uvm_fault(0xfffffd806a8c8b90, 0x4, 0, 1) -> e kernel: page fault trap, code=0 Stopped at igmp_leavegroup+0x80: movl 0x4(%rax),%r12d TID PID UID PRFLAGS PFLAGS CPU COMMAND igmp_leavegroup(ffff800000c02680) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000c02680) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c1cce0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806f67ee40) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd8064d6c428) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1249 soclose(fffffd8064d6c428,0) at soclose+0x255 sys/kern/uipc_socket.c:351 soo_close(fffffd806e538b58,ffff800021214000) at soo_close+0x40 fdrop(fffffd806e538b58,ffff800021214000) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806e538b58,ffff800021214000) at closef+0x11c sys/kern/kern_descrip.c:1263 fdfree(ffff800021214000) at fdfree+0xf4 sys/kern/kern_descrip.c:1195 exit1(ffff800021214000,0,0,1) at exit1+0x37d sys/kern/kern_exit.c:202 sys_exit(ffff800021214000,ffff800027ae8660,ffff800027ae86c0) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff800027ae8730) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800027ae8730) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffefc70, count: 1 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xfffffd806a8c8b90, 0x4, 0, 1) -> e ddb{0}> trace igmp_leavegroup(ffff800000c02680) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000c02680) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c1cce0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806f67ee40) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd8064d6c428) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1249 soclose(fffffd8064d6c428,0) at soclose+0x255 sys/kern/uipc_socket.c:351 soo_close(fffffd806e538b58,ffff800021214000) at soo_close+0x40 fdrop(fffffd806e538b58,ffff800021214000) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806e538b58,ffff800021214000) at closef+0x11c sys/kern/kern_descrip.c:1263 fdfree(ffff800021214000) at fdfree+0xf4 sys/kern/kern_descrip.c:1195 exit1(ffff800021214000,0,0,1) at exit1+0x37d sys/kern/kern_exit.c:202 sys_exit(ffff800021214000,ffff800027ae8660,ffff800027ae86c0) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff800027ae8730) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800027ae8730) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffefc70, count: -14 ddb{0}> show registers rdi 0 rsi 0 rbp 0xffff800027ae82e0 rbx 0 rdx 0 rcx 0x1 rax 0 r8 0 r9 0xffff800021214000 r10 0x5790b096bb69c1ea r11 0x57773209f55cb3fb r12 0 r13 0x3 r14 0xffff800000689000 r15 0xffff800000c02680 rip 0xffffffff81431a20 igmp_leavegroup+0x80 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800027ae82b0 ss 0x10 igmp_leavegroup+0x80: movl 0x4(%rax),%r12d ddb{0}> show proc PROC (syz-executor.0) pid=1194 stat=onproc flags process=1008 proc=2000 pri=32, usrpri=82, nice=20 forw=0xffffffffffffffff, list=0xffff8000211f2548,0xffff800021215270 process=0xffff8000ffff8858 user=0xffff800027ae3000, vmspace=0xfffffd806a8c8b90 estcpu=32, cpticks=0, pctcpu=0.5 user=0, sys=0, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 40744 6702 98161 0 3 0x80 nanoslp syz-executor.5 40744 243305 98161 0 3 0x4000080 fsleep syz-executor.5 40744 412921 98161 0 3 0x4000080 