uvm_fault(0xfffffd806ba3ab90, 0x0, 0, 1) -> e kernel: page fault trap, code=0 Stopped at dt_ioctl_record_stop+0x108: movq 0(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND dt_ioctl_record_stop(ffff80000149ad00) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:586 dtclose(21e5f,1,2000,ffff80002a7c2d38) at dtclose+0xd9 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,1,2000,ffff80002a7c2d38) at dtclose+0xd9 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003ca0b3f0) at spec_close+0x466 sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd805e8d7a28,1,fffffd8007bfb478,ffff80002a7c2d38) at VOP_CLOSE+0x129 sys/kern/vfs_vops.c:156 vn_closefile(fffffd80717ce618,ffff80002a7c2d38) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd80717ce618,ffff80002a7c2d38) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd80717ce618,ffff80002a7c2d38) at fdrop+0x121 sys/kern/kern_descrip.c:1280 closef(fffffd80717ce618,ffff80002a7c2d38) at closef+0x190 sys/kern/kern_descrip.c:1264 fdfree(ffff80002a7c2d38) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80002a7c2d38,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80002a7c2d38,ffff80003ca0b750,ffff80003ca0b6a0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ca0b750) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca0b750) at syscall+0x962 sys/arch/amd64/amd64/trap.c:746 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x75ff700d92b0, count: 3 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806ba3ab90, 0x0, 0, 1) -> e ddb> trace dt_ioctl_record_stop(ffff80000149ad00) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:586 dtclose(21e5f,1,2000,ffff80002a7c2d38) at dtclose+0xd9 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,1,2000,ffff80002a7c2d38) at dtclose+0xd9 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003ca0b3f0) at spec_close+0x466 sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd805e8d7a28,1,fffffd8007bfb478,ffff80002a7c2d38) at VOP_CLOSE+0x129 sys/kern/vfs_vops.c:156 vn_closefile(fffffd80717ce618,ffff80002a7c2d38) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd80717ce618,ffff80002a7c2d38) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd80717ce618,ffff80002a7c2d38) at fdrop+0x121 sys/kern/kern_descrip.c:1280 closef(fffffd80717ce618,ffff80002a7c2d38) at closef+0x190 sys/kern/kern_descrip.c:1264 fdfree(ffff80002a7c2d38) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80002a7c2d38,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80002a7c2d38,ffff80003ca0b750,ffff80003ca0b6a0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ca0b750) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca0b750) at syscall+0x962 sys/arch/amd64/amd64/trap.c:746 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x75ff700d92b0, count: -12 ddb> show registers rdi 0 rsi 0 rbp 0xffff80003ca0b320 rbx 0x1 rdx 0 rcx 0xffff80002a7c2d38 rax 0xffff80002a7c2d38 r8 0xffffffffffffffff r9 0 r10 0x71b79be62f129884 r11 0x2d04928901deb3b8 r12 0 r13 0 r14 0 r15 0xffff800001499c00 rip 0xffffffff82a428b8 dt_ioctl_record_stop+0x108 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003ca0b2f0 ss 0x10 dt_ioctl_record_stop+0x108: movq 0(%r14),%r14 ddb> show proc PROC (syz-executor) tid=301369 pid=40898 tcnt=0 stat=onproc flags process=1008 proc=2000 