uvm_fault(0xfffffd806cb692f8, 0x0, 0, 1) -> e kernel: page fault trap, code=0 Stopped at dt_ioctl_record_stop+0x108: movq 0(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND dt_ioctl_record_stop(ffff800001600180) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:593 dtclose(31e5f,81,2000,ffff8000390df250) at dtclose+0xd9 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(31e5f,81,2000,ffff8000390df250) at dtclose+0xd9 sys/dev/dt/dt_dev.c:239 spec_close(ffff80003ace5620) at spec_close+0x466 sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd80670b06d0,81,fffffd8007ffda90,ffff8000390df250) at VOP_CLOSE+0x129 sys/kern/vfs_vops.c:156 vn_closefile(fffffd80675941f0,ffff8000390df250) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd80675941f0,ffff8000390df250) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd80675941f0,ffff8000390df250) at fdrop+0x121 sys/kern/kern_descrip.c:1281 closef(fffffd80675941f0,ffff8000390df250) at closef+0x190 sys/kern/kern_descrip.c:1265 fdfree(ffff8000390df250) at fdfree+0x115 sys/kern/kern_descrip.c:1196 exit1(ffff8000390df250,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff8000390df250,ffff80003ace5980,ffff80003ace58d0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ace5980) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ace5980) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d68dfbb2370, count: 3 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806cb692f8, 0x0, 0, 1) -> e ddb> trace dt_ioctl_record_stop(ffff800001600180) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:593 dtclose(31e5f,81,2000,ffff8000390df250) at dtclose+0xd9 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(31e5f,81,2000,ffff8000390df250) at dtclose+0xd9 sys/dev/dt/dt_dev.c:239 spec_close(ffff80003ace5620) at spec_close+0x466 sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd80670b06d0,81,fffffd8007ffda90,ffff8000390df250) at VOP_CLOSE+0x129 sys/kern/vfs_vops.c:156 vn_closefile(fffffd80675941f0,ffff8000390df250) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd80675941f0,ffff8000390df250) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd80675941f0,ffff8000390df250) at fdrop+0x121 sys/kern/kern_descrip.c:1281 closef(fffffd80675941f0,ffff8000390df250) at closef+0x190 sys/kern/kern_descrip.c:1265 fdfree(ffff8000390df250) at fdfree+0x115 sys/kern/kern_descrip.c:1196 exit1(ffff8000390df250,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff8000390df250,ffff80003ace5980,ffff80003ace58d0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ace5980) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ace5980) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d68dfbb2370, count: -12 ddb> show registers rdi 0 rsi 0 rbp 0xffff80003ace5550 rbx 0x1 rdx 0 rcx 0xffff8000390df250 rax 0xffffffff838c21a0 dt_prov_static r8 0xffffffffffffffff r9 0 r10 0xceaf3bfd2f2b3626 r11 0x472889ea4b587cdc r12 0 r13 0 r14 0 r15 0xffff8000015fcb00 rip 0xffffffff822381c8 dt_ioctl_record_stop+0x108 cs 0x8 rflags 0x10207 __ALIGN_SIZE+0xf207 rsp 0xffff80003ace5520 ss 0x10 dt_ioctl_record_stop+0x108: movq 0(%r14),%r14 ddb> show proc PROC (syz-executor) tid=258006 pid=22462 tcnt=0 stat=onproc flags process=1008 proc=2000 