netcon syz-executor.5 40744 148144 98161 0 3 0x4000080 fsleep syz-executor.5 36349 430168 74982 0 3 0x82 piperd syz-executor.4 81348 358823 74982 0 3 0x82 piperd syz-executor.2 43623 39669 74982 0 3 0x82 piperd syz-executor.1 44369 187768 0 0 3 0x14200 acct acct 22915 239278 74982 0 3 0x82 piperd syz-executor.7 55695 155254 0 0 3 0x14280 nfsidl nfsio 360 513034 0 0 3 0x14280 nfsidl nfsio 913 417110 0 0 3 0x14280 nfsidl nfsio 52068 398803 0 0 3 0x14280 nfsidl nfsio 72422 225858 0 0 3 0x14280 nfsidl nfsio 78581 349203 0 0 3 0x14280 nfsidl nfsio 96830 366366 0 0 3 0x14280 nfsidl nfsio 69311 34934 0 0 3 0x14280 nfsidl nfsio 37012 443944 0 0 3 0x14280 nfsidl nfsio 15303 54515 0 0 3 0x14280 nfsidl nfsio 16354 266834 0 0 3 0x14280 nfsidl nfsio 41937 287193 0 0 3 0x14280 nfsidl nfsio 91075 419012 0 0 3 0x14280 nfsidl nfsio 96820 342971 0 0 3 0x14280 nfsidl nfsio 90763 443031 0 0 3 0x14280 nfsidl nfsio 23665 315737 0 0 3 0x14280 nfsidl nfsio 30295 391280 0 0 3 0x14280 nfsidl nfsio 97746 524189 0 0 3 0x14280 nfsidl nfsio 31790 333042 0 0 3 0x14280 nfsidl nfsio 96447 462945 0 0 3 0x14280 nfsidl nfsio 88277 217727 0 0 3 0x14200 bored sosplice 74371 513485 74982 0 3 0x82 piperd syz-executor.6 98161 144781 74982 0 3 0x82 nanoslp syz-executor.5 3456 276633 74982 0 3 0x82 piperd syz-executor.3 85142 479161 74982 0 3 0x82 nanoslp syz-executor.0 74982 459066 25403 0 3 0x82 thrsleep syz-fuzzer 74982 269555 25403 0 3 0x4000082 thrsleep syz-fuzzer 74982 94779 25403 0 3 0x4000082 thrsleep syz-fuzzer 74982 153928 25403 0 3 0x4000082 kqread syz-fuzzer 74982 483219 25403 0 3 0x4000082 thrsleep syz-fuzzer 74982 276170 25403 0 3 0x4000082 thrsleep syz-fuzzer 74982 282283 25403 0 3 0x4000082 thrsleep syz-fuzzer 74982 46713 25403 0 3 0x4000082 thrsleep syz-fuzzer 74982 437341 25403 0 3 0x4000082 thrsleep syz-fuzzer 25403 464437 84117 0 3 0x10008a sigsusp ksh 84117 383118 99124 0 3 0x9a kqread sshd 57255 32403 1 0 3 0x100083 ttyin getty 99124 190410 1 0 3 0x88 kqread sshd 82748 134155 57954 74 3 0x1100092 bpf pflogd 57954 188192 1 0 3 0x80 netio pflogd 48174 500247 6857 73 3 0x1100090 kqread syslogd 6857 505421 1 0 3 0x100082 netio syslogd 12075 393714 1 0 3 0x100080 kqread resolvd 44784 306343 75376 77 3 0x100092 kqread dhcpleased 64295 354715 75376 77 3 0x100092 kqread dhcpleased 75376 393522 1 0 3 0x80 kqread dhcpleased 52634 315341 0 0 3 0x14200 bored smr 68003 100115 0 0 3 0x14200 pgzero zerothread 31404 297926 0 0 3 0x14200 aiodoned aiodoned 69157 467481 0 0 3 0x14200 syncer update 60231 134874 0 0 3 0x14200 cleaner cleaner 34556 494775 0 0 3 0x14200 reaper reaper 61561 46376 0 0 3 0x14200 pgdaemon pagedaemon 52768 487569 0 0 3 0x14200 bored viomb 68783 37424 0 0 3 0x40014200 acpi0 acpi0 65084 142940 0 0 7 0x40014200 idle1 96235 414545 0 0 3 0x14200 bored softnet 76242 319001 0 0 3 0x14200 bored systqmp 3387 342890 0 0 3 0x14200 bored systq 34653 23733 0 0 3 0x40014200 bored softclock 40512 254435 0 0 3 0x40014200 idle0 1 363464 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10204 6495K 7007K 78643K 19813 0 pcb 13 16K 18K 78643K 649 0 rtable 232 16K 17K 78643K 972 0 ifaddr 91 19K 21K 78643K 673 0 sysctl 2 0K 0K 78643K 2 0 counters 56 35K 36K 78643K 242 0 ioctlops 0 0K 4K 78643K 3004 0 iov 0 0K 20K 78643K 451 