uvm_fault(0xfffffd80696df018, 0x18, 0, 1) -> e kernel: page fault trap, code=0 Stopped at mtx_enter+0x59: movq 0(%r14),%rax TID PID UID PRFLAGS PFLAGS CPU COMMAND *110370 81284 0 0 0x4000000 0 syz-executor mtx_enter(18) at mtx_enter+0x59 sys/kern/kern_lock.c:335 clockintr_unbind(ffff8000014c5330,1) at clockintr_unbind+0x56 sys/kern/kern_clockintr.c:375 dt_ioctl_record_stop(ffff80000149e900) at dt_ioctl_record_stop+0xbc sys/dev/dt/dt_dev.c:576 dtclose(21e5f,81,2000,ffff80002a7e8540) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,81,2000,ffff80002a7e8540) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003c971cd0) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8067bec708,81,fffffd8007bfb6e8,ffff80002a7e8540) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd8067e4be18,ffff80002a7e8540) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd8067e4be18,ffff80002a7e8540) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd8067e4be18,ffff80002a7e8540) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd8067e4be18,ffff80002a7e8540) at closef+0x190 sys/kern/kern_descrip.c:1251 syscall(ffff80003c971f30) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c971f30) at syscall+0x97e sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x8805a156b10, count: 4 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd80696df018, 0x18, 0, 1) -> e ddb> trace mtx_enter(18) at mtx_enter+0x59 sys/kern/kern_lock.c:335 clockintr_unbind(ffff8000014c5330,1) at clockintr_unbind+0x56 sys/kern/kern_clockintr.c:375 dt_ioctl_record_stop(ffff80000149e900) at dt_ioctl_record_stop+0xbc sys/dev/dt/dt_dev.c:576 dtclose(21e5f,81,2000,ffff80002a7e8540) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,81,2000,ffff80002a7e8540) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003c971cd0) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8067bec708,81,fffffd8007bfb6e8,ffff80002a7e8540) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd8067e4be18,ffff80002a7e8540) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd8067e4be18,ffff80002a7e8540) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd8067e4be18,ffff80002a7e8540) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd8067e4be18,ffff80002a7e8540) at closef+0x190 sys/kern/kern_descrip.c:1251 syscall(ffff80003c971f30) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c971f30) at syscall+0x97e sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x8805a156b10, count: -11 ddb> show registers rdi 0 rsi 0 rbp 0xffff80003c971b80 rbx 0xffffffff82482220 dtclose rdx 0 rcx 0xffff80002a7e8540 rax 0xffff80002a7e8540 r8 0xffffffff83000f00 uvm_map_inentry_sp r9 0x84 r10 0 r11 0xf2dae574d5edbdd6 r12 0 r13 0 r14 0x18 r15 0 rip 0xffffffff81c892b9 mtx_enter+0x59 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c971b50 ss 0x10 mtx_enter+0x59: movq 0(%r14),%rax ddb> show proc PROC (syz-executor) tid=110370 pid=81284 tcnt=4 stat=onproc flags process=0 proc=4000000 runpri=32, usrpri=63, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a7e8f80,0xffff80002a7e9220 process=0xffff80002cd1fb78 user=0xffff80003c96c000, vmspace=0xfffffd80696df018 