login: uvm_fault(0xffffffff82617480, 0xffff800000a5b000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic kernel page fault uvm_fault(0xffffffff82617480, 0xffff800000a5b000, 0, 1) -> e memcpy() at memcpy+0x15 end trace frame: 0xffff800020ea7a90, count: 0 ddb{1}> trace memcpy() at memcpy+0x15 sysctl_iflist(0,ffff800020ea7ae8) at sysctl_iflist+0x255 sys/net/rtsock.c:1979 sysctl_rtable(ffff800020ea7bac,3,7ed2d53e000,ffff800020ea7bd8,0,0) at sysctl_rtable+0x196 sys/net/rtsock.c:2076 sys_sysctl(ffff800020e6c278,ffff800020ea7c40,ffff800020ea7c90) at sys_sysctl+0x20e sys/kern/kern_sysctl.c:252 syscall(ffff800020ea7d10) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800020ea7d10) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffea200, count: -6 ddb{1}> show registers rdi 0xffff800000a3ace8 rsi 0xffff800000a5b000 rbp 0xffff800020ea7990 rbx 0xe8 rdx 0xe8 rcx 0x5 rax 0xfffffffffffdfce8 r8 0x110 r9 0x5 r10 0xba90ec21f1c2d11a r11 0xffff800000a3ac28 r12 0xffff800000a5af40 r13 0xe8 r14 0xffff800000a3ac28 r15 0x6 rip 0xffffffff8105bd75 memcpy+0x15 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff800020ea78d8 ss 0x10 memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> show proc PROC (dhclient) pid=106399 stat=onproc flags process=100010 proc=0 pri=24, usrpri=51, nice=20 forw=0xffffffffffffffff, list=0xffff800020e6c008,0xffff800020ed1af0 process=0xffff800020e80b98 user=0xffff800020ea2000, vmspace=0xfffffd807f000450 estcpu=1, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 2711 248537 20839 0 2 0 syz-executor.1 2711 499895 20839 0 7 0x4000080 syz-executor.1 15878 323242 20578 0 2 0 syz-executor.0 15878 315595 20578 0 2 0x4000000 syz-executor.0 42136 13081 0 0 3 0x14200 acct acct 54176 302032 0 0 3 0x14200 bored sosplice 39563 203564 0 0 3 0x14280 nfsidl nfsio 78962 390123 0 0 3 0x14280 nfsidl nfsio 95609 11953 0 0 3 0x14280 nfsidl nfsio 22777 238697 0 0 3 0x14280 nfsidl nfsio 8792 175197 0 0 3 0x14280 nfsidl nfsio 29853 19126 0 0 3 0x14280 nfsidl nfsio 38459 301832 0 0 3 0x14280 nfsidl nfsio 39771 468064 0 0 3 0x14280 nfsidl nfsio 74825 404291 0 0 3 0x14280 nfsidl nfsio 45234 155031 0 0 3 0x14280 nfsidl nfsio 45597 100701 0 0 3 0x14280 nfsidl nfsio 36108 35082 0 0 3 0x14280 nfsidl nfsio 99719 261718 0 0 3 0x14280 nfsidl nfsio 23074 288801 0 0 3 0x14280 nfsidl nfsio 49856 472795 0 0 3 0x14280 nfsidl nfsio 10477 114346 0 0 3 0x14280 nfsidl nfsio 36027 144032 0 0 3 0x14280 nfsidl nfsio 5009 485937 0 0 3 0x14280 nfsidl nfsio 17389 334051 0 0 3 0x14280 nfsidl nfsio 64613 515644 0 0 3 0x14280 nfsidl nfsio 20839 458171 75924 0 3 0x82 nanosleep syz-executor.1 20578 23957 75924 0 3 0x82 nanosleep syz-executor.0 75924 90470 70517 0 3 0x82 thrsleep syz-fuzzer 75924 217782 70517 0 3 0x4000082 thrsleep syz-fuzzer 75924 67039 70517 0 3 0x4000082 thrsleep syz-fuzzer 75924 291146 70517 0 3 0x4000082 kqread syz-fuzzer 75924 43181 70517 0 3 0x4000082 thrsleep syz-fuzzer 75924 416028 70517 0 3 0x4000082 thrsleep syz-fuzzer 75924 246428 70517 0 3 0x4000082 thrsleep