runpri=32, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff8000390df250 scnt=-1 ecnt=1 forw=0xffffffffffffffff, list=0xffff8000314c0a78,0xffff8000390de568 process=0xffff8000ffff9b18 user=0xffff80003ace0000, vmspace=0xfffffd806cb692f8 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 92979 519250 81206 0 2 0 syz-executor 92979 107005 81206 0 3 0x4000080 ttyout syz-executor 60421 355338 21299 0 2 0x3000 syz-executor 44336 468457 85849 0 3 0x80 nanoslp syz-executor 44336 328770 85849 0 3 0x4000080 lockf syz-executor 44336 408028 85849 0 3 0x4000080 fsleep syz-executor 88434 399672 84482 0 3 0x80 nanoslp syz-executor 88434 53706 84482 0 3 0x4000080 kqsel syz-executor 88434 520167 84482 0 3 0x4000080 fsleep syz-executor 84482 413118 40159 0 3 0x82 nanoslp syz-executor 59931 265219 0 0 3 0x14200 acct acct 22238 260579 1 0 3 0x100083 ttyopn getty 49844 396535 40159 0 3 0x82 nanoslp syz-executor 85849 205747 40159 0 3 0x82 nanoslp syz-executor 21299 29855 40159 0 3 0x82 nanoslp syz-executor 72578 190078 40159 0 3 0x82 nanoslp syz-executor 81206 498096 40159 0 3 0x82 nanoslp syz-executor 8287 376489 40159 0 3 0x82 nanoslp syz-executor 20738 421971 40159 0 3 0x82 nanoslp syz-executor 40159 273577 66481 0 3 0x82 kqread syz-executor 66481 9782 65503 0 3 0x10008a sigsusp ksh 65503 346419 67511 0 3 0x98 kqread sshd-session 67511 180823 36130 0 3 0x92 kqread sshd-session 36130 46785 1 0 3 0x88 kqread sshd 19004 482526 9337 73 3 0x1100090 kqread syslogd 9337 465329 1 0 3 0x100082 sbwait syslogd 38251 459707 1 0 3 0x100080 kqread resolvd 10005 442680 20711 77 3 0x100092 kqread dhcpleased 53509 298639 20711 77 3 0x100092 kqread dhcpleased 20711 337636 1 0 3 0x80 kqread dhcpleased 60171 11921 0 0 3 0x14200 bored smr 60341 158089 0 0 2 0x14200 zerothread 92698 221496 0 0 3 0x14200 aiodoned aiodoned 87401 42335 0 0 3 0x14200 syncer update 5850 77554 0 0 3 0x14200 cleaner cleaner 85253 7396 0 0 3 0x14200 reaper reaper 77884 423628 0 0 3 0x14200 pgdaemon pagedaemon 79391 254677 0 0 3 0x14200 bored viomb 54688 156922 0 0 3 0x40014200 acpi0 acpi0 61263 201374 0 0 3 0x14200 bored softnet0 46386 460869 0 0 3 0x14200 bored systqmp 89652 258040 0 0 3 0x14200 bored systq 75220 408212 0 0 3 0x40014200 tmoslp softclock 82412 41074 0 0 3 0x40014200 idle0 1 497013 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11100 12248K 13281K 166960K 14349 0 pcb 24 16K 21K 166960K 812 0 rtable 168 14K 15K 166960K 708 0 pf 27 12K 14K 166960K 97 0 ifaddr 32 5K 7K 166960K 88 0 ifgroup 43 1K 2K 166960K 138 0 sysctl 4 1K 9K 166960K 16 0 counters 32 17K 18K 166960K 78 0 ioctlops 0 0K 4K 166960K 404 0 iov 0 0K 16K 166960K 151 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1416 89K 90K 166960K 2580 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 13K 166960K 24 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 114 0 dirhash 12 2K 2K 166960K 24 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 232K 166960K 1059 0 sigio 0 0K 0K 166960K 11 0 proc 60 59K 100K 166960K 615 0 subproc 72 4K 4K 166960K 81 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 356 0 in_multi 57 4K 7K 166960K 151 0 ether_multi 1 0K 0K 166960K 14 0 mrt 0 0K 0K 166960K 30 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 229 1023K 1023K 166960K 229 0 exec 0 0K 1K 166960K 