uvm_fault(0xfffffd806c0cf448, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND * 71080 11717 0 0 0x4000000 0 syz-executor ktrops(ffff80002a7e0520,ffffffffffffffff,0,a0c7df9b,fffffd805cf19048,fffffd807f7d7680) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7e0520,ffffffffffffffff,0,a0c7df9b,fffffd805cf19048,fffffd807f7d7680) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805cf19048,4,20c7df9b,0,ffff80002a7e0520) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805cf19048,4,20c7df9b,0,ffff80002a7e0520) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7e0520,ffff80003ca433d0,ffff80003ca43320) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca433d0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9fb5430db80, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806c0cf448, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a7e0520,ffffffffffffffff,0,a0c7df9b,fffffd805cf19048,fffffd807f7d7680) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7e0520,ffffffffffffffff,0,a0c7df9b,fffffd805cf19048,fffffd807f7d7680) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805cf19048,4,20c7df9b,0,ffff80002a7e0520) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805cf19048,4,20c7df9b,0,ffff80002a7e0520) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7e0520,ffff80003ca433d0,ffff80003ca43320) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca433d0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9fb5430db80, count: -5 ddb> show registers rdi 0xffff80002a906000 rsi 0x1676 __ALIGN_SIZE+0x676 rbp 0xffff80003ca430f0 rbx 0xfffffd807f7d7680 rdx 0xffff80002a906000 rcx 0x1675 __ALIGN_SIZE+0x675 rax 0xffffffff8237b313 ktrops+0x43 r8 0xfffffd805cf19048 r9 0xfffffd807f7d7680 r10 0xc56444afd6d8f95c r11 0x90d9e126ad2ea8ae r12 0xffff80002a7e0520 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0xa0c7df9b rip 0xffffffff8237b328 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003ca43070 ss 0x10 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=71080 pid=11717 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=84, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a7f36f8,0xffff80002a7f27d8 process=0xffff800035d24468 user=0xffff80003ca3e000, vmspace=0xfffffd806c0cf448 estcpu=34, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 55540 516986 99025 0 2 0 syz-executor 57311 225818 75683 0 2 0 syz-executor 57311 30422 75683 0 3 0x4000080 fsleep syz-executor 57311 119843 75683 0 3 0x4000080 fsleep syz-executor 11717 203674 49982 0 2 0 syz-executor *11717 71080 49982 0 7 0x4000000 syz-executor 90246 153707 53192 0 2 0 syz-executor 90246 269280 53192 0 3 0x4000080 fsleep syz-executor 43542 28776 65489 0 3 0x2 biowait syz-executor 12201 97613 0 0 3 0x14200 acct acct 71385 303716 1 0 3 0x100083 ttyopn getty 99025 103594 65489 0 2 0x2 syz-executor 96339 441132 65489 0 2 0x2 syz-executor 19449 257161 65489 0 2 0x482 syz-executor 53192 149365 65489 0 2 0x482 