uvm_fault(0xffffffff82dca8a8, 0xffff80000e17f2c2, 0, 2) -> d kernel: page fault trap, code=0 Stopped at memset+0x45: repe stosb %es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND 417791 14396 0 0x2 0x4000001 1 syz-fuzzer *356466 87028 73 0x1100010 0x1 0K syslogd memset() at memset+0x45 ffs_write(ffff80002124ece0) at ffs_write+0x93c VOP_WRITE(fffffd80690a2208,ffff80002124ed98,3,fffffd807f7d7680) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000211bd058,fffffd80690a2208,fffffd807f7d7680,ffff80002124ee60,ffff80002124ee40) at ktrwriteraw+0x15f sys/kern/kern_ktrace.c:660 ktrstruct(ffff8000211bd058,ffffffff827fea60,ffff80002124f010,20) at ktrstruct+0x175 ktrwrite2 sys/kern/kern_ktrace.c:625 [inline] ktrstruct(ffff8000211bd058,ffffffff827fea60,ffff80002124f010,20) at ktrstruct+0x175 sys/kern/kern_ktrace.c:309 sys_kevent(ffff8000211bd058,ffff80002124f1d0,ffff80002124f220) at sys_kevent+0x550 sys/kern/kern_event.c:985 syscall(ffff80002124f2a0) at syscall+0x57c mi_syscall sys/sys/syscall_mi.h:113 [inline] syscall(ffff80002124f2a0) at syscall+0x57c sys/arch/amd64/amd64/trap.c:626 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffcfb90, count: 7 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xffffffff82dca8a8, 0xffff80000e17f2c2, 0, 2) -> d ddb{0}> trace memset() at memset+0x45 ffs_write(ffff80002124ece0) at ffs_write+0x93c VOP_WRITE(fffffd80690a2208,ffff80002124ed98,3,fffffd807f7d7680) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000211bd058,fffffd80690a2208,fffffd807f7d7680,ffff80002124ee60,ffff80002124ee40) at ktrwriteraw+0x15f sys/kern/kern_ktrace.c:660 ktrstruct(ffff8000211bd058,ffffffff827fea60,ffff80002124f010,20) at ktrstruct+0x175 ktrwrite2 sys/kern/kern_ktrace.c:625 [inline] ktrstruct(ffff8000211bd058,ffffffff827fea60,ffff80002124f010,20) at ktrstruct+0x175 sys/kern/kern_ktrace.c:309 sys_kevent(ffff8000211bd058,ffff80002124f1d0,ffff80002124f220) at sys_kevent+0x550 sys/kern/kern_event.c:985 syscall(ffff80002124f2a0) at syscall+0x57c mi_syscall sys/sys/syscall_mi.h:113 [inline] syscall(ffff80002124f2a0) at syscall+0x57c sys/arch/amd64/amd64/trap.c:626 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffcfb90, count: -8 ddb{0}> show registers rdi 0xffff80000e17f2c2 rsi 0 rbp 0xffff80002124ec00 rbx 0x1 rdx 0x6 rcx 0x6 rax 0 r8 0x538 r9 0xffff80002124eb58 r10 0x55970ede1b7705cc r11 0xffff80000e17f2c2 r12 0x2c2 r13 0xfffffd806e072568 r14 0x800 r15 0xfffffd806e072550 rip 0xffffffff81ae5375 memset+0x45 cs 0x8 rflags 0x10202 __ALIGN_SIZE+0xf202 rsp 0xffff80002124ea08 ss 0x10 memset+0x45: repe stosb %es:(%rdi) ddb{0}> show proc PROC (syslogd) pid=356466 stat=onproc flags process=1100010 proc=1 