uvm_fault(0xffffffff82359488, 0xffff800000b22000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at strlcpy+0xcf: movzbl 0xffffffffffffffff(%rbx),%r15d ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic kernel page fault uvm_fault(0xffffffff82359488, 0xffff800000b22000, 0, 1) -> e strlcpy(ffff800000a88350,ffff800000b21ee2,20) at strlcpy+0xcf sys/lib/libkern/strlcpy.c:44 end trace frame: 0xffff800021c312b0, count: 0 ddb{0}> trace strlcpy(ffff800000a88350,ffff800000b21ee2,20) at strlcpy+0xcf sys/lib/libkern/strlcpy.c:44 rtlabel_name2id(ffff800000b21ee2) at rtlabel_name2id+0x13d sys/net/route.c:1614 rtrequest(1,ffff800021c31460,0,ffff800021c313d8,0) at rtrequest+0x64b sys/net/route.c:893 rtm_output(ffff800000b21e00,ffff800021c31510,ffff800021c31460,0,0) at rtm_output+0x6e1 sys/net/rtsock.c:900 route_output(fffffd807f01dc00,fffffd806f701600,0,0) at route_output+0x7e2 sys/net/rtsock.c:818 route_usrreq(fffffd806f701600,9,fffffd807f01dc00,0,0,ffff800020b293d8) at route_usrreq+0x363 sys/net/rtsock.c:275 sosend(fffffd806f701600,0,ffff800021c31700,0,0,80) at sosend+0x668 sys/kern/uipc_socket.c:524 sendit(ffff800020b293d8,3,ffff800021c317e0,0,ffff800021c318e0) at sendit+0x52f sys/kern/uipc_syscalls.c:662 sys_sendto(ffff800020b293d8,ffff800021c31878,ffff800021c318e0) at sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 syscall(ffff800021c31950) at syscall+0x552 mi_syscall sys/sys/syscall_mi.h:92 [inline] syscall(ffff800021c31950) at syscall+0x552 sys/arch/amd64/amd64/trap.c:555 Xsyscall(6,0,ffffffffffffffd8,0,6,55219e49010) at Xsyscall+0x128 end of kernel end trace frame: 0x554d509ac50, count: -11 ddb{0}> show registers rdi 0xffffffff81bcf2e5 strlcpy+0xc5 rsi 0x5e6 rbp 0xffff800021c31260 rbx 0xffff800000b22001 rdx 0x5e7 rcx 0xffff800020c26000 rax 0xffff800020c26000 r8 0x38 r9 0x5 r10 0xc728fdf31deb61d5 r11 0xe48bc2e24eb457e4 r12 0 r13 0x27 r14 0xffff800000b21ee2 r15 0x32 rip 0xffffffff81bcf2ef strlcpy+0xcf cs 0x8 rflags 0x10282 __ALIGN_SIZE+0xf282 rsp 0xffff800021c31210 ss 0x10 strlcpy+0xcf: movzbl 0xffffffffffffffff(%rbx),%r15d ddb{0}> show proc PROC (syz-executor.0) pid=195810 stat=onproc flags process=0 proc=4000000 pri=86, usrpri=86, nice=20 forw=0xffffffffffffffff, list=0xffff800020b28780,0xffffffff823a37f8 process=0xffff800020b7d180 user=0xffff800021c2c000, vmspace=0xfffffd807effda10 estcpu=36, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 62644 403958 99515 0 7 0 syz-executor.0 *62644 195810 99515 0 7 0x4000000 syz-executor.0 99515 333303 97812 0 3 0x82 nanosleep syz-executor.0 62116 98575 97812 0 2 0x482 syz-executor.1 26379 102118 1 0 3 0x100083 ttyin getty 19259 498987 0 0 3 