uvm_fault(0xffffffff825ed938, 0xffff800000a4f000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic kernel page fault uvm_fault(0xffffffff825ed938, 0xffff800000a4f000, 0, 1) -> e memcpy() at memcpy+0x15 end trace frame: 0xffff800020ea6ec0, count: 0 ddb{1}> trace memcpy() at memcpy+0x15 sysctl_iflist(0,ffff800020ea6f18) at sysctl_iflist+0x255 sys/net/rtsock.c:1979 sysctl_rtable(ffff800020ea6fdc,3,e5c4720d000,ffff800020ea7008,0,0) at sysctl_rtable+0x196 sys/net/rtsock.c:2076 sys_sysctl(ffff800020e6d118,ffff800020ea7070,ffff800020ea70c0) at sys_sysctl+0x20e sys/kern/kern_sysctl.c:251 syscall(ffff800020ea7140) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800020ea7140) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffca960, count: -6 ddb{1}> show registers rdi 0xffff800000a360e8 rsi 0xffff800000a4f000 rbp 0xffff800020ea6dc0 rbx 0xe8 rdx 0xe8 rcx 0x5 rax 0xfffffffffffe70e8 r8 0x110 r9 0x5 r10 0x55689c9edeeb80f9 r11 0xffff800000a36028 r12 0xffff800000a4ef40 r13 0xe8 r14 0xffff800000a36028 r15 0x6 rip 0xffffffff81cb5c75 memcpy+0x15 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff800020ea6d08 ss 0x10 memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> show proc PROC (dhclient) pid=33158 stat=onproc flags process=100010 proc=0 pri=24, usrpri=51, nice=20 forw=0xffffffffffffffff, list=0xffff800020e6cc38,0xffff800020ed13a0 process=0xffff800020e803e8 user=0xffff800020ea2000, vmspace=0xfffffd807f000170 estcpu=1, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 34083 53203 47828 0 2 0 syz-executor.1 63456 77338 71318 0 2 0 syz-executor.0 63456 466387 71318 0 2 0x4000000 syz-executor.0 35981 502875 0 0 3 0x14200 acct acct 74859 248311 0 0 3 0x14280 nfsidl nfsio 22299 261514 0 0 3 0x14280 nfsidl nfsio 3558 173382 0 0 3 0x14280 nfsidl nfsio 76931 95233 0 0 3 0x14280 nfsidl nfsio 7646 245858 0 0 3 0x14280 nfsidl nfsio 95055 159658 0 0 3 0x14280 nfsidl nfsio 33730 89619 0 0 3 0x14280 nfsidl nfsio 79437 149261 0 0 3 0x14280 nfsidl nfsio 18872 187729 0 0 3 0x14280 nfsidl nfsio 86703 366031 0 0 3 0x14280 nfsidl nfsio 3442 116255 0 0 3 0x14280 nfsidl nfsio 95264 231365 0 0 3 0x14280 nfsidl nfsio 79763 387306 0 0 3 0x14280 nfsidl nfsio 74783 199037 0 0 3 0x14280 nfsidl nfsio 15597 481023 0 0 3 0x14280 nfsidl nfsio 48405 42145 0 0 3 0x14280 nfsidl nfsio 52551 318213 0 0 3 0x14280 nfsidl nfsio 20512 280014 0 0 3 0x14280 nfsidl nfsio 4029 505282 0 0 3 0x14280 nfsidl nfsio 90526 493877 0 0 3 0x14280 nfsidl nfsio 63930 253225 0 0 3 0x14200 bored sosplice 47828 141157 54648 0 3 0x82 nanosleep syz-executor.1 71318 414122 54648 0 3 0x82 nanosleep syz-executor.0 54648 218018 31360 0 3 0x82 kqread syz-fuzzer 54648 484037 31360 0 3 0x4000082 nanosleep syz-fuzzer 54648 42731 31360 0 3 0x4000082 thrsleep syz-fuzzer 54648 237789 31360 0 3 0x4000082 thrsleep syz-fuzzer 54648 44668 31360 0 3 0x4000082 nanosleep syz-fuzzer 54648 118630 31360 0 3 0x4000082 thrsleep syz-fuzzer 54648 486054 31360 0 3 0x4000082 thrsleep syz-fuzzer 54648 