pri=24, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff800021203888,0xffff800021216dc0 process=0xffff80002121ae20 user=0xffff80002124a000, vmspace=0xfffffd806f0936e8 estcpu=0, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 62217 185028 35650 0 2 0 syz-executor.7 89814 245109 29501 0 2 0 syz-executor.5 29874 479547 48944 0 2 0 syz-executor.2 50629 202983 44621 0 2 0 syz-executor.0 50629 80415 44621 0 3 0x4000080 fsleep syz-executor.0 50629 356718 44621 0 2 0x4000000 syz-executor.0 50629 396288 44621 0 2 0x4000000 syz-executor.0 48341 100651 1349 0 2 0 syz-executor.1 81938 317112 75978 0 2 0 syz-executor.4 29501 230008 14396 0 2 0x482 syz-executor.5 35650 450321 14396 0 2 0x482 syz-executor.7 99596 187639 14396 0 2 0x2 syz-executor.6 634 354134 14396 0 2 0x2 syz-executor.3 48944 304112 14396 0 2 0x2 syz-executor.2 44621 133208 14396 0 2 0x2 syz-executor.0 75978 323723 14396 0 2 0x482 syz-executor.4 97749 438085 1 0 3 0x100083 ttyopn getty 39417 62831 0 0 3 0x14200 bored sosplice 1349 459280 14396 0 2 0x2 syz-executor.1 14396 72345 85287 0 3 0x82 wait syz-fuzzer 14396 451531 85287 0 3 0x4000082 thrsleep syz-fuzzer 14396 182119 85287 0 3 0x4000082 wait syz-fuzzer 14396 156787 85287 0 3 0x4000082 thrsleep syz-fuzzer 14396 255129 85287 0 3 0x4000082 thrsleep syz-fuzzer 14396 11721 85287 0 3 0x4000082 thrsleep syz-fuzzer 14396 28717 85287 0 3 0x4000082 wait syz-fuzzer 14396 268239 85287 0 3 0x4000082 thrsleep syz-fuzzer 14396 153976 85287 0 3 0x4000082 wait syz-fuzzer 14396 417791 85287 0 7 0x4000003 syz-fuzzer 14396 421171 85287 0 3 0x4000082 thrsleep syz-fuzzer 14396 373241 85287 0 3 0x4000082 wait syz-fuzzer 14396 464360 85287 0 3 0x4000082 wait syz-fuzzer 14396 336686 85287 0 3 0x4000082 thrsleep syz-fuzzer 14396 169889 85287 0 3 0x4000082 wait syz-fuzzer 14396 354480 85287 0 3 0x4000082 wait syz-fuzzer 85287 77885 81140 0 3 0x10008a sigsusp ksh 81140 61498 78820 0 3 0x9a kqread sshd 78820 87068 1 0 3 0x88 kqread sshd 4735 97128 38277 74 3 0x1100092 bpf pflogd 38277 463548 1 0 3 0x80 netio pflogd *87028 356466 76316 73 7 0x1100011 syslogd 76316 481209 1 0 3 0x100082 netio syslogd 79707 404061 1 0 3 0x100080 kqread resolvd 21688 332083 83351 77 3 0x100092 kqread dhcpleased 29798 358990 83351 77 3 0x100092 kqread dhcpleased 83351 149992 1 0 3 0x80 kqread dhcpleased 85455 267879 0 0 3 0x14200 bored smr 3297 296942 0 0 2 0x14200 zerothread 14930 97230 0 0 3 0x14200 aiodoned aiodoned 21681 40281 0 0 3 0x14200 syncer update 25996 258759 0 0 3 0x14200 cleaner cleaner 34358 76526 0 0 3 0x14200 reaper reaper 6008 377857 0 0 3 0x14200 pgdaemon pagedaemon 564 18874 0 0 3 0x14200 bored viomb 3945 148447 0 0 3 0x40014200 acpi0 acpi0 31809 167632 0 0 3 0x40014200 idle1 