uvm_fault(0xfffffd807973c890, 0x4, 0, 1) -> e kernel: page fault trap, code=0 Stopped at igmp_leavegroup+0x80: movl 0x4(%rax),%r12d TID PID UID PRFLAGS PFLAGS CPU COMMAND igmp_leavegroup(ffff800000bc4e00) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000bc4e00) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c3d4e0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806f3b3000) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd806e4b88d0) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1263 soclose(fffffd806e4b88d0,0) at soclose+0x245 sys/kern/uipc_socket.c:361 soo_close(fffffd807069ac48,ffff8000264ef7a8) at soo_close+0x40 fdrop(fffffd807069ac48,ffff8000264ef7a8) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd807069ac48,ffff8000264ef7a8) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff8000264ef7a8) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff8000264ef7a8,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff8000264ef7a8,ffff80002e827330,ffff80002e827390) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff80002e827400) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffbc500, count: 1 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd807973c890, 0x4, 0, 1) -> e ddb> trace igmp_leavegroup(ffff800000bc4e00) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000bc4e00) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c3d4e0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806f3b3000) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd806e4b88d0) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1263 soclose(fffffd806e4b88d0,0) at soclose+0x245 sys/kern/uipc_socket.c:361 soo_close(fffffd807069ac48,ffff8000264ef7a8) at soo_close+0x40 fdrop(fffffd807069ac48,ffff8000264ef7a8) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd807069ac48,ffff8000264ef7a8) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff8000264ef7a8) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff8000264ef7a8,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff8000264ef7a8,ffff80002e827330,ffff80002e827390) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff80002e827400) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffbc500, count: -14 ddb> show registers rdi 0 rsi 0 rbp 0xffff80002e826fb0 rbx 0 rdx 0 rcx 0x1 rax 0 r8 0 r9 0 r10 0x3e04d2d7d4dd420c r11 0x324bf69438ad502c r12 0 r13 0x3 r14 0xffff8000006b5000 r15 0xffff800000bc4e00 rip 0xffffffff8209c820 igmp_leavegroup+0x80 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002e826f80 ss 0x10 igmp_leavegroup+0x80: movl 0x4(%rax),%r12d ddb> show proc PROC (syz-executor.4) pid=372582 stat=onproc flags process=1008 proc=2000 pri=32, usrpri=86, nice=20 forw=0xffffffffffffffff, list=0xffff8000264ee2a8,0xffff8000264eed38 process=0xffff8000230c2428 user=0xffff80002e822000, vmspace=0xfffffd807973c890 estcpu=36, cpticks=4, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 18384 517988 6876 0 2 0x480 syz-executor.7 18384 109406 6876 0 3 0x4000080 fsleep syz-executor.7 85755 389259 72101 0 3 0x80 nanoslp syz-executor.1 85755 189990 72101 0 3 0x4000080 fsleep syz-executor.1 76286 433736 92327 0 2 0 syz-executor.0 76286 154580 92327 0 3 0x4000080 fsleep syz-executor.0 11785 485014 68453 0 2 0 syz-executor.3 11785 368377 68453 0 3 0x4000080 fsleep syz-executor.3 72101 28719 18431 0 3 0x82 nanoslp syz-executor.1 65808 479544 18431 0 2 0x482 