uvm_fault(0xfffffd806b5eb9f0, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND * 5046 69428 0 0 0x4000000 0 syz-executor ktrops(ffff80002a7bca58,ffffffffffffffff,0,80001b08,fffffd806547a1e8,fffffd807f7d76e8) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bca58,ffffffffffffffff,0,80001b08,fffffd806547a1e8,fffffd807f7d76e8) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd806547a1e8,4,1b08,0,ffff80002a7bca58) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd806547a1e8,4,1b08,0,ffff80002a7bca58) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bca58,ffff80003c967140,ffff80003c967090) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c967140) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x89ddeecd50, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806b5eb9f0, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a7bca58,ffffffffffffffff,0,80001b08,fffffd806547a1e8,fffffd807f7d76e8) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bca58,ffffffffffffffff,0,80001b08,fffffd806547a1e8,fffffd807f7d76e8) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd806547a1e8,4,1b08,0,ffff80002a7bca58) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd806547a1e8,4,1b08,0,ffff80002a7bca58) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bca58,ffff80003c967140,ffff80003c967090) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c967140) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x89ddeecd50, count: -5 ddb> show registers rdi 0xffff800033920000 rsi 0x12f0 __ALIGN_SIZE+0x2f0 rbp 0xffff80003c966e60 rbx 0xfffffd807f7d76e8 rdx 0xffff800033920000 rcx 0x12ef __ALIGN_SIZE+0x2ef rax 0xffffffff830239d3 ktrops+0x43 r8 0xfffffd806547a1e8 r9 0xfffffd807f7d76e8 r10 0xe8ae6dd2d47475e6 r11 0x80da0473d759561c r12 0xffff80002a7bca58 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0x80001b08 __kernel_virt_to_phys+0x1b08 rip 0xffffffff830239e8 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c966de0 ss 0x10 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=5046 pid=69428 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a7bcf78,0xffffffff8394fd08 process=0xffff8000ffff6b88 user=0xffff80003c962000, vmspace=0xfffffd806b5eb9f0 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 69428 500897 71954 0 2 0 syz-executor *69428 5046 71954 0 7 0x4000000 syz-executor 25128 134525 0 0 3 0x14200 acct acct 41984 412605 27159 0 3 0x80 nanoslp syz-executor 41984 465988 27159 0 3 0x4000080 kqsel syz-executor 41984 439503 27159 0 3 0x4000080 fsleep syz-executor 97334 108648 14442 0 2 0x480 syz-executor 97334 78736 14442 0 3 0x4000080 kqread syz-executor 97334 158162 14442 0 3 0x4000080 fsleep syz-executor 97334 79850 14442 0 3 0x4000080 fsleep syz-executor 74531 387918 0 0 3 0x14200 bored sosplice 71954 45290 8931 0 3 0x82 nanoslp syz-executor 37813 380434 8931 0 3 0x82 nanoslp syz-executor 68854 130852 8931 0 2 0x2 syz-executor 86361 50658 8931 0 3 0x82 nanoslp syz-executor 27159 286249 8931 0 2 0x482 syz-executor 14442 285587 8931 0 2 0x482 syz-executor 64458 194873 8931 0 3 0x82 nanoslp syz-executor 58843 193054 8931 0 3 0x82 wait syz-executor 8931 210681 44382 0 2 0x2 syz-executor 44382 455250 89357 0 3 0x10008a sigsusp ksh 89357 190691 30394 0 3 0x98 kqread sshd-session 30394 346608 68305 0 3 0x92 kqread sshd-session 19694 494656 1 0 3 0x100083 ttyin getty 68305 285398 1 0 3 0x88 kqread sshd 67066 463044 83305 73 3 0x1100090 kqread syslogd 83305 402520 1 0 3 0x100082 sbwait syslogd 27893 