18540 447842 0 0 3 0x14200 bored softnet 67118 179789 0 0 3 0x14200 bored softnet 78273 377986 0 0 3 0x14200 bored softnet 16267 59437 0 0 3 0x14200 bored softnet 56741 165956 0 0 3 0x14200 bored systqmp 19977 137189 0 0 3 0x14200 bored systq 2451 312149 0 0 3 0x40014200 bored softclock 49749 101602 0 0 3 0x40014200 idle0 1 324393 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10257 6501K 7381K 78643K 23305 0 pcb 13 20K 25K 78643K 3141 0 rtable 208 6K 7K 78643K 1683 0 ifaddr 81 27K 28K 78643K 1021 0 sysctl 2 0K 4K 78643K 607 0 counters 62 36K 36K 78643K 500 0 ioctlops 0 0K 4K 78643K 2199 0 iov 0 0K 36K 78643K 3799 0 mount 1 1K 1K 78643K 1 0 log 0 0K 0K 78643K 4 0 vnodes 1440 90K 90K 78643K 15400 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 13K 78643K 64 0 VM map 2 1K 1K 78643K 2 0 sem 11 2K 3K 78643K 15 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1697 195K 286K 78643K 12548 0 file desc 16 57K 85K 78643K 26538 0 sigio 0 0K 0K 78643K 1043 0 proc 71 91K 128K 78643K 2884 0 subproc 104 6K 6K 78643K 560 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 562 0 in_multi 95 6K 7K 78643K 652 0 ether_multi 1 0K 0K 78643K 64 0 mrt 1 0K 0K 78643K 242 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 337 1500K 1500K 78643K 337 0 exec 0 0K 1K 78643K 2890 0 tdb 3 0K 0K 78643K 3 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 8 62K 64K 78643K 10 0 UVM amap 422 95K 96K 78643K 174475 0 UVM aobj 131 4K 4K 78643K 134 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 137 0 NDP 13 0K 2K 78643K 307 0 temp 133 5774K 6798K 78643K 89702 0 kqueue 12 18K 36K 78643K 4081 0 SYN cache 2 16K 16K 78643K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 22 0 0 1 0 1 1 0 8 0 rtpcb 120 463 0 460 1 0 1 1 0 8 0 rtentry 112 542 0 447 4 1 3 4 0 8 0 unpcb 144 27099 0 27084 170 166 4 10 0 8 3 syncache 296 75 0 75 6 6 0 1 0 8 0 tcpqe 32 83 0 83 5 5 0 1 0 8 0 tcpcb 776 1310 0 1306 23 22 1 7 0 8 0 arp 120 95 0 79 1 0 1 1 0 8 0 inpcb 368 44263 0 44256 414 407 7 22 0 8 6 nd6 48 126 0 102 1 0 1 1 0 8 0 pkpcb 40 16 0 16 4 4 0 1 0 8 0 kcovpl 48 42 0 34 1 0 1 1 0 8 0 mppekey 1024 1 0 1 1 1 0 1 0 8 0 ppxss 1256 19 0 19 5 4 1 1 0 8 1 pppxif 1456 8 0 8 2 1 1 1 0 8 1 pffrag 232 18 0 18 3 3 0 1 0 482 0 pffrnode 88 17 0 17 3 3 0 1 0 8 0 pffrent 40 84 0 84 3 3 0 1 0 8 0 pfosfp 40 1432 0 1008 5 0 5 5 0 8 0 pfosfpen 112 1432 0 717 21 0 21 21 0 8 0 pfanchor 1280 512 18 0 43 0 43 43 0 8 0 pfstitem 24 204 0 198 1 0 1 1 0 8 0 pfstkey 128 204 0 198 4 3 1 4 0 8 0 pfstate 384 204 0 198 13 12 1 10 0 8 0 pfrule 1344 21 0 16 2 1 1 2 0 8 0 rttmr 136 10 0 10 2 2 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 2117 0 1695 58 31 27 30 0 8 0 art_table 32 2118 0 1695 6 2 