uvm_fault(0xfffffd806a3fe2d8, 0x4, 0, 1) -> e kernel: page fault trap, code=0 Stopped at igmp_leavegroup+0xaf: movl 0x4(%rax),%r12d TID PID UID PRFLAGS PFLAGS CPU COMMAND igmp_leavegroup(ffff800000e59300,ffff8000006ab000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000e59300) at in_delmulti+0xd3 sys/netinet/in.c:908 ip_freemoptions(ffff800000e513c0) at ip_freemoptions+0x5d sys/netinet/ip_output.c:1737 in_pcbdetach(fffffd806b61c9f0) at in_pcbdetach+0x97 sys/netinet/in_pcb.c:606 udp_detach(fffffd806aaeb638) at udp_detach+0x3f sys/netinet/udp_usrreq.c:1139 soclose(fffffd806aaeb638,0) at soclose+0x80 pru_detach sys/sys/protosw.h:283 [inline] soclose(fffffd806aaeb638,0) at soclose+0x80 sys/kern/uipc_socket.c:411 soo_close(fffffd806b5619e8,ffff80002a67acf0) at soo_close+0x44 fdrop(fffffd806b5619e8,ffff80002a67acf0) at fdrop+0xd5 sys/kern/kern_descrip.c:1274 closef(fffffd806b5619e8,ffff80002a67acf0) at closef+0x11b sys/kern/kern_descrip.c:1258 fdfree(ffff80002a67acf0) at fdfree+0xe3 sys/kern/kern_descrip.c:1190 exit1(ffff80002a67acf0,0,0,1) at exit1+0x371 sys/kern/kern_exit.c:199 sys_exit(ffff80002a67acf0,ffff80002a689b80,ffff80002a689ad0) at sys_exit+0x1a sys/kern/kern_exit.c:89 syscall(ffff80002a689b80) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7506b49c24b0, count: 1 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806a3fe2d8, 0x4, 0, 1) -> e ddb> trace igmp_leavegroup(ffff800000e59300,ffff8000006ab000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000e59300) at in_delmulti+0xd3 sys/netinet/in.c:908 ip_freemoptions(ffff800000e513c0) at ip_freemoptions+0x5d sys/netinet/ip_output.c:1737 in_pcbdetach(fffffd806b61c9f0) at in_pcbdetach+0x97 sys/netinet/in_pcb.c:606 udp_detach(fffffd806aaeb638) at udp_detach+0x3f sys/netinet/udp_usrreq.c:1139 soclose(fffffd806aaeb638,0) at soclose+0x80 pru_detach sys/sys/protosw.h:283 [inline] soclose(fffffd806aaeb638,0) at soclose+0x80 sys/kern/uipc_socket.c:411 soo_close(fffffd806b5619e8,ffff80002a67acf0) at soo_close+0x44 fdrop(fffffd806b5619e8,ffff80002a67acf0) at fdrop+0xd5 sys/kern/kern_descrip.c:1274 closef(fffffd806b5619e8,ffff80002a67acf0) at closef+0x11b sys/kern/kern_descrip.c:1258 fdfree(ffff80002a67acf0) at fdfree+0xe3 sys/kern/kern_descrip.c:1190 exit1(ffff80002a67acf0,0,0,1) at exit1+0x371 sys/kern/kern_exit.c:199 sys_exit(ffff80002a67acf0,ffff80002a689b80,ffff80002a689ad0) at sys_exit+0x1a sys/kern/kern_exit.c:89 syscall(ffff80002a689b80) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7506b49c24b0, count: -14 ddb> show registers rdi 0 rsi 0 rbp 0xffff80002a689720 rbx 0x4 rdx 0 rcx 0x1 rax 0 r8 0 r9 0 r10 0xee063018f5b11c2b r11 0x418ef5c0514ad0f2 r12 0 r13 0x3 r14 