uvm_fault(0xfffffd806ef0a970, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND * 77242 30446 0 0 0x4000000 0 syz-executor ktrops(ffff80002a4a2a38,ffffffffffffffff,0,80001b08,fffffd805baad1b8,fffffd807f7d75b0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a4a2a38,ffffffffffffffff,0,80001b08,fffffd805baad1b8,fffffd807f7d75b0) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd805baad1b8,4,1b08,0,ffff80002a4a2a38) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd805baad1b8,4,1b08,0,ffff80002a4a2a38) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a4a2a38,ffff80003760bb80,ffff80003760bad0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff80003760bb80) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb4e6d0f6760, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806ef0a970, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a4a2a38,ffffffffffffffff,0,80001b08,fffffd805baad1b8,fffffd807f7d75b0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a4a2a38,ffffffffffffffff,0,80001b08,fffffd805baad1b8,fffffd807f7d75b0) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd805baad1b8,4,1b08,0,ffff80002a4a2a38) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd805baad1b8,4,1b08,0,ffff80002a4a2a38) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a4a2a38,ffff80003760bb80,ffff80003760bad0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff80003760bb80) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb4e6d0f6760, count: -5 ddb> show registers rdi 0xffff80002f5e6000 rsi 0x226b __ALIGN_SIZE+0x126b rbp 0xffff80003760b8a0 rbx 0xfffffd807f7d75b0 rdx 0xffff80002f5e6000 rcx 0x226a __ALIGN_SIZE+0x126a rax 0xffffffff82e4ca33 ktrops+0x43 r8 0xfffffd805baad1b8 r9 0xfffffd807f7d75b0 r10 0x800fe98452165753 r11 0x3e34942da30524d4 r12 0xffff80002a4a2a38 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0x80001b08 __kernel_virt_to_phys+0x1b08 rip 0xffffffff82e4ca48 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003760b820 ss 0x10 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=77242 pid=30446 tcnt=3 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=84, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a4b0a30,0xffffffff835e5530 process=0xffff80002a5ce6b0 user=0xffff800037606000, vmspace=0xfffffd806ef0a970 estcpu=34, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 30446 68236 13860 0 2 0 syz-executor 30446 370584 13860 0 3 0x4000080 nanoslp syz-executor *30446 77242 13860 0 7 0x4000000 syz-executor 72818 150916 71619 0 3 0x80 nanoslp syz-executor 72818 185366 71619 0 3 0x4000080 ttyin syz-executor 72818 90837 71619 0 3 0x4000080 fsleep syz-executor 16420 340399 34832 0 2 0x490 syz-executor 16420 166363 34832 0 3 0x4000090 fifor syz-executor 16420 241153 34832 0 3 0x4000090 fsleep syz-executor 91661 321746 93976 0 2 0x480 syz-executor 91661 193902 93976 0 3 0x4000080 sbwait syz-executor 91661 33932 93976 0 3 0x4000080 