uvm_fault(0xffffffff825414f8, 0xffff800000abc000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic kernel page fault uvm_fault(0xffffffff825414f8, 0xffff800000abc000, 0, 1) -> e memcpy() at memcpy+0x15 end trace frame: 0xffff800020ab7c90, count: 0 ddb{1}> trace memcpy() at memcpy+0x15 sysctl_iflist(0,ffff800020ab7ce8) at sysctl_iflist+0x255 sys/net/rtsock.c:1981 sysctl_rtable(ffff800020ab7dac,3,130452b38000,ffff800020ab7dd8,0,0) at sysctl_rtable+0x196 sys/net/rtsock.c:2078 sys_sysctl(ffff800020a7c758,ffff800020ab7e40,ffff800020ab7e90) at sys_sysctl+0x20e sys/kern/kern_sysctl.c:252 syscall(ffff800020ab7f10) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800020ab7f10) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffd7fc0, count: -6 ddb{1}> show registers rdi 0xffff8000009cdce8 rsi 0xffff800000abc000 rbp 0xffff800020ab7b90 rbx 0xe8 rdx 0xe8 rcx 0x5 rax 0xfffffffffff11ce8 r8 0x110 r9 0x5 r10 0xa6fbbbc5ac17ae43 r11 0xffff8000009cdc28 r12 0xffff800000abbf40 r13 0xe8 r14 0xffff8000009cdc28 r15 0x6 rip 0xffffffff819d3eb5 memcpy+0x15 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff800020ab7ad8 ss 0x10 memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> show proc PROC (dhclient) pid=38340 stat=onproc flags process=100010 proc=0 pri=24, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff800020a7c278,0xffff800020aefd60 process=0xffff800020a91690 user=0xffff800020ab2000, vmspace=0xfffffd807efff2e0 estcpu=0, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 82977 138253 94345 0 2 0 syz-executor.0 82977 266539 94345 0 3 0x4000000 biowait syz-executor.0 59026 381358 85215 0 2 0 syz-executor.1 59026 285769 85215 0 3 0x4000080 netio syz-executor.1 45054 460044 0 0 3 0x14200 bored sosplice 85215 407873 42669 0 3 0x82 nanosleep syz-executor.1 94345 410973 42669 0 3 0x82 nanosleep syz-executor.0 42669 428756 87654 0 3 0x82 thrsleep syz-fuzzer 42669 323853 87654 0 3 0x4000082 thrsleep syz-fuzzer 42669 44575 87654 0 3 0x4000082 kqread syz-fuzzer 42669 239666 87654 0 3 0x4000082 thrsleep syz-fuzzer 42669 441229 87654 0 3 0x4000082 thrsleep syz-fuzzer 42669 111983 87654 0 3 0x4000082 thrsleep syz-fuzzer 42669 130061 87654 0 3 0x4000082 thrsleep syz-fuzzer 42669 26770 87654 0 3 0x4000082 thrsleep syz-fuzzer 42669 490069 87654 0 3 0x4000082 thrsleep syz-fuzzer 42669 255419 87654 0 3 0x4000082 thrsleep syz-fuzzer 87654 183054 22349 0 3 0x10008a pause ksh 22349 201259 92726 0 3 0x92 select sshd 18086 431059 1 0 3 0x100083 ttyin getty 92726 162560 1 0 3 0x80 select sshd 29912 125921 22661 74 3 0x100092 bpf pflogd 22661 461941 1 0 3 0x80 netio pflogd 97205 186658 9494 73 3 0x100090 kqread syslogd 9494 36703 1 0 3 0x100082 netio syslogd *38448 38340 1 77 7 0x100010 dhclient 60021 142535 1 0 7 0 dhclient 29644 482858 0 0 2 0x14200 zerothread 25116 89813 0 0 3 0x14200 aiodoned aiodoned 21867 307527 0 0 3 0x14200 syncer update 23742 194196 0 0 3 0x14200 cleaner cleaner 64511 21538 0 0 3 0x14200 reaper reaper 90537 27310 0 0 3 0x14200 pgdaemon pagedaemon 71685 120665 0 0 3 0x14200 bored crynlk 74152 489872 0 0 3 0x14200 bored crypto 10671 130204 0 0 3 0x40014200 acpi0 acpi0 86681 268549 0 0 3 0x40014200 idle1 28111 314826 0 0 3 0x14200 bored softnet 26333 61481 0 0 3 0x14200 bored systqmp 77024 384002 0 0 3 0x14200 bored systq 28418 387395 0 0 3 0x40014200 bored softclock 76269 502051 0 0 3 0x40014200 idle0 34808 192655 0 0 3 0x14200 bored smr 1 28252 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 82977 (syz-executor.0) thread 0xffff800020ad7608 (266539) exclusive rrwlock inode r = 0 (0xfffffd80668daa30) #0 witness_lock+0x52e sys/kern/subr_witness.c:1164 #1 rw_enter+0x453 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x88 sys/kern/kern_rwlock.c:453 #3 ufs_ihashins+0x45 sys/ufs/ufs/ufs_ihash.c:140 #4 ffs_vget+0x13e sys/ufs/ffs/ffs_vfsops.c:1352 #5 ffs_inode_alloc+0x1cf sys/ufs/ffs/ffs_alloc.c:392 #6 ufs_makeinode+0xaa sys/ufs/ufs/ufs_vnops.c:1832 #7 ufs_create+0x41 sys/ufs/ufs/ufs_vnops.c:152 #8 VOP_CREATE+0xc0 sys/kern/vfs_vops.c:113 #9 vn_open+0x2a4 sys/kern/vfs_vnops.c:122 #10 doopenat+0x28b sys/kern/vfs_syscalls.c:1148 #11 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #11 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #12 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd80668da5f0) #0 witness_lock+0x52e sys/kern/subr_witness.c:1164 #1 rw_enter+0x453 sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x88 sys/kern/kern_rwlock.c:453 #3 VOP_LOCK+0xf9 sys/kern/vfs_vops.c:615 #4 vn_lock+0x81 sys/kern/vfs_vnops.c:571 #5 vfs_lookup+0xe6 sys/kern/vfs_lookup.c:419 #6 namei+0x63c sys/kern/vfs_lookup.c:249 #7 vn_open+0x1a6 sys/kern/vfs_vnops.c:113 #8 doopenat+0x28b sys/kern/vfs_syscalls.c:1148 #9 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #9 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #10 Xsyscall+0x128 Process 38448 (dhclient) thread 0xffff800020a7c758 (38340) exclusive rwlock netlock r = 0 (0xffffffff8245ee98) #0 witness_lock+0x52e sys/kern/subr_witness.c:1164 #1 sysctl_rtable+0x187 sys/net/rtsock.c:2077 #2 sys_sysctl+0x20e sys/kern/kern_sysctl.c:252 #3 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #3 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #4 Xsyscall+0x128 exclusive rwlock sysctllk r = 0 (0xffffffff824e1db0) #0 witness_lock+0x52e sys/kern/subr_witness.c:1164 #1 rw_enter+0x453 sys/kern/kern_rwlock.c:309 #2 sys_sysctl+0x1ac sys/kern/kern_sysctl.c:236 #3 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #3 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #4 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 1 (0xffffffff8264b5f8) #0 witness_lock+0x52e sys/kern/subr_witness.c:1164 #1 syscall+0x400 mi_syscall sys/sys/syscall_mi.h:93 [inline] #1 syscall+0x400 sys/arch/amd64/amd64/trap.c:570 #2 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9534 6797K 7312K 78643K 11553 0 pcb 13 8K 8K 78643K 53 0 rtable 109 4K 4K 78643K 302 0 ifaddr 73 15K 15K 78643K 90 0 counters 45 34K 34K 78643K 49 0 ioctlops 0 0K 4K 78643K 1479 0 iov 0 0K 12K 78643K 22 0 mount 1 1K 1K 78643K 1 0 vnodes 1226 77K 77K 78643K 1463 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 6 0 VM map 2 1K 1K 78643K 2 0 sem 12 0K 0K 78643K 36 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1809 196K 290K 78643K 12766 0 file desc 6 17K 25K 78643K 229 0 sigio 0 0K 0K 78643K 12 0 proc 62 63K 95K 78643K 476 0 subproc 32 2K 2K 78643K 34 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 1K 78643K 54 0 in_multi 67 3K 3K 78643K 105 0 ether_multi 1 0K 0K 78643K 7 0 mrt 0 0K 0K 78643K 6 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 73 334K 334K 78643K 73 0 exec 0 0K 1K 78643K 218 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 117 38K 38K 78643K 1703 0 UVM aobj 17 4K 4K 78643K 19 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 44 0 NDP 10 0K 0K 78643K 18 0 temp 114 3019K 3083K 78643K 5054 0 kqueue 3 4K 16K 78643K 35 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 10 0 3 