kernel: page fault trap, code=10 Stopped at 0 TID PID UID PRFLAGS PFLAGS CPU COMMAND *104799 10027 0 0 0 0 syz-executor.0 426180 80509 0 0 0 1 syz-executor.3 0(0,0,0,ffffffff82d7eff0,0,0) at 0 timeout_run(fffffd8072f67e78) at timeout_run+0xd0 sys/kern/kern_timeout.c:666 softclock_process_kclock_timeout(fffffd8072f67e78,0) at softclock_process_kclock_timeout+0x1d7 sys/kern/kern_timeout.c:696 softclock(0) at softclock+0x150 sys/kern/kern_timeout.c:749 softintr_dispatch(0) at softintr_dispatch+0xfb sys/arch/amd64/amd64/softintr.c:90 Xsoftclock() at Xsoftclock+0x27 end of kernel end trace frame: 0x7182d20265d0, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: attempt to execute user address 0x0 in supervisor mode ddb{0}> trace 0(0,0,0,ffffffff82d7eff0,0,0) at 0 timeout_run(fffffd8072f67e78) at timeout_run+0xd0 sys/kern/kern_timeout.c:666 softclock_process_kclock_timeout(fffffd8072f67e78,0) at softclock_process_kclock_timeout+0x1d7 sys/kern/kern_timeout.c:696 softclock(0) at softclock+0x150 sys/kern/kern_timeout.c:749 softintr_dispatch(0) at softintr_dispatch+0xfb sys/arch/amd64/amd64/softintr.c:90 Xsoftclock() at Xsoftclock+0x27 end of kernel end trace frame: 0x7182d20265d0, count: -5 ddb{0}> show registers rdi 0 rsi 0 rbp 0xffff80002de1af80 rbx 0 rdx 0 rcx 0xffff80002a1c47f8 rax 0x9 r8 0xc6 r9 0xc6 r10 0x7e7d1b5cc4df70a r11 0 r12 0 r13 0xffffffff82d14860 timeout_spinlock_obj r14 0 r15 0 rip 0 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002de1af38 ss 0 0 ddb{0}> show proc PROC (syz-executor.0) tid=104799 pid=10027 tcnt=2 stat=onproc flags process=0 proc=0 runpri=81, usrpri=81, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a25bac0,0xffff80002a1c4010 process=0xffff8000ffff48f8 user=0xffff80002de16000, vmspace=0xfffffd80767c8e40 estcpu=36, cpticks=2, pctcpu=0.0, user=1, sys=0, intr=1 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND *10027 104799 854 0 7 0 syz-executor.0 10027 413797 854 0 2 0x4000000 syz-executor.0 16261 340118 72088 0 2 0 syz-executor.7 16261 242933 72088 0 3 0x4000080 piperd syz-executor.7 16261 155720 72088 0 3 0x4000080 piperd syz-executor.7 28568 255580 28067 0 3 0x80 nanoslp syz-executor.4 28568 13222 28067 0 3 0x4000080 ttyout syz-executor.4 7200 177153 29005 0 3 0x80 nanoslp syz-executor.2 7200 515490 29005 0 3 0x4000080 netcon syz-executor.2 7200 498515 29005 0 3 0x4000080 fsleep syz-executor.2 28399 294852 2106 0 3 0x80 nanoslp syz-executor.1 28399 523857 2106 0 3 0x4000080 netcon2 syz-executor.1 28399 85420 2106 0 3 0x4000080 fsleep syz-executor.1 28399 28317 2106 0 3 0x4000080 fsleep syz-executor.1 80509 426180 95043 0 7 0 syz-executor.3 80509 190987 95043 0 3 0x4000080 bell syz-executor.3 95043 373171 16637 0 2 0x482 syz-executor.3 3292 469560 16637 0 3 0x82 nanoslp syz-executor.5 2106 293467 16637 0 2 0x2 syz-executor.1 72088 304300 16637 0 3 0x82 nanoslp syz-executor.7 22966 319606 16637 0 2 0x482 syz-executor.6 854 15067 16637 0 3 0x82 nanoslp syz-executor.0 28067 483194 16637 0 3 0x82 nanoslp syz-executor.4 95429 91884 0 0 3 0x14200 acct acct 29005 218919 16637 0 3 0x82 nanoslp syz-executor.2 54006 238343 0 0 3 0x14280 nfsidl nfsio 70560 42119 0 0 3 0x14280 nfsidl nfsio 53930 