uvm_fault(0xfffffd806c27b418, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND * 96099 75614 0 0 0x4000000 0 syz-executor ktrops(ffff800037618f50,ffffffffffffffff,0,a0c7df9b,fffffd8078927be0,fffffd807f7d7958) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff800037618f50,ffffffffffffffff,0,a0c7df9b,fffffd8078927be0,fffffd807f7d7958) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8078927be0,4,20c7df9b,0,ffff800037618f50) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8078927be0,4,20c7df9b,0,ffff800037618f50) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff800037618f50,ffff800037605100,ffff800037605050) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff800037605100) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6d42236a240, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806c27b418, 0xf, 0, 1) -> e ddb> trace ktrops(ffff800037618f50,ffffffffffffffff,0,a0c7df9b,fffffd8078927be0,fffffd807f7d7958) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff800037618f50,ffffffffffffffff,0,a0c7df9b,fffffd8078927be0,fffffd807f7d7958) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8078927be0,4,20c7df9b,0,ffff800037618f50) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8078927be0,4,20c7df9b,0,ffff800037618f50) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff800037618f50,ffff800037605100,ffff800037605050) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff800037605100) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6d42236a240, count: -5 ddb> show registers rdi 0xffff80002a5d4000 rsi 0x811 rbp 0xffff800037604e20 rbx 0xfffffd807f7d7958 rdx 0xffff80002a5d4000 rcx 0x810 rax 0xffffffff81e1c263 ktrops+0x43 r8 0xfffffd8078927be0 r9 0xfffffd807f7d7958 r10 0x1d9f75fd2a9952ac r11 0x74a84c41e477e060 r12 0xffff800037618f50 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0xa0c7df9b rip 0xffffffff81e1c278 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800037604da0 ss 0x10 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=96099 pid=75614 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=53, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000376187b8,0xffff800037619c08 process=0xffff8000ffff5e10 user=0xffff800037600000, vmspace=0xfffffd806c27b418 estcpu=3, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 68149 436973 59124 0 2 0 syz-executor 82586 166064 85050 0 2 0 syz-executor 82586 459456 85050 0 2 0x4000000 syz-executor 82586 406921 85050 0 3 0x4000080 fsleep syz-executor 82586 218977 85050 0 3 0x4000080 fsleep syz-executor 31957 320381 79041 0 2 0 syz-executor 31957 260823 79041 0 2 0x4000000 syz-executor 31957 220371 79041 0 3 0x4000080 fsleep syz-executor 75614 424157 74067 0 2 0 syz-executor *75614 96099 74067 0 7 0x4000000 syz-executor 27063 165035 93840 0 2 0 syz-executor 27063 420079 93840 0 3 0x4000080 fsleep syz-executor 23816 43550 92494 0 2 0x2 syz-executor 79041 275838 92494 0 2 0x482 syz-executor 40588 43135 92494 0 2 0x482 syz-executor 93840 144150 92494 0 2 0x482 syz-executor 59124 421602 92494 0 3 0x82 nanoslp syz-executor 36454 312203 92494 0 2 0x2 syz-executor 85050 431816 92494 0 2 0x482 syz-executor 74067 364961 92494 0 2 0x482 syz-executor 92494 179020 33452 0 3 0x82 kqread syz-executor 33452 46395 73808 0 3 