uvm_fault(0xfffffd8061d2d3e8, 0x5960, 0, 2) -> e kernel: page fault trap, code=2 Stopped at copyout+0x57: repe movsq (%rsi),%es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND *224779 88923 0 0 0x4000000 0 syz-executor copyout() at copyout+0x57 syscall(ffff80003c4d71d0) at syscall+0xbc6 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80003c4d71d0) at syscall+0xbc6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xe14e8469d40, count: 12 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xfffffd8061d2d3e8, 0x5960, 0, 2) -> e ddb{0}> trace copyout() at copyout+0x57 syscall(ffff80003c4d71d0) at syscall+0xbc6 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80003c4d71d0) at syscall+0xbc6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xe14e8469d40, count: -3 ddb{0}> show registers rdi 0x5960 __ALIGN_SIZE+0x4960 rsi 0xffff80003c4d6fa0 rbp 0xffff80003c4d70f0 rbx 0x7d35 __ALIGN_SIZE+0x6d35 rdx 0xffff80003c4d2000 rcx 0x4 rax 0x20 r8 0x7f7fffffc000 r9 0 r10 0x1baf7f712a7981ec r11 0xffffffff82f8f4a0 copy_fault r12 0x4 r13 0x16 r14 0xffff80003c4d71d0 r15 0xffff80003c4d6fa0 rip 0xffffffff82f8f3c7 copyout+0x57 cs 0x8 rflags 0x50202 acpi_pdirpa+0x3c073 rsp 0xffff80003c4d6e30 ss 0x10 copyout+0x57: repe movsq (%rsi),%es:(%rdi) ddb{0}> show proc PROC (syz-executor) tid=224779 pid=88923 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=32, usrpri=84, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80003c446568,0xffff80003c447768 process=0xffff80003c4bce20 user=0xffff80003c4d2000, vmspace=0xfffffd8061d2d3e8 estcpu=34, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 21745 496842 9389 0 2 0 syz-executor 21745 48444 9389 0 3 0x4000080 fsleep syz-executor 52672 328568 73091 0 2 0 syz-executor 52672 174400 73091 0 3 0x4000080 fsleep syz-executor 53100 467216 25063 -1 2 0x10 syz-executor 53100 512789 25063 -1 3 0x4000090 fsleep syz-executor 98037 178816 91314 0 2 0 syz-executor 98037 233422 91314 0 3 0x4000080 kqsel syz-executor 98037 336912 91314 0 3 0x4000080 fsleep syz-executor 88923 21018 46161 0 2 0 syz-executor *88923 224779 46161 0 7 0x4000000 syz-executor 88923 480084 46161 0 3 0x4000080 fsleep syz-executor 88499 419359 4994 0 3 0x80 nanoslp syz-executor 88499 485179 4994 0 3 0x4000080 fsleep syz-executor 88499 462712 4994 0 3 0x4000080 sbwait syz-executor 88499 331802 4994 0 3 0x4000080 fsleep syz-executor 59760 437164 59042 0 2 0x2 syz-executor 28173 55647 59042 0 3 0x82 nanoslp syz-executor 9389 100818 59042 0 2 0x482 syz-executor 74910 200000 1 0 3 0x100083 ttyin getty 91314 105208 59042 0 2 0x482 syz-executor 82733 107986 0 0 3 0x14280 nfsidl nfsio 88312 48492 0 0 3 0x14280 nfsidl nfsio 63901 107985 0 0 3 0x14280 nfsidl nfsio 32576 225066 0 0 3 0x14280 nfsidl nfsio 82523 473438 0 0 3 0x14280 nfsidl nfsio 21154 220421 0 0 3 0x14280 nfsidl nfsio 10235 46193 0 0 3 0x14280 nfsidl nfsio 90906 488748 0 0 3 0x14280 nfsidl nfsio 17010 2709 0 0 3 0x14280 nfsidl nfsio 41659 463197 0 0 3 0x14280 nfsidl nfsio 9461 287595 0 0 3 0x14280 nfsidl nfsio 44054 296393 0 0 3 0x14280 nfsidl nfsio 40162 507904 0 0 3 0x14280 nfsidl nfsio 2294 400755 0 0 3 0x14280 nfsidl nfsio 48156 476689 0 0 3 0x14280 nfsidl nfsio 11450 328896 0 0 3 0x14280 nfsidl nfsio 71357 332366 0 0 3 0x14280 nfsidl