login: uvm_fault(0xfffffd8068336990, 0x4, 0, 1) -> e kernel: page fault trap, code=0 Stopped at igmp_leavegroup+0x80: movl 0x4(%rax),%r12d TID PID UID PRFLAGS PFLAGS CPU COMMAND igmp_leavegroup(ffff800000bc6480) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000bc6480) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000bee5c0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd805b3f5740) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd8072ed3548) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1249 soclose(fffffd8072ed3548,0) at soclose+0x245 sys/kern/uipc_socket.c:351 soo_close(fffffd806f994a50,ffff80002160ca80) at soo_close+0x40 fdrop(fffffd806f994a50,ffff80002160ca80) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806f994a50,ffff80002160ca80) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff80002160ca80) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff80002160ca80,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff80002160ca80,ffff80002e82fae0,ffff80002e82fb40) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff80002e82fbb0) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffe6f10, count: 1 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd8068336990, 0x4, 0, 1) -> e ddb> trace igmp_leavegroup(ffff800000bc6480) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000bc6480) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000bee5c0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd805b3f5740) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd8072ed3548) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1249 soclose(fffffd8072ed3548,0) at soclose+0x245 sys/kern/uipc_socket.c:351 soo_close(fffffd806f994a50,ffff80002160ca80) at soo_close+0x40 fdrop(fffffd806f994a50,ffff80002160ca80) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806f994a50,ffff80002160ca80) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff80002160ca80) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff80002160ca80,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff80002160ca80,ffff80002e82fae0,ffff80002e82fb40) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff80002e82fbb0) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffe6f10, count: -14 ddb> show registers rdi 0 rsi 0 rbp 0xffff80002e82f760 rbx 0 rdx 0 rcx 0x1 rax 0 r8 0 r9 0 r10 0x96bd743736f250bf r11 0x198ce914e1bd4fa2 r12 0 r13 0x3 r14 0xffff8000006b5000 r15 0xffff800000bc6480 rip 0xffffffff816a03e0 igmp_leavegroup+0x80 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002e82f730 ss 0x10 igmp_leavegroup+0x80: movl 0x4(%rax),%r12d ddb> show proc PROC (syz-executor.4) pid=270646 stat=onproc flags process=1008 proc=2000 pri=32, usrpri=83, nice=20 forw=0xffffffffffffffff, list=0xffff80002160cfc0,0xffff80002161e2b0 process=0xffff8000216273a8 user=0xffff80002e82a000, vmspace=0xfffffd8068336990 estcpu=33, cpticks=2, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 27593 192891 11156 0 2 0 syz-executor.1 6687 452342 40185 0 2 0 syz-executor.5 6687 321899 40185 0 3 0x4000080 fsleep syz-executor.5 75965 176754 64790 0 2 0 syz-executor.3 75965 506327 64790 0 2 0x4000000 syz-executor.3 52098 84873 92462 0 2 0 syz-executor.2 52098 412538 92462 0 3 0x4000080 netcon syz-executor.2 52098 478461 92462 0 3 0x4000080 fsleep syz-executor.2 52098 