uvm_fault(0xfffffd806c244010, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *156091 91775 0 0x8000000 0x4000000 0 syz-executor ktrops(ffff80002a48d968,ffffffffffffffff,0,80001100,fffffd8073aa6388,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a48d968,ffffffffffffffff,0,80001100,fffffd8073aa6388,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8073aa6388,4,1100,ffffffff,ffff80002a48d968) at doktrace+0x57d ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8073aa6388,4,1100,ffffffff,ffff80002a48d968) at doktrace+0x57d sys/kern/kern_ktrace.c:493 sys_ktrace(ffff80002a48d968,ffff80002a55b010,ffff80002a55af60) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff80002a55b010) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb139e4fcf70, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806c244010, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a48d968,ffffffffffffffff,0,80001100,fffffd8073aa6388,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a48d968,ffffffffffffffff,0,80001100,fffffd8073aa6388,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8073aa6388,4,1100,ffffffff,ffff80002a48d968) at doktrace+0x57d ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8073aa6388,4,1100,ffffffff,ffff80002a48d968) at doktrace+0x57d sys/kern/kern_ktrace.c:493 sys_ktrace(ffff80002a48d968,ffff80002a55b010,ffff80002a55af60) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff80002a55b010) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb139e4fcf70, count: -5 ddb> show registers rdi 0xffff800031c04000 rsi 0xc70 rbp 0xffff80002a55ad30 rbx 0xfffffd807f7d7750 rdx 0xffff800031c04000 rcx 0xc6f rax 0xffffffff82185883 ktrops+0x43 r8 0xfffffd8073aa6388 r9 0xfffffd807f7d7750 r10 0x44bf3df1fe87c9a2 r11 0x35766a3556b2f20d r12 0xffff80002a48d968 r13 0x1 r14 0xffffffffffffffff r15 0x80001100 __kernel_virt_to_phys+0x1100 rip 0xffffffff82185898 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002a55acb0 ss 0 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=156091 pid=91775 tcnt=2 stat=onproc flags process=8000000 proc=4000000 runpri=17, usrpri=83, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a48cf48,0xffff80002a4d0f60 process=0xffff80002a464450 user=0xffff80002a556000, vmspace=0xfffffd806c244010 estcpu=33, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 13515 21572 99938 0 2 0x8000000 syz-executor 13515 270598 99938 0 3 0xc000080 fsleep syz-executor 95566 272514 52352 0 2 0x8000000 syz-executor 95566 274971 52352 0 3 0xc000080 fsleep syz-executor 95566 473861 52352 0 3 0xc000080 kqread syz-executor 91775 361478 15009 0 2 0x8000000 syz-executor *91775 156091 15009 0 7 0xc000000 syz-executor 81777 248076 39387 0 2 0xc081000 syz-executor 81777 366572 39387 0 3 0xc003000 suspend syz-executor 62566 227456 20131 0 2 0x8000490 syz-executor 62566 10972 20131 0 3 0xc000090 fsleep syz-executor 62566 500973 20131 0 3 0xc000090 fsleep syz-executor 39387 6966 31491 0 2 0x8000482 syz-executor 52352 194105 31491 0 2 0x8000482 syz-executor 15009 502382 31491 0 2 0x8000482 syz-executor 60637 106222 