uvm_fault(0xfffffd806c244018, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *403966 81800 0 0 0x4000000 0 syz-executor ktrops(ffff80002a8ed9d0,ffffffffffffffff,0,a0c7df9b,fffffd8065220cb0,fffffd8007bfb6e8) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a8ed9d0,ffffffffffffffff,0,a0c7df9b,fffffd8065220cb0,fffffd8007bfb6e8) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8065220cb0,4,20c7df9b,0,ffff80002a8ed9d0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8065220cb0,4,20c7df9b,0,ffff80002a8ed9d0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a8ed9d0,ffff80003c941be0,ffff80003c941b30) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c941be0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c941be0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2952f1b7d90, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806c244018, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a8ed9d0,ffffffffffffffff,0,a0c7df9b,fffffd8065220cb0,fffffd8007bfb6e8) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a8ed9d0,ffffffffffffffff,0,a0c7df9b,fffffd8065220cb0,fffffd8007bfb6e8) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8065220cb0,4,20c7df9b,0,ffff80002a8ed9d0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8065220cb0,4,20c7df9b,0,ffff80002a8ed9d0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a8ed9d0,ffff80003c941be0,ffff80003c941b30) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c941be0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c941be0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2952f1b7d90, count: -5 ddb> show registers rdi 0xffff80002a8ed9d0 rsi 0xffffffffffffffff rbp 0xffff80003c941900 rbx 0xfffffd8007bfb6e8 rdx 0 rcx 0xa0c7df9b rax 0xffff80002a8ed9d0 r8 0xfffffd8065220cb0 r9 0xfffffd8007bfb6e8 r10 0xa368b2a40f20f77e r11 0x225e6253c77a63a6 r12 0xffff80002a8ed9d0 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0xa0c7df9b rip 0xffffffff820bb6c8 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c941880 ss 0x10 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=403966 pid=81800 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a8ec550,0xffff80002a8ecd10 process=0xffff800034114928 user=0xffff80003c93c000, vmspace=0xfffffd806c244018 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 23093 315689 98321 0 2 0 syz-executor 23093 69728 98321 0 3 0x4000080 fsleep syz-executor 81800 209367 11268 0 2 0 syz-executor *81800 403966 11268 0 7 0x4000000 syz-executor 81800 348062 11268 0 3 0x4000080 sbwait syz-executor 20770 90152 43925 0 2 0xc80 syz-executor 20770 479627 43925 0 3 0x4000080 fsleep syz-executor 20770 453486 43925 0 2 0x4000001 syz-executor 2054 183447 1 0 3 0x100083 ttyin getty 20939 165551 0 0 3 0x14200 bored sosplice 43925 1143 86024 0 2 0xc82 syz-executor 98321 91016 86024 0 3 0x82 nanoslp syz-executor 9281 510992 86024 0 2 0x2 syz-executor 11268 333096 86024 0 2 0xc82 syz-executor 48700 81575 86024 0 2 0x2 syz-executor 60607 89182 86024 0 2 0x2 syz-executor 17229 442723 86024 0 2 0x2 syz-executor 21358 85706 86024 0 2 0x2 syz-executor 86024 243255 1232 0 3 0x82 kqread syz-executor 1232 315824 39926 0 3 0x10008a sigsusp ksh 39926 272166 26125 0 3 0x98 kqread sshd-session 26125 128395 3393 0 3 0x92 kqread sshd-session 3393 50310 1 0 3 0x88 kqread sshd 9235 324140 79729 73 3 0x1100090 kqread syslogd 79729 35885 1 0 3 0x100082 