uvm_fault(fffffd807f005cf0,d6ad1be4000,1,2) at uvm_fault+0x1373 sys/uvm/uvm_fault.c:939
pageflttrap(ffff800020b74fc0,1) at pageflttrap+0x20b sys/arch/amd64/amd64/trap.c:199
usertrap(ffff800020b74fc0) at usertrap+0x21a sys/arch/amd64/amd64/trap.c:369
recall_trap() at recall_trap+0x8
end of kernel
end trace frame: 0x7f7fffff5510, count: 5
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{0}>
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
pool_cache_item_magic_check: mbufpl cpu free list modified: item addr 0xfffffd8062241c00+16 0x0!=0x96ad4d92bfa0b85c
ddb{0}> trace
vio_rxeof(ffff800000171000) at vio_rxeof+0x191 sys/dev/pv/if_vio.c:1018
vio_rx_intr(ffff800000171050) at vio_rx_intr+0x4d sys/dev/pv/if_vio.c:1054
intr_handler(ffff800020b74a80,ffff80000024bc00) at intr_handler+0x8f sys/arch/amd64/amd64/intr.c:529
Xintr_ioapic_edge19_untramp() at Xintr_ioapic_edge19_untramp+0x19f
Xspllower() at Xspllower+0x19
pmap_enter(fffffd807f004ae0,d6ad1be4000,65e9f000,3,22) at pmap_enter+0x91a pmap_unmap_ptes sys/arch/amd64/amd64/pmap.c:431 [inline]
pmap_enter(fffffd807f004ae0,d6ad1be4000,65e9f000,3,22) at pmap_enter+0x91a sys/arch/amd64/amd64/pmap.c:2769
uvm_fault(fffffd807f005cf0,d6ad1be4000,1,2) at uvm_fault+0x1373 sys/uvm/uvm_fault.c:939
pageflttrap(ffff800020b74fc0,1) at pageflttrap+0x20b sys/arch/amd64/amd64/trap.c:199
usertrap(ffff800020b74fc0) at usertrap+0x21a sys/arch/amd64/amd64/trap.c:369
recall_trap() at recall_trap+0x8
end of kernel
end trace frame: 0x7f7fffff5510, count: -10
ddb{0}> show registers
rdi 0xc
rsi 0xc
rbp 0xffff800020b749c0
rbx 0xffff800000171000
rdx 0
rcx 0xffffffff82486ff0 cpu_info_full_primary+0x1ff0
rax 0xffffffff82486ff0 cpu_info_full_primary+0x1ff0
r8 0x2
r9 0x5
r10 0x826a5963522b2207
r11 0xb43f44861e752892
r12 0xffff80000001ce00
r13 0xc
r14 0xfffffd8062249000
r15 0
rip 0xffffffff82052a81 vio_rxeof+0x191
cs 0x8
rflags 0x10246 __ALIGN_SIZE+0xf246
rsp 0xffff800020b74930
ss 0
vio_rxeof+0x191: movzwl 0xa(%r15),%eax
ddb{0}> show proc
PROC (syz-executor.0) pid=43385 stat=onproc
flags process=2<EXEC> proc=0
pri=75, usrpri=75, nice=20
forw=0xffffffffffffffff, list=0xffff800020a98ee8,0xffff800020a982a0
process=0xffff800020a9bc50 user=0xffff800020b70000, vmspace=0xfffffd807f005cf0
estcpu=36, cpticks=0, pctcpu=0.6
user=0, sys=0, intr=0
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
29985 415565 31251 0 2 0 syz-executor.1
29985 237993 31251 0 3 0x4000080 fsleep syz-executor.1
34928 507971 0 0 3 0x14200 bored sosplice
31251 7462 93996 0 3 0x82 nanosleep syz-executor.1
*40135 43385 93996 0 7 0x2 syz-executor.0
