uvm_fault(0xfffffd806ba34b90, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND * 16634 86160 0 0 0x4000000 0 syz-executor ktrops(ffff80002f101770,ffffffffffffffff,0,80001d24,fffffd806c16f110,fffffd8007bfb888) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002f101770,ffffffffffffffff,0,80001d24,fffffd806c16f110,fffffd8007bfb888) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd806c16f110,4,1d24,0,ffff80002f101770) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd806c16f110,4,1d24,0,ffff80002f101770) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002f101770,ffff80003c989e80,ffff80003c989dd0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c989e80) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c989e80) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4a03f9f5750, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806ba34b90, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002f101770,ffffffffffffffff,0,80001d24,fffffd806c16f110,fffffd8007bfb888) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002f101770,ffffffffffffffff,0,80001d24,fffffd806c16f110,fffffd8007bfb888) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd806c16f110,4,1d24,0,ffff80002f101770) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd806c16f110,4,1d24,0,ffff80002f101770) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002f101770,ffff80003c989e80,ffff80003c989dd0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c989e80) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c989e80) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4a03f9f5750, count: -5 ddb> show registers rdi 0xffff80002f101770 rsi 0xffffffffffffffff rbp 0xffff80003c989ba0 rbx 0xfffffd8007bfb888 rdx 0 rcx 0x80001d24 __kernel_virt_to_phys+0x1d24 rax 0xffff80002f101770 r8 0xfffffd806c16f110 r9 0xfffffd8007bfb888 r10 0x51c207e4a097495b r11 0x740df0cc727763bb r12 0xffff80002f101770 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0x80001d24 __kernel_virt_to_phys+0x1d24 rip 0xffffffff82949858 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c989b20 ss 0 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=16634 pid=86160 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002f101a08,0xffff80002f100d20 process=0xffff8000ffffa898 user=0xffff80003c984000, vmspace=0xfffffd806ba34b90 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 15933 210866 23655 0 2 0 syz-executor 86160 148308 38720 0 2 0 syz-executor *86160 16634 38720 0 7 0x4000000 syz-executor 89605 429128 5057 0 2 0 syz-executor 89605 434276 5057 0 3 0x4000080 fsleep syz-executor 89605 132381 5057 0 3 0x4000080 fsleep syz-executor 47591 347347 91748 0 2 0 syz-executor 47591 45385 91748 0 2 0x4000000 syz-executor 32599 116540 2369 0 2 0 syz-executor 32599 22227 2369 0 2 0x4000000 syz-executor 32599 43512 2369 0 3 0x4000080 fsleep syz-executor 2469 200407 87839 0 2 0 syz-executor 2469 371167 87839 0 3 0x4000080 ttyout syz-executor 2469 102489 87839 0 3 0x4000080 fsleep syz-executor 2469 145918 87839 0 2 0x4000000 syz-executor 2469 22157 87839 0 2 0x4000000 syz-executor 2469 400103 87839 0 3 0x4000080 fsleep syz-executor 87839 467179 42437 0 2 0xc82 syz-executor 96385 260288 42437 0 2 0x2 syz-executor 23655 396277 42437 0 3 0x82 nanoslp syz-executor 5057 425246 42437 0 2 0xc82 syz-executor 78451 210458 42437 0 2 0x2 syz-executor 38720 199786 42437 0 2 0xc82 syz-executor 91748 494980 42437 0 2 0xc82 syz-executor 2369 347971 42437 0 2 0xc82 syz-executor 42437 2305 96782 0 3 0x82 kqread syz-executor 96782 332172 32220 0 3 