uvm_fault(0xfffffd8069ccd460, 0x4, 0, 1) -> e kernel: page fault trap, code=0 Stopped at igmp_leavegroup+0xaf: movl 0x4(%rax),%r12d TID PID UID PRFLAGS PFLAGS CPU COMMAND igmp_leavegroup(ffff800000cd1540,ffff8000006b7000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000cd1540) at in_delmulti+0xd8 sys/netinet/in.c:908 ip_freemoptions(ffff8000006c6550) at ip_freemoptions+0x5d sys/netinet/ip_output.c:1770 in_pcbdetach(fffffd8075a8c7e0) at in_pcbdetach+0x97 sys/netinet/in_pcb.c:591 udp_detach(fffffd8065f5e778) at udp_detach+0x3f sys/netinet/udp_usrreq.c:1113 soclose(fffffd8065f5e778,0) at soclose+0x253 pru_detach sys/sys/protosw.h:281 [inline] soclose(fffffd8065f5e778,0) at soclose+0x253 sys/kern/uipc_socket.c:397 soo_close(fffffd806ced9010,ffff8000fffefb98) at soo_close+0x44 fdrop(fffffd806ced9010,ffff8000fffefb98) at fdrop+0xcb sys/kern/kern_descrip.c:1274 closef(fffffd806ced9010,ffff8000fffefb98) at closef+0x11b sys/kern/kern_descrip.c:1258 fdfree(ffff8000fffefb98) at fdfree+0xf3 sys/kern/kern_descrip.c:1190 exit1(ffff8000fffefb98,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:197 sys_exit(ffff8000fffefb98,ffff800021708680,ffff8000217086d0) at sys_exit+0x1a sys/kern/kern_exit.c:89 syscall(ffff800021708750) at syscall+0x4a8 sys/arch/amd64/amd64/trap.c:632 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x71ab79a7f7c0, count: 1 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd8069ccd460, 0x4, 0, 1) -> e ddb> trace igmp_leavegroup(ffff800000cd1540,ffff8000006b7000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000cd1540) at in_delmulti+0xd8 sys/netinet/in.c:908 ip_freemoptions(ffff8000006c6550) at ip_freemoptions+0x5d sys/netinet/ip_output.c:1770 in_pcbdetach(fffffd8075a8c7e0) at in_pcbdetach+0x97 sys/netinet/in_pcb.c:591 udp_detach(fffffd8065f5e778) at udp_detach+0x3f sys/netinet/udp_usrreq.c:1113 soclose(fffffd8065f5e778,0) at soclose+0x253 pru_detach sys/sys/protosw.h:281 [inline] soclose(fffffd8065f5e778,0) at soclose+0x253 sys/kern/uipc_socket.c:397 soo_close(fffffd806ced9010,ffff8000fffefb98) at soo_close+0x44 fdrop(fffffd806ced9010,ffff8000fffefb98) at fdrop+0xcb sys/kern/kern_descrip.c:1274 closef(fffffd806ced9010,ffff8000fffefb98) at closef+0x11b sys/kern/kern_descrip.c:1258 fdfree(ffff8000fffefb98) at fdfree+0xf3 sys/kern/kern_descrip.c:1190 exit1(ffff8000fffefb98,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:197 sys_exit(ffff8000fffefb98,ffff800021708680,ffff8000217086d0) at sys_exit+0x1a sys/kern/kern_exit.c:89 syscall(ffff800021708750) at syscall+0x4a8 sys/arch/amd64/amd64/trap.c:632 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x71ab79a7f7c0, count: -14 ddb> show registers rdi 0 rsi 0 rbp 0xffff800021708310 rbx 0x4 rdx 0 rcx 0x1 rax 0 r8 0x30 r9 0x298b __ALIGN_SIZE+0x198b r10 0x7f9a3aa5c8d419d5 r11 0x11e6dd4a96bcacde r12 0 r13 0x3 r14 