uvm_fault(0xffffffff8389efb0, 0xffff80000150a000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at memcpy+0x19: repe movsq (%rsi),%es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND *357846 10312 0 0 0x4000000 0 syz-executor memcpy() at memcpy+0x19 rtm_msg1(14,ffff800035d11458) at rtm_msg1+0x306 sys/net/rtsock.c:1627 rtm_addr(14,ffff800001509f00) at rtm_addr+0xb9 sys/net/rtsock.c:-1 in6_update_ifa(ffff800000b3f000,ffff800035d11870,ffff800001509f00) at in6_update_ifa+0x19aa sys/netinet6/in6.c:741 in6_ioctl_change_ifaddr(8080691a,ffff800035d11870,ffff800000b3f000) at in6_ioctl_change_ifaddr+0x638 sys/netinet6/in6.c:352 ifioctl(ffff80000149da00,8080691a,ffff800035d11870,ffff80002a8314f8) at ifioctl+0x16c4 pru_control sys/sys/protosw.h:353 [inline] ifioctl(ffff80000149da00,8080691a,ffff800035d11870,ffff80002a8314f8) at ifioctl+0x16c4 sys/net/if.c:2483 sys_ioctl(ffff80002a8314f8,ffff800035d11a40,ffff800035d11990) at sys_ioctl+0x660 sys/kern/sys_generic.c:-1 syscall(ffff800035d11a40) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff800035d11a40) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xe856b8a2380, count: 6 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff8389efb0, 0xffff80000150a000, 0, 1) -> e ddb> trace memcpy() at memcpy+0x19 rtm_msg1(14,ffff800035d11458) at rtm_msg1+0x306 sys/net/rtsock.c:1627 rtm_addr(14,ffff800001509f00) at rtm_addr+0xb9 sys/net/rtsock.c:-1 in6_update_ifa(ffff800000b3f000,ffff800035d11870,ffff800001509f00) at in6_update_ifa+0x19aa sys/netinet6/in6.c:741 in6_ioctl_change_ifaddr(8080691a,ffff800035d11870,ffff800000b3f000) at in6_ioctl_change_ifaddr+0x638 sys/netinet6/in6.c:352 ifioctl(ffff80000149da00,8080691a,ffff800035d11870,ffff80002a8314f8) at ifioctl+0x16c4 pru_control sys/sys/protosw.h:353 [inline] ifioctl(ffff80000149da00,8080691a,ffff800035d11870,ffff80002a8314f8) at ifioctl+0x16c4 sys/net/if.c:2483 sys_ioctl(ffff80002a8314f8,ffff800035d11a40,ffff800035d11990) at sys_ioctl+0x660 sys/kern/sys_generic.c:-1 syscall(ffff800035d11a40) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff800035d11a40) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xe856b8a2380, count: -9 ddb> show registers rdi 0xfffffd806f469938 rsi 0xffff80000150a000 rbp 0xffff800035d113d0 rbx 0 rdx 0xea rcx 0xe rax 0x7d806df5f938 r8 0x2 r9 0x8080808080808080 r10 0x158dc340dcf89b3e r11 0xfffffd806f4698c0 r12 0xea r13 0xea r14 0xc0 r15 0xfffffd805d799700 rip 0xffffffff818d1309 memcpy+0x19 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff800035d11328 ss 0x10 memcpy+0x19: repe movsq (%rsi),%es:(%rdi) ddb> show proc PROC (syz-executor) tid=357846 pid=10312 