uvm_fault(0xfffffd806e7b2008, 0x0, 0, 1) -> e kernel: page fault trap, code=0 Stopped at memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic kernel page fault uvm_fault(0xfffffd806e7b2008, 0x0, 0, 1) -> e memcpy() at memcpy+0x15 end trace frame: 0xffff800020afba40, count: 0 ddb{1}> trace memcpy() at memcpy+0x15 tcp_usrreq(fffffd806e96ec08,9,fffffd807f028000,0,0,ffff800020ad18c0) at tcp_usrreq+0xa45 sosend(fffffd806e96ec08,0,ffff800020afbbe8,0,0,80) at sosend+0x645 sys/kern/uipc_socket.c:524 dofilewritev(ffff800020ad18c0,4,ffff800020afbbe8,0,ffff800020afbcd0) at dofilewritev+0x1b7 sys/kern/sys_generic.c:364 sys_write(ffff800020ad18c0,ffff800020afbc80,ffff800020afbcd0) at sys_write+0x83 sys/kern/sys_generic.c:284 syscall(ffff800020afbd50) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:92 [inline] syscall(ffff800020afbd50) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffca050, count: -7 ddb{1}> show registers rdi 0xfffffd807b92b1b0 rsi 0 rbp 0xffff800020afb990 rbx 0x28 rdx 0x28 rcx 0x5 rax 0xffffffff81ba1f0b tcp_output+0x173b r8 0xffffffff81ba13df tcp_output+0xc0f r9 0x5 r10 0x1e7f5466173e5dda r11 0xfffffd807b92b1b0 r12 0x254 r13 0xfffffd807b92b100 r14 0x28 r15 0xfffffd807f028100 rip 0xffffffff82068c85 memcpy+0x15 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff800020afb808 ss 0x10 memcpy+0x15: repe movsq (%rsi),%es:(%rdi) ddb{1}> show proc PROC (sshd) pid=274243 stat=onproc flags process=12 proc=0 pri=50, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff800020ad0010,0xffff800020ad1168 process=0xffff800020a9bc10 user=0xffff800020af6000, vmspace=0xfffffd806e7b2008 estcpu=0, cpticks=2, pctcpu=0.1 user=0, sys=1, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 56181 75340 61306 0 2 0x2 syz-executor.1 60783 292001 0 0 3 0x14200 bored sosplice 68636 474077 61306 0 2 0x2 syz-executor.0 61306 197218 54511 0 3 0x82 thrsleep syz-fuzzer 61306 159333 54511 0 3 0x4000082 nanosleep syz-fuzzer 61306 72929 54511 0 3 0x4000082 thrsleep syz-fuzzer 61306 289817 54511 0 3 0x4000082 thrsleep syz-fuzzer 61306 486122 54511 0 3 0x4000082 thrsleep syz-fuzzer 61306 265829 54511 0 7 0x4000002 syz-fuzzer 61306 272533 54511 0 3 0x4000082 thrsleep syz-fuzzer 61306 426662 54511 0 3 0x4000082 thrsleep syz-fuzzer 61306 288246 54511 0 3 0x4000082 thrsleep syz-fuzzer 61306 403212 54511 0 2 0x4000002 syz-fuzzer 54511 344029 65119 0 3 0x10008a pause ksh *65119 274243 7644 0 7 0x12 sshd 48775 116243 1 0 3 0x100083 ttyin getty 7644 281067 1 0 3 0x80 select sshd 65433 74523 18626 74 3 0x100092 bpf pflogd 18626 342179 1 0 3 0x80 netio pflogd 92666 35288 69359 73 3 0x100090 kqread syslogd 69359 64049 1 0 3 0x100082 netio syslogd 67142 369513 1 77 3 0x100090 poll dhclient 21043 173792 1 0 3 0x80 poll dhclient 56850 188758 0 0 2 0x14200 zerothread 45975 233139 0 0 3 0x14200 aiodoned aiodoned 82311 35229 0 0 3 0x14200 syncer update 69858 67490 0 0 3 0x14200 cleaner cleaner 12644 209944 0 0 3 0x14200 reaper reaper 55142 86022 0 0 3 0x14200 pgdaemon pagedaemon 17795 122958 0 0 3 0x14200 bored crynlk 96326 516161 0 