369065 0 0 3 0x14280 nfsidl nfsio 9064 221382 0 0 3 0x14280 nfsidl nfsio 79994 322790 0 0 3 0x14280 nfsidl nfsio 17108 233570 0 0 3 0x14280 nfsidl nfsio 4335 436315 0 0 3 0x14280 nfsidl nfsio 86081 280393 0 0 3 0x14280 nfsidl nfsio 68224 354579 0 0 3 0x14280 nfsidl nfsio 3966 90997 0 0 3 0x14280 nfsidl nfsio 22123 158093 0 0 3 0x14280 nfsidl nfsio 38432 40361 0 0 3 0x14280 nfsidl nfsio 38000 113297 0 0 3 0x14280 nfsidl nfsio 36583 52411 0 0 3 0x14280 nfsidl nfsio 83348 82226 0 0 3 0x14280 nfsidl nfsio 1399 24439 1 0 3 0x100083 ttyin getty 44706 79210 0 0 3 0x14280 nfsidl nfsio 33079 338614 0 0 3 0x14280 nfsidl nfsio 53 176863 0 0 3 0x14280 nfsidl nfsio 7795 487637 0 0 3 0x14280 nfsidl nfsio 14113 5337 0 0 3 0x14280 nfsidl nfsio 33788 194767 0 0 3 0x14200 bored sosplice 16637 133229 67033 0 3 0x2000082 wait syz-fuzzer 16637 295106 67033 0 2 0x6000482 syz-fuzzer 16637 347135 67033 0 3 0x6000082 wait syz-fuzzer 16637 471357 67033 0 3 0x6000082 wait syz-fuzzer 16637 78881 67033 0 3 0x6000082 wait syz-fuzzer 16637 208279 67033 0 3 0x6000082 wait syz-fuzzer 16637 286118 67033 0 3 0x6000082 kqread syz-fuzzer 16637 442382 67033 0 3 0x6000082 thrsleep syz-fuzzer 16637 72570 67033 0 3 0x6000082 thrsleep syz-fuzzer 16637 141596 67033 0 3 0x6000082 thrsleep syz-fuzzer 16637 90149 67033 0 3 0x6000082 thrsleep syz-fuzzer 16637 124272 67033 0 3 0x6000082 wait syz-fuzzer 16637 511922 67033 0 3 0x6000082 wait syz-fuzzer 16637 377950 67033 0 3 0x6000082 thrsleep syz-fuzzer 16637 147259 67033 0 3 0x6000082 wait syz-fuzzer 16637 103058 67033 0 3 0x6000082 thrsleep syz-fuzzer 67033 362824 72349 0 3 0x10008a sigsusp ksh 72349 397856 50149 0 3 0x9a kqread sshd 50149 203113 1 0 3 0x88 kqread sshd 44493 309122 35045 74 3 0x1100092 bpf pflogd 35045 397608 1 0 3 0x80 netio pflogd 18001 66613 92243 73 3 0x1100090 kqread syslogd 92243 471599 1 0 3 0x100082 netio syslogd 97564 94596 1 0 3 0x100080 kqread resolvd 58491 523749 48732 77 3 0x100092 kqread dhcpleased 22846 251300 48732 77 3 0x100092 kqread dhcpleased 48732 133828 1 0 3 0x80 kqread dhcpleased 2200 347193 0 0 3 0x14200 bored smr 14538 123682 0 0 2 0x14200 zerothread 34904 435923 0 0 3 0x14200 aiodoned aiodoned 38625 315381 0 0 3 0x14200 syncer update 11118 229156 0 0 3 0x14200 cleaner cleaner 69169 256024 0 0 3 0x14200 reaper reaper 9187 436956 0 0 3 0x14200 pgdaemon pagedaemon 99992 476604 0 0 3 0x14200 bored viomb 90254 414102 0 0 3 0x40014200 acpi0 acpi0 94227 295529 0 0 3 0x40014200 idle1 81473 401249 0 0 3 0x14200 bored softnet3 46588 21112 0 0 3 0x14200 bored softnet2 80986 77662 0 0 3 0x14200 bored softnet1 24134 297438 0 0 3 0x14200 bored softnet0 84942 374271 0 0 3 0x14200 bored systqmp 96638 418637 0 0 3 0x14200 bored systq 6551 334698 0 0 3 0x14200 tmoslp softclockmp 4613 517394 0 0 3 0x40014200 tmoslp softclock 72932 195320 0 0 3 0x40014200 idle0 1 476171 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks CPU 0: shared mutex timeout r = 0 (0xffffffff82d14860) #0 witness_lock+0x447 #1 timeout_run+0xbb sys/kern/kern_timeout.c:662 #2 softclock_process_kclock_timeout+0x1d7 sys/kern/kern_timeout.c:696 #3 softclock+0x150 sys/kern/kern_timeout.c:749 #4 softintr_dispatch+0xfb