0xffff800000e59300 r15 0xffff8000006ab000 rip 0xffffffff81fd57df igmp_leavegroup+0xaf cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002a6896f0 ss 0x10 igmp_leavegroup+0xaf: movl 0x4(%rax),%r12d ddb> show proc PROC (syz-executor.2) tid=400100 pid=56043 tcnt=1 stat=onproc flags process=8001018 proc=2000 runpri=32, usrpri=84, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff80002a67acf0 forw=0xffffffffffffffff, list=0xffff80002a67a020,0xffff80002a6834b8 process=0xffff80002a6121a0 user=0xffff80002a684000, vmspace=0xfffffd806a3fe2d8 estcpu=34, cpticks=1, pctcpu=0.23, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 99407 361677 41431 0 2 0x8000000 syz-executor.0 40583 355773 83677 0 2 0x8000000 syz-executor.7 83827 245435 65222 0 2 0x8000000 syz-executor.1 49648 269253 1241 0 2 0x8000000 syz-executor.6 49648 330494 1241 0 3 0xc000080 fsleep syz-executor.6 99940 233110 91189 0 2 0x8000000 syz-executor.4 99940 229375 91189 0 2 0xc000000 syz-executor.4 91189 369871 31513 0 3 0x8000082 nanoslp syz-executor.4 27831 361087 31513 0 3 0x8000082 nanoslp syz-executor.3 83677 247939 31513 0 3 0x8000082 nanoslp syz-executor.7 22449 190293 31513 0 3 0x8000082 nanoslp syz-executor.2 41431 289062 31513 0 3 0x8000082 nanoslp syz-executor.0 89522 142025 31513 0 2 0x8000002 syz-executor.5 1241 325902 31513 0 3 0x8000082 nanoslp syz-executor.6 89565 174257 0 0 3 0x14200 acct acct 65222 423430 31513 0 3 0x8000082 nanoslp syz-executor.1 52650 488109 1 0 3 0x18100083 ttyin getty 58238 272577 0 0 3 0x14200 bored sosplice 31513 167579 35503 0 3 0x1a000082 wait syz-fuzzer 31513 467939 35503 0 3 0x1e000082 nanoslp syz-fuzzer 31513 177045 35503 0 3 0x1e000082 wait syz-fuzzer 31513 511825 35503 0 3 0x1e000082 thrsleep syz-fuzzer 31513 241157 35503 0 3 0x1e000082 thrsleep syz-fuzzer 31513 115373 35503 0 3 0x1e000082 thrsleep syz-fuzzer 31513 243973 35503 0 3 0x1e000082 wait syz-fuzzer 31513 98373 35503 0 2 0x1e000002 syz-fuzzer 31513 218688 35503 0 3 0x1e000082 wait syz-fuzzer 31513 205255 35503 0 3 0x1e000082 wait syz-fuzzer 31513 427189 35503 0 3 0x1e000082 thrsleep syz-fuzzer 31513 424539 35503 0 3 0x1e000082 wait syz-fuzzer 31513 327103 35503 0 3 0x1e000082 wait syz-fuzzer 31513 475128 35503 0 3 0x1e000082 wait syz-fuzzer 35503 371024 44483 0 3 0x810008a sigsusp ksh 44483 75304 70742 0 3 0x1800009a kqread sshd 70742 51060 1 0 3 0x18000088 kqread sshd 73440 396084 64311 73 3 0x19100090 kqread syslogd 64311 296563 1 0 3 0x18100082 sbwait syslogd 22388 17597 1 0 3 0x18100080 kqread resolvd 77617 456596 3467 77 3 0x18100092 kqread dhcpleased 66037 243647 3467 77 3 0x18100092 kqread dhcpleased 3467 492094 1 0 3 0x18000080 kqread dhcpleased 17243 1583 0 