 0 8 0 vnodes 208 5926 0 0 312 0 312 312 0 8 0 namei 1024 47191 0 47191 2 1 1 1 0 8 1 vmpool 528 2 0 2 1 0 1 1 0 8 1 pfiaddrpl 120 313 0 308 2 1 1 1 0 8 0 scxspl 192 44548 0 44548 2 1 1 1 0 8 1 plimitpl 152 244 0 237 1 0 1 1 0 8 0 sigapl 424 6664 0 6615 6 0 6 6 0 8 0 futexpl 56 79804 0 79804 2 1 1 1 0 8 1 knotepl 112 165 0 146 2 1 1 2 0 8 0 kqueuepl 144 97 0 95 1 0 1 1 0 8 0 pipepl 272 3242 0 3232 9 8 1 2 0 8 0 fdescpl 432 6629 0 6615 2 0 2 2 0 8 0 filepl 120 34793 0 34696 4 0 4 4 0 8 1 lockfpl 104 357 0 356 1 0 1 1 0 8 0 lockfspl 48 126 0 125 1 0 1 1 0 8 0 sessionpl 112 17 0 7 1 0 1 1 0 8 0 pgrppl 48 35 0 25 1 0 1 1 0 8 0 ucredpl 96 648 0 641 1 0 1 1 0 8 0 zombiepl 144 6615 0 6614 1 0 1 1 0 8 0 processpl 928 6664 0 6614 7 0 7 7 0 8 0 procpl 624 15121 0 15063 7 2 5 6 0 8 0 sosppl 128 5 0 5 2 2 0 1 0 8 0 sockpl 400 4812 0 4792 14 10 4 5 0 8 0 mcl64k 65536 36 0 36 12 12 0 1 0 8 0 mcl16k 16384 20 0 20 12 12 0 1 0 8 0 mcl12k 12288 67 0 67 20 20 0 1 0 8 0 mcl9k 9216 22 0 22 12 12 0 1 0 8 0 mcl8k 8192 183 0 183 17 16 1 1 0 8 1 mcl4k 4096 328 0 328 8 7 1 1 0 8 1 mcl2k2 2112 25 0 25 19 19 0 1 0 8 0 mcl2k 2048 84259 0 84203 27 19 8 15 0 8 0 mtagpl 96 371 0 10 10 1 9 9 0 8 0 mbufpl 256 156714 0 155844 62 7 55 55 0 8 0 bufpl 280 11023 0 5671 383 0 383 383 0 8 0 anonpl 16 766009 0 750541 85 6 79 83 0 107 8 amapchunkpl 152 46152 0 46025 19 5 14 16 0 158 8 amappl16 192 24187 0 23268 49 2 47 48 0 8 1 amappl15 184 1 0 0 1 0 1 1 0 8 0 amappl14 176 3201 0 3195 1 0 1 1 0 8 0 amappl13 168 27 0 24 1 0 1 1 0 8 0 amappl12 160 10 0 9 2 1 1 1 0 8 0 amappl11 152 6470 0 6458 1 0 1 1 0 8 0 amappl10 144 15 0 10 1 0 1 1 0 8 0 amappl9 136 359 0 357 1 0 1 1 0 8 0 amappl8 128 360 0 316 2 0 2 2 0 8 0 amappl7 120 106 0 94 1 0 1 1 0 8 0 amappl6 112 6413 0 6410 1 0 1 1 0 8 0 amappl5 104 3466 0 3455 1 0 1 1 0 8 0 amappl4 96 3605 0 3579 1 0 1 1 0 8 0 amappl3 88 280 0 275 1 0 1 1 0 8 0 amappl2 80 51908 0 51843 2 0 2 2 0 8 0 amappl1 72 115820 0 115417 24 15 9 17 0 8 0 amappl 80 15370 0 15331 3 2 1 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 79 0 12 2 0 2 2 0 8 0 uaddrrnd 24 6631 0 6617 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 6631 0 6617 1 0 1 1 0 8 0 vmmpekpl 168 50686 0 50654 2 0 2 2 0 8 0 vmmpepl 168 753187 0 751186 137 44 93 106 0 357 4 vmsppl 272 6630 0 6617 2 1 1 2 0 8 0 pdppl 4096 13268 0 13234 6 1 5 6 0 8 0 pvpl 32 3421165 0 3402552 307 38 269 279 0 265 110 pmappl 200 6630 0 6617 1 0 1 1 0 8 0 extentpl 40 53 0 36 1 0 1 1 0 8 0 phpool 112 426 0 99 10 0 10 10 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace pfsync_state_import(ffff800000aaee00,1) at pfsync_state_import+0x10f sys/net/if_pfsync.c:518 pfioctl(4900,c1084425,ffff800000aaee00,3,ffff80001d75d618) at pfioctl+0x284a sys/net/pf_ioctl.c:1686 VOP_IOCTL(fffffd806779d1a0,c1084425,ffff800000aaee00,3,fffffd806c3bf960,ffff80001d75d618) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:290 vn_ioctl(fffffd805777ee20,c1084425,ffff800000aaee00,ffff80001d75d618) at vn_ioctl+0xb5 sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80001d75d618,ffff80001e7c5038,ffff80001e7c5080) at sys_ioctl+0x4a1 syscall(ffff80001e7c5100) at syscall+0x507 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf7f2b21ad70, count: -7 ddb> machine ddbcpu 1 No such command ddb> trace pfsync_state_import(ffff800000aaee00,1) at pfsync_state_import+0x10f sys/net/if_pfsync.c:518 pfioctl(4900,c1084425,ffff800000aaee00,3,ffff80001d75d618) at pfioctl+0x284a sys/net/pf_ioctl.c:1686 VOP_IOCTL(fffffd806779d1a0,c1084425,ffff800000aaee00,3,fffffd806c3bf960,ffff80001d75d618) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:290 vn_ioctl(fffffd805777ee20,c1084425,ffff800000aaee00,ffff80001d75d618) at vn_ioctl+0xb5 sys/kern/vfs_vnops.c:531 sys_ioctl(ffff80001d75d618,ffff80001e7c5038,ffff80001e7c5080) at sys_ioctl+0x4a1 syscall(ffff80001e7c5100) at syscall+0x507 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf7f2b21ad70, count: -7