uvm_fault(0xfffffd806bffde20, 0x0, 0, 1) -> e kernel: page fault trap, code=0 Stopped at dt_ioctl_record_stop+0xf0: movq 0(%r14),%r12 TID PID UID PRFLAGS PFLAGS CPU COMMAND dt_ioctl_record_stop(ffff8000015adc80) at dt_ioctl_record_stop+0xf0 sys/dev/dt/dt_dev.c:580 dtclose(11e5f,81,2000,ffff800031909220) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(11e5f,81,2000,ffff800031909220) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff800033d131f0) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd806bf493c0,81,fffffd8007bfb750,ffff800031909220) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd806bee1b40,ffff800031909220) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd806bee1b40,ffff800031909220) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd806bee1b40,ffff800031909220) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd806bee1b40,ffff800031909220) at closef+0x18d sys/kern/kern_descrip.c:1251 fdfree(ffff800031909220) at fdfree+0x115 sys/kern/kern_descrip.c:1182 exit1(ffff800031909220,0,0,1) at exit1+0x59c sys/kern/kern_exit.c:215 sys_exit(ffff800031909220,ffff800033d13560,ffff800033d134b0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff800033d13560) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff800033d13560) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7ec2507149c0, count: 3 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806bffde20, 0x0, 0, 1) -> e ddb> trace dt_ioctl_record_stop(ffff8000015adc80) at dt_ioctl_record_stop+0xf0 sys/dev/dt/dt_dev.c:580 dtclose(11e5f,81,2000,ffff800031909220) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(11e5f,81,2000,ffff800031909220) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff800033d131f0) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd806bf493c0,81,fffffd8007bfb750,ffff800031909220) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd806bee1b40,ffff800031909220) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd806bee1b40,ffff800031909220) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd806bee1b40,ffff800031909220) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd806bee1b40,ffff800031909220) at closef+0x18d sys/kern/kern_descrip.c:1251 fdfree(ffff800031909220) at fdfree+0x115 sys/kern/kern_descrip.c:1182 exit1(ffff800031909220,0,0,1) at exit1+0x59c sys/kern/kern_exit.c:215 sys_exit(ffff800031909220,ffff800033d13560,ffff800033d134b0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff800033d13560) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff800033d13560) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7ec2507149c0, count: -12 ddb> show registers rdi 0 rsi 0 rbp 0xffff800033d13120 rbx 0xffffffff82cec190 dtclose rdx 0 rcx 0xffff800031909220 rax 0xffff800031909220 r8 0xffffffffffffffff r9 0 r10 0x2c3524dca4254f62 r11 0x276be7f6f6585230 r12 0 r13 0 r14 0 r15 0xffff8000014da600 rip 0xffffffff82cec510 dt_ioctl_record_stop+0xf0 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800033d130f0 ss 0x10 dt_ioctl_record_stop+0xf0: movq 0(%r14),%r12 ddb> show proc PROC (syz-executor) tid=86524 pid=99359 tcnt=0 stat=onproc flags process=1008 proc=2000 runpri=32, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff800031909220 scnt=-1 