3KԐ~dzn7=7X&ِ٥}DG*0y1$c@+hס(If!D-LdzG${?@xS}diX6J>*mTNin"QrC+uvm_fault(0xffffffff8254d018, 0xfffffd80276ddee0, 0, 4) -> e kernel: page fault trap, code=0 Stopped at 0xfffffd80276ddee0: addl %ebp,%edx ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic kernel page fault uvm_fault(0xffffffff8254d018, 0xfffffd80276ddee0, 0, 4) -> e fffffd80276ddee0(b,ffff800017936bb8,83,ffff800017936c58,0,b) at 0xfffffd80276ddee0 end trace frame: 0xffff800017936cb0, count: 0 ddb> trace fffffd80276ddee0(b,ffff800017936bb8,83,ffff800017936c58,0,b) at 0xfffffd80276ddee0 rt_match(fffffd80370214e0,fffffd80347512bc,1,0) at rt_match+0xbe rt_clone sys/net/route.c:266 [inline] rt_match(fffffd80370214e0,fffffd80347512bc,1,0) at rt_match+0xbe sys/net/route.c:242 ip_output(fffffd8034751400,fffffd8034751d00,fffffd80370214d0,0,0,fffffd8037021460) at ip_output+0x4d2 sys/netinet/ip_output.c:204 udp_output(fffffd8037021460,fffffd8034751400,0,0) at udp_output+0x58b sys/netinet/udp_usrreq.c:1004 sosend(fffffd803b374c68,0,ffff8000179370a0,0,0,80) at sosend+0x63d sys/kern/uipc_socket.c:524 dofilewritev(ffff800017947650,3,ffff8000179370a0,0,ffff800017937190) at dofilewritev+0x1ac sys/kern/sys_generic.c:364 sys_writev(ffff800017947650,ffff800017937148,ffff800017937190) at sys_writev+0xa7 sys/kern/sys_generic.c:311 syscall(ffff800017937210) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall(6,0,d,0,3,11b3c2f1010) at Xsyscall+0x128 end of kernel end trace frame: 0x11ded543d50, count: -9 ddb> show registers rdi 0xffff800000b86800 rsi 0xb rbp 0xffff800017936ba0 rbx 0xfffffd803d4289a8 rdx 0xfffffd803d4289a8 rcx 0xffff80001490b000 rax 0xffff80001490b000 r8 0x100 r9 0x7 r10 0x86ec3f86f99dec0 r11 0xfffffd80276ddee0 r12 0xfffffd803d4289a8 r13 0xffff800017936bb8 r14 0xffff800017936c58 r15 0xffff80000005b720 rip 0xfffffd80276ddee0 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800017936aa8 ss 0x10 0xfffffd80276ddee0: addl %ebp,%edx ddb> show proc PROC (syz-executor.1) pid=102633 stat=onproc flags process=0 proc=4000000 pri=86, usrpri=86, nice=20 forw=0xffffffffffffffff, list=0xffff800017946018,0xffffffff8255b058 process=0xffff8000ffff70f0 user=0xffff800017932000, vmspace=0xfffffd803f013330 estcpu=36, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 67246 418559 48794 0 2 0 syz-executor.1 *67246 102633 48794 0 7 0x4000000 syz-executor.1 64773 378426 84117 0 2 0 syz-executor.0 64773 505770 84117 0 3 0x4000080 fsleep syz-executor.0 84117 172325 6596 0 2 0x482 syz-executor.0 48794 58729 6596 0 3 0x82 nanosleep syz-executor.1 5696 516655 1 0 3 0x100083 ttyin getty 186 201836 0 0 3 0x14200 bored sosplice 6596 452044 47313 0 3 0x82 thrsleep syz-fuzzer 6596 286273 47313 0 3 0x4000082 thrsleep syz-fuzzer 6596 45926 47313 0 3 0x4000082 thrsleep syz-fuzzer 6596 61455 47313 0 3 0x4000082 thrsleep syz-fuzzer 6596 110654 47313 0 3 0x4000082 thrsleep syz-fuzzer 6596 3617 47313 0 3 0x4000082 thrsleep syz-fuzzer 6596 435800 47313 0 3 0x4000082 thrsleep syz-fuzzer 