uvm_fault(0xffffffff825f8438, 0xffff800000c68000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at strlcpy+0xcf: movzbl 0xffffffffffffffff(%rbx),%r15d ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic kernel page fault uvm_fault(0xffffffff825f8438, 0xffff800000c68000, 0, 1) -> e strlcpy(ffff800000a8ab10,ffff800000c67ee2,20) at strlcpy+0xcf sys/lib/libkern/strlcpy.c:44 end trace frame: 0xffff800021b814c0, count: 0 ddb{1}> trace strlcpy(ffff800000a8ab10,ffff800000c67ee2,20) at strlcpy+0xcf sys/lib/libkern/strlcpy.c:44 rtlabel_name2id(ffff800000c67ee2) at rtlabel_name2id+0x13d sys/net/route.c:1614 rtrequest(1,ffff800021b81678,0,ffff800021b815e8,0) at rtrequest+0x653 sys/net/route.c:893 rtm_output(ffff800000c67e00,ffff800021b81728,ffff800021b81678,0,0) at rtm_output+0x62f sys/net/rtsock.c:901 route_output(fffffd8077367300,fffffd8070b73028,0,0) at route_output+0x7c4 sys/net/rtsock.c:819 route_usrreq(fffffd8070b73028,9,fffffd8077367300,0,0,ffff800020ab09f8) at route_usrreq+0x363 sys/net/rtsock.c:275 sosend(fffffd8070b73028,0,ffff800021b81910,0,0,80) at sosend+0x645 sys/kern/uipc_socket.c:524 sendit(ffff800020ab09f8,3,ffff800021b819f0,0,ffff800021b81ad0) at sendit+0x52b sys/kern/uipc_syscalls.c:662 sys_sendto(ffff800020ab09f8,ffff800021b81a88,ffff800021b81ad0) at sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 syscall(ffff800021b81b50) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:92 [inline] syscall(ffff800021b81b50) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:555 Xsyscall(6,0,ffffffffffffffd8,0,6,9a131c09010) at Xsyscall+0x128 end of kernel end trace frame: 0x9a383effed0, count: -11 ddb{1}> show registers rdi 0xffffffff81ed3e55 strlcpy+0xc5 rsi 0x5ea rbp 0xffff800021b81470 rbx 0xffff800000c68001 rdx 0x5eb rcx 0xffff800021bae000 rax 0xffff800021bae000 r8 0x38 r9 0x5 r10 0x48ff1935bcb24755 r11 0xb0041e09045a2f31 r12 0 r13 0x27 r14 0xffff800000c67ee2 r15 0x41 rip 0xffffffff81ed3e5f strlcpy+0xcf cs 0x8 rflags 0x10282 __ALIGN_SIZE+0xf282 rsp 0xffff800021b81420 ss 0x10 strlcpy+0xcf: movzbl 0xffffffffffffffff(%rbx),%r15d ddb{1}> show proc PROC (syz-executor.1) pid=394374 stat=onproc flags process=0 proc=4000000 pri=73, usrpri=73, nice=20 forw=0xffffffffffffffff, list=0xffff800020ab1b40,0xffffffff826474e0 process=0xffff800020adc380 user=0xffff800021b7c000, vmspace=0xfffffd807f00ba10 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 97763 496435 3182 0 7 0 syz-executor.1 *97763 394374 3182 0 7 0x4000000 syz-executor.1 4085 458301 68569 0 3 0x82 nanosleep syz-executor.0 3182 355468 68569 0 3 0x82 nanosleep syz-executor.1 1577 449394 0 0 3 0x14200 bored sosplice 68569 186685 39837 0 3 0x82 thrsleep