nfsio 92340 166855 0 0 3 0x14280 nfsidl nfsio 64298 316132 0 0 3 0x14280 nfsidl nfsio 47704 125469 0 0 3 0x14280 nfsidl nfsio 25063 143043 59042 0 2 0x482 syz-executor 26813 48797 0 0 3 0x14200 bored sosplice 46161 507168 59042 0 2 0x482 syz-executor 73091 353555 59042 0 2 0x482 syz-executor 4994 120140 59042 0 2 0x482 syz-executor 59042 93746 40445 0 3 0x82 kqread syz-executor 40445 220593 90086 0 3 0x10008a sigsusp ksh 90086 343386 97885 0 3 0x98 kqread sshd-session 97885 51709 43430 0 3 0x92 kqread sshd-session 43430 357801 1 0 3 0x88 kqread sshd 3000 367398 14187 74 3 0x1100092 bpf pflogd 14187 394929 1 0 3 0x80 sbwait pflogd 10972 418481 83562 73 3 0x1100090 kqread syslogd 83562 205443 1 0 3 0x100082 sbwait syslogd 8271 253637 1 0 3 0x100080 kqread resolvd 4960 230267 47997 77 3 0x100092 kqread dhcpleased 80338 31055 47997 77 3 0x100092 kqread dhcpleased 47997 130670 1 0 3 0x80 kqread dhcpleased 10441 196570 0 0 3 0x14200 bored smr 26101 84453 0 0 2 0x14200 zerothread 12497 163498 0 0 3 0x14200 aiodoned aiodoned 54065 122061 0 0 3 0x14200 syncer update 851 502793 0 0 3 0x14200 cleaner cleaner 83165 165864 0 0 3 0x14200 reaper reaper 62221 210 0 0 3 0x14200 pgdaemon pagedaemon 91846 351 0 0 3 0x14200 bored viomb 19261 240135 0 0 3 0x40014200 acpi0 acpi0 67278 462327 0 0 7 0x40014200 idle1 52489 37754 0 0 3 0x14200 bored softnet3 83751 335186 0 0 3 0x14200 bored softnet2 13050 185055 0 0 3 0x14200 bored softnet1 24519 175038 0 0 3 0x14200 bored softnet0 95103 424689 0 0 3 0x14200 bored systqmp 59328 10694 0 0 3 0x14200 bored systq 29880 410524 0 0 3 0x14200 tmoslp softclockmp 24457 286926 0 0 2 0x40014200 softclock 92031 118740 0 0 3 0x40014200 idle0 1 371914 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb{0}> show all locks Process 59760 (syz-executor) thread 0xffff8000ffff2530 (437164) exclusive rrwlock inode r = 0 (0xfffffd806dd9bd18) #0 witness_lock+0x5bb stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5bb sys/kern/subr_witness.c:1160 #1 rw_do_enter_write+0x3ea sys/kern/kern_rwlock.c:316 #2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:616 #3 VOP_LOCK+0xa6 sys/kern/vfs_vops.c:524 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570 #5 vget+0x2bd sys/kern/vfs_subr.c:694 #6 ufs_ihashget+0x185 sys/ufs/ufs/ufs_ihash.c:98 #7 ffs_vget+0x8c sys/ufs/ffs/ffs_vfsops.c:1201 #8 ufs_lookup+0x19f8 sys/ufs/ufs/ufs_lookup.c:478 #9 VOP_LOOKUP+0x6e sys/kern/vfs_vops.c:85 #10 vfs_lookup+0x8fa sys/kern/vfs_lookup.c:566 #11 namei+0x7aa sys/kern/vfs_lookup.c:250 #12 dounlinkat+0xc1 sys/kern/vfs_syscalls.c:1866 #13 syscall+0xb08 mi_syscall sys/sys/syscall_mi.h:176 [inline] #13 syscall+0xb08 sys/arch/amd64/amd64/trap.c:577 #14 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd806ddf7418) #0 witness_lock+0x5bb stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5bb sys/kern/subr_witness.c:1160 #1 rw_do_enter_write+0x3ea sys/kern/kern_rwlock.c:316 #2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:616 #3 VOP_LOCK+0xa6 sys/kern/vfs_vops.c:524 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:570 #5 vget+0x2bd sys/kern/vfs_subr.c:694 #6 cache_lookup+0x36e sys/kern/vfs_cache.c:222 #7 ufs_lookup+0x21b sys/ufs/ufs/ufs_lookup.c:160 #8 VOP_LOOKUP+0x6e sys/kern/vfs_vops.c:85 #9 vfs_lookup+0x8fa sys/kern/vfs_lookup.c:566 #10 namei+0x7aa sys/kern/vfs_lookup.c:250 #11 dounlinkat+0xc1 sys/kern/vfs_syscalls.c:1866 #12 syscall+0xb08 mi_syscall sys/sys/syscall_mi.h:176 [inline] #12 syscall+0xb08 sys/arch/amd64/amd64/trap.c:577 #13 Xsyscall+0x128 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10234 11071K 11565K 166960K 16310 0 pcb 18 16K 18K 166960K 561 0 rtable 204 11K 12K 166960K 852 0 pf 36 17K 19K 166960K 190 0 ifaddr 37 6K 8K 166960K 146 0 ifgroup 57 2K 3K 166960K 247 0 sysctl 4 1K 1K 166960K 8 0 counters 68 36K 37K 166960K 330 0 ioctlops 0 0K 4K 166960K 2017 0 iov 0 0K 24K 166960K 220 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1455 91K 92K 166960K 4040 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 5K 13K 166960K 75 0 VM map 2 1K 1K 166960K 2 0 sem 24 10K 11K 166960K 48 0 dirhash 12 2K 2K 166960K 57 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 17 61K 89K 166960K 2984 0 sigio 0 0K 0K 166960K 42 0 proc 73 91K 140K 166960K 1043 0 subproc 72 4K 4K 166960K 145 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 358 0 in_multi 73 5K 7K 166960K 261 0 ether_multi 1 0K 0K 166960K 33 0 mrt 1 0K 0K 166960K 16 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 235 1049K 1049K 166960K 235 0 exec 0 0K 1K 166960K 950 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 249 163K 180K 166960K 28674 0 UVM aobj 159 7K 7K 166960K 168 0 pinsyscall 42 84K 106K 166960K 4313 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 145 0 NDP 13 0K 2K 166960K 106 0 temp 86 8692K 8820K 166960K 144482 0 kqueue 13 20K 31K 166960K 489 0 SYN cache 2 10K 18K 166960K 3 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 26 0 0 1 0 1 1 0 8 0 rtpcb 120 300 0 296 3 2 1 2 0 8 0 rtentry 176 243 0 161 6 0 6 6 0 8 0 unpcb 144 2248 0 2227 19 17 2 6 0 8 1 syncache 336 10 0 10 7 7 0 1 0 8 0 tcpqe 32 7 0 7 5 5 0 1 0 8 0 tcpcb 808 835 0 830 26 24 2 8 0 8 1 arp 128 42 0 24 1 0 1 1 0 8 0 inpcb 384 2950 0 2939 54 51 3 12 0 8 1 nd6 144 54 0 35 2 0 2 2 0 8 0 pkpcb 40 22 0 22 8 7 1 1 0 8 1 kcovpl 48 16 0 8 1 0 1 1 0 8 0 mppekey 1024 1 0 1 1 1 0 1 0 8 0 ppxss 1192 108 0 106 9 8 1 1 0 8 0 pppxif 1504 6 0 6 4 4 0 1 0 8 0 pffrag 232 22 0 15 1 0 1 1 0 482 0 pffrnode 88 20 0 14 1 0 1 1 0 8 0 pffrent 40 31 0 24 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pftag 88 1 0 0 1 0 1 1 0 8 0 pfstitem 24 160 0 112 1 0 1 1 0 8 0 pfstkey 128 160 0 112 2 0 2 2 0 8 0 pfstate 384 160 0 112 7 1 6 6 0 8 0 pfrule 1344 25 0 19 2 1 1 2 0 8 0 rttmr 136 1 0 1 1 1 0 1 0 8 0 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 970 0 618 38 9 29 29 0 8 2 art_table 32 973 0 618 4 0 4 4 0 8 0 art_node 16 230 0 159 1 0 1 1 0 8 0 sysvmsgpl 40 18 0 14 2 1 1 1 0 8 0 semupl 112 4 0 4 3 3 0 1 0 8 0 semapl 112 33 0 11 1 0 1 1 0 8 0 shmpl 112 165 0 9 5 0 5 5 0 8 0 dirhash 1024 47 0 30 3 0 3 3 0 8 0 dino2pl 256 6782 0 5269 97 1 96 96 0 8 0 ffsino 288 6782 0 5269 109 0 109 109 0 8 0 nchpl 144 10786 0 10168 64 39 25 64 0 8 0 rtmask 32 22 0 22 9 8 1 1 0 8 1 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 38919 0 38919 6 5 1 2 0 8 1 percpumem 16 180 0 131 1 0 1 1 0 8 0 kstatmem 264 148 0 122 3 0 3 3 0 8 0 acpiwqpl 32 2 0 2 1 0 1 1 1 8 1 scsiplug 72 14 0 14 8 7 1 1 0 8 1 scxspl 216 35900 0 35900 17 15 