uvm_fault(0xfffffd805532daa8, 0x5b, 0, 1) -> e kernel: page fault trap, code=0 Stopped at pfi_dynaddr_remove+0x4a: movq 0x58(%r15),%r12 ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic kernel page fault uvm_fault(0xfffffd805532daa8, 0x5b, 0, 1) -> e pfi_dynaddr_remove(ffff800000ca8d28) at pfi_dynaddr_remove+0x4a sys/net/pf_if.c:602 end trace frame: 0xffff80001f466f90, count: 0 ddb> trace pfi_dynaddr_remove(ffff800000ca8d28) at pfi_dynaddr_remove+0x4a sys/net/pf_if.c:602 pf_rm_rule(0,ffff800000ca8ae0) at pf_rm_rule+0x3cc sys/net/pf_ioctl.c:304 pfioctl(4900,cd604404,ffff8000009fc000,2,ffff8000ffff2ee8) at pfioctl+0x3082 VOP_IOCTL(fffffd805d6e70d0,cd604404,ffff8000009fc000,2,fffffd806c3be900,ffff8000ffff2ee8) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:291 vn_ioctl(fffffd8065bfc438,cd604404,ffff8000009fc000,ffff8000ffff2ee8) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:533 sys_ioctl(ffff8000ffff2ee8,ffff80001f4673d8,ffff80001f467420) at sys_ioctl+0x5b9 syscall(ffff80001f4674a0) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xd35b5ff8140, count: -8 ddb> show registers rdi 0x2 rsi 0x2 rbp 0xffff80001f466f30 rbx 0xffff800000ca8d28 rdx 0x1e1 rcx 0xffff80001f657000 rax 0xffff800000a3ebc0 r8 0x101010101010101 r9 0x8080808080808080 r10 0x92e23b5dd1431216 r11 0x6dd5912babebbab0 r12 0xffff800000ca8b18 r13 0xffff800000ca8db0 r14 0xffff800000ca8d28 r15 0x3 rip 0xffffffff8209d4fa pfi_dynaddr_remove+0x4a cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff80001f466f00 ss 0x10 pfi_dynaddr_remove+0x4a: movq 0x58(%r15),%r12 ddb> show proc PROC (syz-executor.1) pid=196799 stat=onproc flags process=0 proc=4000000 pri=80, usrpri=80, nice=20 forw=0xffffffffffffffff, list=0xffff8000ffff3b40,0xffff8000ffff22a0 process=0xffff8000ffff7118 user=0xffff80001f462000, vmspace=0xfffffd805532daa8 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 84997 259840 29506 0 2 0 syz-executor.0 84997 138450 29506 0 3 0x4000080 fsleep syz-executor.0 40176 155814 14394 0 2 0 syz-executor.1 *40176 196799 14394 0 7 0x4000000 syz-executor.1 29506 351086 5604 0 3 0x82 nanosleep syz-executor.0 38813 333456 0 0 3 0x14200 acct acct 14394 118664 5604 0 3 0x82 nanosleep syz-executor.1 47126 195141 0 0 3 0x14200 bored sosplice 5604 57353 99476 0 3 0x82 thrsleep syz-fuzzer 5604 8251 99476 0 3 0x4000082 nanosleep syz-fuzzer 5604 385648 99476 0 3 0x4000082 kqread syz-fuzzer 5604 129334 99476 0 3 0x4000082 thrsleep syz-fuzzer 5604 134915 99476 0 3 0x4000082 thrsleep syz-fuzzer 5604 176376 99476 0 3 0x4000082 thrsleep syz-fuzzer 5604 58635 99476 0 3 0x4000082 thrsleep syz-fuzzer 5604 98598 99476 0 3 0x4000082 thrsleep syz-fuzzer 99476 277817 22648 0 3 0x10008a pause ksh 22648 350316 47473 0 3 0x92 select sshd 3711 93519 1 0 3 0x100083 ttyin getty 47473 1781 1 0 3 0x80 