31491 0 2 0x8000002 syz-executor 50805 96253 31491 0 2 0x8000002 syz-executor 20131 470868 31491 0 2 0x8000482 syz-executor 99938 116130 31491 0 2 0x8000482 syz-executor 99786 515715 31491 0 2 0x8000002 syz-executor 88986 151825 0 0 3 0x14200 bored sosplice 31491 487709 5326 0 3 0x8000082 kqread syz-executor 5326 187946 54941 0 3 0x810008a sigsusp ksh 54941 69993 83416 0 3 0x18000098 kqread sshd-session 83416 272395 18677 0 3 0x18000092 kqread sshd-session 49820 194211 1 0 3 0x18100083 ttyin getty 18677 120548 1 0 3 0x18000088 kqread sshd 76845 252872 23235 73 2 0x19100010 syslogd 23235 116584 1 0 3 0x18100082 sbwait syslogd 86213 86920 1 0 3 0x18100080 kqread resolvd 30845 473384 70066 77 3 0x18100092 kqread dhcpleased 36647 380118 70066 77 3 0x18100092 kqread dhcpleased 70066 415036 1 0 3 0x18000080 kqread dhcpleased 41516 179031 0 0 3 0x14200 bored smr 12510 412819 0 0 2 0x14200 zerothread 10201 59701 0 0 3 0x14200 aiodoned aiodoned 90187 368192 0 0 3 0x14200 syncer update 47537 225113 0 0 3 0x14200 cleaner cleaner 40288 331845 0 0 3 0x14200 reaper reaper 38522 414644 0 0 3 0x14200 pgdaemon pagedaemon 3619 401234 0 0 3 0x14200 bored viomb 12707 226253 0 0 3 0x40014200 acpi0 acpi0 48976 39984 0 0 3 0x14200 bored softnet3 66856 503379 0 0 3 0x14200 bored softnet2 54199 458034 0 0 3 0x14200 bored softnet1 24539 266002 0 0 3 0x14200 bored softnet0 99697 116202 0 0 3 0x14200 bored systqmp 95372 319356 0 0 3 0x14200 bored systq 71757 91441 0 0 2 0x40014200 softclock 82714 120351 0 0 3 0x40014200 idle0 1 329662 0 0 3 0x8000082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10198 10094K 10492K 166960K 11831 0 pcb 17 12K 12K 166960K 80 0 rtable 231 11K 11K 166960K 1113 0 pf 34 13K 17K 166960K 98 0 ifaddr 43 8K 8K 166960K 145 0 ifgroup 50 2K 2K 166960K 152 0 counters 30 17K 17K 166960K 55 0 ioctlops 0 0K 4K 166960K 92 0 iov 0 0K 16K 166960K 31 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1549 97K 97K 166960K 2210 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 9 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 60 0 dirhash 15 2K 2K 166960K 30 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 15 53K 97K 166960K 851 0 sigio 0 0K 0K 166960K 3 0 proc 59 59K 91K 166960K 1166 0 subproc 104 6K 6K 166960K 405 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 184 0 in_multi 99 7K 7K 166960K 360 0 ether_multi 1 0K 0K 166960K 1 0 mrt 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 211 943K 943K 166960K 211 0 exec 0 0K 1K 166960K 721 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 213 74K 95K 166960K 7893 0 UVM aobj 20 2K 2K 166960K 21 0 pinsyscall 36 72K 96K 166960K 2472 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 34 0 NDP 11 0K 2K 166960K 98 0 temp 75 6816K 6943K 166960K 22577 0 kqueue 14 22K 28K 166960K 72 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 140 0 137 2 0 2 2 0 8 1 rtentry 112 376 0 275 4 0 4 4 0 8 0 unpcb 144 539 0 524 6 0 6 6 0 8 5 syncache 336 3 0 3 1 0 1 1 0 8 1 tcpqe 32 6 0 6 1 0 1 1 0 8 1 tcpcb 808 190 0 186 8 0 8 8 0 8 7 arp 88 65 0 46 1 0 1 1 0 