0x10008a sigsusp ksh 32220 27602 30054 0 3 0x98 kqread sshd-session 30054 519771 86538 0 3 0x92 kqread sshd-session 69252 13748 1 0 3 0x100083 ttyin getty 86538 518633 1 0 3 0x88 kqread sshd 80360 322857 72150 73 3 0x1100090 kqread syslogd 72150 242228 1 0 3 0x100082 sbwait syslogd 39141 391631 1 0 3 0x100080 kqread resolvd 2507 29576 294 77 3 0x100092 kqread dhcpleased 81392 272236 294 77 3 0x100092 kqread dhcpleased 294 16742 1 0 3 0x80 kqread dhcpleased 96328 84322 0 0 3 0x14200 bored smr 84799 143615 0 0 2 0x14200 zerothread 72630 361711 0 0 3 0x14200 aiodoned aiodoned 3695 355210 0 0 3 0x14200 syncer update 35243 356746 0 0 3 0x14200 cleaner cleaner 87172 53658 0 0 3 0x14200 reaper reaper 19221 283367 0 0 3 0x14200 pgdaemon pagedaemon 76886 459192 0 0 3 0x14200 bored viomb 26403 146021 0 0 3 0x40014200 acpi0 acpi0 51218 120475 0 0 3 0x14200 bored softnet0 16157 23076 0 0 3 0x14200 bored systqmp 95835 9200 0 0 3 0x14200 bored systq 21997 479910 0 0 3 0x40014200 tmoslp softclock 60955 63591 0 0 3 0x40014200 idle0 1 414616 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10180 11124K 11276K 166960K 11389 0 pcb 21 12K 12K 166960K 50 0 rtable 218 7K 7K 166960K 288 0 pf 30 12K 14K 166960K 47 0 ifaddr 42 7K 7K 166960K 52 0 ifgroup 50 2K 2K 166960K 63 0 sysctl 3 1K 9K 166960K 9 0 counters 32 17K 18K 166960K 106 0 ioctlops 0 0K 4K 166960K 116 0 iov 1 0K 12K 166960K 9 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1401 88K 89K 166960K 1521 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 4 0 VM map 2 1K 1K 166960K 2 0 sem 5 0K 0K 166960K 5 0 dirhash 12 2K 2K 166960K 21 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 57K 97K 166960K 257 0 sigio 0 0K 0K 166960K 1 0 proc 60 59K 91K 166960K 487 0 subproc 72 4K 4K 166960K 73 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 1 0K 0K 166960K 18 0 in_multi 99 7K 7K 166960K 105 0 ether_multi 1 0K 0K 166960K 3 0 mrt 1 0K 0K 166960K 2 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 67 307K 307K 166960K 67 0 exec 0 0K 1K 166960K 357 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 218 159K 168K 166960K 3795 0 UVM aobj 7 2K 2K 166960K 8 0 pinsyscall 37 74K 94K 166960K 1284 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 3 0 NDP 11 0K 2K 166960K 32 0 temp 76 8644K 8772K 166960K 4562 0 kqueue 13 20K 31K 166960K 55 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 42 0 38 1 0 1 1 0 8 0 rtentry 136 99 0 4 4 0 4 4 0 8 0 unpcb 144 106 0 91 2 0 2 2 0 8 1 syncache 336 4 0 4 1 0 1 1 0 8 1 tcpcb 736 109 0 105 7 0 7 7 0 8 6 arp 96 11 0 0 1 0 1 1 0 8 0 inpcb 328 211 0 200 7 0 7 7 0 8 5 ip6q 72 1 0 0 1 0 1 1 0 8 0 ip6af 40 1 0 0 1 0 1 1 0 8 0 nd6 112 16 0 0 1 0 1 1 0 8 0 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 73 0 73 1 0 1 1 0 8 1 pppxif 1384 1 0 1 1 0 1 1 0 8 1 pfrktable 1344 1 0 1 1 0 1 1 0 8 1 pftag 88 1 0 0 1 0 1 1 0 8 0 pfrule 1344 3 0 3 1 0 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 442 0 6 28 0 28 28 0 8 0 art_table 40 443 0 6 5 0 5 5 0 8 0 art_node 32 97 0 12 1 0 1 1 0 8 0 semapl 112 3 0 0 1 0 1 1 0 8 0 shmpl 112 5 0 1 1 0 1 1 0 8 0 dirhash 1024 23 0 6 3 0 3 3 0 8 0 dino2pl 256 1819 0 317 95 0 95 95 0 8 0 ffsino 256 1819 0 317 95 0 95 95 0 8 0 nchpl 144 2185 0 501 63 0 63 63 0 8 0 rtmask 32 3 0 3 1 0 1 1 0 8 1 uvmvnodes 80 2008 0 0 41 0 41 41 0 8 0 vnodes 216 2008 0 0 112 0 112 112 0 8 0 namei 1024 6842 0 6840 2 0 2 2 0 8 1 kstatmem 264 32 0 10 2 0 2 2 0 8 0 scxspl 216 8534 0 8534 8 0 8 8 1 8 8 plimitpl 152 109 0 92 1 0 1 1 0 8 0 sigapl 424 532 0 491 6 0 6 6 0 8 1 knotepl 