syz-fuzzer 75924 242755 70517 0 3 0x4000082 thrsleep syz-fuzzer 75924 441946 70517 0 3 0x4000082 thrsleep syz-fuzzer 75924 236957 70517 0 3 0x4000082 thrsleep syz-fuzzer 70517 79727 50849 0 3 0x10008a pause ksh 50849 87962 95202 0 3 0x92 select sshd 40343 505396 1 0 3 0x100083 ttyin getty 95202 130004 1 0 3 0x80 select sshd 76148 227461 21239 74 3 0x100092 bpf pflogd 21239 211965 1 0 3 0x80 netio pflogd 65484 237475 24599 73 3 0x100090 kqread syslogd 24599 221198 1 0 3 0x100082 netio syslogd *78229 106399 1 77 7 0x100010 dhclient 66906 167380 1 0 3 0x80 poll dhclient 9776 340790 0 0 3 0x14200 bored smr 95184 152914 0 0 2 0x14200 zerothread 32532 208715 0 0 3 0x14200 aiodoned aiodoned 93184 418015 0 0 3 0x14200 syncer update 84317 14093 0 0 3 0x14200 cleaner cleaner 98528 392793 0 0 3 0x14200 reaper reaper 62198 382254 0 0 3 0x14200 pgdaemon pagedaemon 17001 343225 0 0 3 0x14200 bored crynlk 9946 125572 0 0 3 0x14200 bored crypto 58666 73355 0 0 3 0x40014200 acpi0 acpi0 18040 300472 0 0 3 0x40014200 idle1 80905 2303 0 0 3 0x14200 bored softnet 8754 296571 0 0 3 0x14200 bored systqmp 42427 45066 0 0 3 0x14200 bored systq 99008 454008 0 0 3 0x40014200 bored softclock 42995 274903 0 0 3 0x40014200 idle0 1 229522 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 78229 (dhclient) thread 0xffff800020e6c278 (106399) exclusive rwlock netlock r = 0 (0xffffffff824f5968) #0 witness_lock+0x4c7 stacktrace_save sys/sys/stacktrace.h:36 [inline] #0 witness_lock+0x4c7 sys/kern/subr_witness.c:1164 #1 sysctl_rtable+0x187 sys/net/rtsock.c:2075 #2 sys_sysctl+0x20e sys/kern/kern_sysctl.c:252 #3 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #3 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #4 Xsyscall+0x128 exclusive rwlock sysctllk r = 0 (0xffffffff8248b060) #0 witness_lock+0x4c7 stacktrace_save sys/sys/stacktrace.h:36 [inline] #0 witness_lock+0x4c7 sys/kern/subr_witness.c:1164 #1 rw_enter+0x453 sys/kern/kern_rwlock.c:311 #2 sys_sysctl+0x1ac sys/kern/kern_sysctl.c:236 #3 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] #3 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 #4 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 1 (0xffffffff82692668) #0 witness_lock+0x4c7 stacktrace_save sys/sys/stacktrace.h:36 [inline] #0 witness_lock+0x4c7 sys/kern/subr_witness.c:1164 #1 syscall+0x400 mi_syscall sys/sys/syscall_mi.h:93 [inline] #1 syscall+0x400 sys/arch/amd64/amd64/trap.c:570 #2 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9510 6414K 6801K 78643K 10921 0 pcb 13 8K 8K 78643K 61 0 rtable 74 4K 4K 78643K 299 0 ifaddr 74 14K 14K 78643K 102 0 counters 45 34K 34K 78643K 51 0 ioctlops 0 0K 4K 78643K 1484 0 iov 0 0K 16K 78643K 31 0 mount 1 1K 1K 78643K 1 0 vnodes 1226 77K 77K 78643K 1341 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 5 0 VM map 2 1K 1K 78643K 2 0 sem 12 0K 1K 78643K 54 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1824 197K 290K 78643K 13058 0 file desc 6 17K 25K 78643K 227 0 sigio 0 0K 0K 78643K 5 0 proc 61 63K 83K 78643K 