sys/arch/amd64/amd64/softintr.c:90 #5 Xsoftclock+0x27 CPU 1: exclusive sched_lock &sched_lock r = 0 (0xffffffff82dd1698) #0 witness_lock+0x447 #1 preempt+0x37 sys/kern/sched_bsd.c:340 #2 ast+0x109 mi_ast sys/sys/syscall_mi.h:265 [inline] #2 ast+0x109 sys/arch/amd64/amd64/trap.c:541 #3 intr_user_exit+0x3c Process 10027 (syz-executor.0) thread 0xffff80002a1c47f8 (104799) ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10249 6510K 7555K 166960K 19633 0 pcb 15 24K 26K 166960K 3609 0 rtable 234 7K 8K 166960K 7508 0 pf 40 10K 11K 166960K 769 0 ifaddr 48 19K 19K 166960K 781 0 ifgroup 71 3K 3K 166960K 1269 0 sysctl 4 1K 5K 166960K 18 0 counters 70 37K 37K 166960K 778 0 ioctlops 0 0K 4K 166960K 3271 0 iov 0 0K 36K 166960K 4928 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1602 100K 101K 166960K 12428 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 439 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 5136 0 dirhash 12 2K 2K 166960K 216 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 16 57K 89K 166960K 40730 0 sigio 0 0K 0K 166960K 1347 0 proc 94 93K 128K 166960K 5926 0 subproc 104 6K 10K 166960K 1746 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 2474 0 in_multi 99 7K 7K 166960K 1809 0 ether_multi 1 0K 0K 166960K 41 0 mrt 1 0K 0K 166960K 26 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 355 1579K 1579K 166960K 355 0 exec 0 0K 1K 166960K 5487 0 pfkey data 0 0K 4K 166960K 45 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 670 1490K 1490K 166960K 387827 0 UVM aobj 131 4K 4K 166960K 133 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 1780 0 NDP 15 0K 2K 166960K 619 0 temp 74 6772K 6904K 166960K 343601 0 kqueue 12 18K 34K 166960K 3306 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 3656 0 3653 48 47 1 5 0 8 0 rtentry 112 1817 0 1710 5 1 4 4 0 8 0 unpcb 144 33702 0 33687 304 295 9 15 0 8 8 syncache 336 358 0 358 59 59 0 1 0 8 0 sackhl 24 29 20 29 5 5 0 1 0 8 0 tcpqe 32 511 66080 511 37 37 0 1 0 8 0 tcpcb 808 11473 0 11455 342 339 3 22 0 8 0 arp 120 301 0 284 1 0 1 1 0 8 0 inpcb 392 30796 0 30774 539 536 3 22 0 8 0 nd6 136 379 0 355 1 0 1 1 0 8 0 pkpcb 40 110 0 110 27 27 0 1 0 8 0 kcovpl 48 118 0 110 1 0 1 1 0 8 0 ppxss 1168 118 0 118 29 29 0 1 0 8 0 pffrag 232 380 0 373 3 2 1 1 0 482 0 pffrnode 88 380 0 373 3 2 1 1 0 8 0 pffrent 40 1273 0 1266 3 2 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 1087 0 1061 1 0 1 1 0 8 0 pfstkey 128 1124 0 1098 6 4 2 2 0 8 0 pfstate 376 1124 0 1098 23 19 4 6 0 8 0 pfrule 1344 21 0 16 2 1 1 2 0 8 0 rttmr 136 2 0 2 1 1 0 1 0 8 0 art_heap8 4096 5 0 4 4 3 1 3 0 8 0 art_heap4 256 6499 0 6033 85 55 30 31 0 8 0 art_table 32 6504 0 6037 4 0 4 4 0 8 0 art_node 16 1729 0 1632 1 0 1 1 0 8 0 sysvmsgpl 40 13 0 6 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 5134 0 5124 1 0 1 1 0 8 0 shmpl 112 130 0 2 4 0 4 4 0 8 0 dirhash 1024 153 0 136 3 0 3 3 0 8 0 dino2pl 256 55005 0 53350 104 0 104 104 0 8 0 ffsino 272 55005 0 53350 111 0 111 111 0 8 0 nchpl 144 109066 0 107410 63 0 63 63 0 8 0 uvmvnodes 80 8622 0 0 176 0 176 176 0 8 0 vnodes 216 8622 0 0 479 0 479 479 0 8 0 namei 1024 369575 0 369575 29 28 1 2 0 8 1 percpumem 16 403 0 354 1 0 1 1 0 8 0 vcpupl 2048 497 0 