uvm_fault(0xffffffff82a74c48, 0xffff8000099cfab4, 0, 2) -> d kernel: page fault trap, code=0 Stopped at memset+0x45: repe stosb %es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND *509319 57547 0 0x2 0x1 0 syz-executor.0 memset() at memset+0x45 ffs_write(ffff8000217c6f20) at ffs_write+0x93c VOP_WRITE(fffffd80616c07f0,ffff8000217c6fd0,3,fffffd807f7d7af8) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000216eb500,fffffd80616c07f0,fffffd807f7d7af8,ffff8000217c70a8,ffff8000217c7070) at ktrwriteraw+0x13d sys/kern/kern_ktrace.c:666 ktrsyscall(ffff8000216eb500,b,20,ffff8000217c7160) at ktrsyscall+0x2e3 ktrwrite sys/kern/kern_ktrace.c:609 [inline] ktrsyscall(ffff8000216eb500,b,20,ffff8000217c7160) at ktrsyscall+0x2e3 sys/kern/kern_ktrace.c:185 syscall(ffff8000217c7230) at syscall+0x326 mi_syscall sys/sys/syscall_mi.h:75 [inline] syscall(ffff8000217c7230) at syscall+0x326 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffefc30, count: 8 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff82a74c48, 0xffff8000099cfab4, 0, 2) -> d ddb> trace memset() at memset+0x45 ffs_write(ffff8000217c6f20) at ffs_write+0x93c VOP_WRITE(fffffd80616c07f0,ffff8000217c6fd0,3,fffffd807f7d7af8) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000216eb500,fffffd80616c07f0,fffffd807f7d7af8,ffff8000217c70a8,ffff8000217c7070) at ktrwriteraw+0x13d sys/kern/kern_ktrace.c:666 ktrsyscall(ffff8000216eb500,b,20,ffff8000217c7160) at ktrsyscall+0x2e3 ktrwrite sys/kern/kern_ktrace.c:609 [inline] ktrsyscall(ffff8000216eb500,b,20,ffff8000217c7160) at ktrsyscall+0x2e3 sys/kern/kern_ktrace.c:185 syscall(ffff8000217c7230) at syscall+0x326 mi_syscall sys/sys/syscall_mi.h:75 [inline] syscall(ffff8000217c7230) at syscall+0x326 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffefc30, count: -7 ddb> show registers rdi 0xffff8000099cfab4 rsi 0 rbp 0xffff8000217c6e40 rbx 0x1 rdx 0x4 rcx 0x4 rax 0 r8 0x3548 __ALIGN_SIZE+0x2548 r9 0xffff8000217c6d98 r10 0x6cc8fb6d7a949573 r11 0xffff8000099cfab4 r12 0x44ab4 acpi_pdirpa+0x3091c r13 0xfffffd805fdedf20 r14 0x4000 __ALIGN_SIZE+0x3000 r15 0xfffffd805fdedf08 rip 0xffffffff81a29705 memset+0x45 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff8000217c6c48 ss 0x10 memset+0x45: repe stosb %es:(%rdi) ddb> show proc PROC (syz-executor.0) pid=509319 stat=onproc flags process=2 proc=1 pri=32, usrpri=86, nice=20 forw=0xffffffffffffffff, list=0xffff8000216ea2a0,0xffff8000216eba50 process=0xffff800021712fb8 user=0xffff8000217c2000, vmspace=0xfffffd807f015330 estcpu=36, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 34109 394042 20050 0 2 0 syz-executor.1 34109 97606 20050 0 2 0x4000000 syz-executor.1 5917 504047 23286 0 2 0 syz-executor.5 5917 95773 23286 0 3 0x4000080 fsleep