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 80 48 0 46 1 0 1 1 0 8 0 rtentry 112 66 0 22 2 0 2 2 0 8 0 unpcb 120 181 0 169 1 0 1 1 0 8 0 syncache 264 6 0 6 2 1 1 1 0 8 1 sackhl 24 1 0 1 1 0 1 1 0 8 1 tcpqe 32 144 0 144 1 1 0 1 0 8 0 tcpcb 544 122 0 118 2 0 2 2 0 8 1 inpcb 280 335 0 328 2 0 2 2 0 8 1 rttmr 72 2 0 2 1 1 0 1 0 8 0 nd6 48 6 0 3 1 0 1 1 0 8 0 pkpcb 40 2 0 2 1 0 1 1 0 8 1 pffrag 232 2 0 2 1 0 1 1 0 482 1 pffrnode 88 2 0 2 1 0 1 1 0 8 1 pffrent 40 4 0 4 1 0 1 1 0 8 1 pfosfp 40 846 0 423 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 30 0 3 1 0 1 1 0 8 0 pfstkey 112 30 0 3 1 0 1 1 0 8 0 pfstate 328 30 0 3 3 0 3 3 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 297 0 79 15 1 14 15 0 8 0 art_table 32 299 0 79 2 0 2 2 0 8 0 art_node 16 65 0 24 1 0 1 1 0 8 0 sysvmsgpl 40 6 0 2 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 34 0 24 1 0 1 1 0 8 0 shmpl 112 17 0 2 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 1764 0 356 46 0 46 46 0 8 0 ffsino 272 1764 0 356 95 0 95 95 0 8 0 nchpl 144 2314 0 695 61 0 61 61 0 8 0 uvmvnodes 72 2014 0 0 37 0 37 37 0 8 0 vnodes 208 2014 0 0 106 0 106 106 0 8 0 namei 1024 6567 0 6566 1 0 1 1 0 8 0 percpumem 16 35 0 2 1 0 1 1 0 8 0 vcpupl 1984 1 0 0 1 0 1 1 0 8 0 vmpool 560 1 0 0 1 0 1 1 0 8 0 scxspl 192 7164 0 7163 7 3 4 6 0 8 3 plimitpl 152 29 0 21 1 0 1 1 0 8 0 sigapl 432 428 0 412 3 1 2 3 0 8 0 futexpl 56 4479 0 4479 1 0 1 1 0 8 1 knotepl 112 128 0 109 2 0 2 2 0 8 1 kqueuepl 104 92 0 89 1 0 1 1 0 8 0 pipelkpl 48 138 0 128 1 0 1 1 0 8 0 pipepl 120 276 0 257 1 0 1 1 0 8 0 fdescpl 496 429 0 412 3 0 3 3 0 8 0 filepl 152 3067 0 2961 6 0 6 6 0 8 1 lockfpl 104 163 0 162 1 0 1 1 0 8 0 lockfspl 48 74 0 73 1 0 1 1 0 8 0 sessionpl 112 18 0 7 1 0 1 1 0 8 0 pgrppl 48 18 0 7 1 0 1 1 0 8 0 ucredpl 96 361 0 352 1 0 1 1 0 8 0 zombiepl 144 412 0 412 1 0 1 1 0 8 1 processpl 960 445 0 412 5 0 5 5 0 8 0 procpl 624 923 0 879 4 0 4 4 0 8 0 sockpl 400 566 0 545 5 0 5 5 0 8 2 mcl64k 65536 5 0 0 1 0 1 1 0 8 0 mcl16k 16384 1 0 0 1 0 1 1 0 8 0 mcl12k 12288 2 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 3 0 0 1 0 1 1 0 8 0 mcl4k 4096 5 0 0 1 0 1 1 0 8 0 mcl2k2 2112 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 193 0 0 24 0 24 24 0 8 0 mtagpl 80 24 0 0 1 0 1 1 0 8 0 mbufpl 256 208 0 0 13 0 13 13 0 8 0 bufpl 280 4679 0 190 321 0 321 321 0 8 0 anonpl 16 56282 0 39654 81 2 79 80 0 125 11 amapchunkpl 152 2273 0 2107 9 1 8 9 0 158 0 amappl16 192 2078 0 1175 55 3 52 55 0 8 6 amappl15 184 58 0 55 1 0 1 1 0 8 0 amappl14 176 224 0 219 1 0 1 1 0 8 0 amappl12 160 3 0 2 2 1 1 1 0 8 0 amappl11 152 59 0 43 1 0 1 1 0 8 0 amappl10 144 16 0 10 1 0 1 1 0 8 0 amappl9 136 596 0 593 1 0 1 1 0 8 0 amappl8 128 130 0 106 1 0 1 1 0 8 0 amappl7 120 102 0 91 1 0 1 1 0 8 0 amappl6 112 61 0 52 1 0 1 1 0 8 0 amappl5 104 145 0 130 1 0 1 1 0 8 0 amappl4 96 584 0 553 2 1 1 2 0 8 0 amappl3 88 413 0 400 1 0 1 1 0 8 0 amappl2 80 2551 0 2469 3 1 2 3 0 8 0 amappl1 72 19455 0 18989 27 17 10 21 0 8 0 amappl 80 1178 0 1126 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 18 0 2 1 0 1 1 0 8 0 uaddrrnd 24 430 0 412 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 430 0 412 1 0 1 1 0 8 0 vmmpekpl 168 7160 0 7117 2 0 2 2 0 8 0 vmmpepl 168 59974 0 57784 121 14 107 115 0 357 11 vmsppl 368 429 0 412 2 0 2 2 0 8 0 pdppl 4096 867 0 825 6 0 6 6 0 8 0 pvpl 32 183141 0 163260 190 1 189 190 0 265 28 pmappl 232 429 0 412 2 0 2 2 0 8 0 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 180 0 4 6 0 6 6 0 8 0