0xffff800000cd1540 r15 0xffff8000006b7000 rip 0xffffffff8208f91f igmp_leavegroup+0xaf cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000217082e0 ss 0x10 igmp_leavegroup+0xaf: movl 0x4(%rax),%r12d ddb> show proc PROC (syz-executor.0) pid=478107 stat=onproc flags process=1008 proc=2000 pri=32, usrpri=82, nice=20 forw=0xffffffffffffffff, list=0xffff8000216d4b08,0xffff8000fffee330 process=0xffff8000216dd3b0 user=0xffff800021703000, vmspace=0xfffffd8069ccd460 estcpu=32, cpticks=2, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 77187 74859 60724 0 2 0 syz-executor.1 77187 385363 60724 0 3 0x4000080 fsleep syz-executor.1 95358 136285 90174 0 2 0 syz-executor.3 95358 444578 90174 0 2 0x4000000 syz-executor.3 64810 114134 28305 0 2 0 syz-executor.2 64810 506831 28305 0 3 0x4000080 fsleep syz-executor.2 62179 63992 38404 0 3 0x82 nanoslp syz-executor.7 60724 255716 38404 0 3 0x82 nanoslp syz-executor.1 90613 206928 38404 0 3 0x82 nanoslp syz-executor.0 63415 516241 38404 0 3 0x82 nanoslp syz-executor.5 90174 195908 38404 0 3 0x82 nanoslp syz-executor.3 25210 507048 0 0 3 0x14280 nfsidl nfsio 73097 520563 0 0 3 0x14280 nfsidl nfsio 14870 340578 0 0 3 0x14280 nfsidl nfsio 93356 31048 0 0 3 0x14280 nfsidl nfsio 49170 522921 0 0 3 0x14280 nfsidl nfsio 69573 46693 0 0 3 0x14280 nfsidl nfsio 53987 240759 0 0 3 0x14280 nfsidl nfsio 39621 337721 0 0 3 0x14280 nfsidl nfsio 11302 467455 0 0 3 0x14280 nfsidl nfsio 31648 218454 0 0 3 0x14280 nfsidl nfsio 16704 511493 0 0 3 0x14280 nfsidl nfsio 44381 94522 0 0 3 0x14280 nfsidl nfsio 81352 226374 0 0 3 0x14280 nfsidl nfsio 68703 380301 0 0 3 0x14280 nfsidl nfsio 17229 270875 0 0 3 0x14280 nfsidl nfsio 6312 499471 0 0 3 0x14280 nfsidl nfsio 7207 393812 0 0 3 0x14280 nfsidl nfsio 2771 483013 0 0 3 0x14280 nfsidl nfsio 31438 458922 0 0 3 0x14280 nfsidl nfsio 600 365173 0 0 3 0x14280 nfsidl nfsio 28305 296596 38404 0 3 0x82 nanoslp syz-executor.2 61699 477551 38404 0 3 0x82 nanoslp syz-executor.6 63005 496739 1 0 3 0x100083 ttyin getty 13695 301058 0 0 3 0x14200 acct acct 38397 199140 0 0 3 0x14200 bored sosplice 25619 284499 38404 0 2 0x2 syz-executor.4 38404 430415 87627 0 3 0x82 wait syz-fuzzer 38404 197275 87627 0 3 0x4000082 nanoslp syz-fuzzer 38404 197218 87627 0 3 0x4000082 thrsleep syz-fuzzer 38404 386962 87627 0 3 0x4000082 wait syz-fuzzer 38404 14143 87627 0 3 0x4000082 wait syz-fuzzer 38404 113897 87627 0 3 0x4000082 wait syz-fuzzer 38404 375055 87627 0 3 0x4000082 thrsleep syz-fuzzer 38404 499392 87627 0 3 0x4000082 thrsleep syz-fuzzer 38404 457250 87627 0 3 0x4000082 wait syz-fuzzer 38404 311681 87627 0 3 0x4000082 thrsleep syz-fuzzer 38404 466017 87627 0 3 0x4000082 kqread syz-fuzzer 38404 383904 87627 0 3 0x4000082 wait syz-fuzzer 38404 478437 87627 0 3 0x4000082 wait syz-fuzzer 38404 418209 87627 0 3 0x4000082 wait syz-fuzzer 87627 