syz-executor.4 98776 132694 0 0 3 0x14200 acct acct 57290 317221 18431 0 2 0x2 syz-executor.6 6876 126334 18431 0 2 0x482 syz-executor.7 50311 277267 18431 0 3 0x82 piperd syz-executor.2 48385 524068 18431 0 2 0x2 syz-executor.5 92327 500345 18431 0 2 0x482 syz-executor.0 68453 158776 18431 0 2 0x482 syz-executor.3 35107 81269 1 0 3 0x100083 ttyin getty 54075 318948 0 0 3 0x14280 nfsidl nfsio 13796 491605 0 0 3 0x14280 nfsidl nfsio 52761 123016 0 0 3 0x14280 nfsidl nfsio 47160 80445 0 0 3 0x14280 nfsidl nfsio 81218 440507 0 0 3 0x14280 nfsidl nfsio 28725 358057 0 0 3 0x14280 nfsidl nfsio 63647 302959 0 0 3 0x14280 nfsidl nfsio 55552 453894 0 0 3 0x14280 nfsidl nfsio 65989 450560 0 0 3 0x14280 nfsidl nfsio 26802 341101 0 0 3 0x14280 nfsidl nfsio 36658 204652 0 0 3 0x14280 nfsidl nfsio 68231 139372 0 0 3 0x14280 nfsidl nfsio 36326 273622 0 0 3 0x14280 nfsidl nfsio 59046 117592 0 0 3 0x14280 nfsidl nfsio 8417 360537 0 0 3 0x14280 nfsidl nfsio 86131 188603 0 0 3 0x14280 nfsidl nfsio 91819 302915 0 0 3 0x14280 nfsidl nfsio 52915 40936 0 0 3 0x14280 nfsidl nfsio 52849 386264 0 0 3 0x14280 nfsidl nfsio 89711 399741 0 0 3 0x14280 nfsidl nfsio 8312 118908 0 0 3 0x14200 bored sosplice 18431 298540 47008 0 3 0x82 thrsleep syz-fuzzer 18431 18147 47008 0 3 0x4000082 nanoslp syz-fuzzer 18431 442693 47008 0 3 0x4000082 thrsleep syz-fuzzer 18431 121660 47008 0 3 0x4000082 thrsleep syz-fuzzer 18431 473442 47008 0 3 0x4000082 kqread syz-fuzzer 18431 186292 47008 0 3 0x4000082 thrsleep syz-fuzzer 18431 76535 47008 0 3 0x4000082 thrsleep syz-fuzzer 18431 86010 47008 0 3 0x4000082 thrsleep syz-fuzzer 18431 132075 47008 0 3 0x4000082 thrsleep syz-fuzzer 47008 288601 14297 0 3 0x10008a sigsusp ksh 14297 207230 44649 0 3 0x9a poll sshd 44649 423444 1 0 3 0x88 poll sshd 21341 296294 42726 73 3 0x100090 kqread syslogd 42726 233949 1 0 3 0x100082 netio syslogd 11870 87497 1 0 3 0x100080 kqread resolvd 97990 124407 58959 77 3 0x100092 kqread dhcpleased 77911 318621 58959 77 3 0x100092 kqread dhcpleased 58959 339623 1 0 3 0x80 kqread dhcpleased 50608 444894 0 0 3 0x14200 bored smr 36029 330338 0 0 2 0x14200 zerothread 37153 12317 0 0 3 0x14200 aiodoned aiodoned 87856 433677 0 0 3 0x14200 syncer update 90729 6735 0 0 3 0x14200 cleaner cleaner 28899 205256 0 0 3 0x14200 reaper reaper 24617 118740 0 0 3 0x14200 pgdaemon pagedaemon 53202 474087 0 0 3 0x14200 bored viomb 80767 158488 0 0 3 0x40014200 acpi0 acpi0 14850 247995 0 0 3 0x14200 bored softnet 34758 131242 0 0 3 0x14200 bored systqmp 68667 182161 0 0 3 0x14200 bored systq 47579 282433 0 0 3 0x40014200 bored softclock 64225 482306 0 0 3 0x40014200 idle0 1 251035 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10207 6560K 7271K 78643K 29641 0 pcb 13 18K 21K 78643K 1632 0 rtable 257 22K 23K 78643K 3259 0 ifaddr 95 21K 22K 78643K 1217 0 sysctl 2 0K 0K 78643K 2 0 counters 27 17K 17K 78643K 126 0 ioctlops 0 0K 4K 78643K 2447 0 iov 0 0K 28K 78643K 954 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1502 94K 94K 78643K 8629 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 95 0 VM map 2 0K 0K 78643K 2 0 sem 12 1K 1K 78643K 429 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12598 0 file desc 15 53K 81K 78643K 8719 0 sigio 0 0K 0K 78643K 162 0 proc 61 63K 79K 78643K 2297 0 subproc 104 6K 10K 78643K 917 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 2 0K 0K 78643K 496 0 in_multi 93 6K 6K 