uvm_fault(0xfffffd803f014420, 0x100000008, 0, 2) -> e kernel: page fault trap, code=0 Stopped at arp_rtrequest+0x15f: movq %rcx,0x8(%r15) ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic kernel page fault uvm_fault(0xfffffd803f014420, 0x100000008, 0, 2) -> e arp_rtrequest() at arp_rtrequest+0x15f sys/netinet/if_ether.c:201 end trace frame: 0xffff800017a01ae0, count: 0 ddb> trace arp_rtrequest() at arp_rtrequest+0x15f sys/netinet/if_ether.c:201 rtm_output(ffff800000a23800,ffff800017a01b98,ffff800017a01af0,40,0) at rtm_output+0xbf4 sys/net/rtsock.c:1040 route_output(fffffd802bc88500,fffffd803a196900,0,0) at route_output+0x7d7 sys/net/rtsock.c:814 route_usrreq(fffffd803a196900,9,fffffd802bc88500,0,0,ffff8000149c4720) at route_usrreq+0x363 sys/net/rtsock.c:271 sosend(fffffd803a196900,0,ffff800017a01d90,0,0,80) at sosend+0x660 sys/kern/uipc_socket.c:513 sendit(ffff8000149c4720,3,ffff800017a01e70,0,ffff800017a01f80) at sendit+0x53c sys/kern/uipc_syscalls.c:662 sys_sendto(ffff8000149c4720,ffff800017a01f18,ffff800017a01f80) at sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 syscall(ffff800017a01ff0) at syscall+0x511 Xsyscall(6,0,ffffffffffffffd8,0,6,66daa7f0010) at Xsyscall+0x128 end of kernel end trace frame: 0x670838232c0, count: -9 ddb> show registers rdi 0xffffffff81118587 arp_rtrequest+0x157 rsi 0x194 rbp 0xffff800017a01a40 rbx 0xffff800000025380 rdx 0x195 rcx 0xdeafbeaddeafbead rax 0xffff800000025388 r8 0x40 r9 0x5 r10 0xffff800000994280 r11 0xa49e35bed71b6b25 r12 0xffff8000001722a8 r13 0x2 r14 0xfffffd803ea98158 r15 0x100000000 rip 0xffffffff8111858f arp_rtrequest+0x15f cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800017a019c0 ss 0x10 arp_rtrequest+0x15f: movq %rcx,0x8(%r15) ddb> show proc PROC (syz-executor.1) pid=444327 stat=onproc flags process=0 proc=4000000 pri=78, usrpri=78, nice=20 forw=0xffffffffffffffff, list=0xffff8000149c5c38,0xffffffff822a64e0 process=0xffff8000ffff69e8 user=0xffff8000179fd000, vmspace=0xfffffd803f014420 estcpu=28, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 71417 160 12936 0 2 0 syz-executor.1 *71417 444327 12936 0 7 0x4000000 syz-executor.1 12936 424442 25272 0 2 0x482 syz-executor.1 17049 182535 0 0 3 0x14200 bored sosplice 96779 485676 1 0 3 0x100083 ttyin getty 63380 153819 25272 0 2 0x2 syz-executor.0 25272 188252 73496 0 3 0x82 kqread syz-fuzzer 25272 371004 73496 0 2 0x4000482 syz-fuzzer 25272 308518 73496 0 3 0x4000082 thrsleep syz-fuzzer 25272 292782 73496 0 3 0x4000082 thrsleep syz-fuzzer 25272 449330 73496 0 3 0x4000082 thrsleep syz-fuzzer 25272 156422 73496 0 3 0x4000082 thrsleep syz-fuzzer 25272 445657 73496 0 3 0x4000082 thrsleep syz-fuzzer 25272 484213 73496 0 3 0x4000082 thrsleep