sbwait syslogd 49964 249832 1 0 3 0x100080 kqread resolvd 49760 175941 47963 77 3 0x100092 kqread dhcpleased 51088 303703 47963 77 3 0x100092 kqread dhcpleased 47963 261591 1 0 3 0x80 kqread dhcpleased 58508 240893 0 0 3 0x14200 bored smr 42219 20051 0 0 2 0x14200 zerothread 15769 400681 0 0 3 0x14200 aiodoned aiodoned 43223 64157 0 0 3 0x14200 syncer update 99532 312104 0 0 3 0x14200 cleaner cleaner 82443 16143 0 0 3 0x14200 reaper reaper 54164 172255 0 0 3 0x14200 pgdaemon pagedaemon 69999 114245 0 0 3 0x14200 bored viomb 61212 194667 0 0 3 0x40014200 acpi0 acpi0 64590 298777 0 0 3 0x14200 bored softnet3 25450 482276 0 0 3 0x14200 bored softnet2 24642 348616 0 0 3 0x14200 bored softnet1 4709 106083 0 0 2 0x14200 softnet0 56274 504256 0 0 3 0x14200 bored systqmp 19692 290948 0 0 3 0x14200 bored systq 35769 469466 0 0 3 0x40014200 tmoslp softclock 19053 42980 0 0 3 0x40014200 idle0 1 403077 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10184 11116K 11432K 166960K 11576 0 pcb 17 13K 14K 166960K 102 0 rtable 192 14K 14K 166960K 381 0 pf 32 13K 14K 166960K 45 0 ifaddr 40 6K 7K 166960K 56 0 ifgroup 54 2K 2K 166960K 73 0 sysctl 1 1K 9K 166960K 8 0 counters 33 17K 18K 166960K 40 0 ioctlops 0 0K 4K 166960K 53 0 iov 0 0K 16K 166960K 100 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1407 88K 89K 166960K 1566 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 5 0 VM map 2 1K 1K 166960K 2 0 sem 4 10K 10K 166960K 6 0 dirhash 12 2K 2K 166960K 15 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 13 45K 93K 166960K 343 0 sigio 0 0K 0K 166960K 6 0 proc 60 59K 100K 166960K 492 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 22 0 in_multi 87 6K 7K 166960K 108 0 ether_multi 1 0K 0K 166960K 3 0 mrt 0 0K 0K 166960K 3 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 55 254K 254K 166960K 55 0 exec 0 0K 1K 166960K 361 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 205 159K 177K 166960K 4689 0 UVM aobj 6 2K 2K 166960K 6 0 pinsyscall 34 68K 94K 166960K 1376 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 6 0 NDP 12 0K 2K 166960K 34 0 temp 43 8680K 8807K 166960K 20717 0 kqueue 13 20K 27K 166960K 60 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 49 0 45 1 0 1 1 0 8 0 rtentry 136 114 0 29 4 0 4 4 0 8 0 unpcb 144 218 0 199 3 2 1 3 0 8 0 syncache 336 3 0 3 1 1 0 1 0 8 0 tcpcb 736 39 0 35 1 0 1 1 0 8 0 arp 88 18 0 2 1 0 1 1 0 8 0 inpcb 328 295 0 287 8 1 7 7 0 8 6 ip6q 72 1 0 0 1 0 1 1 0 8 0 ip6af 40 1 0 0 1 0 1 1 0 8 0 nd6 104 24 0 5 1 0 1 1 0 8 0 pkpcb 40 3 0 3 1 1 0 1 0 8 0 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 4 0 4 2 1 1 1 0 8 1 pppxif 1384 1 0 1 1 1 0 1 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 495 0 107 29 1 28 29 0 8 1 art_table 32 497 0 107 4 0 4 4 0 8 0 art_node 16 113 0 36 1 0 1 1 0 8 0 sysvmsgpl 40 2 0 2 1 1 0 1 0 8 0 semapl 112 2 0 0 1 0 1 1 0 8 0 shmpl 112 3 0 0 1 0 1 1 0 8 0 dirhash 1024 19 0 2 3 0 3 3 0 8 0 dino2pl 256 1904 0 404 95 0 95 95 0 8 0 ffsino 248 1904 0 404 95 0 95 95 0 8 0 nchpl 144 2430 0 751 63 0 63 63 0 8 0 uvmvnodes 80 2143 0 0 44 0 44 44 0 8 0 vnodes 216 2143 0 0 120 0 120 120 0 8 0 namei 1024 7212 0 7209 3 2 1 2 0 8 0 kstatmem 264 36 0 12 3 0 3 3 0 8 1 scxspl 216 7877 0 7877 9 7 2 8 1 8 2 plimitpl 152 89 0 73 1 0 1 1 0 8 0 sigapl 424 624 0 582 6 0 6 6 0 8 0 knotepl 120 166043 0 165996 16 7 9 9 0 8 7 kqueuepl 184 76 0 67 1 0 