uvm_fault(0xfffffd807433e5a8, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *219604 35137 0 0 0x4000000 0 syz-executor ktrops(ffff80002a81a7e0,ffffffffffffffff,0,80000538,fffffd805dfd5d80,fffffd807f7d7478) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a81a7e0,ffffffffffffffff,0,80000538,fffffd805dfd5d80,fffffd807f7d7478) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805dfd5d80,4,538,0,ffff80002a81a7e0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805dfd5d80,4,538,0,ffff80002a81a7e0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a81a7e0,ffff80003ca132c0,ffff80003ca13210) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca132c0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca132c0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7785ac2fc50, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd807433e5a8, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a81a7e0,ffffffffffffffff,0,80000538,fffffd805dfd5d80,fffffd807f7d7478) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a81a7e0,ffffffffffffffff,0,80000538,fffffd805dfd5d80,fffffd807f7d7478) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805dfd5d80,4,538,0,ffff80002a81a7e0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805dfd5d80,4,538,0,ffff80002a81a7e0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a81a7e0,ffff80003ca132c0,ffff80003ca13210) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca132c0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca132c0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7785ac2fc50, count: -5 ddb> show registers rdi 0xffff80002a81a7e0 rsi 0xffffffffffffffff rbp 0xffff80003ca12fe0 rbx 0xfffffd807f7d7478 rdx 0 rcx 0x80000538 __kernel_virt_to_phys+0x538 rax 0xffff80002a81a7e0 r8 0xfffffd805dfd5d80 r9 0xfffffd807f7d7478 r10 0xc634dd9506f25e47 r11 0xa46921ff4269161 r12 0xffff80002a81a7e0 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0x80000538 __kernel_virt_to_phys+0x538 rip 0xffffffff822fa2d8 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003ca12f60 ss 0 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=219604 pid=35137 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=81, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a81aa70,0xffff80002a81dc78 process=0xffff80003c975e88 user=0xffff80003ca0e000, vmspace=0xfffffd807433e5a8 estcpu=31, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 40278 389818 16310 0 2 0 syz-executor 40278 65943 16310 0 3 0x4000000 biowait syz-executor 72575 144613 69384 0 2 0 syz-executor 72575 205519 69384 0 3 0x4000080 nanoslp syz-executor 1688 57645 89163 60928 2 0x10 syz-executor 1688 20191 89163 60928 2 0x4000010 syz-executor 1688 293824 89163 60928 2 0x4000010 syz-executor 31737 376681 54977 0 3 0x10 vmmaplk syz-executor 31737 382629 54977 0 3 0x4000090 fsleep syz-executor 31737 100402 54977 0 2 0x4000010 syz-executor 35137 355837 28897 0 2 0 syz-executor *35137 219604 28897 0 7 0x4000000 syz-executor 35137 135834 28897 0 3 0x4000080 fsleep syz-executor 69384 311780 96675 0 3 0x82 nanoslp syz-executor 54977 455112 96675 0 3 0x82 nanoslp syz-executor 89163 