kernel: page fault trap, code=10 Stopped at acpi_pdirpa+0xd55ea: uvm_fault(0xfffffd806c5e01d0, 0xe9779, 0, 1) -> e kernel: page fault trap, code=0 Stopped at db_read_bytes+0x110: movzbl 0xffffffffffffffff(%r15),%eax TID PID UID PRFLAGS PFLAGS CPU COMMAND *344908 70544 0 0 0x4000000 0K syz-executor db_read_bytes(e9779,1,ffff80002a0dda94) at db_read_bytes+0x110 sys/arch/amd64/amd64/db_memrw.c:85 db_get_value(e9779,1,0) at db_get_value+0x59 db_disasm(e9779,0) at db_disasm+0x94 db_trap(6,10) at db_trap+0x181 sys/ddb/db_trap.c:71 db_ktrap(6,10,ffff80002a0ddd30) at db_ktrap+0x303 sys/arch/amd64/amd64/db_interface.c:151 kerntrap(ffff80002a0ddd30) at kerntrap+0x1dc sys/arch/amd64/amd64/trap.c:323 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b acpi_pdirpa() at acpi_pdirpa+0xd55ea rt_clone(ffff80002a0de008,fffffd806f0ff720,0) at rt_clone+0x98 sys/net/route.c:383 route_mpath(fffffd806f0ff708,fffffd806a9a8e24,0,0) at route_mpath+0x170 rt_match sys/net/route.c:360 [inline] route_mpath(fffffd806f0ff708,fffffd806a9a8e24,0,0) at route_mpath+0x170 rtalloc_mpath sys/net/route.c:476 [inline] route_mpath(fffffd806f0ff708,fffffd806a9a8e24,0,0) at route_mpath+0x170 sys/net/route.c:255 in_pcbselsrc(ffff80002a0de0f8,fffffd806a9a8e20,fffffd806f0ff690) at in_pcbselsrc+0x250 in_pcbconnect(fffffd806f0ff690,fffffd806a9a8e00) at in_pcbconnect+0x11a sys/netinet/in_pcb.c:522 udp_connect(ffff800001288540,fffffd806a9a8e00) at udp_connect+0xe3 sys/netinet/udp_usrreq.c:1170 sys_connect(ffff80002a040f48,ffff80002a0de2f0,ffff80002a0de240) at sys_connect+0x345 sys/kern/uipc_syscalls.c:422 end trace frame: 0xffff80002a0de2e0, count: 0 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xfffffd806c5e01d0, 0xe9779, 0, 1) -> e ddb{0}> trace db_read_bytes(e9779,1,ffff80002a0dda94) at db_read_bytes+0x110 sys/arch/amd64/amd64/db_memrw.c:85 db_get_value(e9779,1,0) at db_get_value+0x59 db_disasm(e9779,0) at db_disasm+0x94 db_trap(6,10) at db_trap+0x181 sys/ddb/db_trap.c:71 db_ktrap(6,10,ffff80002a0ddd30) at db_ktrap+0x303 sys/arch/amd64/amd64/db_interface.c:151 kerntrap(ffff80002a0ddd30) at kerntrap+0x1dc sys/arch/amd64/amd64/trap.c:323 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b acpi_pdirpa() at acpi_pdirpa+0xd55ea rt_clone(ffff80002a0de008,fffffd806f0ff720,0) at rt_clone+0x98 sys/net/route.c:383 route_mpath(fffffd806f0ff708,fffffd806a9a8e24,0,0) at route_mpath+0x170 rt_match sys/net/route.c:360 [inline] route_mpath(fffffd806f0ff708,fffffd806a9a8e24,0,0) at route_mpath+0x170 rtalloc_mpath sys/net/route.c:476 [inline] route_mpath(fffffd806f0ff708,fffffd806a9a8e24,0,0) at route_mpath+0x170 sys/net/route.c:255 in_pcbselsrc(ffff80002a0de0f8,fffffd806a9a8e20,fffffd806f0ff690) at in_pcbselsrc+0x250 in_pcbconnect(fffffd806f0ff690,fffffd806a9a8e00) at