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=50, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a831260,0xffffffff8389ba18 process=0xffff8000ffff9f98 user=0xffff800035d0c000, vmspace=0xfffffd806c2cf5d0 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 10312 325936 65432 0 3 0x80 fsleep syz-executor *10312 357846 65432 0 7 0x4000000 syz-executor 48981 471883 96370 0 2 0xc80 syz-executor 48981 139373 96370 0 3 0x4000080 fsleep syz-executor 48981 200520 96370 0 3 0x4000080 fsleep syz-executor 48981 150138 96370 0 3 0x4000080 fsleep syz-executor 57369 112713 0 0 3 0x14200 acct acct 71338 520247 51895 60929 3 0x90 fsleep syz-executor 71338 57188 51895 60929 2 0x4000010 syz-executor 71338 336561 51895 60929 2 0x4000010 syz-executor 71338 329746 51895 60929 2 0x4000010 syz-executor 99529 210258 67403 0 2 0 syz-executor 99529 364528 67403 0 3 0x4000080 lockf syz-executor 99529 368305 67403 0 2 0x4000000 syz-executor 99529 74954 67403 0 3 0x4000080 fsleep syz-executor 54830 307660 22768 0 3 0x80 fsleep syz-executor 54830 404706 22768 0 2 0x4000000 syz-executor 54830 142022 22768 0 3 0x4000080 fsleep syz-executor 55306 391461 1 0 3 0x100083 ttyin getty 65432 48049 2810 0 3 0x82 nanoslp syz-executor 60915 392620 2810 0 2 0x2 syz-executor 388 303515 0 0 3 0x14280 nfsidl nfsio 5797 39376 0 0 3 0x14280 nfsidl nfsio 39007 316045 0 0 3 0x14280 nfsidl nfsio 37207 67689 0 0 3 0x14280 nfsidl nfsio 93141 304939 0 0 3 0x14280 nfsidl nfsio 52880 278634 0 0 3 0x14280 nfsidl nfsio 25634 454277 0 0 3 0x14280 nfsidl nfsio 4264 364642 0 0 3 0x14280 nfsidl nfsio 73361 188478 0 0 3 0x14280 nfsidl nfsio 53288 342644 0 0 3 0x14280 nfsidl nfsio 73358 465171 0 0 3 0x14280 nfsidl nfsio 38495 49361 0 0 3 0x14280 nfsidl nfsio 53193 349865 0 0 3 0x14280 nfsidl nfsio 87608 205360 0 0 3 0x14280 nfsidl nfsio 26192 327030 0 0 3 0x14280 nfsidl nfsio 60404 109494 0 0 3 0x14280 nfsidl nfsio 34454 504365 0 0 3 0x14280 nfsidl nfsio 66714 277224 0 0 3 0x14280 nfsidl nfsio 52662 287649 0 0 3 0x14280 nfsidl nfsio 56814 358547 0 0 3 0x14280 nfsidl nfsio 69933 17794 2810 0 3 0x82 nanoslp syz-executor 94454 492498 2810 0 2 0x2 syz-executor 51895 58603 2810 0 3 0x82 nanoslp syz-executor 67403 130479 2810 0 3 0x82 nanoslp syz-executor 96370 166097 2810 0 2 0xc82 syz-executor 22768 452360 2810 0 3 0x82 nanoslp syz-executor 2810 204177 19913 0 3 0x82 kqread syz-executor 19913 491698 29025 0 3 0x10008a sigsusp ksh 29025 143142 2067 0 3 0x98 kqread sshd-session 2067 431459 40422 0 3 0x92 kqread sshd-session 40422 151869 1 0 3 0x88 kqread sshd 44756 112077 23440 73 2 0x1100090 syslogd 23440 289844 1 0 3 0x100082 sbwait syslogd 32441 224879 1 0 3 0x100080 kqread resolvd 83221 237867 23038 77 2 0x100092 dhcpleased 96708 423083 23038 77 3 0x100092 