347552 1 0 3 0x100080 kqread resolvd 86500 42784 33097 77 3 0x100092 kqread dhcpleased 73173 57319 33097 77 3 0x100092 kqread dhcpleased 33097 154299 1 0 3 0x80 kqread dhcpleased 58147 300338 0 0 3 0x14200 bored smr 53388 193757 0 0 2 0x14200 zerothread 61063 117443 0 0 3 0x14200 aiodoned aiodoned 32590 449425 0 0 3 0x14200 syncer update 10541 449545 0 0 3 0x14200 cleaner cleaner 19471 468991 0 0 3 0x14200 reaper reaper 48765 367653 0 0 3 0x14200 pgdaemon pagedaemon 85432 73073 0 0 3 0x14200 bored viomb 42318 393060 0 0 3 0x40014200 acpi0 acpi0 86070 384070 0 0 3 0x14200 bored softnet3 20910 271707 0 0 3 0x14200 bored softnet2 97036 53699 0 0 3 0x14200 bored softnet1 26453 315392 0 0 3 0x14200 bored softnet0 61587 352679 0 0 3 0x14200 bored systqmp 62957 277826 0 0 3 0x14200 bored systq 46726 394595 0 0 2 0x40014200 softclock 43060 185364 0 0 3 0x40014200 idle0 1 6919 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10181 11170K 11364K 166960K 11601 0 pcb 18 13K 13K 166960K 74 0 rtable 230 8K 8K 166960K 396 0 pf 29 12K 17K 166960K 53 0 ifaddr 39 7K 7K 166960K 52 0 ifgroup 46 2K 2K 166960K 60 0 sysctl 3 1K 1K 166960K 3 0 counters 29 17K 17K 166960K 38 0 ioctlops 0 0K 4K 166960K 150 0 iov 0 0K 16K 166960K 80 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1340 84K 85K 166960K 1535 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 8 0 VM map 2 1K 1K 166960K 2 0 sem 12 1K 1K 166960K 14 0 dirhash 12 2K 2K 166960K 15 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 17 61K 85K 166960K 415 0 sigio 0 0K 0K 166960K 2 0 proc 60 59K 108K 166960K 498 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 29 0 in_multi 88 6K 7K 166960K 108 0 ether_multi 1 0K 0K 166960K 4 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 73 334K 334K 166960K 73 0 exec 0 0K 1K 166960K 436 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 225 72K 88K 166960K 5133 0 UVM aobj 11 2K 2K 166960K 13 0 pinsyscall 38 76K 90K 166960K 1437 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 23 0 NDP 10 0K 2K 166960K 32 0 temp 75 8632K 8696K 166960K 12794 0 kqueue 13 20K 28K 166960K 78 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 121 0 118 2 0 2 2 0 8 1 rtentry 112 120 0 16 4 0 4 4 0 8 0 unpcb 144 355 0 338 4 0 4 4 0 8 3 syncache 336 4 0 4 1 0 1 1 0 8 1 tcpcb 808 78 0 74 1 0 1 1 0 8 0 arp 88 20 0 2 1 0 1 1 0 8 0 ipq 40 3 0 1 1 0 1 1 0 8 0 ipqe 40 7 0 5 1 0 1 1 0 8 0 inpcb 344 452 0 440 7 0 7 7 0 8 5 nd6 104 26 0 3 1 0 1 1 0 8 0 pkpcb 40 2 0 2 1 0 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 8 0 8 1 0 1 1 0 8 1 pfstscr 40 1 0 1 1 0 1 1 0 8 1 pfanchor 1288 2 0 0 1 0 1 1 0 8 0 pftag 88 1 0 0 1 0 1 1 0 8 0 pfstkey 128 2 0 2 1 0 1 1 0 8 1 pfstate 344 1 0 1 1 0 1 1 0 8 1 pfrule 1344 4 0 4 1 0 1 1 0 8 1 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 464 0 47 29 0 29 29 0 8 2 art_table 32 466 0 47 4 0 4 4 0 8 0 art_node 16 117 0 24 1 0 1 1 0 8 0 sysvmsgpl 40 2 0 1 1 0 1 1 0 8 0 semapl 112 12 0 2 1 0 1 1 0 8 0 shmpl 112 10 0 2 1 0 1 1 0 8 0 dirhash 1024 19 0 2 3 0 3 3 0 8 0 dino2pl 256 2068 0 567 95 0 95 95 0 8 0 ffsino 248 2068 0 567 95 0 95 95 0 8 0 nchpl 144 2661 0 977 63 0 63 63 0 8 0 rtmask 32 2 0 2 1 0 1 1 0 8 1 uvmvnodes 80 2239 0 0 46 0 46 46 0 8 0 vnodes 216 2239 0 0 125 0 125 125 0 8 0 namei 1024 8994 0 8994 2 0 2 2 0 8 2 kstatmem 264 32 0 12 2 0 2 2 0 8 0 acpiwqpl 32 1 0 1 1 0 1 1 1 8 1 scxspl 216 8623 0 8623 3 0 3 3 1 8 3 plimitpl 152 136 0 117 1 0 1 1 0 8 0 sigapl 424 694 0 647 6 0 6 6 0 8 0 futexpl 