1 1 0 8 0 pipepl 296 183 0 156 8 5 3 8 0 8 0 fdescpl 440 607 0 582 5 1 4 5 0 8 0 filepl 120 2896 0 2677 12 3 9 11 0 8 0 lockfpl 104 86 0 83 1 0 1 1 0 8 0 lockfspl 48 40 0 37 1 0 1 1 0 8 0 sessionpl 144 22 0 14 1 0 1 1 0 8 0 pgrppl 48 31 0 15 1 0 1 1 0 8 0 ucredpl 104 294 0 282 1 0 1 1 0 8 0 zombiepl 144 691 0 691 1 0 1 1 0 8 1 processpl 1160 624 0 582 4 0 4 4 0 8 0 procpl 656 994 0 947 7 1 6 6 0 8 0 sockpl 528 572 0 541 11 4 7 7 0 8 4 mcl64k 65536 6 0 6 2 1 1 1 0 8 1 mcl9k 9216 1 0 1 1 0 1 1 0 8 1 mcl8k 8192 5 0 5 1 1 0 1 0 8 0 mcl4k 4096 2697 0 2637 14 5 9 14 0 8 1 mcl2k 2048 323 0 320 4 3 1 4 0 8 0 mtagpl 96 17 0 10 1 0 1 1 0 8 0 mbufpl 256 6145 0 5955 15 2 13 13 0 8 0 bufpl 280 2581 0 119 176 0 176 176 0 8 0 anonpl 24 98452 0 92532 75 12 63 63 0 187 13 amapchunkpl 152 14214 0 13762 33 5 28 28 0 158 6 amappl16 200 1611 0 1465 30 11 19 21 0 8 8 amappl15 192 1 0 1 1 1 0 1 0 8 0 amappl14 184 101 0 91 1 0 1 1 0 8 0 amappl13 176 6 0 6 2 1 1 1 0 8 1 amappl12 168 1214 0 1189 3 1 2 3 0 8 0 amappl11 160 43 0 33 1 0 1 1 0 8 0 amappl10 152 5 0 5 1 1 0 1 0 8 0 amappl9 144 266 0 266 1 1 0 1 0 8 0 amappl8 136 31 0 29 1 0 1 1 0 8 0 amappl7 128 92 0 82 1 0 1 1 0 8 0 amappl6 120 181 0 178 1 0 1 1 0 8 0 amappl5 112 110 0 104 1 0 1 1 0 8 0 amappl4 104 284 0 268 1 0 1 1 0 8 0 amappl3 96 2595 0 2510 4 0 4 4 0 8 0 amappl2 88 602 0 548 2 0 2 2 0 8 0 amappl1 80 8735 0 8214 13 1 12 13 0 8 0 amappl 88 4009 0 3869 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 5 0 0 1 0 1 1 0 8 0 uaddrrnd 24 607 0 582 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 607 0 582 1 0 1 1 0 8 0 vmmpekpl 168 6626 0 6584 3 0 3 3 0 8 0 vmmpepl 168 43815 0 42078 107 9 98 98 0 357 7 vmsppl 360 606 0 582 4 1 3 4 0 8 0 rwobjpl 32 15972 0 12898 26 0 26 26 0 8 0 pdppl 4096 1221 0 1164 95 28 67 81 0 8 10 pvpl 32 273684 0 263235 177 28 149 149 0 265 40 pmappl 216 606 0 582 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 268 0 46 8 0 8 8 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a8ed9d0,ffffffffffffffff,0,a0c7df9b,fffffd8065220cb0,fffffd8007bfb6e8) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a8ed9d0,ffffffffffffffff,0,a0c7df9b,fffffd8065220cb0,fffffd8007bfb6e8) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8065220cb0,4,20c7df9b,0,ffff80002a8ed9d0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8065220cb0,4,20c7df9b,0,ffff80002a8ed9d0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a8ed9d0,ffff80003c941be0,ffff80003c941b30) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c941be0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c941be0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2952f1b7d90, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a8ed9d0,ffffffffffffffff,0,a0c7df9b,fffffd8065220cb0,fffffd8007bfb6e8) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a8ed9d0,ffffffffffffffff,0,a0c7df9b,fffffd8065220cb0,fffffd8007bfb6e8) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8065220cb0,4,20c7df9b,0,ffff80002a8ed9d0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8065220cb0,4,20c7df9b,0,ffff80002a8ed9d0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a8ed9d0,ffff80003c941be0,ffff80003c941b30) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c941be0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c941be0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x2952f1b7d90, count: -5