uvm_fault(0xfffffd807eb96e60, 0xb80, 0, 2) -> e kernel: page fault trap, code=2 Stopped at copyout+0x57: repe movsq (%rsi),%es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND *300244 56822 60929 0x10 0x4000000 0 syz-executor copyout() at copyout+0x57 syscall(ffff80003c979930) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c979930) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf7c90f60ba0, count: 12 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd807eb96e60, 0xb80, 0, 2) -> e ddb> trace copyout() at copyout+0x57 syscall(ffff80003c979930) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c979930) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf7c90f60ba0, count: -3 ddb> show registers rdi 0xb80 rsi 0xffff80003c979640 rbp 0xffff80003c979860 rbx 0x4000a99e rdx 0xffff80003c974000 rcx 0x4 rax 0x20 r8 0x7f7fffffc000 r9 0x4 r10 0x2bea330f085ac7f2 r11 0xffffffff82ca3900 copy_fault r12 0x3 r13 0x16 r14 0xffff80003c979640 r15 0xffff80003c979930 rip 0xffffffff82ca3827 copyout+0x57 cs 0x8 rflags 0x50202 acpi_pdirpa+0x3c073 rsp 0xffff80003c9795b0 ss 0x10 copyout+0x57: repe movsq (%rsi),%es:(%rdi) ddb> show proc PROC (syz-executor) tid=300244 pid=56822 tcnt=2 stat=onproc flags process=10 proc=4000000 runpri=32, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80003c99cfb8,0xffffffff838fca88 process=0xffff80002a79bb58 user=0xffff80003c974000, vmspace=0xfffffd807eb96e60 estcpu=36, cpticks=2, pctcpu=0.0, user=0, sys=2, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 56822 358421 49959 60929 2 0x10 syz-executor *56822 300244 49959 60929 7 0x4000010 syz-executor 70080 340604 62179 0 2 0 syz-executor 70080 27869 62179 0 2 0x4000000 syz-executor 70080 337768 62179 0 3 0x4000080 fsleep syz-executor 90812 393858 3637 0 2 0 syz-executor 90812 155461 3637 0 3 0x4000080 fsleep syz-executor 80432 251700 18905 0 2 0 syz-executor 80432 165736 18905 0 3 0x4000080 fsleep syz-executor 27345 416178 4075 0 2 0 syz-executor 27345 469545 4075 0 3 0x4000080 fsleep syz-executor 41942 383418 71437 0 2 0x2 syz-executor 76353 267475 71437 0 2 0x2 syz-executor 3637 324082 71437 0 3 0x82 nanoslp syz-executor 23211 261710 1 0 3 0x100083 ttyopn getty 3482 212301 16615 0 3 0x82 sbwait sshd-session 92537 60539 16615 0 3 0x82 sbwait sshd-session 38405 47376 0 0 3 0x14200 bored sosplice 4075 309297 71437 0 3 0x82 nanoslp syz-executor 49959 23335 71437 0 3 0x82 nanoslp syz-executor 87760 87253 71437 0 2 0x2 syz-executor 62179 366773 71437 0 3 0x82 nanoslp syz-executor 18905 167581 71437 0 3 0x82 nanoslp syz-executor 71437 436493 88870 0 3 0x82 kqread syz-executor 88870 157655 58057 0 3 0x10008a sigsusp ksh 58057 234714 58478 0 3 0x98 kqread sshd-session 58478 114165 16615 0 3 0x92 kqread sshd-session 16615 373260 1 0 3 0x88 kqread sshd 58490 351721 83812 73 3 0x1100090 kqread syslogd 83812 306302 1 0 3 0x100082 sbwait syslogd 10462 497054 1 0 3 0x100080 kqread resolvd 68267 138234 77628 77 3 0x100092 kqread dhcpleased 28557 69321 77628 77 3 0x100092 kqread dhcpleased 77628 330268 1 0 3 0x80 kqread dhcpleased 7129 318129 0 0 3 0x14200 bored smr 40856 470739 0 0 2 0x14200 zerothread 29629 416253 0 0 3 0x14200 aiodoned aiodoned 97405 422035 0 0 3 0x14200 syncer update 53941 30111 0 0 3 0x14200 cleaner cleaner 8600 397200 0 0 3 0x14200 