estcpu=13, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 81284 224766 64877 0 2 0 syz-executor *81284 110370 64877 0 7 0x4000000 syz-executor 81284 407761 64877 0 3 0x4000080 fsleep syz-executor 81284 105962 64877 0 3 0x4000080 fsleep syz-executor 25383 485988 49587 0 2 0 syz-executor 25383 367499 49587 0 3 0x4000080 fsleep syz-executor 7654 192677 30150 0 2 0x82000 syz-executor 7654 439362 30150 0 3 0x4002000 suspend syz-executor 7654 501393 30150 0 2 0x4082000 syz-executor 31215 337159 12448 0 2 0 syz-executor 31215 363524 12448 0 3 0x4000080 fsleep syz-executor 31215 244522 12448 0 3 0x4000080 fsleep syz-executor 31215 167163 12448 0 3 0x4000080 fsleep syz-executor 94672 293671 92708 0 2 0 syz-executor 94740 141490 68604 0 2 0xc80 syz-executor 94740 7141 68604 0 2 0x4000000 syz-executor 94740 18807 68604 0 3 0x4000080 fsleep syz-executor 32403 441105 0 0 3 0x14200 bored sosplice 90988 309768 89984 0 3 0x3000 suspend syz-executor 90988 286864 89984 0 2 0x4081000 syz-executor 89984 177815 62309 0 3 0x82 nanoslp syz-executor 64877 286354 62309 0 2 0xc82 syz-executor 68604 454758 62309 0 3 0x82 nanoslp syz-executor 92708 262507 62309 0 2 0xc82 syz-executor 12448 448420 62309 0 2 0xc82 syz-executor 8685 439498 62309 0 3 0x82 wait syz-executor 30150 24888 62309 0 2 0xc82 syz-executor 49587 95992 62309 0 2 0xc82 syz-executor 62309 47617 16941 0 3 0x82 kqread syz-executor 16941 181259 76294 0 3 0x10008a sigsusp ksh 76294 427647 40807 0 3 0x98 kqread sshd-session 40807 209166 74388 0 3 0x92 kqread sshd-session 25967 502823 1 0 3 0x100083 ttyin getty 74388 363970 1 0 3 0x88 kqread sshd 78580 276602 76117 73 3 0x1100090 kqread syslogd 76117 335206 1 0 3 0x100082 sbwait syslogd 42715 150438 1 0 3 0x100080 kqread resolvd 72394 148475 26762 77 3 0x100092 kqread dhcpleased 33042 17961 26762 77 3 0x100092 kqread dhcpleased 26762 31757 1 0 3 0x80 kqread dhcpleased 11079 23372 0 0 3 0x14200 bored smr 281 426246 0 0 2 0x14200 zerothread 72922 449956 0 0 3 0x14200 aiodoned aiodoned 14785 518281 0 0 3 0x14200 syncer update 77106 290775 0 0 3 0x14200 cleaner cleaner 71104 276489 0 0 3 0x14200 reaper reaper 38258 249907 0 0 3 0x14200 pgdaemon pagedaemon 47468 328746 0 0 3 0x14200 bored viomb 80953 5805 0 0 3 0x40014200 acpi0 acpi0 78605 182409 0 0 3 0x14200 bored softnet7 21980 218710 0 0 3 0x14200 bored softnet6 41425 106274 0 0 3 0x14200 bored softnet5 7885 196620 0 0 3 0x14200 bored softnet4 73414 136793 0 0 3 0x14200 bored softnet3 60285 195602 0 0 3 0x14200 bored softnet2 83939 57081 0 0 3 0x14200 bored softnet1 53626 325780 0 0 3 0x14200 bored softnet0 52233 224227 0 0 3 0x14200 bored systqmp 92658 407647 0 0 3 0x14200 bored systq 77518 235940 0 0 2 0x40014200 softclock 54645 53218 0 0 3 0x40014200 idle0 1 156090 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10210 11347K 11347K 166960K 11533 0 pcb 18 14K 15K 166960K 56 0 rtable 177 6K 6K 166960K 344 0 pf 34 13K 14K 166960K 45 0 ifaddr 40 6K 7K 166960K 53 0 ifgroup 54 2K 2K 166960K 68 0 sysctl 1 1K 9K 166960K 5 0 counters 33 17K 18K 166960K 38 0 ioctlops 0 0K 2K 166960K 48 0 iov 0 0K 12K 