93996 214447 99700 0 3 0x82 thrsleep syz-fuzzer
93996 55254 99700 0 3 0x4000082 nanosleep syz-fuzzer
93996 4585 99700 0 3 0x4000082 thrsleep syz-fuzzer
93996 29739 99700 0 3 0x4000082 thrsleep syz-fuzzer
93996 324353 99700 0 3 0x4000082 thrsleep syz-fuzzer
93996 315441 99700 0 3 0x4000082 thrsleep syz-fuzzer
93996 220544 99700 0 3 0x4000082 thrsleep syz-fuzzer
93996 375672 99700 0 3 0x4000082 thrsleep syz-fuzzer
93996 49584 99700 0 3 0x4000082 nanosleep syz-fuzzer
93996 444708 99700 0 3 0x4000082 kqread syz-fuzzer
99700 455900 25104 0 3 0x10008a pause ksh
25104 375493 41679 0 3 0x52 netlock sshd
31947 347274 1 0 3 0x100083 ttyin getty
41679 304352 1 0 3 0x80 select sshd
90403 93611 98273 74 3 0x100092 bpf pflogd
98273 490887 1 0 3 0x80 netio pflogd
91783 320748 79822 73 3 0x100090 kqread syslogd
79822 147245 1 0 3 0x100082 netio syslogd
81620 458131 1 77 3 0x100090 poll dhclient
18217 455599 1 0 3 0x80 poll dhclient
46729 349149 0 0 3 0x14200 pgzero zerothread
96137 494339 0 0 3 0x14200 aiodoned aiodoned
28723 107738 0 0 3 0x14200 syncer update
33952 516722 0 0 3 0x14200 cleaner cleaner
16337 324302 0 0 3 0x14200 reaper reaper
68865 490149 0 0 3 0x14200 pgdaemon pagedaemon
28280 118333 0 0 3 0x14200 bored crynlk
30351 241033 0 0 3 0x14200 bored crypto
70616 397254 0 0 3 0x14200 bored viomb
40610 183923 0 0 3 0x40014200 acpi0 acpi0
25995 296296 0 0 3 0x40014200 idle1
61854 104284 0 0 7 0x14200 softnet
65575 274501 0 0 3 0x14200 bored systqmp
21573 269420 0 0 3 0x14200 bored systq
58499 114060 0 0 3 0x40014200 bored softclock
54419 66728 0 0 3 0x40014200 idle0
87166 359695 0 0 3 0x14200 bored smr
1 477480 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{0}> show all locks
Process 40135 (syz-executor.0) thread 0xffff800020a98c70 (43385)
shared rwlock vmmaplk r = 0 (0xfffffd807f005d08)
#0 witness_lock+0x52e sys/kern/subr_witness.c:1163
#1 uvmfault_lookup+0xd9 sys/uvm/uvm_fault.c:1448
#2 uvm_fault+0x7f sys/uvm/uvm_fault.c:524
#3 pageflttrap+0x20b sys/arch/amd64/amd64/trap.c:199
#4 usertrap+0x21a sys/arch/amd64/amd64/trap.c:369
#5 recall_trap+0x8
exclusive kernel_lock &kernel_lock r = 2 (0xffffffff8265cfc8)
#0 witness_lock+0x52e sys/kern/subr_witness.c:1163
#1 pageflttrap+0x6f sys/arch/amd64/amd64/trap.c:162
#2 usertrap+0x21a sys/arch/amd64/amd64/trap.c:369
#3 recall_trap+0x8
Process 61854 (softnet) thread 0xffff800020a20768 (104284)
shared rwlock netlock r = 0 (0xffffffff82478d78)
#0 witness_lock+0x52e sys/kern/subr_witness.c:1163
#1 rw_enter+0x453 sys/kern/kern_rwlock.c:309
#2 if_input_process+0x84 sys/net/if.c:942
