uvm_fault(0xffffffff8253d268, 0xffff800000b78000, 0, 1) -> e kernel: page fault trap, code=0 Stopped at strlcpy+0xcf: movzbl 0xffffffffffffffff(%rbx),%r15d ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic kernel page fault uvm_fault(0xffffffff8253d268, 0xffff800000b78000, 0, 1) -> e strlcpy(ffff800000a46690,ffff800000b77ee2,20) at strlcpy+0xcf sys/lib/libkern/strlcpy.c:44 end trace frame: 0xffff800021b58b70, count: 0 ddb{0}> trace strlcpy(ffff800000a46690,ffff800000b77ee2,20) at strlcpy+0xcf sys/lib/libkern/strlcpy.c:44 rtlabel_name2id(ffff800000b77ee2) at rtlabel_name2id+0x13d sys/net/route.c:1614 rtrequest(1,ffff800021b58d28,0,ffff800021b58c98,0) at rtrequest+0x653 sys/net/route.c:893 rtm_output(ffff800000b77e00,ffff800021b58dd8,ffff800021b58d28,0,0) at rtm_output+0x62f sys/net/rtsock.c:901 route_output(fffffd8063197e00,fffffd807d64c4c8,0,0) at route_output+0x7c4 sys/net/rtsock.c:819 route_usrreq(fffffd807d64c4c8,9,fffffd8063197e00,0,0,ffff800020ab1160) at route_usrreq+0x363 sys/net/rtsock.c:275 sosend(fffffd807d64c4c8,0,ffff800021b58fc0,0,0,e983c9c0) at sosend+0x645 sys/kern/uipc_socket.c:524 sendit(ffff800020ab1160,3,ffff800021b590a0,e983c940,ffff800021b59180) at sendit+0x52b sys/kern/uipc_syscalls.c:662 sys_sendto(ffff800020ab1160,ffff800021b59138,ffff800021b59180) at sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 syscall(ffff800021b59200) at syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:92 [inline] syscall(ffff800021b59200) at syscall+0x4a4 sys/arch/amd64/amd64/trap.c:555 Xsyscall(6,0,ffffffffffffffd8,0,6,10c0066e010) at Xsyscall+0x128 end of kernel end trace frame: 0x10e8d9b3060, count: -11 ddb{0}> show registers rdi 0xffffffff8145d0a5 strlcpy+0xc5 rsi 0x5d6 rbp 0xffff800021b58b20 rbx 0xffff800000b78001 rdx 0x5d7 rcx 0xffff800021d5a000 rax 0xffff800021d5a000 r8 0x38 r9 0x5 r10 0xc0c6c1e2aa8e3278 r11 0x1eca745e7c9c1388 r12 0 r13 0xc7 r14 0xffff800000b77ee2 r15 0xff rip 0xffffffff8145d0af strlcpy+0xcf cs 0x8 rflags 0x10282 __ALIGN_SIZE+0xf282 rsp 0xffff800021b58ad0 ss 0x10 strlcpy+0xcf: movzbl 0xffffffffffffffff(%rbx),%r15d ddb{0}> show proc PROC (syz-executor.1) pid=273622 stat=onproc flags process=0 proc=4000000 pri=81, usrpri=81, nice=20 forw=0xffffffffffffffff, list=0xffff800020ab1b40,0xffffffff82626910 process=0xffff800020adce00 user=0xffff800021b54000, vmspace=0xfffffd807f00cb80 estcpu=31, cpticks=0, pctcpu=0.1 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 17564 306897 74896 0 2 0 syz-executor.1 *17564 273622 74896 0 7 0x4000000 syz-executor.1 74896 498940 49190 0 3 0x82 nanosleep syz-executor.1 12244 418453 49190 0 3 0x82 nanosleep syz-executor.0 