uvm_fault(0xfffffd806f18ecf8, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *406554 76029 0 0 0x4000000 0 syz-executor ktrops(ffff80002a7e0fa8,ffffffffffffffff,0,a0c7df9f,fffffd805d7f4b18,fffffd8007bfb138) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7e0fa8,ffffffffffffffff,0,a0c7df9f,fffffd805d7f4b18,fffffd8007bfb138) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805d7f4b18,4,20c7df9f,0,ffff80002a7e0fa8) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805d7f4b18,4,20c7df9f,0,ffff80002a7e0fa8) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7e0fa8,ffff80003c9f3930,ffff80003c9f3880) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c9f3930) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9f3930) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4d84969d040, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806f18ecf8, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a7e0fa8,ffffffffffffffff,0,a0c7df9f,fffffd805d7f4b18,fffffd8007bfb138) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7e0fa8,ffffffffffffffff,0,a0c7df9f,fffffd805d7f4b18,fffffd8007bfb138) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805d7f4b18,4,20c7df9f,0,ffff80002a7e0fa8) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805d7f4b18,4,20c7df9f,0,ffff80002a7e0fa8) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7e0fa8,ffff80003c9f3930,ffff80003c9f3880) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c9f3930) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9f3930) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4d84969d040, count: -5 ddb> show registers rdi 0xffff80003394c000 rsi 0xaa6 rbp 0xffff80003c9f3650 rbx 0xfffffd8007bfb138 rdx 0xffff80003394c000 rcx 0xaa5 rax 0xffffffff810096e3 ktrops+0x43 r8 0xfffffd805d7f4b18 r9 0xfffffd8007bfb138 r10 0x1bb6c76961a7cfbc r11 0x85953c1e4fbfccf5 r12 0xffff80002a7e0fa8 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0xa0c7df9f rip 0xffffffff810096f8 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c9f35d0 ss 0 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=406554 pid=76029 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a7de2b8,0xffffffff8392f360 process=0xffff80002cd30938 user=0xffff80003c9ee000, vmspace=0xfffffd806f18ecf8 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 76029 325848 8294 0 2 0 syz-executor *76029 406554 8294 0 7 0x4000000 syz-executor 77941 193386 43350 0 2 0 syz-executor 77941 217636 43350 0 3 0x4000080 fsleep syz-executor 397 507443 38658 60928 2 0x10 syz-executor 397 321715 38658 60928 3 0x4000090 fifor syz-executor 397 320951 38658 60928 3 0x4000090 fsleep syz-executor 397 243122 38658 60928 3 0x4000090 fsleep syz-executor 80362 215853 1558 0 2 0xc80 syz-executor 80362 40900 1558 0 3 0x4000080 fsleep syz-executor 80362 336124 1558 0 3 0x4000080 kqsel syz-executor 80362 413219 1558 0 3 0x4000080 fsleep syz-executor 8294 44982 90999 0 3 0x82 nanoslp syz-executor 43350 49385 90999 0 2 0xc82 syz-executor 1558 415999 90999 0 3 0x82 nanoslp syz-executor 71181 181285 56868 0 3 0x82 sbwait sshd-session 35406 408888 90999 0 2 0x2 syz-executor 20320 63361 1 0 3 0x100083 ttyopn getty 81686 278858 0 0 3 0x14200 bored sosplice 38658 292532 90999 0 3 0x82 nanoslp syz-executor 26957 433367 90999 0 2 0xc82 syz-executor 77022 8796 90999 0 2 0x2 syz-executor 57371 52909 90999 0 3 0x82 nanoslp syz-executor 90999 437380 15918 0 3 0x82 kqread syz-executor 15918 37136 17732 0 3 0x10008a sigsusp ksh 17732 259257 25303 0 3 0x98 kqread sshd-session 25303 448092 56868 0 3 0x92 kqread sshd-session 56868 397870 1 0 3 0x88 kqread sshd 83867 130654 75251 73 3 0x1100090 kqread syslogd 75251 257350 1 0 3 0x100082 sbwait syslogd 11330 194635 1 0 3 0x100080 kqread resolvd 10522 426793 57386 77 3 0x100092 kqread