runpri=32, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff80002a7c2d38 scnt=-1 ecnt=1 forw=0xffffffffffffffff, list=0xffff80002a81e548,0xffff80002a7c3510 process=0xffff80003a9616a8 user=0xffff80003ca06000, vmspace=0xfffffd806ba3ab90 estcpu=16, cpticks=2, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 39756 509232 44113 0 2 0 syz-executor 39756 472854 44113 0 3 0x4000080 fsleep syz-executor 43993 93550 19812 0 2 0 syz-executor 43993 231816 19812 0 3 0x4000080 fsleep syz-executor 74672 450360 61480 0 3 0x80 nanoslp syz-executor 74672 220013 61480 0 3 0x4000080 kqpoll syz-executor 74672 130649 61480 0 3 0x4000080 fsleep syz-executor 88742 495521 0 0 3 0x14200 bored sosplice 39820 457697 87550 0 2 0 syz-executor 39820 170807 87550 0 3 0x4000080 sbwait syz-executor 39820 375886 87550 0 3 0x4000000 inode syz-executor 39820 401443 87550 0 3 0x4000000 inode syz-executor 53606 512759 96786 0 3 0x3000 suspend syz-executor 53606 345081 96786 0 2 0x4081000 syz-executor 13469 93812 13379 0 2 0 syz-executor 13469 149119 13379 0 3 0x4000080 fsleep syz-executor 13469 504755 13379 0 3 0x4000080 fsleep syz-executor 61480 204248 67366 0 3 0x82 nanoslp syz-executor 44113 207263 67366 0 3 0x82 nanoslp syz-executor 67789 44367 67366 0 2 0x2 syz-executor 87550 43690 67366 0 3 0x82 nanoslp syz-executor 96786 30611 67366 0 3 0x82 nanoslp syz-executor 19812 141398 67366 0 3 0x82 nanoslp syz-executor 13379 285129 67366 0 3 0x82 nanoslp syz-executor 56197 402478 67366 0 2 0x2 syz-executor 67366 521194 44698 0 3 0x82 kqread syz-executor 44698 319567 90235 0 3 0x10008a sigsusp ksh 90235 316156 73497 0 3 0x98 kqread sshd-session 73497 423032 57892 0 3 0x92 kqread sshd-session 3764 55519 1 0 3 0x100083 ttyin getty 57892 465905 1 0 3 0x88 kqread sshd 73703 150350 20093 73 3 0x1100090 kqread syslogd 20093 180102 1 0 3 0x100082 sbwait syslogd 70316 506008 1 0 3 0x100080 kqread resolvd 25863 290337 36786 77 3 0x100092 kqread dhcpleased 62733 151915 36786 77 3 0x100092 kqread dhcpleased 36786 55861 1 0 3 0x80 kqread dhcpleased 10563 320908 0 0 3 0x14200 bored smr 26043 134532 0 0 2 0x14200 zerothread 4550 18481 0 0 3 0x14200 aiodoned aiodoned 1106 120764 0 0 3 0x14200 syncer update 24934 364932 0 0 3 0x14200 cleaner cleaner 98919 306196 0 0 3 0x14200 reaper reaper 16926 72055 0 0 3 0x14200 pgdaemon pagedaemon 87995 473367 0 0 3 0x14200 bored viomb 28896 293604 0 0 3 0x40014200 acpi0 acpi0 63242 15264 0 0 3 0x14200 bored softnet7 5040 357003 0 0 3 0x14200 bored softnet6 31298 130782 0 0 3 0x14200 bored softnet5 12315 287386 0 0 3 0x14200 bored softnet4 21532 239030 0 0 3 0x14200 bored softnet3 78197 257438 0 0 3 0x14200 bored softnet2 55276 283991 0 0 3 0x14200 bored softnet1 18921 152033 0 0 3 0x14200 bored softnet0 85017 1463 0 0 3 0x14200 bored systqmp 82641 179309 0 0 3 0x14200 bored systq 30539 359269 0 0 3 0x40014200 tmoslp softclock 62840 307737 0 0 3 0x40014200 idle0 1 494803 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10199 11115K 11235K 166960K 11353 0 pcb 79 16K 16K 166960K 152 0 rtable 217 6K 7K 166960K 282 0 pf 30 12K 13K 166960K 35 0 ifaddr 42 7K 7K 166960K 46 0 ifgroup 50 2K 2K 166960K 55 0 sysctl 1 1K 9K 166960K 5 0 counters 32 17K 17K 166960K 34 0 ioctlops 0 0K 4K 166960K 44 0 iov 0 0K 12K 166960K 10 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1377 