uvm_fault(0xffffffff81ea7740, 0x600011c, 0, 1) -> e kernel: page fault trap, code=0 Stopped at m_free+0x2a: movswq 0x1c(%r14),%rdx ddb> ddb> set $lines = 0 ddb> show panic kernel page fault uvm_fault(0xffffffff81ea7740, 0x600011c, 0, 1) -> e m_free(6000100) at m_free+0x2a sys/kern/uipc_mbuf.c:423 end trace frame: 0xffff8000149b0000, count: 0 ddb> trace m_free(6000100) at m_free+0x2a sys/kern/uipc_mbuf.c:423 m_freem(0) at m_freem+0x2d sys/kern/uipc_mbuf.c:525 tcp_input(ffff8000149b01d8,ffff8000149b01d8,2,6) at tcp_input+0x30e7 sys/netinet/tcp_input.c:1952 ip_deliver(ffff8000149b01d4,ffff8000149b01d8,ffff800000021040,ffffff003116dd00) at ip_deliver+0x23b sys/netinet/ip_input.c:705 ipintr() at ipintr+0x71 sys/netinet/ip_input.c:240 if_netisr(ffffffff8122c580) at if_netisr+0x9e sys/net/if.c:956 taskq_thread(0) at taskq_thread+0x72 sys/kern/kern_task.c:311 end trace frame: 0x0, count: -7 ddb> show registers rdi 0x7 rsi 0xf0 rbp 0xffff8000149affe0 rbx 0x7040183c rdx 0xffff8000149afef0 rcx 0xffffffff81e90160 mbstat_boot_boot_cpumem rax 0 r8 0x1 r9 0 r10 0x800b5c74ac8dbdff r11 0xffffffff818a57e0 pool_lock_mtx_leave r12 0 r13 0xffffff00384f982e r14 0x6000100 __kernel_end_phys+0x4000100 r15 0x6000100 __kernel_end_phys+0x4000100 rip 0xffffffff81b5b74a m_free+0x2a cs 0x8 rflags 0x10282 __ALIGN_SIZE+0xf282 rsp 0xffff8000149affc0 ss 0 m_free+0x2a: movswq 0x1c(%r14),%rdx ddb> show proc PROC (softnet) pid=262707 stat=onproc flags process=14000 proc=200 pri=32, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff8000fffff068,0xffff8000ffffe970 process=0xffff800014989ca0 user=0xffff8000149ab000, vmspace=0xffffffff81ea7740 estcpu=0, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 11825 335688 84515 0 3 0x80 nanosleep syz-executor0 11825 491965 84515 0 3 0x4000080 wsevent_read syz-executor0 11825 14897 84515 0 3 0x4000080 fsleep syz-executor0 28929 124906 1 0 3 0x100083 ttyin getty 31194 170900 29708 0 2 0x2 syz-executor1 69284 255998 0 0 3 0x14200 bored sosplice 84515 247001 29708 0 3 0x82 nanosleep syz-executor0 29708 200022 11948 0 3 0x82 thrsleep syz-fuzzer 29708 290900 11948 0 3 0x4000082 nanosleep syz-fuzzer 29708 428392 11948 0 3 0x4000082 thrsleep syz-fuzzer 29708 36899 11948 0 3 0x4000082 thrsleep syz-fuzzer 29708 287506 11948 0 2 0x4000002 syz-fuzzer 29708 95497 11948 0 3 0x4000082 thrsleep syz-fuzzer 29708 112211 11948 0 3 0x4000082 thrsleep syz-fuzzer 29708 356749 11948 0 3 0x4000082 thrsleep syz-fuzzer 11948 446667 61147 0 3 0x10008a pause ksh 61147 168821 55574 0 3 0x92 select sshd 55574 158312 1 0 3 0x80 select sshd 46236 223008 20877 73 2 0x100090 syslogd 20877 401987 1 0 3 0x100082 netio syslogd 36586 79242 0 0 3 0x14200 pgzero zerothread 80754 64017 0 0 3 0x14200 aiodoned aiodoned 96823 306473 0 0 3 0x14200 syncer update 25765 137937 0 0 3 0x14200 cleaner cleaner 53903 179003 0 0 3 0x14200 reaper reaper 37789 481979 0 0 3 0x14200 pgdaemon pagedaemon 2688 303584 0 0 3 0x14200 bored crynlk 59994 171538 0 0 3 0x14200 bored crypto 54017 417825 0 0 3 0x40014200 acpi0 acpi0 *90046 262707 0 0 7 0x14200 softnet 88317 235661 0 0 3 0x14200 bored systqmp 92820 377957 0 0 3 0x14200 bored systq 65646 174508 0 0 3 0x40014200 bored softclock 68611 214522 0 0 3 0x40014200 idle0 1 260327 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper