""‰~¼t§êÏ€ñûHôD^Õ""‰~¼t§êÏ€ñûHôD^Õuvm_fault(0xfffffd80557ef118, 0x800000004c4, 0, 1) -> e kernel: page fault trap, code=0 Stopped at pfr_detach_table+0x20: movl 0x4c4(%r14),%r15d ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic kernel page fault uvm_fault(0xfffffd80557ef118, 0x800000004c4, 0, 1) -> e pfr_detach_table(80000000000) at pfr_detach_table+0x20 sys/net/pf_table.c:2240 end trace frame: 0xffff80001f47ac20, count: 0 ddb> trace pfr_detach_table(80000000000) at pfr_detach_table+0x20 sys/net/pf_table.c:2240 pf_tbladdr_remove(ffff800000aa8808) at pf_tbladdr_remove+0x4e sys/net/pf.c:1525 pf_rm_rule(0,ffff800000aa8538) at pf_rm_rule+0x404 sys/net/pf_ioctl.c:310 pfioctl(4900,cd604404,ffff8000006be000,2,ffff80001d40c9f8) at pfioctl+0x4f7a VOP_IOCTL(fffffd805dab9340,cd604404,ffff8000006be000,2,fffffd806c3be7e0,ffff80001d40c9f8) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:291 vn_ioctl(fffffd80561df900,cd604404,ffff8000006be000,ffff80001d40c9f8) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:533 sys_ioctl(ffff80001d40c9f8,ffff80001f47b0c8,ffff80001f47b110) at sys_ioctl+0x5b9 syscall(ffff80001f47b190) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x3fedb930940, count: -9 ddb> show registers rdi 0xffffffff812fb2a0 pfr_detach_table+0x20 rsi 0xd3 rbp 0xffff80001f47abe0 rbx 0xffff800000aa8780 rdx 0xd4 rcx 0xffff800020647000 rax 0xffff800020647000 r8 0x550 r9 0x1 r10 0xffff8000009f24c0 r11 0x62a0ed99ea974bbb r12 0xffff800000aa8890 r13 0xffff800000aa8808 r14 0x80000000000 r15 0x80000000000 rip 0xffffffff812fb2a0 pfr_detach_table+0x20 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80001f47abb0 ss 0x10 pfr_detach_table+0x20: movl 0x4c4(%r14),%r15d ddb> show proc PROC (syz-executor.1) pid=498112 stat=onproc flags process=0 proc=4000000 pri=79, usrpri=79, nice=20 forw=0xffffffffffffffff, list=0xffff80001d40d3d8,0xffffffff8254b668 process=0xffff8000ffff7b50 user=0xffff80001f476000, vmspace=0xfffffd80557ef118 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 22966 351000 34923 0 2 0 syz-executor.1 *22966 498112 34923 0 7 0x4000000 syz-executor.1 37599 264000 23894 0 2 0 syz-executor.0 37599 331251 23894 0 3 0x4000080 ttyin syz-executor.0 34923 17223 8159 0 3 0x82 nanosleep syz-executor.1 23815 6651 0 0 3 0x14200 bored sosplice 23894 294094 8159 0 3 0x82 nanosleep syz-executor.0 8159 122547 30732 0 3 0x82 thrsleep syz-fuzzer 8159 237172 30732 0 3 0x4000082 thrsleep syz-fuzzer 8159 424124 30732 0 3 0x4000082 thrsleep syz-fuzzer 8159 157458 30732 0 3 0x4000082 thrsleep syz-fuzzer 8159 401139 30732 0 3 0x4000082 kqread syz-fuzzer 8159 249379 30732 0 3 0x4000082 thrsleep syz-fuzzer 8159 226748 30732 0 3 0x4000082 thrsleep syz-fuzzer 8159 440366 30732 0 3 0x4000082 thrsleep syz-fuzzer 30732 180275 2033 0 3 0x10008a pause ksh 2033 23562 