in_pcbconnect+0x11a sys/netinet/in_pcb.c:522 udp_connect(ffff800001288540,fffffd806a9a8e00) at udp_connect+0xe3 sys/netinet/udp_usrreq.c:1170 sys_connect(ffff80002a040f48,ffff80002a0de2f0,ffff80002a0de240) at sys_connect+0x345 sys/kern/uipc_syscalls.c:422 syscall(ffff80002a0de2f0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a0de2f0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x3c73f5efb20, count: -16 ddb{0}> show registers rdi 0 rsi 0x1 rbp 0xffff80002a0dda80 rbx 0x1 rdx 0xffff800001297a40 rcx 0xffff80002a040f48 rax 0xffffffff8349dff0 cpu_info_full_primary+0x1ff0 r8 0xffff80002a0ddbb0 r9 0x8080808080808080 r10 0x82a28179456b248b r11 0x3ab995250ebe399e r12 0x1 r13 0x1 r14 0xffff80002a0dda95 r15 0xe977a acpi_pdirpa+0xd55eb rip 0xffffffff82b8d4f0 db_read_bytes+0x110 cs 0x8 rflags 0x10286 __ALIGN_SIZE+0xf286 rsp 0xffff80002a0dda20 ss 0x10 db_read_bytes+0x110: movzbl 0xffffffffffffffff(%r15),%eax ddb{0}> show proc PROC (syz-executor) tid=344908 pid=70544 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=82, usrpri=83, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a0416e0,0xffff8000ffff2f78 process=0xffff8000371ba440 user=0xffff80002a0d9000, vmspace=0xfffffd806c5e01d0 estcpu=33, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 39349 136238 97956 0 3 0x80 fsleep syz-executor 39349 157891 97956 0 2 0x4000000 syz-executor 2516 455900 77386 60929 3 0x90 fsleep syz-executor 2516 140862 77386 60929 3 0x4000090 ttyout syz-executor 50869 456495 43840 0 2 0 syz-executor 87547 408578 62145 0 3 0x80 fsleep syz-executor 87547 134841 62145 0 3 0x4000080 kqsel syz-executor 70544 266597 54080 0 3 0x80 fsleep syz-executor *70544 344908 54080 0 7 0x4000000 syz-executor 62145 352776 78346 0 2 0x482 syz-executor 63125 335048 95242 0 3 0x82 netio sshd-session 43840 379477 78346 0 3 0x82 nanoslp syz-executor 1713 493111 78346 0 2 0x2 syz-executor 97956 137036 78346 0 2 0x482 syz-executor 65133 243091 78346 0 2 0x2 syz-executor 77386 60915 78346 0 2 0x482 syz-executor 54080 277448 78346 0 3 0x82 nanoslp syz-executor 6716 248518 1 0 3 0x100083 ttyin getty 75037 512011 0 0 3 0x14200 acct acct 8872 521010 0 0 3 0x14200 bored sosplice 78346 177 16573 0 3 0x82 wait syz-executor 16573 359070 17549 0 3 0x10008a sigsusp ksh 17549 11058 39853 0 3 0x98 kqread sshd-session 39853 219773 95242 0 3 0x92 kqread sshd-session 95242 50033 1 0 3 0x88 kqread sshd 23467 17247 41184 74 3 0x1100092 bpf pflogd 41184 364800 1 0 3 0x80 sbwait pflogd 47769 136124 48964 73 3 0x1100090 kqread syslogd 48964 497852 1 0 3 0x100082 sbwait syslogd 5784 295203 1 0 3 0x100080 kqread resolvd 50572 115806 2934 77 3 0x100092 kqread dhcpleased 54447 11565 2934 77 3 0x100092 kqread dhcpleased 2934 79442 1 0 3 0x80 kqread dhcpleased 44647 215905 0 0 3 0x14200 bored