0x10008a sigsusp ksh 73808 502010 13037 0 3 0x98 kqread sshd-session 13037 219305 28103 0 3 0x92 kqread sshd-session 89954 101038 1 0 3 0x100083 ttyin getty 28103 61455 1 0 3 0x88 kqread sshd 32432 35215 84656 73 3 0x1100090 kqread syslogd 84656 477938 1 0 3 0x100082 sbwait syslogd 11617 328124 1 0 3 0x100080 kqread resolvd 16690 417793 95457 77 3 0x100092 kqread dhcpleased 25833 400225 95457 77 3 0x100092 kqread dhcpleased 95457 386263 1 0 3 0x80 kqread dhcpleased 92042 197112 0 0 3 0x14200 bored smr 17919 470625 0 0 2 0x14200 zerothread 6695 52416 0 0 3 0x14200 aiodoned aiodoned 10302 188840 0 0 3 0x14200 syncer update 35774 31557 0 0 3 0x14200 cleaner cleaner 22706 441020 0 0 3 0x14200 reaper reaper 44357 214342 0 0 3 0x14200 pgdaemon pagedaemon 54851 382705 0 0 3 0x14200 bored viomb 21878 437539 0 0 3 0x40014200 acpi0 acpi0 40683 477640 0 0 3 0x14200 bored softnet3 33405 305447 0 0 3 0x14200 bored softnet2 45848 99440 0 0 3 0x14200 bored softnet1 32521 460428 0 0 3 0x14200 bored softnet0 16800 138251 0 0 3 0x14200 bored systqmp 76974 409209 0 0 3 0x14200 bored systq 30575 349119 0 0 3 0x40014200 tmoslp softclock 82654 423348 0 0 3 0x40014200 idle0 1 402586 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10175 10098K 10098K 166960K 11256 0 pcb 17 12K 12K 166960K 18 0 rtable 230 6K 6K 166960K 352 0 pf 30 12K 12K 166960K 30 0 ifaddr 42 7K 7K 166960K 45 0 ifgroup 50 2K 2K 166960K 50 0 counters 30 17K 17K 166960K 30 0 ioctlops 0 0K 2K 166960K 30 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1367 86K 86K 166960K 1389 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 3 0 VM map 2 1K 1K 166960K 2 0 sem 2 0K 0K 166960K 2 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 16 57K 97K 166960K 148 0 proc 56 58K 124K 166960K 473 0 subproc 104 6K 6K 166960K 104 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 1 0K 0K 166960K 7 0 in_multi 101 7K 7K 166960K 102 0 ether_multi 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 49 228K 228K 166960K 49 0 exec 0 0K 1K 166960K 346 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 207 72K 72K 166960K 2792 0 UVM aobj 6 2K 2K 166960K 6 0 pinsyscall 37 74K 98K 166960K 1161 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 NDP 11 0K 2K 166960K 27 0 temp 35 6802K 6866K 166960K 3737 0 kqueue 13 20K 24K 166960K 24 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 36 0 33 1 0 1 1 0 8 0 rtentry 112 112 0 4 4 0 4 4 0 8 0 unpcb 144 40 0 25 1 0 1 1 0 8 0 syncache 336 3 0 3 1 0 1 1 0 8 1 tcpcb 808 9 0 4 1 0 1 1 0 8 0 arp 88 18 0 0 1 0 1 1 0 8 0 inpcb 336 67 0 58 2 0 2 2 0 8 1 nd6 104 25 0 0 1 0 1 1 0 8 0 kcovpl 48 8 0 0 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 455 0 6 29 0 29 29 0 8 0 art_table 32 456 0 6 4 0 4 4 0 8 0 art_node 16 111 0 13 1 0 1 1 0 8 0 shmpl 112 3 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1566 0 62 95 0 95 95 0 8 0 ffsino 240 1566 0 62 89 0 89 89 0 8 0 nchpl 144 1772 0 92 63 0 63 63 0 8 0 uvmvnodes 80 1684 0 0 35 0 35 35 0 8 0 vnodes 216 1684 0 0 94 0 94 94 0 8 0 namei 1024 5161 0 5159 2 0 2 2 0 8 1 kstatmem 264 22 0 0 2 0 2 2 0 8 0 scxspl 216 5050 0 5050 2 0 2 2 1 8 2 plimitpl 152 28 0 11 1 0 1 1 0 8 0 sigapl 424 425 0 381 7 0 7 7 0 8 1 futexpl 64 243 0 239 1 0 1 1 0 8 0 knotepl 120 3060 0 3013 2 0 