228674 96675 0 3 0x82 nanoslp syz-executor 36969 234100 0 0 3 0x14280 nfsidl nfsio 87691 259953 0 0 3 0x14280 nfsidl nfsio 62528 439552 0 0 3 0x14280 nfsidl nfsio 2344 397307 0 0 3 0x14280 nfsidl nfsio 39971 30691 0 0 3 0x14280 nfsidl nfsio 96401 329608 0 0 3 0x14280 nfsidl nfsio 70174 421185 0 0 3 0x14280 nfsidl nfsio 88633 428917 0 0 3 0x14280 nfsidl nfsio 62651 184495 0 0 3 0x14280 nfsidl nfsio 50457 503031 0 0 3 0x14280 nfsidl nfsio 1195 318766 0 0 3 0x14280 nfsidl nfsio 84215 259196 0 0 3 0x14280 nfsidl nfsio 92821 34368 0 0 3 0x14280 nfsidl nfsio 83859 70936 0 0 3 0x14280 nfsidl nfsio 90042 88520 0 0 3 0x14280 nfsidl nfsio 31901 216687 0 0 3 0x14280 nfsidl nfsio 38263 405760 0 0 3 0x14280 nfsidl nfsio 48901 179425 0 0 3 0x14280 nfsidl nfsio 12798 59630 0 0 3 0x14280 nfsidl nfsio 66202 494184 0 0 3 0x14280 nfsidl nfsio 16310 99698 96675 0 3 0x82 nanoslp syz-executor 66626 132510 0 0 3 0x14200 bored sosplice 59528 466339 96675 0 2 0x2 syz-executor 54369 450887 96675 0 2 0x2 syz-executor 28897 347088 96675 0 3 0x82 nanoslp syz-executor 37715 423025 96675 0 2 0x2 syz-executor 96675 337815 83348 0 3 0x82 kqread syz-executor 83348 383011 10765 0 3 0x10008a sigsusp ksh 10765 441172 87485 0 3 0x98 kqread sshd-session 87485 333473 24060 0 3 0x92 kqread sshd-session 49437 273809 1 0 3 0x100083 ttyin getty 24060 57834 1 0 3 0x88 kqread sshd 86381 444352 12931 73 3 0x1100090 kqread syslogd 12931 308852 1 0 3 0x100082 sbwait syslogd 46531 335906 1 0 3 0x100080 kqread resolvd 63587 277466 16761 77 3 0x100092 kqread dhcpleased 64978 479306 16761 77 3 0x100092 kqread dhcpleased 16761 258512 1 0 3 0x80 kqread dhcpleased 30992 69948 0 0 3 0x14200 bored smr 33831 232340 0 0 2 0x14200 zerothread 80971 392256 0 0 3 0x14200 aiodoned aiodoned 10812 445991 0 0 3 0x14200 syncer update 31906 118210 0 0 3 0x14200 cleaner cleaner 60890 452506 0 0 3 0x14200 reaper reaper 25910 225214 0 0 3 0x14200 pgdaemon pagedaemon 85059 247422 0 0 3 0x14200 bored viomb 88959 47740 0 0 3 0x40014200 acpi0 acpi0 84020 43447 0 0 3 0x14200 bored softnet3 43010 434424 0 0 3 0x14200 bored softnet2 60079 96133 0 0 3 0x14200 bored softnet1 7177 413817 0 0 3 0x14200 bored softnet0 46690 99860 0 0 3 0x14200 bored systqmp 10386 44377 0 0 3 0x14200 bored systq 72586 300120 0 0 3 0x40014200 tmoslp softclock 97992 360482 0 0 3 0x40014200 idle0 1 324595 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10210 11062K 11876K 166960K 16756 0 pcb 19 15K 17K 166960K 645 0 rtable 223 13K 14K 166960K 1351 0 pf 39 15K 23K 166960K 249 0 ifaddr 37 6K 8K 166960K 211 0 ifgroup 55 2K 2K 166960K 264 0 sysctl 4 1K 3K 166960K 12 0 counters 31 17K 18K 166960K 140 0 ioctlops 0 0K 4K 166960K 536 0 iov 0 0K 16K 166960K 417 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1485 93K 94K 166960K 4843 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 60 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 230 0 dirhash 12 2K 3K 166960K 63 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 57K 236K 166960K 3462 0 sigio 0 0K 0K 166960K 68 0 proc 61 59K 124K 166960K 899 0 subproc 72 4K 4K 166960K 112 