syz-executor 48011 206152 0 0 3 0x14280 nfsidl nfsio 55050 361516 0 0 3 0x14280 nfsidl nfsio 81334 179178 0 0 3 0x14280 nfsidl nfsio 44902 415768 0 0 3 0x14280 nfsidl nfsio 30443 471122 0 0 3 0x14280 nfsidl nfsio 92681 173268 0 0 3 0x14280 nfsidl nfsio 15564 159796 0 0 3 0x14280 nfsidl nfsio 42902 484184 0 0 3 0x14280 nfsidl nfsio 29367 457045 0 0 3 0x14280 nfsidl nfsio 59067 225403 0 0 3 0x14280 nfsidl nfsio 21864 160336 0 0 3 0x14280 nfsidl nfsio 71402 45248 0 0 3 0x14280 nfsidl nfsio 76242 504270 0 0 3 0x14280 nfsidl nfsio 83775 931 0 0 3 0x14280 nfsidl nfsio 45780 38126 0 0 3 0x14280 nfsidl nfsio 33445 43856 0 0 3 0x14280 nfsidl nfsio 58874 269273 0 0 3 0x14280 nfsidl nfsio 73106 362366 0 0 3 0x14280 nfsidl nfsio 29002 183889 0 0 3 0x14280 nfsidl nfsio 89828 422907 0 0 3 0x14280 nfsidl nfsio 71804 448733 0 0 3 0x14200 bored sosplice 39639 151808 65489 0 2 0x2 syz-executor 75683 206784 65489 0 2 0x482 syz-executor 49982 355936 65489 0 2 0x482 syz-executor 65489 299682 76335 0 3 0x82 kqread syz-executor 76335 284441 13708 0 3 0x10008a sigsusp ksh 13708 197347 29742 0 3 0x98 kqread sshd-session 29742 217462 1 0 3 0x92 kqread sshd-session 47600 333580 88072 73 3 0x1100090 kqread syslogd 88072 377165 1 0 3 0x100082 sbwait syslogd 12338 16176 1 0 3 0x100080 kqread resolvd 86643 411676 42850 77 3 0x100092 kqread dhcpleased 62731 398757 42850 77 3 0x100092 kqread dhcpleased 42850 271733 1 0 3 0x80 kqread dhcpleased 68140 58692 0 0 3 0x14200 bored smr 39183 384864 0 0 2 0x14200 zerothread 12314 123603 0 0 3 0x14200 aiodoned aiodoned 95947 231797 0 0 3 0x14200 syncer update 38052 248163 0 0 3 0x14200 cleaner cleaner 57790 342705 0 0 3 0x14200 reaper reaper 11756 495537 0 0 3 0x14200 pgdaemon pagedaemon 70298 167107 0 0 3 0x14200 bored viomb 2201 362808 0 0 3 0x40014200 acpi0 acpi0 26843 68205 0 0 3 0x14200 bored softnet3 82018 148049 0 0 3 0x14200 bored softnet2 16149 240629 0 0 3 0x14200 bored softnet1 62616 319862 0 0 3 0x14200 bored softnet0 35996 248682 0 0 3 0x14200 bored systqmp 27008 7454 0 0 3 0x14200 bored systq 18564 147177 0 0 2 0x40014200 softclock 78496 26647 0 0 3 0x40014200 idle0 1 25762 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10230 11134K 11699K 166960K 16649 0 pcb 17 18K 23K 166960K 1015 0 rtable 189 8K 9K 166960K 999 0 pf 39 14K 268K 166960K 216 0 ifaddr 38 7K 8K 166960K 157 0 ifgroup 59 2K 2K 166960K 250 0 sysctl 4 1K 1K 166960K 8 0 counters 32 17K 17K 166960K 112 0 ioctlops 0 0K 4K 166960K 555 0 iov 0 0K 32K 166960K 199 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1455 91K 92K 166960K 4207 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 57 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 209 0 dirhash 12 2K 2K 166960K 69 0 ACPI 1690 195K 286K 166960K 12468 0 file desc 15 53K 97K 166960K 2848 0 sigio 0 0K 0K 166960K 147 0 proc 60 59K 124K 166960K 886 0 subproc 72 4K 4K 166960K 127 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 669 0 