select sshd 71754 108333 88851 73 3 0x100090 kqread syslogd 88851 26086 1 0 3 0x100082 netio syslogd 89211 96483 1 77 3 0x100090 poll dhclient 29639 320122 1 0 3 0x80 poll dhclient 28617 168132 0 0 2 0x14200 zerothread 96396 44775 0 0 3 0x14200 aiodoned aiodoned 35095 148459 0 0 3 0x14200 syncer update 92975 16758 0 0 3 0x14200 cleaner cleaner 66663 165934 0 0 3 0x14200 reaper reaper 58192 356030 0 0 3 0x14200 pgdaemon pagedaemon 98856 429466 0 0 3 0x14200 bored crynlk 26995 327001 0 0 3 0x14200 bored crypto 50967 385301 0 0 3 0x40014200 acpi0 acpi0 42979 215548 0 0 3 0x14200 bored softnet 73168 2985 0 0 3 0x14200 bored systqmp 90529 243286 0 0 3 0x14200 bored systq 39130 161741 0 0 3 0x40014200 bored softclock 77918 267545 0 0 3 0x40014200 idle0 51524 237704 0 0 3 0x14200 bored smr 1 289837 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9513 6349K 8217K 78643K 17132 0 pcb 13 8K 8K 78643K 1361 0 rtable 160 15K 15K 78643K 1520 0 ifaddr 134 29K 29K 78643K 614 0 counters 19 16K 16K 78643K 19 0 ioctlops 1 4K 4K 78643K 9056 0 iov 0 0K 28K 78643K 1119 0 mount 1 1K 1K 78643K 1 0 vnodes 1225 77K 77K 78643K 5311 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 19 0 VM map 2 0K 0K 78643K 2 0 sem 12 1K 1K 78643K 38 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1794 195K 288K 78643K 12646 0 file desc 6 17K 25K 78643K 11529 0 sigio 0 0K 0K 78643K 44 0 proc 66 39K 56K 78643K 771 0 subproc 32 2K 2K 78643K 119 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 158 0 in_multi 67 3K 3K 78643K 157 0 ether_multi 1 0K 0K 78643K 12 0 mrt 0 0K 0K 78643K 5 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 73 334K 334K 78643K 73 0 exec 0 0K 1K 78643K 316 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 134 55K 55K 78643K 24454 0 UVM aobj 130 4K 4K 78643K 131 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 1K 78643K 799 0 NDP 13 0K 0K 78643K 43 0 temp 149 3047K 3111K 78643K 330255 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 20 0 14 1 0 1 1 0 8 0 rtpcb 80 97 0 95 1 0 1 1 0 8 0 rtentry 112 110 0 66 2 0 2 2 0 8 0 unpcb 120 1913 0 1905 2 1 1 2 0 8 0 syncache 264 5 0 5 2 2 0 1 0 8 0 sackhl 24 2 0 2 2 2 0 1 0 8 0 tcpqe 32 175 0 175 2 2 0 1 0 8 0 tcpcb 544 1188 0 1184 1 0 1 1 0 8 0 inpcb 280 3868 0 3861 11 9 2 3 0 8 1 rttmr 72 2 0 2 2 2 0 1 0 8 0 nd6 48 15 0 11 1 0 1 1 0 8 0 pkpcb 40 2 0 2 1 1 0 1 0 8 0 ppxss 1128 9 0 9 5 4 1 1 0 8 1 pfrktable 1344 476 0 455 2 0 2 2 0 8 0 pftag 88 27 0 18 1 0 1 1 0 8 0 pfqueue 264 2 0 2 1 1 0 1 0 8 0 pfrule 1360 2380 0 670 144 1 143 143 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 469 0 250 14 0 14 14 0 8 0 art_table 32 471 0 250 2 0 2 2 0 8 0 art_node 16 109 0 70 1 0 1 1 0 8 0 sysvmsgpl 40 53 0 37 1 0 1 1 0 8 0 semupl 112 3 0 3 2 2 0 1 0 8 0 semapl 112 34 0 24 1 0 1 1 0 8 0 shmpl 112 129 0 