login: uvm_fault(0xfffffd807e52e458, 0x4, 0, 1) -> e kernel: page fault trap, code=0 Stopped at igmp_leavegroup+0x80: movl 0x4(%rax),%r12d TID PID UID PRFLAGS PFLAGS CPU COMMAND igmp_leavegroup(ffff800000c44b00) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000c44b00) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c22e60) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806603f4c0) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd806e11b1f8) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1263 soclose(fffffd806e11b1f8,0) at soclose+0x255 sys/kern/uipc_socket.c:361 soo_close(fffffd806933f440,ffff800024686550) at soo_close+0x40 fdrop(fffffd806933f440,ffff800024686550) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806933f440,ffff800024686550) at closef+0x11c sys/kern/kern_descrip.c:1263 fdfree(ffff800024686550) at fdfree+0xf4 sys/kern/kern_descrip.c:1195 exit1(ffff800024686550,0,0,1) at exit1+0x37d sys/kern/kern_exit.c:202 sys_exit(ffff800024686550,ffff8000211c0a00,ffff8000211c0a60) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff8000211c0ad0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff8000211c0ad0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffc8440, count: 1 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xfffffd807e52e458, 0x4, 0, 1) -> e ddb{0}> trace igmp_leavegroup(ffff800000c44b00) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000c44b00) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c22e60) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806603f4c0) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd806e11b1f8) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1263 soclose(fffffd806e11b1f8,0) at soclose+0x255 sys/kern/uipc_socket.c:361 soo_close(fffffd806933f440,ffff800024686550) at soo_close+0x40 fdrop(fffffd806933f440,ffff800024686550) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806933f440,ffff800024686550) at closef+0x11c sys/kern/kern_descrip.c:1263 fdfree(ffff800024686550) at fdfree+0xf4 sys/kern/kern_descrip.c:1195 exit1(ffff800024686550,0,0,1) at exit1+0x37d sys/kern/kern_exit.c:202 sys_exit(ffff800024686550,ffff8000211c0a00,ffff8000211c0a60) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff8000211c0ad0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff8000211c0ad0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffc8440, count: -14 ddb{0}> show registers rdi 0 rsi 0 rbp 0xffff8000211c0680 rbx 0 rdx 0 rcx 0x1 rax 0 r8 0 r9 0 r10 0x509385b1d1a29ef r11 0x291080deeb2d4f22 r12 0 r13 0x3 r14 0xffff800000689000 r15 0xffff800000c44b00 rip 0xffffffff8234feb0 igmp_leavegroup+0x80 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000211c0650 ss 0x10 igmp_leavegroup+0x80: movl 0x4(%rax),%r12d