60733 18811 0 3 0x10008a sigsusp ksh 18811 61815 86934 0 3 0x9a kqread sshd 86934 62249 1 0 3 0x88 kqread sshd 25419 40765 94117 73 3 0x1100090 kqread syslogd 94117 313530 1 0 3 0x100082 netio syslogd 10554 239381 1 0 3 0x100080 kqread resolvd 50885 252951 67709 77 3 0x100092 kqread dhcpleased 14006 437934 67709 77 3 0x100092 kqread dhcpleased 67709 33478 1 0 3 0x80 kqread dhcpleased 63995 187841 0 0 3 0x14200 bored smr 89506 281063 0 0 2 0x14200 zerothread 27226 136289 0 0 3 0x14200 aiodoned aiodoned 35611 148887 0 0 3 0x14200 syncer update 4929 22631 0 0 3 0x14200 cleaner cleaner 85538 384787 0 0 3 0x14200 reaper reaper 19371 478382 0 0 3 0x14200 pgdaemon pagedaemon 85867 386277 0 0 3 0x14200 bored viomb 96871 280946 0 0 3 0x40014200 acpi0 acpi0 81192 242747 0 0 3 0x14200 bored softnet3 97543 91823 0 0 3 0x14200 bored softnet2 91146 281187 0 0 3 0x14200 bored softnet1 43535 464902 0 0 3 0x14200 bored softnet0 50235 185039 0 0 3 0x14200 bored systqmp 16533 373289 0 0 3 0x14200 bored systq 73010 151843 0 0 3 0x40014200 bored softclock 60389 146868 0 0 3 0x40014200 idle0 1 455793 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10199 6427K 6666K 78643K 13327 0 pcb 14 12K 17K 78643K 925 0 rtable 227 16K 17K 78643K 1093 0 ifaddr 90 23K 23K 78643K 424 0 sysctl 2 0K 0K 78643K 2 0 counters 29 17K 17K 78643K 164 0 ioctlops 0 0K 2K 78643K 393 0 iov 0 0K 32K 78643K 1840 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1503 94K 94K 78643K 3083 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 22 0 VM map 2 1K 1K 78643K 2 0 sem 12 0K 0K 78643K 582 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 14 49K 69K 78643K 2985 0 sigio 0 0K 0K 78643K 87 0 proc 65 59K 75K 78643K 884 0 subproc 104 6K 6K 78643K 247 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 2 0K 0K 78643K 272 0 in_multi 97 6K 7K 78643K 322 0 ether_multi 1 0K 0K 78643K 19 0 mrt 1 0K 0K 78643K 13 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 157 705K 705K 78643K 157 0 exec 0 0K 1K 78643K 824 0 pfkey data 0 0K 0K 78643K 3 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 330 90K 102K 78643K 29700 0 UVM aobj 101 7K 7K 78643K 101 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 80 0 NDP 20 0K 2K 78643K 141 0 temp 145 5858K 14049K 78643K 46725 0 kqueue 12 18K 28K 78643K 283 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 439 0 436 8 7 1 5 0 8 0 rtentry 112 309 0 213 4 0 4 4 0 8 1 unpcb 144 3476 0 3463 39 33 6 6 0 8 5 syncache 296 25 0 25 6 5 1 1 0 8 1 tcpqe 32 49 0 49 4 4 0 1 0 8 0 tcpcb 776 948 0 944 41 40 1 8 0 8 0 arp 88 47 0 29 1 0 1 1 0 8 0 ipq 40 2 0 2 2 2 0 1 0 8 0 ipqe 40 8 0 8 2 2 0 1 0 8 0 inpcb 336 2905 0 2895 50 49 1 12 0 8 0 nd6 104 68 0 46 1 0 1 1 0 8 0 pkpcb 40 19 0 19 3 3 0 1 0 8 0 kcovpl 48 19 0 11 1 0 1 1 0 8 0 ppxss 1160 82 0 82 6 5 1 1 0 8 1 pppxif 1360 19 0 19 3 3 0 1 0 8 0 