login: uvm_fault(0xfffffd806c9ac2f0, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *483308 3428 0 0 0x4000000 0 syz-executor ktrops(ffff80003c966a88,ffffffffffffffff,0,a0c7df9f,fffffd8061547a68,fffffd8007bfd5b0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80003c966a88,ffffffffffffffff,0,a0c7df9f,fffffd8061547a68,fffffd8007bfd5b0) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8061547a68,4,20c7df9f,0,ffff80003c966a88) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8061547a68,4,20c7df9f,0,ffff80003c966a88) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80003c966a88,ffff80003c9336a0,ffff80003c9335f0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c9336a0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9336a0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7be85135530, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806c9ac2f0, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80003c966a88,ffffffffffffffff,0,a0c7df9f,fffffd8061547a68,fffffd8007bfd5b0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80003c966a88,ffffffffffffffff,0,a0c7df9f,fffffd8061547a68,fffffd8007bfd5b0) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8061547a68,4,20c7df9f,0,ffff80003c966a88) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8061547a68,4,20c7df9f,0,ffff80003c966a88) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80003c966a88,ffff80003c9336a0,ffff80003c9335f0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c9336a0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9336a0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7be85135530, count: -5 ddb> show registers rdi 0xffff80002ccec000 rsi 0x2034 __ALIGN_SIZE+0x1034 rbp 0xffff80003c9333c0 rbx 0xfffffd8007bfd5b0 rdx 0xffff80002ccec000 rcx 0x2033 __ALIGN_SIZE+0x1033 rax 0xffffffff8299e423 ktrops+0x43 r8 0xfffffd8061547a68 r9 0xfffffd8007bfd5b0 r10 0xf065bfd08454e018 r11 0x7865d968774c19b2 r12 0xffff80003c966a88 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0xa0c7df9f rip 0xffffffff8299e438 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c933340 ss 0x10 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=483308 pid=3428 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=86, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80003c93ad18,0xffffffff8395aed8 process=0xffff8000ffff8d98 user=0xffff80003c92e000, vmspace=0xfffffd806c9ac2f0 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 3428 428201 53656 0 2 0 syz-executor * 3428 483308 53656 0 7 0x4000000 syz-executor 46076 224969 73700 0 2 0 syz-executor 46076 348635 73700 0 3 0x4000080 fsleep syz-executor 46076 329796 73700 0 3 0x4000080 fsleep syz-executor 44557 99458 69692 0 2 0 syz-executor 44557 76988 69692 0 3 0x4000080 fsleep syz-executor 77370 282372 1 0 3 0x100083 ttyin getty 73700 384582 53403 0 3 0x82 nanoslp syz-executor 87658 218038 53403 0 3 0x82 nanoslp syz-executor 69692 411050 53403 0 2 0xc82 syz-executor 34214 447735 53403 0 3 0x82 nanoslp syz-executor 40698 229225 53403 0 2 0x2 syz-executor 12933 48557 53403 0 2 0x2 syz-executor 53656 157625 53403 0 2 0xc82 syz-executor 99705 106776 53403 0 3 0x82 wait syz-executor 53403 28926 82682 0 3 0x82 kqread syz-executor 82682 397447 57835 0 3 0x10008a sigsusp ksh 57835 108293 37748 0 3 0x98 kqread sshd-session 37748 436712 23490 0 3 0x92 kqread sshd-session 23490 199049 1 0 3 0x88 kqread sshd 51356 281181 55770 73 3 0x1100090 kqread syslogd 55770 338047 1 0 3 0x100082 sbwait