smr 62027 164034 0 0 2 0x14200 zerothread 71515 50378 0 0 3 0x14200 aiodoned aiodoned 96180 258500 0 0 3 0x14200 syncer update 17766 400107 0 0 3 0x14200 cleaner cleaner 76699 357381 0 0 3 0x14200 reaper reaper 32986 515097 0 0 3 0x14200 pgdaemon pagedaemon 70422 69478 0 0 3 0x14200 bored viomb 89942 212508 0 0 3 0x40014200 acpi0 acpi0 36280 41436 0 0 7 0x40014200 idle1 27967 329818 0 0 3 0x14200 bored softnet3 67409 146984 0 0 3 0x14200 bored softnet2 13672 311536 0 0 3 0x14200 bored softnet1 4061 141798 0 0 3 0x14200 bored softnet0 71970 149675 0 0 3 0x14200 bored systqmp 67003 251762 0 0 3 0x14200 bored systq 75478 178932 0 0 3 0x14200 tmoslp softclockmp 94320 135235 0 0 2 0x40014200 softclock 38500 285349 0 0 3 0x40014200 idle0 1 153920 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 39349 (syz-executor) thread 0xffff8000371d71e0 (157891) Process 70544 (syz-executor) thread 0xffff80002a040f48 (344908) Process 1713 (syz-executor) thread 0xffff8000371d67c0 (493111) ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10233 11200K 11526K 166960K 15348 0 pcb 17 17K 19K 166960K 1346 0 rtable 201 8K 9K 166960K 3335 0 pf 40 19K 26K 166960K 433 0 ifaddr 36 7K 10K 166960K 487 0 ifgroup 51 2K 2K 166960K 597 0 sysctl 4 1K 2K 166960K 7 0 counters 62 36K 36K 166960K 352 0 ioctlops 0 0K 4K 166960K 1982 0 iov 0 0K 36K 166960K 335 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1545 97K 97K 166960K 5252 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 10K 14K 166960K 69 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 429 0 dirhash 15 2K 3K 166960K 57 0 ACPI 1690 195K 286K 166960K 12418 0 file desc 15 53K 93K 166960K 4457 0 sigio 0 0K 0K 166960K 215 0 proc 72 91K 140K 166960K 3599 0 subproc 104 6K 6K 166960K 1443 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 667 0 in_multi 71 5K 7K 166960K 1154 0 ether_multi 1 0K 0K 166960K 38 0 mrt 1 0K 0K 166960K 17 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 253 1129K 1129K 166960K 253 0 exec 0 0K 1K 166960K 2073 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 226 73K 92K 166960K 36976 0 UVM aobj 28 6K 6K 166960K 35 0 pinsyscall 42 84K 104K 166960K 8079 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 181 0 NDP 11 0K 2K 166960K 347 0 temp 78 6824K 6936K 166960K 248091 0 kqueue 15 24K 32K 166960K 486 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 494 0 491 4 3 1 3 0 8 0 rtentry 112 1173 0 1087 4 0 4 4 0 8 0 unpcb 144 3283 0 3264 34 32 2 6 0 8 1 syncache 336 33 0 33 14 13 1 1 0 8 1 tcpqe 32 15 0 15 10 9 1 1 0 8 1 tcpcb 808 1554 0 1545 43 41 2 8 0 8 0 arp 120 210 0 193 1 0 1 1 0 8 0 inpcb 336 5737 0 5722 71 66 5 20 0 8 3 nd6 136 295 0 277 2 1 1 2 0 8 0 pkpcb 40 13 0 13 10 10 0 1 0 8 0 kcovpl 48 111 0 103 1 0 1 1 0 8 0 ppxss 1168 24 0 24 13 13 0 1 0 8 0 pfstscr 40 2 0 2 2 2 0 1 0 8 0 pffrag 232 23 0 21 3 2 1 1 0 482 0 pffrnode 88 23 0 21 3 2 1 1 0 8 0 pffrent 40 53 0 51 3 2 1 1 0 8 0 pfosfp 40 1428 0 1428 5 5 0 5 0 8 0 pfosfpen 112 1428 0 1428 21 21 0 21 0 8 0 pfrktable 1344 8 0 5 2 1 1 1 0 8 0 pfanchor 1288 17 0 6 2 1 1 2 0 8 0 pftag 88 5 0 1 2 1 1 1 0 8 0 pfstitem 24 442 0 362 1 0 1 1 0 8 0 pfstkey 128 449 0 365 4 0 4 4 0 8 0 pfstate 376 440 0 363 14 2 12 12 0 8 1 pfrule 1344 56 0 35 2 0 2 2 0 8 0 art_heap8 4096 4 0 0 4 0 4 4 0 8 0 art_heap4 256 4663 0 4327 41 15 26 32 0 8 1 art_table 32 4667 0 4327 5 1 4 5 0 8 0 art_node 16 1133 0 1057 1 0 1 1 0 8 0 sysvmsgpl 40 25 0 8 3 2 1 1 0 8 0 semapl 112 424 0 414 1 0 1 1 0 8 0 shmpl 112 32 0 7 1 0 1 1 0 8 0 dirhash 1024 48 0 29 3 0 3 3 0 8 0 dino2pl 256 7078 0 5396 106 0 106 106 0 8 0 ffsino 272 7078 0 5396 114 1 113 113 0 8 0 nchpl 144 11549 0 9733 68 0 68 68 0 8 0 uvmvnodes 80 9063 0 0 185 0 185 185 0 8 0 vnodes 216 9063 0 0 504 0 504 504 0 8 0 namei 1024 50964 0 50963 11 10 1 2 0 8 0 percpumem 16 190 0 145 1 0 1 1 0 8 0 pfiaddrpl 120 2 0 1 2 1 1 1 0 8 0 kstatmem 264 312 0 290 2 0 2 2 0 8 0 scsiplug 72 3 0 3 3 3 0 1 0 8 0 scxspl 216 85828 0 85828 14 13 1 8 1 8 1 plimitpl 152 966 0 948 1 0 1 1 0 8 0 sigapl 424 4612 0 4561 9 2 7 9 0 8 0 futexpl 64 45959 0 45955 10 9 1 1 0 8 0 knotepl 120 978 0 0 24 0 24 24 0 8 0 kqueuepl 216 1038 0 1026 14 13 1 5 0 8 0 pipepl 320 849 0 821 11 5 6 8 0 8 3 fdescpl 496 4572 0 4542 5 0 5 5 0 8 0 filepl 152 30089 0 29834 65 49 16 21 0 8 5 lockfpl 104 1634 0 1632 6 5 1 4 0 8 0 lockfspl 48 458 0 456 1 0 1 1 0 8 0 sessionpl 144 155 0 145 1 0 1 1 0 8 0 pgrppl 48 464 0 446 1 0 1 1 0 8 0 ucredpl 104 4011 0 3997 1 0 1 1 0 8 0 zombiepl 144 4563 0 4561 1 0 1 1 0 8 0 processpl 1160 4612 0 4561 6 2 4 6 0 8 0 procpl 648 9156 0 9101 8 2 6 8 0 8 0 srpgc 96 20 0 20 8 8 0 1 0 8 0 sosppl 168 14 0 13 8 7 1 1 0 8 0 sockpl 664 9635 0 9598 89 82 7 22 0 8 2 mcl64k 65536 5 0 0 1 0 1 1 0 8 0 mcl16k 16384 2 0 0 1 0 1 1 0 8 0 mcl12k 12288 1 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 2 0 0 1 0 1 1 0 8 0 mcl4k 4096 151 0 0 19 1 18 19 0 8 0 mcl2k 2048 131 0 0 10 2 8 10 0 8 0 mtagpl 96 52 0 0 2 0 2 2 0 8 0 mbufpl 256 8871 0 0 542 0 542 542 0 8 0 bufpl 280 17733 0 8447 664 0 664 664 0 8 0 anonpl 24 670011 0 653260 209 81 128 154 0 185 0 amapchunkpl 152 121741 0 121179 94 60 34 42 0 158 9 amappl16 200 14610 0 13918 88 38 50 51 0 8 0 amappl15 192 6 0 5 1 0 1 1 0 8 0 amappl14 184 372 0 359 1 0 1 1 0 8 0 amappl13 176 6 0 6 1 1 0 1 0 8 0 amappl12 168 6698 0 6668 4 2 2 3 0 8 0 amappl11 160 57 0 43 1 0 1 1 0 8 0 amappl10 152 6 0 5 2 1 1 1 0 8 0 amappl9 144 136 0 136 1 1 0 1 0 8 0 amappl8 136 24 0 21 1 0 1 1 0 8 0 amappl7 128 304 0 291 1 0 1 1 0 8 0 amappl6 120 1108 0 1105 1 0 1 1 0 8 0 amappl5 112 558 0 545 1 0 1 