0 3 0x14200 bored smr 70157 381003 0 0 2 0x14200 zerothread 7242 511679 0 0 3 0x14200 aiodoned aiodoned 93162 430365 0 0 3 0x14200 syncer update 18107 332286 0 0 3 0x14200 cleaner cleaner 40007 52104 0 0 3 0x14200 reaper reaper 66906 174255 0 0 3 0x14200 pgdaemon pagedaemon 60042 324741 0 0 3 0x14200 bored viomb 80774 345809 0 0 3 0x40014200 acpi0 acpi0 77661 444702 0 0 3 0x14200 bored softnet3 69903 273455 0 0 3 0x14200 bored softnet2 64784 478051 0 0 3 0x14200 bored softnet1 45965 4099 0 0 3 0x14200 bored softnet0 28377 405185 0 0 3 0x14200 bored systqmp 15113 519492 0 0 3 0x14200 bored systq 78637 273841 0 0 3 0x40014200 tmoslp softclock 44194 134255 0 0 3 0x40014200 idle0 1 387493 0 0 3 0x8000082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10172 6416K 7047K 166960K 12397 0 pcb 15 10K 10K 166960K 227 0 rtable 226 9K 10K 166960K 1608 0 pf 30 9K 10K 166960K 175 0 ifaddr 39 11K 12K 166960K 221 0 ifgroup 53 2K 2K 166960K 290 0 sysctl 4 1K 2K 166960K 11 0 counters 30 17K 18K 166960K 97 0 ioctlops 0 0K 2K 166960K 178 0 iov 0 0K 18K 166960K 183 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1386 87K 88K 166960K 2735 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 62 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 135 0 dirhash 12 2K 3K 166960K 102 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 17 61K 69K 166960K 2683 0 sigio 0 0K 0K 166960K 60 0 proc 58 59K 83K 166960K 1591 0 subproc 104 6K 7K 166960K 536 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 2 0K 0K 166960K 349 0 in_multi 79 5K 7K 166960K 554 0 ether_multi 1 0K 0K 166960K 9 0 mrt 0 0K 0K 166960K 6 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 85 387K 387K 166960K 85 0 exec 0 0K 1K 166960K 1034 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 334 176K 194K 166960K 24255 0 UVM aobj 109 6K 6K 166960K 123 0 pinsyscall 37 74K 100K 166960K 4683 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 171 0 NDP 13 0K 1K 166960K 160 0 temp 77 6808K 6936K 166960K 53476 0 kqueue 12 18K 28K 166960K 303 0 SYN cache 2 32K 40K 166960K 3 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 341 0 338 3 0 3 3 0 8 2 rtentry 112 536 0 436 4 0 4 4 0 8 0 unpcb 144 1655 0 1642 6 0 6 6 0 8 5 syncache 336 22 0 22 1 0 1 1 0 8 1 tcpqe 32 15 0 15 1 0 1 1 0 8 1 tcpcb 808 849 0 842 3 0 3 3 0 8 2 arp 88 101 0 82 1 0 1 1 0 8 0 ipq 40 5 0 4 1 0 1 1 0 8 0 ipqe 40 7 0 6 1 0 1 1 0 8 0 inpcb 360 2585 0 2570 8 0 8 8 0 8 5 ip6q 72 1 0 1 1 0 1 1 0 8 1 ip6af 40 4 0 4 1 0 1 1 0 8 1 nd6 104 131 0 111 1 0 1 1 0 8 0 pkpcb 40 13 0 13 1 0 1 1 0 8 1 kcovpl 48 41 0 33 1 0 1 1 0 8 0 ppxss 1072 21 0 21 1 0 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 2041 0 1657 53 23 