68414 92462 0 3 0x4000080 fsleep syz-executor.2 85402 120473 45080 0 2 0 syz-executor.0 85402 296886 45080 0 3 0x4000080 kqread syz-executor.0 8686 183162 1 0 3 0x100083 ttyin getty 64790 264832 63486 0 2 0x482 syz-executor.3 67859 489653 63486 0 2 0x2 syz-executor.6 40185 143389 63486 0 2 0x482 syz-executor.5 85232 423986 0 0 3 0x14280 nfsidl nfsio 11232 505106 0 0 3 0x14280 nfsidl nfsio 60245 120744 0 0 3 0x14280 nfsidl nfsio 30532 342347 0 0 3 0x14280 nfsidl nfsio 7663 114758 0 0 3 0x14280 nfsidl nfsio 98405 412702 0 0 3 0x14280 nfsidl nfsio 50564 110138 0 0 3 0x14280 nfsidl nfsio 68154 382676 0 0 3 0x14280 nfsidl nfsio 23289 50480 0 0 3 0x14280 nfsidl nfsio 96042 482386 0 0 3 0x14280 nfsidl nfsio 74486 61841 0 0 3 0x14280 nfsidl nfsio 70480 42324 0 0 3 0x14280 nfsidl nfsio 33878 334067 0 0 3 0x14280 nfsidl nfsio 77266 109483 0 0 3 0x14280 nfsidl nfsio 80054 190186 0 0 3 0x14280 nfsidl nfsio 37020 8997 0 0 3 0x14280 nfsidl nfsio 29403 449769 0 0 3 0x14280 nfsidl nfsio 80655 8242 0 0 3 0x14280 nfsidl nfsio 22369 484724 0 0 3 0x14280 nfsidl nfsio 18498 137842 0 0 3 0x14280 nfsidl nfsio 20979 146511 63486 0 2 0x482 syz-executor.4 11156 156030 63486 0 2 0x482 syz-executor.1 60729 192735 63486 0 2 0x2 syz-executor.7 92462 60292 63486 0 2 0x482 syz-executor.2 45080 181169 63486 0 3 0x82 nanoslp syz-executor.0 77658 4973 0 0 3 0x14200 bored sosplice 63486 138334 79049 0 3 0x82 thrsleep syz-fuzzer 63486 255456 79049 0 3 0x4000082 nanoslp syz-fuzzer 63486 176287 79049 0 3 0x4000082 thrsleep syz-fuzzer 63486 443501 79049 0 3 0x4000082 thrsleep syz-fuzzer 63486 20926 79049 0 3 0x4000082 thrsleep syz-fuzzer 63486 38082 79049 0 3 0x4000082 thrsleep syz-fuzzer 63486 363199 79049 0 3 0x4000082 thrsleep syz-fuzzer 63486 388573 79049 0 3 0x4000082 kqread syz-fuzzer 63486 384437 79049 0 3 0x4000082 thrsleep syz-fuzzer 79049 13533 75006 0 3 0x10008a sigsusp ksh 75006 244072 37442 0 3 0x9a kqread sshd 37442 402354 1 0 3 0x88 kqread sshd 56998 206564 12495 73 3 0x1100090 kqread syslogd 12495 118443 1 0 3 0x100082 netio syslogd 90150 411815 1 0 3 0x100080 kqread resolvd 33270 393934 9074 77 3 0x100092 kqread dhcpleased 51854 212457 9074 77 3 0x100092 kqread dhcpleased 9074 228089 1 0 3 0x80 kqread dhcpleased 85012 406091 0 0 3 0x14200 bored smr 60294 464089 0 0 2 0x14200 zerothread 22967 39608 0 0 3 0x14200 aiodoned aiodoned 50704 279892 0 0 3 0x14200 syncer update 99120 11658 0 0 3 0x14200 cleaner cleaner 58127 306331 0 0 3 0x14200 reaper reaper 34202 249586 0 0 3 0x14200 pgdaemon pagedaemon 8795 114588 0 0 3 0x14200 bored viomb 16097 344584 0 0 3 0x40014200 acpi0 acpi0 56329 506920 0 0 3 0x14200 bored softnet 55655 67398 0 0 3 0x14200 bored systqmp 33873 215495 0 0 3 0x14200 bored systq 37693 373478 0 0 2 0x40014200 softclock 28634 254469 0 0 3 0x40014200 idle0 1 154204 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10186 6484K 7003K 78643K 17759 0 pcb 14 16K 18K 78643K 778 0 rtable 210 9K 11K 78643K 3163 0 ifaddr 81 18K 20K 78643K 1031 0 sysctl 2 0K 0K 78643K 2 0 counters 26 17K 17K 78643K 98 0 ioctlops 0 0K 4K 78643K 3029 0 iov 0 0K 32K 78643K 444 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1400 87K 88K 78643K 4078 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 44 0 VM map 2 0K 0K 78643K 2 0 sem 12 0K 1K 78643K 634 