120 8203 0 8156 14 4 10 14 0 8 8 kqueuepl 184 135 0 125 1 0 1 1 0 8 0 pipepl 304 108 0 80 3 0 3 3 0 8 0 fdescpl 448 519 0 491 5 0 5 5 0 8 1 filepl 120 2123 0 1903 11 0 11 11 0 8 3 lockfpl 104 37 0 35 1 0 1 1 0 8 0 lockfspl 48 17 0 15 1 0 1 1 0 8 0 sessionpl 144 22 0 14 1 0 1 1 0 8 0 pgrppl 48 31 0 15 1 0 1 1 0 8 0 ucredpl 104 157 0 146 1 0 1 1 0 8 0 zombiepl 144 491 0 491 1 0 1 1 0 8 1 processpl 1152 532 0 491 4 0 4 4 0 8 0 procpl 664 723 0 671 6 0 6 6 0 8 1 sockpl 552 364 0 333 8 0 8 8 0 8 5 mcl64k 65536 13 0 12 1 0 1 1 0 8 0 mcl16k 16384 1 0 1 1 0 1 1 0 8 1 mcl8k 8192 6 0 6 1 0 1 1 0 8 1 mcl4k 4096 2629 0 2578 13 0 13 13 0 8 5 mcl2k 2048 315 0 311 1 0 1 1 0 8 0 mtagpl 96 6 0 6 1 0 1 1 0 8 1 mbufpl 256 4968 0 4811 12 0 12 12 0 8 1 bufpl 280 4149 0 117 288 0 288 288 0 8 0 anonpl 24 115432 0 108298 45 0 45 45 0 187 0 amapchunkpl 152 11698 0 11243 25 0 25 25 0 158 4 amappl16 200 2256 0 1986 15 0 15 15 0 8 0 amappl15 192 15 0 15 1 0 1 1 0 8 1 amappl14 184 108 0 98 1 0 1 1 0 8 0 amappl13 176 10 0 10 1 0 1 1 0 8 1 amappl12 168 1128 0 1101 3 0 3 3 0 8 1 amappl11 160 43 0 33 1 0 1 1 0 8 0 amappl10 152 7 0 7 1 0 1 1 0 8 1 amappl9 144 250 0 250 1 0 1 1 0 8 1 amappl8 136 49 0 47 1 0 1 1 0 8 0 amappl7 128 120 0 110 1 0 1 1 0 8 0 amappl6 120 174 0 170 1 0 1 1 0 8 0 amappl5 112 111 0 105 1 0 1 1 0 8 0 amappl4 104 280 0 264 1 0 1 1 0 8 0 amappl3 96 1865 0 1781 3 0 3 3 0 8 0 amappl2 88 764 0 696 2 0 2 2 0 8 0 amappl1 80 8504 0 7969 13 0 13 13 0 8 0 amappl 88 3134 0 2982 5 0 5 5 0 92 1 dma8192 8192 1 0 1 1 0 1 1 0 8 1 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 7 0 1 1 0 1 1 0 8 0 uaddrrnd 24 519 0 491 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 519 0 491 1 0 1 1 0 8 0 vmmpekpl 168 5546 0 5508 2 0 2 2 0 8 0 vmmpepl 168 39888 0 37867 94 0 94 94 0 357 0 vmsppl 368 518 0 491 4 0 4 4 0 8 1 rwobjpl 40 15757 0 12669 32 0 32 32 0 8 0 pdppl 4096 1045 0 982 99 32 67 83 0 8 4 pvpl 32 258652 0 246357 110 0 110 110 0 265 0 pmappl 216 518 0 491 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 373 0 32 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002f101770,ffffffffffffffff,0,80001d24,fffffd806c16f110,fffffd8007bfb888) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002f101770,ffffffffffffffff,0,80001d24,fffffd806c16f110,fffffd8007bfb888) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd806c16f110,4,1d24,0,ffff80002f101770) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd806c16f110,4,1d24,0,ffff80002f101770) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002f101770,ffff80003c989e80,ffff80003c989dd0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c989e80) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c989e80) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4a03f9f5750, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002f101770,ffffffffffffffff,0,80001d24,fffffd806c16f110,fffffd8007bfb888) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002f101770,ffffffffffffffff,0,80001d24,fffffd806c16f110,fffffd8007bfb888) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd806c16f110,4,1d24,0,ffff80002f101770) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd806c16f110,4,1d24,0,ffff80002f101770) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002f101770,ffff80003c989e80,ffff80003c989dd0) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c989e80) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003c989e80) at syscall+0x962 sys/arch/amd64/amd64/trap.c:748 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x4a03f9f5750, count: -5