87K 87K 166960K 1462 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 3 5K 5K 166960K 3 0 VM map 2 1K 1K 166960K 2 0 sem 4 0K 0K 166960K 5 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 17 61K 97K 166960K 243 0 sigio 0 0K 0K 166960K 2 0 proc 60 59K 124K 166960K 481 0 subproc 72 4K 6K 166960K 105 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 20 0 in_multi 99 7K 7K 166960K 101 0 ether_multi 1 0K 0K 166960K 1 0 mrt 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 73 334K 334K 166960K 73 0 exec 0 0K 1K 166960K 391 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 221 159K 168K 166960K 3739 0 UVM aobj 4 2K 2K 166960K 4 0 pinsyscall 38 76K 96K 166960K 1275 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 5 0 NDP 11 0K 1K 166960K 28 0 temp 39 8635K 8699K 166960K 9359 0 kqueue 16 26K 28K 166960K 42 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 44 0 41 1 0 1 1 0 8 0 rtentry 136 98 0 2 4 0 4 4 0 8 0 unpcb 144 81 0 64 1 0 1 1 0 8 0 syncache 336 6 0 6 2 1 1 1 0 8 1 tcpqe 32 1 0 1 1 0 1 1 0 8 1 tcpcb 736 56 0 49 2 1 1 2 0 8 0 arp 88 10 0 0 1 0 1 1 0 8 0 inpcb 328 254 0 182 7 0 7 7 0 8 0 nd6 104 18 0 0 1 0 1 1 0 8 0 pkpcb 40 1 0 1 1 0 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 1 0 1 1 1 0 1 0 8 0 pppxif 1384 1 0 1 1 1 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 458 0 6 29 0 29 29 0 8 0 art_table 40 459 0 6 5 0 5 5 0 8 0 art_node 32 98 0 12 1 0 1 1 0 8 0 sysvmsgpl 40 2 0 2 1 0 1 1 0 8 1 semapl 112 3 0 1 1 0 1 1 0 8 0 shmpl 112 1 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1748 0 245 95 0 95 95 0 8 0 ffsino 256 1748 0 245 95 0 95 95 0 8 0 nchpl 144 2092 0 408 63 0 63 63 0 8 0 uvmvnodes 80 1901 0 0 39 0 39 39 0 8 0 vnodes 216 1901 0 0 106 0 106 106 0 8 0 namei 1024 6341 0 6340 2 1 1 2 0 8 0 kstatmem 264 24 0 2 2 0 2 2 0 8 0 scxspl 216 7763 0 7763 15 7 8 8 1 8 8 plimitpl 152 213 0 196 1 0 1 1 0 8 0 sigapl 424 548 0 498 8 0 8 8 0 8 2 knotepl 120 7310 0 7254 10 0 10 10 0 8 8 kqueuepl 184 54 0 42 1 0 1 1 0 8 0 pipepl 304 109 0 82 3 0 3 3 0 8 0 fdescpl 448 506 0 477 5 1 4 5 0 8 0 filepl 120 2079 0 1795 10 1 9 9 0 8 0 lockfpl 104 120 0 117 2 0 2 2 0 8 1 lockfspl 48 57 0 54 1 0 1 1 0 8 0 sessionpl 144 23 0 15 1 0 1 1 0 8 0 pgrppl 48 34 0 18 1 0 1 1 0 8 0 ucredpl 104 203 0 191 1 0 1 1 0 8 0 zombiepl 144 500 0 498 2 1 1 1 0 8 0 processpl 1152 548 0 498 6 0 6 6 0 8 2 procpl 664 726 0 666 9 1 8 8 0 8 2 sosppl 168 2 0 2 1 0 1 1 0 8 1 sockpl 552 387 0 295 7 0 7 7 0 8 0 mcl64k 65536 1 0 1 1 0 1 1 0 8 1 mcl8k 8192 4 0 4 1 1 0 1 0 8 0 mcl4k 4096 2588 0 2536 14 6 8 14 0 8 1 mcl2k 2048 296 0 293 1 0 1 1 0 8 0 mtagpl 96 4 0 4 1 1 0 1 0 8 0 mbufpl 256 4869 0 4704 12 0 12 12 0 8 1 bufpl 280 3194 0 117 220 0 220 220 0 8 0 anonpl 24 109249 0 106124 48 2 46 46 0 187 24 amapchunkpl 152 11181 0 10721 26 1 25 25 0 158 5 amappl16 200 2173 0 2149 17 6 11 14 0 8 8 amappl15 192 66 0 66 1 1 0 1 0 8 0 amappl14 184 110 0 100 1 0 1 1 0 8 0 amappl13 176 26 0 26 1 1 0 1 0 8 0 amappl12 168 1118 0 1089 3 1 2 3 0 8 0 amappl11 160 47 0 36 1 0 1 1 0 8 0 amappl10 152 2 0 2 1 1 0 1 0 8 0 amappl9 144 251 0 251 1 1 0 1 0 8 0 amappl8 136 24 0 23 1 0 1 1 0 8 0 amappl7 128 119 0 108 1 0 1 1 0 8 0 amappl6 120 170 0 167 1 0 1 1 0 8 0 amappl5 112 110 0 104 1 0 1 1 0 8 0 amappl4 104 276 0 261 1 0 1 1 0 8 0 