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 1040 0 in_multi 71 5K 7K 166960K 625 0 ether_multi 1 0K 0K 166960K 22 0 mrt 0 0K 0K 166960K 9 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 247 1102K 1102K 166960K 247 0 exec 0 0K 1K 166960K 1007 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 3 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 212 151K 171K 166960K 32430 0 UVM aobj 131 4K 5K 166960K 140 0 pinsyscall 37 74K 96K 166960K 4633 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 235 0 NDP 12 0K 2K 166960K 171 0 temp 76 8684K 8812K 166960K 134620 0 kqueue 13 20K 30K 166960K 570 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 282 0 279 1 0 1 1 0 8 0 rtentry 136 519 0 431 5 0 5 5 0 8 0 unpcb 144 3288 0 3271 17 11 6 8 0 8 5 syncache 336 17 0 17 5 4 1 1 0 8 1 tcpqe 32 10 0 10 4 3 1 1 0 8 1 tcpcb 808 1332 0 1325 21 13 8 8 0 8 7 arp 88 45 0 26 1 0 1 1 0 8 0 ipq 40 10 0 10 1 0 1 1 0 8 1 ipqe 40 23 0 23 1 0 1 1 0 8 1 inpcb 344 4041 0 4025 35 27 8 11 0 8 5 nd6 104 133 0 110 1 0 1 1 0 8 0 pkpcb 40 18 0 18 3 2 1 1 0 8 1 kcovpl 48 12 0 4 1 0 1 1 0 8 0 mppekey 1024 2 0 2 2 2 0 1 0 8 0 ppxss 1072 85 0 85 5 4 1 1 0 8 1 pppxif 1384 7 0 7 4 3 1 1 0 8 1 pfstscr 40 3 0 3 2 2 0 1 0 8 0 pfrktable 1344 8 0 5 3 2 1 1 0 8 0 pfanchor 1288 6 0 0 1 0 1 1 0 8 0 pftag 88 4 0 1 1 0 1 1 0 8 0 pfqueue 320 1 0 1 1 1 0 1 0 8 0 pfstitem 24 3 0 0 1 0 1 1 0 8 0 pfstkey 128 14 0 11 1 0 1 1 0 8 0 pfstate 344 8 0 6 1 0 1 1 0 8 0 pfrule 1344 17 0 15 1 0 1 1 0 8 0 art_heap8 4096 4 0 0 4 0 4 4 0 8 0 art_heap4 256 2385 0 2060 32 7 25 30 0 8 2 art_table 32 2389 0 2060 4 0 4 4 0 8 0 art_node 16 505 0 428 1 0 1 1 0 8 0 sysvmsgpl 40 8 0 3 1 0 1 1 0 8 0 semupl 112 3 0 3 2 1 1 1 0 8 1 semapl 112 222 0 212 1 0 1 1 0 8 0 shmpl 112 137 0 9 4 0 4 4 0 8 0 dirhash 1024 51 0 34 3 0 3 3 0 8 0 dino2pl 256 8052 0 6550 95 0 95 95 0 8 0 ffsino 248 8052 0 6550 95 0 95 95 0 8 0 nchpl 144 12995 0 11314 63 0 63 63 0 8 0 rtmask 32 25 0 25 5 4 1 1 0 8 1 uvmvnodes 80 3897 0 0 80 0 80 80 0 8 0 vnodes 216 3897 0 0 217 0 217 217 0 8 0 namei 1024 47229 0 47225 6 5 1 2 0 8 0 pfiaddrpl 120 1 0 0 1 0 1 1 0 8 0 kstatmem 264 166 0 142 2 0 2 2 0 8 0 scsiplug 72 6 0 6 3 2 1 1 0 8 1 scxspl 216 41656 0 41655 23 15 8 8 1 8 7 plimitpl 152 911 0 894 1 0 1 1 0 8 0 sigapl 424 3750 0 3685 9 1 8 8 0 8 0 futexpl 64 51463 0 51461 1 0 1 1 0 8 0 knotepl 120 398686 0 398639 50 40 10 17 0 8 7 kqueuepl 184 1269 0 1258 7 3 4 4 0 8 3 pipepl 296 639 0 612 14 11 3 8 0 8 0 fdescpl 440 3708 0 3680 5 1 4 5 0 8 0 filepl 120 28264 0 28044 30 17 13 15 0 8 4 lockfpl 104 966 0 964 1 0 1 1 0 8 0 lockfspl 48 384 0 382 1 0 1 1 0 8 0 sessionpl 144 38 0 30 1 0 1 1 0 8 0 pgrppl 48 104 0 88 1 0 1 1 0 8 0 ucredpl 104 5865 0 5852 1 0 1 1 0 8 0 zombiepl 144 4481 0 4481 1 0 1 1 0 8 1 processpl 1112 3750 0 3685 5 0 5 5 0 8 0 procpl 656 9038 0 8965 8 0 8 8 0 8 0 sosppl 168 15 0 15 4 3 1 1 0 8 1 sockpl 528 7697 0 7662 48 38 10 16 0 8 7 mcl64k 65536 179 0 179 4 3 1 1 0 8 1 mcl16k 16384 4 0 4 1 1 0 1 0 8 0 mcl12k 12288 4 0 4 2 2 0 1 0 8 0 mcl9k 9216 3 0 3 3 3 0 1 0 8 0 mcl8k 8192 82 0 82 5 4 1 1 0 8 1 mcl4k 4096 7223 0 7173 15 7 8 12 0 8 1 mcl2k2 2112 2 