0 3 0x14200 bored crypto 65193 177797 0 0 3 0x40014200 acpi0 acpi0 87796 989 0 0 3 0x40014200 idle1 77031 355121 0 0 3 0x14200 bored softnet 69454 294262 0 0 3 0x14200 bored systqmp 21960 390299 0 0 3 0x14200 bored systq 14696 287911 0 0 3 0x40014200 bored softclock 25409 498289 0 0 3 0x40014200 idle0 76115 418369 0 0 3 0x14200 bored smr 1 179621 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 65119 (sshd) thread 0xffff800020ad18c0 (274243) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff8260a4c0) #0 witness_lock+0x52e sys/kern/subr_witness.c:1163 #1 pageflttrap+0x6f sys/arch/amd64/amd64/trap.c:162 #2 kerntrap+0xec sys/arch/amd64/amd64/trap.c:287 #3 alltraps_kern_meltdown+0x7b #4 memcpy+0x15 #5 tcp_usrreq+0xa45 #6 sosend+0x645 sys/kern/uipc_socket.c:524 #7 dofilewritev+0x1b7 sys/kern/sys_generic.c:364 #8 sys_write+0x83 sys/kern/sys_generic.c:284 #9 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:92 [inline] #9 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:555 #10 Xsyscall+0x128 exclusive rwlock netlock r = 0 (0xffffffff824a3a38) #0 witness_lock+0x52e sys/kern/subr_witness.c:1163 #1 solock+0x5a sys/kern/uipc_socket2.c:282 #2 sosend+0x51b sys/kern/uipc_socket.c:512 #3 dofilewritev+0x1b7 sys/kern/sys_generic.c:364 #4 sys_write+0x83 sys/kern/sys_generic.c:284 #5 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:92 [inline] #5 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:555 #6 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9545 6425K 6683K 78643K 11208 0 pcb 13 8K 8K 78643K 87 0 rtable 104 3K 4K 78643K 442 0 ifaddr 84 15K 16K 78643K 200 0 counters 39 33K 33K 78643K 39 0 ioctlops 0 0K 4K 78643K 1488 0 iov 0 0K 16K 78643K 87 0 mount 1 1K 1K 78643K 1 0 vnodes 1218 77K 77K 78643K 1545 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 5 0 VM map 2 1K 1K 78643K 2 0 sem 12 0K 0K 78643K 109 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1809 196K 290K 78643K 12766 0 file desc 4 9K 25K 78643K 369 0 sigio 0 0K 0K 78643K 6 0 proc 60 63K 95K 78643K 597 0 subproc 32 2K 2K 78643K 85 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 19 0 in_multi 61 3K 3K 78643K 112 0 ether_multi 1 0K 0K 78643K 5 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 78 344K 344K 78643K 78 0 exec 0 0K 1K 78643K 293 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 115 22K 27K 78643K 2319 0 UVM aobj 41 2K 2K 78643K 41 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 59 0 NDP 15 0K 0K 78643K 43 0 temp 148 3023K 3099K 78643K 10517 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 12 0 6 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 80 49 0 47 1 0 1 1 0 8 0 rtentry 112 79 0 37 2 0 2 2 0 8 0 unpcb 120 149 0 139 1 0 1 1 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 sackhl 24 3 0 3 1 1 0 1 0 8 0 tcpqe 32 419 0 419 1 1 0 1 0 8 0 tcpcb 544 112 0 108 1 0 1 1 0 8 0 inpcb 280 468 0 461 4 2 2 3 0 8 1 nd6 48 11 0 8 1 0 1 1 0 8 0 pkpcb 40 5 0 5 3 2 1 1 0 8 1 ppxss 1128 13 0 13 3 2 1 1 0 8 1 pffrag 232 6 0 6 3 2 1 1 0 482 1 pffrnode 88 6 0 6 3 2 1 1 0 8 1 pffrent 40 