uvm_fault(0xfffffd800b027988, 0x4b80, 0, 2) -> e kernel: page fault trap, code=2 Stopped at copyout+0x57: repe movsq (%rsi),%es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND *374718 7610 0 0 0x4000000 0 syz-executor copyout() at copyout+0x57 syscall(ffff80002a3a5b10) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80002a3a5b10) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9f0a4f204f0, count: 12 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xfffffd800b027988, 0x4b80, 0, 2) -> e ddb{0}> trace copyout() at copyout+0x57 syscall(ffff80002a3a5b10) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80002a3a5b10) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9f0a4f204f0, count: -3 ddb{0}> show registers rdi 0x4b80 __ALIGN_SIZE+0x3b80 rsi 0xffff80002a3a5810 rbp 0xffff80002a3a5a30 rbx 0x4000a79e rdx 0xffff80002a3a0000 rcx 0x4 rax 0x20 r8 0x7f7fffffc000 r9 0 r10 0xf33bfeaaefce58b3 r11 0xffffffff81fe8300 copy_fault r12 0x3 r13 0x16 r14 0xffff80002a3a5810 r15 0xffff80002a3a5b10 rip 0xffffffff81fe8227 copyout+0x57 cs 0x8 rflags 0x50202 acpi_pdirpa+0x3c073 rsp 0xffff80002a3a5780 ss 0x10 copyout+0x57: repe movsq (%rsi),%es:(%rdi) ddb{0}> show proc PROC (syz-executor) tid=374718 pid=7610 tcnt=4 stat=onproc flags process=0 proc=4000000 runpri=86, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80003380bca8,0xffff800032ffe048 process=0xffff80002a2a6bf0 user=0xffff80002a3a0000, vmspace=0xfffffd800b027988 estcpu=36, cpticks=22, pctcpu=0.0, user=0, sys=21, intr=1 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 11297 65599 10587 0 2 0 syz-executor 11297 228077 10587 0 3 0x4000080 ttyretype syz-executor 7610 483251 25138 0 2 0xc80 syz-executor * 7610 374718 25138 0 7 0x4000000 syz-executor 7610 74312 25138 0 3 0x4000080 fsleep syz-executor 7610 215508 25138 0 3 0x4000080 fsleep syz-executor 80801 25972 56003 0 2 0 syz-executor 80801 392176 56003 0 3 0x4000080 piperd syz-executor 80801 94989 56003 0 3 0x4000080 fsleep syz-executor 19444 515144 52643 0 2 0xc90 syz-executor 19444 443913 52643 0 3 0x4000090 sbwait syz-executor 55873 38115 9319 0 3 0x80 nanoslp syz-executor 55873 158577 9319 0 3 0x4000080 lockf syz-executor 55873 223328 9319 0 3 0x4000080 fsleep syz-executor 35672 487105 1 0 3 0x80 nanoslp init 16527 305514 0 0 3 0x14200 acct acct 10587 519634 35362 0 2 0xc82 syz-executor 52643 228990 35362 0 3 0x82 nanoslp syz-executor 85956 442793 35362 0 2 0x2 syz-executor 9319 208885 35362 0 3 0x82 nanoslp syz-executor 35711 294326 0 0 3 0x14200 bored sosplice 56003 460242 35362 0 3 0x82 nanoslp syz-executor 62426 286724 35362 0 2 0x2 syz-executor 25138 303319 35362 0 2 0xc82 syz-executor 1965 58576 35362 0 3 0x82 nanoslp syz-executor 35362 229671 