0 63 0 63 63 0 8 0 vmpool 696 570 0 73 47 1 46 46 0 8 0 kstatmem 264 738 0 708 8 5 3 3 0 8 0 scxspl 216 320775 0 320775 85 82 3 8 1 8 3 plimitpl 152 4260 0 4243 1 0 1 1 0 8 0 sigapl 424 40925 0 40854 17 8 9 9 0 8 1 futexpl 64 329450 0 329447 5 4 1 1 0 8 0 knotepl 120 1648 0 0 20 3 17 19 0 8 1 kqueuepl 216 7525 0 7517 130 125 5 8 0 8 4 pipepl 320 5851 0 5822 151 148 3 13 0 8 0 fdescpl 496 40824 0 40795 30 25 5 5 0 8 1 filepl 152 242252 0 241999 366 347 19 24 0 8 8 lockfpl 104 10217 0 10215 14 13 1 2 0 8 0 lockfspl 48 3144 0 3142 1 0 1 1 0 8 0 sessionpl 144 143 0 126 1 0 1 1 0 8 0 pgrppl 48 740 0 723 1 0 1 1 0 8 0 ucredpl 104 34237 0 34222 1 0 1 1 0 8 0 zombiepl 144 40856 0 40854 6 5 1 1 0 8 0 processpl 1136 40925 0 40854 8 2 6 6 0 8 0 procpl 680 107212 0 107116 15 6 9 10 0 8 0 srpgc 96 158 0 158 51 51 0 1 0 8 0 sosppl 168 449 0 447 43 42 1 1 0 8 0 sockpl 584 68397 0 68357 629 616 13 29 0 8 8 mcl64k 65536 21 0 0 3 1 2 3 0 8 0 mcl16k 16384 24 0 0 3 0 3 3 0 8 0 mcl12k 12288 33 0 0 2 0 2 2 0 8 0 mcl9k 9216 17 0 0 2 0 2 2 0 8 0 mcl8k 8192 41 0 0 4 1 3 3 0 8 0 mcl4k 4096 26 0 0 3 0 3 3 0 8 0 mcl2k2 2112 16 0 0 2 0 2 2 0 8 0 mcl2k 2048 611 0 0 32 18 14 32 0 8 0 mtagpl 96 209 0 0 6 3 3 6 0 8 0 mbufpl 256 9647 0 0 537 1 536 536 0 8 0 bufpl 280 68010 0 59388 616 0 616 616 0 8 0 anonpl 24 3883222 0 3867107 287 170 117 167 0 186 0 amapchunkpl 152 1257089 0 1256185 193 149 44 67 0 158 0 amappl16 200 76856 0 76179 311 274 37 52 0 8 0 amappl15 192 176 0 174 1 0 1 1 0 8 0 amappl14 184 545 0 521 17 15 2 2 0 8 0 amappl13 176 14 0 13 2 1 1 1 0 8 0 amappl12 168 43217 0 43180 4 2 2 3 0 8 0 amappl11 160 62 0 48 1 0 1 1 0 8 0 amappl10 152 167 0 149 2 1 1 1 0 8 0 amappl9 144 534 0 533 39 38 1 1 0 8 0 amappl8 136 1781 0 1576 9 1 8 8 0 8 0 amappl7 128 568 0 540 2 0 2 2 0 8 0 amappl6 120 2263 0 2232 2 0 2 2 0 8 0 amappl5 112 934 0 923 1 0 1 1 0 8 0 amappl4 104 1661 0 1619 4 2 2 2 0 8 0 amappl3 96 239703 0 239615 4 1 3 3 0 8 0 amappl2 88 43210 0 43114 7 4 3 3 0 8 0 amappl1 80 159566 0 159012 23 10 13 23 0 8 0 amappl 88 385337 0 385001 9 0 9 9 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 132 0 2 3 0 3 3 0 8 0 uaddrrnd 24 41394 0 40868 4 0 4 4 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 41394 0 40868 4 0 4 4 0 8 0 vmmpekpl 168 264671 0 264533 7 0 7 7 0 8 0 vmmpepl 168 2421252 0 2417993 991 810 181 221 0 357 10 vmsppl 448 41393 0 40868 63 4 59 59 0 8 0 rwobjpl 56 558418 0 547595 206 52 154 154 0 8 0 pdppl 4096 82795 0 82233 1539 973 566 568 0 8 4 pvpl 32 45559 0 0 370 2 368 368 0 265 0 pmappl 248 41393 0 40868 34 0 34 34 0 8 1 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 3660 0 2135 45 1 44 44 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace 0(0,0,0,ffffffff82d7eff0,0,0) at 0 timeout_run(fffffd8072f67e78) at timeout_run+0xd0 sys/kern/kern_timeout.c:666 softclock_process_kclock_timeout(fffffd8072f67e78,0) at softclock_process_kclock_timeout+0x1d7 sys/kern/kern_timeout.c:696 softclock(0) at softclock+0x150 sys/kern/kern_timeout.c:749 softintr_dispatch(0) at softintr_dispatch+0xfb sys/arch/amd64/amd64/softintr.c:90 Xsoftclock() at Xsoftclock+0x27 end of kernel end trace frame: 0x7182d20265d0, count: -5 ddb{0}> machine ddbcpu 1