fsleep syz-executor 14570 217996 55745 0 2 0x482 syz-executor 34832 293659 55745 0 2 0x482 syz-executor 12425 117597 55745 0 2 0x2 syz-executor 85749 322369 55745 0 2 0x2 syz-executor 71619 42691 55745 0 2 0x482 syz-executor 13860 506511 55745 0 2 0x482 syz-executor 19716 254108 55745 0 2 0x482 syz-executor 93976 167461 55745 0 3 0x82 nanoslp syz-executor 31877 519908 0 0 3 0x14280 nfsidl nfsio 82114 294806 0 0 3 0x14280 nfsidl nfsio 35039 292524 0 0 3 0x14280 nfsidl nfsio 86518 216516 0 0 3 0x14280 nfsidl nfsio 37344 487135 0 0 3 0x14280 nfsidl nfsio 66434 480897 0 0 3 0x14280 nfsidl nfsio 58136 330849 0 0 3 0x14280 nfsidl nfsio 78506 315681 0 0 3 0x14280 nfsidl nfsio 88657 217280 0 0 3 0x14280 nfsidl nfsio 60227 164112 0 0 3 0x14280 nfsidl nfsio 87893 311345 0 0 3 0x14280 nfsidl nfsio 98764 303952 0 0 3 0x14280 nfsidl nfsio 26849 360514 0 0 3 0x14280 nfsidl nfsio 26439 392036 0 0 3 0x14280 nfsidl nfsio 43627 495668 0 0 3 0x14280 nfsidl nfsio 91271 108738 0 0 3 0x14280 nfsidl nfsio 10147 520318 0 0 3 0x14280 nfsidl nfsio 92218 477641 0 0 3 0x14280 nfsidl nfsio 56972 336233 0 0 3 0x14280 nfsidl nfsio 22672 262129 0 0 3 0x14280 nfsidl nfsio 3043 276394 0 0 3 0x14200 bored sosplice 55745 237795 61047 0 2 0x2 syz-executor 61047 420676 87503 0 3 0x10008a sigsusp ksh 87503 226583 79265 0 3 0x98 kqread sshd-session 79265 155671 97753 0 3 0x92 kqread sshd-session 39308 495270 1 0 3 0x100083 ttyin getty 97753 65991 1 0 3 0x88 kqread sshd 96283 467232 60729 73 2 0x1100010 syslogd 60729 155344 1 0 3 0x100082 sbwait syslogd 58943 178695 1 0 3 0x100080 kqread resolvd 61183 321447 47920 77 3 0x100092 kqread dhcpleased 43214 112147 47920 77 3 0x100092 kqread dhcpleased 47920 283006 1 0 3 0x80 kqread dhcpleased 77663 432104 0 0 3 0x14200 bored smr 94929 41995 0 0 2 0x14200 zerothread 15880 149518 0 0 3 0x14200 aiodoned aiodoned 54381 322257 0 0 3 0x14200 syncer update 29405 296031 0 0 3 0x14200 cleaner cleaner 39019 182513 0 0 3 0x14200 reaper reaper 30858 173542 0 0 3 0x14200 pgdaemon pagedaemon 38460 370784 0 0 3 0x14200 bored viomb 81884 432933 0 0 3 0x40014200 acpi0 acpi0 34065 153450 0 0 3 0x14200 bored softnet3 45004 403982 0 0 3 0x14200 bored softnet2 55443 153677 0 0 3 0x14200 bored softnet1 99629 388031 0 0 2 0x14200 softnet0 85734 66900 0 0 3 0x14200 bored systqmp 43969 127964 0 0 3 0x14200 bored systq 57616 197278 0 0 2 0x40014200 softclock 77723 321060 0 0 3 0x40014200 idle0 1 231944 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10185 11059K 11643K 166960K 12029 0 pcb 17 12K 12K 166960K 110 0 rtable 219 6K 6K 166960K 1152 0 pf 35 14K 14K 166960K 102 0 ifaddr 43 7K 8K 166960K 158 0 ifgroup 54 2K 2K 166960K 172 0 sysctl 3 0K 0K 166960K 3 0 counters 31 17K 17K 166960K 62 0 ioctlops 0 0K 4K 166960K 135 0 iov 0 0K 16K 166960K 42 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1414 89K 89K 166960K 2033 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 