ddb{0}> show proc PROC (syz-executor.6) pid=520754 stat=onproc flags process=1008 proc=2000 pri=32, usrpri=82, nice=20 forw=0xffffffffffffffff, list=0xffff8000246862b0,0xffff800024686aa0 process=0xffff80002c93b1f8 user=0xffff8000211bb000, vmspace=0xfffffd807e52e458 estcpu=32, cpticks=2, pctcpu=0.0 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 3665 205811 12885 0 2 0 syz-executor.7 3665 381240 12885 0 3 0x4000080 fsleep syz-executor.7 30607 504028 57987 0 2 0 syz-executor.0 30607 76325 57987 0 3 0x4000080 fsleep syz-executor.0 48857 18607 67305 0 2 0 syz-executor.1 48857 117123 67305 0 3 0x4000080 fsleep syz-executor.1 82915 404327 69420 0 2 0 syz-executor.5 82915 332315 69420 0 3 0x4000080 fsleep syz-executor.5 26656 219460 73536 0 2 0 syz-executor.2 26656 134211 73536 0 3 0x4000080 fsleep syz-executor.2 77690 326199 75460 0 2 0 syz-executor.3 77690 455251 75460 0 3 0x4000080 fsleep syz-executor.3 77690 184440 75460 0 3 0x4000080 fsleep syz-executor.3 77690 12156 75460 0 3 0x4000080 fsleep syz-executor.3 12885 149685 66977 0 3 0x82 nanoslp syz-executor.7 90263 3801 1 0 3 0x100083 ttyin getty 68246 348695 0 0 3 0x14280 nfsidl nfsio 28675 141408 0 0 3 0x14280 nfsidl nfsio 96373 288236 0 0 3 0x14280 nfsidl nfsio 2281 266264 0 0 3 0x14280 nfsidl nfsio 64359 156511 0 0 3 0x14280 nfsidl nfsio 9605 301471 0 0 3 0x14280 nfsidl nfsio 17437 408034 0 0 3 0x14280 nfsidl nfsio 79754 418074 0 0 3 0x14280 nfsidl nfsio 3972 248154 0 0 3 0x14280 nfsidl nfsio 34882 369512 0 0 3 0x14280 nfsidl nfsio 60675 408210 0 0 3 0x14280 nfsidl nfsio 62626 502160 0 0 3 0x14280 nfsidl nfsio 64296 304688 0 0 3 0x14280 nfsidl nfsio 96694 428310 0 0 3 0x14280 nfsidl nfsio 73240 1090 0 0 3 0x14280 nfsidl nfsio 60104 197549 0 0 3 0x14280 nfsidl nfsio 1755 250747 0 0 3 0x14280 nfsidl nfsio 18596 416914 0 0 3 0x14280 nfsidl nfsio 69906 408825 0 0 3 0x14280 nfsidl nfsio 16667 224359 0 0 3 0x14280 nfsidl nfsio 67305 486519 66977 0 3 0x82 nanoslp syz-executor.1 73536 499667 66977 0 3 0x82 nanoslp syz-executor.2 75119 240016 66977 0 3 0x82 nanoslp syz-executor.4 75460 490480 66977 0 3 0x82 nanoslp syz-executor.3 35978 227829 0 0 3 0x14200 bored sosplice 69420 53130 66977 0 3 0x82 nanoslp syz-executor.5 26833 327379 66977 0 3 0x82 nanoslp syz-executor.6 57987 194172 66977 0 2 0x482 syz-executor.0 66977 119649 42165 0 3 0x82 thrsleep syz-fuzzer 66977 174040 42165 0 3 0x4000082 thrsleep syz-fuzzer 66977 276711 42165 0 3 0x4000082 thrsleep syz-fuzzer 66977 405737 42165 0 3 0x4000082 thrsleep syz-fuzzer 66977 429387 42165 0 2 0x4000482 syz-fuzzer 66977 444241 42165 0 3 0x4000082 thrsleep syz-fuzzer 66977 42303 42165 0 3 0x4000082 thrsleep syz-fuzzer 66977 401091 42165 0 3 0x4000082 thrsleep syz-fuzzer 66977 68080 42165 0 3 