uvm_fault(0xffffffff83a20ba0, 0xffff80000183a000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at memcpy+0x19: repe movsq (%rsi),%es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND *438883 17439 0 0 0x4000000 0 syz-executor memcpy() at memcpy+0x19 rtm_msg1(14,ffff80003c9a8968) at rtm_msg1+0x306 sys/net/rtsock.c:1627 rtm_addr(14,ffff800001839f00) at rtm_addr+0xb9 sys/net/rtsock.c:-1 in6_update_ifa(ffff800000c47000,ffff80003c9a8d80,ffff800001839f00) at in6_update_ifa+0x19aa sys/netinet6/in6.c:741 in6_ioctl_change_ifaddr(8080691a,ffff80003c9a8d80,ffff800000c47000) at in6_ioctl_change_ifaddr+0x638 sys/netinet6/in6.c:352 ifioctl(ffff800010fe0690,8080691a,ffff80003c9a8d80,ffff80002a7fefd0) at ifioctl+0x16c4 pru_control sys/sys/protosw.h:353 [inline] ifioctl(ffff800010fe0690,8080691a,ffff80003c9a8d80,ffff80002a7fefd0) at ifioctl+0x16c4 sys/net/if.c:2553 sys_ioctl(ffff80002a7fefd0,ffff80003c9a8f50,ffff80003c9a8ea0) at sys_ioctl+0x660 sys/kern/sys_generic.c:-1 syscall(ffff80003c9a8f50) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9a8f50) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x27926ef21f0, count: 6 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff83a20ba0, 0xffff80000183a000, 0, 1) -> e ddb> trace memcpy() at memcpy+0x19 rtm_msg1(14,ffff80003c9a8968) at rtm_msg1+0x306 sys/net/rtsock.c:1627 rtm_addr(14,ffff800001839f00) at rtm_addr+0xb9 sys/net/rtsock.c:-1 in6_update_ifa(ffff800000c47000,ffff80003c9a8d80,ffff800001839f00) at in6_update_ifa+0x19aa sys/netinet6/in6.c:741 in6_ioctl_change_ifaddr(8080691a,ffff80003c9a8d80,ffff800000c47000) at in6_ioctl_change_ifaddr+0x638 sys/netinet6/in6.c:352 ifioctl(ffff800010fe0690,8080691a,ffff80003c9a8d80,ffff80002a7fefd0) at ifioctl+0x16c4 pru_control sys/sys/protosw.h:353 [inline] ifioctl(ffff800010fe0690,8080691a,ffff80003c9a8d80,ffff80002a7fefd0) at ifioctl+0x16c4 sys/net/if.c:2553 sys_ioctl(ffff80002a7fefd0,ffff80003c9a8f50,ffff80003c9a8ea0) at sys_ioctl+0x660 sys/kern/sys_generic.c:-1 syscall(ffff80003c9a8f50) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9a8f50) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x27926ef21f0, count: -9 ddb> show registers rdi 0xfffffd805ea04938 rsi 0xffff80000183a000 rbp 0xffff80003c9a88e0 rbx 0 rdx 0xea rcx 0xe rax 0x7d805d1ca938 r8 0x2 r9 0x8080808080808080 r10 0xa435215ec074eb36 r11 0xfffffd805ea048c0 r12 0xea r13 0xea r14 0xc0 r15 0xfffffd806cb5cf00 rip 0xffffffff8116ba99 memcpy+0x19 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff80003c9a8838 ss 0x10 memcpy+0x19: repe movsq (%rsi),%es:(%rdi) ddb> show proc PROC (syz-executor) tid=438883 pid=17439 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=32, usrpri=83, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a7fed38,0xffff80002a7ff510 process=0xffff8000ffffb618 user=0xffff80003c9a4000, vmspace=0xfffffd807ece6a10 estcpu=33, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 6285 352891 39704 0 2 0 syz-executor 6285 166061 39704 0 3 0x4000000 biowait syz-executor 2747 414897 57339 0 2 0 syz-executor 2747 14648 57339 0 2 0x4000000 syz-executor 17439 20723 86093 0 2 0 syz-executor *17439 438883 86093 0 7 0x4000000 syz-executor 53398 370789 13951 0 2 0 syz-executor 63045 380728 31026 0 2 0 syz-executor 63045 91156 31026 