ecnt=1 forw=0xffffffffffffffff, list=0xffff80002a7e39b8,0xffff800031909750 process=0xffff80003a530000 user=0xffff800033d0e000, vmspace=0xfffffd806bffde20 estcpu=36, cpticks=2, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 71877 269036 39816 0 2 0 syz-executor 71877 375441 39816 0 3 0x4000080 fsleep syz-executor 13475 249093 15371 0 2 0x10 syz-executor 13475 235068 15371 0 3 0x4000090 fsleep syz-executor 13475 258941 15371 0 3 0x4000090 fsleep syz-executor 13475 304242 15371 0 3 0x4000090 fsleep syz-executor 26702 33026 31999 0 2 0 syz-executor 26702 494616 31999 0 3 0x4000080 fsleep syz-executor 75538 21031 51713 0 2 0 syz-executor 75538 304659 51713 0 3 0x4000080 fsleep syz-executor 27244 509394 76169 0 3 0x90 nanoslp syz-executor 27244 504569 76169 0 3 0x4000090 kqread syz-executor 27244 292476 76169 0 3 0x4000090 fsleep syz-executor 15371 403926 30511 0 3 0x82 nanoslp syz-executor 36097 524100 0 0 3 0x14200 bored sosplice 72312 74705 30511 0 3 0x82 nanoslp syz-executor 31999 507764 30511 0 3 0x82 nanoslp syz-executor 5930 172173 30511 0 3 0x82 nanoslp syz-executor 51713 197034 30511 0 3 0x82 nanoslp syz-executor 76169 266773 30511 0 3 0x82 nanoslp syz-executor 31252 360273 30511 0 3 0x82 nanoslp syz-executor 39816 307935 30511 0 3 0x82 nanoslp syz-executor 30511 60976 39586 0 3 0x82 kqread syz-executor 39586 135046 22816 0 3 0x10008a sigsusp ksh 22816 445893 96306 0 3 0x98 kqread sshd-session 96306 34460 76887 0 3 0x92 kqread sshd-session 89475 455367 1 0 3 0x100083 ttyin getty 76887 273808 1 0 3 0x88 kqread sshd 95017 455680 75335 73 3 0x1100090 kqread syslogd 75335 439917 1 0 3 0x100082 sbwait syslogd 39093 11853 1 0 3 0x100080 kqread resolvd 426 183504 50608 77 3 0x100092 kqread dhcpleased 51392 377153 50608 77 3 0x100092 kqread dhcpleased 50608 367839 1 0 3 0x80 kqread dhcpleased 69213 495948 0 0 3 0x14200 bored smr 85270 162630 0 0 2 0x14200 zerothread 86821 397759 0 0 3 0x14200 aiodoned aiodoned 36562 222527 0 0 3 0x14200 syncer update 54809 226159 0 0 3 0x14200 cleaner cleaner 31057 286815 0 0 3 0x14200 reaper reaper 53933 292079 0 0 3 0x14200 pgdaemon pagedaemon 17662 275284 0 0 3 0x14200 bored viomb 8895 202725 0 0 3 0x40014200 acpi0 acpi0 57750 451558 0 0 3 0x14200 bored softnet3 56359 400153 0 0 3 0x14200 bored softnet2 83737 219354 0 0 3 0x14200 bored softnet1 72885 180108 0 0 3 0x14200 bored softnet0 54825 486881 0 0 3 0x14200 bored systqmp 8671 55749 0 0 3 0x14200 bored systq 5904 510520 0 0 3 0x40014200 tmoslp softclock 90404 158551 0 0 3 0x40014200 idle0 1 273316 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10230 11136K 11431K 166960K 12507 0 pcb 17 12K 12K 166960K 90 0 rtable 213 7K 8K 166960K 436 0 pf 30 12K 14K 166960K 75 0 ifaddr 37 6K 7K 166960K 69 0 ifgroup 50 2K 2K 166960K 110 0 sysctl 3 1K 9K 166960K 12 0 counters 32 17K 18K 166960K 121 0 ioctlops 0 0K 4K 166960K 202 0 iov 0 0K 20K 166960K 27 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1369 86K 87K 166960K 1961 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 9 0 VM map 2 1K 1K 166960K 2 0 sem 12 5K 5K 166960K 21 0 dirhash 12 2K 2K 166960K 18 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 232K 166960K 684 0 sigio 0 0K 0K 166960K 3 0 proc 60 59K 91K 