28147 0 3 0x92 select sshd 57985 484747 1 0 3 0x100083 ttyin getty 28147 195973 1 0 3 0x80 select sshd 96549 65787 53144 73 3 0x100090 kqread syslogd 53144 8226 1 0 3 0x100082 netio syslogd 92212 56809 1 77 3 0x100090 poll dhclient 98338 146336 1 0 3 0x80 poll dhclient 69329 215846 0 0 2 0x14200 zerothread 45608 167648 0 0 3 0x14200 aiodoned aiodoned 19208 479178 0 0 3 0x14200 syncer update 67895 12324 0 0 3 0x14200 cleaner cleaner 49926 51305 0 0 3 0x14200 reaper reaper 17062 333842 0 0 3 0x14200 pgdaemon pagedaemon 80238 441514 0 0 3 0x14200 bored crynlk 11262 65809 0 0 3 0x14200 bored crypto 12134 494355 0 0 3 0x40014200 acpi0 acpi0 41663 64439 0 0 3 0x14200 bored softnet 37716 124396 0 0 3 0x14200 bored systqmp 42201 40350 0 0 3 0x14200 bored systq 88243 404016 0 0 3 0x40014200 bored softclock 35176 189341 0 0 3 0x40014200 idle0 72445 39961 0 0 3 0x14200 bored smr 1 363868 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9503 6338K 6851K 78643K 12130 0 pcb 13 8K 8K 78643K 95 0 rtable 117 6K 7K 78643K 544 0 ifaddr 74 15K 17K 78643K 194 0 counters 19 16K 16K 78643K 19 0 ioctlops 1 4K 4K 78643K 74 0 iov 0 0K 24K 78643K 678 0 mount 1 1K 1K 78643K 1 0 vnodes 1217 76K 77K 78643K 1883 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 6 0 VM map 2 0K 0K 78643K 2 0 sem 12 0K 0K 78643K 206 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1794 195K 288K 78643K 12646 0 file desc 6 17K 25K 78643K 997 0 sigio 0 0K 0K 78643K 6 0 proc 50 38K 55K 78643K 493 0 subproc 32 2K 2K 78643K 68 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 40 0 in_multi 102 4K 5K 78643K 151 0 ether_multi 1 0K 0K 78643K 6 0 mrt 0 0K 0K 78643K 10 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 97 440K 440K 78643K 97 0 exec 0 0K 1K 78643K 285 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 136 104K 108K 78643K 3185 0 UVM aobj 130 4K 4K 78643K 136 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 66 0 NDP 11 0K 0K 78643K 39 0 temp 134 3028K 3098K 78643K 12760 0 kqueue 0 0K 0K 78643K 2 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 14 0 8 1 0 1 1 0 8 0 rtpcb 80 93 0 91 1 0 1 1 0 8 0 rtentry 112 86 0 43 2 0 2 2 0 8 0 unpcb 120 394 0 386 1 0 1 1 0 8 0 syncache 264 10 0 10 4 3 1 1 0 8 1 tcpqe 32 47 0 47 2 2 0 1 0 8 0 tcpcb 544 172 0 168 1 0 1 1 0 8 0 ipq 40 6 0 6 3 2 1 1 0 8 1 ipqe 40 186 0 186 3 2 1 1 0 8 1 inpcb 280 864 0 857 5 3 2 2 0 8 1 rttmr 72 3 0 3 2 2 0 1 0 8 0 nd6 48 10 0 7 1 0 1 1 0 8 0 pkpcb 40 2 0 2 1 1 0 1 0 8 0 ppxss 1128 8 0 8 4 3 1 1 0 8 1 pfosfp 40 1 0 0 1 0 1 1 0 8 0 pfosfpen 112 1 0 0 1 0 1 1 0 8 0 pfrktable 1344 24 0 20 1 0 1 1 0 8 0 pftag 88 2 0 0 1 0 1 1 0 8 0 pfrule 1360 25 0 10 2 0 2 2 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 369 0 163 15 2 13 14 0 8 0 art_table 32 371 0 163 2 0 2 2 0 8 0 art_node 16 85 0 45 1 0 1 1 0 