0 3 0x4000080 fsleep syz-executor 23665 149295 82623 0 2 0 syz-executor 23665 161069 82623 0 3 0x4000080 fsleep syz-executor 77843 322301 26380 -1 2 0x10 syz-executor 77843 465029 26380 -1 3 0x4000090 fsleep syz-executor 42883 193861 0 0 3 0x14200 acct acct 67201 307581 0 0 3 0x14280 nfsidl nfsio 91929 429434 0 0 3 0x14280 nfsidl nfsio 26821 15771 0 0 3 0x14280 nfsidl nfsio 33563 288885 0 0 3 0x14280 nfsidl nfsio 52716 110472 0 0 3 0x14280 nfsidl nfsio 50648 483643 0 0 3 0x14280 nfsidl nfsio 31452 390440 0 0 3 0x14280 nfsidl nfsio 25751 479031 0 0 3 0x14280 nfsidl nfsio 25224 84553 0 0 3 0x14280 nfsidl nfsio 98106 360236 0 0 3 0x14280 nfsidl nfsio 78751 499742 0 0 3 0x14280 nfsidl nfsio 94527 274397 0 0 3 0x14280 nfsidl nfsio 11535 351621 0 0 3 0x14280 nfsidl nfsio 38631 126 0 0 3 0x14280 nfsidl nfsio 95277 108253 0 0 3 0x14280 nfsidl nfsio 22438 487479 0 0 3 0x14280 nfsidl nfsio 83939 480897 1 0 3 0x100083 ttyin getty 39704 522755 79532 0 3 0x82 nanoslp syz-executor 57339 70917 79532 0 3 0x82 nanoslp syz-executor 20712 407514 0 0 3 0x14280 nfsidl nfsio 56946 10965 0 0 3 0x14280 nfsidl nfsio 84537 200480 0 0 3 0x14280 nfsidl nfsio 82624 326140 0 0 3 0x14280 nfsidl nfsio 86093 221251 79532 0 3 0x82 nanoslp syz-executor 13951 319165 79532 0 3 0x82 nanoslp syz-executor 31026 127789 79532 0 3 0x82 nanoslp syz-executor 82623 429472 79532 0 3 0x82 nanoslp syz-executor 26380 260394 79532 0 3 0x82 nanoslp syz-executor 79532 287412 20515 0 3 0x82 wait syz-executor 20515 113210 73600 0 3 0x10008a sigsusp ksh 73600 113797 79569 0 3 0x98 kqread sshd-session 79569 141994 89976 0 3 0x92 kqread sshd-session 89976 177947 1 0 3 0x88 kqread sshd 3370 376285 34302 73 3 0x1100090 kqread syslogd 34302 432913 1 0 3 0x100082 sbwait syslogd 68727 146851 1 0 3 0x100080 kqread resolvd 32548 35319 92089 77 2 0x100092 dhcpleased 37953 514009 92089 77 3 0x100092 kqread dhcpleased 92089 198176 1 0 3 0x80 kqread dhcpleased 10930 518923 0 0 3 0x14200 bored smr 10948 386344 0 0 2 0x14200 zerothread 98084 403080 0 0 3 0x14200 aiodoned aiodoned 4647 167899 0 0 3 0x14200 syncer update 72578 433118 0 0 3 0x14200 cleaner cleaner 6508 359772 0 0 3 0x14200 reaper reaper 21106 139692 0 0 3 0x14200 pgdaemon pagedaemon 16412 436922 0 0 3 0x14200 bored viomb 27591 175680 0 0 3 0x40014200 acpi0 acpi0 76127 153327 0 0 3 0x14200 bored softnet0 50713 264110 0 0 3 0x14200 bored systqmp 96250 377866 0 0 3 0x14200 bored systq 27883 433676 0 0 3 0x40014200 tmoslp softclock 71903 155362 0 0 3 0x40014200 idle0 1 287573 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11085 12102K 13353K 166960K 16701 0 pcb 20 16K 18K 166960K 663 0 rtable 161 12K 14K 166960K 773 0 pf 24 12K 16K 166960K 207 0 ifaddr 23 4K 8K 166960K 150 0 ifgroup 35 1K 2K 166960K 266 0 sysctl 4 1K 9K 166960K 57 0 counters 30 17K 18K 166960K 148 0 ioctlops 0 0K 4K 166960K 458 0 iov 0 0K 20K 166960K 96 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1508 95K 95K 166960K 3909 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 32 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 104 0 dirhash 12 2K 2K 166960K 42 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 17 61K 240K 166960K 1983 0 sigio 0 0K 0K 166960K 61 0 proc 60 59K 100K 166960K 892 0 subproc 72 4K 4K 166960K 