78663 264943 1 0 3 0x100083 ttyin getty 5502 35036 0 0 3 0x14200 bored sosplice 49190 159808 83222 0 3 0x82 thrsleep syz-fuzzer 49190 234442 83222 0 3 0x4000082 nanosleep syz-fuzzer 49190 165195 83222 0 3 0x4000082 thrsleep syz-fuzzer 49190 412859 83222 0 2 0x4000482 syz-fuzzer 49190 102661 83222 0 3 0x4000082 thrsleep syz-fuzzer 49190 349166 83222 0 3 0x4000082 thrsleep syz-fuzzer 49190 42929 83222 0 3 0x4000082 kqread syz-fuzzer 49190 196394 83222 0 3 0x4000082 thrsleep syz-fuzzer 49190 274464 83222 0 3 0x4000082 thrsleep syz-fuzzer 49190 479433 83222 0 3 0x4000082 thrsleep syz-fuzzer 83222 190540 85258 0 3 0x10008a pause ksh 85258 382183 49621 0 3 0x92 select sshd 49621 260047 1 0 3 0x80 select sshd 12612 339799 22608 74 3 0x100092 bpf pflogd 22608 377887 1 0 3 0x80 netio pflogd 80448 191529 95105 73 7 0x100090 syslogd 95105 39484 1 0 3 0x100082 netio syslogd 32970 112735 1 77 3 0x100090 poll dhclient 69918 349853 1 0 3 0x80 poll dhclient 14858 181306 0 0 3 0x14200 pgzero zerothread 23020 342548 0 0 3 0x14200 aiodoned aiodoned 32534 104142 0 0 2 0x14200 update 26432 447474 0 0 3 0x14200 cleaner cleaner 38065 170002 0 0 3 0x14200 reaper reaper 40267 468984 0 0 3 0x14200 pgdaemon pagedaemon 49127 192653 0 0 3 0x14200 bored crynlk 66280 300626 0 0 3 0x14200 bored crypto 17701 73678 0 0 3 0x40014200 acpi0 acpi0 42165 275190 0 0 3 0x40014200 idle1 39470 298854 0 0 3 0x14200 bored softnet 74440 294937 0 0 3 0x14200 bored systqmp 84019 414600 0 0 3 0x14200 bored systq 60322 291158 0 0 3 0x40014200 bored softclock 17525 200001 0 0 3 0x40014200 idle0 71212 133061 0 0 3 0x14200 bored smr 1 144887 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 17564 (syz-executor.1) thread 0xffff800020ab1160 (273622) exclusive rwlock netlock r = 0 (0xffffffff824a9fd8) #0 witness_lock+0x52e sys/kern/subr_witness.c:1163 #1 rtm_output+0x5c3 sys/net/rtsock.c:897 #2 route_output+0x7c4 sys/net/rtsock.c:819 #3 route_usrreq+0x363 sys/net/rtsock.c:275 #4 sosend+0x645 sys/kern/uipc_socket.c:524 #5 sendit+0x52b sys/kern/uipc_syscalls.c:662 #6 sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 #7 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:92 [inline] #7 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:555 #8 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 1 (0xffffffff8261f8b0) #0 witness_lock+0x52e sys/kern/subr_witness.c:1163 #1 solock+0x66 sys/kern/uipc_socket2.c:292 #2 sosend+0x51b sys/kern/uipc_socket.c:512 #3 sendit+0x52b sys/kern/uipc_syscalls.c:662 #4 sys_sendto+0x80 sys/kern/uipc_syscalls.c:527 #5 syscall+0x4a4 mi_syscall sys/sys/syscall_mi.h:92 [inline] #5 syscall+0x4a4 sys/arch/amd64/amd64/trap.c:555 #6 Xsyscall+0x128 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9597 6482K 7121K 78643K 13202 0 0 pcb 13 12K 14K 78643K 808 0 0 rtable 104 13K 13K 78643K 2341 0 0 ifaddr 75 18K 21K 78643K 733 0 0 counters 39 33K 33K 78643K 39 0 0 ioctlops 0 0K 4K 78643K 1666 0 0 iov 0 0K 28K 78643K 734 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1207 76K 77K 78643K 3610 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 9K 78643K 108 0 0 VM map 2 1K 1K 78643K 8 0 0 sem 12 0K 0K 78643K 2505 0 0 dirhash 12 2K 2K 78643K 12 0 0 ACPI 1808 196K 290K 78643K 12765 0 0 file desc 5 13K 25K 78643K 6044 0 0 sigio 0 0K 0K 78643K 64 0 0 proc 62 63K 95K 78643K 2007 0 0 subproc 32 2K 2K 78643K 505 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 ip_moptions 0 0K 0K 78643K 564 0 0 in_multi 23 1K 2K 78643K 455 0 0 ether_multi 1 0K 0K 78643K 18 0 0 mrt 2 0K 0K 78643K 27 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 192 848K 848K 78643K 192 0 0 exec 0 0K 1K 78643K 1766 0 0 pfkey data 0 0K 0K 78643K 2 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 132 23K 32K 78643K 21125 0 0 UVM aobj 130 5K 5K 78643K 145 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 ip6_options 0 0K 1K 78643K 790 0 0 NDP 18 0K 0K 78643K 233 0 0 temp 214 3556K 4196K 78643K 73157 0 0 kqueue 0 0K 0K 78643K 39 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 63 0 59 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 80 322 0 319 1 0 1 1 0 8 0 rtentry 112 347 0 312 2 0 2 2 0 8 0 unpcb 120 2873 0 2857 5 4 1 2 0 8 0 syncache 264 18 0 18 10 10 0 1 0 8 0 tcpqe 32 6662 0 6662 2 2 0 1 0 8 0 tcpcb 544 2439 0 2435 53 52 1 14 0 8 0 inpcb 280 5669 0 5662 69 67 2 13 0 8 1 rttmr 72 4 0 4 4 4 0 1 0 8 0 nd6 48 56 0 54 1 0 1 1 0 8 0 pkpcb 40 25 0 25 10 10 0 1 0 8 0 ppxss 1128 99 0 99 16 15 1 1 0 8 1 pffrag 232 12 0 12 6 6 0 1 0 482 0 pffrnode 88 12 0 12 6 6 0 1 0 8 0 pffrent 40 28 0 28 7 6 1 1 0 8 1 pfosfp 40 846 0 846 5 5 0 5 0 8 0 pfosfpen 112 1428 0 1428 21 21 0 21 0 8 0 pfstitem 24 174 0 158 1 0 1 1 0 8 0 pfstkey 112 174 0 158 2 0 2 2 0 8 0 pfstate 328 174 0 158 4 1 3 4 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 3 0 2 3 2 1 3 0 8 0 art_heap4 256 1440 0 1268 16 4 12 15 0 8 1 art_table 32 1443 0 1270 2 0 2 2 0 8 0 art_node 16 337 0 306 1 0 1 1 0 8 0 sysvmsgpl 40 37 0 31 1 0 1 1 0 8 0 semupl 112 4 0 4 1 1 0 1 0 8 0 semapl 112 2503 0 2493 1 0 1 1 0 8 0 shmpl 112 143 0 15 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 10726 0 9316 46 0 46 46 0 8 0 ffsino 272 10726 0 9316 95 0 95 95 0 8 0 nchpl 144 24200 0 22563 61 0 61 61 0 8 0 uvmvnodes 72 6105 0 0 111 0 111 111 0 8 0 vnodes 208 6105 0 0 322 0 322 