syz-executor.5 18808 280612 88750 0 2 0x480 syz-executor.7 18808 84485 88750 0 3 0x4000080 fsleep syz-executor.7 96209 416004 57547 0 2 0 syz-executor.0 6909 394541 55449 0 2 0x2 syz-executor.2 82292 140805 0 0 3 0x14200 bored sosplice 11661 27800 55449 0 2 0x2 syz-executor.6 20050 185377 55449 0 2 0x482 syz-executor.1 69009 46854 55449 0 2 0x482 syz-executor.4 88750 371584 55449 0 2 0x482 syz-executor.7 23286 190055 55449 0 2 0x482 syz-executor.5 91206 197098 55449 0 2 0x482 syz-executor.3 *57547 509319 55449 0 7 0x3 syz-executor.0 55449 185692 8886 0 3 0x82 thrsleep syz-fuzzer 55449 252787 8886 0 3 0x4000082 thrsleep syz-fuzzer 55449 100444 8886 0 3 0x4000082 kqread syz-fuzzer 55449 442681 8886 0 3 0x4000082 thrsleep syz-fuzzer 55449 449854 8886 0 3 0x4000082 thrsleep syz-fuzzer 55449 414643 8886 0 3 0x4000082 thrsleep syz-fuzzer 55449 200708 8886 0 3 0x4000082 thrsleep syz-fuzzer 55449 89628 8886 0 3 0x4000082 thrsleep syz-fuzzer 55449 222258 8886 0 3 0x4000082 thrsleep syz-fuzzer 8886 186022 36898 0 3 0x10008a sigsusp ksh 36898 1054 17243 0 3 0x9a kqread sshd 52982 467166 1 0 3 0x100083 ttyin getty 17243 4225 1 0 3 0x88 kqread sshd 30813 94169 59108 73 3 0x1100090 kqread syslogd 59108 364988 1 0 3 0x100082 netio syslogd 80110 212649 1 0 3 0x100080 kqread resolvd 98474 48427 15174 77 3 0x100092 kqread dhcpleased 32514 449088 15174 77 3 0x100092 kqread dhcpleased 15174 249901 1 0 3 0x80 kqread dhcpleased 34121 141573 0 0 3 0x14200 bored smr 74858 512677 0 0 2 0x14200 zerothread 38229 353342 0 0 3 0x14200 aiodoned aiodoned 8004 389489 0 0 3 0x14200 syncer update 36084 392331 0 0 3 0x14200 cleaner cleaner 1598 82634 0 0 3 0x14200 reaper reaper 5156 320993 0 0 3 0x14200 pgdaemon pagedaemon 79532 80689 0 0 3 0x14200 bored viomb 35128 8665 0 0 3 0x40014200 acpi0 acpi0 56243 463234 0 0 3 0x14200 bored softnet 31819 200502 0 0 3 0x14200 bored softnet 91534 11253 0 0 3 0x14200 bored softnet 68933 395480 0 0 3 0x14200 bored softnet 62897 381977 0 0 3 0x14200 bored systqmp 62979 343184 0 0 3 0x14200 bored systq 87025 339292 0 0 3 0x40014200 bored softclock 75673 522862 0 0 3 0x40014200 idle0 1 303171 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10173 6411K 6475K 78643K 16214 0 pcb 15 10K 12K 78643K 2258 0 rtable 234 6K 6K 78643K 500 0 ifaddr 81 17K 17K 78643K 118 0 counters 27 17K 17K 78643K 32 0 ioctlops 0 0K 2K 78643K 1468 0 iov 0 0K 16K 78643K 1819 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1400 87K 87K 78643K 8512 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 13K 78643K 406 0 VM map 2 0K 0K 78643K 2 0 sem 12 0K 0K 78643K 735 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 14 49K 89K 78643K 33203 0 sigio 0 0K 0K 78643K 8 0 proc 56 58K 83K 78643K 591 0 subproc 104 