6596 419216 47313 0 3 0x4000082 kqread syz-fuzzer 47313 501517 90091 0 3 0x10008a pause ksh 90091 314540 58778 0 3 0x92 select sshd 58778 287746 1 0 3 0x80 select sshd 72949 101347 83180 73 2 0x100090 syslogd 83180 106499 1 0 3 0x100082 netio syslogd 34598 452441 1 77 3 0x100090 poll dhclient 43377 86448 1 0 3 0x80 poll dhclient 2469 112276 0 0 2 0x14200 zerothread 95299 282760 0 0 3 0x14200 aiodoned aiodoned 44059 33851 0 0 3 0x14200 syncer update 32945 323146 0 0 3 0x14200 cleaner cleaner 17899 158247 0 0 3 0x14200 reaper reaper 51243 216813 0 0 3 0x14200 pgdaemon pagedaemon 42705 205615 0 0 3 0x14200 bored crynlk 91282 164817 0 0 3 0x14200 bored crypto 60009 108472 0 0 3 0x40014200 acpi0 acpi0 70852 75160 0 0 3 0x14200 bored softnet 28346 389802 0 0 3 0x14200 bored systqmp 60751 319833 0 0 3 0x14200 bored systq 90274 189005 0 0 2 0x40014200 softclock 93793 358848 0 0 3 0x40014200 idle0 27550 353873 0 0 3 0x14200 bored smr 1 237270 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9600 7035K 7807K 78643K 26655 0 0 pcb 13 10K 12K 78643K 1114 0 0 rtable 116 12K 13K 78643K 3854 0 0 ifaddr 106 23K 24K 78643K 892 0 0 counters 19 16K 16K 78643K 19 0 0 ioctlops 0 0K 2K 78643K 368 0 0 iov 0 0K 32K 78643K 1229 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1219 77K 78K 78643K 7957 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 5K 78643K 104 0 0 VM map 44 11K 11K 78643K 70 0 0 sem 12 0K 1K 78643K 1197 0 0 dirhash 12 2K 2K 78643K 12 0 0 ACPI 1793 195K 288K 78643K 12645 0 0 file desc 6 17K 25K 78643K 5280 0 0 sigio 0 0K 0K 78643K 128 0 0 proc 50 38K 63K 78643K 2206 0 0 subproc 32 2K 2K 78643K 595 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 ip_moptions 0 0K 0K 78643K 440 0 0 in_multi 30 1K 2K 78643K 659 0 0 ether_multi 1 0K 0K 78643K 36 0 0 mrt 1 0K 0K 78643K 32 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 78 344K 344K 78643K 78 0 0 exec 0 0K 1K 78643K 1188 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 161 380K 384K 78643K 14163 0 0 UVM aobj 130 4K 4K 78643K 148 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 ip6_options 0 0K 0K 78643K 1084 0 0 NDP 24 0K 1K 78643K 301 0 0 temp 254 3541K 4176K 78643K 230475 0 0 kqueue 0 0K 0K 78643K 57 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 163 0 157 1 0 1 1 0 8 0 rtpcb 80 655 0 653 1 0 1 1 0 8 0 rtentry 112 784 0 744 2 0 2 2 0 8 0 unpcb 120 2243 0 2235 1 0 1 1 0 8 0 syncache 264 34 0 34 13 13 0 1 0 8 0 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpqe 32 4345 0 4345 4 4 0 1 0 8 0 tcpcb 544 7092 0 7084 21 19 2 3 0 8 1 ipq 40 30 0 30 11 11 0 1 0 8 0 ipqe 40 84 0 84 11 11 0 1 0 8 0 inpcb 280 10928 0 10917 33 30 3 13 0 8 2 rttmr 72 10 0 9 1 0 1 1 0 8 0 nd6 48 93 0 91 5 4 1 1 0 8 0 pkpcb 40 12 0 12 5 5 0 1 0 8 0 swfcl 56 6 0 0 1 0 1 1 0 8 0 ppxss 1128 101 0 101 21 20 1 1 0 8 1 art_heap8 4096 30 0 28 15 13 2 3 0 8 0 art_heap4 256 3016 0 2801 40 25 15 18 0 8 1 art_table 32 3046 0 2829 6 3 3 3 0 8 0 art_node 16 783 0 746 1 0 