78643K 965 0 ether_multi 3 0K 0K 78643K 95 0 mrt 1 0K 0K 78643K 61 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 277 1235K 1235K 78643K 277 0 exec 0 0K 2K 78643K 3078 0 pfkey data 0 0K 0K 78643K 6 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 439 673K 674K 78643K 103711 0 UVM aobj 131 8K 8K 78643K 135 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 367 0 NDP 12 0K 1K 78643K 249 0 temp 133 4703K 66399K 78643K 98314 0 kqueue 10 14K 20K 78643K 359 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 589 0 586 6 5 1 3 0 8 0 rtentry 112 791 0 691 5 2 3 4 0 8 0 unpcb 136 9276 0 9261 75 72 3 8 0 8 2 syncache 296 23 0 23 6 6 0 1 0 8 0 tcpqe 32 14 0 14 4 4 0 1 0 8 0 tcpcb 736 3472 0 3467 151 137 14 19 0 8 13 arp 88 132 0 114 1 0 1 1 0 8 0 ipq 40 10 0 10 6 5 1 1 0 8 1 ipqe 40 151 0 151 6 5 1 1 0 8 1 inpcb 304 16405 0 16396 158 149 9 16 0 8 8 rttmr 72 19 0 19 6 6 0 1 0 8 0 ip6q 72 11 0 11 1 1 0 1 0 8 0 ip6af 40 17 0 17 1 1 0 1 0 8 0 nd6 48 216 0 190 1 0 1 1 0 8 0 pkpcb 40 178 0 178 5 5 0 1 0 8 0 kcovpl 48 65 0 57 1 0 1 1 0 8 0 ppxss 1152 17 0 17 6 6 0 1 0 8 0 pfstscr 40 171 0 168 1 0 1 1 0 8 0 pfosfp 40 2 0 1 1 0 1 1 0 8 0 pfosfpen 112 2 0 1 1 0 1 1 0 8 0 pfrke_plain 168 2 0 2 1 1 0 1 0 8 0 pfrktable 1344 157 0 143 5 3 2 2 0 8 0 pftag 88 54 0 48 2 1 1 1 0 8 0 pfqueue 264 7 0 4 2 1 1 1 0 8 0 pfstitem 24 28 0 24 1 0 1 1 0 8 0 pfstkey 112 192 0 188 1 0 1 1 0 8 0 pfstate 320 96 0 94 1 0 1 1 0 8 0 pfrule 1360 424 0 384 4 0 4 4 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 3543 0 3091 67 38 29 29 0 8 0 art_table 32 3544 0 3091 6 2 4 4 0 8 0 art_node 16 790 0 702 1 0 1 1 0 8 0 sysvmsgpl 40 11 0 0 1 0 1 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 423 0 413 1 0 1 1 0 8 0 shmpl 112 132 0 4 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 12543 0 11067 93 0 93 93 0 8 0 ffsino 240 12543 0 11067 87 0 87 87 0 8 0 nchpl 144 23486 0 21868 62 0 62 62 0 8 0 rtmask 32 4 0 4 1 1 0 1 0 8 0 uvmvnodes 80 6242 0 0 128 0 128 128 0 8 0 vnodes 224 6242 0 0 368 0 368 368 0 8 0 namei 1024 92926 0 92925 6 5 1 2 0 8 0 vcpupl 1984 108 0 0 14 0 14 14 0 8 0 vmpool 528 124 0 16 9 1 8 8 0 8 0 pfiaddrpl 120 293 0 261 1 0 1 1 0 8 0 scsiplug 72 2 0 2 1 1 0 1 0 8 0 scxspl 216 89340 0 89340 25 23 2 8 0 8 2 plimitpl 152 1098 0 1084 1 0 1 1 0 8 0 sigapl 424 8906 0 8845 9 1 8 8 0 8 0 futexpl 64 83051 0 83047 9 8 1 1 0 8 0 knotepl 112 16202 0 16128 8 5 3 5 0 8 0 kqueuepl 184 1576 0 1570 21 20 1 4 0 8 0 pipepl 304 1660 0 1632 35 32 3 8 0 8 0 fdescpl 432 8871 0 8845 4 0 4 4 0 8 0 filepl 120 73599 0 73360 96 84 12 15 0 8 2 lockfpl 104 2230 0 2228 4 3 1 2 0 8 0 lockfspl 48 476 0 474 1 0 1 1 0 8 0 sessionpl 144 82 0 66 1 0 1 1 0 8 0 pgrppl 48 102 0 86 1 0 1 1 0 8 0 ucredpl 96 9077 0 9063 1 0 1 1 0 8 0 zombiepl 144 8846 0 8845 1 0 1 1 0 8 0 processpl 1000 8906 0 8845 9 0 9 9 0 8 0 procpl 672 21272 0 21199 29 21 8 9 0 8 1 sosppl 168 52 0 52 10 10 0 1 0 8 0 sockpl 448 26462 0 26435 518 507 11 30 0 8 7 mcl64k 65536 359 0 359 22 21 1 1 0 8 1 mcl16k 16384 67 0 67 15 15 0 1 0 8 0 mcl12k 12288 236 0 236 26 25 1 1 0 8 1 mcl9k 9216 178 0 178 23 23 0 1 0 8 0 mcl8k 8192 765 0 765 24 23 1 1 0 8 1 mcl4k 4096 885 0 885 16 15 1 1 0 8 1 mcl2k2 2112 49 0 49 17 17 0 1 0 8 0 mcl2k 2048 94042 0 93993 33 17 16 16 0 8 8 mtagpl 96 3468 0 3076 38 25 13 16 0 8 0 mbufpl 256 223125 0 222131 506 429 77 347 0 8 8 bufpl 288 20209 0 13805 459 0 459 459 0 8 0 anonpl 24 2454289 