0 2 2 1 1 1 0 8 1 mcl2k 2048 4023 0 4021 10 8 2 5 0 8 1 mtagpl 96 443 0 297 5 0 5 5 0 8 0 mbufpl 256 44653 0 43974 168 109 59 112 0 8 8 bufpl 280 14974 0 8747 446 0 446 446 0 8 0 anonpl 24 513687 0 505506 154 66 88 101 0 187 1 amapchunkpl 152 115058 0 114554 74 36 38 38 0 158 12 amappl16 200 10155 0 9890 94 67 27 40 0 8 0 amappl15 192 10 0 9 1 0 1 1 0 8 0 amappl14 184 136 0 126 1 0 1 1 0 8 0 amappl13 176 8 0 8 4 3 1 1 0 8 1 amappl12 168 4405 0 4378 3 1 2 3 0 8 0 amappl11 160 60 0 50 1 0 1 1 0 8 0 amappl10 152 12 0 12 3 3 0 1 0 8 0 amappl9 144 238 0 238 1 1 0 1 0 8 0 amappl8 136 27 0 25 1 0 1 1 0 8 0 amappl7 128 122 0 111 1 0 1 1 0 8 0 amappl6 120 226 0 222 1 0 1 1 0 8 0 amappl5 112 137 0 130 1 0 1 1 0 8 0 amappl4 104 376 0 358 1 0 1 1 0 8 0 amappl3 96 23397 0 23302 4 0 4 4 0 8 0 amappl2 88 751 0 694 2 0 2 2 0 8 0 amappl1 80 23532 0 22988 16 2 14 14 0 8 1 amappl 88 30910 0 30760 6 1 5 5 0 92 0 dma65536 65536 1 0 1 1 0 1 1 0 8 1 dma16384 16384 1 0 1 1 1 0 1 0 8 0 dma8192 8192 1 0 1 1 1 0 1 0 8 0 dma4096 4096 2 0 2 2 2 0 1 0 8 0 dma1024 1024 2 0 1 1 0 1 1 0 8 0 dma256 256 8 0 8 2 2 0 1 0 8 0 dma128 128 257 0 257 5 4 1 1 0 8 1 dma64 64 7 0 7 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 139 0 9 3 0 3 3 0 8 0 uaddrrnd 24 3708 0 3680 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 3708 0 3680 1 0 1 1 0 8 0 vmmpekpl 168 29288 0 29244 3 0 3 3 0 8 0 vmmpepl 168 233639 0 231618 147 40 107 117 0 357 3 vmsppl 360 3707 0 3680 4 1 3 4 0 8 0 rwobjpl 32 59764 0 54658 46 2 44 46 0 8 0 pdppl 4096 7423 0 7360 142 73 69 83 0 8 6 pvpl 32 1535653 0 1522410 292 126 166 198 0 265 2 pmappl 216 3707 0 3680 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 521 0 242 11 1 10 10 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a81a7e0,ffffffffffffffff,0,80000538,fffffd805dfd5d80,fffffd807f7d7478) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a81a7e0,ffffffffffffffff,0,80000538,fffffd805dfd5d80,fffffd807f7d7478) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805dfd5d80,4,538,0,ffff80002a81a7e0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805dfd5d80,4,538,0,ffff80002a81a7e0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a81a7e0,ffff80003ca132c0,ffff80003ca13210) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca132c0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca132c0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7785ac2fc50, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a81a7e0,ffffffffffffffff,0,80000538,fffffd805dfd5d80,fffffd807f7d7478) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a81a7e0,ffffffffffffffff,0,80000538,fffffd805dfd5d80,fffffd807f7d7478) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805dfd5d80,4,538,0,ffff80002a81a7e0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805dfd5d80,4,538,0,ffff80002a81a7e0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a81a7e0,ffff80003ca132c0,ffff80003ca13210) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca132c0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca132c0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7785ac2fc50, count: -5