in_multi 79 5K 7K 166960K 308 0 ether_multi 1 0K 0K 166960K 26 0 mrt 1 0K 0K 166960K 7 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 259 1155K 1155K 166960K 259 0 exec 0 0K 1K 166960K 914 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 183 71K 105K 166960K 26956 0 UVM aobj 131 10K 10K 166960K 140 0 pinsyscall 34 68K 96K 166960K 4035 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 152 0 NDP 15 0K 2K 166960K 113 0 temp 110 8636K 8764K 166960K 104885 0 kqueue 12 18K 34K 166960K 527 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 430 0 426 4 2 2 3 0 8 1 rtentry 112 297 0 216 4 0 4 4 0 8 0 unpcb 144 3172 0 3156 18 12 6 6 0 8 5 syncache 336 6 0 6 4 3 1 1 0 8 1 tcpqe 32 2 0 2 2 1 1 1 0 8 1 tcpcb 808 1085 0 1082 24 20 4 8 0 8 3 arp 88 45 0 29 1 0 1 1 0 8 0 ipq 40 75 0 74 1 0 1 1 0 8 0 ipqe 40 229 0 228 1 0 1 1 0 8 0 inpcb 344 4122 0 4114 43 33 10 16 0 8 8 nd6 104 62 0 40 1 0 1 1 0 8 0 pkpcb 40 15 0 15 4 3 1 1 0 8 1 kcovpl 48 14 0 6 1 0 1 1 0 8 0 ppxss 1072 57 0 57 3 2 1 1 0 8 1 pppxif 1376 8 0 8 3 2 1 1 0 8 1 pfstscr 40 2 0 2 2 2 0 1 0 8 0 pfrktable 1344 4 0 4 1 1 0 1 0 8 0 pfanchor 1288 2 0 1 1 0 1 1 0 8 0 pftag 88 2 0 1 2 1 1 1 0 8 0 pfstitem 24 10 0 1 1 0 1 1 0 8 0 pfstkey 128 15 0 8 2 1 1 1 0 8 0 pfstate 344 8 0 3 2 1 1 1 0 8 0 pfrule 1344 6 0 6 2 2 0 1 0 8 0 art_heap8 4096 4 0 0 4 0 4 4 0 8 0 art_heap4 256 1115 0 736 38 9 29 31 0 8 4 art_table 32 1119 0 736 4 0 4 4 0 8 0 art_node 16 254 0 185 1 0 1 1 0 8 0 sysvmsgpl 40 149 0 142 1 0 1 1 0 8 0 semapl 112 204 0 194 1 0 1 1 0 8 0 shmpl 112 137 0 9 4 0 4 4 0 8 0 dirhash 1024 57 0 40 3 0 3 3 0 8 0 dino2pl 256 6534 0 5038 95 0 95 95 0 8 0 ffsino 248 6534 0 5038 95 0 95 95 0 8 0 nchpl 144 10789 0 10212 63 41 22 63 0 8 0 rtmask 32 3 0 3 2 1 1 1 0 8 1 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 40689 0 40687 3 2 1 2 0 8 0 pfiaddrpl 120 1 0 1 1 1 0 1 0 8 0 kstatmem 264 154 0 128 2 0 2 2 0 8 0 acpiwqpl 32 1 0 1 1 0 1 1 1 8 1 scsiplug 72 10 0 10 4 3 1 1 0 8 1 scxspl 216 35139 0 35138 24 16 8 8 1 8 7 plimitpl 152 845 0 827 1 0 1 1 0 8 0 sigapl 424 3145 0 3081 9 1 8 8 0 8 0 futexpl 64 44168 0 44165 2 1 1 1 0 8 0 knotepl 120 424908 0 424862 42 31 11 16 0 8 8 kqueuepl 184 1034 0 1026 6 5 1 4 0 8 0 pipepl 296 612 0 585 10 7 3 8 0 8 0 fdescpl 440 3099 0 3073 5 1 4 5 0 8 0 filepl 120 25576 0 25370 25 14 11 15 0 8 2 lockfpl 104 1017 0 1015 2 0 2 2 0 8 1 lockfspl 48 451 0 449 1 0 1 1 0 8 0 sessionpl 144 29 0 22 1 0 1 1 0 8 0 pgrppl 48 146 0 131 1 0 1 1 0 8 0 ucredpl 104 4424 0 4412 1 0 1 1 0 8 0 zombiepl 144 3082 0 3081 1 0 1 1 0 8 0 processpl 1104 3145 0 3081 5 0 5 5 0 8 0 procpl 648 7077 0 7009 8 1 7 7 0 8 0 sosppl 168 12 0 12 3 2 1 1 0 8 1 sockpl 528 7817 0 7791 48 38 10 16 0 8 8 mcl64k 65536 54 0 54 3 2 1 1 0 8 1 mcl16k 16384 3 0 3 2 2 0 1 0 8 0 mcl12k 12288 3 0 3 2 1 1 1 0 8 1 mcl8k 8192 35 0 35 4 3 1 1 0 8 1 mcl4k 4096 6136 0 6088 15 7 8 13 0 8 1 mcl2k2 2112 1 0 1 1 0 1 1 0 8 1 mcl2k 2048 3694 0 3616 15 4 11 11 