189311 31360 0 3 0x4000082 thrsleep syz-fuzzer 54648 120576 31360 0 3 0x4000082 thrsleep syz-fuzzer 54648 466638 31360 0 3 0x4000082 thrsleep syz-fuzzer 31360 460209 88230 0 3 0x10008a pause ksh 88230 33412 91638 0 3 0x92 select sshd 17991 249176 1 0 3 0x100083 ttyin getty 91638 467614 1 0 3 0x80 select sshd 49941 468851 8153 74 3 0x100092 bpf pflogd 8153 438519 1 0 3 0x80 netio pflogd 14148 506397 1707 73 3 0x100090 kqread syslogd 1707 387837 1 0 3 0x100082 netio syslogd *52101 33158 1 77 7 0x100010 dhclient 50763 421413 1 0 7 0 dhclient 8313 263596 0 0 3 0x14200 bored smr 57967 6708 0 0 2 0x14200 zerothread 24075 156545 0 0 3 0x14200 aiodoned aiodoned 73262 391824 0 0 3 0x14200 syncer update 22583 193558 0 0 3 0x14200 cleaner cleaner 63814 51390 0 0 3 0x14200 reaper reaper 44898 32310 0 0 3 0x14200 pgdaemon pagedaemon 8045 149502 0 0 3 0x14200 bored crynlk 14254 10880 0 0 3 0x14200 bored crypto 83055 426605 0 0 3 0x40014200 acpi0 acpi0 83548 16985 0 0 3 0x40014200 idle1 70894 471378 0 0 3 0x14200 bored softnet 61404 339452 0 0 3 0x14200 bored systqmp 25968 343385 0 0 3 0x14200 bored systq 84119 297062 0 0 3 0x40014200 bored softclock 85285 355620 0 0 3 0x40014200 idle0 1 352354 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 52101 (dhclient) thread 0xffff800020e6d118 (33158) exclusive rwlock netlock r = 0 (0xffffffff824a2628) #0 witness_lock+0x4c7 stacktrace_save sys/sys/stacktrace.h:36 [inline] #0 witness_lock+0x4c7 sys/kern/subr_witness.c:1164 #1 sysctl_rtable+0x187 sys/net/rtsock.c:2075 #2 sys_sysctl+0x20e sys/kern/kern_sysctl.c:251 #3 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #3 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #4 Xsyscall+0x128 exclusive rwlock sysctllk r = 0 (0xffffffff8249d0a0) #0 witness_lock+0x4c7 stacktrace_save sys/sys/stacktrace.h:36 [inline] #0 witness_lock+0x4c7 sys/kern/subr_witness.c:1164 #1 rw_enter+0x453 sys/kern/kern_rwlock.c:311 #2 sys_sysctl+0x1ac sys/kern/kern_sysctl.c:235 #3 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #3 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #4 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 1 (0xffffffff82643b30) #0 witness_lock+0x4c7 stacktrace_save sys/sys/stacktrace.h:36 [inline] #0 witness_lock+0x4c7 sys/kern/subr_witness.c:1164 #1 syscall+0x400 mi_syscall sys/sys/syscall_mi.h:93 [inline] #1 syscall+0x400 sys/arch/amd64/amd64/trap.c:570 #2 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9514 6421K 6868K 78643K 11166 0 pcb 13 8K 8K 78643K 95 0 rtable 98 3K 3K 78643K 279 0 ifaddr 82 17K 17K 78643K 102 0 sysctl 2 0K 0K 78643K 2 0 counters 43 33K 34K 78643K 49 0 ioctlops 0 0K 4K 78643K 1483 0 iov 0 0K 16K 78643K 49 0 mount 1 1K 1K 78643K 1 0 vnodes 1219 77K 77K 78643K 1406 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 3 5K 5K 78643K 7 0 VM map 2 1K 1K 78643K 2 0 sem 12 1K 1K 78643K 23 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1824 197K 290K 78643K 13058 0 file desc 6 17K 25K 78643K 421 