uvm_fault(0xffffffff81fb1c50, 0x7f8616b00c00, 0, 2) -> e kernel: page fault trap, code=0 Stopped at pmap_page_remove+0x2a5: xchgq %rax,0(%r12,%rcx,1) ddb{1}> ddb{1}> set $lines = 0 ddb{1}> show panic kernel page fault uvm_fault(0xffffffff81fb1c50, 0x7f8616b00c00, 0, 2) -> e pmap_page_remove(f0477d7bf1cca662) at pmap_page_remove+0x2a5 _atomic_swap_64 sys/arch/amd64/compile/SYZKALLER/obj/machine/atomic.h:117 [inline] pmap_page_remove(f0477d7bf1cca662) at pmap_page_remove+0x2a5 sys/arch/amd64/amd64/pmap.c:1766 end trace frame: 0xffff800021037900, count: 0 ddb{1}> trace pmap_page_remove(f0477d7bf1cca662) at pmap_page_remove+0x2a5 _atomic_swap_64 sys/arch/amd64/compile/SYZKALLER/obj/machine/atomic.h:117 [inline] pmap_page_remove(f0477d7bf1cca662) at pmap_page_remove+0x2a5 sys/arch/amd64/amd64/pmap.c:1766 uvm_anfree(48ca45f0e5d7b5bf) at uvm_anfree+0x3f sys/uvm/uvm_anon.c:104 amap_wipeout(53c8c2395ceca105) at amap_wipeout+0x12d sys/uvm/uvm_amap.c:455 uvm_unmap_detach(11e2ae397f3825b3,0) at uvm_unmap_detach+0xc7 sys/uvm/uvm_map.c:1549 uvm_map_teardown(7e56edfdc576edf1) at uvm_map_teardown+0x22c sys/uvm/uvm_map.c:2650 uvmspace_free(ab357901857d1082) at uvmspace_free+0x65 sys/uvm/uvm_map.c:3501 uvm_exit(aaa60f7cc0752a35) at uvm_exit+0x27 sys/uvm/uvm_glue.c:297 reaper(0) at reaper+0x163 sys/kern/kern_exit.c:431 end trace frame: 0x0, count: -8 ddb{1}> show registers rdi 0xa rsi 0 rbp 0xffff8000210378d0 rbx 0xffffff007f123800 rdx 0x1 rcx 0x7f8000000000 rax 0 r8 0xffffff0005d08900 r9 0 r10 0 r11 0x9a872d84120dc5a8 r12 0x616b00c00 r13 0xffffff00611c5708 r14 0x800000007f7be000 r15 0xffffff0005d07f68 rip 0xffffffff81068fe5 pmap_page_remove+0x2a5 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800021037870 ss 0x10 pmap_page_remove+0x2a5: xchgq %rax,0(%r12,%rcx,1) ddb{1}> show proc PROC (reaper) pid=474640 stat=onproc flags process=14000 proc=200 pri=84, usrpri=84, nice=20 forw=0xffffffffffffffff, list=0xffff800020ff1518,0xffff800020ff1c30 process=0xffff80002102a698 user=0xffff800021032000, vmspace=0xffffffff81fb1c50 estcpu=34, cpticks=3, pctcpu=54.70 user=0, sys=3, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 14749 464078 66992 65534 3 0x90 wait syz-executor0 66992 387085 13620 0 3 0x82 wait syz-executor0 71761 363084 1 65534 2 0x90 syz-executor1 32303 411829 0 0 3 0x14200 bored sosplice 13620 401373 72587 0 3 0x82 thrsleep syz-fuzzer 13620 19359 72587 0 3 0x4000082 thrsleep syz-fuzzer 13620 373627 72587 0 3 0x4000082 thrsleep syz-fuzzer 13620 432913 72587 0 3 0x4000082 thrsleep syz-fuzzer 13620 491839 72587 0 3 0x4000082 thrsleep syz-fuzzer 13620 5141 72587 0 3 0x4000082 thrsleep syz-fuzzer 13620 223119 72587 0 3 0x4000082 thrsleep syz-fuzzer 13620 42790 72587 0 3 0x4000082 kqread syz-fuzzer 13620 465846 72587 0 3 0x4000082 thrsleep syz-fuzzer 13620 449320 72587 0 3 0x4000082 thrsleep syz-fuzzer 72587 98135 36496 0 3 0x10008a pause ksh 36496 491094 24595 0 3 0x92 select sshd 74543 333582 1 0 3 0x100083 ttyin getty 24595 131557 1 0 3 0x80 select sshd 8616 274963 23366 73 7 0x100010 syslogd 23366 7946 1 0 3 0x100082 netio syslogd 91711 323423 1 77 3 0x100090 poll dhclient 81070 165532 1 0 3 0x80 poll dhclient 35129 500463 0 0 3 0x14200 pgzero zerothread 9891 231710 0 0 3 0x14200 aiodoned aiodoned 75704 506191 0 0 3 0x14200 syncer update 68252 24701 0 0 3 0x14200 cleaner cleaner *90367 474640 0 0 7 0x14200 reaper 23554 273007 0 0 3 0x14200 pgdaemon pagedaemon 32198 384633 0 0 3 0x14200 bored crynlk 82648 90553 0 0 3 0x14200 bored crypto 14510 486584 0 0 3 0x40014200 acpi0 acpi0 66246 464238 0 0 3 0x40014200 idle1 21824 501727 0 0 2 0x14200 softnet 81147 469006 0 0 3 0x14200 bored systqmp 25597 433040 0 0 3 0x14200 bored systq 72671 186814 0 0 3 0x40014200 bored softclock 71844 320859 0 0 3 0x40014200 idle0 1 498158 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper