uvm_fault(0xfffffd806ba7b010, 0x18, 0, 1) -> e kernel: page fault trap, code=0 Stopped at mtx_enter+0x59: movq 0(%r14),%rax TID PID UID PRFLAGS PFLAGS CPU COMMAND *336978 51355 0 0 0x4000000 0 syz-executor mtx_enter(18) at mtx_enter+0x59 sys/kern/kern_lock.c:335 clockintr_unbind(ffff800001429330,1) at clockintr_unbind+0x56 sys/kern/kern_clockintr.c:375 dt_ioctl_record_stop(ffff800001574880) at dt_ioctl_record_stop+0xbc sys/dev/dt/dt_dev.c:576 dtclose(21e5f,81,2000,ffff80003c992a68) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,81,2000,ffff80003c992a68) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003c985150) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8068852450,81,fffffd8007bfb888,ffff80003c992a68) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd800b4a2268,ffff80003c992a68) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd800b4a2268,ffff80003c992a68) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd800b4a2268,ffff80003c992a68) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd800b4a2268,ffff80003c992a68) at closef+0x190 sys/kern/kern_descrip.c:1251 syscall(ffff80003c9853b0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9853b0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x501912ada40, count: 4 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806ba7b010, 0x18, 0, 1) -> e ddb> trace mtx_enter(18) at mtx_enter+0x59 sys/kern/kern_lock.c:335 clockintr_unbind(ffff800001429330,1) at clockintr_unbind+0x56 sys/kern/kern_clockintr.c:375 dt_ioctl_record_stop(ffff800001574880) at dt_ioctl_record_stop+0xbc sys/dev/dt/dt_dev.c:576 dtclose(21e5f,81,2000,ffff80003c992a68) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,81,2000,ffff80003c992a68) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003c985150) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8068852450,81,fffffd8007bfb888,ffff80003c992a68) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd800b4a2268,ffff80003c992a68) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd800b4a2268,ffff80003c992a68) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd800b4a2268,ffff80003c992a68) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd800b4a2268,ffff80003c992a68) at closef+0x190 sys/kern/kern_descrip.c:1251 syscall(ffff80003c9853b0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9853b0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x501912ada40, count: -11 ddb> show registers rdi 0 rsi 0 rbp 0xffff80003c985000 rbx 0xffffffff81f6f020 dtclose rdx 0 rcx 0xffff80003c992a68 rax 0xffff80003c992a68 r8 0xffffffff82c6c730 uvm_map_inentry_sp r9 0x1 r10 0 r11 0x331c08e57b6c5394 r12 0 r13 0 r14 0x18 r15 0 rip 0xffffffff81bf1599 mtx_enter+0x59 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c984fd0 ss 0x10 mtx_enter+0x59: movq 0(%r14),%rax ddb> show proc PROC (syz-executor) tid=336978 pid=51355 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=50, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80003c992cf8,0xffff80003c9927e8 process=0xffff80003c98b240 user=0xffff80003c980000, vmspace=0xfffffd806ba7b010 estcpu=36, cpticks=2, pctcpu=0.0, user=0, sys=2, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 51355 140251 25270 0 2 0 syz-executor *51355 336978 25270 0 7 0x4000000 syz-executor 51355 12080 25270 0 3 0x4000080 fsleep syz-executor 15698 109322 19707 0 2 0 syz-executor 15698 214175 19707 0 3 0x4000080 fsleep syz-executor 15698 521487 19707 0 3 0x4000080 fsleep syz-executor 79220 387536 5416 0 2 0 syz-executor 79220 90468 5416 0 3 0x4000080 netcon syz-executor 96763 16388 9060 0 3 0x80 nanoslp syz-executor 96763 350667 9060 0 3 0x4000080 kqsel syz-executor 96763 92754 9060 0 3 0x4000080 fsleep syz-executor 63064 98645 11098 0 3 0x80 nanoslp syz-executor 63064 411421 11098 0 3 0x4000080 netcon syz-executor 63064 294759 11098 0 3 0x4000080 fsleep syz-executor 99583 360809 44985 0 3 0x80 fsleep syz-executor 99583 490637 44985 0 3 0x4000080 fsleep syz-executor 99583 234172 44985 0 3 0x4000080 fsleep syz-executor 99583 458689 44985 0 3 0x4000080 kqsel syz-executor 78171 191920 12822 0 3 0x80 fsleep syz-executor 78171 166940 12822 0 2 0x4000000 syz-executor 23254 32505 0 0 3 0x14200 bored sosplice 12822 476023 23717 0 3 0x82 nanoslp syz-executor 9060 286153 23717 0 3 0x82 nanoslp syz-executor 19707 341833 23717 0 3 0x82 nanoslp syz-executor 25270 366703 23717 0 3 0x82 nanoslp syz-executor 11098 296691 23717 0 3 0x82 nanoslp syz-executor 5416 358471 23717 0 3 0x82 nanoslp syz-executor 44985 362318 23717 0 3 0x82 nanoslp syz-executor 89933 186044 23717 0 3 0x82 nanoslp syz-executor 23717 312996 87788 0 3 0x82 kqread syz-executor 87788 264360 11677 0 3 0x10008a sigsusp ksh 11677 180429 1628 0 3 0x98 kqread sshd-session 1628 475900 16435 0 3 0x92 kqread sshd-session 37656 124900 1 0 3 0x100083 ttyin getty 16435 109591 1 0 3 0x88 kqread sshd 99239 47111 46029 73 3 0x1100090 kqread syslogd 46029 416430 1 0 3 0x100082 sbwait syslogd 13399 71428 1 0 3 0x100080 kqread resolvd 49331 138914 62005 77 3 0x100092 kqread dhcpleased 3320 81083 62005 77 3 0x100092 kqread dhcpleased 62005 170674 1 0 3 0x80 kqread dhcpleased 60840 121908 0 0 3 0x14200 bored smr 88200 284222 0 0 2 0x14200 zerothread 20177 510831 0 0 3 0x14200 aiodoned aiodoned 49862 179118 0 0 3 0x14200 syncer update 46854 30006 0 0 3 0x14200 cleaner cleaner 39442 208524 0 0 3 0x14200 reaper reaper 2592 443547 0 0 3 0x14200 pgdaemon pagedaemon 53105 449671 0 0 3 0x14200 bored viomb 71414 298181 0 0 3 0x40014200 acpi0 acpi0 49722 294279 0 0 3 0x14200 bored softnet7 68296 83702 0 0 3 0x14200 bored softnet6 95883 497633 0 0 3 0x14200 bored softnet5 63138 324102 0 0 3 0x14200 bored softnet4 79488 227752 0 0 3 0x14200 bored softnet3 74356 86929 0 0 3 0x14200 bored softnet2 16468 164498 0 0 3 0x14200 bored softnet1 40968 62889 0 0 3 0x14200 bored softnet0 5878 467484 0 0 3 0x14200 bored systqmp 3011 426549 0 0 3 0x14200 bored systq 32476 192861 0 0 3 0x40014200 tmoslp softclock 33375 27177 0 0 3 0x40014200 idle0 1 69189 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10237 11227K 11304K 166960K 12046 0 pcb 17 12K 12K 166960K 71 0 rtable 175 6K 6K 166960K 470 0 pf 31 13K 15K 166960K 63 0 ifaddr 38 6K 8K 166960K 64 0 ifgroup 48 2K 2K 166960K 89 0 sysctl 4 1K 9K 166960K 8 0 counters 32 17K 18K 166960K 55 0 ioctlops 0 0K 4K 166960K 87 0 iov 0 0K 16K 166960K 17 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1432 90K 90K 166960K 1695 