reaper reaper 75225 467231 0 0 3 0x14200 pgdaemon pagedaemon 36588 419233 0 0 3 0x14200 bored viomb 11655 226254 0 0 3 0x40014200 acpi0 acpi0 70199 68489 0 0 3 0x14200 bored softnet7 39312 334250 0 0 3 0x14200 bored softnet6 54100 167095 0 0 3 0x14200 bored softnet5 96253 320148 0 0 3 0x14200 bored softnet4 67018 95895 0 0 3 0x14200 bored softnet3 89216 203699 0 0 3 0x14200 bored softnet2 32151 464784 0 0 3 0x14200 bored softnet1 86187 139260 0 0 2 0x14200 softnet0 51141 69807 0 0 3 0x14200 bored systqmp 30119 477606 0 0 3 0x14200 bored systq 93711 156709 0 0 2 0x40014200 softclock 50509 153655 0 0 3 0x40014200 idle0 1 522775 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10262 11218K 15297K 166960K 15419 0 pcb 18 25K 28K 166960K 998 0 rtable 178 11K 11K 166960K 703 0 pf 34 13K 20K 166960K 248 0 ifaddr 34 6K 9K 166960K 173 0 ifgroup 50 2K 2K 166960K 294 0 sysctl 4 1K 9K 166960K 55 0 counters 32 17K 18K 166960K 255 0 ioctlops 0 0K 4K 166960K 950 0 iov 0 0K 32K 166960K 301 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1515 95K 96K 166960K 4359 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 49 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 119 0 dirhash 12 2K 2K 166960K 63 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 15 53K 240K 166960K 2387 0 sigio 0 0K 0K 166960K 114 0 proc 61 59K 116K 166960K 857 0 subproc 72 4K 4K 166960K 109 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 415 0 in_multi 56 4K 7K 166960K 296 0 ether_multi 1 0K 0K 166960K 38 0 mrt 2 0K 0K 166960K 11 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 421 1871K 1871K 166960K 421 0 exec 0 0K 1K 166960K 859 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 8 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 236 162K 179K 166960K 22290 0 UVM aobj 11 3K 3K 166960K 15 0 pinsyscall 40 80K 94K 166960K 3610 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 100 0 NDP 11 0K 2K 166960K 117 0 temp 80 8644K 8886K 166960K 108114 0 kqueue 13 20K 36K 166960K 433 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 307 0 304 2 0 2 2 0 8 1 rtentry 136 244 0 187 4 0 4 4 0 8 0 unpcb 144 2238 0 2216 14 8 6 6 0 8 4 syncache 336 28 0 28 2 1 1 1 0 8 1 tcpqe 32 11 0 11 2 1 1 1 0 8 1 tcpcb 736 1234 0 1218 27 17 10 13 0 8 8 arp 88 25 0 15 1 0 1 1 0 8 0 ipq 40 7 0 5 1 0 1 1 0 8 0 ipqe 40 12 0 10 1 0 1 1 0 8 0 inpcb 328 3387 0 3367 29 18 11 16 0 8 8 ip6q 72 96 0 93 1 0 1 1 0 8 0 ip6af 40 191 0 185 1 0 1 1 0 8 0 nd6 104 65 0 55 1 0 1 1 0 8 0 pkpcb 40 57 0 57 2 1 1 1 0 8 1 kcovpl 48 12 0 4 1 0 1 1 0 8 0 ppxss 1072 190 0 190 3 2 1 1 0 8 1 pppxif 1384 15 0 15 1 0 1 1 0 8 1 pfstscr 40 6 0 5 1 0 1 1 0 8 0 pfrktable 1344 1 0 1 1 0 1 1 0 8 1 pfanchor 1288 2 0 0 1 0 1 1 0 8 0 pfstitem 24 1 0 0 1 0 1 1 0 8 0 pfstkey 128 6 0 5 1 0 1 1 0 8 0 pfstate 384 4 0 3 1 0 1 1 0 8 0 pfrule 1344 7 0 7 2 1 1 1 0 8 1 rttmr 136 1 0 1 1 0 1 1 0 8 1 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 1365 0 1073 35 9 26 33 0 8 4 art_table 40 1368 0 1073 6 0 6 6 0 8 0 art_node 32 236 0 191 1 0 1 1 0 8 0 sysvmsgpl 40 26 0 16 1 0 1 1 0 8 0 semapl 112 113 0 103 1 0 1 1 0 8 0 shmpl 112 12 0 4 1 0 1 1 0 8 0 dirhash 1024 52 0 35 3 0 3 3 0 8 0 dino2pl 256 6354 0 4852 95 0 95 95 0 8 0 ffsino 256 6354 0 4852 95 0 95 95 0 8 0 nchpl 144 9866 0 9208 63 32 31 