0 8 1 mtagpl 96 404 0 217 5 0 5 5 0 8 0 mbufpl 256 38299 0 37973 92 64 28 82 0 8 7 bufpl 280 11560 0 5332 446 0 446 446 0 8 0 anonpl 24 400700 0 392560 115 41 74 74 0 187 2 amapchunkpl 152 91859 0 91399 67 30 37 37 0 158 13 amappl16 200 8466 0 8190 59 31 28 28 0 8 2 amappl15 192 4 0 4 1 1 0 1 0 8 0 amappl14 184 117 0 108 1 0 1 1 0 8 0 amappl13 176 29 0 29 1 1 0 1 0 8 0 amappl12 168 3802 0 3776 3 1 2 3 0 8 0 amappl11 160 52 0 42 1 0 1 1 0 8 0 amappl10 152 20 0 20 3 3 0 1 0 8 0 amappl9 144 255 0 255 1 1 0 1 0 8 0 amappl8 136 26 0 24 1 0 1 1 0 8 0 amappl7 128 130 0 120 1 0 1 1 0 8 0 amappl6 120 228 0 224 1 0 1 1 0 8 0 amappl5 112 145 0 136 1 0 1 1 0 8 0 amappl4 104 378 0 366 1 0 1 1 0 8 0 amappl3 96 18749 0 18663 4 0 4 4 0 8 0 amappl2 88 725 0 673 2 0 2 2 0 8 0 amappl1 80 16122 0 15684 14 2 12 13 0 8 0 amappl 88 26333 0 26194 6 1 5 5 0 92 0 dma16384 16384 33 0 33 1 0 1 1 0 8 1 dma8192 8192 66 0 66 1 0 1 1 0 8 1 dma4096 4096 2 0 2 2 2 0 1 0 8 0 dma2048 2048 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 7 0 7 2 2 0 1 0 8 0 dma128 128 258 0 258 3 2 1 1 0 8 1 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 139 0 9 3 0 3 3 0 8 0 uaddrrnd 24 3099 0 3073 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 3099 0 3073 1 0 1 1 0 8 0 vmmpekpl 168 23488 0 23437 3 0 3 3 0 8 0 vmmpepl 168 188210 0 186460 112 12 100 100 0 357 4 vmsppl 360 3098 0 3073 4 1 3 4 0 8 0 rwobjpl 32 51544 0 44507 61 1 60 60 0 8 2 pdppl 4096 6204 0 6146 154 88 66 82 0 8 8 pvpl 32 1237032 0 1224409 226 59 167 167 0 265 28 pmappl 216 3098 0 3073 3 1 2 3 0 8 0 extentpl 40 55 0 38 1 0 1 1 0 8 0 phpool 112 464 0 208 9 0 9 9 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a7e0520,ffffffffffffffff,0,a0c7df9b,fffffd805cf19048,fffffd807f7d7680) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7e0520,ffffffffffffffff,0,a0c7df9b,fffffd805cf19048,fffffd807f7d7680) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805cf19048,4,20c7df9b,0,ffff80002a7e0520) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805cf19048,4,20c7df9b,0,ffff80002a7e0520) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7e0520,ffff80003ca433d0,ffff80003ca43320) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca433d0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9fb5430db80, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a7e0520,ffffffffffffffff,0,a0c7df9b,fffffd805cf19048,fffffd807f7d7680) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7e0520,ffffffffffffffff,0,a0c7df9b,fffffd805cf19048,fffffd807f7d7680) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805cf19048,4,20c7df9b,0,ffff80002a7e0520) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805cf19048,4,20c7df9b,0,ffff80002a7e0520) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7e0520,ffff80003ca433d0,ffff80003ca43320) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca433d0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9fb5430db80, count: -5