dhcpleased 80739 98743 57386 77 3 0x100092 kqread dhcpleased 57386 134078 1 0 3 0x80 kqread dhcpleased 82237 46734 0 0 3 0x14200 bored smr 31232 326117 0 0 2 0x14200 zerothread 39811 391166 0 0 3 0x14200 aiodoned aiodoned 93827 190653 0 0 3 0x14200 syncer update 54139 515629 0 0 3 0x14200 cleaner cleaner 50753 343840 0 0 3 0x14200 reaper reaper 78848 77051 0 0 3 0x14200 pgdaemon pagedaemon 1322 166088 0 0 3 0x14200 bored viomb 30208 13737 0 0 3 0x40014200 acpi0 acpi0 99588 318408 0 0 3 0x14200 bored softnet7 72225 441332 0 0 3 0x14200 bored softnet6 61756 255665 0 0 3 0x14200 bored softnet5 24041 19217 0 0 3 0x14200 bored softnet4 7162 129710 0 0 3 0x14200 bored softnet3 95605 348381 0 0 3 0x14200 bored softnet2 60982 410775 0 0 3 0x14200 bored softnet1 56861 438261 0 0 3 0x14200 bored softnet0 66877 377716 0 0 3 0x14200 bored systqmp 95764 319962 0 0 3 0x14200 bored systq 18651 51328 0 0 2 0x40014200 softclock 48156 106355 0 0 3 0x40014200 idle0 1 25655 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10216 11066K 12131K 166960K 12704 0 pcb 19 16K 18K 166960K 408 0 rtable 213 10K 11K 166960K 576 0 pf 34 13K 17K 166960K 134 0 ifaddr 40 7K 8K 166960K 116 0 ifgroup 52 2K 2K 166960K 173 0 sysctl 4 1K 9K 166960K 13 0 counters 33 17K 18K 166960K 109 0 ioctlops 0 0K 4K 166960K 223 0 iov 0 0K 24K 166960K 75 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1401 88K 88K 166960K 2278 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 29 0 VM map 2 1K 1K 166960K 2 0 sem 29 5K 6K 166960K 70 0 dirhash 12 2K 3K 166960K 42 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 15 53K 110K 166960K 1327 0 sigio 0 0K 0K 166960K 18 0 proc 63 67K 100K 166960K 724 0 subproc 72 4K 4K 166960K 108 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 137 0 in_multi 84 6K 7K 166960K 196 0 ether_multi 1 0K 0K 166960K 5 0 mrt 2 0K 0K 166960K 10 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 247 1102K 1102K 166960K 247 0 exec 0 0K 2K 166960K 704 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 3 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 245 152K 168K 166960K 13232 0 UVM aobj 131 6K 6K 166960K 140 0 pinsyscall 39 78K 96K 166960K 2485 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 58 0 NDP 12 0K 2K 166960K 79 0 temp 76 8644K 8740K 166960K 56742 0 kqueue 14 22K 32K 166960K 238 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 195 0 191 3 0 3 3 0 8 2 rtentry 136 195 0 117 4 0 4 4 0 8 0 unpcb 144 1074 0 1055 6 0 6 6 0 8 5 syncache 336 9 0 9 1 0 1 1 0 8 1 tcpcb 736 542 0 536 7 0 7 7 0 8 5 arp 88 20 0 10 1 0 1 1 0 8 0 ipq 40 5 0 1 1 0 1 1 0 8 0 ipqe 40 6 0 2 1 0 1 1 0 8 0 inpcb 328 1454 0 1441 11 1 10 11 0 8 8 ip6q 72 11 0 3 1 0 1 1 0 8 0 ip6af 40 17 0 8 1 0 1 1 0 8 0 nd6 104 53 0 34 1 0 1 1 0 8 0 pkpcb 40 15 0 15 1 0 1 1 0 8 1 kcovpl 48 12 0 4 1 0 1 1 0 8 0 mppekey 1024 2 0 2 1 0 1 1 0 8 1 ppxss 1072 63 0 62 1 0 1 1 0 8 0 pppxif 1384 7 0 7 1 0 1 1 0 8 1 pfstitem 24 2 0 0 1 0 1 1 0 8 0 pfstkey 128 4 0 2 1 0 1 1 0 8 0 pfstate 384 2 0 1 1 0 1 1 0 8 0 pfrule 1344 2 0 2 1 0 1 1 0 8 1 rttmr 136 3 0 3 1 0 1 1 0 8 1 art_heap8 4096 4 0 0 4 0 4 4 0 8 0 art_heap4 256 1019 0 624 33 0 33 33 0 8 6 art_table 40 1023 0 624 6 0 6 6 0 8 0 art_node 32 194 0 126 1 0 1 1 0 8 0 sysvmsgpl 40 3 0 2 1 0 1 1 0 8 0 semupl 112 4 0 4 1 0 1 1 0 8 1 semapl 112 59 0 32 1 0 1 1 0 8 0 shmpl 112 137 0 9 4 0 4 4 0 8 0 dirhash 1024 37 0 20 3 0 3 3 0 8 0 dino2pl 256 3901 0 2385 95 0 95 95 0 8 0 ffsino 256 3901 0 2385 95 0 95 95 0 8 0 nchpl 144 5713 0 4002 64 0 64 64 0 8 0 rtmask 32 16 0 16 1 0 1 1 0 8 1 uvmvnodes 80 4303 0 0 88 0 88 88 0 8 0 vnodes 216 4303 0 0 240 0 240 240 0 8 0 namei 1024 21070 0 21069 2 0 2 2 0 8 1 kstatmem 264 108 0 84 2 0 2 2 0 8 0 scsiplug 72 4 0 4 1 0 1 1 0 8 1 scxspl 216 23825 0 23825 8 0 8 8 1 8 8 plimitpl 