1 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 17233 0 15838 46 0 46 46 0 8 0 ffsino 240 17233 0 15838 83 0 83 83 0 8 0 nchpl 144 30229 0 28616 60 0 60 60 0 8 0 uvmvnodes 72 5926 0 0 108 0 108 108 0 8 0 vnodes 208 5926 0 0 312 0 312 312 0 8 0 namei 1024 88071 0 88071 1 0 1 1 0 8 1 vcpupl 1984 5 0 0 1 0 1 1 0 8 0 vmpool 528 5 0 0 1 0 1 1 0 8 0 pfiaddrpl 120 981 0 484 16 0 16 16 0 8 0 scsiplug 64 1 0 1 1 1 0 1 0 8 0 scxspl 192 97092 0 97092 1 0 1 1 0 8 1 plimitpl 152 99 0 92 1 0 1 1 0 8 0 sigapl 432 11685 0 11671 2 0 2 2 0 8 0 futexpl 56 113314 0 113313 1 0 1 1 0 8 0 knotepl 112 184 0 165 1 0 1 1 0 8 0 kqueuepl 104 156 0 154 1 0 1 1 0 8 0 pipepl 112 8202 0 8183 9 7 2 2 0 8 1 fdescpl 424 11686 0 11671 2 0 2 2 0 8 0 filepl 120 51724 0 51627 14 10 4 6 0 8 1 lockfpl 104 2847 0 2846 1 0 1 1 0 8 0 lockfspl 48 959 0 958 1 0 1 1 0 8 0 sessionpl 112 22 0 12 1 0 1 1 0 8 0 pgrppl 48 54 0 44 1 0 1 1 0 8 0 ucredpl 96 2046 0 2039 1 0 1 1 0 8 0 zombiepl 144 11671 0 11671 1 0 1 1 0 8 1 processpl 872 11702 0 11671 4 0 4 4 0 8 0 procpl 632 23526 0 23486 4 0 4 4 0 8 0 sosppl 128 4 0 4 2 2 0 1 0 8 0 sockpl 384 5983 0 5966 23 19 4 6 0 8 2 mcl64k 65536 83 0 83 6 5 1 1 0 8 1 mcl16k 16384 19 0 19 10 9 1 1 0 8 1 mcl12k 12288 51 0 51 7 6 1 1 0 8 1 mcl9k 9216 37 0 37 8 8 0 1 0 8 0 mcl8k 8192 166 0 166 9 8 1 1 0 8 1 mcl4k 4096 2375 0 2375 6 5 1 1 0 8 1 mcl2k2 2112 13 0 13 7 6 1 1 0 8 1 mcl2k 2048 73238 0 73185 21 13 8 14 0 8 0 mtagpl 80 139 0 10 4 1 3 3 0 8 0 mbufpl 256 171890 0 171530 33 6 27 28 0 8 1 bufpl 280 31716 0 25532 443 1 442 443 0 8 0 anonpl 16 703383 0 687638 76 8 68 68 0 107 2 amapchunkpl 152 36982 0 36845 11 5 6 8 0 158 0 amappl16 192 49497 0 48616 51 3 48 48 0 8 3 amappl15 184 841 0 836 1 0 1 1 0 8 0 amappl14 176 5641 0 5636 1 0 1 1 0 8 0 amappl13 168 498 0 496 1 0 1 1 0 8 0 amappl12 160 57 0 56 1 0 1 1 0 8 0 amappl11 152 63 0 52 1 0 1 1 0 8 0 amappl10 144 4867 0 4865 1 0 1 1 0 8 0 amappl9 136 701 0 697 1 0 1 1 0 8 0 amappl8 128 259 0 226 2 0 2 2 0 8 0 amappl7 120 4968 0 4955 1 0 1 1 0 8 0 amappl6 112 57 0 49 1 0 1 1 0 8 0 amappl5 104 244 0 233 1 0 1 1 0 8 0 amappl4 96 6845 0 6816 1 0 1 1 0 8 0 amappl3 88 11353 0 11340 1 0 1 1 0 8 0 amappl2 80 92882 0 92806 3 1 2 3 0 8 0 amappl1 72 176667 0 176232 26 16 10 20 0 8 0 amappl 80 23808 0 23761 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 130 0 1 3 0 3 3 0 8 0 uaddrrnd 24 11691 0 11671 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 11691 0 11671 1 0 1 1 0 8 0 vmmpekpl 168 79049 0 79020 2 0 2 2 0 8 0 vmmpepl 168 1284446 0 1282343 202 101 101 121 0 357 9 vmsppl 272 11690 0 11671 2 0 2 2 0 8 0 pdppl 4096 23388 0 23347 7 1 6 6 0 8 0 pvpl 32 1983030 0 1964166 206 39 167 167 0 265 12 pmappl 200 11690 0 11671 2 0 2 2 0 8 1 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 344 0 50 9 0 9 9 0 8 0