uvm_fault(0xfffffd806ccc5e78, 0x48, 0, 1) -> e
kernel: page fault trap, code=0
Stopped at uvm_map_protect+0x201: movq 0x48(%r13),%r15
TID PID UID PRFLAGS PFLAGS CPU COMMAND
* 67418 24296 0 0 0 0 syz-executor
uvm_map_protect(fffffd806ccc5e78,fb2856ad000,fb285aad000,3,0,0,936b381da53f62c8) at uvm_map_protect+0x201 sys/uvm/uvm_map.c:3083
sys_mprotect(ffff8000314c74f0,ffff80002f0c1880,ffff80002f0c17d0) at sys_mprotect+0x341 sys/uvm/uvm_mmap.c:590
syscall(ffff80002f0c1880) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline]
syscall(ffff80002f0c1880) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x6fa893415450, count: 11
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb>
ddb> set $lines = 0
ddb> set $maxwidth = 0
ddb> show panic
*cpu0: uvm_fault(0xfffffd806ccc5e78, 0x48, 0, 1) -> e
ddb> trace
uvm_map_protect(fffffd806ccc5e78,fb2856ad000,fb285aad000,3,0,0,936b381da53f62c8) at uvm_map_protect+0x201 sys/uvm/uvm_map.c:3083
sys_mprotect(ffff8000314c74f0,ffff80002f0c1880,ffff80002f0c17d0) at sys_mprotect+0x341 sys/uvm/uvm_mmap.c:590
syscall(ffff80002f0c1880) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline]
syscall(ffff80002f0c1880) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x6fa893415450, count: -4
ddb> show registers
rdi 0xffffffff8355a160 uvm_map_addr_RBT_INFO
rsi 0xfffffd806c1ed310
rbp 0xffff80002f0c1740
rbx 0x3
rdx 0
rcx 0
rax 0xffff8000314c74f0
r8 0
r9 0
r10 0
r11 0xaa62f8b2087e295a
r12 0xfb2856ad000
r13 0
r14 0xfb285aad000
r15 0
rip 0xffffffff816b6dd1 uvm_map_protect+0x201
cs 0x8
rflags 0x10246 __ALIGN_SIZE+0xf246
rsp 0xffff80002f0c1690
ss 0x10
uvm_map_protect+0x201: movq 0x48(%r13),%r15
ddb> show proc
PROC (syz-executor) tid=67418 pid=24296 tcnt=3 stat=onproc
flags process=0 proc=0
runpri=32, usrpri=77, slppri=32, nice=20
wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
forw=0xffffffffffffffff, list=0xffff8000314c6d28,0xffff8000314c7a30
process=0xffff80002a837620 user=0xffff80002f0bc000, vmspace=0xfffffd806ccc5e78
estcpu=27, cpticks=4, pctcpu=0.4, user=4, sys=0, intr=0
ddb> ps
PID TID PPID UID S FLAGS WAIT COMMAND
15017 443387 38990 0 2 0 syz-executor
15017 411932 38990 0 2 0x4000000 syz-executor
79090 35571 15023 0 3 0x82 piperd syz-executor
81432 212105 62336 0 2 0 syz-executor
81432 76352 62336 0 3 0x4000080 fsleep syz-executor
13863 467898 0 0 3 0x14200 acct acct
32264 365619 20202 60929 3 0x90 nanoslp syz-executor
32264 335327 20202 60929 3 0x4000090 netacc syz-executor
32264 349413 20202 60929 3 0x4000090 fsleep syz-executor
18630 463397 1756 0 3 0x80 nanoslp syz-executor
18630 440171 1756 0 3 0x4000080 msgwait syz-executor
18630 409096 1756 0 3 0x4000080 fsleep syz-executor
*24296 67418 70463 0 7 0 syz-executor
24296 91704 70463 0 3 0x4000080 ttyin syz-executor
24296 152160 70463 0 3 0x4000080 fsleep syz-executor
43743 350183 0 0 3 0x14280 nfsidl nfsio