152 547 0 530 1 0 1 1 0 8 0 sigapl 424 1607 0 1557 7 0 7 7 0 8 1 knotepl 120 343061 0 343012 18 6 12 18 0 8 8 kqueuepl 184 623 0 610 4 0 4 4 0 8 3 pipepl 304 343 0 316 8 0 8 8 0 8 5 fdescpl 448 1582 0 1553 5 0 5 5 0 8 1 filepl 120 11505 0 11277 13 0 13 13 0 8 3 lockfpl 104 606 0 604 2 0 2 2 0 8 1 lockfspl 48 168 0 166 1 0 1 1 0 8 0 sessionpl 144 31 0 22 1 0 1 1 0 8 0 pgrppl 48 87 0 70 1 0 1 1 0 8 0 ucredpl 104 2176 0 2163 1 0 1 1 0 8 0 zombiepl 144 1559 0 1557 1 0 1 1 0 8 0 processpl 1168 1607 0 1557 5 0 5 5 0 8 1 procpl 664 3352 0 3294 7 0 7 7 0 8 1 sosppl 168 8 0 8 1 0 1 1 0 8 1 sockpl 552 2811 0 2775 19 8 11 15 0 8 7 mcl64k 65536 198 0 197 1 0 1 1 0 8 0 mcl16k 16384 1 0 1 1 0 1 1 0 8 1 mcl12k 12288 2 0 2 1 0 1 1 0 8 1 mcl8k 8192 11 0 11 1 0 1 1 0 8 1 mcl4k 4096 3930 0 3878 13 0 13 13 0 8 5 mcl2k 2048 2068 0 2060 4 0 4 4 0 8 2 mtagpl 96 9 0 9 1 0 1 1 0 8 1 mbufpl 256 16929 0 16743 20 0 20 20 0 8 2 bufpl 280 8381 0 2153 445 0 445 445 0 8 0 anonpl 24 259726 0 250999 90 0 90 90 0 187 10 amapchunkpl 152 44866 0 44276 37 0 37 37 0 158 7 amappl16 200 5122 0 4862 27 0 27 27 0 8 0 amappl15 192 5 0 5 1 0 1 1 0 8 1 amappl14 184 127 0 116 1 0 1 1 0 8 0 amappl13 176 18 0 18 1 0 1 1 0 8 1 amappl12 168 2281 0 2252 3 0 3 3 0 8 1 amappl11 160 46 0 35 1 0 1 1 0 8 0 amappl10 152 3 0 3 1 0 1 1 0 8 1 amappl9 144 247 0 247 1 0 1 1 0 8 1 amappl8 136 28 0 26 1 0 1 1 0 8 0 amappl7 128 111 0 100 1 0 1 1 0 8 0 amappl6 120 237 0 232 1 0 1 1 0 8 0 amappl5 112 128 0 121 1 0 1 1 0 8 0 amappl4 104 290 0 275 1 0 1 1 0 8 0 amappl3 96 8796 0 8688 4 0 4 4 0 8 0 amappl2 88 717 0 654 2 0 2 2 0 8 0 amappl1 80 14191 0 13563 14 0 14 14 0 8 0 amappl 88 12257 0 12081 5 0 5 5 0 92 0 dma65536 65536 1 0 1 1 0 1 1 0 8 1 dma32768 32768 1 0 1 1 0 1 1 0 8 1 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 255 0 255 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 139 0 9 3 0 3 3 0 8 0 uaddrrnd 24 1582 0 1553 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1582 0 1553 1 0 1 1 0 8 0 vmmpekpl 168 13486 0 13440 3 0 3 3 0 8 0 vmmpepl 168 105040 0 102842 119 0 119 119 0 357 10 vmsppl 368 1581 0 1553 4 0 4 4 0 8 1 rwobjpl 40 32668 0 27046 57 0 57 57 0 8 0 pdppl 4096 3170 0 3106 102 34 68 82 0 8 4 pvpl 32 709456 0 694735 180 0 180 180 0 265 23 pmappl 216 1581 0 1553 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 402 0 34 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a7e0fa8,ffffffffffffffff,0,a0c7df9f,fffffd805d7f4b18,fffffd8007bfb138) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7e0fa8,ffffffffffffffff,0,a0c7df9f,fffffd805d7f4b18,fffffd8007bfb138) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805d7f4b18,4,20c7df9f,0,ffff80002a7e0fa8) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805d7f4b18,4,20c7df9f,0,ffff80002a7e0fa8) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7e0fa8,ffff80003c9f3930,ffff80003c9f3880) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c9f3930) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9f3930) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4d84969d040, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a7e0fa8,ffffffffffffffff,0,a0c7df9f,fffffd805d7f4b18,fffffd8007bfb138) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7e0fa8,ffffffffffffffff,0,a0c7df9f,fffffd805d7f4b18,fffffd8007bfb138) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805d7f4b18,4,20c7df9f,0,ffff80002a7e0fa8) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805d7f4b18,4,20c7df9f,0,ffff80002a7e0fa8) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7e0fa8,ffff80003c9f3930,ffff80003c9f3880) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c9f3930) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9f3930) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4d84969d040, count: -5