uvm_fault(0xffffff003e1e8d80, 0x600011c, 0, 1) -> e kernel: page fault trap, code=0 Stopped at m_free+0x2a: movswq 0x1c(%r14),%rdx ddb> ddb> set $lines = 0 ddb> show panic kernel page fault uvm_fault(0xffffff003e1e8d80, 0x600011c, 0, 1) -> e m_free(6000100) at m_free+0x2a sys/kern/uipc_mbuf.c:423 end trace frame: 0xffff800014aeb310, count: 0 ddb> trace m_free(6000100) at m_free+0x2a sys/kern/uipc_mbuf.c:423 mq_purge(ffff800001b0b700) at mq_purge+0x6d m_freem sys/kern/uipc_mbuf.c:525 [inline] mq_purge(ffff800001b0b700) at mq_purge+0x6d ml_purge sys/kern/uipc_mbuf.c:1591 [inline] mq_purge(ffff800001b0b700) at mq_purge+0x6d sys/kern/uipc_mbuf.c:1695 switchclose(ffff8000ffffc968,ffff800014aeb388,ffffffff813077c7,ffff800014aeb330) at switchclose+0x77 sys/net/switchctl.c:323 spec_close(ffffffff81e03740) at spec_close+0x271 sys/kern/spec_vnops.c:553 VOP_CLOSE(ffffff002a919ab0,ffff8000ffffc968,ffffff003f7c78a0,3) at VOP_CLOSE+0x5f sys/kern/vfs_vops.c:174 vn_closefile(ffff8000ffffc968,ffffff0030786e98) at vn_closefile+0xfc vn_close sys/kern/vfs_vnops.c:289 [inline] vn_closefile(ffff8000ffffc968,ffffff0030786e98) at vn_closefile+0xfc sys/kern/vfs_vnops.c:575 fdrop(ffffff0030786e98,ffff8000ffffc968) at fdrop+0xa4 sys/kern/kern_descrip.c:1260 closef(ffff8000ffffc968,ffffff00365e9008) at closef+0xd5 sys/kern/kern_descrip.c:1244 fdfree(ffff8000149f9048) at fdfree+0x98 sys/kern/kern_descrip.c:1176 exit1(ffff800014aeb650,ffff8000ffffc968,ffff8000149f9048) at exit1+0x22f sys/kern/kern_exit.c:194 sys_exit(ffffffff81a4f4e3,ffff800014aeb570,ffff800014aeb650) at sys_exit+0x13 sys/kern/kern_exit.c:94 syscall(0) at syscall+0x3e4 Xsyscall(6,1,0,1,0,7f7ffffc3e50) at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffc3e00, count: -13 ddb> show registers rdi 0x7 rsi 0x60 rbp 0xffff800014aeb2e0 rbx 0xffffffff81307750 switchclose rdx 0xffffff0003e3cf80 rcx 0xffffffff81e5e3a0 mbstat_boot_boot_cpumem rax 0 r8 0 r9 0 r10 0 r11 0xffffffff810c6380 pool_lock_mtx_leave r12 0xffffff0004baa900 r13 0x236161bc r14 0x6000100 __kernel_end_phys+0x4000100 r15 0x6000100 __kernel_end_phys+0x4000100 rip 0xffffffff8126053a m_free+0x2a cs 0x8 rflags 0x10282 __ALIGN_SIZE+0xf282 rsp 0xffff800014aeb2c0 ss 0x10 m_free+0x2a: movswq 0x1c(%r14),%rdx ddb> show proc PROC (syz-executor0) pid=118275 stat=onproc flags process=1008 proc=2000 pri=50, usrpri=82, nice=20 forw=0xffffffffffffffff, list=0xffff800014ae57d0,0xffffffff81eb2fa8 process=0xffff8000149f9048 user=0xffff800014ae6000, vmspace=0xffffff003e1e8d80 estcpu=36, cpticks=2, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 11951 73741 79799 0 3 0x80 nanosleep syz-executor1 11951 135754 79799 0 3 0x4000080 pppxread syz-executor1 11951 21349 79799 0 3 0x4000080 pppxread syz-executor1 11951 9066 79799 0 3 0x4000080 pppxread syz-executor1 17369 453122 1 0 3 0x100083 ttyin getty 78470 371618 0 0 3 0x14200 bored sosplice 79799 266768 95 0 3 0x82 nanosleep syz-executor1 69335 170956 95 0 3 0x82 nanosleep syz-executor0 95 23306 11806 0 3 0x82 thrsleep syz-fuzzer 95 522972 11806 0 3 0x4000082 thrsleep syz-fuzzer 95 46280 11806 0 3 0x4000082 thrsleep syz-fuzzer 95 144965 11806 0 3 0x4000082 thrsleep syz-fuzzer 95 349809 11806 0 3 0x4000082 thrsleep syz-fuzzer 95 362507 11806 0 3 0x4000082 thrsleep syz-fuzzer 95 93776 11806 0 3 0x4000082 kqread syz-fuzzer 11806 238641 27749 0 3 0x10008a pause ksh 27749 111112 9676 0 3 0x92 select sshd 9676 392074 1 0 3 0x80 select sshd 95421 66607 90393 73 2 0x100090 syslogd 90393 52984 1 0 3 0x100082 netio syslogd 68454 422217 1 77 3 0x100090 poll dhclient 47435 387240 1 0 3 0x80 poll dhclient 16711 52926 0 0 2 0x14200 zerothread 77562 427074 0 0 3 0x14200 aiodoned aiodoned 41067 509391 0 0 3 0x14200 syncer update 93439 453922 0 0 3 0x14200 cleaner cleaner 63059 32727 0 0 3 0x14200 reaper reaper 29059 174418 0 0 3 0x14200 pgdaemon pagedaemon 87609 347611 0 0 3 0x14200 bored crynlk 21864 235689 0 0 3 0x14200 bored crypto 9470 349768 0 0 3 0x40014200 acpi0 acpi0 45760 117054 0 0 3 0x14200 bored softnet 15032 113565 0 0 3 0x14200 bored systqmp 29641 208698 0 0 3 0x14200 bored systq 44664 457768 0 0 3 0x40014200 bored softclock 30517 493146 0 0 3 0x40014200 idle0 1 244195 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper