uvm_fault(0xffffffff821f9698, 0xffff800003fda002, 0, 1) -> e kernel: page fault trap, code=0 Stopped at rtable_satoplen+0x150: movzbl 0xffffffffffffffff(%r13),%r12d ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic kernel page fault uvm_fault(0xffffffff821f9698, 0xffff800003fda002, 0, 1) -> e rtable_satoplen(21,ffff800003fd9f59) at rtable_satoplen+0x150 sys/net/rtable.c:888 end trace frame: 0xffff8000149d3de0, count: 0 ddb> trace rtable_satoplen(21,ffff800003fd9f59) at rtable_satoplen+0x150 sys/net/rtable.c:888 rtable_lookup(0,ffff800003fd9f09,ffff800003fd9f59,ffff800003fd9f11,21) at rtable_lookup+0xed sys/net/rtable.c:391 rtm_output(ffff800003fd9f00,ffff8000149d3ed0,ffff8000149d3ed8,21,0) at rtm_output+0x1a7 sys/net/rtsock.c:952 route_output(fffffd80334b0900,fffffd8037000600,0,0) at route_output+0x78b sys/net/rtsock.c:806 route_usrreq(fffffd8037000600,9,fffffd80334b0900,0,0,ffff8000149fa278) at route_usrreq+0x35d sys/net/rtsock.c:271 sosend(fffffd8037000600,0,ffff8000149d4198,0,0,0) at sosend+0x6e3 sys/kern/uipc_socket.c:513 sendit(ffff8000149fa278,3,ffff8000149d4258,0,ffff8000149d4320) at sendit+0x58f sys/kern/uipc_syscalls.c:662 sys_sendto(ffff8000149fa278,ffff8000149d4338,ffff8000149d4320) at sys_sendto+0x92 syscall(ffff8000149d43d0) at syscall+0x541 Xsyscall(6,0,ffffffffffffffd8,0,6,36031d2d010) at Xsyscall+0x128 end of kernel end trace frame: 0x36238ddac40, count: -10 ddb> show registers rdi 0 rsi 0xaa rbp 0xffff8000149d3d40 rbx 0xffffffffffffff5a rdx 0xffff800003fd9f5d rcx 0xffff800003fda003 rax 0xffff800003fda003 r8 0x21 r9 0x1 r10 0xffff80000413d700 r11 0xf74a91c963a5d66f r12 0 r13 0xffff800003fda003 r14 0xffffffff821844e0 mplsdomain r15 0x4 rip 0xffffffff812ab820 rtable_satoplen+0x150 cs 0x8 rflags 0x10287 __ALIGN_SIZE+0xf287 rsp 0xffff8000149d3cf0 ss 0x10 rtable_satoplen+0x150: movzbl 0xffffffffffffffff(%r13),%r12d ddb> show proc PROC (syz-executor.1) pid=357326 stat=onproc flags process=0 proc=4000000 pri=76, usrpri=76, nice=20 forw=0xffffffffffffffff, list=0xffff8000149fb2e0,0xffffffff82266898 process=0xffff8000ffff73c0 user=0xffff8000149cf000, vmspace=0xfffffd803f013318 estcpu=36, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 2490 164924 44098 0 2 0 syz-executor.1 * 2490 357326 44098 0 7 0x4000000 syz-executor.1 44098 433217 88674 0 3 0x82 nanosleep syz-executor.1 13880 296518 88674 0 2 0x2 syz-executor.0 44163 276212 0 0 3 0x14200 bored sosplice 88674 426282 85024 0 3 0x82 kqread syz-fuzzer 88674 395934 85024 0 3 0x4000082 thrsleep syz-fuzzer 88674 116758 85024 0 3 0x4000082 thrsleep syz-fuzzer 88674 246172 85024 0 3 0x4000082 thrsleep syz-fuzzer 88674 169282 85024 0 3 0x4000082 thrsleep syz-fuzzer 88674 308519 85024 0 3 0x4000082 thrsleep syz-fuzzer 88674 25205 85024 0 3 0x4000082 thrsleep syz-fuzzer 88674 270646 85024 0 3 0x4000082 thrsleep syz-fuzzer 85024 365862 66290 0 3 0x10008a