syslogd 63055 165412 1 0 3 0x100080 kqread resolvd 36163 402506 39181 77 3 0x100092 kqread dhcpleased 56540 59365 39181 77 3 0x100092 kqread dhcpleased 39181 153232 1 0 3 0x80 kqread dhcpleased 94628 429401 0 0 2 0x14200 smr 27667 319803 0 0 2 0x14200 zerothread 57910 484429 0 0 3 0x14200 aiodoned aiodoned 1091 57200 0 0 3 0x14200 syncer update 61595 54624 0 0 3 0x14200 cleaner cleaner 31302 396884 0 0 3 0x14200 reaper reaper 81426 389881 0 0 3 0x14200 pgdaemon pagedaemon 75589 365035 0 0 3 0x14200 bored viomb 25434 481346 0 0 3 0x40014200 acpi0 acpi0 49127 148207 0 0 3 0x14200 bored softnet0 22120 434486 0 0 3 0x14200 bored systqmp 68146 102316 0 0 3 0x14200 bored systq 77717 213518 0 0 3 0x40014200 tmoslp softclock 19566 389580 0 0 3 0x40014200 idle0 1 444445 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11042 12227K 12784K 166960K 12680 0 pcb 19 14K 16K 166960K 151 0 rtable 229 8K 8K 166960K 385 0 pf 29 12K 14K 166960K 54 0 ifaddr 38 6K 7K 166960K 56 0 ifgroup 46 2K 2K 166960K 73 0 sysctl 3 1K 9K 166960K 7 0 counters 32 17K 18K 166960K 50 0 ioctlops 0 0K 4K 166960K 67 0 iov 0 0K 12K 166960K 12 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1372 86K 87K 166960K 1631 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 4 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 72 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 57K 97K 166960K 364 0 sigio 0 0K 0K 166960K 2 0 proc 60 59K 116K 166960K 504 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 28 0 in_multi 88 6K 7K 166960K 104 0 ether_multi 1 0K 0K 166960K 1 0 mrt 0 0K 0K 166960K 2 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 85 387K 387K 166960K 85 0 exec 0 0K 1K 166960K 455 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 228 173K 182K 166960K 4879 0 UVM aobj 40 6K 6K 166960K 41 0 pinsyscall 37 74K 95K 166960K 1436 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 17 0 NDP 10 0K 2K 166960K 36 0 temp 40 8667K 8731K 166960K 17029 0 kqueue 13 20K 28K 166960K 73 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 51 0 47 1 0 1 1 0 8 0 rtentry 136 114 0 14 4 0 4 4 0 8 0 unpcb 144 134 0 119 1 0 1 1 0 8 0 syncache 336 3 0 3 1 0 1 1 0 8 1 tcpcb 736 97 0 93 4 0 4 4 0 8 3 arp 96 18 0 2 1 0 1 1 0 8 0 ipq 40 1 0 0 1 0 1 1 0 8 0 ipqe 40 1 0 0 1 0 1 1 0 8 0 inpcb 328 332 0 323 7 0 7 7 0 8 6 ip6q 72 2 0 0 1 0 1 1 0 8 0 ip6af 40 2 0 0 1 0 1 1 0 8 0 nd6 112 25 0 3 1 0 1 1 0 8 0 pkpcb 40 3 0 3 1 0 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 15 0 15 1 0 1 1 0 8 1 pppxif 1384 2 0 2 1 0 1 1 0 8 1 pfstscr 40 1 0 1 1 0 1 1 0 8 1 pfstkey 128 1 0 1 1 0 1 1 0 8 1 pfstate 384 1 0 1 1 0 1 1 0 8 1 pfrule 1360 2 0 2 1 0 1 1 0 8 1 rttmr 136 1 0 1 1 0 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 460 0 50 29 0 29 29 0 8 2 art_table 40 461 0 50 5 0 5 5 0 8 0 art_node 32 114 0 23 1 0 1 1 0 8 0 sysvmsgpl 40 2 0 2 1 0 1 1 0 8 1 semapl 112 70 0 60 1 0 1 1 0 8 0 shmpl 112 35 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 2057 0 552 95 0 95 95 0 8 0 ffsino 256 2057 0 552 95 0 95 95 0 8 0 nchpl 144 2573 0 882 64 0 64 64 0 8 0 rtmask 32 5 0 5 1 0 1 1 0 8 1 vnodes 216 2272 0 0 127 0 127 127 0 8 0 namei 1024 8205 0 8204 2 0 2 2 0 8 1 vcpupl 3904 2 0 0 1 0 1 1 0 8 0 vmpool 808 3 0 1 1 0 1 1 0 8 0 kstatmem 264 40 0 20 2 0 2 2 0 8 0 scsiplug 72 3 0 3 1 0 1 1 0 8 1 scxspl 216 12128 0 12128 3 0 3 3 1 8 3 plimitpl 152 68 0 49 1 0 1 1 0 8 0 sigapl 424 651 0 610 6 0 6 6 0 8 1 knotepl 120 13028 0 12981 10 0 10 10 0 8 8 kqueuepl 