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 5 0 vnodes 1336 83K 84K 78643K 3723 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 29 0 VM map 2 1K 1K 78643K 2 0 sem 12 1K 1K 78643K 1012 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 12 41K 85K 78643K 5430 0 sigio 0 0K 0K 78643K 17 0 proc 70 87K 124K 78643K 924 0 subproc 104 6K 6K 78643K 169 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 2 0K 1K 78643K 9560 0 in_multi 86 5K 6K 78643K 770 0 ether_multi 1 0K 0K 78643K 70 0 mrt 1 0K 0K 78643K 46 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 175 784K 784K 78643K 175 0 exec 0 0K 2K 78643K 1477 0 pfkey data 0 0K 1K 78643K 7 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 379 301K 306K 78643K 69175 0 UVM aobj 83 8K 8K 78643K 92 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 249 0 NDP 13 0K 2K 78643K 135 0 temp 136 4707K 8798K 78643K 49738 0 kqueue 12 18K 24K 78643K 399 0 SYN cache 2 16K 16K 78643K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 563 0 559 12 10 2 6 0 8 0 rtentry 112 218 0 119 4 0 4 4 0 8 0 unpcb 136 3223 0 3206 36 33 3 6 0 8 2 syncache 296 21 0 21 7 6 1 1 0 8 1 tcpqe 32 11 0 11 4 4 0 1 0 8 0 tcpcb 736 3258 0 3250 71 69 2 11 0 8 0 arp 120 33 0 15 1 0 1 1 0 8 0 inpcb 304 9809 0 9798 74 65 9 12 0 8 7 rttmr 72 12 0 12 3 3 0 1 0 8 0 nd6 48 48 0 24 1 0 1 1 0 8 0 pkpcb 40 7 0 7 2 2 0 1 0 8 0 kcovpl 48 13 0 5 1 0 1 1 0 8 0 ppxss 1248 44 0 44 9 9 0 1 0 8 0 pfstscr 40 67 0 67 1 1 0 1 0 8 0 pffrag 232 109 0 108 4 3 1 1 0 482 0 pffrnode 88 109 0 108 4 3 1 1 0 8 0 pffrent 40 1023 0 1022 4 3 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfrktable 1344 76 0 73 1 0 1 1 0 8 0 pftag 88 4 0 0 1 0 1 1 0 8 0 pfstitem 24 48 0 45 1 0 1 1 0 8 0 pfstkey 112 188 0 185 2 1 1 2 0 8 0 pfstate 320 117 0 114 4 3 1 4 0 8 0 pfrule 1360 185 0 166 3 1 2 2 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 912 0 520 34 9 25 29 0 8 0 art_table 32 914 0 520 4 0 4 4 0 8 0 art_node 16 212 0 125 1 0 1 1 0 8 0 sysvmsgpl 40 158 0 118 1 0 1 1 0 8 0 semapl 112 1010 0 1000 1 0 1 1 0 8 0 shmpl 112 89 0 9 3 0 3 3 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 8568 0 7125 91 0 91 91 0 8 0 ffsino 272 8568 0 7125 97 0 97 97 0 8 0 nchpl 144 15796 0 14176 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 224 5926 0 0 349 0 349 349 0 8 0 namei 1024 53515 0 53515 6 5 1 2 0 8 1 percpumem 16 133 0 93 1 0 1 1 0 8 0 vcpupl 2048 17 0 0 3 0 3 3 0 8 0 vmpool 560 17 0 0 2 0 2 2 0 8 0 pfiaddrpl 120 23 0 20 2 1 1 1 0 8 0 scsiplug 72 6 0 6 2 2 0 1 0 8 0 scxspl 216 48292 0 48292 11 10 1 8 0 8 1 plimitpl 152 702 0 687 1 0 1 1 0 8 0 sigapl 424 5746 0 5685 8 0 8 8 0 8 0 futexpl 64 58490 0 58488 2 1 1 1 0 8 0 knotepl 120 244 0 0 7 2 5 6 0 8 0 kqueuepl 216 1290 0 1282 19 14 5 5 0 8 4 pipepl 336 1913 0 1885 55 50 5 12 0 8 2 fdescpl 496 5710 0 5685 5 1 4 5 0 8 0 filepl 152 40475 0 40228 92 74 18 28 0 8 7 lockfpl 104 1746 0 1744 6 5 1 2 0 8 0 lockfspl 48 490 0 488 1 0 1 1 0 8 0 sessionpl 144 29 0 12 1 0 1 1 0 8 0 pgrppl 48 36 0 19 1 0 1 1 0 8 0 ucredpl 96 3385 0 3370 1 0 1 1 0 8 0 zombiepl 144 5686 0 5685 2 1 1 1 0 8 0 processpl 1064 5746 0 5685 5 0 5 5 0 8 0 procpl 672 14362 0 14290 18 10 8 9 0 8 0 srpgc 96 8 0 8 2 2 0 1 0 8 0 sosppl 168 44 0 44 6 5 1 1 0 8 1 sockpl 480 13608 0 13576 