uvm_fault(0xffffffff8250bc90, 0xfffffd0000000018, 0, 1) -> e kernel: page fault trap, code=0 Stopped at bpf_mtap+0x58: movl 0x18(%rbx),%r12d ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic kernel page fault uvm_fault(0xffffffff8250bc90, 0xfffffd0000000018, 0, 1) -> e bpf_mtap(ffff800000a53f40,fffffd8066682000,2) at bpf_mtap+0x58 sys/net/bpf.c:1277 end trace frame: 0xffff80001d3ffcd0, count: 0 ddb> trace bpf_mtap(ffff800000a53f40,fffffd8066682000,2) at bpf_mtap+0x58 sys/net/bpf.c:1277 tun_dev_read(ffff800000a43800,ffff80001d3fff48,10) at tun_dev_read+0x274 sys/net/if_tun.c:821 spec_read(ffff80001d3ffd90) at spec_read+0xe9 sys/kern/spec_vnops.c:222 VOP_READ(fffffd805d6e7ea0,ffff80001d3fff48,10,fffffd806c3c6a20) at VOP_READ+0xbf sys/kern/vfs_vops.c:248 vn_read(fffffd8054ce4c40,ffff80001d3fff48,0) at vn_read+0x11f sys/kern/vfs_vnops.c:375 dofilereadv(ffff80001d404508,f0,ffff80001d3fff48,0,ffff80001d400030) at dofilereadv+0x1a2 sys/kern/sys_generic.c:236 sys_read(ffff80001d404508,ffff80001d3fffe0,ffff80001d400030) at sys_read+0x83 sys/kern/sys_generic.c:156 syscall(ffff80001d4000b0) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa657b3a69a0, count: -9 ddb> show registers rdi 0xffffffff811faa35 bpf_mtap+0x55 rsi 0x51 rbp 0xffff80001d3ffc50 rbx 0xfffffd0000000000 rdx 0x52 rcx 0xffff800020633000 rax 0x3e r8 0xffff80001d400030 r9 0x5 r10 0xf06d6a96d96f1964 r11 0xadd684430e66b438 r12 0x3e r13 0x2 r14 0xfffffd8066682000 r15 0xffff800000a53f40 rip 0xffffffff811faa38 bpf_mtap+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80001d3ffbd0 ss 0x10 bpf_mtap+0x58: movl 0x18(%rbx),%r12d ddb> show proc PROC (syz-executor.1) pid=76177 stat=onproc flags process=0 proc=4000000 pri=86, usrpri=86, nice=20 forw=0xffffffffffffffff, list=0xffff80001d405b40,0xffffffff82577f48 process=0xffff8000ffff6a48 user=0xffff80001d3fb000, vmspace=0xfffffd8055c4bcc0 estcpu=36, cpticks=2, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 90076 241318 77739 0 2 0 syz-executor.1 *90076 76177 77739 0 7 0x4000000 syz-executor.1 77739 280013 15471 0 3 0x82 nanosleep syz-executor.1 86741 197634 0 0 3 0x14200 bored sosplice 3283 433569 15471 0 2 0x482 syz-executor.0 15471 312401 15957 0 3 0x82 thrsleep syz-fuzzer 15471 17367 15957 0 3 0x4000082 nanosleep syz-fuzzer 15471 369169 15957 0 3 0x4000082 kqread syz-fuzzer 15471 378241 15957 0 3 0x4000082 thrsleep syz-fuzzer 15471 136991 15957 0 3 0x4000082 thrsleep syz-fuzzer 15471 253427 15957 0 3 0x4000082 thrsleep syz-fuzzer 15471 67206 15957 0 3 0x4000082 thrsleep syz-fuzzer 15471 55029 15957 0 3 0x4000082 thrsleep syz-fuzzer 15957 209469 50001 0 3 0x10008a pause ksh 50001 208200 47992 0 3 0x92 select sshd 81085 172446 1 0 3 0x100083 ttyin getty 