pause ksh 66290 177988 28301 0 3 0x92 select sshd 3064 481972 1 0 3 0x100083 ttyin getty 28301 336314 1 0 3 0x80 select sshd 86648 66114 29210 73 2 0x100090 syslogd 29210 68153 1 0 3 0x100082 netio syslogd 60764 352934 1 77 3 0x100090 poll dhclient 97638 250803 1 0 3 0x80 poll dhclient 55726 406317 0 0 2 0x14200 zerothread 43641 455683 0 0 3 0x14200 aiodoned aiodoned 2657 148804 0 0 3 0x14200 syncer update 45603 512909 0 0 3 0x14200 cleaner cleaner 82050 412337 0 0 3 0x14200 reaper reaper 56273 102147 0 0 3 0x14200 pgdaemon pagedaemon 15639 302822 0 0 3 0x14200 bored crynlk 69058 242035 0 0 3 0x14200 bored crypto 1050 90130 0 0 3 0x40014200 acpi0 acpi0 99501 137249 0 0 3 0x14200 bored softnet 73091 260050 0 0 3 0x14200 bored systqmp 46482 320187 0 0 3 0x14200 bored systq 13611 319404 0 0 3 0x40014200 bored softclock 16407 187327 0 0 3 0x40014200 idle0 90989 337612 0 0 3 0x14200 bored smr 1 186617 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9593 6379K 6389K 78643K 15162 0 0 pcb 24 9K 11K 78643K 7738 0 0 rtable 107 4K 4K 78643K 6125 0 0 ifaddr 87 23K 26K 78643K 1674 0 0 counters 19 16K 16K 78643K 19 0 0 ioctlops 0 0K 2K 78643K 364 0 0 iov 0 0K 32K 78643K 2149 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1190 75K 76K 78643K 8309 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 9K 78643K 245 0 0 VM map 2 0K 0K 78643K 2 0 0 sem 12 0K 0K 78643K 2238 0 0 dirhash 15 2K 2K 78643K 18 0 0 ACPI 1793 195K 288K 78643K 12537 0 0 file desc 5 13K 25K 78643K 14240 0 0 sigio 1 0K 0K 78643K 259 0 0 proc 42 30K 54K 78643K 4694 0 0 subproc 64 65538K 69634K 78643K 4328 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 ip_moptions 0 0K 0K 78643K 1773 0 0 in_multi 33 2K 2K 78643K 1958 0 0 ether_multi 1 0K 0K 78643K 107 0 0 mrt 2 0K 0K 78643K 37 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 120 530K 530K 78643K 120 0 0 exec 0 0K 1K 78643K 2145 0 0 pfkey data 0 0K 0K 78643K 10 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 131 23K 40K 78643K 34569 0 0 UVM aobj 130 8K 8K 78643K 145 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 ip6_options 0 0K 1K 78643K 595 0 0 NDP 21 0K 1K 78643K 667 0 0 temp 238 2361K 2488K 78643K 47290 0 0 kqueue 0 0K 0K 78643K 135 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 127 0 123 1 0 1 1 0 8 0 inpcbpl 280 7399 0 7392 1 0 1 1 0 8 0 plimitpl 152 552 0 545 1 0 1 1 0 8 0 rtentry 112 1174 0 1134 2 0 2 2 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 tcpqe 32 9 0 9 1 1 0 1 0 8 0 tcpcb 544 2633 0 2629 1 0 1 1 0 8 0 nd6 48 250 0 246 1 0 1 1 0 8 0 swfcl 56 1 0 0 1 0 1 1 0 8 0 ppxss 1128 193 0 192 8 7 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 5384 0 5192 21 9 12 13 0 8 0 art_table 32 5385 0 5192 2 0 2 2 0 8 0 art_node 16 1147 0 1113 1 0 1 1 0 8 0 sysvmsgpl 40 52 0 34 1 0 1 1 0 8 0 semapl 112 2234 0 2224 1 0 1 1 0 8 0 shmpl 112 143 0 15 4 0 4 