166960K 571 0 subproc 72 4K 4K 166960K 82 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 61 0 in_multi 77 5K 7K 166960K 129 0 ether_multi 1 0K 0K 166960K 6 0 mrt 0 0K 0K 166960K 3 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 253 1129K 1129K 166960K 253 0 exec 0 0K 1K 166960K 509 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 241 158K 167K 166960K 7501 0 UVM aobj 18 2K 2K 166960K 18 0 pinsyscall 39 78K 94K 166960K 1734 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 64 0 NDP 11 0K 2K 166960K 48 0 temp 76 8688K 8756K 166960K 16878 0 kqueue 16 26K 32K 166960K 130 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 75 0 71 1 0 1 1 0 8 0 rtentry 136 131 0 37 4 0 4 4 0 8 0 unpcb 144 569 0 419 6 0 6 6 0 8 0 syncache 336 4 0 4 2 2 0 1 0 8 0 tcpqe 32 1 0 1 1 1 0 1 0 8 0 tcpcb 808 224 0 220 10 9 1 7 0 8 0 arp 88 21 0 6 1 0 1 1 0 8 0 ipq 40 2 0 0 1 0 1 1 0 8 0 ipqe 40 4 0 1 1 0 1 1 0 8 0 inpcb 328 651 0 642 15 8 7 7 0 8 5 nd6 104 31 0 11 1 0 1 1 0 8 0 pkpcb 40 5 0 5 3 2 1 1 0 8 1 kcovpl 48 9 0 1 1 0 1 1 0 8 0 ppxss 1072 81 0 81 3 2 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 523 0 148 31 4 27 30 0 8 1 art_table 32 524 0 148 4 0 4 4 0 8 0 art_node 16 129 0 44 1 0 1 1 0 8 0 sysvmsgpl 40 1 0 1 1 1 0 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 15 0 5 1 0 1 1 0 8 0 shmpl 112 15 0 0 1 0 1 1 0 8 0 dirhash 1024 21 0 4 3 0 3 3 0 8 0 dino2pl 256 2615 0 1116 95 0 95 95 0 8 0 ffsino 248 2615 0 1116 95 0 95 95 0 8 0 nchpl 144 3554 0 1865 63 0 63 63 0 8 0 rtmask 32 2 0 2 1 1 0 1 0 8 0 uvmvnodes 80 3034 0 0 62 0 62 62 0 8 0 vnodes 216 3034 0 0 169 0 169 169 0 8 0 namei 1024 12266 0 12266 4 3 1 1 0 8 1 kstatmem 264 60 0 38 3 0 3 3 0 8 1 acpiwqpl 32 3 0 3 1 0 1 1 1 8 1 scsiplug 72 2 0 2 2 1 1 1 0 8 1 scxspl 216 10581 0 10581 10 9 1 8 1 8 1 plimitpl 152 95 0 76 1 0 1 1 0 8 0 sigapl 424 971 0 924 8 0 8 8 0 8 2 knotepl 120 59657 0 59357 42 32 10 24 0 8 0 kqueuepl 184 251 0 239 4 3 1 4 0 8 0 pipepl 296 137 0 109 3 0 3 3 0 8 0 fdescpl 440 934 0 904 5 1 4 5 0 8 0 filepl 120 5882 0 5488 17 5 12 12 0 8 0 lockfpl 104 160 0 158 1 0 1 1 0 8 0 lockfspl 48 62 0 60 1 0 1 1 0 8 0 sessionpl 144 23 0 15 1 0 1 1 0 8 0 pgrppl 48 40 0 24 1 0 1 1 0 8 0 ucredpl 104 1141 0 1126 1 0 1 1 0 8 0 zombiepl 144 927 0 924 1 0 1 1 0 8 0 processpl 1160 971 0 924 6 0 6 6 0 8 2 procpl 656 1768 0 1713 9 2 7 8 0 8 0 sosppl 168 3 0 3 1 1 0 1 0 8 0 sockpl 528 1311 0 1145 18 6 12 12 0 8 0 mcl64k 65536 10 0 10 3 2 1 1 0 8 1 mcl9k 9216 5 0 5 3 2 1 1 0 8 1 mcl8k 8192 10 0 10 3 2 1 1 0 8 1 mcl4k 4096 3118 0 3070 14 6 8 13 0 8 1 mcl2k 2048 583 0 569 3 1 2 2 0 8 0 mtagpl 96 41 0 18 1 0 1 1 0 8 0 mbufpl 256 9366 0 9167 13 0 13 13 0 8 0 bufpl 280 3157 0 120 217 0 217 217 0 8 0 anonpl 24 154845 0 150491 99 39 60 60 0 187 30 amapchunkpl 152 37626 0 36856 55 20 35 35 0 158 0 amappl16 200 2701 0 2666 31 21 10 15 0 8 7 amappl15 192 5 0 5 1 1 0 1 0 8 0 amappl14 184 142 0 131 1 0 1 1 0 8 0 amappl13 176 7 0 7 1 1 0 1 0 8 0 amappl12 168 1614 0 1583 2 0 2 2 0 8 0 amappl11 160 48 0 38 1 0 1 1 0 8 0 amappl10 152 7 0 7 1 1 0 1 0 8 0 amappl9 144 266 0 266 1 1 0 1 0 8 0 amappl8 136 20 0 18 1 0 1 1 0 8 0 amappl7 128 106 0 96 1 0 1 1 0 8 0 amappl6 120 181 0 177 1 0 1 1 0 8 0 amappl5 112 113 0 107 1 0 1 