kqread dhcpleased 23038 500669 1 0 3 0x80 kqread dhcpleased 31284 333547 0 0 3 0x14200 bored smr 24398 316466 0 0 2 0x14200 zerothread 44267 54302 0 0 3 0x14200 aiodoned aiodoned 91945 127169 0 0 3 0x14200 syncer update 16784 141396 0 0 3 0x14200 cleaner cleaner 42006 400993 0 0 3 0x14200 reaper reaper 94553 311559 0 0 3 0x14200 pgdaemon pagedaemon 21111 382690 0 0 3 0x14200 bored viomb 81708 117721 0 0 3 0x40014200 acpi0 acpi0 12042 26014 0 0 2 0x14200 softnet0 82483 352628 0 0 3 0x14200 bored systqmp 15959 277235 0 0 3 0x14200 bored systq 28974 317868 0 0 2 0x40014200 softclock 98087 76651 0 0 3 0x40014200 idle0 1 507331 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10198 11195K 12216K 166960K 15350 0 pcb 18 16K 17K 166960K 508 0 rtable 198 9K 9K 166960K 990 0 pf 39 14K 18K 166960K 152 0 ifaddr 37 6K 7K 166960K 102 0 ifgroup 58 2K 2K 166960K 174 0 sysctl 4 1K 9K 166960K 57 0 counters 34 18K 18K 166960K 99 0 ioctlops 0 0K 4K 166960K 463 0 iov 0 0K 16K 166960K 207 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1553 98K 98K 166960K 3494 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 3 5K 9K 166960K 17 0 VM map 2 1K 1K 166960K 2 0 sem 26 11K 11K 166960K 49 0 dirhash 12 2K 2K 166960K 42 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 57K 240K 166960K 1761 0 sigio 0 0K 0K 166960K 87 0 proc 61 67K 108K 166960K 710 0 subproc 72 4K 4K 166960K 90 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 298 0 in_multi 76 5K 7K 166960K 163 0 ether_multi 1 0K 0K 166960K 19 0 mrt 0 0K 0K 166960K 22 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 97 440K 440K 166960K 97 0 exec 0 0K 1K 166960K 684 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 5 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 248 152K 174K 166960K 17265 0 UVM aobj 137 18K 18K 166960K 140 0 pinsyscall 38 76K 94K 166960K 2898 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 81 0 NDP 13 0K 2K 166960K 74 0 temp 75 8672K 8748K 166960K 76420 0 kqueue 13 20K 39K 166960K 354 0 SYN cache 2 8K 16K 166960K 3 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 298 0 294 3 2 1 3 0 8 0 rtentry 136 367 0 288 4 0 4 4 0 8 0 unpcb 144 1461 0 1443 8 7 1 6 0 8 0 syncache 336 6 0 6 2 2 0 1 0 8 0 tcpqe 32 9 0 9 2 2 0 1 0 8 0 tcpcb 736 701 0 696 14 12 2 7 0 8 1 arp 96 95 0 82 1 0 1 1 0 8 0 ipq 40 11 0 10 1 0 1 1 0 8 0 ipqe 40 48 0 47 1 0 1 1 0 8 0 inpcb 328 2027 0 2018 20 15 5 12 0 8 3 ip6q 72 3 0 1 1 0 1 1 0 8 0 ip6af 40 5 0 2 1 0 1 1 0 8 0 nd6 112 42 0 21 1 0 1 1 0 8 0 pkpcb 40 47 0 47 3 2 1 1 0 8 1 kcovpl 48 10 0 2 1 0 1 1 0 8 0 mppekey 1024 1 0 1 1 1 0 1 0 8 0 ppxss 1072 53 0 53 4 3 1 1 0 8 1 pppxif 1384 2 0 2 1 1 0 1 0 8 0 pfstscr 40 7 0 5 1 0 1 1 0 8 0 pfrktable 