pfstscr 40 4 0 4 1 1 0 1 0 8 0 pfanchor 1288 365 0 0 31 0 31 31 0 8 0 pfstkey 128 8 0 8 1 1 0 1 0 8 0 pfstate 352 4 0 4 1 1 0 1 0 8 0 rttmr 136 3 0 3 1 1 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 1320 0 908 36 10 26 29 0 8 0 art_table 32 1321 0 908 5 1 4 4 0 8 0 art_node 16 300 0 215 1 0 1 1 0 8 0 sysvmsgpl 40 16 0 3 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 580 0 570 1 0 1 1 0 8 0 shmpl 112 98 0 0 3 0 3 3 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 5698 0 4258 91 0 91 91 0 8 0 ffsino 240 5698 0 4258 86 0 86 86 0 8 1 nchpl 144 10377 0 9843 63 41 22 63 0 8 1 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 38211 0 38209 5 4 1 3 0 8 0 kstatmem 264 192 0 160 6 3 3 3 0 8 0 scsiplug 72 4 0 4 1 1 0 1 0 8 0 scxspl 216 33461 0 33461 19 17 2 8 0 8 2 plimitpl 152 376 0 360 1 0 1 1 0 8 0 sigapl 424 3281 0 3215 8 0 8 8 0 8 0 futexpl 64 32136 0 32134 2 1 1 1 0 8 0 knotepl 120 70908 0 70828 39 35 4 11 0 8 0 kqueuepl 184 761 0 753 9 8 1 4 0 8 0 pipepl 288 735 0 707 13 10 3 7 0 8 0 fdescpl 432 3243 0 3218 4 0 4 4 0 8 0 filepl 120 26475 0 26236 48 36 12 17 0 8 4 lockfpl 104 798 0 796 3 1 2 2 0 8 1 lockfspl 48 160 0 158 1 0 1 1 0 8 0 sessionpl 144 37 0 21 1 0 1 1 0 8 0 pgrppl 48 40 0 24 1 0 1 1 0 8 0 ucredpl 104 2549 0 2539 1 0 1 1 0 8 0 zombiepl 144 3219 0 3215 3 2 1 1 0 8 0 processpl 1008 3281 0 3215 10 1 9 9 0 8 0 procpl 696 7693 0 7611 15 6 9 9 0 8 1 sosppl 168 13 0 13 4 4 0 1 0 8 0 sockpl 456 6839 0 6813 184 173 11 29 0 8 7 mcl64k 65536 391 0 391 10 9 1 1 0 8 1 mcl16k 16384 61 0 61 13 12 1 1 0 8 1 mcl12k 12288 178 0 178 9 8 1 1 0 8 1 mcl9k 9216 40 0 40 10 9 1 1 0 8 1 mcl8k 8192 607 0 607 7 6 1 1 0 8 1 mcl4k 4096 400 0 400 6 5 1 1 0 8 1 mcl2k2 2112 33 0 33 8 8 0 1 0 8 0 mcl2k 2048 81253 0 81213 40 33 7 29 0 8 1 mtagpl 96 147 0 147 4 1 3 3 0 8 3 mbufpl 256 193943 0 193816 187 171 16 60 0 8 3 bufpl 288 12452 0 6067 457 0 457 457 0 8 0 anonpl 24 495050 0 482249 167 64 103 122 0 188 0 amapchunkpl 152 99213 0 98364 89 45 44 54 0 158 8 amappl16 200 11588 0 11145 69 39 30 38 0 8 6 amappl15 192 22 0 21 1 0 1 1 0 8 0 amappl14 184 189 0 179 2 1 1 2 0 8 0 amappl13 176 17 0 17 2 2 0 1 0 8 0 amappl12 168 4035 0 4009 2 0 2 2 0 8 0 amappl11 160 60 0 49 1 0 1 1 0 8 0 amappl10 152 58 0 47 1 0 1 1 0 8 0 amappl9 144 154 0 153 3 2 1 2 0 8 0 amappl8 136 276 0 212 3 0 3 3 0 8 0 amappl7 128 63 0 47 1 0 1 1 0 8 0 amappl6 120 340 0 322 2 1 1 2 0 8 0 amappl5 112 218 0 212 1 0 1 1 0 8 0 amappl4 104 793 0 760 2 0 2 2 0 8 0 amappl3 96 18909 0 18834 3 0 3 3 0 8 0 amappl2 88 3547 0 3489 4 2 2 3 0 8 0 amappl1 80 20877 0 20389 22 10 12 22 0 8 0 amappl 88 29026 0 28803 7 0 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 100 0 0 2 0 2 2 0 8 0 uaddrrnd 24 3243 0 3218 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 3243 0 3218 1 0 1 1 0 8 0 vmmpekpl 168 28687 0 28634 3 0 3 3 0 8 0 vmmpepl 