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 6 0 VM map 2 1K 1K 166960K 2 0 sem 7 0K 0K 166960K 7 0 dirhash 12 2K 2K 166960K 18 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 97K 166960K 421 0 sigio 0 0K 0K 166960K 2 0 proc 60 59K 116K 166960K 491 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 41 0 in_multi 86 6K 7K 166960K 115 0 ether_multi 1 0K 0K 166960K 1 0 mrt 0 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 235 1049K 1049K 166960K 235 0 exec 0 0K 1K 166960K 373 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 239 155K 160K 166960K 5276 0 UVM aobj 11 2K 2K 166960K 12 0 pinsyscall 39 78K 96K 166960K 1458 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 19 0 NDP 11 0K 2K 166960K 40 0 temp 49 8664K 8730K 166960K 9502 0 kqueue 14 22K 28K 166960K 80 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 124 0 121 1 0 1 1 0 8 0 rtentry 136 112 0 42 4 0 4 4 0 8 0 unpcb 144 273 0 192 3 0 3 3 0 8 0 syncache 336 4 0 4 1 0 1 1 0 8 1 tcpcb 736 78 0 72 1 0 1 1 0 8 0 arp 88 12 0 3 1 0 1 1 0 8 0 inpcb 328 395 0 384 8 0 8 8 0 8 6 ip6q 72 1 0 1 1 0 1 1 0 8 1 ip6af 40 2 0 2 1 0 1 1 0 8 1 nd6 104 18 0 4 1 0 1 1 0 8 0 pkpcb 40 1 0 1 1 0 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 18 0 17 1 0 1 1 0 8 0 pppxif 1384 4 0 4 1 0 1 1 0 8 1 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 530 0 166 30 0 30 30 0 8 3 art_table 40 532 0 166 5 0 5 5 0 8 0 art_node 32 112 0 50 1 0 1 1 0 8 0 sysvmsgpl 40 8 0 2 1 0 1 1 0 8 0 semapl 112 5 0 0 1 0 1 1 0 8 0 shmpl 112 9 0 1 1 0 1 1 0 8 0 dirhash 1024 21 0 4 3 0 3 3 0 8 0 dino2pl 256 2091 0 595 95 0 95 95 0 8 0 ffsino 256 2091 0 595 95 0 95 95 0 8 0 nchpl 144 2656 0 970 63 0 63 63 0 8 0 rtmask 32 2 0 2 1 0 1 1 0 8 1 uvmvnodes 80 2408 0 0 50 0 50 50 0 8 0 vnodes 216 2408 0 0 134 0 134 134 0 8 0 namei 1024 8798 0 8798 2 0 2 2 0 8 2 kstatmem 264 46 0 24 2 0 2 2 0 8 0 scsiplug 72 2 0 2 1 0 1 1 0 8 1 scxspl 216 10832 0 10832 8 0 8 8 1 8 8 plimitpl 152 167 0 149 1 0 1 1 0 8 0 sigapl 424 727 0 676 9 0 9 9 0 8 2 knotepl 120 14086 0 14037 9 0 9 9 0 8 6 kqueuepl 184 319 0 242 4 0 4 4 0 8 0 pipepl 304 154 0 127 5 0 5 5 0 8 2 fdescpl 448 686 0 656 5 0 5 5 0 8 1 filepl 120 3664 0 3316 11 0 11 11 0 8 0 lockfpl 104 181 0 178 1 0 1 1 0 8 0 lockfspl 48 56 0 53 1 0 1 1 0 8 0 sessionpl 144 22 0 14 1 0 1 1 0 8 0 pgrppl 48 36 0 20 1 0 1 1 0 8 0 ucredpl 104 445 0 433 1 0 1 1 0 8 0 zombiepl 144 677 0 676 1 0 1 1 0 8 0 processpl 1168 727 0 676 6 0 6 6 0 8 1 procpl 656 1160 0 1096 8 0 8 8 0 8 2 sosppl 168 2 0 2 1 0 1 1 0 8 1 sockpl 552 803 0 708 8 0 8 8 0 8 1 mcl64k 65536 13 0 13 1 0 1 1 0 8 1 mcl9k 9216 1 0 1 1 0 1 1 0 8 1 mcl8k 8192 9 0 9 1 0 1 1 0 8 1 mcl4k 4096 2822 0 2773 14 0 14 14 0 8 7 mcl2k2 2112 1 0 1 1 0 1 1 0 8 1 mcl2k 2048 709 0 706 5 0 5 5 0 8 3 mtagpl 96 76 0 5 2 0 2 2 0 8 0 mbufpl 256 7485 0 7248 21 0 21 21 0 8 4 bufpl 280 4342 0 118 302 0 302 302 0 8 0 anonpl 24 134326 0 127101 48 0 48 48 0 187 4 amapchunkpl 152 16784 0 16259 26 0 26 26 0 158 5 amappl16 200 2410 0 2142 15 0 15 15 0 8 0 amappl15 192 13 0 13 1 0 1 1 0 8 1 amappl14 184 105 0 95 1 0 1 1 0 8 0 amappl13 176 3 0 3 1 0 1 1 0 8 1 amappl12 168 1307 0 1276 3 0 3 3 0 8 1 amappl11 160 44 0 34 1 0 1 1 0 8 0 amappl10 152 16 0 15 1 0 1 1 0 8 0 amappl9 