30 30 0 8 3 art_table 32 2042 0 1657 4 0 4 4 0 8 0 art_node 16 525 0 435 1 0 1 1 0 8 0 sysvmsgpl 40 37 0 27 1 0 1 1 0 8 0 semupl 112 4 0 4 1 0 1 1 0 8 1 semapl 112 127 0 117 1 0 1 1 0 8 0 shmpl 112 120 0 14 4 0 4 4 0 8 0 dirhash 1024 77 0 60 3 0 3 3 0 8 0 dino2pl 256 5298 0 3779 96 0 96 96 0 8 0 ffsino 240 5298 0 3779 90 0 90 90 0 8 0 nchpl 144 8853 0 7126 66 0 66 66 0 8 0 uvmvnodes 80 6166 0 0 126 0 126 126 0 8 0 vnodes 216 6166 0 0 343 0 343 343 0 8 0 namei 1024 31774 0 31774 3 0 3 3 0 8 3 vcpupl 2048 29 0 0 4 0 4 4 0 8 0 vmpool 664 37 0 8 3 0 3 3 0 8 0 kstatmem 264 156 0 134 3 0 3 3 0 8 1 scxspl 216 45081 0 45081 8 0 8 8 1 8 8 plimitpl 152 340 0 324 1 0 1 1 0 8 0 sigapl 424 2942 0 2896 8 0 8 8 0 8 2 futexpl 64 37848 0 37847 1 0 1 1 0 8 0 knotepl 120 24486 0 24404 11 0 11 11 0 8 7 kqueuepl 184 645 0 637 4 0 4 4 0 8 3 pipepl 288 526 0 498 7 0 7 7 0 8 4 fdescpl 432 2884 0 2856 4 0 4 4 0 8 0 filepl 120 16888 0 16643 16 1 15 16 0 8 6 lockfpl 104 739 0 737 2 0 2 2 0 8 1 lockfspl 48 269 0 267 1 0 1 1 0 8 0 sessionpl 144 58 0 42 1 0 1 1 0 8 0 pgrppl 48 79 0 63 1 0 1 1 0 8 0 ucredpl 104 2729 0 2718 1 0 1 1 0 8 0 zombiepl 144 2898 0 2896 1 0 1 1 0 8 0 processpl 1072 2942 0 2896 5 0 5 5 0 8 1 procpl 656 5757 0 5696 8 0 8 8 0 8 1 sosppl 168 49 0 49 1 0 1 1 0 8 1 sockpl 472 4609 0 4580 25 13 12 21 0 8 7 mcl64k 65536 93 0 92 1 0 1 1 0 8 0 mcl16k 16384 51 0 51 1 0 1 1 0 8 1 mcl12k 12288 103 0 103 1 0 1 1 0 8 1 mcl9k 9216 33 0 33 1 0 1 1 0 8 1 mcl8k 8192 176 0 176 1 0 1 1 0 8 1 mcl4k 4096 429 0 429 1 0 1 1 0 8 1 mcl2k2 2112 25 0 25 1 0 1 1 0 8 1 mcl2k 2048 36539 0 36437 50 29 21 37 0 8 6 mtagpl 96 40 0 40 1 0 1 1 0 8 1 mbufpl 256 91775 0 91546 110 82 28 64 0 8 8 bufpl 280 11923 0 5308 473 0 473 473 0 8 0 anonpl 24 458472 0 452543 67 0 67 67 0 188 14 amapchunkpl 152 78182 0 77574 40 0 40 40 0 158 13 amappl16 200 10577 0 10445 36 19 17 20 0 8 8 amappl15 192 14 0 13 1 0 1 1 0 8 0 amappl14 184 271 0 260 2 0 2 2 0 8 1 amappl13 176 14 0 14 1 0 1 1 0 8 1 amappl12 168 4027 0 3996 2 0 2 2 0 8 0 amappl11 160 84 0 74 1 0 1 1 0 8 0 amappl10 152 143 0 130 1 0 1 1 0 8 0 amappl9 144 161 0 161 1 0 1 1 0 8 1 amappl8 136 444 0 363 4 0 4 4 0 8 0 amappl7 128 112 0 95 1 0 1 1 0 8 0 amappl6 120 803 0 785 2 0 2 2 0 8 1 amappl5 112 333 0 321 1 0 1 1 0 8 0 amappl4 104 788 0 754 2 0 2 2 0 8 1 amappl3 96 15375 0 15305 3 0 3 3 0 8 0 amappl2 88 3561 0 3481 3 0 3 3 0 8 1 amappl1 80 20679 0 20190 22 3 19 22 0 8 8 amappl 88 23227 0 23035 6 0 6 6 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 122 0 14 2 0 2 2 0 8 0 uaddrrnd 24 2921 0 2864 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2921 0 2864 1 0 1 1 0 8 0 vmmpekpl 168 23415 0 23354 4 0 4 4 0 8 0 vmmpepl 168 