33947 140232 0 0 3 0x14280 nfsidl nfsio
57224 161888 0 0 3 0x14280 nfsidl nfsio
76927 109799 0 0 3 0x14280 nfsidl nfsio
23741 481672 0 0 3 0x14280 nfsidl nfsio
34050 444545 0 0 3 0x14280 nfsidl nfsio
94187 252953 0 0 3 0x14280 nfsidl nfsio
58793 135305 0 0 3 0x14280 nfsidl nfsio
21664 120816 0 0 3 0x14280 nfsidl nfsio
25282 189692 0 0 3 0x14280 nfsidl nfsio
61394 55617 0 0 3 0x14280 nfsidl nfsio
34751 50351 0 0 3 0x14280 nfsidl nfsio
67649 260742 0 0 3 0x14280 nfsidl nfsio
66468 456616 0 0 3 0x14280 nfsidl nfsio
72082 466085 0 0 3 0x14280 nfsidl nfsio
80706 304472 0 0 3 0x14280 nfsidl nfsio
34190 336129 0 0 3 0x14280 nfsidl nfsio
37513 462575 0 0 3 0x14280 nfsidl nfsio
78791 157850 0 0 3 0x14280 nfsidl nfsio
75779 218750 0 0 3 0x14280 nfsidl nfsio
1756 426199 15023 0 3 0x82 nanoslp syz-executor
20202 75356 15023 0 3 0x82 nanoslp syz-executor
70463 427589 15023 0 3 0x82 nanoslp syz-executor
32719 391541 15023 0 3 0x82 nanoslp syz-executor
62336 415502 15023 0 2 0xc82 syz-executor
38990 192076 15023 0 2 0xc82 syz-executor
78163 32030 15023 0 3 0x82 nanoslp syz-executor
15023 252612 6400 0 2 0x2 syz-executor
6400 210494 25235 0 3 0x10008a sigsusp ksh
25235 442660 81295 0 3 0x98 kqread sshd-session
81295 328501 66872 0 3 0x92 kqread sshd-session
23051 334473 1 0 3 0x100083 ttyin getty
66872 352632 1 0 3 0x88 kqread sshd
89434 13450 14229 73 2 0x1100090 syslogd
14229 432905 1 0 3 0x100082 sbwait syslogd
87347 329428 1 0 3 0x100080 kqread resolvd
60066 148368 97515 77 3 0x100092 kqread dhcpleased
33873 140765 97515 77 3 0x100092 kqread dhcpleased
97515 514136 1 0 3 0x80 kqread dhcpleased
83429 518011 0 0 3 0x14200 bored smr
90162 369074 0 0 2 0x14200 zerothread
50166 228563 0 0 3 0x14200 aiodoned aiodoned
9402 230158 0 0 3 0x14200 syncer update
57700 475089 0 0 3 0x14200 cleaner cleaner
67174 230495 0 0 3 0x14200 reaper reaper
1275 73947 0 0 3 0x14200 pgdaemon pagedaemon
54778 319938 0 0 3 0x14200 bored viomb
49602 102087 0 0 3 0x40014200 acpi0 acpi0
64005 238584 0 0 3 0x14200 bored softnet0
12707 504696 0 0 3 0x14200 smrbar systqmp
48883 496729 0 0 3 0x14200 bored systq
40491 290676 0 0 3 0x40014200 tmoslp softclock
84357 284128 0 0 3 0x40014200 idle0
1 256300 0 0 3 0x82 wait init
0 0 -1 0 3 0x10010200 scheduler swapper
ddb> show all locks
No such command
ddb> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 11055 12188K 12576K 166960K 12730 0
pcb 20 12K 12K 166960K 98 0
rtable 258 10K 10K 166960K 541 0
pf 33 13K 15K 166960K 67 0
ifaddr 44 7K 8K 166960K 69 0
ifgroup 52 2K 2K 166960K 86 0
sysctl 3 1K 9K 166960K 13 0
counters 34 17K 18K 166960K 55 0
ioctlops 0 0K 4K 166960K 173 0
iov 0 0K 16K 166960K 23 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1306 82K 82K 166960K 1768 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 1K 5K 166960K 8 0
VM map 2 1K 1K 166960K 2 0
sem 10 0K 0K 166960K 56 0
dirhash 12 2K 2K 166960K 27 0