9 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 21 0 dirhash 12 2K 2K 166960K 21 0 ACPI 1690 195K 286K 166960K 12468 0 file desc 16 57K 97K 166960K 969 0 sigio 0 0K 0K 166960K 9 0 proc 60 59K 124K 166960K 1193 0 subproc 104 6K 7K 166960K 419 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 148 0 in_multi 99 7K 7K 166960K 394 0 ether_multi 1 0K 0K 166960K 3 0 mrt 1 0K 0K 166960K 2 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 97 440K 440K 166960K 97 0 exec 0 0K 1K 166960K 801 0 pfkey data 0 0K 0K 166960K 33 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 223 72K 90K 166960K 8895 0 UVM aobj 6 2K 2K 166960K 6 0 pinsyscall 37 74K 96K 166960K 2616 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 30 0 NDP 12 0K 1K 166960K 112 0 temp 46 6808K 6942K 166960K 27593 0 kqueue 13 20K 28K 166960K 117 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 252 0 249 3 0 3 3 0 8 2 rtentry 112 402 0 301 4 0 4 4 0 8 0 unpcb 144 590 0 570 9 5 4 6 0 8 3 syncache 336 6 0 6 2 1 1 1 0 8 1 tcpcb 808 286 0 282 11 4 7 7 0 8 6 arp 88 71 0 53 1 0 1 1 0 8 0 ipq 40 2 0 1 2 1 1 1 0 8 0 ipqe 40 6 0 4 2 1 1 1 0 8 0 inpcb 336 876 0 868 10 3 7 7 0 8 6 nd6 104 100 0 74 1 0 1 1 0 8 0 pkpcb 40 3 0 3 2 1 1 1 0 8 1 kcovpl 48 32 0 24 1 0 1 1 0 8 0 ppxss 1072 4 0 4 2 1 1 1 0 8 1 pfstscr 40 1 0 1 1 1 0 1 0 8 0 pfstitem 24 4 0 0 1 0 1 1 0 8 0 pfstkey 128 8 0 5 1 0 1 1 0 8 0 pfstate 344 4 0 2 1 0 1 1 0 8 0 pfrule 1344 1 0 0 1 0 1 1 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 1646 0 1198 31 1 30 30 0 8 2 art_table 32 1648 0 1198 4 0 4 4 0 8 0 art_node 16 400 0 309 1 0 1 1 0 8 0 sysvmsgpl 40 8 0 6 1 0 1 1 0 8 0 semupl 112 2 0 2 1 0 1 1 0 8 1 semapl 112 19 0 9 1 0 1 1 0 8 0 shmpl 112 3 0 0 1 0 1 1 0 8 0 dirhash 1024 23 0 6 3 0 3 3 0 8 0 dino2pl 256 2449 0 900 97 0 97 97 0 8 0 ffsino 240 2449 0 900 92 0 92 92 0 8 0 nchpl 144 3352 0 1630 64 0 64 64 0 8 0 uvmvnodes 80 3075 0 0 63 0 63 63 0 8 0 vnodes 216 3075 0 0 171 0 171 171 0 8 0 namei 1024 13946 0 13945 4 2 2 2 0 8 1 kstatmem 264 86 0 62 2 0 2 2 0 8 0 acpiwqpl 32 2 0 2 1 0 1 1 1 8 1 scsiplug 72 1 0 1 1 0 1 1 0 8 1 scxspl 216 22384 0 22384 10 2 8 8 1 8 8 plimitpl 152 225 0 208 1 0 1 1 0 8 0 sigapl 424 1223 0 1158 8 0 8 8 0 8 0 futexpl 64 8120 0 8117 1 0 1 1 0 8 0 knotepl 120 22691 0 22644 18 8 10 11 0 8 8 kqueuepl 184 228 0 218 4 0 4 4 0 8 3 pipepl 288 284 0 257 8 3 5 5 0 8 2 fdescpl 432 1185 0 1157 5 1 4 5 0 8 0 filepl 120 6440 0 6184 16 3 13 13 0 8 4 lockfpl 104 278 0 275 2 0 2 2 0 8 1 lockfspl 48 68 0 65 1 0 1 1 0 8 0 sessionpl 144 45 0 37 1 0 1 1 0 8 0 pgrppl 48 117 0 101 1 0 1 1 0 8 0 ucredpl 104 708 0 693 1 0 1 1 0 8 0 zombiepl 144 1160 0 1158 1 0 1 1 0 8 0 processpl 1096 1223 0 1158 6 0 6 6 0 8 0 procpl 648 1943 0 1870 8 0 8 8 0 8 1 sosppl 168 4 0 4 1 1 0 1 0 8 0 sockpl 504 1729 0 1698 32 20 12 21 0 8 7 mcl64k 65536 6 0 6 2 1 1 1 0 8 1 mcl16k 16384 1 0 1 1 1 0 1 0 8 0 mcl12k 12288 3 0 3 1 1 0 1 0 8 0 