201018 0 199077 110 0 110 110 0 357 16 vmsppl 344 2920 0 2864 6 0 6 6 0 8 0 rwobjpl 24 59383 0 51984 45 0 45 45 0 8 0 pdppl 4096 5848 0 5757 260 167 93 93 0 8 2 pvpl 32 1247718 0 1236021 347 13 334 347 0 265 215 pmappl 216 2920 0 2864 4 0 4 4 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 688 0 301 13 0 13 13 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace igmp_leavegroup(ffff800000e59300,ffff8000006ab000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000e59300) at in_delmulti+0xd3 sys/netinet/in.c:908 ip_freemoptions(ffff800000e513c0) at ip_freemoptions+0x5d sys/netinet/ip_output.c:1737 in_pcbdetach(fffffd806b61c9f0) at in_pcbdetach+0x97 sys/netinet/in_pcb.c:606 udp_detach(fffffd806aaeb638) at udp_detach+0x3f sys/netinet/udp_usrreq.c:1139 soclose(fffffd806aaeb638,0) at soclose+0x80 pru_detach sys/sys/protosw.h:283 [inline] soclose(fffffd806aaeb638,0) at soclose+0x80 sys/kern/uipc_socket.c:411 soo_close(fffffd806b5619e8,ffff80002a67acf0) at soo_close+0x44 fdrop(fffffd806b5619e8,ffff80002a67acf0) at fdrop+0xd5 sys/kern/kern_descrip.c:1274 closef(fffffd806b5619e8,ffff80002a67acf0) at closef+0x11b sys/kern/kern_descrip.c:1258 fdfree(ffff80002a67acf0) at fdfree+0xe3 sys/kern/kern_descrip.c:1190 exit1(ffff80002a67acf0,0,0,1) at exit1+0x371 sys/kern/kern_exit.c:199 sys_exit(ffff80002a67acf0,ffff80002a689b80,ffff80002a689ad0) at sys_exit+0x1a sys/kern/kern_exit.c:89 syscall(ffff80002a689b80) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7506b49c24b0, count: -14 ddb> machine ddbcpu 1 No such command ddb> trace igmp_leavegroup(ffff800000e59300,ffff8000006ab000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000e59300) at in_delmulti+0xd3 sys/netinet/in.c:908 ip_freemoptions(ffff800000e513c0) at ip_freemoptions+0x5d sys/netinet/ip_output.c:1737 in_pcbdetach(fffffd806b61c9f0) at in_pcbdetach+0x97 sys/netinet/in_pcb.c:606 udp_detach(fffffd806aaeb638) at udp_detach+0x3f sys/netinet/udp_usrreq.c:1139 soclose(fffffd806aaeb638,0) at soclose+0x80 pru_detach sys/sys/protosw.h:283 [inline] soclose(fffffd806aaeb638,0) at soclose+0x80 sys/kern/uipc_socket.c:411 soo_close(fffffd806b5619e8,ffff80002a67acf0) at soo_close+0x44 fdrop(fffffd806b5619e8,ffff80002a67acf0) at fdrop+0xd5 sys/kern/kern_descrip.c:1274 closef(fffffd806b5619e8,ffff80002a67acf0) at closef+0x11b sys/kern/kern_descrip.c:1258 fdfree(ffff80002a67acf0) at fdfree+0xe3 sys/kern/kern_descrip.c:1190 exit1(ffff80002a67acf0,0,0,1) at exit1+0x371 sys/kern/kern_exit.c:199 sys_exit(ffff80002a67acf0,ffff80002a689b80,ffff80002a689ad0) at sys_exit+0x1a sys/kern/kern_exit.c:89 syscall(ffff80002a689b80) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7506b49c24b0, count: -14