ACPI 1692 195K 286K 166960K 12470 0
file desc 17 61K 240K 166960K 638 0
sigio 0 0K 0K 166960K 9 0
proc 63 67K 91K 166960K 597 0
subproc 72 4K 4K 166960K 90 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 1 0K 0K 166960K 68 0
in_multi 100 7K 7K 166960K 147 0
ether_multi 2 0K 0K 166960K 12 0
mrt 2 0K 0K 166960K 23 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 97 440K 440K 166960K 97 0
exec 0 0K 1K 166960K 448 0
fusefs mount 1 32K 32K 166960K 1 0
pfkey data 0 0K 0K 166960K 1 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 228 159K 180K 166960K 7087 0
UVM aobj 22 8K 8K 166960K 25 0
pinsyscall 38 76K 92K 166960K 1775 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 0K 166960K 21 0
NDP 14 0K 2K 166960K 44 0
temp 48 9064K 9128K 166960K 17650 0
kqueue 13 20K 31K 166960K 106 0
SYN cache 2 16K 16K 166960K 2 0
ddb> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
rtpcb 120 119 0 116 2 0 2 2 0 8 1
rtentry 136 159 0 52 4 0 4 4 0 8 0
unpcb 144 655 0 635 4 3 1 4 0 8 0
syncache 336 6 0 6 1 1 0 1 0 8 0
tcpqe 32 1 0 1 1 1 0 1 0 8 0
tcpcb 736 346 0 337 7 0 7 7 0 8 6
arp 96 24 0 5 1 0 1 1 0 8 0
ipq 40 5 0 0 1 0 1 1 0 8 0
ipqe 40 5 0 0 1 0 1 1 0 8 0
inpcb 328 675 0 658 7 0 7 7 0 8 4
nd6 112 35 0 8 1 0 1 1 0 8 0
pkpcb 40 1 0 1 1 0 1 1 0 8 1
kcovpl 48 10 0 2 1 0 1 1 0 8 0
mppekey 1024 1 0 1 1 0 1 1 0 8 1
ppxss 1072 18 0 18 2 1 1 1 0 8 1
pfstitem 24 2 0 0 1 0 1 1 0 8 0
pfstkey 128 2 0 0 1 0 1 1 0 8 0
pfstate 384 1 0 0 1 0 1 1 0 8 0
pfrule 1360 3 0 3 2 1 1 1 0 8 1
rttmr 136 3 0 3 2 1 1 1 0 8 1
art_heap8 4096 3 0 0 3 0 3 3 0 8 0
art_heap4 256 669 0 227 31 1 30 31 0 8 2
art_table 40 672 0 227 5 0 5 5 0 8 0
art_node 32 157 0 61 1 0 1 1 0 8 0
sysvmsgpl 40 1 0 1 1 0 1 1 0 8 1
semupl 112 1 0 1 1 1 0 1 0 8 0
semapl 112 53 0 45 1 0 1 1 0 8 0
shmpl 112 18 0 2 1 0 1 1 0 8 0
dirhash 1024 27 0 10 3 0 3 3 0 8 0
dino2pl 256 2440 0 977 92 0 92 92 0 8 0
ffsino 256 2440 0 977 92 0 92 92 0 8 0
nchpl 144 3290 0 1589 64 0 64 64 0 8 0
rtmask 32 3 0 3 2 1 1 1 0 8 1
vnodes 216 2764 0 0 154 0 154 154 0 8 0
namei 1024 11240 0 11240 3 2 1 2 0 8 1
vcpupl 3904 4 0 1 1 0 1 1 0 8 0
vmpool 808 4 0 1 1 0 1 1 0 8 0
kstatmem 264 48 0 24 2 0 2 2 0 8 0
acpiwqpl 32 1 0 1 1 0 1 1 1 8 1
scsiplug 72 3 0 3 2 1 1 1 0 8 1
scxspl 216 13859 0 13859 9 7 2 8 1 8 2
plimitpl 152 320 0 302 1 0 1 1 0 8 0
sigapl 424 926 0 863 8 0 8 8 0 8 0
knotepl 120 21533 0 21486 27 14 13 16 0 8 11
kqueuepl 184 143 0 134 1 0 1 1 0 8 0
pipepl 304 222 0 195 5 0 5 5 0 8 2
fdescpl 448 891 0 862 5 1 4 5 0 8 0
filepl 120 5463 0 5228 15 1 14 14 0 8 5
lockfpl 104 190 0 186 1 0 1 1 0 8 0
lockfspl 48 88 0 85 1 0 1 1 0 8 0
sessionpl 144 26 0 18 1 0 1 1 0 8 0
pgrppl 48 42 0 26 1 0 1 1 0 8 0
ucredpl 104 677 0 664 1 0 1 1 0 8 0
zombiepl 144 865 0 863 1 0 1 1 0 8 0
processpl 1152 926 0 863 5 0 5 5 0 8 0
procpl 664 1587 0 1516 7 0 7 7 0 8 0
sosppl 176 4 0 4 1 1 0 1 0 8 0