0 sigio 0 0K 0K 78643K 2 0 proc 61 63K 95K 78643K 489 0 subproc 32 2K 2K 78643K 34 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 33 0 in_multi 85 3K 3K 78643K 142 0 ether_multi 1 0K 0K 78643K 17 0 mrt 0 0K 0K 78643K 7 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 55 254K 254K 78643K 55 0 exec 0 0K 1K 78643K 231 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 134 40K 40K 78643K 2297 0 UVM aobj 22 3K 3K 78643K 28 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 77 0 NDP 11 0K 0K 78643K 21 0 temp 95 3034K 3099K 78643K 13708 0 kqueue 3 4K 12K 78643K 21 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 6 0 1 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 80 34 0 32 1 0 1 1 0 8 0 rtentry 112 63 0 23 2 0 2 2 0 8 0 unpcb 120 189 0 179 1 0 1 1 0 8 0 syncache 264 8 0 8 2 2 0 1 0 8 0 tcpqe 32 415 0 415 1 1 0 1 0 8 0 tcpcb 544 169 0 165 2 1 1 2 0 8 0 inpcb 280 489 0 482 3 1 2 2 0 8 1 rttmr 72 3 0 3 2 1 1 1 0 8 1 nd6 48 10 0 6 1 0 1 1 0 8 0 pffrag 232 2 0 0 1 0 1 1 0 482 0 pffrnode 88 2 0 0 1 0 1 1 0 8 0 pffrent 40 4 0 2 1 0 1 1 0 8 0 pfosfp 40 846 0 423 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 48 0 8 1 0 1 1 0 8 0 pfstkey 112 48 0 8 2 0 2 2 0 8 0 pfstate 328 48 0 8 4 0 4 4 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 268 0 91 13 0 13 13 0 8 1 art_table 32 269 0 91 2 0 2 2 0 8 0 art_node 16 62 0 25 1 0 1 1 0 8 0 sysvmsgpl 40 8 0 8 2 2 0 1 0 8 0 semupl 112 2 0 2 1 1 0 1 0 8 0 semapl 112 15 0 5 1 0 1 1 0 8 0 shmpl 112 26 0 6 2 1 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1972 0 568 89 0 89 89 0 8 0 ffsino 272 1972 0 568 95 0 95 95 0 8 0 nchpl 144 3041 0 1427 60 0 60 60 0 8 0 uvmvnodes 72 2144 0 0 39 0 39 39 0 8 0 vnodes 208 2144 0 0 113 0 113 113 0 8 0 namei 1024 8068 0 8068 2 1 1 1 0 8 1 percpumem 16 35 0 3 1 0 1 1 0 8 0 vcpupl 1984 1 0 0 1 0 1 1 0 8 0 vmpool 560 5 0 4 1 0 1 1 0 8 0 scxspl 192 8734 0 8734 11 8 3 7 0 8 3 plimitpl 152 41 0 33 1 0 1 1 0 8 0 sigapl 424 658 0 604 7 0 7 7 0 8 1 futexpl 56 5893 0 5893 2 1 1 1 0 8 1 knotepl 112 81 0 62 1 0 1 1 0 8 0 kqueuepl 144 66 0 64 1 0 1 1 0 8 0 pipelkpl 48 125 0 115 1 0 1 1 0 8 0 pipepl 120 250 0 231 2 1 1 2 0 8 0 fdescpl 496 621 0 604 3 0 3 3 0 8 0 filepl 152 3820 0 3718 6 1 5 6 0 8 1 lockfpl 104 115 0 114 1 0 1 1 0 8 0 lockfspl 48 38 0 37 1 0 1 1 0 8 0 sessionpl 112 18 0 7 1 0 1 1 0 8 0 pgrppl 48 24 0 13 1 0 1 1 0 8 0 ucredpl 96 339 0 330 1 0 1 1 0 8 0 zombiepl 144 604 0 604 1 0 1 1 0 8 1 processpl 984 658 0 604 7 0 7 7 0 8 0 procpl 624 1532 0 1468 6 0 6 6 0 8 0 sosppl 128 10 0 10 2 2 0 1 0 8 0 sockpl 400 714 0 695 7 4 3 5 0 8 1 mcl64k 65536 12 0 0 2 0 2 2 0 8 0 mcl12k 12288 6 0 0 1 0 1 1 0 8 0 mcl9k 9216 4 0 0 1 0 1 1 0 8 0 mcl8k 8192 4 0 0 1 0 1 1 0 8 0 mcl4k 4096 7 0 0 1 0 1 1 0 8 0 mcl2k2 2112 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 173 0 0 21 0 21 21 0 8 0 mtagpl 80 26 0 0 1 0 1 1 0 8 0 mbufpl 256 470 0 0 28 0 28 28 0 8 0 bufpl 280 4639 0 150 321 0 321 321 0 8 0 anonpl 16 72739 0 57764 81 10 71 77 