183 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 393 0 in_multi 48 3K 7K 166960K 199 0 ether_multi 1 0K 0K 166960K 13 0 mrt 1 0K 0K 166960K 29 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 397 1765K 1765K 166960K 397 0 exec 0 0K 1K 166960K 878 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 7 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 220 161K 183K 166960K 18435 0 UVM aobj 58 22K 22K 166960K 63 0 pinsyscall 38 76K 95K 166960K 3225 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 92 0 NDP 8 0K 2K 166960K 111 0 temp 77 9076K 9187K 166960K 77423 0 kqueue 13 20K 31K 166960K 369 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 348 0 345 3 2 1 3 0 8 0 rtentry 136 190 0 150 4 0 4 4 0 8 0 unpcb 144 1519 0 1500 9 3 6 6 0 8 5 syncache 336 7 0 7 2 1 1 1 0 8 1 tcpqe 32 4 0 4 1 1 0 1 0 8 0 tcpcb 736 632 0 626 10 3 7 7 0 8 6 arp 96 27 0 22 1 0 1 1 0 8 0 ipq 40 10 0 7 1 0 1 1 0 8 0 ipqe 40 143 0 140 1 0 1 1 0 8 0 inpcb 328 2248 0 2236 17 8 9 12 0 8 7 ip6q 72 22 0 17 1 0 1 1 0 8 0 ip6af 40 41 0 34 1 0 1 1 0 8 0 nd6 112 40 0 30 1 0 1 1 0 8 0 pkpcb 40 15 0 15 1 0 1 1 0 8 1 kcovpl 48 20 0 12 1 0 1 1 0 8 0 mppekey 1024 3 0 3 2 1 1 1 0 8 1 ppxss 1072 88 0 88 2 1 1 1 0 8 1 pppxif 1384 9 0 9 2 1 1 1 0 8 1 pfstscr 40 1 0 0 1 0 1 1 0 8 0 pfstitem 24 4 0 0 1 0 1 1 0 8 0 pfstkey 128 4 0 0 1 0 1 1 0 8 0 pfstate 384 2 0 0 1 0 1 1 0 8 0 pfrule 1360 2 0 1 1 0 1 1 0 8 0 rttmr 136 1 0 1 1 1 0 1 0 8 0 art_heap8 4096 6 0 1 6 0 6 6 0 8 1 art_heap4 256 815 0 599 33 5 28 29 0 8 7 art_table 40 821 0 600 5 0 5 5 0 8 0 art_node 32 183 0 148 1 0 1 1 0 8 0 sysvmsgpl 40 14 0 9 1 0 1 1 0 8 0 semupl 112 1 0 1 1 0 1 1 0 8 1 semapl 112 95 0 85 1 0 1 1 0 8 0 shmpl 112 51 0 4 2 0 2 2 0 8 0 dirhash 1024 37 0 20 3 0 3 3 0 8 0 dino2pl 256 5219 0 3758 92 0 92 92 0 8 0 ffsino 256 5219 0 3758 92 0 92 92 0 8 0 nchpl 144 7865 0 6151 64 0 64 64 0 8 0 rtmask 32 20 0 20 2 1 1 1 0 8 1 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 29042 0 29041 2 1 1 1 0 8 0 vcpupl 3904 9 0 1 1 0 1 1 0 8 0 vmpool 808 9 0 1 1 0 1 1 0 8 0 kstatmem 264 170 0 154 3 1 2 3 0 8 0 scsiplug 72 10 0 10 2 1 1 1 0 8 1 scxspl 216 30479 0 30425 15 7 8 8 1 8 3 plimitpl 152 1037 0 1020 1 0 1 1 0 8 0 sigapl 424 2283 0 2220 8 0 8 8 0 8 0 knotepl 120 574672 0 574625 50 39 11 22 0 8 8 kqueuepl 184 785 0 776 6 2 4 4 0 8 3 pipepl 304 310 0 283 5 2 3 5 0 8 0 fdescpl 448 2228 0 2199 5 1 4 5 0 8 0 filepl 120 16613 0 16400 19 5 14 14 0 8 5 lockfpl 104 1048 0 1046 2 0 2 2 0 8 1 lockfspl 48 375 0 373 1 0 1 1 0 8 0 sessionpl 144 36 0 28 1 0 1 1 0 8 0 pgrppl 48 73 0 57 1 0 1 1 0 8 0 ucredpl 104 3470 0 3458 1 0 1 1 0 8 0 zombiepl 144 2221 0 2220 1 0 1 1 0 8 0 processpl 1152 2283 0 2220 5 0 5 5 0 8 0 procpl 664 4877 0 4808 9 1 8 8 0 8 1 sosppl 176 14 0 14 2 1 1 1 0 8 1 sockpl 552 4488 0 4454 24 14 10 17 0 8 7 mcl64k 65536 236 0 236 2 1 1 1 0 8 1 mcl16k 16384 3 0 3 1 1 0 1 0 8 0 mcl8k 8192 84 0 84 2 1 1 1 0 8 1 mcl4k 4096 4889 0 4832 17 8 9 15 0 8 1 mcl2k 2048 2082 0 2072 4 2 2 3 0 8 0 mtagpl 96 113 0 37 3 0 3 3 0 8 0 mbufpl 256 35666 0 35496 417 400 17 412 0 8 1 bufpl 280 12427 0 6213 445 0 445 445 0 8 0 anonpl 24 353287 0 341294 85 3 82 82 0 187 2 amapchunkpl 152 64696 0 64050 46 13 33 38 0 158 8 amappl16 200 7877 0 7514 42 15 27 27 0 8 1 amappl15 192 1 