6K 6K 78643K 169 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 in_multi 99 6K 6K 78643K 154 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 85 387K 387K 78643K 85 0 exec 0 0K 2K 78643K 738 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 205 75K 76K 78643K 160202 0 UVM aobj 131 4K 4K 78643K 131 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 NDP 11 0K 1K 78643K 42 0 temp 124 4710K 4782K 78643K 424393 0 kqueue 12 18K 23K 78643K 627 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 46 0 43 1 0 1 1 0 8 0 rtentry 112 166 0 56 4 0 4 4 0 8 0 unpcb 144 25061 0 25046 108 107 1 10 0 8 0 syncache 296 4 0 4 1 1 0 1 0 8 0 tcpcb 736 163 0 159 12 11 1 10 0 8 0 arp 88 28 0 10 1 0 1 1 0 8 0 inpcb 320 2824 0 2815 51 49 2 7 0 8 1 nd6 48 39 0 15 1 0 1 1 0 8 0 kcovpl 48 13 0 5 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 674 0 220 29 0 29 29 0 8 0 art_table 32 675 0 220 4 0 4 4 0 8 0 art_node 16 165 0 65 1 0 1 1 0 8 0 semupl 112 20 0 20 1 1 0 1 0 8 0 semapl 112 733 0 723 1 0 1 1 0 8 0 shmpl 112 128 0 0 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 44885 0 43086 113 0 113 113 0 8 0 ffsino 240 44885 0 43086 106 0 106 106 0 8 0 nchpl 144 93879 0 92242 63 0 63 63 0 8 0 uvmvnodes 80 6549 0 0 134 0 134 134 0 8 0 vnodes 216 6549 0 0 364 0 364 364 0 8 0 namei 1024 268113 0 268111 3 2 1 2 0 8 0 kstatmem 264 32 0 10 2 0 2 2 0 8 0 scxspl 216 230565 0 230565 22 21 1 8 0 8 1 plimitpl 152 27 0 13 1 0 1 1 0 8 0 sigapl 424 33482 0 33438 6 0 6 6 0 8 0 futexpl 64 213769 0 213767 1 0 1 1 0 8 0 knotepl 120 252127 0 252047 4 0 4 4 0 8 0 kqueuepl 184 4656 0 4648 39 38 1 7 0 8 0 pipepl 288 145 0 117 4 1 3 3 0 8 0 fdescpl 432 33465 0 33440 4 0 4 4 0 8 0 filepl 120 153832 0 153588 153 145 8 15 0 8 0 lockfpl 104 1274 0 1272 3 2 1 2 0 8 0 lockfspl 48 523 0 521 1 0 1 1 0 8 0 sessionpl 144 28 0 12 1 0 1 1 0 8 0 pgrppl 48 317 0 301 1 0 1 1 0 8 0 ucredpl 104 37762 0 37749 1 0 1 1 0 8 0 zombiepl 144 33440 0 33438 2 1 1 1 0 8 0 processpl 1000 33482 0 33438 8 2 6 7 0 8 0 procpl 672 70991 0 70936 43 37 6 7 0 8 0 sosppl 168 1 0 1 1 1 0 1 0 8 0 sockpl 456 27935 0 27908 511 506 5 34 0 8 1 mcl64k 65536 625 0 625 44 43 1 1 0 8 1 mcl16k 16384 117 0 117 25 25 0 1 0 8 0 mcl12k 12288 702 0 702 52 52 0 1 0 8 0 mcl9k 9216 518 0 518 39 39 0 1 0 8 0 mcl8k 8192 1062 0 1062 62 62 0 1 0 8 0 mcl4k 4096 2844 0 2844 57 56 1 1 0 8 1 mcl2k2 2112 127 0 127 37 37 0 1 0 8 0 mcl2k 2048 54915 0 54861 24 16 8 9 0 8 0 mtagpl 96 4 0 4 1 1 0 1 0 8 0 mbufpl 256 248723 0 248532 69 54 15 20 0 8 0 bufpl 288 43535 0 36979 469 0 469 469 0 8 0 anonpl 24 5291044 0 5284285 78 30 48 51 0 188 0 amapchunkpl 152 463358 0 462988 74 56 18 18 0 158 0 amappl16 200 67779 0 67589 20 9 11 15 0 8 0 amappl15 192 4009 0 4007 1 0 1 1 0 8 0 amappl14 