1 0 8 0 amappl4 104 682 0 663 1 0 1 1 0 8 0 amappl3 96 24201 0 24106 5 1 4 4 0 8 0 amappl2 88 2275 0 2198 2 0 2 2 0 8 0 amappl1 80 32254 0 31618 18 1 17 17 0 8 3 amappl 88 35529 0 35371 5 0 5 5 0 92 0 dma65536 65536 1 0 1 1 1 0 1 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 9 0 9 3 3 0 1 0 8 0 dma128 128 255 0 255 3 3 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 34 0 7 1 0 1 1 0 8 0 uaddrrnd 24 4572 0 4542 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4572 0 4542 1 0 1 1 0 8 0 vmmpekpl 168 38184 0 38126 5 1 4 4 0 8 0 vmmpepl 168 341611 0 339072 200 58 142 150 0 357 14 vmsppl 440 4571 0 4542 6 2 4 5 0 8 0 rwobjpl 56 88051 0 77284 161 6 155 156 0 8 0 pdppl 4096 9151 0 9084 254 177 77 87 0 8 10 pvpl 32 44428 0 0 360 3 357 357 0 265 0 pmappl 248 4571 0 4542 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1254 0 344 27 0 27 27 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace db_read_bytes(e9779,1,ffff80002a0dda94) at db_read_bytes+0x110 sys/arch/amd64/amd64/db_memrw.c:85 db_get_value(e9779,1,0) at db_get_value+0x59 db_disasm(e9779,0) at db_disasm+0x94 db_trap(6,10) at db_trap+0x181 sys/ddb/db_trap.c:71 db_ktrap(6,10,ffff80002a0ddd30) at db_ktrap+0x303 sys/arch/amd64/amd64/db_interface.c:151 kerntrap(ffff80002a0ddd30) at kerntrap+0x1dc sys/arch/amd64/amd64/trap.c:323 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b acpi_pdirpa() at acpi_pdirpa+0xd55ea rt_clone(ffff80002a0de008,fffffd806f0ff720,0) at rt_clone+0x98 sys/net/route.c:383 route_mpath(fffffd806f0ff708,fffffd806a9a8e24,0,0) at route_mpath+0x170 rt_match sys/net/route.c:360 [inline] route_mpath(fffffd806f0ff708,fffffd806a9a8e24,0,0) at route_mpath+0x170 rtalloc_mpath sys/net/route.c:476 [inline] route_mpath(fffffd806f0ff708,fffffd806a9a8e24,0,0) at route_mpath+0x170 sys/net/route.c:255 in_pcbselsrc(ffff80002a0de0f8,fffffd806a9a8e20,fffffd806f0ff690) at in_pcbselsrc+0x250 in_pcbconnect(fffffd806f0ff690,fffffd806a9a8e00) at in_pcbconnect+0x11a sys/netinet/in_pcb.c:522 udp_connect(ffff800001288540,fffffd806a9a8e00) at udp_connect+0xe3 sys/netinet/udp_usrreq.c:1170 sys_connect(ffff80002a040f48,ffff80002a0de2f0,ffff80002a0de240) at sys_connect+0x345 sys/kern/uipc_syscalls.c:422 syscall(ffff80002a0de2f0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a0de2f0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x3c73f5efb20, count: -16 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x41e sys/dev/acpi/acpicpu.c:1219 sched_idle(ffff800029b7bff0) at sched_idle+0x558 sys/kern/kern_sched.c:182 end trace frame: 0x0, count: 10 ddb{1}> trace x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x41e sys/dev/acpi/acpicpu.c:1219 sched_idle(ffff800029b7bff0) at sched_idle+0x558 sys/kern/kern_sched.c:182 end trace frame: 0x0, count: -5