1 0 8 0 amappl4 104 291 0 274 1 0 1 1 0 8 0 amappl3 96 4681 0 4565 5 1 4 4 0 8 0 amappl2 88 720 0 664 2 0 2 2 0 8 0 amappl1 80 10323 0 9774 14 2 12 13 0 8 0 amappl 88 6732 0 6557 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 254 0 254 2 2 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 17 0 0 1 0 1 1 0 8 0 uaddrrnd 24 934 0 904 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 934 0 904 1 0 1 1 0 8 0 vmmpekpl 168 8542 0 8499 4 1 3 3 0 8 0 vmmpepl 168 63774 0 61860 110 15 95 95 0 357 10 vmsppl 360 933 0 904 4 1 3 4 0 8 0 rwobjpl 32 21433 0 17514 33 1 32 32 0 8 0 pdppl 4096 1875 0 1808 109 42 67 81 0 8 0 pvpl 32 409907 0 399054 202 49 153 153 0 265 64 pmappl 216 933 0 904 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 294 0 73 7 0 7 7 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace dt_ioctl_record_stop(ffff8000015adc80) at dt_ioctl_record_stop+0xf0 sys/dev/dt/dt_dev.c:580 dtclose(11e5f,81,2000,ffff800031909220) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(11e5f,81,2000,ffff800031909220) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff800033d131f0) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd806bf493c0,81,fffffd8007bfb750,ffff800031909220) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd806bee1b40,ffff800031909220) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd806bee1b40,ffff800031909220) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd806bee1b40,ffff800031909220) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd806bee1b40,ffff800031909220) at closef+0x18d sys/kern/kern_descrip.c:1251 fdfree(ffff800031909220) at fdfree+0x115 sys/kern/kern_descrip.c:1182 exit1(ffff800031909220,0,0,1) at exit1+0x59c sys/kern/kern_exit.c:215 sys_exit(ffff800031909220,ffff800033d13560,ffff800033d134b0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff800033d13560) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff800033d13560) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7ec2507149c0, count: -12 ddb> machine ddbcpu 1 No such command ddb> trace dt_ioctl_record_stop(ffff8000015adc80) at dt_ioctl_record_stop+0xf0 sys/dev/dt/dt_dev.c:580 dtclose(11e5f,81,2000,ffff800031909220) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(11e5f,81,2000,ffff800031909220) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff800033d131f0) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd806bf493c0,81,fffffd8007bfb750,ffff800031909220) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd806bee1b40,ffff800031909220) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd806bee1b40,ffff800031909220) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd806bee1b40,ffff800031909220) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd806bee1b40,ffff800031909220) at closef+0x18d sys/kern/kern_descrip.c:1251 fdfree(ffff800031909220) at fdfree+0x115 sys/kern/kern_descrip.c:1182 exit1(ffff800031909220,0,0,1) at exit1+0x59c sys/kern/kern_exit.c:215 sys_exit(ffff800031909220,ffff800033d13560,ffff800033d134b0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff800033d13560) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff800033d13560) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7ec2507149c0, count: -12