184 8095 0 8089 1 0 1 1 0 8 0 amappl13 176 7088 0 7084 1 0 1 1 0 8 0 amappl12 168 8985 0 8977 2 1 1 1 0 8 0 amappl11 160 731 0 712 1 0 1 1 0 8 0 amappl10 152 606 0 600 1 0 1 1 0 8 0 amappl9 144 4198 0 4195 1 0 1 1 0 8 0 amappl8 136 4943 0 4872 4 1 3 3 0 8 0 amappl7 128 4276 0 4266 1 0 1 1 0 8 0 amappl6 120 3928 0 3912 2 1 1 2 0 8 0 amappl5 112 17804 0 17795 1 0 1 1 0 8 0 amappl4 104 5730 0 5697 2 1 1 2 0 8 0 amappl3 96 102009 0 101964 2 0 2 2 0 8 0 amappl2 88 50798 0 50728 3 1 2 3 0 8 0 amappl1 80 752843 0 752269 25 11 14 19 0 8 0 amappl 88 159615 0 159505 5 1 4 4 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 130 0 0 3 0 3 3 0 8 0 uaddrrnd 24 33465 0 33440 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 33465 0 33440 1 0 1 1 0 8 0 vmmpekpl 168 151920 0 151879 3 0 3 3 0 8 0 vmmpepl 168 3074969 0 3073038 385 286 99 103 0 357 5 vmsppl 272 33464 0 33440 4 2 2 3 0 8 0 rwobjpl 24 687567 0 679786 50 2 48 48 0 8 0 pdppl 4096 66936 0 66880 1530 1466 64 76 0 8 8 pvpl 32 10426843 0 10415927 392 293 99 238 0 265 0 pmappl 216 33464 0 33440 2 0 2 2 0 8 0 extentpl 40 58 0 38 1 0 1 1 0 8 0 phpool 112 2558 0 1740 24 0 24 24 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace memset() at memset+0x45 ffs_write(ffff8000217c6f20) at ffs_write+0x93c VOP_WRITE(fffffd80616c07f0,ffff8000217c6fd0,3,fffffd807f7d7af8) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000216eb500,fffffd80616c07f0,fffffd807f7d7af8,ffff8000217c70a8,ffff8000217c7070) at ktrwriteraw+0x13d sys/kern/kern_ktrace.c:666 ktrsyscall(ffff8000216eb500,b,20,ffff8000217c7160) at ktrsyscall+0x2e3 ktrwrite sys/kern/kern_ktrace.c:609 [inline] ktrsyscall(ffff8000216eb500,b,20,ffff8000217c7160) at ktrsyscall+0x2e3 sys/kern/kern_ktrace.c:185 syscall(ffff8000217c7230) at syscall+0x326 mi_syscall sys/sys/syscall_mi.h:75 [inline] syscall(ffff8000217c7230) at syscall+0x326 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffefc30, count: -7 ddb> machine ddbcpu 1 No such command ddb> trace memset() at memset+0x45 ffs_write(ffff8000217c6f20) at ffs_write+0x93c VOP_WRITE(fffffd80616c07f0,ffff8000217c6fd0,3,fffffd807f7d7af8) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000216eb500,fffffd80616c07f0,fffffd807f7d7af8,ffff8000217c70a8,ffff8000217c7070) at ktrwriteraw+0x13d sys/kern/kern_ktrace.c:666 ktrsyscall(ffff8000216eb500,b,20,ffff8000217c7160) at ktrsyscall+0x2e3 ktrwrite sys/kern/kern_ktrace.c:609 [inline] ktrsyscall(ffff8000216eb500,b,20,ffff8000217c7160) at ktrsyscall+0x2e3 sys/kern/kern_ktrace.c:185 syscall(ffff8000217c7230) at syscall+0x326 mi_syscall sys/sys/syscall_mi.h:75 [inline] syscall(ffff8000217c7230) at syscall+0x326 sys/arch/amd64/amd64/trap.c:585 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffefc30, count: -7