1344 6 0 6 2 1 1 1 0 8 1 pftag 88 1 0 0 1 0 1 1 0 8 0 pfstitem 24 7 0 0 1 0 1 1 0 8 0 pfstkey 128 25 0 20 1 0 1 1 0 8 0 pfstate 384 13 0 9 1 0 1 1 0 8 0 pfrule 1344 3 0 3 1 1 0 1 0 8 0 rttmr 136 3 0 3 1 1 0 1 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 757 0 392 36 12 24 30 0 8 0 art_table 40 759 0 392 5 0 5 5 0 8 0 art_node 32 366 0 298 3 1 2 3 0 8 0 sysvmsgpl 40 2 0 1 1 0 1 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 40 0 16 1 0 1 1 0 8 0 shmpl 112 131 0 3 4 0 4 4 0 8 0 dirhash 1024 37 0 20 3 0 3 3 0 8 0 dino2pl 256 4753 0 3256 95 0 95 95 0 8 0 ffsino 256 4753 0 3256 95 0 95 95 0 8 0 nchpl 144 7136 0 5437 64 0 64 64 0 8 0 rtmask 32 13 0 13 3 2 1 1 0 8 1 vnodes 216 6177 0 0 344 0 344 344 0 8 0 namei 1024 25998 0 25995 5 3 2 2 0 8 1 vcpupl 3904 6 0 0 1 0 1 1 0 8 0 vmpool 800 6 0 0 1 0 1 1 0 8 0 kstatmem 264 108 0 82 3 0 3 3 0 8 1 scsiplug 72 12 0 12 3 2 1 1 0 8 1 scxspl 216 21458 0 21458 10 8 2 8 1 8 2 plimitpl 152 591 0 574 1 0 1 1 0 8 0 sigapl 424 2057 0 1994 8 0 8 8 0 8 0 knotepl 120 568192 0 568145 23 14 9 10 0 8 6 kqueuepl 184 736 0 727 7 3 4 4 0 8 3 pipepl 304 354 0 327 13 5 8 8 0 8 5 fdescpl 448 2019 0 1991 5 1 4 5 0 8 0 filepl 120 14683 0 14466 21 7 14 15 0 8 5 lockfpl 104 1026 0 1021 2 1 1 2 0 8 0 lockfspl 48 351 0 347 1 0 1 1 0 8 0 sessionpl 144 29 0 21 1 0 1 1 0 8 0 pgrppl 48 92 0 76 1 0 1 1 0 8 0 ucredpl 104 2615 0 2603 1 0 1 1 0 8 0 zombiepl 144 2274 0 2273 2 1 1 1 0 8 0 processpl 1152 2057 0 1994 5 0 5 5 0 8 0 procpl 664 4546 0 4471 8 0 8 8 0 8 0 sosppl 176 9 0 9 2 1 1 1 0 8 1 sockpl 552 3894 0 3863 26 20 6 14 0 8 3 mcl64k 65536 291 0 291 2 1 1 2 0 8 1 mcl16k 16384 2 0 2 1 1 0 1 0 8 0 mcl9k 9216 2 0 2 1 1 0 1 0 8 0 mcl8k 8192 22 0 22 3 2 1 1 0 8 1 mcl4k 4096 4687 0 4630 17 8 9 16 0 8 1 mcl2k2 2112 3 0 3 2 1 1 1 0 8 1 mcl2k 2048 2775 0 2767 9 5 4 6 0 8 2 mtagpl 96 319 0 119 5 0 5 5 0 8 0 mbufpl 256 24283 0 23845 107 76 31 79 0 8 2 bufpl 280 7283 0 1061 445 0 445 445 0 8 0 anonpl 24 309661 0 298005 127 13 114 114 0 187 23 amapchunkpl 152 59293 0 58673 47 17 30 43 0 158 4 amappl16 200 5951 0 5490 55 12 43 47 0 8 8 amappl15 192 10 0 10 1 1 0 1 0 8 0 amappl14 184 13 0 12 2 1 1 1 0 8 0 amappl13 176 445 0 444 1 0 1 1 0 8 0 amappl12 168 2388 0 2351 2 0 2 2 0 8 0 amappl11 160 2 0 2 1 1 0 1 0 8 0 amappl10 152 47 0 37 1 0 1 1 0 8 0 amappl9 144 274 0 274 1 1 0 1 0 8 0 amappl8 136 37 0 35 1 0 1 1 0 8 0 amappl7 128 106 0 104 1 0 1 1 0 8 0 amappl6 120 332 0 320 1 0 1 1 0 8 0 amappl5 112 75 0 67 1 0 1 1 0 8 0 amappl4 104 426 0 402 1 0 1 1 0 8 0 amappl3 96 10381 0 10283 3 0 3 3 0 8 0 amappl2 88 2176 0 2103 2 0 2 2 0 8 0 amappl1 80 16478 0 15952 14 2 12 13 0 8 0 amappl 88 16219 0 16039 5 0 5 5 0 92 0 uvmvnodes 80 136 0 0 3 0 3 3 0 