0x14200 bored sosplice 97812 29840 50476 0 3 0x82 thrsleep syz-fuzzer 97812 320642 50476 0 2 0x4000482 syz-fuzzer 97812 82951 50476 0 3 0x4000082 thrsleep syz-fuzzer 97812 142376 50476 0 3 0x4000082 kqread syz-fuzzer 97812 308532 50476 0 3 0x4000082 thrsleep syz-fuzzer 97812 82796 50476 0 3 0x4000082 thrsleep syz-fuzzer 97812 185334 50476 0 3 0x4000082 thrsleep syz-fuzzer 97812 438007 50476 0 3 0x4000082 thrsleep syz-fuzzer 97812 72055 50476 0 3 0x4000082 thrsleep syz-fuzzer 97812 225061 50476 0 3 0x4000082 thrsleep syz-fuzzer 50476 234934 10154 0 3 0x10008a pause ksh 10154 244884 86469 0 3 0x92 select sshd 86469 324308 1 0 3 0x80 select sshd 81889 475316 23826 74 3 0x100092 bpf pflogd 23826 319650 1 0 3 0x80 netio pflogd 53654 211508 1560 73 3 0x100090 kqread syslogd 1560 311679 1 0 3 0x100082 netio syslogd 78181 464086 1 77 3 0x100090 poll dhclient 85642 356668 1 0 3 0x80 poll dhclient 98715 214609 0 0 3 0x14200 pgzero zerothread 63774 284689 0 0 3 0x14200 aiodoned aiodoned 30875 248480 0 0 3 0x14200 syncer update 77456 239734 0 0 3 0x14200 cleaner cleaner 10864 292059 0 0 3 0x14200 reaper reaper 39014 379300 0 0 3 0x14200 pgdaemon pagedaemon 69943 273549 0 0 3 0x14200 bored crynlk 6752 41537 0 0 3 0x14200 bored crypto 21948 120152 0 0 3 0x40014200 acpi0 acpi0 2126 614 0 0 3 0x40014200 idle1 45438 228159 0 0 3 0x14200 bored softnet 53003 22739 0 0 3 0x14200 bored systqmp 55531 370210 0 0 3 0x14200 bored systq 27052 471927 0 0 3 0x40014200 bored softclock 95863 399683 0 0 3 0x40014200 idle0 48089 51359 0 0 3 0x14200 bored smr 1 216256 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 62644 (syz-executor.0) thread 0xffff800020b293d8 (195810) exclusive rwlock netlock r = 0 (0xffffffff821b8dc8) #0 witness_lock+0x52e sys/kern/subr_witness.c:1163 #1 rtm_output+0x64d sys/net/rtsock.c:896 #2 route_output+0x7e2 sys/net/rtsock.c:818 #3 route_usrreq+0x363 sys/net/rtsock.c:275 #4 sosend+0x668 sys/kern/uipc_socket.c:524 #5 sendit+0x52f sys/kern/uipc_syscalls.c:662 #6 sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 #7 syscall+0x552 mi_syscall sys/sys/syscall_mi.h:92 [inline] #7 syscall+0x552 sys/arch/amd64/amd64/trap.c:555 #8 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 1 (0xffffffff82363690) #0 witness_lock+0x52e sys/kern/subr_witness.c:1163 #1 solock+0x66 sys/kern/uipc_socket2.c:292 #2 sosend+0x52c sys/kern/uipc_socket.c:512 #3 sendit+0x52f sys/kern/uipc_syscalls.c:662 #4 sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 #5 syscall+0x552 mi_syscall sys/sys/syscall_mi.h:92 [inline] #5 syscall+0x552 sys/arch/amd64/amd64/trap.c:555 #6 Xsyscall+0x128 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9664 