166960K 2 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1344 85K 85K 166960K 1429 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 1K 166960K 2 0 VM map 2 1K 1K 166960K 2 0 sem 6 0K 0K 166960K 6 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 97K 166960K 206 0 sigio 0 0K 0K 166960K 1 0 proc 60 59K 124K 166960K 485 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 4 0 in_multi 88 6K 7K 166960K 103 0 ether_multi 1 0K 0K 166960K 2 0 mrt 0 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 67 307K 307K 166960K 67 0 exec 0 0K 1K 166960K 375 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 246 152K 160K 166960K 3360 0 UVM aobj 6 2K 2K 166960K 6 0 pinsyscall 39 78K 96K 166960K 1233 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 8 0 NDP 12 0K 2K 166960K 32 0 temp 37 8662K 8730K 166960K 4570 0 kqueue 14 22K 26K 166960K 30 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 39 0 35 1 0 1 1 0 8 0 rtentry 136 98 0 22 4 0 4 4 0 8 0 unpcb 144 68 0 48 1 0 1 1 0 8 0 syncache 336 4 0 4 1 0 1 1 0 8 1 tcpcb 736 28 0 24 1 0 1 1 0 8 0 arp 88 11 0 1 1 0 1 1 0 8 0 inpcb 328 185 0 111 7 0 7 7 0 8 0 nd6 104 16 0 2 1 0 1 1 0 8 0 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 3 0 3 1 0 1 1 0 8 1 pppxif 1384 1 0 1 1 0 1 1 0 8 1 pfstscr 40 1 0 0 1 0 1 1 0 8 0 pfstitem 24 3 0 0 1 0 1 1 0 8 0 pfstkey 128 3 0 1 1 0 1 1 0 8 0 pfstate 384 2 0 0 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 475 0 89 30 0 30 30 0 8 2 art_table 40 476 0 89 5 0 5 5 0 8 0 art_node 32 98 0 31 1 0 1 1 0 8 0 sysvmsgpl 40 2 0 1 1 0 1 1 0 8 0 semapl 112 4 0 0 1 0 1 1 0 8 0 shmpl 112 3 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1695 0 188 95 0 95 95 0 8 0 ffsino 256 1695 0 188 95 0 95 95 0 8 0 nchpl 144 1985 0 298 63 0 63 63 0 8 0 uvmvnodes 80 1814 0 0 38 0 38 38 0 8 0 vnodes 216 1814 0 0 101 0 101 101 0 8 0 namei 1024 6146 0 6146 2 0 2 2 0 8 2 kstatmem 264 32 0 8 3 0 3 3 0 8 1 scxspl 216 7080 0 7080 8 0 8 8 1 8 8 plimitpl 152 41 0 24 1 0 1 1 0 8 0 sigapl 424 489 0 438 7 0 7 7 0 8 1 knotepl 120 15229 0 15182 17 0 17 17 0 8 14 kqueuepl 184 105 0 94 1 0 1 1 0 8 0 pipepl 304 100 0 73 3 0 3 3 0 8 0 fdescpl 448 468 0 438 5 0 5 5 0 8 1 filepl 120 1906 0 1605 10 0 10 10 0 8 0 lockfpl 104 48 0 44 1 0 1 1 0 8 0 lockfspl 48 24 0 20 1 0 1 1 0 8 0 sessionpl 144 22 0 14 1 0 1 1 0 8 0 pgrppl 48 35 0 19 1 0 1 1 0 8 0 ucredpl 104 150 0 137 1 0 1 1 0 8 0 zombiepl 144 440 0 438 1 0 1 1 0 8 0 processpl 1168 489 0 438 5 0 5 5 0 8 1 procpl 656 608 0 545 6 0 6 6 0 8 0 sockpl 552 293 0 195 7 0 7 7 0 8 0 mcl8k 8192 6 0 5 1 0 1 1 0 8 0 mcl4k 4096 2531 0 2478 13 0 13 13 0 8 5 mcl2k 2048 404 0 404 1 0 1 1 0 8 1 mtagpl 96 7 0 5 1 0 1 1 0 8 0 mbufpl 256 4692 0 4523 12 0 12 12 0 8 0 bufpl 280 3064 0 117 211 0 211 211 0 8 0 anonpl 24 106072 0 101805 31 0 31 31 0 187 5 amapchunkpl 152 10031 0 9480 24 0 24 24 0 158 2 amappl16 200 1980 0 1914 5 0 5 5 0 8 1 amappl15 192 49 0 49 1 0 1 1 0 8 1 amappl14 184 103 0 93 1 0 1 1 0 8 0 amappl13 176 7 0 7 1 0 1 1 0 8 1 amappl12 168 1075 0 1045 3 0 3 3 0 8 1 amappl11 160 46 0 36 1 0 1 1 0 8 0 amappl10 152 2 0 2 1 0 1 1 0 8 1 amappl9 144 270 0 269 