uvm_fault(0xfffffd806cb228b0, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *164328 96028 0 0 0x4000000 0 syz-executor ktrops(ffff80002a7bc2b0,ffffffffffffffff,0,c0000d06,fffffd8063a91b40,fffffd8007bfd888) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bc2b0,ffffffffffffffff,0,c0000d06,fffffd8063a91b40,fffffd8007bfd888) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8063a91b40,4,40000d06,0,ffff80002a7bc2b0) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8063a91b40,4,40000d06,0,ffff80002a7bc2b0) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bc2b0,ffff80003ca0b1d0,ffff80003ca0b120) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca0b1d0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca0b1d0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6c82da67e70, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806cb228b0, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a7bc2b0,ffffffffffffffff,0,c0000d06,fffffd8063a91b40,fffffd8007bfd888) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bc2b0,ffffffffffffffff,0,c0000d06,fffffd8063a91b40,fffffd8007bfd888) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8063a91b40,4,40000d06,0,ffff80002a7bc2b0) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8063a91b40,4,40000d06,0,ffff80002a7bc2b0) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bc2b0,ffff80003ca0b1d0,ffff80003ca0b120) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca0b1d0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca0b1d0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6c82da67e70, count: -5 ddb> show registers rdi 0xffff80002ccec000 rsi 0x975 rbp 0xffff80003ca0aef0 rbx 0xfffffd8007bfd888 rdx 0xffff80002ccec000 rcx 0x974 rax 0xffffffff82836523 ktrops+0x43 r8 0xfffffd8063a91b40 r9 0xfffffd8007bfd888 r10 0xb06500f6dba8fe20 r11 0xf457dd519561fd84 r12 0xffff80002a7bc2b0 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0xc0000d06 rip 0xffffffff82836538 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003ca0ae70 ss 0x10 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=164328 pid=96028 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff800038121cb8,0xffffffff838b0a88 process=0xffff80003c9904a0 user=0xffff80003ca06000, vmspace=0xfffffd806cb228b0 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 96028 432933 25248 0 2 0 syz-executor *96028 164328 25248 0 7 0x4000000 syz-executor 4786 243227 28368 0 2 0xc80 syz-executor 4786 172747 28368 0 3 0x4000080 kqread syz-executor 4786 215774 28368 0 3 0x4000080 fsleep syz-executor 63248 464113 1 0 3 0x82 nanoslp getty 58706 462493 42866 0 3 0x3000 suspend syz-executor 58706 145730 42866 0 2 0x4081000 syz-executor 58706 466636 42866 0 3 0x4081000 inode syz-executor 48319 119925 0 0 3 0x14280 nfsidl nfsio 36977 213049 0 0 3 0x14280 nfsidl nfsio 2357 363126 0 0 3 0x14280 nfsidl nfsio 63888 50588 0 0 3 0x14280 nfsidl nfsio 25756 187942 0 0 3 0x14280 nfsidl nfsio 78836 87080 0 0 3 0x14280 nfsidl nfsio 78140 354966 0 0 3 0x14280 nfsidl nfsio 92942 77684 0 0 3 0x14280 nfsidl nfsio 37296 142914 0 0 3 0x14280 nfsidl nfsio 90644 35975 0 0 3 0x14280 nfsidl nfsio 96750 387694 0 0 3 0x14280 nfsidl nfsio 76993 302542 0 0 3 0x14280 nfsidl nfsio 8503 451535 0 0 3 0x14280 nfsidl nfsio 99655 252486 0 0 3 0x14280 nfsidl nfsio 22368 58417 0 0 3 0x14280 nfsidl nfsio 73883 249910 0 0 3 0x14280 nfsidl nfsio 5583 501137 0 0 3 0x14280 nfsidl nfsio 49113 183049 0 0 3 0x14280 nfsidl nfsio 66567 380989 0 0 3 0x14280 nfsidl nfsio 37518 372616 0 0 3 0x14280 nfsidl nfsio 42866 276456 85488 0 3 0x82 wait syz-executor 9313 508062 85488 0 2 0x2 syz-executor 78115 301429 85488 0 2 0x2 syz-executor 88066 66478 85488 0 2 0x2 syz-executor 48940 374720 85488 0 3 0x82 nanoslp syz-executor 28368 157280 85488 0 3 0x82 nanoslp syz-executor 25248 455153 85488 0 3 0x82 nanoslp