656 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 234 152K 169K 166960K 10797 0 UVM aobj 67 22K 22K 166960K 72 0 pinsyscall 39 78K 93K 166960K 2177 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 78 0 NDP 10 0K 1K 166960K 59 0 temp 69 9077K 9143K 166960K 43426 0 kqueue 13 20K 30K 166960K 171 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 240 0 236 3 0 3 3 0 8 2 rtentry 136 217 0 155 4 0 4 4 0 8 0 unpcb 144 914 0 892 6 0 6 6 0 8 5 syncache 336 5 0 5 2 1 1 1 0 8 1 tcpqe 32 7 0 7 1 0 1 1 0 8 1 tcpcb 736 364 0 359 4 0 4 4 0 8 3 arp 96 25 0 11 1 0 1 1 0 8 0 ipq 40 8 0 3 1 0 1 1 0 8 0 ipqe 40 17 0 12 1 0 1 1 0 8 0 inpcb 328 1738 0 1720 25 15 10 17 0 8 8 ip6q 72 4 0 2 1 0 1 1 0 8 0 ip6af 40 6 0 4 1 0 1 1 0 8 0 nd6 112 31 0 19 1 0 1 1 0 8 0 pkpcb 40 73 0 73 1 0 1 1 0 8 1 kcovpl 48 9 0 1 1 0 1 1 0 8 0 ppxss 1072 35 0 35 1 0 1 1 0 8 1 pppxif 1384 2 0 2 1 0 1 1 0 8 1 rttmr 136 4 0 4 1 0 1 1 0 8 1 art_heap8 4096 4 0 0 4 0 4 4 0 8 0 art_heap4 256 718 0 462 31 3 28 31 0 8 8 art_table 40 722 0 462 5 0 5 5 0 8 0 art_node 32 150 0 95 1 0 1 1 0 8 0 sysvmsgpl 40 15 0 6 2 1 1 1 0 8 0 semapl 112 110 0 100 1 0 1 1 0 8 0 shmpl 112 59 0 4 2 0 2 2 0 8 0 dirhash 1024 25 0 8 3 0 3 3 0 8 0 dino2pl 256 3479 0 2028 92 0 92 92 0 8 0 ffsino 256 3479 0 2028 92 0 92 92 0 8 0 nchpl 144 4986 0 3288 64 0 64 64 0 8 0 rtmask 32 7 0 7 1 0 1 1 0 8 1 vnodes 216 4262 0 0 237 0 237 237 0 8 0 namei 1024 18332 0 18332 3 2 1 2 0 8 1 vcpupl 3904 10 0 1 2 0 2 2 0 8 0 vmpool 808 10 0 1 1 0 1 1 0 8 0 kstatmem 264 82 0 62 3 0 3 3 0 8 1 scsiplug 72 4 0 4 1 0 1 1 0 8 1 scxspl 216 18057 0 18057 10 2 8 8 1 8 8 plimitpl 152 377 0 360 1 0 1 1 0 8 0 sigapl 424 1346 0 1302 6 0 6 6 0 8 0 knotepl 120 59158 0 59111 32 21 11 21 0 8 8 kqueuepl 184 324 0 314 1 0 1 1 0 8 0 pipepl 304 251 0 223 5 0 5 5 0 8 2 fdescpl 448 1326 0 1296 5 1 4 5 0 8 0 filepl 120 10386 0 10140 16 1 15 15 0 8 6 lockfpl 104 418 0 414 1 0 1 1 0 8 0 lockfspl 48 155 0 152 1 0 1 1 0 8 0 sessionpl 144 25 0 17 1 0 1 1 0 8 0 pgrppl 48 44 0 28 1 0 1 1 0 8 0 ucredpl 104 1950 0 1939 1 0 1 1 0 8 0 zombiepl 144 1307 0 1302 1 0 1 1 0 8 0 processpl 1152 1346 0 1302 4 0 4 4 0 8 0 procpl 664 2657 0 2608 6 0 6 6 0 8 1 sosppl 176 3 0 3 1 0 1 1 0 8 1 sockpl 552 3004 0 2960 28 16 12 21 0 8 8 mcl64k 65536 44 0 42 2 1 1 1 0 8 0 mcl16k 16384 4 0 4 1 1 0 1 0 8 0 mcl8k 8192 22 0 22 2 1 1 1 0 8 1 mcl4k 4096 3686 0 3634 14 5 9 13 0 8 2 mcl2k 2048 1084 0 1079 3 0 3 3 0 8 2 mtagpl 96 24 0 13 2 1 1 1 0 8 0 mbufpl 256 24734 0 23560 597 523 74 543 0 8 0 bufpl 280 5813 0 121 407 0 407 407 0 8 0 anonpl 24 193184 0 189906 79 23 56 57 0 187 17 amapchunkpl 152 37257 0 36741 44 8 36 36 0 158 14 amappl16 200 3820 0 3787 36 21 15 15 0 8 10 amappl15 192 3 0 3 1 1 0 1 0 8 0 amappl14 184 419 0 418 1 0 1 1 0 8 0 amappl13 176 124 0 114 1 0 1 1 0 8 0 amappl12 168 1574 0 1545 2 0 2 2 0 8 0 amappl11 160 6 0 5 1 0 1 1 0 8 0 amappl10 152 59 0 49 1 0 1 1 0 8 0 amappl9 144 269 0 268 1 0 1 1 0 8 0 amappl8 136 102 0 101 1 0 1 1 0 8 0 amappl7 128 148 0 136 1 0 1 1 0 8 0 amappl6 120 160 0 158 1 0 1 1 0 8 0 amappl5 112 94 0 86 1 0 1 1 0 8 0 amappl4 104 269 0 250 1 0 1 1 0 8 0 amappl3 96 7385 0 7266 4 0 4 4 0 8 0 amappl2 88 549 0 495 2 0 2 2 0 8 0 amappl1 80 13622 0 13075 15 0 15 15 0 8 3 amappl 88 9898 0 9727 5 0 