47992 330714 1 0 3 0x80 select sshd 12118 127983 50044 73 2 0x100090 syslogd 50044 358573 1 0 3 0x100082 netio syslogd 9116 184903 1 77 3 0x100090 poll dhclient 85690 248013 1 0 3 0x80 poll dhclient 46316 149827 0 0 2 0x14200 zerothread 27754 94750 0 0 3 0x14200 aiodoned aiodoned 86956 453893 0 0 3 0x14200 syncer update 96448 209733 0 0 3 0x14200 cleaner cleaner 74479 151759 0 0 3 0x14200 reaper reaper 48520 63704 0 0 3 0x14200 pgdaemon pagedaemon 20761 518941 0 0 3 0x14200 bored crynlk 42419 232914 0 0 3 0x14200 bored crypto 88437 490903 0 0 3 0x40014200 acpi0 acpi0 72539 14513 0 0 3 0x14200 bored softnet 69936 120071 0 0 3 0x14200 bored systqmp 55759 109944 0 0 3 0x14200 bored systq 93357 384438 0 0 3 0x40014200 bored softclock 68817 286196 0 0 3 0x40014200 idle0 21138 334636 0 0 3 0x14200 bored smr 1 21603 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9541 7180K 7505K 78643K 12154 0 pcb 13 10K 12K 78643K 191 0 rtable 106 3K 4K 78643K 440 0 ifaddr 88 17K 17K 78643K 157 0 counters 19 16K 16K 78643K 19 0 ioctlops 0 0K 2K 78643K 72 0 iov 0 0K 16K 78643K 156 0 mount 1 1K 1K 78643K 1 0 vnodes 1218 76K 77K 78643K 2143 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 11 0 VM map 2 0K 0K 78643K 2 0 sem 12 1K 1K 78643K 251 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1794 195K 288K 78643K 12646 0 file desc 5 13K 25K 78643K 878 0 sigio 0 0K 0K 78643K 14 0 proc 49 38K 63K 78643K 503 0 subproc 32 2K 2K 78643K 68 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 54 0 in_multi 69 3K 3K 78643K 112 0 ether_multi 1 0K 0K 78643K 8 0 mrt 0 0K 0K 78643K 17 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 102 450K 450K 78643K 102 0 exec 0 0K 1K 78643K 290 0 pfkey data 0 0K 4K 78643K 2 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 114 21K 42K 78643K 3674 0 UVM aobj 24 2K 2K 78643K 30 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 171 0 NDP 14 0K 0K 78643K 33 0 temp 143 3031K 3671K 78643K 22570 0 kqueue 0 0K 0K 78643K 19 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 15 0 9 1 0 1 1 0 8 0 rtpcb 80 100 0 98 1 0 1 1 0 8 0 rtentry 112 90 0 47 2 0 2 2 0 8 0 unpcb 120 412 0 404 1 0 1 1 0 8 0 syncache 264 6 0 6 2 2 0 1 0 8 0 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpqe 32 226 0 226 1 1 0 1 0 8 0 tcpcb 544 518 0 514 12 11 1 11 0 8 0 ipq 40 6 0 6 3 3 0 1 0 8 0 ipqe 40 102 0 102 3 3 0 1 0 8 0 inpcb 280 1504 0 1496 23 22 1 9 0 8 0 rttmr 72 7 0 7 4 4 0 1 0 8 0 nd6 48 9 0 6 1 0 1 1 0 8 0 pkpcb 40 6 0 6 3 3 0 1 0 8 0 ppxss 1128 7 0 7 3 3 0 1 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 353 0 137 15 0 15 15 0 8 0 art_table 32 355 0 137 2 0 2 2 0 8 0 art_node 16 89 0 49 1 0 1 1 0 8 0 sysvmsgpl 40 40 0 21 1 0 1 