amappl3 96 1927 0 1825 4 0 4 4 0 8 1 amappl2 88 632 0 576 2 0 2 2 0 8 0 amappl1 80 8748 0 8199 14 0 14 14 0 8 1 amappl 88 3075 0 2918 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 3 0 0 1 0 1 1 0 8 0 uaddrrnd 24 506 0 477 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 506 0 477 1 0 1 1 0 8 0 vmmpekpl 168 5745 0 5714 2 0 2 2 0 8 0 vmmpepl 168 39320 0 37494 99 0 99 99 0 357 11 vmsppl 368 505 0 477 4 1 3 4 0 8 0 rwobjpl 40 15649 0 12915 31 0 31 31 0 8 1 pdppl 4096 1018 0 954 102 34 68 82 0 8 4 pvpl 32 252330 0 243369 127 8 119 119 0 265 41 pmappl 216 505 0 477 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 372 0 48 10 0 10 10 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace dt_ioctl_record_stop(ffff80000149ad00) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:586 dtclose(21e5f,1,2000,ffff80002a7c2d38) at dtclose+0xd9 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,1,2000,ffff80002a7c2d38) at dtclose+0xd9 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003ca0b3f0) at spec_close+0x466 sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd805e8d7a28,1,fffffd8007bfb478,ffff80002a7c2d38) at VOP_CLOSE+0x129 sys/kern/vfs_vops.c:156 vn_closefile(fffffd80717ce618,ffff80002a7c2d38) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd80717ce618,ffff80002a7c2d38) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd80717ce618,ffff80002a7c2d38) at fdrop+0x121 sys/kern/kern_descrip.c:1280 closef(fffffd80717ce618,ffff80002a7c2d38) at closef+0x190 sys/kern/kern_descrip.c:1264 fdfree(ffff80002a7c2d38) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80002a7c2d38,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80002a7c2d38,ffff80003ca0b750,ffff80003ca0b6a0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ca0b750) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca0b750) at syscall+0x962 sys/arch/amd64/amd64/trap.c:746 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x75ff700d92b0, count: -12 ddb> machine ddbcpu 1 No such command ddb> trace dt_ioctl_record_stop(ffff80000149ad00) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:586 dtclose(21e5f,1,2000,ffff80002a7c2d38) at dtclose+0xd9 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,1,2000,ffff80002a7c2d38) at dtclose+0xd9 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003ca0b3f0) at spec_close+0x466 sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd805e8d7a28,1,fffffd8007bfb478,ffff80002a7c2d38) at VOP_CLOSE+0x129 sys/kern/vfs_vops.c:156 vn_closefile(fffffd80717ce618,ffff80002a7c2d38) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd80717ce618,ffff80002a7c2d38) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd80717ce618,ffff80002a7c2d38) at fdrop+0x121 sys/kern/kern_descrip.c:1280 closef(fffffd80717ce618,ffff80002a7c2d38) at closef+0x190 sys/kern/kern_descrip.c:1264 fdfree(ffff80002a7c2d38) at fdfree+0x115 sys/kern/kern_descrip.c:1195 exit1(ffff80002a7c2d38,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215 sys_exit(ffff80002a7c2d38,ffff80003ca0b750,ffff80003ca0b6a0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ca0b750) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca0b750) at syscall+0x962 sys/arch/amd64/amd64/trap.c:746 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x75ff700d92b0, count: -12