0x4000082 thrsleep syz-fuzzer 42165 7974 61468 0 3 0x10008a sigsusp ksh 61468 162764 84181 0 3 0x9a poll sshd 84181 523535 1 0 3 0x88 poll sshd 16364 423017 72226 74 3 0x100092 bpf pflogd 72226 470325 1 0 3 0x80 netio pflogd 43500 320195 4277 73 3 0x100090 kqread syslogd 4277 282730 1 0 3 0x100082 netio syslogd 47728 97011 1 0 3 0x100080 kqread resolvd 43372 465369 66266 77 3 0x100092 kqread dhcpleased 38321 36205 66266 77 3 0x100092 kqread dhcpleased 66266 299690 1 0 3 0x80 kqread dhcpleased 86657 391670 0 0 3 0x14200 bored smr 77490 282387 0 0 2 0x14200 zerothread 4041 15182 0 0 3 0x14200 aiodoned aiodoned 10058 425166 0 0 3 0x14200 syncer update 63048 128774 0 0 3 0x14200 cleaner cleaner 75907 209771 0 0 3 0x14200 reaper reaper 5121 332088 0 0 3 0x14200 pgdaemon pagedaemon 78449 70728 0 0 3 0x14200 bored viomb 69254 334160 0 0 3 0x40014200 acpi0 acpi0 58044 95703 0 0 7 0x40014200 idle1 28255 377686 0 0 3 0x14200 bored softnet 28278 307699 0 0 3 0x14200 bored systqmp 62411 464590 0 0 3 0x14200 bored systq 21738 178307 0 0 2 0x40014200 softclock 91690 238983 0 0 3 0x40014200 idle0 1 254662 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10218 6510K 6961K 78643K 23756 0 pcb 14 16K 18K 78643K 3048 0 rtable 260 26K 28K 78643K 3707 0 ifaddr 101 22K 23K 78643K 1470 0 sysctl 2 0K 0K 78643K 2 0 counters 56 35K 36K 78643K 182 0 ioctlops 0 0K 5K 78643K 2712 0 iov 0 0K 16K 78643K 740 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 5 0 vnodes 1396 87K 88K 78643K 8757 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 78 0 VM map 2 1K 1K 78643K 2 0 sem 25 5K 10K 78643K 723 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12598 0 file desc 17 61K 89K 78643K 8022 0 sigio 0 0K 0K 78643K 168 0 proc 72 87K 123K 78643K 1127 0 subproc 104 6K 6K 78643K 247 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 3 0K 0K 78643K 990 0 in_multi 84 5K 6K 78643K 1791 0 ether_multi 1 0K 0K 78643K 38 0 mrt 1 0K 0K 78643K 27 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 265 1182K 1182K 78643K 265 0 exec 0 0K 2K 78643K 1768 0 pfkey data 0 0K 1K 78643K 5 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 461 353K 369K 78643K 102951 0 UVM aobj 131 6K 6K 78643K 140 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 1551 0 NDP 13 0K 1K 78643K 480 0 temp 141 4713K 8805K 78643K 56316 0 kqueue 10 14K 20K 78643K 236 0 SYN cache 2 16K 16K 78643K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 299 0 296 4 3 1 3 0 8 0 rtentry 112 720 0 628 4 0 4 4 0 8 0 unpcb 136 7280 0 7265 46 43 3 7 0 8 2 syncache 296 26 0 26 7 7 0 1 0 8 0 tcpqe 32 147 0 147 3 3 0 1 0 8 0 tcpcb 736 7490 0 7480 107 102 5 17 0 8 3 arp 120 47 0 30 1 0 1 1 0 8 0 inpcb 304 16365 0 16346 81 77 4 12 0 8 2 rttmr 72 15 0 14 4 3 1 1 0 8 0 