syz-executor 10910 474777 85488 0 2 0x2 syz-executor 85488 49932 2208 0 2 0x3 syz-executor 2208 190577 33086 0 3 0x10008a sigsusp ksh 33086 490603 85063 0 3 0x98 kqread sshd-session 85063 467746 58975 0 3 0x92 kqread sshd-session 58975 75867 1 0 3 0x88 kqread sshd 2169 41093 29341 73 3 0x1100090 kqread syslogd 29341 169428 1 0 3 0x100082 sbwait syslogd 13718 502933 1 0 3 0x100080 kqread resolvd 62904 115966 32802 77 3 0x100092 kqread dhcpleased 99938 270618 32802 77 3 0x100092 kqread dhcpleased 32802 68026 1 0 3 0x80 kqread dhcpleased 47102 110951 0 0 3 0x14200 bored smr 34092 236467 0 0 2 0x14200 zerothread 50726 150169 0 0 3 0x14200 aiodoned aiodoned 18449 393569 0 0 3 0x14200 syncer update 11247 243282 0 0 3 0x14200 cleaner cleaner 23471 23812 0 0 3 0x14200 reaper reaper 15980 19972 0 0 3 0x14200 pgdaemon pagedaemon 55253 196859 0 0 3 0x14200 bored viomb 61554 350906 0 0 3 0x40014200 acpi0 acpi0 58447 173849 0 0 3 0x14200 bored softnet0 65974 295961 0 0 3 0x14200 bored systqmp 4622 60976 0 0 3 0x14200 bored systq 79833 250196 0 0 3 0x40014200 tmoslp softclock 83598 436417 0 0 3 0x40014200 idle0 1 220574 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10190 11110K 11501K 166960K 12427 0 pcb 17 14K 15K 166960K 205 0 rtable 261 10K 10K 166960K 467 0 pf 36 14K 17K 166960K 132 0 ifaddr 41 7K 7K 166960K 62 0 ifgroup 58 2K 2K 166960K 92 0 sysctl 2 1K 9K 166960K 9 0 counters 35 18K 18K 166960K 53 0 ioctlops 0 0K 4K 166960K 334 0 iov 0 0K 12K 166960K 22 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1378 87K 87K 166960K 1811 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 2K 6K 166960K 11 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 85 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 14 49K 97K 166960K 563 0 sigio 0 0K 0K 166960K 76 0 proc 63 67K 124K 166960K 533 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 56 0 in_multi 88 6K 7K 166960K 115 0 ether_multi 1 0K 0K 166960K 6 0 mrt 1 0K 0K 166960K 9 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 91 413K 413K 166960K 91 0 exec 0 0K 1K 166960K 393 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 211 151K 168K 166960K 6923 0 UVM aobj 14 8K 8K 166960K 16 0 pinsyscall 35 70K 96K 166960K 1644 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 28 0 NDP 13 0K 2K 166960K 40 0 temp 46 8668K 8738K 166960K 19432 0 kqueue 14 22K 30K 166960K 89 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 142 0 139 3 0 3 3 0 8 2 rtentry 136 126 0 22 4 0 4 4 0 8 0 unpcb 144 439 0 424 6 3 3 4 0 8 2 syncache 336 5 0 5 2 1 1 1 0 8 1 tcpqe 32 3 0 3 1 0 1 1 0 8 1 tcpcb 736 165 0 158 8 6 2 7 0 8 1 arp 96 19 0 3 1 0 1 1 0 8 0 ipq 40 4 0 1 1 0 1 1 0 8 0 ipqe 40 6 0 3 1 0 1 1 0 8 0 inpcb 328 625 0 615 12 5 7 7 0 8 6 ip6q 72 1 0 0 1 0 1 1 0 8 0 ip6af 40 1 0 0 1 0 1 1 0 8 0 nd6 112 26 0 4 1 0 1 1 0 8 0 pkpcb 40 5 0 5 2 1 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 15 0 15 2 1 1 1 0 8 1 pppxif 1384 3 0 3 2 1 1 1 0 8 1 pfstscr 40 1 0 1 1 0 1 1 0 8 1 pfrktable 1344 1 0 0 1 0 1 1 0 8 0 pftag 88 2 0 0 1 0 1 1 0 8 0 pfstitem 24 2 0 0 1 0 1 1 0 8 0 pfstkey 128 3 0 1 1 0 1 1 0 8 0 pfstate 384 2 0 1 1 0 1 1 0 8 0 pfrule 1344 2 0 1 1 0 1 1 0 8 0 rttmr 136 3 0 3 2 1 1 1 0 8 1 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 514 0 72 31 0 31 31 0 8 2 art_table 40 517 0 72 5 0 5 5 0 8 0 art_node 32 126 0 32 1 0 1 1 0 8 0 sysvmsgpl 40 5 0 5 1 0 1 1 0 8 1 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 82 0 72 1 0 1 1 0 8 0 shmpl 112 9 0 1 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 2388 0 892 95 0 95 95 0 8 0 ffsino 256 2388 0 892 95 0 95 95 0 8 0 nchpl 144 3186 0 1498 64 0 64 64 0 8 0 rtmask 32 1 0 1 1 0 1 1 0 8 1 vnodes 216 2753 0 0 153 0 153 153 0 8 0 namei 1024 10094 0 10090 2 1 1 2 0 8 0 vcpupl 3904 3 0 0 1 0 1 1 0 8 0 vmpool 808 4 0 1 1 0 1 1 0 8 0 kstatmem 264 48 0 22 