184 97 0 88 1 0 1 1 0 8 0 pipepl 304 130 0 103 3 0 3 3 0 8 0 fdescpl 448 638 0 610 5 0 5 5 0 8 1 filepl 120 3198 0 2907 12 0 12 12 0 8 1 lockfpl 104 150 0 148 1 0 1 1 0 8 0 lockfspl 48 42 0 40 1 0 1 1 0 8 0 sessionpl 144 22 0 14 1 0 1 1 0 8 0 pgrppl 48 33 0 17 1 0 1 1 0 8 0 ucredpl 104 417 0 406 1 0 1 1 0 8 0 zombiepl 144 613 0 610 1 0 1 1 0 8 0 processpl 1152 651 0 610 4 0 4 4 0 8 0 procpl 664 1002 0 957 6 0 6 6 0 8 0 sockpl 552 528 0 500 7 0 7 7 0 8 5 mcl64k 65536 8 0 8 1 0 1 1 0 8 1 mcl9k 9216 1 0 1 1 0 1 1 0 8 1 mcl8k 8192 4 0 4 1 0 1 1 0 8 1 mcl4k 4096 2762 0 2705 15 0 15 15 0 8 7 mcl2k 2048 313 0 310 1 0 1 1 0 8 0 mtagpl 96 11 0 5 1 0 1 1 0 8 0 mbufpl 256 151279 0 151125 12 0 12 12 0 8 0 bufpl 280 4951 0 119 346 0 346 346 0 8 0 anonpl 24 116811 0 113761 51 0 51 51 0 187 14 amapchunkpl 152 14992 0 14336 32 0 32 32 0 158 1 amappl16 200 2208 0 2182 16 1 15 16 0 8 9 amappl15 192 6 0 6 1 0 1 1 0 8 1 amappl14 184 7 0 7 1 0 1 1 0 8 1 amappl13 176 433 0 432 1 0 1 1 0 8 0 amappl12 168 981 0 944 2 0 2 2 0 8 0 amappl11 160 6 0 6 1 0 1 1 0 8 1 amappl10 152 44 0 33 1 0 1 1 0 8 0 amappl9 144 249 0 249 1 0 1 1 0 8 1 amappl8 136 24 0 23 1 0 1 1 0 8 0 amappl7 128 79 0 77 1 0 1 1 0 8 0 amappl6 120 280 0 268 1 0 1 1 0 8 0 amappl5 112 76 0 69 1 0 1 1 0 8 0 amappl4 104 379 0 354 1 0 1 1 0 8 0 amappl3 96 2544 0 2458 3 0 3 3 0 8 0 amappl2 88 746 0 678 2 0 2 2 0 8 0 amappl1 80 9736 0 9196 13 0 13 13 0 8 1 amappl 88 4136 0 3978 5 0 5 5 0 92 0 uvmvnodes 80 101 0 0 3 0 3 3 0 8 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 40 0 1 1 0 1 1 0 8 0 uaddrrnd 24 638 0 610 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 638 0 610 1 0 1 1 0 8 0 vmmpekpl 168 6648 0 6620 2 0 2 2 0 8 0 vmmpepl 168 47549 0 45812 95 0 95 95 0 357 7 vmsppl 368 637 0 610 4 0 4 4 0 8 1 rwobjpl 40 15547 0 14566 14 0 14 14 0 8 0 pdppl 4096 1289 0 1224 99 30 69 83 0 8 4 pvpl 32 294400 0 285408 128 0 128 128 0 265 23 pmappl 216 640 0 611 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 373 0 30 10 0 10 10 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80003c966a88,ffffffffffffffff,0,a0c7df9f,fffffd8061547a68,fffffd8007bfd5b0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80003c966a88,ffffffffffffffff,0,a0c7df9f,fffffd8061547a68,fffffd8007bfd5b0) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8061547a68,4,20c7df9f,0,ffff80003c966a88) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8061547a68,4,20c7df9f,0,ffff80003c966a88) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80003c966a88,ffff80003c9336a0,ffff80003c9335f0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c9336a0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9336a0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7be85135530, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80003c966a88,ffffffffffffffff,0,a0c7df9f,fffffd8061547a68,fffffd8007bfd5b0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80003c966a88,ffffffffffffffff,0,a0c7df9f,fffffd8061547a68,fffffd8007bfd5b0) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8061547a68,4,20c7df9f,0,ffff80003c966a88) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8061547a68,4,20c7df9f,0,ffff80003c966a88) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80003c966a88,ffff80003c9336a0,ffff80003c9335f0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c9336a0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9336a0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7be85135530, count: -5