6612K 10708K 78643K 47143 0 0 pcb 13 8K 8K 78643K 994 0 0 rtable 122 13K 13K 78643K 2945 0 0 ifaddr 99 25K 28K 78643K 1503 0 0 counters 39 33K 33K 78643K 39 0 0 ioctlops 0 0K 4K 78643K 2118 0 0 iov 0 0K 32K 78643K 1588 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1200 75K 77K 78643K 13813 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 5K 78643K 162 0 0 VM map 2 1K 1K 78643K 2 0 0 sem 12 0K 1K 78643K 1564 0 0 dirhash 12 2K 2K 78643K 12 0 0 ACPI 1808 196K 290K 78643K 12765 0 0 file desc 5 13K 25K 78643K 13788 0 0 sigio 0 0K 0K 78643K 192 0 0 proc 54 51K 83K 78643K 1987 0 0 subproc 32 2K 2K 78643K 95 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 ip_moptions 0 0K 0K 78643K 1289 0 0 in_multi 33 2K 2K 78643K 498 0 0 ether_multi 1 0K 0K 78643K 66 0 0 mrt 0 0K 0K 78643K 83 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 132 583K 583K 78643K 132 0 0 exec 0 0K 1K 78643K 1271 0 0 pfkey data 0 0K 4K 78643K 8 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 115 22K 32K 78643K 46205 0 0 UVM aobj 130 4K 4K 78643K 158 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 ip6_options 0 0K 1K 78643K 630 0 0 NDP 25 0K 1K 78643K 405 0 0 temp 263 2749K 3389K 78643K 46372 0 0 kqueue 0 0K 0K 78643K 148 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 15 0 8 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 80 549 0 546 1 0 1 1 0 8 0 rtentry 112 114 0 68 2 0 2 2 0 8 0 unpcb 120 3881 0 3871 1 0 1 1 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpqe 32 7884 0 7884 3 3 0 2 0 8 0 tcpcb 544 2233 0 2229 1 0 1 1 0 8 0 inpcb 280 6098 0 6090 8 7 1 2 0 8 0 rttmr 72 17 0 17 12 12 0 1 0 8 0 ip6q 72 6 0 6 4 4 0 1 0 8 0 ip6af 48 12 0 12 4 4 0 1 0 8 0 nd6 48 15 0 9 1 0 1 1 0 8 0 pkpcb 40 76 0 76 30 29 1 1 0 8 1 swfcl 56 6 0 0 1 0 1 1 0 8 0 ppxss 1128 313 0 313 45 44 1 1 0 8 1 pffrag 232 10 0 10 6 6 0 1 0 482 0 pffrnode 88 10 0 10 6 6 0 1 0 8 0 pffrent 40 28 0 28 8 8 0 1 0 8 0 pfosfp 40 846 0 846 5 5 0 5 0 8 0 pfosfpen 112 1428 0 1428 21 21 0 21 0 8 0 pfstitem 24 196 0 180 1 0 1 1 0 8 0 pfstkey 112 196 0 180 1 0 1 1 0 8 0 pfstate 328 196 0 180 5 3 2 3 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 358 0 160 15 2 13 14 0 8 0 art_table 32 359 0 160 2 0 2 2 0 8 0 art_node 16 96 0 55 1 0 1 1 0 8 0 sysvmsgpl 40 10 0 6 1 0 1 1 0 8 0 semupl 112 2 0 2 2 2 0 1 0 8 0 semapl 112 1562 0 1552 1 0 1 1 0 8 0 shmpl 112 156 0 28 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 23614 0 22177 47 0 47 47 0 8 0 ffsino 272 23614 0 22177 97 0 97 97 0 8 0 nchpl 144 43003 0 41372 62 0 62 62 0 8 0 uvmvnodes 72 5926 0 0 108 0 108 108 0 8 0 vnodes 200 5926 0 0 312 0 312 312 