77175 0 3 0x82 kqread syz-executor 77175 419390 39394 0 3 0x10008a sigsusp ksh 39394 49446 39153 0 3 0x98 kqread sshd-session 39153 405263 91857 0 3 0x92 kqread sshd-session 91857 404910 1 0 3 0x88 kqread sshd 19626 73296 18044 74 3 0x1100092 bpf pflogd 18044 394197 1 0 3 0x80 sbwait pflogd 39920 31967 31659 73 3 0x1100090 kqread syslogd 31659 223331 1 0 3 0x100082 sbwait syslogd 64274 245701 1 0 3 0x100080 kqread resolvd 33349 14099 82101 77 3 0x100092 kqread dhcpleased 96803 506036 82101 77 3 0x100092 kqread dhcpleased 82101 68377 1 0 3 0x80 kqread dhcpleased 42801 112325 0 0 3 0x14200 bored smr 22874 125259 0 0 2 0x14200 zerothread 64435 373412 0 0 3 0x14200 aiodoned aiodoned 19637 416405 0 0 3 0x14200 syncer update 35766 376855 0 0 3 0x14200 cleaner cleaner 3573 513491 0 0 3 0x14200 reaper reaper 77557 36112 0 0 3 0x14200 pgdaemon pagedaemon 76842 391242 0 0 3 0x14200 bored viomb 33283 152045 0 0 3 0x40014200 acpi0 acpi0 83623 401064 0 0 7 0x40014200 idle1 80372 392523 0 0 3 0x14200 bored softnet7 90345 9920 0 0 3 0x14200 bored softnet6 55866 243937 0 0 3 0x14200 bored softnet5 46409 87255 0 0 3 0x14200 bored softnet4 96806 58871 0 0 3 0x14200 bored softnet3 22175 387061 0 0 3 0x14200 bored softnet2 50979 139010 0 0 3 0x14200 bored softnet1 42092 429678 0 0 3 0x14200 bored softnet0 62247 260770 0 0 3 0x14200 bored systqmp 23000 252983 0 0 3 0x14200 bored systq 65077 434632 0 0 3 0x14200 tmoslp softclockmp 52853 184557 0 0 2 0x40014200 softclock 28647 169646 0 0 3 0x40014200 idle0 1 518850 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb{0}> show all locks Process 85956 (syz-executor) thread 0xffff800032ffe800 (442793) Process 62426 (syz-executor) thread 0xffff8000ffff2a70 (286724) ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10261 11063K 13696K 166960K 14037 0 pcb 19 18K 34K 166960K 1023 0 rtable 210 13K 13K 166960K 755 0 pf 41 18K 81K 166960K 340 0 ifaddr 38 6K 7K 166960K 191 0 ifgroup 66 2K 3K 166960K 341 0 sysctl 4 1K 9K 166960K 22 0 counters 72 37K 38K 166960K 398 0 ioctlops 0 0K 4K 166960K 2030 0 iov 1 12K 28K 166960K 302 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1646 103K 104K 166960K 3666 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 15 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 170 0 dirhash 12 2K 2K 166960K 48 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 57K 236K 166960K 2960 0 sigio 0 0K 0K 166960K 121 0 proc 63 99K 164K 166960K 1078 0 subproc 72 4K 4K 166960K 112 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 490 0 in_multi 63 4K 7K 166960K 270 0 ether_multi 1 0K 0K 166960K 25 0 mrt 1 0K 0K 166960K 27 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 277 1235K 1235K 166960K 277 0 exec 0 