168 214963 0 212834 200 82 118 118 0 357 13 vmsppl 368 3242 0 3218 3 0 3 3 0 8 0 rwobjpl 24 63607 0 56146 46 0 46 46 0 8 0 pdppl 4096 6492 0 6436 314 252 62 66 0 8 6 pvpl 32 1206830 0 1188933 387 212 175 331 0 265 0 pmappl 216 3242 0 3218 2 0 2 2 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1328 0 566 24 0 24 24 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace igmp_leavegroup(ffff800000cd1540,ffff8000006b7000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000cd1540) at in_delmulti+0xd8 sys/netinet/in.c:908 ip_freemoptions(ffff8000006c6550) at ip_freemoptions+0x5d sys/netinet/ip_output.c:1770 in_pcbdetach(fffffd8075a8c7e0) at in_pcbdetach+0x97 sys/netinet/in_pcb.c:591 udp_detach(fffffd8065f5e778) at udp_detach+0x3f sys/netinet/udp_usrreq.c:1113 soclose(fffffd8065f5e778,0) at soclose+0x253 pru_detach sys/sys/protosw.h:281 [inline] soclose(fffffd8065f5e778,0) at soclose+0x253 sys/kern/uipc_socket.c:397 soo_close(fffffd806ced9010,ffff8000fffefb98) at soo_close+0x44 fdrop(fffffd806ced9010,ffff8000fffefb98) at fdrop+0xcb sys/kern/kern_descrip.c:1274 closef(fffffd806ced9010,ffff8000fffefb98) at closef+0x11b sys/kern/kern_descrip.c:1258 fdfree(ffff8000fffefb98) at fdfree+0xf3 sys/kern/kern_descrip.c:1190 exit1(ffff8000fffefb98,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:197 sys_exit(ffff8000fffefb98,ffff800021708680,ffff8000217086d0) at sys_exit+0x1a sys/kern/kern_exit.c:89 syscall(ffff800021708750) at syscall+0x4a8 sys/arch/amd64/amd64/trap.c:632 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x71ab79a7f7c0, count: -14 ddb> machine ddbcpu 1 No such command ddb> trace igmp_leavegroup(ffff800000cd1540,ffff8000006b7000) at igmp_leavegroup+0xaf sys/netinet/igmp.c:512 in_delmulti(ffff800000cd1540) at in_delmulti+0xd8 sys/netinet/in.c:908 ip_freemoptions(ffff8000006c6550) at ip_freemoptions+0x5d sys/netinet/ip_output.c:1770 in_pcbdetach(fffffd8075a8c7e0) at in_pcbdetach+0x97 sys/netinet/in_pcb.c:591 udp_detach(fffffd8065f5e778) at udp_detach+0x3f sys/netinet/udp_usrreq.c:1113 soclose(fffffd8065f5e778,0) at soclose+0x253 pru_detach sys/sys/protosw.h:281 [inline] soclose(fffffd8065f5e778,0) at soclose+0x253 sys/kern/uipc_socket.c:397 soo_close(fffffd806ced9010,ffff8000fffefb98) at soo_close+0x44 fdrop(fffffd806ced9010,ffff8000fffefb98) at fdrop+0xcb sys/kern/kern_descrip.c:1274 closef(fffffd806ced9010,ffff8000fffefb98) at closef+0x11b sys/kern/kern_descrip.c:1258 fdfree(ffff8000fffefb98) at fdfree+0xf3 sys/kern/kern_descrip.c:1190 exit1(ffff8000fffefb98,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:197 sys_exit(ffff8000fffefb98,ffff800021708680,ffff8000217086d0) at sys_exit+0x1a sys/kern/kern_exit.c:89 syscall(ffff800021708750) at syscall+0x4a8 sys/arch/amd64/amd64/trap.c:632 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x71ab79a7f7c0, count: -14