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 249 0 239 1 0 1 1 0 8 0 shmpl 112 28 0 6 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 2964 0 1569 46 0 46 46 0 8 0 ffsino 240 2964 0 1569 83 0 83 83 0 8 0 nchpl 144 4390 0 2801 60 0 60 60 0 8 0 uvmvnodes 72 3388 0 0 62 0 62 62 0 8 0 vnodes 208 3388 0 0 179 0 179 179 0 8 0 namei 1024 16545 0 16545 3 2 1 1 0 8 1 vcpupl 1984 2 0 0 1 0 1 1 0 8 0 vmpool 528 6 0 4 3 2 1 1 0 8 0 scxspl 192 12520 0 12520 2 1 1 1 0 8 1 plimitpl 152 77 0 69 1 0 1 1 0 8 0 sigapl 432 1043 0 1030 2 0 2 2 0 8 0 futexpl 56 24823 0 24823 2 1 1 1 0 8 1 knotepl 112 414 0 395 3 2 1 2 0 8 0 kqueuepl 104 656 0 654 4 3 1 4 0 8 0 pipepl 128 632 0 611 6 5 1 2 0 8 0 fdescpl 424 1044 0 1030 2 0 2 2 0 8 0 filepl 120 11369 0 11269 18 14 4 11 0 8 0 lockfpl 104 208 0 207 1 0 1 1 0 8 0 lockfspl 48 63 0 62 1 0 1 1 0 8 0 sessionpl 112 19 0 9 1 0 1 1 0 8 0 pgrppl 48 33 0 23 1 0 1 1 0 8 0 ucredpl 96 4623 0 4616 1 0 1 1 0 8 0 zombiepl 144 1030 0 1029 1 0 1 1 0 8 0 processpl 872 1059 0 1029 4 0 4 4 0 8 0 procpl 632 2807 0 2769 10 6 4 5 0 8 0 sosppl 128 13 0 13 3 3 0 1 0 8 0 sockpl 384 2036 0 2018 36 33 3 14 0 8 1 mcl64k 65536 321 0 321 41 41 0 33 0 8 0 mcl16k 16384 13 0 13 9 9 0 1 0 8 0 mcl12k 12288 23 0 23 9 9 0 1 0 8 0 mcl9k 9216 13 0 13 6 6 0 1 0 8 0 mcl8k 8192 40 0 40 18 18 0 1 0 8 0 mcl4k 4096 235 0 235 23 22 1 1 0 8 1 mcl2k2 2112 10 0 10 7 7 0 1 0 8 0 mcl2k 2048 69814 0 69763 26 19 7 14 0 8 0 mtagpl 80 49 0 12 2 1 1 1 0 8 0 mbufpl 256 123426 0 123243 66 51 15 33 0 8 0 bufpl 280 8550 0 2366 442 0 442 442 0 8 0 anonpl 16 360227 0 340600 159 63 96 98 0 107 6 amapchunkpl 152 6891 0 6738 28 21 7 16 0 158 0 amappl16 192 19672 0 18606 180 114 66 68 0 8 12 amappl15 184 57 0 51 1 0 1 1 0 8 0 amappl14 176 575 0 572 1 0 1 1 0 8 0 amappl12 160 120 0 117 1 0 1 1 0 8 0 amappl11 152 54 0 43 1 0 1 1 0 8 0 amappl10 144 202 0 196 1 0 1 1 0 8 0 amappl9 136 584 0 581 1 0 1 1 0 8 0 amappl8 128 148 0 117 2 0 2 2 0 8 0 amappl7 120 281 0 268 1 0 1 1 0 8 0 amappl6 112 56 0 51 1 0 1 1 0 8 0 amappl5 104 257 0 246 1 0 1 1 0 8 0 amappl4 96 1163 0 1136 1 0 1 1 0 8 0 amappl3 88 760 0 753 1 0 1 1 0 8 0 amappl2 80 7363 0 7290 3 1 2 3 0 8 0 amappl1 72 30141 0 29711 26 16 10 20 0 8 0 amappl 80 3116 0 3072 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 29 0 6 1 0 1 1 0 8 0 uaddrrnd 24 1050 0 1034 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1050 0 1034 1 0 1 1 0 8 0 vmmpekpl 168 11976 0 11953 2 0 2 2 0 8 0 vmmpepl 168 147749 0 145560 233 126 107 135 0 357 5 vmsppl 272 1049 0 1034 4 2 2 2 0 8 0 pdppl 4096 2106 0 2070 6 1 5 6 0 8 0 pvpl 32 691670 0 668997 343 121 222 238 0 265 19 pmappl 200 1049 0 1034 1 0 1 1 0 8 0 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 313 0 178 6 0 6 6 0 8 0