syz-fuzzer 73496 5193 92038 0 3 0x10008a pause ksh 92038 324780 37947 0 3 0x92 select sshd 37947 372839 1 0 3 0x80 select sshd 57463 179036 72767 73 2 0x100090 syslogd 72767 226008 1 0 3 0x100082 netio syslogd 47270 392282 1 77 3 0x100090 poll dhclient 85879 220876 1 0 3 0x80 poll dhclient 14045 4232 0 0 2 0x14200 zerothread 3479 428096 0 0 3 0x14200 aiodoned aiodoned 5257 423396 0 0 3 0x14200 syncer update 1450 412156 0 0 3 0x14200 cleaner cleaner 17373 380543 0 0 3 0x14200 reaper reaper 80615 223770 0 0 3 0x14200 pgdaemon pagedaemon 58913 176209 0 0 3 0x14200 bored crynlk 20914 369481 0 0 3 0x14200 bored crypto 90670 101057 0 0 3 0x40014200 acpi0 acpi0 74009 89022 0 0 3 0x14200 bored softnet 63023 212811 0 0 3 0x14200 bored systqmp 1661 239340 0 0 3 0x14200 bored systq 37609 440673 0 0 3 0x40014200 bored softclock 28925 148245 0 0 3 0x40014200 idle0 38997 15917 0 0 3 0x14200 bored smr 1 512393 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9496 6353K 6843K 78643K 13641 0 0 pcb 24 9K 10K 78643K 1014 0 0 rtable 113 4K 4K 78643K 1041 0 0 ifaddr 52 12K 13K 78643K 198 0 0 counters 19 16K 16K 78643K 19 0 0 ioctlops 0 0K 2K 78643K 86 0 0 iov 0 0K 24K 78643K 181 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1201 75K 76K 78643K 2533 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 5K 78643K 17 0 0 VM map 2 0K 0K 78643K 2 0 0 sem 12 1K 1K 78643K 104 0 0 dirhash 12 2K 2K 78643K 12 0 0 ACPI 1793 195K 288K 78643K 12537 0 0 file desc 5 13K 25K 78643K 1772 0 0 sigio 0 0K 0K 78643K 16 0 0 proc 42 30K 46K 78643K 679 0 0 subproc 32 2K 2K 78643K 119 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 ip_moptions 0 0K 0K 78643K 127 0 0 in_multi 33 2K 2K 78643K 136 0 0 ether_multi 1 0K 0K 78643K 6 0 0 mrt 0 0K 0K 78643K 6 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 90 397K 397K 78643K 90 0 0 exec 0 0K 1K 78643K 358 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 85 20K 30K 78643K 4993 0 0 UVM aobj 59 2K 2K 78643K 70 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 ip6_options 0 0K 0K 78643K 47 0 0 NDP 10 0K 0K 78643K 58 0 0 temp 232 2716K 2782K 78643K 8602 0 0 kqueue 0 0K 0K 78643K 7 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 16 0 10 1 0 1 1 0 8 0 inpcbpl 280 639 0 632 1 0 1 1 0 8 0 plimitpl 152 57 0 50 1 0 1 1 0 8 0 rtentry 112 102 0 57 2 0 2 2 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 tcpcb 544 214 0 210 1 0 1 1 0 8 0 nd6 48 21 0 15 1 0 1 1 0 8 0 ppxss 1128 26 0 26 4 4 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 417 0 220 13 0 13 13 0 8 0 art_table 32 418 0 220 2 0 2 2 0 8 0 art_node 16 100 0 59 1 0 1 1 0 8 0 sysvmsgpl 40 9 0 1 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 100 0 90 1 0 1 1 0 8 0 