1 0 1 1 0 8 0 amappl8 136 22 0 20 1 0 1 1 0 8 0 amappl7 128 97 0 87 1 0 1 1 0 8 0 amappl6 120 176 0 172 1 0 1 1 0 8 0 amappl5 112 114 0 108 1 0 1 1 0 8 0 amappl4 104 285 0 270 1 0 1 1 0 8 0 amappl3 96 1652 0 1534 3 0 3 3 0 8 0 amappl2 88 611 0 557 2 0 2 2 0 8 0 amappl1 80 8424 0 7872 13 0 13 13 0 8 0 amappl 88 2708 0 2525 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 5 0 0 1 0 1 1 0 8 0 uaddrrnd 24 468 0 438 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 468 0 438 1 0 1 1 0 8 0 vmmpekpl 168 5316 0 5291 2 0 2 2 0 8 0 vmmpepl 168 36801 0 34854 89 0 89 89 0 357 2 vmsppl 368 467 0 438 4 0 4 4 0 8 1 rwobjpl 40 14805 0 12083 28 0 28 28 0 8 0 pdppl 4096 943 0 876 99 30 69 83 0 8 2 pvpl 32 238885 0 228423 101 0 101 101 0 265 14 pmappl 216 467 0 438 3 0 3 3 0 8 1 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 371 0 30 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace mtx_enter(18) at mtx_enter+0x59 sys/kern/kern_lock.c:335 clockintr_unbind(ffff8000014c5330,1) at clockintr_unbind+0x56 sys/kern/kern_clockintr.c:375 dt_ioctl_record_stop(ffff80000149e900) at dt_ioctl_record_stop+0xbc sys/dev/dt/dt_dev.c:576 dtclose(21e5f,81,2000,ffff80002a7e8540) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,81,2000,ffff80002a7e8540) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003c971cd0) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8067bec708,81,fffffd8007bfb6e8,ffff80002a7e8540) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd8067e4be18,ffff80002a7e8540) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd8067e4be18,ffff80002a7e8540) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd8067e4be18,ffff80002a7e8540) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd8067e4be18,ffff80002a7e8540) at closef+0x190 sys/kern/kern_descrip.c:1251 syscall(ffff80003c971f30) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c971f30) at syscall+0x97e sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x8805a156b10, count: -11 ddb> machine ddbcpu 1 No such command ddb> trace mtx_enter(18) at mtx_enter+0x59 sys/kern/kern_lock.c:335 clockintr_unbind(ffff8000014c5330,1) at clockintr_unbind+0x56 sys/kern/kern_clockintr.c:375 dt_ioctl_record_stop(ffff80000149e900) at dt_ioctl_record_stop+0xbc sys/dev/dt/dt_dev.c:576 dtclose(21e5f,81,2000,ffff80002a7e8540) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,81,2000,ffff80002a7e8540) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003c971cd0) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8067bec708,81,fffffd8007bfb6e8,ffff80002a7e8540) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd8067e4be18,ffff80002a7e8540) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd8067e4be18,ffff80002a7e8540) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd8067e4be18,ffff80002a7e8540) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd8067e4be18,ffff80002a7e8540) at closef+0x190 sys/kern/kern_descrip.c:1251 syscall(ffff80003c971f30) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c971f30) at syscall+0x97e sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x8805a156b10, count: -11