nd6 48 434 0 410 1 0 1 1 0 8 0 pkpcb 40 140 0 140 4 4 0 1 0 8 0 kcovpl 48 19 0 11 1 0 1 1 0 8 0 ppxss 1248 23 0 23 6 6 0 1 0 8 0 pfstscr 40 11 0 11 2 2 0 1 0 8 0 pffrag 232 56 0 54 3 2 1 1 0 482 0 pffrnode 88 56 0 54 3 2 1 1 0 8 0 pffrent 40 322 0 320 4 3 1 1 0 8 0 pfosfp 40 1464 0 1040 5 0 5 5 0 8 0 pfosfpen 112 1464 0 748 21 0 21 21 0 8 0 pfrktable 1344 930 0 909 9 7 2 3 0 8 0 pftag 88 4 0 3 2 1 1 1 0 8 0 pfqueue 264 3 0 3 1 1 0 1 0 8 0 pfstitem 24 49 0 47 1 0 1 1 0 8 0 pfstkey 112 75 0 73 1 0 1 1 0 8 0 pfstate 320 59 0 57 3 2 1 3 0 8 0 pfsrctr 152 24 0 24 2 2 0 1 0 8 0 pfrule 1360 322 0 268 7 2 5 5 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 1740 0 1293 39 11 28 31 0 8 0 art_table 32 1741 0 1293 4 0 4 4 0 8 0 art_node 16 719 0 637 1 0 1 1 0 8 0 sysvmsgpl 40 1 0 0 1 0 1 1 0 8 0 semupl 112 2 0 2 2 2 0 1 0 8 0 semapl 112 716 0 693 1 0 1 1 0 8 0 shmpl 112 137 0 9 5 1 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 12490 0 11045 91 0 91 91 0 8 0 ffsino 272 12490 0 11045 97 0 97 97 0 8 0 nchpl 144 22597 0 20962 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 224 5926 0 0 349 0 349 349 0 8 0 namei 1024 75963 0 75963 4 3 1 2 0 8 1 percpumem 16 103 0 63 1 0 1 1 0 8 0 vcpupl 2048 49 0 0 7 0 7 7 0 8 0 vmpool 560 54 0 5 4 0 4 4 0 8 0 pfiaddrpl 120 269 0 233 3 1 2 2 0 8 0 scsiplug 72 2 0 2 1 1 0 1 0 8 0 scxspl 216 63080 0 63080 23 22 1 8 0 8 1 plimitpl 152 887 0 872 1 0 1 1 0 8 0 sigapl 424 8344 0 8279 8 0 8 8 0 8 0 futexpl 64 83454 0 83446 2 1 1 1 0 8 0 knotepl 112 160 0 0 4 0 4 4 0 8 0 kqueuepl 216 1154 0 1148 23 22 1 8 0 8 0 pipepl 336 1082 0 1054 26 23 3 8 0 8 0 fdescpl 496 8288 0 8258 5 1 4 5 0 8 0 filepl 152 59309 0 59060 80 65 15 20 0 8 5 lockfpl 104 1441 0 1438 3 2 1 2 0 8 0 lockfspl 48 462 0 459 1 0 1 1 0 8 0 sessionpl 144 36 0 19 1 0 1 1 0 8 0 pgrppl 48 40 0 23 1 0 1 1 0 8 0 ucredpl 96 5538 0 5526 1 0 1 1 0 8 0 zombiepl 144 8280 0 8278 1 0 1 1 0 8 0 processpl 1064 8344 0 8278 5 0 5 5 0 8 0 procpl 672 22603 0 22521 15 7 8 8 0 8 0 srpgc 96 16 0 16 4 4 0 1 0 8 0 sosppl 168 84 0 84 9 9 0 1 0 8 0 sockpl 480 24123 0 24087 370 357 13 36 0 8 8 mcl64k 65536 17 0 0 3 0 3 3 0 8 0 mcl16k 16384 17 0 0 3 0 3 3 0 8 0 mcl12k 12288 17 0 0 2 0 2 2 0 8 0 mcl9k 9216 17 0 0 2 0 2 2 0 8 0 mcl8k 8192 17 0 0 3 0 3 3 0 8 0 mcl4k 4096 18 0 0 3 0 3 3 0 8 0 mcl2k2 2112 11 0 0 1 0 1 1 0 8 0 mcl2k 2048 211 0 0 20 0 20 20 0 8 0 mtagpl 96 468 0 0 8 0 8 8 0 8 0 mbufpl 256 4806 0 0 297 0 297 297 0 8 0 bufpl 288 15637 0 9303 453 0 453 453 0 8 0 anonpl 24 2306247 0 2285684 227 98 129 154 0 186 0 amapchunkpl 152 251932 0 251006 83 46 37 49 0 158 0 amappl16 200 22790 0 22135 112 77 35 47 0 8 0 amappl15 192 650 0 645 1 0 1 1 0 8 0 amappl14 184 340 0 333 1 0 1 1 0 8 0 amappl13 176 1872 0 1868 1 0 1 1 0 8 0 