144 258 0 258 1 0 1 1 0 8 1 amappl8 136 25 0 24 1 0 1 1 0 8 0 amappl7 128 99 0 89 1 0 1 1 0 8 0 amappl6 120 173 0 169 1 0 1 1 0 8 0 amappl5 112 115 0 109 1 0 1 1 0 8 0 amappl4 104 266 0 251 1 0 1 1 0 8 0 amappl3 96 3050 0 2936 3 0 3 3 0 8 0 amappl2 88 621 0 566 2 0 2 2 0 8 0 amappl1 80 9196 0 8649 13 0 13 13 0 8 1 amappl 88 4574 0 4399 5 0 5 5 0 92 1 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 254 0 254 1 0 1 1 0 8 1 dma64 64 7 0 7 1 0 1 1 0 8 1 dma32 32 8 0 8 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 11 0 1 1 0 1 1 0 8 0 uaddrrnd 24 686 0 656 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 686 0 656 1 0 1 1 0 8 0 vmmpekpl 168 6937 0 6913 2 0 2 2 0 8 0 vmmpepl 168 48874 0 46735 94 0 94 94 0 357 0 vmsppl 368 685 0 656 4 0 4 4 0 8 1 rwobjpl 40 17875 0 14364 36 0 36 36 0 8 0 pdppl 4096 1379 0 1312 101 34 67 83 0 8 0 pvpl 32 320912 0 308153 117 0 117 117 0 265 5 pmappl 216 685 0 656 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 390 0 34 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace mtx_enter(18) at mtx_enter+0x59 sys/kern/kern_lock.c:335 clockintr_unbind(ffff800001429330,1) at clockintr_unbind+0x56 sys/kern/kern_clockintr.c:375 dt_ioctl_record_stop(ffff800001574880) at dt_ioctl_record_stop+0xbc sys/dev/dt/dt_dev.c:576 dtclose(21e5f,81,2000,ffff80003c992a68) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,81,2000,ffff80003c992a68) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003c985150) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8068852450,81,fffffd8007bfb888,ffff80003c992a68) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd800b4a2268,ffff80003c992a68) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd800b4a2268,ffff80003c992a68) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd800b4a2268,ffff80003c992a68) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd800b4a2268,ffff80003c992a68) at closef+0x190 sys/kern/kern_descrip.c:1251 syscall(ffff80003c9853b0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9853b0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x501912ada40, count: -11 ddb> machine ddbcpu 1 No such command ddb> trace mtx_enter(18) at mtx_enter+0x59 sys/kern/kern_lock.c:335 clockintr_unbind(ffff800001429330,1) at clockintr_unbind+0x56 sys/kern/kern_clockintr.c:375 dt_ioctl_record_stop(ffff800001574880) at dt_ioctl_record_stop+0xbc sys/dev/dt/dt_dev.c:576 dtclose(21e5f,81,2000,ffff80003c992a68) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(21e5f,81,2000,ffff80003c992a68) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003c985150) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8068852450,81,fffffd8007bfb888,ffff80003c992a68) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd800b4a2268,ffff80003c992a68) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd800b4a2268,ffff80003c992a68) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd800b4a2268,ffff80003c992a68) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd800b4a2268,ffff80003c992a68) at closef+0x190 sys/kern/kern_descrip.c:1251 syscall(ffff80003c9853b0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c9853b0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x501912ada40, count: -11