322 0 8 0 namei 1024 77362 0 77362 2 1 1 1 0 8 1 percpumem 16 30 0 0 1 0 1 1 0 8 0 vmpool 552 6 0 6 3 3 0 1 0 8 0 scsiplug 64 10 0 10 8 8 0 1 0 8 0 scxspl 192 59129 0 59129 39 38 1 7 0 8 1 plimitpl 152 533 0 525 1 0 1 1 0 8 0 sigapl 432 6166 0 6151 3 1 2 3 0 8 0 futexpl 56 114202 0 114202 2 1 1 1 0 8 1 knotepl 112 1351 0 1332 3 2 1 2 0 8 0 kqueuepl 104 1765 0 1763 13 12 1 4 0 8 0 pipepl 112 3046 0 3027 8 6 2 2 0 8 0 fdescpl 488 6167 0 6151 3 0 3 3 0 8 0 filepl 152 53354 0 53253 68 63 5 14 0 8 0 lockfpl 104 3296 0 3295 1 0 1 1 0 8 0 lockfspl 48 1266 0 1265 1 0 1 1 0 8 0 sessionpl 112 48 0 37 1 0 1 1 0 8 0 pgrppl 48 94 0 83 1 0 1 1 0 8 0 ucredpl 96 9006 0 8997 1 0 1 1 0 8 0 zombiepl 144 6151 0 6150 2 1 1 1 0 8 0 processpl 896 6183 0 6150 4 0 4 4 0 8 0 procpl 632 19027 0 18984 9 4 5 5 0 8 1 srpgc 64 58 0 58 18 17 1 1 0 8 1 sosppl 128 73 0 73 19 18 1 1 0 8 1 sockpl 384 8953 0 8927 106 102 4 22 0 8 1 mcl64k 65536 17 0 0 3 0 3 3 0 8 0 mcl16k 16384 17 0 0 3 0 3 3 0 8 0 mcl12k 12288 25 0 0 2 0 2 2 0 8 0 mcl9k 9216 20 0 0 2 0 2 2 0 8 0 mcl8k 8192 30 0 0 4 1 3 3 0 8 0 mcl4k 4096 33 0 0 4 1 3 3 0 8 0 mcl2k2 2112 9 0 0 1 0 1 1 0 8 0 mcl2k 2048 156 0 0 18 1 17 18 0 8 0 mtagpl 80 13 0 0 1 0 1 1 0 8 0 mbufpl 256 450 0 0 13 1 12 13 0 8 0 bufpl 256 19601 0 12553 441 0 441 441 0 8 0 anonpl 16 578173 0 564593 154 88 66 79 0 124 0 amapchunkpl 152 38656 0 38529 50 43 7 13 0 158 1 amappl16 192 28523 0 27666 153 108 45 56 0 8 1 amappl15 184 1536 0 1532 4 3 1 1 0 8 0 amappl14 176 2222 0 2220 1 0 1 1 0 8 0 amappl13 168 353 0 352 1 0 1 1 0 8 0 amappl12 160 231 0 231 4 4 0 1 0 8 0 amappl11 152 500 0 485 1 0 1 1 0 8 0 amappl10 144 880 0 876 1 0 1 1 0 8 0 amappl9 136 1204 0 1198 1 0 1 1 0 8 0 amappl8 128 749 0 706 5 3 2 2 0 8 0 amappl7 120 1020 0 1012 1 0 1 1 0 8 0 amappl6 112 481 0 467 1 0 1 1 0 8 0 amappl5 104 610 0 594 1 0 1 1 0 8 0 amappl4 96 6015 0 5984 1 0 1 1 0 8 0 amappl3 88 2225 0 2219 1 0 1 1 0 8 0 amappl2 80 47878 0 47803 3 1 2 3 0 8 0 amappl1 72 145460 0 145017 25 15 10 20 0 8 0 amappl 80 19735 0 19694 3 1 2 2 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma64 64 259 0 259 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 17 0 17 1 1 0 1 0 8 0 aobjpl 64 144 0 15 3 0 3 3 0 8 0 uaddrrnd 24 6173 0 6151 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 6173 0 6151 1 0 1 1 0 8 0 vmmpekpl 168 45117 0 45082 2 0 2 2 0 8 0 vmmpepl 168 762773 0 760762 359 234 125 126 0 357 29 vmsppl 368 6166 0 6151 2 0 2 2 0 8 0 pdppl 4096 12353 0 12314 7 1 6 6 0 8 0 pvpl 32 1617235 0 1600440 387 220 167 189 0 265 14 pmappl 232 6172 0 6157 5 4 1 2 0 8 0 extentpl 40 41 0 26 1 0 1 1 0 8 0 phpool 112 671 0 67 18 0 18 18 0 8 0