5 5 0 92 0 uvmvnodes 80 134 0 0 3 0 3 3 0 8 0 dma32768 32768 2 0 2 1 0 1 1 0 8 1 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 7 0 7 2 1 1 1 0 8 1 dma128 128 254 0 254 2 1 1 1 0 8 1 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 71 0 5 2 0 2 2 0 8 0 uaddrrnd 24 1326 0 1296 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1326 0 1296 1 0 1 1 0 8 0 vmmpekpl 168 11892 0 11850 2 0 2 2 0 8 0 vmmpepl 168 89908 0 88061 103 10 93 93 0 357 4 vmsppl 368 1325 0 1296 4 1 3 4 0 8 0 rwobjpl 40 25279 0 24207 15 1 14 14 0 8 0 pdppl 4096 2678 0 2603 119 44 75 80 0 8 0 pvpl 32 578202 0 568225 179 38 141 141 0 265 32 pmappl 216 1335 0 1297 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 984 0 585 25 4 21 25 0 8 8 ddb> machine ddbcpu 0 No such command ddb> trace dt_ioctl_record_stop(ffff800001600180) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:593 dtclose(31e5f,81,2000,ffff8000390df250) at dtclose+0xd9 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(31e5f,81,2000,ffff8000390df250) at dtclose+0xd9 sys/dev/dt/dt_dev.c:239 spec_close(ffff80003ace5620) at spec_close+0x466 sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd80670b06d0,81,fffffd8007ffda90,ffff8000390df250) at VOP_CLOSE+0x129 sys/kern/vfs_vops.c:156 vn_closefile(fffffd80675941f0,ffff8000390df250) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd80675941f0,ffff8000390df250) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd80675941f0,ffff8000390df250) at fdrop+0x121 sys/kern/kern_descrip.c:1281 closef(fffffd80675941f0,ffff8000390df250) at closef+0x190 sys/kern/kern_descrip.c:1265 fdfree(ffff8000390df250) at fdfree+0x115 sys/kern/kern_descrip.c:1196 exit1(ffff8000390df250,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff8000390df250,ffff80003ace5980,ffff80003ace58d0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ace5980) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ace5980) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d68dfbb2370, count: -12 ddb> machine ddbcpu 1 No such command ddb> trace dt_ioctl_record_stop(ffff800001600180) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:593 dtclose(31e5f,81,2000,ffff8000390df250) at dtclose+0xd9 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(31e5f,81,2000,ffff8000390df250) at dtclose+0xd9 sys/dev/dt/dt_dev.c:239 spec_close(ffff80003ace5620) at spec_close+0x466 sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd80670b06d0,81,fffffd8007ffda90,ffff8000390df250) at VOP_CLOSE+0x129 sys/kern/vfs_vops.c:156 vn_closefile(fffffd80675941f0,ffff8000390df250) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd80675941f0,ffff8000390df250) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd80675941f0,ffff8000390df250) at fdrop+0x121 sys/kern/kern_descrip.c:1281 closef(fffffd80675941f0,ffff8000390df250) at closef+0x190 sys/kern/kern_descrip.c:1265 fdfree(ffff8000390df250) at fdfree+0x115 sys/kern/kern_descrip.c:1196 exit1(ffff8000390df250,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff8000390df250,ffff80003ace5980,ffff80003ace58d0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ace5980) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ace5980) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d68dfbb2370, count: -12