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 16 57K 78K 78643K 5162 0 sigio 0 0K 0K 78643K 61 0 proc 59 63K 79K 78643K 1601 0 subproc 104 6K 6K 78643K 559 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 2 0K 1K 78643K 4228 0 in_multi 82 5K 6K 78643K 1124 0 ether_multi 1 0K 0K 78643K 58 0 mrt 0 0K 0K 78643K 4 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 163 731K 731K 78643K 163 0 exec 0 0K 2K 78643K 1867 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 425 606K 615K 78643K 61783 0 UVM aobj 90 8K 8K 78643K 107 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 271 0 NDP 11 0K 2K 78643K 173 0 temp 135 4715K 4975K 78643K 53721 0 kqueue 13 20K 26K 78643K 265 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 594 0 591 11 10 1 3 0 8 0 rtentry 112 555 0 468 4 0 4 4 0 8 0 unpcb 136 3672 0 3659 36 29 7 9 0 8 6 syncache 296 19 0 19 5 5 0 1 0 8 0 tcpqe 32 391 0 391 2 2 0 1 0 8 0 tcpcb 736 928 0 916 41 38 3 8 0 8 1 arp 88 92 0 75 1 0 1 1 0 8 0 ipq 40 4 0 3 1 0 1 1 0 8 0 ipqe 40 10 0 9 1 0 1 1 0 8 0 inpcb 304 8643 0 8566 51 45 6 11 0 8 0 nd6 48 140 0 120 1 0 1 1 0 8 0 pkpcb 40 9 0 9 3 3 0 1 0 8 0 kcovpl 48 43 0 35 1 0 1 1 0 8 0 ppxss 1152 15 0 15 2 2 0 1 0 8 0 pfstscr 40 4 0 4 1 1 0 1 0 8 0 pfrktable 1344 543 0 538 1 0 1 1 0 8 0 pftag 88 16 0 8 1 0 1 1 0 8 0 pfstkey 112 4 0 4 1 1 0 1 0 8 0 pfstate 320 4 0 4 1 1 0 1 0 8 0 pfrule 1360 344 0 306 4 0 4 4 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 2374 0 2025 44 18 26 29 0 8 2 art_table 32 2375 0 2025 4 0 4 4 0 8 0 art_node 16 547 0 469 1 0 1 1 0 8 0 sysvmsgpl 40 21 0 11 1 0 1 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 628 0 618 1 0 1 1 0 8 0 shmpl 112 104 0 17 3 0 3 3 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 7993 0 6542 91 0 91 91 0 8 0 ffsino 240 7993 0 6542 86 0 86 86 0 8 0 nchpl 144 14554 0 12929 62 0 62 62 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 224 5926 0 0 349 0 349 349 0 8 0 namei 1024 52545 0 52544 3 2 1 2 0 8 0 vcpupl 1984 168 0 0 21 0 21 21 0 8 0 vmpool 528 218 0 50 12 0 12 12 0 8 0 pfiaddrpl 120 154 0 150 4 3 1 1 0 8 0 scxspl 216 40450 0 40450 19 16 3 8 0 8 3 plimitpl 152 413 0 399 1 0 1 1 0 8 0 sigapl 424 5401 0 5340 9 1 8 8 0 8 0 futexpl 64 49519 0 49516 1 0 1 1 0 8 0 knotepl 120 47386 0 47305 4 1 3 4 0 8 0 kqueuepl 184 1120 0 1110 19 15 4 4 0 8 3 pipepl 304 1614 0 1586 39 36 3 12 0 8 0 fdescpl 432 5365 0 5338 4 0 4 4 0 8 0 filepl 120 39141 0 38834 64 49 15 19 0 8 5 lockfpl 104 855 0 853 1 0 1 1 0 8 0 lockfspl 48 296 0 294 1 0 1 1 0 8 0 sessionpl 144 62 0 46 1 0 1 1 0 8 0 pgrppl 48 78 0 62 1 0 1 1 0 8 0 ucredpl 96 4823 0 4813 1 0 1 1 0 8 0 zombiepl 144 5341 0 5340 1 0 1 1 0 8 0 processpl 1000 5401 0 5340 8 0 8 8 0 8 0 procpl 672 12660 0 12585 14 6 8 8 0 8 1 sosppl 168 30 0 30 4 4 0 1 0 8 0 sockpl 448 12924 0 12831 158 136 22 31 0 8 11 mcl64k 65536 214 0 214 7 6 1 1 0 8 1 mcl16k 16384 60 0 60 11 11 0 1 0 8 0 mcl12k 12288 160 0 160 9 8 1 1 0 8 1 mcl9k 9216 156 0 156 10 9 1 1 0 8 1 mcl8k 8192 265 0 265 4 3 1 1 0 8 1 mcl4k 4096 577 0 577 4 3 1 1 0 8 1 mcl2k2 2112 25 0 25 11 11 0 1 0 8 0 mcl2k 2048 81806 0 81746 25 16 9 20 0 8 0 mtagpl 96 664 0 508 9 4 5 6 0 8 0 mbufpl 256 181006 0 180607 596 561 35 556 0 8 6 bufpl 288 11437 0 5028 458 0 458 458 0 8 0 anonpl 24 1405013 0 1386000 145 21 124 130 0 188 0 amapchunkpl 152 148411 0 147603 