0K 1K 166960K 1474 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 3 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 237 156K 177K 166960K 28837 0 UVM aobj 131 8K 8K 166960K 139 0 pinsyscall 40 80K 104K 166960K 4235 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 185 0 NDP 14 0K 2K 166960K 140 0 temp 82 8648K 8776K 166960K 131345 0 kqueue 15 24K 32K 166960K 599 0 SYN cache 2 8K 16K 166960K 3 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 26 0 0 1 0 1 1 0 8 0 rtpcb 120 289 0 285 1 0 1 1 0 8 0 rtentry 176 215 0 143 5 0 5 5 0 8 0 unpcb 144 2838 0 2821 22 18 4 6 0 8 3 syncache 336 19 0 19 7 6 1 1 0 8 1 tcpqe 32 4 0 4 2 1 1 1 0 8 1 tcpcb 736 1385 0 1377 32 28 4 13 0 8 3 arp 128 24 0 12 1 0 1 1 0 8 0 ipq 40 2 0 2 2 2 0 1 0 8 0 ipqe 40 22 0 22 2 2 0 1 0 8 0 inpcb 328 4404 0 4383 39 26 13 13 0 8 9 nd6 144 33 0 21 1 0 1 1 0 8 0 pkpcb 40 26 0 26 5 4 1 1 0 8 1 kcovpl 48 12 0 4 1 0 1 1 0 8 0 mppekey 1024 1 0 1 1 1 0 1 0 8 0 ppxss 1192 138 0 138 3 2 1 1 0 8 1 pppxif 1504 15 0 15 6 5 1 1 0 8 1 pfstscr 40 7 0 7 3 2 1 1 0 8 1 pffrag 232 54 0 46 2 1 1 1 0 482 0 pffrnode 88 52 0 45 2 1 1 1 0 8 0 pffrent 40 95 0 86 2 1 1 1 0 8 0 pfosfp 40 1428 0 1428 5 5 0 5 0 8 0 pfosfpen 112 1428 0 1428 21 21 0 21 0 8 0 pfrktable 1344 3 0 3 3 3 0 1 0 8 0 pfanchor 1288 4 0 2 2 1 1 1 0 8 0 pftag 88 6 0 1 1 0 1 1 0 8 0 pfstitem 24 226 0 163 1 0 1 1 0 8 0 pfstkey 128 238 0 174 3 0 3 3 0 8 0 pfstate 384 231 0 169 13 5 8 13 0 8 0 pfrule 1344 76 0 70 2 1 1 2 0 8 0 rttmr 136 8 0 8 6 5 1 1 0 8 1 art_heap8 4096 6 0 1 6 1 5 6 0 8 0 art_heap4 256 1021 0 701 33 11 22 28 0 8 2 art_table 40 1027 0 702 5 0 5 5 0 8 0 art_node 32 210 0 150 1 0 1 1 0 8 0 sysvmsgpl 40 10 0 5 2 1 1 1 0 8 0 semupl 112 2 0 2 2 2 0 1 0 8 0 semapl 112 163 0 153 1 0 1 1 0 8 0 shmpl 112 136 0 8 4 0 4 4 0 8 0 dirhash 1024 41 0 24 3 0 3 3 0 8 0 dino2pl 256 7141 0 5630 96 1 95 96 0 8 0 ffsino 296 7141 0 5630 118 1 117 118 0 8 0 nchpl 144 11209 0 9509 64 0 64 64 0 8 0 rtmask 32 31 0 31 5 4 1 1 0 8 1 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 42052 0 42050 4 3 1 2 0 8 0 percpumem 16 214 0 163 1 0 1 1 0 8 0 kstatmem 264 238 0 204 6 3 3 3 0 8 0 acpiwqpl 32 2 0 2 1 0 1 1 1 8 1 scsiplug 72 14 0 14 8 8 0 1 0 8 0 scxspl 216 64231 0 64231 16 15 1 8 1 8 1 plimitpl 152 819 0 802 1 0 1 1 0 8 0 sigapl 424 3283 0 3229 9 2 7 9 0 8 0 knotepl 120 860 0 0 24 0 24 24 0 8 0 kqueuepl 224 1367 0 1290 18 13 5 5 0 8 0 pipepl 344 598 0 570 9 6 3 9 0 8 0 fdescpl 528 3236 0 3206 3 0 3 3 0 8 0 filepl 160 25186 0 24885 39 21 18 19 0 8 2 lockfpl 104 1341 0 1337 3 2 1 2 0 8 0 lockfspl 48 420 0 417 1 0 1 1 0 8 0 sessionpl 144 43 0 35 1 0 1 1 0 8 0 pgrppl 48 108 0 92 1 0 1 1 0 8 0 ucredpl 104 3443 0 3428 1 0 1 1 0 8 0 zombiepl 144 3230 0 3229 