102 0 102 3 2 1 1 0 8 1 pfosfp 40 846 0 423 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 38 0 11 1 0 1 1 0 8 0 pfstkey 112 38 0 11 1 0 1 1 0 8 0 pfstate 328 38 0 11 3 0 3 3 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 375 0 174 14 1 13 14 0 8 0 art_table 32 376 0 174 2 0 2 2 0 8 0 art_node 16 78 0 39 1 0 1 1 0 8 0 sysvmsgpl 40 29 0 14 1 0 1 1 0 8 0 semupl 112 5 0 5 1 1 0 1 0 8 0 semapl 112 107 0 97 1 0 1 1 0 8 0 shmpl 112 39 0 0 2 0 2 2 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 2028 0 619 46 0 46 46 0 8 0 ffsino 272 2028 0 619 96 1 95 95 0 8 0 nchpl 144 2735 0 1129 61 0 61 61 0 8 0 uvmvnodes 72 2258 0 0 42 0 42 42 0 8 0 vnodes 208 2258 0 0 119 0 119 119 0 8 0 namei 1024 8821 0 8821 1 0 1 1 0 8 1 percpumem 16 30 0 0 1 0 1 1 0 8 0 vmpool 560 1 0 1 1 1 0 1 0 8 0 scxspl 192 8319 0 8319 12 8 4 7 0 8 4 plimitpl 152 47 0 39 1 0 1 1 0 8 0 sigapl 432 559 0 545 3 1 2 3 0 8 0 futexpl 56 6926 0 6926 1 0 1 1 0 8 1 knotepl 112 133 0 114 1 0 1 1 0 8 0 kqueuepl 104 88 0 86 1 0 1 1 0 8 0 pipepl 160 678 0 659 2 0 2 2 0 8 1 fdescpl 488 560 0 545 3 0 3 3 0 8 0 filepl 152 4663 0 4562 9 4 5 7 0 8 0 lockfpl 104 104 0 103 1 0 1 1 0 8 0 lockfspl 48 43 0 42 1 0 1 1 0 8 0 sessionpl 112 21 0 10 1 0 1 1 0 8 0 pgrppl 48 25 0 14 1 0 1 1 0 8 0 ucredpl 96 929 0 920 1 0 1 1 0 8 0 zombiepl 144 545 0 545 1 0 1 1 0 8 1 processpl 896 576 0 545 4 0 4 4 0 8 0 procpl 632 1378 0 1338 5 0 5 5 0 8 1 srpgc 64 6 0 6 2 1 1 1 0 8 1 sosppl 128 4 0 4 1 1 0 1 0 8 0 sockpl 384 677 0 658 6 3 3 5 0 8 1 mcl64k 65536 11 0 0 2 0 2 2 0 8 0 mcl16k 16384 2 0 0 1 0 1 1 0 8 0 mcl12k 12288 3 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 7 0 0 1 0 1 1 0 8 0 mcl4k 4096 7 0 0 1 0 1 1 0 8 0 mcl2k2 2112 4 0 0 1 0 1 1 0 8 0 mcl2k 2048 183 0 0 22 0 22 22 0 8 0 mtagpl 80 14 0 0 1 0 1 1 0 8 0 mbufpl 256 330 0 0 19 0 19 19 0 8 0 bufpl 280 8640 0 1570 506 0 506 506 0 8 0 anonpl 16 82701 0 66714 93 11 82 92 0 125 2 amapchunkpl 152 3736 0 3603 14 6 8 11 0 158 1 amappl16 192 3071 0 2000 67 12 55 66 0 8 1 amappl15 184 131 0 127 1 0 1 1 0 8 0 amappl14 176 47 0 44 1 0 1 1 0 8 0 amappl13 168 16 0 15 2 1 1 1 0 8 0 amappl12 160 154 0 151 2 1 1 1 0 8 0 amappl11 152 98 0 82 1 0 1 1 0 8 0 amappl10 144 16 0 9 1 0 1 1 0 8 0 amappl9 136 634 0 631 1 0 1 1 0 8 0 amappl8 128 163 0 132 2 0 2 2 0 8 0 amappl7 120 129 0 116 1 0 1 1 0 8 0 amappl6 112 86 0 81 1 0 1 1 0 8 0 amappl5 104 318 0 302 1 0 1 1 0 8 0 amappl4 96 678 0 644 1 0 1 1 0 8 0 amappl3 88 272 0 265 1 0 1 1 0 8 0 amappl2 80 3459 0 3392 3 1 2 3 0 8 0 amappl1 72 22995 0 22551 26 16 10 21 0 8 0 amappl 80 1683 0 1641 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 40 0 0 1 0 1 1 0 8 0 uaddrrnd 24 561 0 546 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 561 0 546 1 0 1 1 0 8 0 vmmpekpl 168 9473 0 9442 2 0 2 2 0 8 0 vmmpepl 168 79972 0 77810 170 24 146 146 0 357 43 vmsppl 368 560 0 546 2 0 2 2 0 8 0 pdppl 4096 1129 0 1092 6 0 6 6 0 8 1 pvpl 32 246434 0 227315 214 13 201 211 0 265 15 pmappl 232 560 0 546 3 1 2 2 0 8 1 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 174 0 5 5 0 5 5 0 8 0