kernel: page fault trap, code=10 Stopped at 0 TID PID UID PRFLAGS PFLAGS CPU COMMAND * 92856 90528 0 0x8000000 0x480 0 syz-executor 307075 59933 0 0x8000002 0 1 syz-executor end trace frame: 0x0, count: 14 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: attempt to execute user address 0x0 in supervisor mode ddb{0}> trace end trace frame: 0x0, count: -1 ddb{0}> show registers rdi 0x15839001 rsi 0xffff80002a0416e0 rbp 0 rbx 0 rdx 0x5b6b0002 rcx 0 rax 0x800000006affe001 r8 0 r9 0 r10 0x591d6374e8845052 r11 0x760fdaf147a59409 r12 0 r13 0 r14 0 r15 0 rip 0 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002a113f40 ss 0 0 ddb{0}> show proc PROC (syz-executor) tid=92856 pid=90528 tcnt=3 stat=onproc flags process=8000000 proc=480 runpri=32, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff800032c5ece8,0xffff80002a0407c0 process=0xffff8000fffef620 user=0xffff80002a10f000, vmspace=0xfffffd806b9d1000 estcpu=36, cpticks=4, pctcpu=0.0, user=4, sys=0, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 62564 384052 25528 0 2 0x8000000 syz-executor 62564 386707 25528 0 2 0xc000000 syz-executor 86756 35629 63488 0 2 0x8000000 syz-executor 86756 417583 63488 0 2 0xc000000 syz-executor 1243 60547 61266 0 2 0x8000000 syz-executor 1243 377718 61266 0 3 0xc000080 fsleep syz-executor 98752 132954 59933 0 2 0x8000490 syz-executor 98752 479643 59933 0 3 0xc000090 fsleep syz-executor 98752 144997 59933 0 3 0xc000090 fsleep syz-executor 39487 366834 65585 0 2 0x8000480 syz-executor 39487 25456 65585 0 3 0xc000080 fsleep syz-executor 39487 339388 65585 0 3 0xc000080 fsleep syz-executor 39487 319865 65585 0 3 0xc000080 fsleep syz-executor *90528 92856 66523 0 7 0x8000480 syz-executor 90528 162471 66523 0 3 0xc000080 netacc syz-executor 90528 465330 66523 0 3 0xc000080 fsleep syz-executor 24371 513642 65328 0 2 0x8000480 syz-executor 24371 39671 65328 0 3 0xc000080 kqread syz-executor 63488 494833 66145 0 3 0x8000082 nanoslp syz-executor 25528 406789 66145 0 3 0x8000082 nanoslp syz-executor 65328 512635 66145 0 2 0x8000482 syz-executor 59933 307075 66145 0 7 0x8000002 syz-executor 95610 415821 66145 0 3 0x8000082 wait syz-executor 61266 312135 66145 0 2 0x8000482 syz-executor 65585 427761 66145 0 2 0x8000002 syz-executor 66523 325420 66145 0 2 0x8000482 syz-executor 53901 216581 0 0 3 0x14200 acct acct 54956 88588 1 0 3 0x18100083 ttyin getty 87370 310165 0 0 3 0x14200 bored sosplice 66145 65888 92601 0 3 0x8000082 kqread syz-executor 92601 51384 45449 0 3 0x810008a sigsusp ksh 45449 312211 3746 0 3 0x18000098 kqread sshd-session 3746 204545 90808 0 3 0x18000092 kqread sshd-session 90808 250427 1 0 3 0x18000088 kqread sshd 74032 155943 61361 74 3 0x19100092 bpf pflogd 61361 175709 1 0 3 0x18000080 sbwait pflogd 68791 381937 40689 73 3 0x19100090 kqread syslogd 40689 388021 1 0 3 0x18100082 sbwait syslogd 83579 35426 1 0 3 0x18100080 kqread resolvd 33808 29643 85250 77 3 0x18100092 kqread dhcpleased 35765 52551 85250 77 3 0x18100092 kqread dhcpleased 85250 510636 1 0 3 0x18000080 kqread dhcpleased 38496 469578 0 0 3 0x14200 bored smr 463 438347 0 0 3 0x14200 pgzero zerothread 26737 522456 0 0 3 0x14200 aiodoned aiodoned 79312 324324 0 0 3 0x14200 syncer update 40899 99687 0 0 3 0x14200 cleaner cleaner 37245 182700 0 0 3 0x14200 reaper reaper 6254 176516 0 0 3 0x14200 pgdaemon pagedaemon 86304 204748 0 0 3 0x14200 bored viomb 83333 100714 0 0 3 0x40014200 acpi0 acpi0 40779 184343 0 0 3 0x40014200 