1 1 0 8 0 sysvmsgpl 40 49 0 27 1 0 1 1 0 8 0 semupl 112 4 0 4 1 1 0 1 0 8 0 semapl 112 1195 0 1185 1 0 1 1 0 8 0 shmpl 112 146 0 18 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 9569 0 8158 46 0 46 46 0 8 0 ffsino 240 9569 0 8158 84 0 84 84 0 8 0 nchpl 144 17084 0 15476 61 0 61 61 0 8 0 uvmvnodes 72 7102 0 0 130 0 130 130 0 8 0 vnodes 208 7102 0 0 374 0 374 374 0 8 0 namei 1024 62863 0 62863 7 6 1 1 0 8 1 vcpupl 1984 43 0 1 6 0 6 6 0 8 0 vmpool 520 68 0 26 4 1 3 3 0 8 0 scsiplug 64 7 0 7 5 4 1 1 0 8 1 scxspl 192 63642 0 63642 39 37 2 7 0 8 2 plimitpl 152 423 0 416 1 0 1 1 0 8 0 sigapl 432 5359 0 5345 2 0 2 2 0 8 0 futexpl 56 137997 0 137996 6 5 1 1 0 8 0 knotepl 112 1671 0 1652 4 3 1 2 0 8 0 kqueuepl 104 1567 0 1565 1 0 1 1 0 8 0 pipepl 112 3406 0 3387 16 14 2 2 0 8 1 fdescpl 424 5360 0 5345 2 0 2 2 0 8 0 filepl 120 47885 0 47784 26 21 5 11 0 8 1 lockfpl 104 3263 0 3262 1 0 1 1 0 8 0 lockfspl 48 998 0 997 1 0 1 1 0 8 0 sessionpl 112 57 0 47 1 0 1 1 0 8 0 pgrppl 48 153 0 143 1 0 1 1 0 8 0 ucredpl 96 7387 0 7379 1 0 1 1 0 8 0 zombiepl 144 5351 0 5351 5 4 1 1 0 8 1 processpl 864 5381 0 5351 4 0 4 4 0 8 0 procpl 632 11661 0 11622 4 0 4 4 0 8 0 sosppl 128 113 0 113 18 17 1 1 0 8 1 sockpl 384 13912 0 13891 56 51 5 21 0 8 2 mcl64k 65536 1544 0 1544 134 133 1 64 0 8 1 mcl16k 16384 61 0 61 19 19 0 1 0 8 0 mcl12k 12288 152 0 152 16 15 1 1 0 8 1 mcl9k 9216 105 0 105 22 21 1 1 0 8 1 mcl8k 8192 192 0 192 12 11 1 1 0 8 1 mcl4k 4096 511 0 511 9 8 1 1 0 8 1 mcl2k2 2112 51 0 51 17 16 1 1 0 8 1 mcl2k 2048 73144 0 73101 24 17 7 13 0 8 0 mtagpl 80 347 0 335 4 3 1 1 0 8 0 mbufpl 256 168479 0 168371 169 159 10 39 0 8 1 bufpl 256 30076 0 22975 444 0 444 444 0 8 0 anonpl 16 666354 0 649532 232 144 88 102 0 62 8 amapchunkpl 152 29077 0 28956 89 70 19 19 0 158 13 amappl16 192 32009 0 30935 263 197 66 69 0 8 11 amappl15 184 1391 0 1387 6 5 1 1 0 8 0 amappl14 176 1262 0 1257 2 1 1 1 0 8 0 amappl13 168 239 0 238 1 0 1 1 0 8 0 amappl12 160 807 0 804 1 0 1 1 0 8 0 amappl11 152 1381 0 1370 1 0 1 1 0 8 0 amappl10 144 212 0 212 7 7 0 1 0 8 0 amappl9 136 1233 0 1227 1 0 1 1 0 8 0 amappl8 128 767 0 723 2 0 2 2 0 8 0 amappl7 120 378 0 369 1 0 1 1 0 8 0 amappl6 112 1301 0 1288 1 0 1 1 0 8 0 amappl5 104 1217 0 1207 1 0 1 1 0 8 0 amappl4 96 5002 0 4972 1 0 1 1 0 8 0 amappl3 88 2156 0 2149 1 0 1 1 0 8 0 amappl2 80 41089 0 41007 4 2 2 3 0 8 0 amappl1 72 107936 0 107504 26 17 9 20 0 8 0 amappl 80 12524 0 12460 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 17 0 17 1 1 0 1 0 8 0 aobjpl 64 147 0 18 3 0 3 3 0 8 0 uaddrrnd 24 5428 0 5345 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 5428 0 5345 1 0 1 1 0 8 0 vmmpekpl 168 34436 0 34392 4 1 3 3 0 8 0 vmmpepl 168 657651 0 655300 365 227 138 142 0 357 30 vmsppl 272 5359 0 5345 3 2 1 2 0 8 0 pdppl 4096 10862 0 10784 17 7 10 11 0 8 0 pvpl 32 1729316 0 1709556 476 272 204 277 0 265 23 pmappl 200 5427 0 5371 5 2 3 4 0 8 0 extentpl 40 41 0 26 1 0 1 1 0 8 0 phpool 112 1003 0 421 19 1 18 19 0 8 0