amappl12 168 1338 0 1332 1 0 1 1 0 8 0 amappl11 160 1167 0 1151 1 0 1 1 0 8 0 amappl10 152 1064 0 1056 1 0 1 1 0 8 0 amappl9 144 1504 0 1497 1 0 1 1 0 8 0 amappl8 136 2022 0 1919 4 0 4 4 0 8 0 amappl7 128 1223 0 1208 1 0 1 1 0 8 0 amappl6 120 1304 0 1277 2 1 1 2 0 8 0 amappl5 112 6962 0 6940 1 0 1 1 0 8 0 amappl4 104 3515 0 3484 2 1 1 2 0 8 0 amappl3 96 2878 0 2863 1 0 1 1 0 8 0 amappl2 88 2692 0 2633 3 1 2 3 0 8 0 amappl1 80 150164 0 149558 19 5 14 19 0 8 0 amappl 88 102094 0 101789 10 2 8 8 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 139 0 9 3 0 3 3 0 8 0 uaddrrnd 24 8342 0 8263 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 8342 0 8263 1 0 1 1 0 8 0 vmmpekpl 168 58247 0 58174 4 0 4 4 0 8 0 vmmpepl 168 755907 0 752935 234 92 142 150 0 357 9 vmsppl 368 8341 0 8263 9 1 8 8 0 8 0 rwobjpl 56 185262 0 177452 118 7 111 114 0 8 0 pdppl 4096 16691 0 16575 295 177 118 118 0 8 2 pvpl 32 3899328 0 3874143 380 172 208 255 0 265 0 pmappl 248 8341 0 8263 6 1 5 5 0 8 0 extentpl 40 57 0 38 1 0 1 1 0 8 0 phpool 112 1471 0 321 35 1 34 34 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace igmp_leavegroup(ffff800000c44b00) at igmp_leavegroup+0x80 sys/netinet/igmp.c:521 in_delmulti(ffff800000c44b00) at in_delmulti+0xb7 sys/netinet/in.c:920 ip_freemoptions(ffff800000c22e60) at ip_freemoptions+0x4d sys/netinet/ip_output.c:1764 in_pcbdetach(fffffd806603f4c0) at in_pcbdetach+0xf3 sys/netinet/in_pcb.c:584 udp_detach(fffffd806e11b1f8) at udp_detach+0x3b sys/netinet/udp_usrreq.c:1263 soclose(fffffd806e11b1f8,0) at soclose+0x255 sys/kern/uipc_socket.c:361 soo_close(fffffd806933f440,ffff800024686550) at soo_close+0x40 fdrop(fffffd806933f440,ffff800024686550) at fdrop+0xc7 sys/kern/kern_descrip.c:1279 closef(fffffd806933f440,ffff800024686550) at closef+0x11c sys/kern/kern_descrip.c:1263 fdfree(ffff800024686550) at fdfree+0xf4 sys/kern/kern_descrip.c:1195 exit1(ffff800024686550,0,0,1) at exit1+0x37d sys/kern/kern_exit.c:202 sys_exit(ffff800024686550,ffff8000211c0a00,ffff8000211c0a60) at sys_exit+0x16 sys/kern/kern_exit.c:95 syscall(ffff8000211c0ad0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline] syscall(ffff8000211c0ad0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffc8440, count: -14 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp x86_ipi_db(ffff800020ce8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206 sched_idle(ffff800020ce8ff0) at sched_idle+0x417 sys/kern/kern_sched.c:178 end trace frame: 0x0, count: 10 ddb{1}> trace x86_ipi_db(ffff800020ce8ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 acpicpu_idle() at acpicpu_idle+0x312 sys/dev/acpi/acpicpu.c:1206 sched_idle(ffff800020ce8ff0) at sched_idle+0x417 sys/kern/kern_sched.c:178 end trace frame: 0x0, count: -5