4 0 8 0 dirhash 1024 22 0 2 3 0 3 3 0 8 0 dino1pl 128 24978 0 22859 69 0 69 69 0 8 0 ffsino 240 24978 0 22859 127 2 125 125 0 8 0 nchpl 144 45297 0 43253 77 0 77 77 0 8 0 uvmvnodes 72 7270 0 0 133 0 133 133 0 8 0 vnodes 200 7270 0 0 383 0 383 383 0 8 0 namei 1024 154245 0 154244 3 2 1 1 0 8 0 scsiplug 64 31 0 31 20 20 0 1 0 8 0 scxspl 192 191467 0 191467 57 56 1 6 0 8 1 sigapl 432 14039 0 14026 2 0 2 2 0 8 0 futexpl 56 238266 0 238266 3 2 1 1 0 8 1 knotepl 112 5037 0 5010 16 15 1 2 0 8 0 kqueuepl 104 4059 0 4057 1 0 1 1 0 8 0 pipepl 112 9414 0 9395 23 22 1 2 0 8 0 fdescpl 424 14040 0 14026 2 0 2 2 0 8 0 filepl 120 94540 0 94445 16 12 4 5 0 8 1 lockfpl 104 3591 0 3591 7 6 1 1 0 8 1 lockfspl 32 1614 0 1614 7 6 1 1 0 8 1 sessionpl 112 140 0 130 1 0 1 1 0 8 0 pgrppl 48 348 0 338 1 0 1 1 0 8 0 ucredpl 96 18955 0 18948 1 0 1 1 0 8 0 zombiepl 144 14026 0 14026 2 1 1 1 0 8 1 processpl 840 14055 0 14026 4 0 4 4 0 8 0 procpl 600 30970 0 30933 5 1 4 4 0 8 0 sosppl 128 195 0 195 50 50 0 1 0 8 0 sockpl 384 14120 0 14102 17 14 3 4 0 8 1 mcl64k 65536 5330 0 5330 492 492 0 64 0 8 0 mcl16k 16384 59 0 59 39 39 0 1 0 8 0 mcl12k 12288 315 0 315 45 45 0 1 0 8 0 mcl9k 9216 223 0 223 59 59 0 1 0 8 0 mcl8k 8192 226 0 226 56 55 1 1 0 8 1 mcl4k 4096 831 0 831 19 18 1 1 0 8 1 mcl2k2 2112 95 0 95 47 46 1 1 0 8 1 mcl2k 2048 69409 0 69372 53 48 5 11 0 8 0 mtagpl 80 4 0 4 2 2 0 1 0 8 0 mbufpl 256 198490 0 198408 279 271 8 40 0 8 1 bufpl 256 45361 0 38091 455 0 455 455 0 8 0 anonpl 16 1613232 0 1605549 447 400 47 67 0 62 4 amapchunkpl 152 62441 0 62358 166 161 5 14 0 158 1 amappl16 192 87272 0 86770 660 625 35 47 0 8 8 amappl15 184 2907 0 2906 1 0 1 1 0 8 0 amappl14 176 2700 0 2695 1 0 1 1 0 8 0 amappl13 168 2879 0 2874 1 0 1 1 0 8 0 amappl12 160 2583 0 2583 14 14 0 1 0 8 0 amappl11 152 3474 0 3465 1 0 1 1 0 8 0 amappl10 144 2466 0 2465 2 1 1 1 0 8 0 amappl9 136 3763 0 3758 1 0 1 1 0 8 0 amappl8 128 2661 0 2597 4 1 3 3 0 8 0 amappl7 120 2476 0 2470 1 0 1 1 0 8 0 amappl6 112 1924 0 1913 1 0 1 1 0 8 0 amappl5 104 1971 0 1960 1 0 1 1 0 8 0 amappl4 96 2781 0 2752 2 1 1 2 0 8 0 amappl3 88 1603 0 1595 1 0 1 1 0 8 0 amappl2 80 133438 0 133389 2 0 2 2 0 8 0 amappl1 72 261546 0 261139 23 14 9 18 0 8 0 amappl 72 32126 0 32094 1 0 1 1 0 75 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma64 64 259 0 259 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 17 0 17 1 1 0 1 0 8 0 aobjpl 64 144 0 15 3 0 3 3 0 8 0 uaddrrnd 24 14040 0 14026 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 14040 0 14026 1 0 1 1 0 8 0 vmmpekpl 168 92297 0 92274 2 0 2 2 0 8 0 vmmpepl 168 1514915 0 1513440 477 391 86 99 0 357 9 vmsppl 264 14039 0 14026 13 12 1 2 0 8 0 pdppl 4096 28086 0 28052 6 1 5 6 0 8 0 pvpl 32 4810828 0 4800028 1124 1001 123 245 0 265 17 pmappl 192 14039 0 14026 1 0 1 1 0 8 0 extentpl 40 39 0 25 1 0 1 1 0 8 0 phpool 112 1557 0 939 24 4 20 20 0 8 0