2 0 2 2 0 8 0 scsiplug 72 1 0 1 1 1 0 1 0 8 0 scxspl 216 13447 0 13447 9 1 8 8 1 8 8 plimitpl 152 335 0 317 1 0 1 1 0 8 0 sigapl 424 874 0 815 8 0 8 8 0 8 0 knotepl 120 21655 0 21608 23 13 10 16 0 8 8 kqueuepl 184 199 0 189 4 0 4 4 0 8 3 pipepl 304 149 0 122 3 0 3 3 0 8 0 fdescpl 448 839 0 813 5 1 4 5 0 8 0 filepl 120 4980 0 4771 14 3 11 11 0 8 3 lockfpl 104 182 0 180 1 0 1 1 0 8 0 lockfspl 48 80 0 78 1 0 1 1 0 8 0 sessionpl 144 23 0 16 1 0 1 1 0 8 0 pgrppl 48 35 0 20 1 0 1 1 0 8 0 ucredpl 104 587 0 575 1 0 1 1 0 8 0 zombiepl 144 999 0 997 1 0 1 1 0 8 0 processpl 1152 874 0 815 5 0 5 5 0 8 0 procpl 664 1582 0 1518 8 0 8 8 0 8 1 sosppl 176 3 0 3 1 0 1 1 0 8 1 sockpl 552 1228 0 1200 17 9 8 12 0 8 5 mcl64k 65536 97 0 97 2 1 1 1 0 8 1 mcl9k 9216 1 0 1 1 0 1 1 0 8 1 mcl8k 8192 41 0 41 2 1 1 1 0 8 1 mcl4k 4096 3039 0 2984 15 7 8 15 0 8 1 mcl2k 2048 881 0 876 3 1 2 2 0 8 0 mtagpl 96 18 0 7 1 0 1 1 0 8 0 mbufpl 256 9742 0 9535 23 0 23 23 0 8 8 bufpl 280 5002 0 183 345 0 345 345 0 8 0 anonpl 24 135018 0 128481 78 11 67 67 0 187 25 amapchunkpl 152 22464 0 22054 39 10 29 31 0 158 8 amappl16 200 2210 0 1959 21 6 15 19 0 8 1 amappl15 192 4 0 4 1 1 0 1 0 8 0 amappl14 184 7 0 7 1 1 0 1 0 8 0 amappl13 176 409 0 408 1 0 1 1 0 8 0 amappl12 168 1185 0 1150 2 0 2 2 0 8 0 amappl11 160 6 0 6 1 1 0 1 0 8 0 amappl10 152 42 0 32 1 0 1 1 0 8 0 amappl9 144 264 0 264 1 1 0 1 0 8 0 amappl8 136 19 0 17 1 0 1 1 0 8 0 amappl7 128 76 0 75 1 0 1 1 0 8 0 amappl6 120 261 0 249 1 0 1 1 0 8 0 amappl5 112 78 0 71 1 0 1 1 0 8 0 amappl4 104 476 0 453 1 0 1 1 0 8 0 amappl3 96 4173 0 4084 4 0 4 4 0 8 0 amappl2 88 517 0 461 2 0 2 2 0 8 0 amappl1 80 10861 0 10340 14 1 13 14 0 8 0 amappl 88 6143 0 6001 6 1 5 5 0 92 0 uvmvnodes 80 105 0 0 3 0 3 3 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 7 0 7 2 1 1 1 0 8 1 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 7 0 7 2 1 1 1 0 8 1 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 15 0 2 1 0 1 1 0 8 0 uaddrrnd 24 839 0 813 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 839 0 813 1 0 1 1 0 8 0 vmmpekpl 168 8239 0 8206 2 0 2 2 0 8 0 vmmpepl 168 59448 0 57599 95 0 95 95 0 357 4 vmsppl 368 838 0 813 4 1 3 4 0 8 0 rwobjpl 40 18096 0 16938 14 0 14 14 0 8 0 pdppl 4096 1693 0 1631 101 31 70 83 0 8 8 pvpl 32 364087 0 352653 162 24 138 138 0 265 37 pmappl 216 842 0 814 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 399 0 53 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a7bc2b0,ffffffffffffffff,0,c0000d06,fffffd8063a91b40,fffffd8007bfd888) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bc2b0,ffffffffffffffff,0,c0000d06,fffffd8063a91b40,fffffd8007bfd888) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8063a91b40,4,40000d06,0,ffff80002a7bc2b0) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8063a91b40,4,40000d06,0,ffff80002a7bc2b0) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bc2b0,ffff80003ca0b1d0,ffff80003ca0b120) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca0b1d0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca0b1d0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6c82da67e70, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a7bc2b0,ffffffffffffffff,0,c0000d06,fffffd8063a91b40,fffffd8007bfd888) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a7bc2b0,ffffffffffffffff,0,c0000d06,fffffd8063a91b40,fffffd8007bfd888) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8063a91b40,4,40000d06,0,ffff80002a7bc2b0) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8063a91b40,4,40000d06,0,ffff80002a7bc2b0) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a7bc2b0,ffff80003ca0b1d0,ffff80003ca0b120) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca0b1d0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca0b1d0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x6c82da67e70, count: -5