syz-fuzzer 68569 268484 39837 0 3 0x4000082 nanosleep syz-fuzzer 68569 509985 39837 0 3 0x4000082 thrsleep syz-fuzzer 68569 506029 39837 0 3 0x4000082 thrsleep syz-fuzzer 68569 419602 39837 0 3 0x4000082 thrsleep syz-fuzzer 68569 391459 39837 0 3 0x4000082 thrsleep syz-fuzzer 68569 433228 39837 0 3 0x4000082 kqread syz-fuzzer 68569 342570 39837 0 3 0x4000082 thrsleep syz-fuzzer 68569 334449 39837 0 3 0x4000082 thrsleep syz-fuzzer 68569 517668 39837 0 3 0x4000082 nanosleep syz-fuzzer 68569 371414 39837 0 3 0x4000082 thrsleep syz-fuzzer 39837 78422 85859 0 3 0x10008a pause ksh 85859 190827 71798 0 3 0x92 select sshd 17740 263875 1 0 3 0x100083 ttyin getty 71798 423329 1 0 3 0x80 select sshd 33263 190425 2367 74 3 0x100092 bpf pflogd 2367 105132 1 0 3 0x80 netio pflogd 73107 476772 52251 73 3 0x100090 kqread syslogd 52251 179071 1 0 3 0x100082 netio syslogd 63239 420458 1 77 3 0x100090 poll dhclient 45636 72358 1 0 3 0x80 poll dhclient 79499 68113 0 0 3 0x14200 pgzero zerothread 17992 118765 0 0 3 0x14200 aiodoned aiodoned 91450 344751 0 0 3 0x14200 syncer update 74281 494679 0 0 3 0x14200 cleaner cleaner 6339 16485 0 0 3 0x14200 reaper reaper 34751 402327 0 0 3 0x14200 pgdaemon pagedaemon 66908 85215 0 0 3 0x14200 bored crynlk 18108 474433 0 0 3 0x14200 bored crypto 58077 514748 0 0 3 0x40014200 acpi0 acpi0 95293 29896 0 0 3 0x40014200 idle1 27642 27152 0 0 3 0x14200 bored softnet 2155 411280 0 0 3 0x14200 bored systqmp 23629 238913 0 0 3 0x14200 bored systq 65184 435485 0 0 3 0x40014200 bored softclock 60687 200216 0 0 3 0x40014200 idle0 8621 517849 0 0 3 0x14200 bored smr 1 400480 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 97763 (syz-executor.1) thread 0xffff800020ab09f8 (394374) exclusive rwlock netlock r = 0 (0xffffffff824bbfd8) #0 witness_lock+0x52e sys/kern/subr_witness.c:1163 #1 rtm_output+0x5c3 sys/net/rtsock.c:897 #2 route_output+0x7c4 sys/net/rtsock.c:819 #3 route_usrreq+0x363 sys/net/rtsock.c:275 #4 sosend+0x645 sys/kern/uipc_socket.c:524 #5 sendit+0x52b sys/kern/uipc_syscalls.c:662 #6 sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 #7 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:92 [inline] #7 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:555 #8 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 1 (0xffffffff826474c0) #0 witness_lock+0x52e sys/kern/subr_witness.c:1163 #1 solock+0x66 sys/kern/uipc_socket2.c:292 #2 sosend+0x51b sys/kern/uipc_socket.c:512 #3 sendit+0x52b sys/kern/uipc_syscalls.c:662 #4 sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 #5 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:92 [inline] #5 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:555 #6 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9662 6667K 8444K 78643K 76506 0 0 pcb 13 12K 14K 78643K 1120 0 0 rtable 113 13K 14K 78643K 10439 0 0 ifaddr 99 37K 47K 78643K 5912 0 0 counters 39 33K 33K 78643K 39 0 0 ioctlops 0 0K 4K 78643K 1896 0 0 iov 0 0K 32K 78643K 1032 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1222 77K 78K 78643K 22675 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 5K 78643K 102 0 0 VM map 2 1K 1K 78643K 8 0 0 sem 12 0K 2K 78643K 6437 0 0 dirhash 12 2K 2K 78643K 12 0 0 ACPI 1808 196K 290K 78643K 12765 0 0 file desc 5 13K 25K 78643K 15849 0 0 sigio 0 0K 0K 78643K 129 0 0 proc 62 63K 95K 78643K 2382 0 0 subproc 32 2K 2K 78643K 582 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 ip_moptions 0 0K 0K 78643K 774 0 0 in_multi 23 1K 2K 78643K 631 0 0 ether_multi 1 0K 0K 78643K 33 0 0 mrt 1 0K 0K 78643K 40 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 186 821K 821K 78643K 186 0 0 exec 0 0K 1K 78643K 1327 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 136 24K 32K 78643K 50093 0 0 UVM aobj 130 4K 4K 78643K 130 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 ip6_options 0 0K 1K 78643K 1076 0 0 NDP 24 0K 1K 78643K 1544 0 0 temp 256 3557K 3637K 78643K 284870 0 0 kqueue 0 0K 0K 78643K 41 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 75 0 70 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 80 477 0 474 1 0 1 1 0 8 0 rtentry 112 427 0 388 2 0 2 2 0 8 0 unpcb 120 4102 0 4075 16 14 2 2 0 8 0 syncache 264 20 0 20 9 9 0 1 0 8 0 sackhl 24 3 0 3 3 3 0 1 0 8 0 tcpqe 32 5934 0 5934 7 7 0 1 0 8 0 tcpcb 544 2932 0 2928 42 33 9 13 0 8 8 inpcb 280 7265 0 7254 44 35 9 13 0 8 8 rttmr 72 11 0 11 7 7 0 1 0 8 0 nd6 48 70 0 68 2 1 1 1 0 8 0 pkpcb 40 54 0 54 18 17 1 1 0 8 1 swfcl 56 2 0 0 1 0 1 1 0 8 0 ppxss 1128 1376 0 1376 22 22 0 1 0 8 0 pffrag 232 17 0 17 7 7 0 1 0 482 0 pffrnode 88 17 0 17 7 7 0 1 0 8 0 pffrent 40 42 0 42 9 9 0 1 0 8 0 pfosfp 40 846 0 423 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 267 0 232 1 0 1 1 0 8 0 pfstkey 112 267 0 232 2 0 2 2 0 8 0 pfstate 328 267 0 232 6 3 3 4 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 3 0 2 3 2 1 3 0 8 0 art_heap4 256 1870 0 1589 28 7 21 21 0 8 0 art_table 32 1873 0 1591 3 0 3 3 0 8 0 art_node 16 411 0 376 1 0 1 1 0 8 0 sysvmsgpl 40 37 0 6 1 0 1 1 0 8 0 semupl 112 14 0 14 4 4 0 1 0 8 0 semapl 112 4613 0 4603 1 0 1 1 0 8 0 shmpl 112 128 0 0 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 27726 0 26286 47 0 47 47 0 8 0 ffsino 272 27726 0 26286 98 1 97 97 0 8 0 nchpl 144 48931 0 47250 63 0 63 63 0 8 0 uvmvnodes 72 6069 0 0 111 0 111 111 0 8 0 vnodes 208 6069 0 0 320 0 320 320 0 8 0 namei 1024 239494 0 