idle1 33786 159333 0 0 3 0x14200 bored softnet3 45047 175506 0 0 3 0x14200 bored softnet2 75359 347658 0 0 3 0x14200 bored softnet1 88516 132691 0 0 3 0x14200 bored softnet0 794 398990 0 0 3 0x14200 bored systqmp 32363 58179 0 0 3 0x14200 bored systq 20840 37231 0 0 3 0x14200 tmoslp softclockmp 62330 163344 0 0 3 0x40014200 tmoslp softclock 67763 391289 0 0 3 0x40014200 idle0 1 479465 0 0 3 0x8000082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks CPU 0: exclusive mutex &sched_lock r = 0 (0xffffffff836219b0) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 mtx_enter_try+0x178 #2 mtx_enter+0x60 sys/kern/kern_lock.c:239 #3 sleep_finish+0x1a9 sys/kern/kern_synch.c:400 #4 msleep+0x13b sys/kern/kern_synch.c:249 #5 softclock_thread+0x11f sys/kern/kern_timeout.c:810 #6 proc_trampoline+0x10 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10260 10184K 10766K 166960K 15928 0 pcb 17 17K 18K 166960K 503 0 rtable 196 15K 17K 166960K 4389 0 pf 40 18K 26K 166960K 456 0 ifaddr 40 8K 9K 166960K 601 0 ifgroup 67 2K 2K 166960K 681 0 sysctl 4 1K 1K 166960K 7 0 counters 70 37K 37K 166960K 396 0 ioctlops 0 0K 4K 166960K 2000 0 iov 0 0K 20K 166960K 199 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1594 100K 101K 166960K 6065 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 40 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 243 0 dirhash 15 2K 3K 166960K 60 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 18 65K 93K 166960K 4009 0 sigio 1 0K 0K 166960K 185 0 proc 71 103K 140K 166960K 4199 0 subproc 104 6K 7K 166960K 1742 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 427 0 in_multi 83 6K 7K 166960K 1539 0 ether_multi 1 0K 0K 166960K 8 0 mrt 1 0K 0K 166960K 8 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 421 1871K 1871K 166960K 421 0 exec 0 0K 1K 166960K 2577 0 pfkey data 0 0K 0K 166960K 3 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 252 91K 110K 166960K 32346 0 UVM aobj 98 8K 8K 166960K 99 0 pinsyscall 43 86K 102K 166960K 8358 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 143 0 NDP 15 0K 1K 166960K 448 0 temp 75 6816K 6893K 166960K 114457 0 kqueue 15 24K 30K 166960K 370 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 704 0 700 7 4 3 3 0 8 2 rtentry 112 1561 0 1478 4 1 3 4 0 8 0 unpcb 144 3046 0 3027 39 33 6 6 0 8 5 syncache 336 8 0 8 5 5 0 1 0 8 0 tcpqe 32 4 0 4 3 3 0 1 0 8 0 tcpcb 808 988 0 981 33 32 1 8 0 8 0 arp 120 282 0 271 1 0 1 1 0 8 0 ipq 40 5 0 4 3 2 1 1 0 8 0 ipqe 40 10 0 9 3 2 1 1 0 8 0 inpcb 336 4415 0 4400 75 68 7 12 0 8 5 nd6 136 432 0 407 3 2 1 2 0 8 0 pkpcb 40 15 0 15 9 8 1 1 0 8 1 kcovpl 48 134 0 126 1 0 1 1 0 8 0 ppxss 1168 26 0 26 8 7 1 1 0 8 1 pffrag 232 6 0 6 1 1 0 1 0 482 0 pffrnode 88 6 0 6 1 1 0 1 0 8 0 pffrent 40 51 0 51 1 1 0 1 0 8 0 pfosfp 40 1430 0 1006 5 0 5 5 0 8 0 pfosfpen 112 1430 0 715 21 0 21 21 0 8 0 pfrktable 1344 12 0 11 2 1 1 1 0 8 0 pfanchor 1288 14 0 14 3 3 0 1 0 8 0 pfstitem 24 284 0 233 1 0 1 1 0 8 0 pfstkey 128 284 0 233 3 0 3 3 0 8 0 pfstate 376 284 0 233 9 3 6 7 0 8 0 pfrule 1344 36 0 28 2 1 1 2 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 6139 0 5760 45 18 27 30 0 8 0 art_table 32 6141 0 5760 4 0 4 4 0 8 0 art_node 16 1557 0 1485 1 0 1 1 0 8 0 semapl 112 240 0 230 1 0 1 1 0 8 0 shmpl 112 96 0 1 3 0 3 3 0 8 0 dirhash 1024 51 0 32 3 0 3 3 0 8 0 dino2pl 256 6033 0 4274 111 0 111 111 0 8 0 ffsino 272 6033 0 4274 118 0 118 118 0 8 0 nchpl 144 9425 0 7570 69 0 69 69 0 8 0 uvmvnodes 80 