uvm_fault(0xfffffd806ea0e5a8, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *450791 20195 0 0 0x4000000 0 syz-executor ktrops(ffff80002a7bcf78,ffffffffffffffff,0,c0000d06,fffffd8069857880,fffffd807f7d78f0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bcf78,ffffffffffffffff,0,c0000d06,fffffd8069857880,fffffd807f7d78f0) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8069857880,4,40000d06,0,ffff80002a7bcf78) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8069857880,4,40000d06,0,ffff80002a7bcf78) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bcf78,ffff800039d3fce0,ffff800039d3fc30) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff800039d3fce0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2d8dab5b420, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806ea0e5a8, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a7bcf78,ffffffffffffffff,0,c0000d06,fffffd8069857880,fffffd807f7d78f0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bcf78,ffffffffffffffff,0,c0000d06,fffffd8069857880,fffffd807f7d78f0) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8069857880,4,40000d06,0,ffff80002a7bcf78) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8069857880,4,40000d06,0,ffff80002a7bcf78) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bcf78,ffff800039d3fce0,ffff800039d3fc30) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff800039d3fce0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2d8dab5b420, count: -5 ddb> show registers rdi 0xffff80002a7bcf78 rsi 0xffffffffffffffff rbp 0xffff800039d3fa00 rbx 0xfffffd807f7d78f0 rdx 0 rcx 0xc0000d06 rax 0xffff80002a7bcf78 r8 0xfffffd8069857880 r9 0xfffffd807f7d78f0 r10 0x9835bb748dceb42c r11 0xb0deb62f57e8d6b r12 0xffff80002a7bcf78 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0xc0000d06 rip 0xffffffff827ed618 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800039d3f980 ss 0x10 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=450791 pid=20195 tcnt=4 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=82, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a7bd208,0xffff80002a7bccf8 process=0xffff8000ffff48b8 user=0xffff800039d3a000, vmspace=0xfffffd806ea0e5a8 estcpu=32, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 17578 135686 11036 0 4 0x82000 syz-executor 17578 466917 11036 0 2 0x4082000 syz-executor 17578 30740 11036 0 3 0x4002000 suspend syz-executor 20195 52069 46298 0 3 0x80 nanoslp syz-executor 20195 235191 46298 0 3 0x4000080 fsleep syz-executor *20195 450791 46298 0 7 0x4000000 syz-executor 20195 322663 46298 0 3 0x4000080 fsleep syz-executor 25007 487507 48251 -1 2 0x490 syz-executor 25007 24487 48251 -1 2 0x4000010 syz-executor 25007 108566 48251 -1 3 0x4000090 fsleep syz-executor 40641 269667 19880 60928 3 0x90 nanoslp syz-executor 40641 464515 19880 60928 3 0x4000090 ttyout syz-executor 40641 226598 19880 60928 3 0x4000090 fsleep syz-executor 40641 163132 19880 60928 3 0x4000090 fsleep syz-executor 11036 339407 96633 0 3 0x82 nanoslp syz-executor 48251 423540 96633 0 2 0x482 syz-executor 5011 312530 96633 0 3 0x82 wait syz-executor 13438 521854 0 0 3 0x14200 bored sosplice 46298 392715 96633 0 3 0x82 nanoslp syz-executor 46827 190396 96633 0 3 0x2 biowait syz-executor 42401 491233 96633 0 2 0x2 syz-executor 20538 389678 96633 0 2 0x2 syz-executor 19880 494956 96633 0 3 0x82 nanoslp syz-executor 96633 126884 77230 0 3 0x82 kqread syz-executor 77230 233759 80658 0 3 0x10008a sigsusp ksh 80658 180050 56184 0 3 0x98 kqread sshd-session 56184 407699 1 0 3 0x92 kqread sshd-session 15717 336762 1 0 3 0x100083 ttyin getty 52400 132284 68421 73 3 0x1100090 kqread syslogd 68421 197003 1 0 3 0x100082 sbwait syslogd 5640 312954 1 0 3 0x100080 kqread resolvd 74180 40127 11255 77 3 0x100092 kqread