64 4630 0 4627 1 0 1 1 0 8 0 knotepl 120 14021 0 13974 10 0 10 10 0 8 8 kqueuepl 184 113 0 101 1 0 1 1 0 8 0 pipepl 296 129 0 102 3 0 3 3 0 8 0 fdescpl 440 676 0 647 4 0 4 4 0 8 0 filepl 120 3660 0 3433 11 0 11 11 0 8 2 lockfpl 104 360 0 357 4 0 4 4 0 8 3 lockfspl 48 44 0 41 1 0 1 1 0 8 0 sessionpl 144 21 0 13 1 0 1 1 0 8 0 pgrppl 48 36 0 20 1 0 1 1 0 8 0 ucredpl 104 360 0 348 1 0 1 1 0 8 0 zombiepl 144 651 0 647 1 0 1 1 0 8 0 processpl 1112 694 0 647 4 0 4 4 0 8 0 procpl 656 1120 0 1067 6 0 6 6 0 8 0 sockpl 528 965 0 934 10 0 10 10 0 8 6 mcl64k 65536 5 0 5 1 0 1 1 0 8 1 mcl16k 16384 1 0 1 1 0 1 1 0 8 1 mcl9k 9216 1 0 1 1 0 1 1 0 8 1 mcl8k 8192 11 0 11 1 0 1 1 0 8 1 mcl4k 4096 2768 0 2718 13 0 13 13 0 8 6 mcl2k2 2112 2 0 2 1 0 1 1 0 8 1 mcl2k 2048 494 0 491 2 0 2 2 0 8 1 mtagpl 96 25 0 4 1 0 1 1 0 8 0 mbufpl 256 7547 0 7373 16 0 16 16 0 8 3 bufpl 280 3058 0 124 210 0 210 210 0 8 0 anonpl 24 118435 0 115233 33 0 33 33 0 187 11 amapchunkpl 152 16743 0 16226 35 0 35 35 0 158 13 amappl16 200 2187 0 2158 5 0 5 5 0 8 3 amappl15 192 2 0 2 1 0 1 1 0 8 1 amappl14 184 110 0 100 1 0 1 1 0 8 0 amappl13 176 5 0 5 1 0 1 1 0 8 1 amappl12 168 1305 0 1275 2 0 2 2 0 8 0 amappl11 160 45 0 35 1 0 1 1 0 8 0 amappl10 152 6 0 6 1 0 1 1 0 8 1 amappl9 144 267 0 267 1 0 1 1 0 8 1 amappl8 136 41 0 40 1 0 1 1 0 8 0 amappl7 128 127 0 117 1 0 1 1 0 8 0 amappl6 120 170 0 167 1 0 1 1 0 8 0 amappl5 112 113 0 107 1 0 1 1 0 8 0 amappl4 104 281 0 265 1 0 1 1 0 8 0 amappl3 96 3015 0 2896 4 0 4 4 0 8 1 amappl2 88 609 0 555 2 0 2 2 0 8 0 amappl1 80 8275 0 7753 12 0 12 12 0 8 0 amappl 88 4768 0 4591 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 8 0 8 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 12 0 2 1 0 1 1 0 8 0 uaddrrnd 24 676 0 647 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 676 0 647 1 0 1 1 0 8 0 vmmpekpl 168 6711 0 6681 2 0 2 2 0 8 0 vmmpepl 168 46632 0 44880 80 0 80 80 0 357 1 vmsppl 360 675 0 647 4 0 4 4 0 8 1 rwobjpl 32 17276 0 14159 26 0 26 26 0 8 0 pdppl 4096 1358 0 1294 90 24 66 76 0 8 2 pvpl 32 299609 0 290816 90 0 90 90 0 265 12 pmappl 216 675 0 647 2 0 2 2 0 8 0 extentpl 40 55 0 38 1 0 1 1 0 8 0 phpool 112 260 0 24 7 0 7 7 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a7bca58,ffffffffffffffff,0,80001b08,fffffd806547a1e8,fffffd807f7d76e8) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bca58,ffffffffffffffff,0,80001b08,fffffd806547a1e8,fffffd807f7d76e8) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd806547a1e8,4,1b08,0,ffff80002a7bca58) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd806547a1e8,4,1b08,0,ffff80002a7bca58) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bca58,ffff80003c967140,ffff80003c967090) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c967140) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x89ddeecd50, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a7bca58,ffffffffffffffff,0,80001b08,fffffd806547a1e8,fffffd807f7d76e8) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bca58,ffffffffffffffff,0,80001b08,fffffd806547a1e8,fffffd807f7d76e8) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd806547a1e8,4,1b08,0,ffff80002a7bca58) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd806547a1e8,4,1b08,0,ffff80002a7bca58) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bca58,ffff80003c967140,ffff80003c967090) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c967140) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x89ddeecd50, count: -5