78 43 35 44 0 158 0 amappl16 200 13590 0 12882 74 34 40 50 0 8 1 amappl15 192 1690 0 1685 1 0 1 1 0 8 0 amappl14 184 355 0 348 2 1 1 1 0 8 0 amappl13 176 361 0 359 1 0 1 1 0 8 0 amappl12 168 289 0 287 2 1 1 1 0 8 0 amappl11 160 421 0 411 1 0 1 1 0 8 0 amappl10 152 678 0 674 1 0 1 1 0 8 0 amappl9 144 1196 0 1194 1 0 1 1 0 8 0 amappl8 136 2121 0 2048 4 1 3 3 0 8 0 amappl7 128 1130 0 1116 1 0 1 1 0 8 0 amappl6 120 1062 0 1042 2 1 1 2 0 8 0 amappl5 112 5185 0 5166 1 0 1 1 0 8 0 amappl4 104 2314 0 2282 2 0 2 2 0 8 0 amappl3 96 884 0 870 1 0 1 1 0 8 0 amappl2 88 1310 0 1260 3 1 2 3 0 8 0 amappl1 80 97328 0 96774 20 7 13 18 0 8 0 amappl 88 60669 0 60397 7 0 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 106 0 17 2 0 2 2 0 8 0 uaddrrnd 24 5583 0 5388 2 0 2 2 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 5583 0 5388 2 0 2 2 0 8 0 vmmpekpl 168 42541 0 42472 4 0 4 4 0 8 0 vmmpepl 168 499749 0 496869 247 110 137 172 0 357 1 vmsppl 272 5582 0 5388 16 2 14 14 0 8 0 rwobjpl 24 120150 0 112453 47 0 47 47 0 8 0 pdppl 4096 11172 0 10944 605 373 232 234 0 8 4 pvpl 32 2474024 0 2450659 294 92 202 234 0 265 5 pmappl 216 5582 0 5388 11 0 11 11 0 8 0 extentpl 40 58 0 38 1 0 1 1 0 8 0 phpool 112 2160 0 1171 42 13 29 40 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace igmp_leavegroup(ffff800000bc6480) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000bc6480) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000bee5c0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd805b3f5740) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd8072ed3548) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1249 soclose(fffffd8072ed3548,0) at soclose+0x245 sys/kern/uipc_socket.c:351 soo_close(fffffd806f994a50,ffff80002160ca80) at soo_close+0x40 fdrop(fffffd806f994a50,ffff80002160ca80) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806f994a50,ffff80002160ca80) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff80002160ca80) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff80002160ca80,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff80002160ca80,ffff80002e82fae0,ffff80002e82fb40) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff80002e82fbb0) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffe6f10, count: -14 ddb> machine ddbcpu 1 No such command ddb> trace igmp_leavegroup(ffff800000bc6480) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000bc6480) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000bee5c0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd805b3f5740) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd8072ed3548) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1249 soclose(fffffd8072ed3548,0) at soclose+0x245 sys/kern/uipc_socket.c:351 soo_close(fffffd806f994a50,ffff80002160ca80) at soo_close+0x40 fdrop(fffffd806f994a50,ffff80002160ca80) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806f994a50,ffff80002160ca80) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff80002160ca80) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff80002160ca80,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff80002160ca80,ffff80002e82fae0,ffff80002e82fb40) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff80002e82fbb0) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffe6f10, count: -14