0 8 0 namei 1024 136724 0 136724 7 6 1 1 0 8 1 percpumem 16 30 0 0 1 0 1 1 0 8 0 scsiplug 64 27 0 27 15 15 0 1 0 8 0 scxspl 192 133866 0 133866 66 65 1 6 0 8 1 plimitpl 152 1151 0 1143 1 0 1 1 0 8 0 sigapl 432 13982 0 13967 3 1 2 3 0 8 0 futexpl 56 168508 0 168508 8 7 1 1 0 8 1 knotepl 112 2445 0 2426 1 0 1 1 0 8 0 kqueuepl 104 3077 0 3075 1 0 1 1 0 8 0 pipepl 112 7332 0 7311 13 12 1 2 0 8 0 fdescpl 488 13983 0 13967 3 0 3 3 0 8 0 filepl 152 81483 0 81381 13 8 5 7 0 8 0 lockfpl 104 4883 0 4883 8 7 1 1 0 8 1 lockfspl 48 1721 0 1721 8 7 1 1 0 8 1 sessionpl 112 24 0 13 1 0 1 1 0 8 0 pgrppl 48 183 0 172 1 0 1 1 0 8 0 ucredpl 96 16445 0 16436 1 0 1 1 0 8 0 zombiepl 144 13967 0 13966 10 9 1 1 0 8 0 processpl 896 13999 0 13966 4 0 4 4 0 8 0 procpl 632 44834 0 44791 31 26 5 5 0 8 1 srpgc 64 21 0 21 15 15 0 1 0 8 0 sosppl 128 136 0 136 37 37 0 1 0 8 0 sockpl 384 10734 0 10714 17 14 3 4 0 8 1 mcl64k 65536 745 0 0 88 83 5 34 0 8 0 mcl16k 16384 12 0 0 2 0 2 2 0 8 0 mcl12k 12288 33 0 0 2 0 2 2 0 8 0 mcl9k 9216 47 0 0 3 1 2 2 0 8 0 mcl8k 8192 17 0 0 3 0 3 3 0 8 0 mcl4k 4096 49 0 0 5 2 3 3 0 8 0 mcl2k2 2112 13 0 0 1 0 1 1 0 8 0 mcl2k 2048 290 0 0 25 18 7 25 0 8 0 mtagpl 80 120 0 0 3 0 3 3 0 8 0 mbufpl 256 1097 0 0 28 0 28 28 0 8 0 bufpl 256 43701 0 36672 440 0 440 440 0 8 0 anonpl 16 1180198 0 1168413 288 231 57 65 0 125 0 amapchunkpl 152 82866 0 82731 114 106 8 20 0 158 0 amappl16 192 73572 0 72944 316 283 33 44 0 8 1 amappl15 184 21 0 19 1 0 1 1 0 8 0 amappl14 176 69 0 65 1 0 1 1 0 8 0 amappl13 168 5703 0 5702 1 0 1 1 0 8 0 amappl12 160 8 0 6 1 0 1 1 0 8 0 amappl11 152 3113 0 3098 1 0 1 1 0 8 0 amappl10 144 1290 0 1283 1 0 1 1 0 8 0 amappl9 136 641 0 638 1 0 1 1 0 8 0 amappl8 128 188 0 165 1 0 1 1 0 8 0 amappl7 120 1261 0 1253 1 0 1 1 0 8 0 amappl6 112 3099 0 3093 1 0 1 1 0 8 0 amappl5 104 244 0 230 1 0 1 1 0 8 0 amappl4 96 14308 0 14276 2 1 1 2 0 8 0 amappl3 88 636 0 626 1 0 1 1 0 8 0 amappl2 80 111204 0 111133 4 2 2 3 0 8 0 amappl1 72 311872 0 311445 24 14 10 19 0 8 0 amappl 80 45228 0 45184 2 0 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma64 64 259 0 259 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 17 0 17 1 1 0 1 0 8 0 aobjpl 64 157 0 28 3 0 3 3 0 8 0 uaddrrnd 24 13983 0 13967 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 13983 0 13967 1 0 1 1 0 8 0 vmmpekpl 168 100143 0 100111 2 0 2 2 0 8 0 vmmpepl 168 1684496 0 1682748 350 267 83 98 0 357 2 vmsppl 368 13982 0 13967 2 0 2 2 0 8 0 pdppl 4096 27974 0 27934 6 0 6 6 0 8 0 pvpl 32 3199428 0 3184417 641 507 134 164 0 265 0 pmappl 232 13982 0 13967 2 1 1 2 0 8 0 extentpl 40 41 0 26 1 0 1 1 0 8 0 phpool 112 727 0 114 19 0 19 19 0 8 0