3 2 1 1 0 8 0 processpl 1248 3283 0 3229 6 1 5 6 0 8 0 procpl 664 7782 0 7719 11 4 7 9 0 8 0 sosppl 168 25 0 25 5 4 1 1 0 8 1 sockpl 752 7703 0 7660 74 56 18 19 0 8 12 mcl64k 65536 18 0 0 3 0 3 3 0 8 0 mcl16k 16384 2 0 0 1 0 1 1 0 8 0 mcl12k 12288 3 0 0 1 0 1 1 0 8 0 mcl9k 9216 1 0 0 1 0 1 1 0 8 0 mcl8k 8192 3 0 0 1 0 1 1 0 8 0 mcl4k 4096 122 0 0 15 0 15 15 0 8 0 mcl2k 2048 46 0 0 5 0 5 5 0 8 0 mtagpl 96 11 0 0 1 0 1 1 0 8 0 mbufpl 256 1218 0 0 72 0 72 72 0 8 0 bufpl 280 26135 0 19992 440 0 440 440 0 8 0 anonpl 32 13079 0 0 105 0 105 105 0 246 0 amapchunkpl 152 110151 0 109664 65 38 27 37 0 158 4 amappl16 200 10587 0 10546 94 77 17 32 0 8 8 amappl15 192 7 0 6 2 1 1 1 0 8 0 amappl14 184 148 0 137 1 0 1 1 0 8 0 amappl13 176 10 0 10 3 2 1 1 0 8 1 amappl12 168 3976 0 3947 3 1 2 2 0 8 0 amappl11 160 55 0 41 1 0 1 1 0 8 0 amappl10 152 4 0 4 2 2 0 1 0 8 0 amappl9 144 252 0 252 1 1 0 1 0 8 0 amappl8 136 19 0 16 1 0 1 1 0 8 0 amappl7 128 136 0 124 1 0 1 1 0 8 0 amappl6 120 285 0 281 1 0 1 1 0 8 0 amappl5 112 150 0 139 1 0 1 1 0 8 0 amappl4 104 377 0 358 1 0 1 1 0 8 0 amappl3 96 20068 0 19958 6 2 4 4 0 8 0 amappl2 88 828 0 762 2 0 2 2 0 8 0 amappl1 80 22426 0 21857 18 3 15 15 0 8 0 amappl 88 27448 0 27281 5 0 5 5 0 92 0 dma65536 65536 1 0 1 1 1 0 1 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma2048 2048 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma512 512 1 0 1 1 0 1 1 0 8 1 dma256 256 10 0 10 4 3 1 1 0 8 1 dma128 128 258 0 258 5 5 0 1 0 8 0 dma64 64 9 0 9 4 4 0 1 0 8 0 dma32 32 8 0 8 2 2 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 138 0 8 3 0 3 3 0 8 0 uaddrrnd 24 3236 0 3206 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 3236 0 3206 1 0 1 1 0 8 0 vmmpekpl 168 26179 0 26119 3 0 3 3 0 8 0 vmmpepl 168 206601 0 204640 148 36 112 117 0 357 9 vmsppl 488 3235 0 3206 6 1 5 5 0 8 0 rwobjpl 80 58678 0 51710 159 6 153 153 0 8 3 pdppl 4096 6479 0 6412 139 68 71 85 0 8 4 pvpl 32 19552 0 0 158 0 158 158 0 265 0 pmappl 256 3235 0 3206 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 430 0 124 9 0 9 9 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace copyout() at copyout+0x57 syscall(ffff80002a3a5b10) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80002a3a5b10) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x9f0a4f204f0, count: -3 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x457 sys/dev/acpi/acpicpu_x86.c:1224 sched_idle(ffff8000299edff0) at sched_idle+0x391 sys/kern/kern_sched.c:191 end trace frame: 0x0, count: 10 ddb{1}> trace x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x457 sys/dev/acpi/acpicpu_x86.c:1224 sched_idle(ffff8000299edff0) at sched_idle+0x391 sys/kern/kern_sched.c:191 end trace frame: 0x0, count: -5