8 0 dma8192 8192 2 0 2 2 1 1 1 0 8 1 dma4096 4096 3 0 3 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 9 0 9 2 2 0 1 0 8 0 dma128 128 255 0 255 1 1 0 1 0 8 0 dma64 64 7 0 7 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 139 0 3 3 0 3 3 0 8 0 uaddrrnd 24 2019 0 1990 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2019 0 1990 1 0 1 1 0 8 0 vmmpekpl 168 16680 0 16637 3 0 3 3 0 8 0 vmmpepl 168 132155 0 129927 127 8 119 119 0 357 10 vmsppl 368 2018 0 1990 4 1 3 4 0 8 0 rwobjpl 40 34579 0 33000 21 0 21 21 0 8 1 pdppl 4096 4056 0 3986 125 53 72 80 0 8 2 pvpl 32 899469 0 882352 234 25 209 209 0 265 41 pmappl 216 2024 0 1990 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 532 0 182 12 1 11 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace memcpy() at memcpy+0x19 rtm_msg1(14,ffff800035d11458) at rtm_msg1+0x306 sys/net/rtsock.c:1627 rtm_addr(14,ffff800001509f00) at rtm_addr+0xb9 sys/net/rtsock.c:-1 in6_update_ifa(ffff800000b3f000,ffff800035d11870,ffff800001509f00) at in6_update_ifa+0x19aa sys/netinet6/in6.c:741 in6_ioctl_change_ifaddr(8080691a,ffff800035d11870,ffff800000b3f000) at in6_ioctl_change_ifaddr+0x638 sys/netinet6/in6.c:352 ifioctl(ffff80000149da00,8080691a,ffff800035d11870,ffff80002a8314f8) at ifioctl+0x16c4 pru_control sys/sys/protosw.h:353 [inline] ifioctl(ffff80000149da00,8080691a,ffff800035d11870,ffff80002a8314f8) at ifioctl+0x16c4 sys/net/if.c:2483 sys_ioctl(ffff80002a8314f8,ffff800035d11a40,ffff800035d11990) at sys_ioctl+0x660 sys/kern/sys_generic.c:-1 syscall(ffff800035d11a40) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff800035d11a40) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xe856b8a2380, count: -9 ddb> machine ddbcpu 1 No such command ddb> trace memcpy() at memcpy+0x19 rtm_msg1(14,ffff800035d11458) at rtm_msg1+0x306 sys/net/rtsock.c:1627 rtm_addr(14,ffff800001509f00) at rtm_addr+0xb9 sys/net/rtsock.c:-1 in6_update_ifa(ffff800000b3f000,ffff800035d11870,ffff800001509f00) at in6_update_ifa+0x19aa sys/netinet6/in6.c:741 in6_ioctl_change_ifaddr(8080691a,ffff800035d11870,ffff800000b3f000) at in6_ioctl_change_ifaddr+0x638 sys/netinet6/in6.c:352 ifioctl(ffff80000149da00,8080691a,ffff800035d11870,ffff80002a8314f8) at ifioctl+0x16c4 pru_control sys/sys/protosw.h:353 [inline] ifioctl(ffff80000149da00,8080691a,ffff800035d11870,ffff80002a8314f8) at ifioctl+0x16c4 sys/net/if.c:2483 sys_ioctl(ffff80002a8314f8,ffff800035d11a40,ffff800035d11990) at sys_ioctl+0x660 sys/kern/sys_generic.c:-1 syscall(ffff800035d11a40) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff800035d11a40) at syscall+0x962 sys/arch/amd64/amd64/trap.c:765 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xe856b8a2380, count: -9