2 2 0 8 0 kqueuepl 184 25 0 14 1 0 1 1 0 8 0 pipepl 288 103 0 76 3 0 3 3 0 8 1 fdescpl 432 409 0 381 5 0 5 5 0 8 1 filepl 120 1384 0 1134 8 0 8 8 0 8 0 lockfpl 104 11 0 8 1 0 1 1 0 8 0 lockfspl 48 7 0 4 1 0 1 1 0 8 0 sessionpl 144 21 0 13 1 0 1 1 0 8 0 pgrppl 48 29 0 13 1 0 1 1 0 8 0 ucredpl 104 74 0 63 1 0 1 1 0 8 0 zombiepl 144 382 0 381 1 0 1 1 0 8 0 processpl 1096 425 0 381 4 0 4 4 0 8 0 procpl 648 448 0 397 5 0 5 5 0 8 0 sockpl 504 143 0 116 5 0 5 5 0 8 1 mcl8k 8192 7 0 7 1 0 1 1 0 8 1 mcl4k 4096 3 0 3 1 0 1 1 0 8 1 mcl2k 2048 4822 0 4726 25 5 20 25 0 8 6 mtagpl 96 4 0 4 1 0 1 1 0 8 1 mbufpl 256 6420 0 6226 13 0 13 13 0 8 0 bufpl 280 2165 0 89 149 0 149 149 0 8 0 anonpl 24 153395 0 150371 24 0 24 24 0 187 3 amapchunkpl 152 9275 0 8842 20 0 20 20 0 158 2 amappl16 200 4360 0 4347 5 0 5 5 0 8 4 amappl15 192 1 0 1 1 0 1 1 0 8 1 amappl14 184 110 0 100 1 0 1 1 0 8 0 amappl13 176 37 0 37 1 0 1 1 0 8 1 amappl12 168 1017 0 990 3 0 3 3 0 8 1 amappl11 160 49 0 39 1 0 1 1 0 8 0 amappl10 152 14 0 14 1 0 1 1 0 8 1 amappl9 144 113 0 113 1 0 1 1 0 8 1 amappl8 136 17 0 16 1 0 1 1 0 8 0 amappl7 128 117 0 107 1 0 1 1 0 8 0 amappl6 120 203 0 201 1 0 1 1 0 8 0 amappl5 112 155 0 147 1 0 1 1 0 8 0 amappl4 104 285 0 268 1 0 1 1 0 8 0 amappl3 96 1794 0 1697 3 0 3 3 0 8 0 amappl2 88 590 0 537 2 0 2 2 0 8 0 amappl1 80 7467 0 6938 13 0 13 13 0 8 0 amappl 88 2448 0 2295 4 0 4 4 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 5 0 0 1 0 1 1 0 8 0 uaddrrnd 24 409 0 381 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 409 0 381 1 0 1 1 0 8 0 vmmpekpl 168 5327 0 5289 2 0 2 2 0 8 0 vmmpepl 168 35176 0 33509 78 0 78 78 0 357 1 vmsppl 344 408 0 381 4 0 4 4 0 8 1 rwobjpl 24 16593 0 14077 16 0 16 16 0 8 0 pdppl 4096 824 0 762 96 26 70 82 0 8 8 pvpl 32 267384 0 259273 73 0 73 73 0 265 3 pmappl 216 408 0 381 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 370 0 31 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff800037618f50,ffffffffffffffff,0,a0c7df9b,fffffd8078927be0,fffffd807f7d7958) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff800037618f50,ffffffffffffffff,0,a0c7df9b,fffffd8078927be0,fffffd807f7d7958) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8078927be0,4,20c7df9b,0,ffff800037618f50) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8078927be0,4,20c7df9b,0,ffff800037618f50) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff800037618f50,ffff800037605100,ffff800037605050) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff800037605100) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6d42236a240, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff800037618f50,ffffffffffffffff,0,a0c7df9b,fffffd8078927be0,fffffd807f7d7958) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff800037618f50,ffffffffffffffff,0,a0c7df9b,fffffd8078927be0,fffffd807f7d7958) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8078927be0,4,20c7df9b,0,ffff800037618f50) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8078927be0,4,20c7df9b,0,ffff800037618f50) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff800037618f50,ffff800037605100,ffff800037605050) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff800037605100) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6d42236a240, count: -5