shmpl 112 68 0 11 2 0 2 2 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 4117 0 2685 47 0 47 47 0 8 0 ffsino 240 4117 0 2685 85 0 85 85 0 8 0 nchpl 144 6660 0 5055 61 0 61 61 0 8 0 uvmvnodes 72 4950 0 0 90 0 90 90 0 8 0 vnodes 200 4950 0 0 261 0 261 261 0 8 0 namei 1024 20063 0 20063 2 1 1 1 0 8 1 scsiplug 64 3 0 3 3 3 0 1 0 8 0 scxspl 192 20526 0 20526 22 19 3 6 0 8 3 sigapl 432 1929 0 1916 2 0 2 2 0 8 0 futexpl 56 23974 0 23974 1 0 1 1 0 8 1 knotepl 112 417 0 398 1 0 1 1 0 8 0 kqueuepl 104 326 0 324 1 0 1 1 0 8 0 pipepl 112 922 0 903 4 3 1 2 0 8 0 fdescpl 424 1930 0 1916 2 0 2 2 0 8 0 filepl 120 10356 0 10261 4 0 4 4 0 8 1 lockfpl 104 498 0 498 2 1 1 1 0 8 1 lockfspl 48 177 0 177 2 1 1 1 0 8 1 sessionpl 112 23 0 13 1 0 1 1 0 8 0 pgrppl 48 47 0 37 1 0 1 1 0 8 0 ucredpl 96 2161 0 2154 1 0 1 1 0 8 0 zombiepl 144 1916 0 1916 2 1 1 1 0 8 1 processpl 840 1945 0 1916 4 0 4 4 0 8 0 procpl 600 4037 0 4000 4 0 4 4 0 8 0 sosppl 128 25 0 25 3 3 0 1 0 8 0 sockpl 384 1558 0 1540 3 0 3 3 0 8 1 mcl64k 65536 38 0 38 5 5 0 1 0 8 0 mcl16k 16384 2 0 2 2 1 1 1 0 8 1 mcl12k 12288 25 0 25 4 3 1 1 0 8 1 mcl9k 9216 27 0 27 5 5 0 1 0 8 0 mcl8k 8192 17 0 17 6 5 1 1 0 8 1 mcl4k 4096 66 0 66 4 3 1 1 0 8 1 mcl2k2 2112 9 0 9 6 5 1 1 0 8 1 mcl2k 2048 55990 0 55947 16 9 7 11 0 8 1 mtagpl 80 2 0 2 1 1 0 1 0 8 0 mbufpl 256 100247 0 100090 16 5 11 11 0 8 0 bufpl 256 9671 0 5190 281 0 281 281 0 8 0 anonpl 16 152904 0 143003 78 31 47 56 0 62 5 amapchunkpl 152 8646 0 8561 30 23 7 11 0 158 2 amappl16 192 9015 0 8471 46 17 29 40 0 8 1 amappl15 184 2 0 2 1 1 0 1 0 8 0 amappl14 176 64 0 63 2 1 1 1 0 8 0 amappl13 168 1 0 0 1 0 1 1 0 8 0 amappl12 160 817 0 814 1 0 1 1 0 8 0 amappl11 152 75 0 61 1 0 1 1 0 8 0 amappl10 144 316 0 314 1 0 1 1 0 8 0 amappl9 136 590 0 587 1 0 1 1 0 8 0 amappl8 128 164 0 151 1 0 1 1 0 8 0 amappl7 120 296 0 289 1 0 1 1 0 8 0 amappl6 112 61 0 52 1 0 1 1 0 8 0 amappl5 104 1020 0 1009 1 0 1 1 0 8 0 amappl4 96 1262 0 1238 1 0 1 1 0 8 0 amappl3 88 1029 0 1018 1 0 1 1 0 8 0 amappl2 80 14381 0 14316 4 2 2 3 0 8 0 amappl1 72 45011 0 44595 26 17 9 19 0 8 0 amappl 80 4375 0 4342 1 0 1 1 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma64 64 259 0 259 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 17 0 17 1 1 0 1 0 8 0 aobjpl 64 69 0 11 1 0 1 1 0 8 0 uaddrrnd 24 1930 0 1916 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1930 0 1916 1 0 1 1 0 8 0 vmmpekpl 168 14127 0 14102 2 0 2 2 0 8 0 vmmpepl 168 200840 0 199330 119 48 71 88 0 357 3 vmsppl 264 1929 0 1916 3 2 1 2 0 8 0 pdppl 4096 3866 0 3832 6 1 5 6 0 8 0 pvpl 32 476687 0 463723 186 61 125 142 0 265 15 pmappl 200 1929 0 1916 1 0 1 1 0 8 0 extentpl 40 41 0 26 1 0 1 1 0 8 0 phpool 112 443 0 32 12 0 12 12 0 8 0