9222 0 0 189 0 189 189 0 8 0 vnodes 216 9222 0 0 513 0 513 513 0 8 0 namei 1024 50774 0 50774 8 7 1 2 0 8 1 percpumem 16 212 0 163 1 0 1 1 0 8 0 vcpupl 3904 6 0 2 1 0 1 1 0 8 0 vmpool 696 11 0 7 2 1 1 1 0 8 0 pfiaddrpl 120 3 0 3 2 2 0 1 0 8 0 kstatmem 264 356 0 326 3 0 3 3 0 8 0 scsiplug 72 8 0 8 6 5 1 1 0 8 1 scxspl 216 84946 0 84946 23 22 1 8 1 8 1 plimitpl 152 1319 0 1300 1 0 1 1 0 8 0 sigapl 424 4082 0 4030 10 3 7 9 0 8 0 futexpl 64 38711 0 38704 14 13 1 1 0 8 0 knotepl 120 671 0 0 17 0 17 17 0 8 0 kqueuepl 216 1144 0 1133 20 18 2 5 0 8 1 pipepl 320 1149 0 1122 20 14 6 8 0 8 3 fdescpl 496 4038 0 4006 7 2 5 5 0 8 0 filepl 152 31096 0 30834 74 58 16 20 0 8 4 lockfpl 104 1057 0 1054 2 0 2 2 0 8 1 lockfspl 48 358 0 355 1 0 1 1 0 8 0 sessionpl 144 149 0 140 1 0 1 1 0 8 0 pgrppl 48 443 0 426 1 0 1 1 0 8 0 ucredpl 104 4587 0 4573 1 0 1 1 0 8 0 zombiepl 144 4031 0 4030 2 1 1 1 0 8 0 processpl 1152 4082 0 4030 7 2 5 6 0 8 0 procpl 648 7904 0 7841 12 6 6 8 0 8 0 srpgc 96 26 0 26 8 7 1 1 0 8 1 sosppl 168 9 0 9 6 6 0 1 0 8 0 sockpl 664 8210 0 8171 104 93 11 18 0 8 7 mcl64k 65536 9 0 0 2 0 2 2 0 8 0 mcl16k 16384 3 0 0 1 0 1 1 0 8 0 mcl12k 12288 2 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 10 0 0 2 0 2 2 0 8 0 mcl4k 4096 4 0 0 1 0 1 1 0 8 0 mcl2k2 2112 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 346 0 0 32 4 28 32 0 8 0 mtagpl 96 44 0 0 2 0 2 2 0 8 0 mbufpl 256 868 0 0 43 0 43 43 0 8 0 bufpl 280 17264 0 7667 687 1 686 686 0 8 0 anonpl 24 537287 0 528196 174 119 55 82 0 185 0 amapchunkpl 152 102872 0 102052 90 58 32 44 0 158 0 amappl16 200 8427 0 8395 96 91 5 27 0 8 1 amappl15 192 7 0 6 1 0 1 1 0 8 0 amappl14 184 371 0 358 1 0 1 1 0 8 0 amappl13 176 13 0 13 2 2 0 1 0 8 0 amappl12 168 6684 0 6652 4 2 2 3 0 8 0 amappl11 160 54 0 40 1 0 1 1 0 8 0 amappl10 152 8 0 8 1 1 0 1 0 8 0 amappl9 144 125 0 125 1 1 0 1 0 8 0 amappl8 136 24 0 21 1 0 1 1 0 8 0 amappl7 128 360 0 348 1 0 1 1 0 8 0 amappl6 120 1436 0 1434 1 0 1 1 0 8 0 amappl5 112 640 0 626 1 0 1 1 0 8 0 amappl4 104 696 0 675 1 0 1 1 0 8 0 amappl3 96 17854 0 17743 6 2 4 4 0 8 0 amappl2 88 4526 0 4442 2 0 2 2 0 8 0 amappl1 80 26945 0 26354 15 1 14 14 0 8 0 amappl 88 30902 0 30715 6 1 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 8 0 8 3 2 1 1 0 8 1 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 98 0 1 2 0 2 2 0 8 0 uaddrrnd 24 4050 0 4014 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4050 0 4014 1 0 1 1 0 8 0 vmmpekpl 168 36838 0 36790 3 0 3 3 0 8 0 vmmpepl 168 249312 0 247345 160 70 90 107 0 357 1 vmsppl 440 4049 0 4014 8 3 5 5 0 8 0 rwobjpl 56 77135 0 66841 152 5 147 147 0 8 0 pdppl 4096 8107 0 8032 278 202 76 85 0 8 1 pvpl 32 46561 0 0 375 0 375 375 0 265 0 pmappl 248 4049 0 4014 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 772 0 346 13 0 13 13 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace end trace frame: 0x0, count: -1 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x44 sys/dev/kcov.c:164 syscall(ffff800032bb0490) at syscall+0xad6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff800032bb0490) at syscall+0xad6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7413c5ea3d20, count: 9 ddb{1}> trace x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x44 sys/dev/kcov.c:164 syscall(ffff800032bb0490) at syscall+0xad6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff800032bb0490) at syscall+0xad6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7413c5ea3d20, count: -6