#3 ifiq_process+0x80 sys/net/ifq.c:607
#4 taskq_thread+0x9c sys/kern/kern_task.c:368
#5 proc_trampoline+0x1c
shared rwlock softnet r = 0 (0xffff8000000230e0)
#0 witness_lock+0x52e sys/kern/subr_witness.c:1163
#1 taskq_thread+0x8f sys/kern/kern_task.c:367
#2 proc_trampoline+0x1c
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 9556 6812K 7648K 78643K 11623 0
pcb 13 8K 8K 78643K 63 0
rtable 111 4K 5K 78643K 293 0
ifaddr 76 15K 15K 78643K 123 0
counters 39 33K 33K 78643K 39 0
ioctlops 0 0K 4K 78643K 1475 0
iov 0 0K 18K 78643K 55 0
mount 1 1K 1K 78643K 1 0
vnodes 1226 77K 77K 78643K 1505 0
UFS quota 1 32K 32K 78643K 1 0
UFS mount 5 36K 36K 78643K 5 0
shm 2 1K 5K 78643K 5 0
VM map 2 1K 1K 78643K 2 0
sem 12 0K 0K 78643K 70 0
dirhash 12 2K 2K 78643K 12 0
ACPI 1810 197K 290K 78643K 12817 0
file desc 5 13K 25K 78643K 208 0
sigio 0 0K 0K 78643K 1 0
proc 61 63K 95K 78643K 459 0
subproc 32 2K 2K 78643K 34 0
NFS srvsock 1 0K 0K 78643K 1 0
NFS daemon 1 16K 16K 78643K 1 0
ip_moptions 0 0K 0K 78643K 40 0
in_multi 56 3K 3K 78643K 77 0
ether_multi 1 0K 0K 78643K 6 0
mrt 0 0K 0K 78643K 1 0
ISOFS mount 1 32K 32K 78643K 1 0
MSDOSFS mount 1 16K 16K 78643K 1 0
ttys 60 265K 265K 78643K 60 0
exec 0 0K 1K 78643K 233 0
pagedep 1 8K 8K 78643K 1 0
inodedep 1 32K 32K 78643K 1 0
newblk 1 0K 0K 78643K 1 0
VM swap 7 26K 26K 78643K 7 0
UVM amap 118 22K 32K 78643K 1640 0
UVM aobj 16 2K 2K 78643K 16 0
memdesc 1 4K 4K 78643K 1 0
crypto data 1 1K 1K 78643K 1 0
ip6_options 0 0K 0K 78643K 36 0
NDP 12 0K 0K 78643K 24 0
temp 135 3031K 3096K 78643K 5711 0
SYN cache 2 16K 16K 78643K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
arp 64 6 0 0 1 0 1 1 0 8 0
plcache 128 20 0 0 1 0 1 1 0 8 0
rtpcb 80 29 0 27 1 0 1 1 0 8 0
rtentry 112 47 0 3 2 0 2 2 0 8 0
unpcb 120 129 0 118 1 0 1 1 0 8 0
syncache 264 7 0 7 2 2 0 1 0 8 0
tcpqe 32 26 0 26 2 2 0 1 0 8 0
tcpcb 544 97 0 93 1 0 1 1 0 8 0
inpcb 280 357 0 350 2 0 2 2 0 8 1
nd6 48 4 0 0 1 0 1 1 0 8 0
ppxss 1128 6 0 6 1 0 1 1 0 8 1
pffrag 232 3 0 3 1 1 0 1 0 482 0
pffrnode 88 3 0 3 1 1 0 1 0 8 0
pffrent 40 135 0 135 1 1 0 1 0 8 0
pfosfp 40 846 0 423 5 0 5 5 0 8 0
pfosfpen 112 1428 0 714 21 0 21 21 0 8 0
pfstitem 24 28 0 2 1 0 1 1 0 8 0
pfstkey 112 28 0 2 1 0 1 1 0 8 0
pfstate 328 28 0 2 3 0 3 3 0 8 0
pfrule 1360 21 0 16 2 1 1 2 0 8 0
art_heap8 4096 1 0 0 1 0 1 1 0 8 0
art_heap4 256 212 0 0 14 0 14 14 0 8 0
art_table 32 213 0 0 2 0 2 2 0 8 0
art_node 16 44 0 4 1 0 1 1 0 8 0
sysvmsgpl 40 8 0 6 1 0 1 1 0 8 0
semupl 112 1 0 1 1 1 0 1 0 8 0
semapl 112 66 0 56 1 0 1 1 0 8 0
shmpl 112 14 0 0 1 0 1 1 0 8 0