0 124 9 amapchunkpl 152 3246 0 3114 10 4 6 9 0 158 0 amappl16 192 2928 0 2119 59 13 46 53 0 8 4 amappl15 184 9 0 7 1 0 1 1 0 8 0 amappl14 176 28 0 23 1 0 1 1 0 8 0 amappl13 168 422 0 416 1 0 1 1 0 8 0 amappl12 160 12 0 9 2 1 1 1 0 8 0 amappl11 152 55 0 39 1 0 1 1 0 8 0 amappl10 144 26 0 17 1 0 1 1 0 8 0 amappl9 136 576 0 573 1 0 1 1 0 8 0 amappl8 128 554 0 515 2 0 2 2 0 8 0 amappl7 120 117 0 106 1 0 1 1 0 8 0 amappl6 112 27 0 23 2 1 1 1 0 8 0 amappl5 104 322 0 305 1 0 1 1 0 8 0 amappl4 96 680 0 650 1 0 1 1 0 8 0 amappl3 88 322 0 314 1 0 1 1 0 8 0 amappl2 80 4038 0 3967 2 0 2 2 0 8 0 amappl1 72 22947 0 22518 23 13 10 18 0 8 0 amappl 80 1760 0 1716 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 27 0 6 1 0 1 1 0 8 0 uaddrrnd 24 626 0 608 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 626 0 608 1 0 1 1 0 8 0 vmmpekpl 168 8393 0 8355 2 0 2 2 0 8 0 vmmpepl 168 82493 0 80463 116 24 92 109 0 357 1 vmsppl 368 625 0 608 2 0 2 2 0 8 0 pdppl 4096 1260 0 1217 6 0 6 6 0 8 0 pvpl 32 232934 0 214692 187 9 178 184 0 265 29 pmappl 232 625 0 608 3 1 2 2 0 8 1 extentpl 40 53 0 36 1 0 1 1 0 8 0 phpool 112 283 0 9 8 0 8 8 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff824a6ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:352 x86_ipi_handler() at x86_ipi_handler+0xc6 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x36 kd_curproc sys/dev/kcov.c:411 [inline] __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x36 sys/dev/kcov.c:79 softintr_dispatch(0) at softintr_dispatch+0x4e sys/arch/amd64/amd64/softintr.c:89 Xsoftclock() at Xsoftclock+0x1f __mp_lock(ffffffff82643928) at __mp_lock+0x127 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82643928) at __mp_lock+0x127 sys/kern/kern_lock.c:147 solock(fffffd806f6e0000) at solock+0x66 sys/kern/uipc_socket2.c:292 soreceive(fffffd806f6e0000,0,ffff800020ead308,0,0,ffff800020ead214) at soreceive+0xb3a sys/kern/uipc_socket.c:950 soo_read(fffffd8076bf51c8,ffff800020ead308,0) at soo_read+0x53 sys/kern/sys_socket.c:70 dofilereadv(ffff800020e6cc38,6,ffff800020ead308,0,ffff800020ead3f0) at dofilereadv+0x1a1 sys/kern/sys_generic.c:237 sys_read(ffff800020e6cc38,ffff800020ead3a0,ffff800020ead3f0) at sys_read+0x83 sys/kern/sys_generic.c:157 syscall(ffff800020ead470) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800020ead470) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffca750, count: -14 ddb{0}> machine ddbcpu 1 Stopped at memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> trace memcpy() at memcpy+0x15 sysctl_iflist(0,ffff800020ea6f18) at sysctl_iflist+0x255 sys/net/rtsock.c:1979 sysctl_rtable(ffff800020ea6fdc,3,e5c4720d000,ffff800020ea7008,0,0) at sysctl_rtable+0x196 sys/net/rtsock.c:2076 sys_sysctl(ffff800020e6d118,ffff800020ea7070,ffff800020ea70c0) at sys_sysctl+0x20e sys/kern/kern_sysctl.c:251 syscall(ffff800020ea7140) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800020ea7140) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffca960, count: -6