0 2433655 319 170 149 193 0 188 8 amapchunkpl 152 268807 0 268028 127 92 35 62 0 158 2 amappl16 200 25798 0 24946 157 106 51 66 0 8 3 amappl15 192 2203 0 2196 1 0 1 1 0 8 0 amappl14 184 1230 0 1227 1 0 1 1 0 8 0 amappl13 176 2024 0 2019 1 0 1 1 0 8 0 amappl12 168 1002 0 999 2 1 1 1 0 8 0 amappl11 160 1529 0 1518 1 0 1 1 0 8 0 amappl10 152 555 0 552 1 0 1 1 0 8 0 amappl9 144 1189 0 1182 1 0 1 1 0 8 0 amappl8 136 1802 0 1714 4 0 4 4 0 8 0 amappl7 128 381 0 369 1 0 1 1 0 8 0 amappl6 120 1094 0 1068 2 1 1 2 0 8 0 amappl5 112 5901 0 5886 1 0 1 1 0 8 0 amappl4 104 5279 0 5249 2 0 2 2 0 8 0 amappl3 96 2559 0 2544 1 0 1 1 0 8 0 amappl2 88 3795 0 3732 3 1 2 3 0 8 0 amappl1 80 159084 0 158547 19 6 13 18 0 8 0 amappl 88 102183 0 101918 7 0 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 134 0 4 3 0 3 3 0 8 0 uaddrrnd 24 8995 0 8861 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 8995 0 8861 1 0 1 1 0 8 0 vmmpekpl 168 61501 0 61432 4 0 4 4 0 8 0 vmmpepl 168 833055 0 830122 341 177 164 166 0 357 21 vmsppl 272 8994 0 8861 12 2 10 10 0 8 0 rwobjpl 24 195815 0 187600 53 2 51 51 0 8 0 pdppl 4096 17996 0 17830 708 536 172 172 0 8 6 pvpl 32 4306031 0 4284130 537 313 224 320 0 265 22 pmappl 216 8994 0 8861 8 0 8 8 0 8 0 extentpl 40 57 0 38 1 0 1 1 0 8 0 phpool 112 2728 0 1747 35 6 29 34 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace igmp_leavegroup(ffff800000bc4e00) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000bc4e00) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c3d4e0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806f3b3000) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd806e4b88d0) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1263 soclose(fffffd806e4b88d0,0) at soclose+0x245 sys/kern/uipc_socket.c:361 soo_close(fffffd807069ac48,ffff8000264ef7a8) at soo_close+0x40 fdrop(fffffd807069ac48,ffff8000264ef7a8) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd807069ac48,ffff8000264ef7a8) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff8000264ef7a8) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff8000264ef7a8,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff8000264ef7a8,ffff80002e827330,ffff80002e827390) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff80002e827400) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffbc500, count: -14 ddb> machine ddbcpu 1 No such command ddb> trace igmp_leavegroup(ffff800000bc4e00) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000bc4e00) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c3d4e0) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806f3b3000) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd806e4b88d0) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1263 soclose(fffffd806e4b88d0,0) at soclose+0x245 sys/kern/uipc_socket.c:361 soo_close(fffffd807069ac48,ffff8000264ef7a8) at soo_close+0x40 fdrop(fffffd807069ac48,ffff8000264ef7a8) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd807069ac48,ffff8000264ef7a8) at closef+0x117 sys/kern/kern_descrip.c:1263 fdfree(ffff8000264ef7a8) at fdfree+0xf3 sys/kern/kern_descrip.c:1195 exit1(ffff8000264ef7a8,0,0,1) at exit1+0x35d sys/kern/kern_exit.c:202 sys_exit(ffff8000264ef7a8,ffff80002e827330,ffff80002e827390) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff80002e827400) at syscall+0x44e sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffbc500, count: -14