dhcpleased 36249 385884 11255 77 3 0x100092 kqread dhcpleased 11255 114859 1 0 3 0x80 kqread dhcpleased 44020 292256 0 0 3 0x14200 bored smr 75311 333442 0 0 2 0x14200 zerothread 81674 137052 0 0 3 0x14200 aiodoned aiodoned 48256 404359 0 0 3 0x14200 syncer update 11833 334481 0 0 3 0x14200 cleaner cleaner 35256 137712 0 0 3 0x14200 reaper reaper 68883 404481 0 0 3 0x14200 pgdaemon pagedaemon 90479 5790 0 0 3 0x14200 bored viomb 29285 512681 0 0 3 0x40014200 acpi0 acpi0 77520 464868 0 0 3 0x14200 bored softnet3 24369 153260 0 0 3 0x14200 bored softnet2 5464 503921 0 0 3 0x14200 bored softnet1 4463 14478 0 0 3 0x14200 bored softnet0 34537 255997 0 0 3 0x14200 bored systqmp 25287 520921 0 0 3 0x14200 bored systq 6428 507587 0 0 2 0x40014200 softclock 61911 484958 0 0 3 0x40014200 idle0 1 75770 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10212 11126K 11568K 166960K 13460 0 pcb 18 18K 19K 166960K 344 0 rtable 205 9K 9K 166960K 664 0 pf 34 14K 17K 166960K 156 0 ifaddr 37 6K 7K 166960K 109 0 ifgroup 49 2K 2K 166960K 172 0 sysctl 4 1K 1K 166960K 6 0 counters 29 17K 18K 166960K 85 0 ioctlops 0 0K 4K 166960K 189 0 iov 0 0K 32K 166960K 213 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1490 94K 94K 166960K 2824 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 31 0 VM map 2 1K 1K 166960K 2 0 sem 20 10K 11K 166960K 121 0 dirhash 12 2K 3K 166960K 42 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 15 53K 97K 166960K 1475 0 sigio 1 0K 0K 166960K 99 0 proc 60 59K 124K 166960K 692 0 subproc 72 4K 4K 166960K 100 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 181 0 in_multi 76 5K 7K 166960K 199 0 ether_multi 1 0K 0K 166960K 13 0 mrt 1 0K 0K 166960K 3 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 253 1129K 1129K 166960K 253 0 exec 0 0K 1K 166960K 650 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 4 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 208 72K 88K 166960K 14722 0 UVM aobj 91 3K 3K 166960K 94 0 pinsyscall 34 68K 96K 166960K 2590 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 77 0 NDP 10 0K 2K 166960K 69 0 temp 77 8636K 8716K 166960K 65969 0 kqueue 13 20K 28K 166960K 261 0 SYN cache 2 8K 16K 166960K 3 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 253 0 249 4 3 1 3 0 8 0 rtentry 112 208 0 120 4 0 4 4 0 8 0 unpcb 144 1542 0 1524 14 12 2 8 0 8 1 syncache 336 5 0 5 2 2 0 1 0 8 0 tcpqe 32 2 0 2 2 2 0 1 0 8 0 tcpcb 808 372 0 367 9 7 2 5 0 8 0 arp 88 36 0 19 1 0 1 1 0 8 0 ipq 40 2 0 0 1 0 1 1 0 8 0 ipqe 40 5 0 2 1 0 1 1 0 8 0 inpcb 344 1854 0 1845 21 18 3 11 0 8 1 nd6 104 44 0 28 1 0 1 1 0 8 0 pkpcb 40 39 0 39 2 2 0 1 0 8 0 kcovpl 48 11 0 3 1 0 1 1 0 8 0 mppekey 1024 1 0 1 1 1 0 1 0 8 0 ppxss 1072 35 0 35 3 2 1 1 0 8 1 pppxif 1376 12 0 12 3 2 1 1 0 8 1 pfstscr 40 10 0 10 3 2 1 1 0 8 1 pfrktable 1344 5 0 4 1 0 1 1 0 8 0 pfanchor 1288 5 0 1 1 0 1 1 0 8 0 pftag 88 4 0 1 1 0 1 1 0 8 0 pfqueue 320 5 0 3 1 0 1 1 0 8 0 pfstitem 24 2 0 0 1 0 1 1 0 8 0 pfstkey 128 18 0 16 3 2 1 1 0 8 0 pfstate 344 10 0 9 3 2 1 1 0 8 0 pfrule 1344 12 0 10 1 0 1 1 0 8 0 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 755 0 380 30 5 25 30 0 8 0 art_table 32 758 0 380 4 0 4 4 0 8 0 art_node 16 195 0 120 1 0 1 1 0 8 0 sysvmsgpl 40 2 0 1 1 0 1 1 0 8 0 semupl 112 2 0 2 2 1 1 1 0 8 1 semapl 112 115 0 97 1 0 1 1 0 8 0 shmpl 112 91 0 3 3 0 3 3 0 8 0 dirhash 1024 37 0 20 3 0 3 3 0 8 0 dino2pl 256 4155 0 2661 95 0 95 95 0 8 0 ffsino 248 4155 0 2661 95 0 95 95 0 8 0 nchpl 144 6314 0 5763 63 41 22 63 0 8 0 rtmask 32 6 0 6 2 2 0 1 0 8 0 uvmvnodes 80 5193 0 0 106 0 106 106 0 8 0 vnodes 216 5193 0 0 289 0 289 289 0 8 0 namei 1024 22919 0 22918 5 4 1 2 0 8 0 pfiaddrpl 120 1 0 1 1 1 0 1 0 8 0 kstatmem 264 92 0 72 2 0 2 2 0 8 0 acpiwqpl 32 2 0 2 1 0 1 1 1 8 1 scsiplug 72 6 0 6 3 2 1 1 0 8 1 