4 4 0 8 0 art_node 16 532 0 451 1 0 1 1 0 8 0 semapl 112 9 0 0 1 0 1 1 0 8 0 shmpl 112 131 0 3 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 41846 0 40403 92 0 92 92 0 8 0 ffsino 272 41846 0 40403 98 0 98 98 0 8 0 nchpl 144 76786 0 75151 63 0 63 63 0 8 0 uvmvnodes 80 7413 0 0 152 0 152 152 0 8 0 vnodes 216 7413 0 0 412 0 412 412 0 8 0 namei 1024 241453 0 241453 5 4 1 2 0 8 1 percpumem 16 263 0 219 1 0 1 1 0 8 0 vmpool 696 4 0 4 1 1 0 1 0 8 0 kstatmem 264 446 0 420 3 1 2 2 0 8 0 scsiplug 72 128 0 128 3 3 0 1 0 8 0 scxspl 216 227807 0 227807 29 28 1 6 0 8 1 plimitpl 152 476 0 460 1 0 1 1 0 8 0 sigapl 424 26932 0 26885 9 3 6 8 0 8 0 futexpl 64 204532 0 204531 7 6 1 1 0 8 0 knotepl 120 1618 0 0 20 3 17 17 0 8 0 kqueuepl 216 9373 0 9365 61 60 1 5 0 8 0 pipepl 320 3965 0 3937 117 114 3 11 0 8 0 fdescpl 496 26769 0 26740 7 3 4 5 0 8 0 filepl 152 187072 0 186831 259 244 15 23 0 8 5 lockfpl 104 2793 0 2791 5 4 1 2 0 8 0 lockfspl 48 1076 0 1074 1 0 1 1 0 8 0 sessionpl 144 61 0 44 1 0 1 1 0 8 0 pgrppl 48 205 0 188 1 0 1 1 0 8 0 ucredpl 104 16087 0 16074 1 0 1 1 0 8 0 zombiepl 144 26885 0 26885 1 0 1 1 0 8 1 processpl 1072 26932 0 26885 5 0 5 5 0 8 0 procpl 696 69917 0 69852 44 36 8 10 0 8 1 srpgc 96 62 0 62 4 4 0 1 0 8 0 sosppl 168 80 0 80 4 4 0 1 0 8 0 sockpl 488 71856 0 71831 1176 1163 13 38 0 8 9 mcl64k 65536 17 0 0 3 0 3 3 0 8 0 mcl16k 16384 48 0 0 5 2 3 3 0 8 0 mcl12k 12288 41 0 0 2 0 2 2 0 8 0 mcl9k 9216 25 0 0 2 0 2 2 0 8 0 mcl8k 8192 41 0 0 5 2 3 3 0 8 0 mcl4k 4096 49 0 0 4 1 3 3 0 8 0 mcl2k2 2112 15 0 0 1 0 1 1 0 8 0 mcl2k 2048 1014 0 0 37 14 23 37 0 8 0 mtagpl 96 868 0 0 18 0 18 18 0 8 0 mbufpl 256 1770 0 0 56 0 56 56 0 8 0 bufpl 288 54216 0 46802 530 0 530 530 0 8 0 anonpl 24 4835496 0 4822980 484 400 84 429 0 186 0 amapchunkpl 152 487543 0 486976 178 148 30 169 0 158 0 amappl16 200 34065 0 33743 56 38 18 29 0 8 0 amappl15 192 61 0 58 1 0 1 1 0 8 0 amappl14 184 261 0 247 2 1 1 2 0 8 0 amappl13 176 7 0 7 2 2 0 1 0 8 0 amappl12 168 877 0 865 1 0 1 1 0 8 0 amappl11 160 48 0 34 1 0 1 1 0 8 0 amappl10 152 93 0 79 1 0 1 1 0 8 0 amappl9 144 1031 0 1031 26 25 1 1 0 8 1 amappl8 136 898 0 679 8 0 8 8 0 8 0 amappl7 128 279 0 249 2 0 2 2 0 8 0 amappl6 120 412 0 388 2 1 1 2 0 8 0 amappl5 112 543 0 533 1 0 1 1 0 8 0 amappl4 104 1081 0 1037 2 0 2 2 0 8 0 amappl3 96 77852 0 77808 2 0 2 2 0 8 0 amappl2 88 27792 0 27705 8 5 3 4 0 8 0 amappl1 80 596075 0 595379 28 10 18 28 0 8 0 amappl 88 173414 0 173236 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 133 0 3 3 0 3 3 0 8 0 uaddrrnd 24 26773 0 26744 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 26773 0 26744 1 0 1 1 0 8 0 vmmpekpl 168 180740 0 180685 3 0 3 3 0 8 0 vmmpepl 168 2351114 0 2348459 