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino1pl 128 1742 0 338 46 0 46 46 0 8 0
ffsino 272 1742 0 338 95 0 95 95 0 8 0
nchpl 144 2283 0 662 61 0 61 61 0 8 0
uvmvnodes 72 1999 0 0 37 0 37 37 0 8 0
vnodes 208 1999 0 0 106 0 106 106 0 8 0
namei 1024 6786 0 6786 2 1 1 1 0 8 1
percpumem 16 30 0 0 1 0 1 1 0 8 0
scxspl 192 6379 0 6379 8 7 1 7 0 8 1
plimitpl 152 37 0 29 1 0 1 1 0 8 0
sigapl 432 407 0 392 3 1 2 3 0 8 0
futexpl 56 5006 0 5005 1 0 1 1 0 8 0
knotepl 112 74 0 55 1 0 1 1 0 8 0
kqueuepl 104 31 0 29 1 0 1 1 0 8 0
pipepl 160 232 0 213 2 0 2 2 0 8 1
fdescpl 488 408 0 392 3 0 3 3 0 8 0
filepl 152 3134 0 3033 8 2 6 7 0 8 2
lockfpl 104 131 0 130 1 0 1 1 0 8 0
lockfspl 48 47 0 46 1 0 1 1 0 8 0
sessionpl 112 18 0 7 1 0 1 1 0 8 0
pgrppl 48 36 0 25 1 0 1 1 0 8 0
ucredpl 96 406 0 397 1 0 1 1 0 8 0
zombiepl 144 392 0 392 2 1 1 1 0 8 1
processpl 904 425 0 392 4 0 4 4 0 8 0
procpl 632 846 0 803 5 0 5 5 0 8 0
sosppl 128 4 0 4 1 1 0 1 0 8 0
sockpl 384 515 0 495 6 2 4 5 0 8 1
mcl64k 65536 8 0 0 1 0 1 1 0 8 0
mcl16k 16384 1 0 0 1 0 1 1 0 8 0
mcl12k 12288 2 0 0 1 0 1 1 0 8 0
mcl9k 9216 2 0 0 1 0 1 1 0 8 0
mcl8k 8192 3 0 0 1 0 1 1 0 8 0
mcl4k 4096 11 0 0 2 0 2 2 0 8 0
mcl2k2 2112 1 0 0 1 0 1 1 0 8 0
mcl2k 2048 168 0 0 20 0 20 20 0 8 0
mtagpl 80 20 0 0 1 0 1 1 0 8 0
mbufpl 256 293 0 0 18 0 18 18 0 8 0
bufpl 280 6771 0 1343 388 0 388 388 0 8 0
anonpl 16 59030 0 39576 89 2 87 87 0 125 8
amapchunkpl 152 2567 0 2407 14 2 12 14 0 158 4
amappl16 192 1969 0 921 55 0 55 55 0 8 2
amappl15 184 67 0 62 1 0 1 1 0 8 0
amappl14 176 33 0 30 1 0 1 1 0 8 0
amappl13 168 2 0 1 2 1 1 1 0 8 0
amappl12 160 2 0 1 2 1 1 1 0 8 0
amappl11 152 150 0 133 1 0 1 1 0 8 0
amappl10 144 95 0 88 1 0 1 1 0 8 0
amappl9 136 602 0 599 1 0 1 1 0 8 0
amappl8 128 135 0 108 1 0 1 1 0 8 0
amappl7 120 183 0 172 1 0 1 1 0 8 0
amappl6 112 153 0 145 1 0 1 1 0 8 0
amappl5 104 132 0 116 1 0 1 1 0 8 0
amappl4 96 663 0 632 1 0 1 1 0 8 0
amappl3 88 116 0 109 1 0 1 1 0 8 0
amappl2 80 2365 0 2289 3 1 2 3 0 8 0
amappl1 72 18897 0 18441 26 16 10 21 0 8 0
amappl 80 1108 0 1061 2 0 2 2 0 84 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 64 15 0 0 1 0 1 1 0 8 0
uaddrrnd 24 408 0 392 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 408 0 392 1 0 1 1 0 8 0
vmmpekpl 168 7178 0 7150 2 0 2 2 0 8 0
vmmpepl 168 57647 0 55409 146 17 129 136 0 357 28
vmsppl 368 407 0 392 2 0 2 2 0 8 0
pdppl 4096 823 0 784 7 1 6 6 0 8 0
pvpl 32 185542 0 162916 206 1 205 205 0 265 21
pmappl 232 407 0 392 2 1 1 2 0 8 0
extentpl 40 50 0 32 1 0 1 1 0 8 0
phpool 112 177 0 5 5 0 5 5 0 8 0