mcl9k 9216 3 0 3 1 1 0 1 0 8 0 mcl8k 8192 15 0 15 2 1 1 1 0 8 1 mcl4k 4096 3422 0 3369 16 8 8 15 0 8 1 mcl2k2 2112 7 0 7 2 1 1 1 0 8 1 mcl2k 2048 1188 0 1184 5 2 3 3 0 8 2 mtagpl 96 16 0 15 1 0 1 1 0 8 0 mbufpl 256 12375 0 12229 22 4 18 19 0 8 7 bufpl 280 7125 0 878 447 0 447 447 0 8 0 anonpl 24 262749 0 259522 68 13 55 55 0 187 25 amapchunkpl 152 29658 0 29171 33 0 33 33 0 158 11 amappl16 200 6437 0 6418 30 16 14 14 0 8 12 amappl15 192 8 0 8 1 1 0 1 0 8 0 amappl14 184 158 0 148 1 0 1 1 0 8 0 amappl13 176 16 0 16 1 1 0 1 0 8 0 amappl12 168 2187 0 2158 3 0 3 3 0 8 1 amappl11 160 76 0 65 1 0 1 1 0 8 0 amappl10 152 11 0 11 1 1 0 1 0 8 0 amappl9 144 122 0 122 1 1 0 1 0 8 0 amappl8 136 21 0 20 1 0 1 1 0 8 0 amappl7 128 151 0 141 1 0 1 1 0 8 0 amappl6 120 479 0 477 1 0 1 1 0 8 0 amappl5 112 223 0 214 1 0 1 1 0 8 0 amappl4 104 373 0 358 1 0 1 1 0 8 0 amappl3 96 5647 0 5538 4 0 4 4 0 8 0 amappl2 88 989 0 929 2 0 2 2 0 8 0 amappl1 80 11154 0 10651 14 2 12 13 0 8 1 amappl 88 8324 0 8155 5 0 5 5 0 92 0 dma65536 65536 1 0 1 1 0 1 1 0 8 1 dma4096 4096 2 0 2 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 5 0 0 1 0 1 1 0 8 0 uaddrrnd 24 1185 0 1157 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1185 0 1157 1 0 1 1 0 8 0 vmmpekpl 168 10161 0 10108 3 0 3 3 0 8 0 vmmpepl 168 80556 0 78888 99 11 88 88 0 357 9 vmsppl 344 1184 0 1157 4 1 3 4 0 8 0 rwobjpl 24 29524 0 25607 27 1 26 26 0 8 0 pdppl 4096 2376 0 2314 126 58 68 82 0 8 6 pvpl 32 644486 0 634679 242 23 219 219 0 265 126 pmappl 216 1184 0 1157 3 0 3 3 0 8 1 extentpl 40 55 0 38 1 0 1 1 0 8 0 phpool 112 470 0 111 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a4a2a38,ffffffffffffffff,0,80001b08,fffffd805baad1b8,fffffd807f7d75b0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a4a2a38,ffffffffffffffff,0,80001b08,fffffd805baad1b8,fffffd807f7d75b0) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd805baad1b8,4,1b08,0,ffff80002a4a2a38) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd805baad1b8,4,1b08,0,ffff80002a4a2a38) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a4a2a38,ffff80003760bb80,ffff80003760bad0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff80003760bb80) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb4e6d0f6760, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a4a2a38,ffffffffffffffff,0,80001b08,fffffd805baad1b8,fffffd807f7d75b0) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a4a2a38,ffffffffffffffff,0,80001b08,fffffd805baad1b8,fffffd807f7d75b0) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd805baad1b8,4,1b08,0,ffff80002a4a2a38) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd805baad1b8,4,1b08,0,ffff80002a4a2a38) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a4a2a38,ffff80003760bb80,ffff80003760bad0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff80003760bb80) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb4e6d0f6760, count: -5