0 1 1 1 0 1 0 8 0 amappl14 184 483 0 482 1 0 1 1 0 8 0 amappl13 176 127 0 117 1 0 1 1 0 8 0 amappl12 168 2487 0 2459 2 0 2 2 0 8 0 amappl11 160 4 0 3 1 0 1 1 0 8 0 amappl10 152 64 0 53 1 0 1 1 0 8 0 amappl9 144 250 0 250 1 1 0 1 0 8 0 amappl8 136 137 0 135 1 0 1 1 0 8 0 amappl7 128 180 0 168 1 0 1 1 0 8 0 amappl6 120 223 0 221 1 0 1 1 0 8 0 amappl5 112 99 0 91 1 0 1 1 0 8 0 amappl4 104 288 0 271 1 0 1 1 0 8 0 amappl3 96 12992 0 12891 4 0 4 4 0 8 0 amappl2 88 584 0 531 2 0 2 2 0 8 0 amappl1 80 17828 0 17278 16 3 13 16 0 8 0 amappl 88 17351 0 17195 5 0 5 5 0 92 0 uvmvnodes 80 168 0 0 4 0 4 4 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma2048 2048 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 257 0 257 2 1 1 1 0 8 1 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 10 0 10 2 1 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 62 0 5 2 0 2 2 0 8 0 uaddrrnd 24 2228 0 2199 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2228 0 2199 1 0 1 1 0 8 0 vmmpekpl 168 18111 0 18069 3 0 3 3 0 8 0 vmmpepl 168 147323 0 145210 106 3 103 103 0 357 4 vmsppl 368 2227 0 2199 4 1 3 4 0 8 0 rwobjpl 40 38416 0 37021 16 0 16 16 0 8 0 pdppl 4096 4480 0 4408 117 41 76 80 0 8 4 pvpl 32 1016037 0 997430 183 16 167 167 0 265 11 pmappl 216 2236 0 2200 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 817 0 470 22 12 10 22 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace memcpy() at memcpy+0x19 rtm_msg1(14,ffff80003c9a8968) at rtm_msg1+0x306 sys/net/rtsock.c:1627 rtm_addr(14,ffff800001839f00) at rtm_addr+0xb9 sys/net/rtsock.c:-1 in6_update_ifa(ffff800000c47000,ffff80003c9a8d80,ffff800001839f00) at in6_update_ifa+0x19aa sys/netinet6/in6.c:741 in6_ioctl_change_ifaddr(8080691a,ffff80003c9a8d80,ffff800000c47000) at in6_ioctl_change_ifaddr+0x638 sys/netinet6/in6.c:352 ifioctl(ffff800010fe0690,8080691a,ffff80003c9a8d80,ffff80002a7fefd0) at ifioctl+0x16c4 pru_control sys/sys/protosw.h:353 [inline] ifioctl(ffff800010fe0690,8080691a,ffff80003c9a8d80,ffff80002a7fefd0) at ifioctl+0x16c4 sys/net/if.c:2553 sys_ioctl(ffff80002a7fefd0,ffff80003c9a8f50,ffff80003c9a8ea0) at sys_ioctl+0x660 sys/kern/sys_generic.c:-1 syscall(ffff80003c9a8f50) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9a8f50) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x27926ef21f0, count: -9 ddb> machine ddbcpu 1 No such command ddb> trace memcpy() at memcpy+0x19 rtm_msg1(14,ffff80003c9a8968) at rtm_msg1+0x306 sys/net/rtsock.c:1627 rtm_addr(14,ffff800001839f00) at rtm_addr+0xb9 sys/net/rtsock.c:-1 in6_update_ifa(ffff800000c47000,ffff80003c9a8d80,ffff800001839f00) at in6_update_ifa+0x19aa sys/netinet6/in6.c:741 in6_ioctl_change_ifaddr(8080691a,ffff80003c9a8d80,ffff800000c47000) at in6_ioctl_change_ifaddr+0x638 sys/netinet6/in6.c:352 ifioctl(ffff800010fe0690,8080691a,ffff80003c9a8d80,ffff80002a7fefd0) at ifioctl+0x16c4 pru_control sys/sys/protosw.h:353 [inline] ifioctl(ffff800010fe0690,8080691a,ffff80003c9a8d80,ffff80002a7fefd0) at ifioctl+0x16c4 sys/net/if.c:2553 sys_ioctl(ffff80002a7fefd0,ffff80003c9a8f50,ffff80003c9a8ea0) at sys_ioctl+0x660 sys/kern/sys_generic.c:-1 syscall(ffff80003c9a8f50) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9a8f50) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x27926ef21f0, count: -9