sockpl 552 1464 0 1424 15 5 10 10 0 8 6
mcl64k 65536 35 0 34 2 1 1 1 0 8 0
mcl16k 16384 3 0 3 1 1 0 1 0 8 0
mcl12k 12288 2 0 2 1 1 0 1 0 8 0
mcl8k 8192 76 0 76 1 0 1 1 0 8 1
mcl4k 4096 3125 0 3068 14 6 8 14 0 8 0
mcl2k 2048 561 0 559 1 0 1 1 0 8 0
mtagpl 96 18 0 7 1 0 1 1 0 8 0
mbufpl 256 9334 0 9174 16 4 12 16 0 8 0
bufpl 280 5830 0 106 409 0 409 409 0 8 0
anonpl 24 169861 0 166387 62 12 50 50 0 187 14
amapchunkpl 152 23277 0 22778 35 10 25 30 0 158 4
amappl16 200 3180 0 3152 19 3 16 16 0 8 11
amappl15 192 8 0 7 1 0 1 1 0 8 0
amappl14 184 498 0 497 1 0 1 1 0 8 0
amappl13 176 123 0 113 1 0 1 1 0 8 0
amappl12 168 1137 0 1109 2 0 2 2 0 8 0
amappl11 160 12 0 11 1 0 1 1 0 8 0
amappl10 152 59 0 49 1 0 1 1 0 8 0
amappl9 144 259 0 259 1 1 0 1 0 8 0
amappl8 136 107 0 106 1 0 1 1 0 8 0
amappl7 128 153 0 141 1 0 1 1 0 8 0
amappl6 120 174 0 173 1 0 1 1 0 8 0
amappl5 112 107 0 99 1 0 1 1 0 8 0
amappl4 104 311 0 294 1 0 1 1 0 8 0
amappl3 96 4397 0 4288 4 0 4 4 0 8 0
amappl2 88 563 0 511 2 0 2 2 0 8 0
amappl1 80 12477 0 11925 15 2 13 15 0 8 0
amappl 88 6268 0 6104 5 0 5 5 0 92 1
uvmvnodes 80 113 0 0 3 0 3 3 0 8 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 2 0 1 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 254 0 254 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 24 0 3 1 0 1 1 0 8 0
uaddrrnd 24 891 0 862 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 891 0 862 1 0 1 1 0 8 0
vmmpekpl 168 9062 0 9021 2 0 2 2 0 8 0
vmmpepl 168 65353 0 63546 100 8 92 92 0 357 4
vmmpepl: pool(0xffffffff83969170:vmmpepl): page inconsistency: page 0x0; at page head addr 0xfffffd806c1edf90 (p 0xfffffd806c1ed000)
vmsppl 368 890 0 862 4 1 3 4 0 8 0
rwobjpl 40 20790 0 19809 14 1 13 13 0 8 0
pdppl 4096 1796 0 1729 107 36 71 78 0 8 4
pvpl 32 432819 0 422983 162 30 132 132 0 265 26
pmappl 216 894 0 863 2 0 2 2 0 8 0
extentpl 40 45 0 27 1 0 1 1 0 8 0
phpool 112 390 0 57 10 0 10 10 0 8 0
ddb> machine ddbcpu 0
No such command
ddb> trace
uvm_map_protect(fffffd806ccc5e78,fb2856ad000,fb285aad000,3,0,0,936b381da53f62c8) at uvm_map_protect+0x201 sys/uvm/uvm_map.c:3083
sys_mprotect(ffff8000314c74f0,ffff80002f0c1880,ffff80002f0c17d0) at sys_mprotect+0x341 sys/uvm/uvm_mmap.c:590
syscall(ffff80002f0c1880) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline]
syscall(ffff80002f0c1880) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x6fa893415450, count: -4
ddb> machine ddbcpu 1
No such command
ddb> trace
uvm_map_protect(fffffd806ccc5e78,fb2856ad000,fb285aad000,3,0,0,936b381da53f62c8) at uvm_map_protect+0x201 sys/uvm/uvm_map.c:3083
sys_mprotect(ffff8000314c74f0,ffff80002f0c1880,ffff80002f0c17d0) at sys_mprotect+0x341 sys/uvm/uvm_mmap.c:590
syscall(ffff80002f0c1880) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline]
syscall(ffff80002f0c1880) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x6fa893415450, count: -4