8 0 sysvmsgpl 40 39 0 15 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 204 0 194 1 0 1 1 0 8 0 shmpl 112 134 0 6 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 3018 0 1623 46 0 46 46 0 8 0 ffsino 240 3018 0 1623 83 0 83 83 0 8 0 nchpl 144 4942 0 3339 60 0 60 60 0 8 0 uvmvnodes 72 3420 0 0 63 0 63 63 0 8 0 vnodes 208 3420 0 0 180 0 180 180 0 8 0 namei 1024 17384 0 17384 1 0 1 1 0 8 1 vcpupl 1984 8 0 0 1 0 1 1 0 8 0 vmpool 528 8 0 0 1 0 1 1 0 8 0 pfiaddrpl 120 10 0 8 2 1 1 1 0 8 0 scsiplug 64 1 0 1 1 1 0 1 0 8 0 scxspl 192 13464 0 13464 1 0 1 1 0 8 1 plimitpl 152 78 0 70 1 0 1 1 0 8 0 sigapl 432 1162 0 1148 2 0 2 2 0 8 0 futexpl 56 22911 0 22911 1 0 1 1 0 8 1 knotepl 112 142 0 123 1 0 1 1 0 8 0 kqueuepl 104 149 0 147 1 0 1 1 0 8 0 pipepl 112 552 0 533 2 0 2 2 0 8 1 fdescpl 424 1163 0 1148 2 0 2 2 0 8 0 filepl 120 8055 0 7956 8 4 4 6 0 8 0 lockfpl 104 222 0 221 1 0 1 1 0 8 0 lockfspl 48 71 0 70 1 0 1 1 0 8 0 sessionpl 112 19 0 9 1 0 1 1 0 8 0 pgrppl 48 27 0 17 1 0 1 1 0 8 0 ucredpl 96 673 0 666 1 0 1 1 0 8 0 zombiepl 144 1148 0 1148 1 0 1 1 0 8 1 processpl 872 1178 0 1148 4 0 4 4 0 8 0 procpl 632 2312 0 2273 4 0 4 4 0 8 0 sosppl 128 10 0 10 2 1 1 1 0 8 1 sockpl 384 1357 0 1340 7 3 4 5 0 8 2 mcl64k 65536 174 0 173 3 2 1 3 0 8 0 mcl16k 16384 7 0 7 2 1 1 1 0 8 1 mcl12k 12288 31 0 31 1 0 1 1 0 8 1 mcl9k 9216 104 0 104 1 0 1 1 0 8 1 mcl8k 8192 34 0 34 1 0 1 1 0 8 1 mcl4k 4096 89 0 89 2 1 1 1 0 8 1 mcl2k2 2112 4 0 4 2 1 1 1 0 8 1 mcl2k 2048 60114 0 60068 17 10 7 13 0 8 0 mtagpl 80 28 0 16 2 1 1 1 0 8 0 mbufpl 256 104822 0 104610 53 26 27 43 0 8 8 bufpl 280 8374 0 2190 442 0 442 442 0 8 0 anonpl 16 125669 0 108886 109 26 83 83 0 107 15 amapchunkpl 152 6543 0 6394 32 23 9 20 0 158 2 amappl16 192 6966 0 6020 76 20 56 60 0 8 8 amappl15 184 184 0 177 1 0 1 1 0 8 0 amappl14 176 37 0 36 1 0 1 1 0 8 0 amappl12 160 63 0 61 1 0 1 1 0 8 0 amappl11 152 279 0 268 1 0 1 1 0 8 0 amappl10 144 545 0 541 1 0 1 1 0 8 0 amappl9 136 588 0 585 1 0 1 1 0 8 0 amappl8 128 141 0 110 1 0 1 1 0 8 0 amappl7 120 640 0 626 1 0 1 1 0 8 0 amappl6 112 281 0 274 1 0 1 1 0 8 0 amappl5 104 209 0 197 1 0 1 1 0 8 0 amappl4 96 1330 0 1300 1 0 1 1 0 8 0 amappl3 88 204 0 196 1 0 1 1 0 8 0 amappl2 80 8525 0 8441 3 1 2 3 0 8 0 amappl1 72 29158 0 28723 26 17 9 20 0 8 0 amappl 80 2609 0 2556 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 135 0 6 3 0 3 3 0 8 0 uaddrrnd 24 1171 0 1148 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1171 0 1148 1 0 1 1 0 8 0 vmmpekpl 168 10501 0 10473 2 0 2 2 0 8 0 vmmpepl 168 145100 0 142887 154 31 123 126 0 357 26 vmsppl 272 1170 0 1148 2 0 2 2 0 8 0 pdppl 4096 2348 0 2304 7 1 6 6 0 8 0 pvpl 32 349817 0 330431 217 27 190 191 0 265 30 pmappl 200 1170 0 1148 2 0 2 2 0 8 0 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 196 0 45 5 0 5 5 0 8 0