460 0 subproc 32 2K 2K 78643K 34 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 120 0 in_multi 56 2K 2K 78643K 100 0 ether_multi 1 0K 0K 78643K 6 0 mrt 0 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 37 175K 175K 78643K 37 0 exec 0 0K 1K 78643K 220 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 130 39K 39K 78643K 1681 0 UVM aobj 6 2K 2K 78643K 6 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 22 0 NDP 12 0K 0K 78643K 21 0 temp 96 3034K 3098K 78643K 3667 0 kqueue 3 4K 12K 78643K 46 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 6 0 2 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 80 35 0 33 1 0 1 1 0 8 0 rtentry 112 62 0 37 2 0 2 2 0 8 0 unpcb 120 170 0 158 1 0 1 1 0 8 0 syncache 264 5 0 5 2 2 0 1 0 8 0 tcpqe 32 398 0 398 1 1 0 1 0 8 0 tcpcb 544 97 0 93 1 0 1 1 0 8 0 inpcb 280 503 0 496 3 1 2 2 0 8 1 nd6 48 9 0 6 1 0 1 1 0 8 0 ppxss 1128 4 0 3 2 1 1 1 0 8 0 pffrag 232 1 0 1 1 0 1 1 0 482 1 pffrnode 88 1 0 1 1 0 1 1 0 8 1 pffrent 40 45 0 45 1 0 1 1 0 8 1 pfosfp 40 846 0 423 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 33 0 3 1 0 1 1 0 8 0 pfstkey 112 33 0 3 1 0 1 1 0 8 0 pfstate 328 33 0 3 3 0 3 3 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 379 0 204 13 2 11 12 0 8 0 art_table 32 380 0 204 2 0 2 2 0 8 0 art_node 16 61 0 38 1 0 1 1 0 8 0 sysvmsgpl 40 12 0 9 1 0 1 1 0 8 0 semupl 112 2 0 2 1 1 0 1 0 8 0 semapl 112 46 0 36 1 0 1 1 0 8 0 shmpl 112 4 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1732 0 326 89 0 89 89 0 8 1 ffsino 272 1732 0 326 95 1 94 94 0 8 0 nchpl 144 2240 0 628 60 0 60 60 0 8 0 uvmvnodes 72 1860 0 0 34 0 34 34 0 8 0 vnodes 208 1860 0 0 98 0 98 98 0 8 0 namei 1024 5984 0 5984 2 1 1 1 0 8 1 percpumem 16 36 0 3 1 0 1 1 0 8 0 vcpupl 1984 4 0 0 1 0 1 1 0 8 0 vmpool 560 4 0 0 1 0 1 1 0 8 0 scxspl 192 6388 0 6388 10 7 3 6 0 8 3 plimitpl 152 35 0 27 1 0 1 1 0 8 0 sigapl 424 464 0 410 7 0 7 7 0 8 1 futexpl 56 3628 0 3628 1 0 1 1 0 8 1 knotepl 112 104 0 85 1 0 1 1 0 8 0 kqueuepl 144 121 0 118 1 0 1 1 0 8 0 pipelkpl 48 93 0 83 1 0 1 1 0 8 0 pipepl 120 186 0 167 1 0 1 1 0 8 0 fdescpl 496 427 0 410 3 0 3 3 0 8 0 filepl 152 2646 0 2544 7 2 5 6 0 8 1 lockfpl 104 50 0 49 1 0 1 1 0 8 0 lockfspl 48 19 0 18 1 0 1 1 0 8 0 sessionpl 112 18 0 7 1 0 1 1 0 8 0 pgrppl 48 18 0 7 1 0 1 1 0 8 0 ucredpl 96 191 0 182 1 0 1 1 0 8 0 zombiepl 144 410 0 410 2 1 1 1 0 8 1 processpl 984 464 0 410 8 1 7 7 0 8 0 procpl 624 915 0 850 6 0 6 6 0 8 1 srpgc 64 2 0 2 1 1 0 1 0 8 0 sosppl 128 2 0 2 1 0 1 1 0 8 1 sockpl 400 709 0 688 7 2 5 6 0 8 2 mcl64k 65536 5 0 0 1 0 1 1 0 8 0 mcl16k 16384 1 0 0 1 0 1 1 0 8 0 mcl12k 12288 3 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 3 0 0 1 0 1 1 0 8 0 mcl4k 4096 4 0 0 1 0 1 1 0 8 0 mcl2k2 2112 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 172 0 0 21 0 21 21 0 8 0 mtagpl 80 14 0 0 1 0 1 1 0 8 0 mbufpl 256 278 0 0 16 0 16 16 0 8 0 bufpl 280 3604 0 138 248 0 248 248 0 8 0 anonpl 16 67038 0 52746 94 5 89 93 0 124 26 amapchunkpl 152 2631 0 2500 19 12 7 19 0 158 0 amappl16 