2 8 1 8 2 plimitpl 152 551 0 534 1 0 1 1 0 8 0 sigapl 424 3298 0 3228 10 1 9 9 0 8 0 futexpl 64 38044 0 38037 1 0 1 1 0 8 0 knotepl 120 725 0 0 18 0 18 18 0 8 0 kqueuepl 224 1151 0 1140 17 12 5 5 0 8 4 pipepl 336 409 0 382 5 2 3 5 0 8 0 fdescpl 520 3257 0 3226 3 0 3 3 0 8 0 filepl 160 21704 0 21483 43 30 13 19 0 8 0 lockfpl 104 836 0 834 1 0 1 1 0 8 0 lockfspl 48 332 0 330 1 0 1 1 0 8 0 sessionpl 144 39 0 30 1 0 1 1 0 8 0 pgrppl 48 158 0 141 1 0 1 1 0 8 0 ucredpl 104 3618 0 3604 1 0 1 1 0 8 0 zombiepl 144 4432 0 4431 3 2 1 1 0 8 0 processpl 1192 3298 0 3228 6 0 6 6 0 8 0 procpl 656 7964 0 7884 11 3 8 9 0 8 0 srpgc 96 18 0 18 5 4 1 1 0 8 1 sosppl 168 16 0 16 8 7 1 1 0 8 1 sockpl 728 5593 0 5557 68 63 5 18 0 8 0 mcl64k 65536 12 0 0 2 0 2 2 0 8 0 mcl16k 16384 8 0 0 1 0 1 1 0 8 0 mcl12k 12288 3 0 0 1 0 1 1 0 8 0 mcl9k 9216 4 0 0 1 0 1 1 0 8 0 mcl8k 8192 5 0 0 1 0 1 1 0 8 0 mcl4k 4096 114 0 0 14 0 14 14 0 8 0 mcl2k2 2112 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 39 0 0 4 0 4 4 0 8 0 mtagpl 96 304 0 0 8 0 8 8 0 8 0 mbufpl 256 1371 0 0 83 0 83 83 0 8 0 bufpl 280 12849 0 6706 441 1 440 440 0 8 1 anonpl 32 13233 0 0 106 0 106 106 0 246 0 amapchunkpl 152 96026 0 95438 67 37 30 36 0 158 4 amappl16 200 7343 0 7071 45 17 28 28 0 8 3 amappl15 192 48 0 48 1 1 0 1 0 8 0 amappl14 184 147 0 135 1 0 1 1 0 8 0 amappl13 176 11 0 11 3 3 0 1 0 8 0 amappl12 168 4032 0 4001 3 1 2 2 0 8 0 amappl11 160 54 0 40 1 0 1 1 0 8 0 amappl10 152 13 0 13 2 2 0 1 0 8 0 amappl9 144 244 0 244 1 1 0 1 0 8 0 amappl8 136 23 0 20 1 0 1 1 0 8 0 amappl7 128 130 0 117 1 0 1 1 0 8 0 amappl6 120 264 0 260 1 0 1 1 0 8 0 amappl5 112 178 0 167 1 0 1 1 0 8 0 amappl4 104 374 0 352 1 0 1 1 0 8 0 amappl3 96 20445 0 20331 4 0 4 4 0 8 0 amappl2 88 813 0 748 2 0 2 2 0 8 0 amappl1 80 22289 0 21693 20 4 16 16 0 8 0 amappl 88 27291 0 27117 5 0 5 5 0 92 0 dma65536 65536 1 0 1 1 1 0 1 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 3 0 2 1 0 1 1 0 8 0 dma256 256 43 0 43 5 5 0 1 0 8 0 dma128 128 256 0 256 4 4 0 1 0 8 0 dma64 64 9 0 9 4 4 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 167 0 9 3 0 3 3 0 8 0 uaddrrnd 24 3257 0 3226 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 3257 0 3226 1 0 1 1 0 8 0 vmmpekpl 168 24872 0 24802 4 0 4 4 0 8 0 vmmpepl 168 206760 0 204501 131 17 114 118 0 357 0 vmsppl 480 3256 0 3226 6 1 5 5 0 8 0 rwobjpl 72 56124 0 48848 140 3 137 139 0 8 0 pdppl 4096 6522 0 6452 129 57 72 84 0 8 2 pvpl 32 21199 0 0 172 1 171 171 0 265 0 pmappl 256 3256 0 3226 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 540 0 113 13 0 13 13 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace copyout() at copyout+0x57 syscall(ffff80003c4d71d0) at syscall+0xbc6 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80003c4d71d0) at syscall+0xbc6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xe14e8469d40, count: -3 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x41e sys/dev/acpi/acpicpu.c:1218 sched_idle(ffff8000299edff0) at sched_idle+0x558 sys/kern/kern_sched.c:182 end trace frame: 0x0, count: 10 ddb{1}> trace x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x41e sys/dev/acpi/acpicpu.c:1218 sched_idle(ffff8000299edff0) at sched_idle+0x558 sys/kern/kern_sched.c:182 end trace frame: 0x0, count: -5