223 211 12 37 0 8 6 mcl64k 65536 7 0 0 1 0 1 1 0 8 0 mcl16k 16384 2 0 0 1 0 1 1 0 8 0 mcl12k 12288 4 0 0 1 0 1 1 0 8 0 mcl9k 9216 1 0 0 1 0 1 1 0 8 0 mcl8k 8192 6 0 0 1 0 1 1 0 8 0 mcl4k 4096 6 0 0 1 0 1 1 0 8 0 mcl2k2 2112 3 0 0 1 0 1 1 0 8 0 mcl2k 2048 212 0 0 21 1 20 21 0 8 0 mtagpl 96 585 0 0 14 0 14 14 0 8 0 mbufpl 256 1276 0 0 69 0 69 69 0 8 0 bufpl 288 12011 0 5675 453 0 453 453 0 8 0 anonpl 24 1591695 0 1574898 236 97 139 192 0 186 3 amapchunkpl 152 171888 0 171139 80 40 40 64 0 158 4 amappl16 200 15372 0 14634 95 47 48 53 0 8 8 amappl15 192 1343 0 1336 1 0 1 1 0 8 0 amappl14 184 2111 0 2105 1 0 1 1 0 8 0 amappl13 176 1415 0 1414 1 0 1 1 0 8 0 amappl12 168 1027 0 1022 1 0 1 1 0 8 0 amappl11 160 56 0 40 1 0 1 1 0 8 0 amappl10 152 65 0 57 1 0 1 1 0 8 0 amappl9 144 476 0 474 1 0 1 1 0 8 0 amappl8 136 1182 0 1077 4 0 4 4 0 8 0 amappl7 128 492 0 479 1 0 1 1 0 8 0 amappl6 120 225 0 197 2 1 1 2 0 8 0 amappl5 112 3308 0 3292 1 0 1 1 0 8 0 amappl4 104 1795 0 1762 2 1 1 2 0 8 0 amappl3 96 2087 0 2074 1 0 1 1 0 8 0 amappl2 88 3261 0 3210 3 1 2 3 0 8 0 amappl1 80 105918 0 105390 19 5 14 19 0 8 0 amappl 88 68451 0 68211 7 0 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 91 0 9 2 0 2 2 0 8 0 uaddrrnd 24 5727 0 5685 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 5727 0 5685 1 0 1 1 0 8 0 vmmpekpl 168 43617 0 43564 3 0 3 3 0 8 0 vmmpepl 168 513519 0 511035 214 70 144 148 0 357 14 vmsppl 368 5726 0 5685 6 1 5 5 0 8 0 rwobjpl 56 130112 0 122353 117 4 113 114 0 8 1 pdppl 4096 11461 0 11387 315 229 86 87 0 8 12 pvpl 32 2723315 0 2702375 425 198 227 323 0 265 11 pmappl 248 5726 0 5685 4 1 3 3 0 8 0 extentpl 40 58 0 38 1 0 1 1 0 8 0 phpool 112 1236 0 367 26 0 26 26 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace igmp_leavegroup(ffff800000c02680) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000c02680) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c1cce0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806f67ee40) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd8064d6c428) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1249 soclose(fffffd8064d6c428,0) at soclose+0x255 sys/kern/uipc_socket.c:351 soo_close(fffffd806e538b58,ffff800021214000) at soo_close+0x40 fdrop(fffffd806e538b58,ffff800021214000) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806e538b58,ffff800021214000) at closef+0x11c sys/kern/kern_descrip.c:1263 fdfree(ffff800021214000) at fdfree+0xf4 sys/kern/kern_descrip.c:1195 exit1(ffff800021214000,0,0,1) at exit1+0x37d sys/kern/kern_exit.c:202 sys_exit(ffff800021214000,ffff800027ae8660,ffff800027ae86c0) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff800027ae8730) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff800027ae8730) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffefc70, count: -14 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp x86_ipi_db(ffff800020ce8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206 sched_idle(ffff800020ce8ff0) at sched_idle+0x417 sys/kern/kern_sched.c:178 end trace frame: 0x0, count: 10 ddb{1}> trace x86_ipi_db(ffff800020ce8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206 sched_idle(ffff800020ce8ff0) at sched_idle+0x417 sys/kern/kern_sched.c:178 end trace frame: 0x0, count: -5