63 0 8 6 rtmask 32 25 0 25 3 2 1 1 0 8 1 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 38693 0 38691 3 2 1 2 0 8 0 kstatmem 264 180 0 158 3 0 3 3 0 8 0 acpiwqpl 32 1 0 1 1 0 1 1 1 8 1 scsiplug 72 6 0 6 2 1 1 1 0 8 1 scxspl 216 35139 0 35139 15 7 8 8 1 8 8 plimitpl 152 894 0 878 1 0 1 1 0 8 0 sigapl 424 2691 0 2641 9 0 9 9 0 8 2 knotepl 120 505331 0 505281 69 55 14 33 0 8 8 kqueuepl 184 1155 0 1145 7 3 4 4 0 8 3 pipepl 304 478 0 451 8 0 8 8 0 8 5 fdescpl 448 2639 0 2610 5 1 4 5 0 8 0 filepl 120 24155 0 23931 25 8 17 17 0 8 6 lockfpl 104 1512 0 1509 2 0 2 2 0 8 1 lockfspl 48 477 0 474 1 0 1 1 0 8 0 sessionpl 144 50 0 40 1 0 1 1 0 8 0 pgrppl 48 90 0 72 1 0 1 1 0 8 0 ucredpl 104 4862 0 4850 1 0 1 1 0 8 0 zombiepl 144 2641 0 2641 2 1 1 1 0 8 1 processpl 1168 2691 0 2641 7 1 6 6 0 8 2 procpl 664 6016 0 5960 8 0 8 8 0 8 2 sosppl 168 13 0 13 2 1 1 1 0 8 1 sockpl 552 6131 0 6086 36 22 14 17 0 8 7 mcl64k 65536 149 0 149 3 2 1 1 0 8 1 mcl16k 16384 3 0 3 1 0 1 1 0 8 1 mcl12k 12288 1 0 1 1 0 1 1 0 8 1 mcl9k 9216 2 0 2 1 0 1 1 0 8 1 mcl8k 8192 99 0 99 2 1 1 1 0 8 1 mcl4k 4096 5458 0 5406 15 7 8 14 0 8 1 mcl2k2 2112 2 0 2 1 0 1 1 0 8 1 mcl2k 2048 4220 0 4209 6 2 4 4 0 8 2 mtagpl 96 78 0 71 2 0 2 2 0 8 1 mbufpl 256 32980 0 32848 148 124 24 93 0 8 8 bufpl 280 11102 0 4874 446 0 446 446 0 8 0 anonpl 24 350502 0 340228 106 18 88 88 0 187 11 amapchunkpl 152 76194 0 75629 46 8 38 38 0 158 8 amappl16 200 5909 0 5580 53 22 31 31 0 8 6 amappl15 192 4 0 3 1 0 1 1 0 8 0 amappl14 184 158 0 146 1 0 1 1 0 8 0 amappl13 176 9 0 9 2 1 1 1 0 8 1 amappl12 168 3318 0 3289 3 1 2 3 0 8 0 amappl11 160 44 0 34 1 0 1 1 0 8 0 amappl10 152 1 0 1 1 1 0 1 0 8 0 amappl9 144 280 0 280 1 1 0 1 0 8 0 amappl8 136 23 0 19 1 0 1 1 0 8 0 amappl7 128 135 0 123 1 0 1 1 0 8 0 amappl6 120 228 0 222 1 0 1 1 0 8 0 amappl5 112 128 0 121 1 0 1 1 0 8 0 amappl4 104 350 0 332 1 0 1 1 0 8 0 amappl3 96 15951 0 15852 5 1 4 4 0 8 0 amappl2 88 881 0 810 2 0 2 2 0 8 0 amappl1 80 21504 0 20790 18 1 17 17 0 8 0 amappl 88 20991 0 20831 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma2048 2048 2 0 2 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma512 512 2 0 2 1 0 1 1 0 8 1 dma256 256 7 0 7 2 1 1 1 0 8 1 dma128 128 257 0 257 2 1 1 1 0 8 1 dma64 64 7 0 7 2 1 1 1 0 8 1 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 14 0 4 1 0 1 1 0 8 0 uaddrrnd 24 2639 0 2610 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2639 0 2610 1 0 1 1 0 8 0 vmmpekpl 168 21688 0 21648 3 0 3 3 0 8 0 vmmpepl 168 171124 0 168765 126 5 121 121 0 357 3 vmsppl 368 2638 0 2610 4 1 3 4 0 8 0 rwobjpl 40 47989 0 40701 77 0 77 77 0 8 0 pdppl 4096 5284 0 5220 136 66 70 80 0 8 6 pvpl 32 1100079 0 1083379 202 27 175 175 0 265 17 pmappl 216 2638 0 2610 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 596 0 236 13 0 13 13 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace copyout() at copyout+0x57 syscall(ffff80003c979930) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c979930) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf7c90f60ba0, count: -3 ddb> machine ddbcpu 1 No such command ddb> trace copyout() at copyout+0x57 syscall(ffff80003c979930) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c979930) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xf7c90f60ba0, count: -3