366 227 139 148 0 357 9 vmsppl 440 26772 0 26744 5 1 4 4 0 8 0 rwobjpl 56 606366 0 597210 145 13 132 132 0 8 1 pdppl 4096 53553 0 53488 1206 1137 69 79 0 8 4 pvpl 32 10053219 0 10035210 963 788 175 806 0 265 0 pmappl 248 26772 0 26744 4 2 2 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 2526 0 1605 27 0 27 27 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace memset() at memset+0x45 ffs_write(ffff80002124ece0) at ffs_write+0x93c VOP_WRITE(fffffd80690a2208,ffff80002124ed98,3,fffffd807f7d7680) at VOP_WRITE+0xbf sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000211bd058,fffffd80690a2208,fffffd807f7d7680,ffff80002124ee60,ffff80002124ee40) at ktrwriteraw+0x15f sys/kern/kern_ktrace.c:660 ktrstruct(ffff8000211bd058,ffffffff827fea60,ffff80002124f010,20) at ktrstruct+0x175 ktrwrite2 sys/kern/kern_ktrace.c:625 [inline] ktrstruct(ffff8000211bd058,ffffffff827fea60,ffff80002124f010,20) at ktrstruct+0x175 sys/kern/kern_ktrace.c:309 sys_kevent(ffff8000211bd058,ffff80002124f1d0,ffff80002124f220) at sys_kevent+0x550 sys/kern/kern_event.c:985 syscall(ffff80002124f2a0) at syscall+0x57c mi_syscall sys/sys/syscall_mi.h:113 [inline] syscall(ffff80002124f2a0) at syscall+0x57c sys/arch/amd64/amd64/trap.c:626 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7ffffcfb90, count: -8 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp x86_ipi_db(ffff800020d68ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __mp_lock(ffffffff82d8a410) at __mp_lock+0x122 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82d8a410) at __mp_lock+0x122 sys/kern/kern_lock.c:147 ktrstruct(ffff8000212142d8,ffffffff827fea60,ffff800021300e60,20) at ktrstruct+0xfa sys_kevent(ffff8000212142d8,ffff800021301020,ffff800021301070) at sys_kevent+0x550 sys/kern/kern_event.c:985 syscall(ffff8000213010f0) at syscall+0x57c mi_syscall sys/sys/syscall_mi.h:113 [inline] syscall(ffff8000213010f0) at syscall+0x57c sys/arch/amd64/amd64/trap.c:626 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x29f315220, count: 7 ddb{1}> trace x86_ipi_db(ffff800020d68ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __mp_lock(ffffffff82d8a410) at __mp_lock+0x122 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82d8a410) at __mp_lock+0x122 sys/kern/kern_lock.c:147 ktrstruct(ffff8000212142d8,ffffffff827fea60,ffff800021300e60,20) at ktrstruct+0xfa sys_kevent(ffff8000212142d8,ffff800021301020,ffff800021301070) at sys_kevent+0x550 sys/kern/kern_event.c:985 syscall(ffff8000213010f0) at syscall+0x57c mi_syscall sys/sys/syscall_mi.h:113 [inline] syscall(ffff8000213010f0) at syscall+0x57c sys/arch/amd64/amd64/trap.c:626 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x29f315220, count: -8