239494 3 2 1 1 0 8 1 percpumem 16 30 0 0 1 0 1 1 0 8 0 vmpool 552 6 0 6 2 2 0 1 0 8 0 scsiplug 64 10 0 10 7 7 0 1 0 8 0 scxspl 192 128909 0 128909 38 37 1 6 0 8 1 plimitpl 152 767 0 759 1 0 1 1 0 8 0 sigapl 432 15953 0 15938 3 1 2 3 0 8 0 futexpl 56 325004 0 325004 3 2 1 1 0 8 1 knotepl 112 1928 0 1909 8 7 1 3 0 8 0 kqueuepl 104 2308 0 2306 10 6 4 4 0 8 3 pipepl 112 4918 0 4899 14 12 2 2 0 8 1 fdescpl 488 15954 0 15938 3 0 3 3 0 8 0 filepl 152 133560 0 133459 80 68 12 14 0 8 8 lockfpl 104 3583 0 3582 1 0 1 1 0 8 0 lockfspl 48 1306 0 1305 1 0 1 1 0 8 0 sessionpl 112 50 0 39 1 0 1 1 0 8 0 pgrppl 48 4983 0 4972 1 0 1 1 0 8 0 ucredpl 96 51370 0 51356 1 0 1 1 0 8 0 zombiepl 144 15941 0 15940 4 3 1 1 0 8 0 processpl 896 15973 0 15940 4 0 4 4 0 8 0 procpl 632 47698 0 47654 28 23 5 5 0 8 1 srpgc 64 62 0 62 23 23 0 1 0 8 0 sosppl 128 121 0 121 23 22 1 1 0 8 1 sockpl 384 12017 0 11980 105 92 13 23 0 8 8 mcl64k 65536 681 0 0 83 24 59 66 0 8 1 mcl16k 16384 33 0 0 4 1 3 3 0 8 0 mcl12k 12288 49 0 0 2 0 2 2 0 8 0 mcl9k 9216 18 0 0 2 0 2 2 0 8 0 mcl8k 8192 25 0 0 4 1 3 3 0 8 0 mcl4k 4096 33 0 0 3 0 3 3 0 8 0 mcl2k2 2112 15 0 0 1 0 1 1 0 8 0 mcl2k 2048 307 0 0 17 4 13 17 0 8 0 mtagpl 80 141 0 0 1 0 1 1 0 8 0 mbufpl 256 1243 0 0 45 0 45 45 0 8 0 bufpl 256 32523 0 25475 441 0 441 441 0 8 0 anonpl 16 1274327 0 1258977 251 172 79 79 0 124 13 amapchunkpl 152 89741 0 89631 80 74 6 19 0 158 0 amappl16 192 73178 0 72287 251 194 57 59 0 8 12 amappl15 184 1876 0 1875 3 2 1 1 0 8 0 amappl14 176 1973 0 1971 2 1 1 1 0 8 0 amappl13 168 126 0 126 4 4 0 1 0 8 0 amappl12 160 941 0 941 6 6 0 1 0 8 0 amappl11 152 615 0 599 1 0 1 1 0 8 0 amappl10 144 4866 0 4858 1 0 1 1 0 8 0 amappl9 136 5230 0 5224 1 0 1 1 0 8 0 amappl8 128 4884 0 4832 3 1 2 2 0 8 0 amappl7 120 4961 0 4951 1 0 1 1 0 8 0 amappl6 112 593 0 573 1 0 1 1 0 8 0 amappl5 104 1410 0 1394 1 0 1 1 0 8 0 amappl4 96 15750 0 15717 1 0 1 1 0 8 0 amappl3 88 1771 0 1764 1 0 1 1 0 8 0 amappl2 80 126112 0 126037 4 1 3 3 0 8 0 amappl1 72 338210 0 337776 26 16 10 20 0 8 0 amappl 80 48461 0 48424 1 0 1 1 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma64 64 259 0 259 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 17 0 17 1 1 0 1 0 8 0 aobjpl 64 129 0 0 3 0 3 3 0 8 0 uaddrrnd 24 15960 0 15938 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 15960 0 15938 1 0 1 1 0 8 0 vmmpekpl 168 104942 0 104912 2 0 2 2 0 8 0 vmmpepl 168 1904746 0 1902691 482 377 105 130 0 357 6 vmsppl 368 15953 0 15938 2 0 2 2 0 8 0 pdppl 4096 31927 0 31888 9 3 6 6 0 8 1 pvpl 32 3464402 0 3445734 598 409 189 192 0 265 32 pmappl 232 15959 0 15944 4 3 1 2 0 8 0 extentpl 40 41 0 26 1 0 1 1 0 8 0 phpool 112 789 0 81 21 0 21 21 0 8 0