scxspl 216 20930 0 20913 13 8 5 8 1 8 3 plimitpl 152 514 0 496 1 0 1 1 0 8 0 sigapl 424 1773 0 1730 8 1 7 8 0 8 0 futexpl 64 22158 0 22153 1 0 1 1 0 8 0 knotepl 120 336737 0 336690 36 27 9 17 0 8 7 kqueuepl 184 722 0 712 7 3 4 4 0 8 3 pipepl 296 322 0 295 8 5 3 8 0 8 0 fdescpl 440 1734 0 1708 5 1 4 5 0 8 0 filepl 120 13236 0 13011 22 12 10 15 0 8 1 lockfpl 104 446 0 443 1 0 1 1 0 8 0 lockfspl 48 182 0 179 1 0 1 1 0 8 0 sessionpl 144 25 0 18 1 0 1 1 0 8 0 pgrppl 48 49 0 34 1 0 1 1 0 8 0 ucredpl 104 2434 0 2419 1 0 1 1 0 8 0 zombiepl 144 1731 0 1730 1 0 1 1 0 8 0 processpl 1104 1773 0 1730 5 1 4 5 0 8 0 procpl 656 3778 0 3725 8 1 7 8 0 8 0 sosppl 168 7 0 7 3 2 1 1 0 8 1 sockpl 528 3780 0 3748 33 29 4 16 0 8 1 mcl64k 65536 182 0 182 3 2 1 1 0 8 1 mcl16k 16384 3 0 3 1 1 0 1 0 8 0 mcl12k 12288 1 0 1 1 1 0 1 0 8 0 mcl9k 9216 36 0 36 2 2 0 1 0 8 0 mcl8k 8192 47 0 47 3 2 1 1 0 8 1 mcl4k 4096 4208 0 4156 15 6 9 12 0 8 2 mcl2k 2048 1618 0 1612 5 2 3 3 0 8 1 mtagpl 96 178 0 54 4 0 4 4 0 8 0 mbufpl 256 133878 0 133626 40 15 25 26 0 8 5 bufpl 280 7458 0 1230 445 0 445 445 0 8 0 anonpl 24 253829 0 245490 82 6 76 81 0 187 0 amapchunkpl 152 50272 0 49729 50 21 29 36 0 158 6 amappl16 200 4959 0 4681 31 4 27 30 0 8 0 amappl15 192 8 0 8 1 1 0 1 0 8 0 amappl14 184 113 0 104 1 0 1 1 0 8 0 amappl13 176 8 0 8 1 1 0 1 0 8 0 amappl12 168 2422 0 2396 3 1 2 3 0 8 0 amappl11 160 59 0 49 1 0 1 1 0 8 0 amappl10 152 6 0 6 1 1 0 1 0 8 0 amappl9 144 249 0 248 1 0 1 1 0 8 0 amappl8 136 27 0 25 1 0 1 1 0 8 0 amappl7 128 123 0 114 1 0 1 1 0 8 0 amappl6 120 204 0 200 1 0 1 1 0 8 0 amappl5 112 133 0 124 1 0 1 1 0 8 0 amappl4 104 302 0 289 1 0 1 1 0 8 0 amappl3 96 9865 0 9766 5 1 4 4 0 8 1 amappl2 88 671 0 620 2 0 2 2 0 8 0 amappl1 80 11841 0 11410 13 2 11 13 0 8 0 amappl 88 14242 0 14079 5 0 5 5 0 92 0 dma4096 4096 2 0 2 2 2 0 1 0 8 0 dma1024 1024 3 0 2 1 0 1 1 0 8 0 dma256 256 7 0 7 2 2 0 1 0 8 0 dma128 128 256 0 256 2 2 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 93 0 3 2 0 2 2 0 8 0 uaddrrnd 24 1734 0 1708 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1734 0 1708 1 0 1 1 0 8 0 vmmpekpl 168 13763 0 13705 3 0 3 3 0 8 0 vmmpepl 168 108703 0 106927 100 4 96 99 0 357 0 vmsppl 360 1733 0 1708 4 1 3 4 0 8 0 rwobjpl 32 33807 0 27520 51 0 51 51 0 8 0 pdppl 4096 3475 0 3416 115 50 65 83 0 8 6 pvpl 32 723485 0 710595 183 37 146 166 0 265 0 pmappl 216 1733 0 1708 3 0 3 3 0 8 0 extentpl 40 55 0 38 1 0 1 1 0 8 0 phpool 112 335 0 101 8 0 8 8 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a7bcf78,ffffffffffffffff,0,c0000d06,fffffd8069857880,fffffd807f7d78f0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bcf78,ffffffffffffffff,0,c0000d06,fffffd8069857880,fffffd807f7d78f0) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8069857880,4,40000d06,0,ffff80002a7bcf78) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8069857880,4,40000d06,0,ffff80002a7bcf78) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bcf78,ffff800039d3fce0,ffff800039d3fc30) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff800039d3fce0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2d8dab5b420, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a7bcf78,ffffffffffffffff,0,c0000d06,fffffd8069857880,fffffd807f7d78f0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bcf78,ffffffffffffffff,0,c0000d06,fffffd8069857880,fffffd807f7d78f0) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8069857880,4,40000d06,0,ffff80002a7bcf78) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8069857880,4,40000d06,0,ffff80002a7bcf78) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bcf78,ffff800039d3fce0,ffff800039d3fc30) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff800039d3fce0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2d8dab5b420, count: -5