192 2775 0 1943 69 22 47 65 0 8 5 amappl15 184 1 0 0 1 0 1 1 0 8 0 amappl14 176 25 0 20 1 0 1 1 0 8 0 amappl13 168 28 0 25 1 0 1 1 0 8 0 amappl12 160 11 0 9 1 0 1 1 0 8 0 amappl11 152 55 0 40 1 0 1 1 0 8 0 amappl10 144 208 0 200 1 0 1 1 0 8 0 amappl9 136 386 0 385 1 0 1 1 0 8 0 amappl8 128 365 0 328 2 0 2 2 0 8 0 amappl7 120 314 0 299 1 0 1 1 0 8 0 amappl6 112 33 0 23 1 0 1 1 0 8 0 amappl5 104 321 0 304 1 0 1 1 0 8 0 amappl4 96 489 0 458 1 0 1 1 0 8 0 amappl3 88 112 0 104 1 0 1 1 0 8 0 amappl2 80 2467 0 2389 2 0 2 2 0 8 0 amappl1 72 19275 0 18826 23 13 10 18 0 8 0 amappl 80 1150 0 1106 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 5 0 0 1 0 1 1 0 8 0 uaddrrnd 24 431 0 410 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 431 0 410 1 0 1 1 0 8 0 vmmpekpl 168 6989 0 6952 2 0 2 2 0 8 0 vmmpepl 168 60228 0 58101 122 11 111 114 0 357 18 vmsppl 368 430 0 410 2 0 2 2 0 8 0 pdppl 4096 870 0 824 6 0 6 6 0 8 0 pvpl 32 202417 0 185293 217 5 212 216 0 265 65 pmappl 232 430 0 410 2 0 2 2 0 8 0 extentpl 40 53 0 36 1 0 1 1 0 8 0 phpool 112 270 0 9 8 0 8 8 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff824f8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:352 x86_ipi_handler() at x86_ipi_handler+0xc6 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x94 sys/dev/kcov.c:86 __mp_lock(ffffffff82692460) at __mp_lock+0x125 __mp_lock_spin sys/kern/kern_lock.c:117 [inline] __mp_lock(ffffffff82692460) at __mp_lock+0x125 sys/kern/kern_lock.c:147 __mp_acquire_count(ffffffff82692460,2) at __mp_acquire_count+0x51 sys/kern/kern_lock.c:227 mi_switch() at mi_switch+0x392 sys/kern/sched_bsd.c:435 sleep_finish(ffff8000220237e0,1) at sleep_finish+0x113 sys/kern/kern_synch.c:418 sleep_finish_all(ffff8000220237e0,1) at sleep_finish_all+0x32 sleep_finish_timeout sys/kern/kern_synch.c:447 [inline] sleep_finish_all(ffff8000220237e0,1) at sleep_finish_all+0x32 sys/kern/kern_synch.c:393 rwsleep(ffff800020e93608,ffffffff824fdf20,120,ffffffff821f8745,0) at rwsleep+0x11b sys/kern/kern_synch.c:313 futex_wait(816ba3ef750,3,0,2) at futex_wait+0x13c sys/kern/sys_futex.c:254 sys_futex(ffff800020e93608,ffff800022023980,ffff8000220239d0) at sys_futex+0x114 sys/kern/sys_futex.c:110 syscall(ffff800022023a50) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800022023a50) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x816baae4b70, count: -14 ddb{0}> machine ddbcpu 1 Stopped at memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> trace memcpy() at memcpy+0x15 sysctl_iflist(0,ffff800020ea7ae8) at sysctl_iflist+0x255 sys/net/rtsock.c:1979 sysctl_rtable(ffff800020ea7bac,3,7ed2d53e000,ffff800020ea7bd8,0,0) at sysctl_rtable+0x196 sys/net/rtsock.c:2076 sys_sysctl(ffff800020e6c278,ffff800020ea7c40,ffff800020ea7c90) at sys_sysctl+0x20e sys/kern/kern_sysctl.c:252 syscall(ffff800020ea7d10) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800020ea7d10) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:570 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffea200, count: -6