8 0 ipq 40 4 0 1 1 0 1 1 0 8 0 ipqe 40 51 0 47 1 0 1 1 0 8 0 inpcb 336 760 0 753 7 0 7 7 0 8 6 nd6 104 100 0 75 1 0 1 1 0 8 0 pkpcb 40 1 0 1 1 0 1 1 0 8 1 kcovpl 48 31 0 23 1 0 1 1 0 8 0 pfrktable 1344 6 0 2 1 0 1 1 0 8 0 pfanchor 1288 1 0 0 1 0 1 1 0 8 0 pftag 88 1 0 0 1 0 1 1 0 8 0 pfrule 1344 7 0 5 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 1520 0 1070 29 0 29 29 0 8 0 art_table 32 1521 0 1070 4 0 4 4 0 8 0 art_node 16 374 0 285 1 0 1 1 0 8 0 semupl 112 1 0 1 1 0 1 1 0 8 1 semapl 112 58 0 48 1 0 1 1 0 8 0 shmpl 112 18 0 1 1 0 1 1 0 8 0 dirhash 1024 29 0 10 3 0 3 3 0 8 0 dino2pl 256 2388 0 844 97 0 97 97 0 8 0 ffsino 240 2388 0 844 91 0 91 91 0 8 0 nchpl 144 3152 0 1448 64 0 64 64 0 8 0 uvmvnodes 80 3151 0 0 65 0 65 65 0 8 0 vnodes 216 3151 0 0 176 0 176 176 0 8 0 namei 1024 13058 0 13055 2 0 2 2 0 8 1 vcpupl 3904 3 0 0 1 0 1 1 0 8 0 vmpool 664 3 0 0 1 0 1 1 0 8 0 pfiaddrpl 120 2 0 0 1 0 1 1 0 8 0 kstatmem 264 72 0 50 2 0 2 2 0 8 0 scsiplug 72 1 0 1 1 0 1 1 0 8 1 scxspl 216 12983 0 12983 8 0 8 8 1 8 8 plimitpl 152 287 0 271 1 0 1 1 0 8 0 sigapl 424 1107 0 1063 8 0 8 8 0 8 2 futexpl 64 7428 0 7424 1 0 1 1 0 8 0 knotepl 120 14718 0 14671 10 0 10 10 0 8 8 kqueuepl 184 150 0 139 3 0 3 3 0 8 2 pipepl 288 222 0 193 3 0 3 3 0 8 0 fdescpl 432 1069 0 1042 5 0 5 5 0 8 1 filepl 120 6143 0 5893 14 0 14 14 0 8 6 lockfpl 104 285 0 283 2 0 2 2 0 8 1 lockfspl 48 128 0 126 1 0 1 1 0 8 0 sessionpl 144 44 0 36 1 0 1 1 0 8 0 pgrppl 48 79 0 63 1 0 1 1 0 8 0 ucredpl 104 854 0 841 1 0 1 1 0 8 0 zombiepl 144 1064 0 1063 1 0 1 1 0 8 0 processpl 1096 1107 0 1063 5 0 5 5 0 8 0 procpl 648 1683 0 1631 7 0 7 7 0 8 2 sosppl 168 5 0 5 1 0 1 1 0 8 1 sockpl 504 1448 0 1423 26 14 12 21 0 8 8 mcl64k 65536 1 0 1 1 0 1 1 0 8 1 mcl8k 8192 23 0 23 1 0 1 1 0 8 1 mcl4k 4096 14 0 14 1 0 1 1 0 8 1 mcl2k2 2112 1 0 1 1 0 1 1 0 8 1 mcl2k 2048 6257 0 6150 26 4 22 26 0 8 7 mtagpl 96 12 0 12 1 0 1 1 0 8 1 mbufpl 256 12431 0 12220 25 2 23 25 0 8 6 bufpl 280 6311 0 91 445 0 445 445 0 8 0 anonpl 24 175972 0 172464 76 0 76 76 0 187 52 amapchunkpl 152 25702 0 25254 41 0 41 41 0 158 22 amappl16 200 3162 0 3121 20 9 11 15 0 8 8 amappl15 192 2 0 2 1 0 1 1 0 8 1 amappl14 184 156 0 145 1 0 1 1 0 8 0 amappl13 176 29 0 29 1 0 1 1 0 8 1 amappl12 168 2046 0 2018 2 0 2 2 0 8 0 amappl11 160 48 0 38 1 0 1 1 0 8 0 amappl10 152 7 0 7 1 0 1 1 0 8 1 amappl9 144 199 0 199 1 0 1 1 0 8 1 amappl8 136 26 0 25 1 0 1 1 0 8 0 amappl7 128 140 0 130 1 0 1 1 0 8 0 amappl6 120 388 0 387 1 0 1 1 0 8 0 amappl5 112 229 0 220 1 0 1 1 0 8 0 amappl4 104 359 0 343 1 0 1 1 0 8 0 amappl3 96 4656 0 4556 4 0 4 4 0 8 1 amappl2 88 976 0 919 2 0 2 2 0 8 0 amappl1 80 10918 0 10383 13 0 13 13 0 8 1 amappl 88 7349 0 7192 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma2048 2048 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 20 0 19 1 0 1 1 0 8 0 aobjpl 72 20 0 1 1 0 1 1 0 8 0 uaddrrnd 24 1072 0 1042 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1072 0 1042 1 0 1 1 0 8 0 vmmpekpl 168 10054 0 10001 3 0 3 3 0 8 0 vmmpepl 168 70672 0 68987 91 0 91 91 0 357 13 vmsppl 344 1071 0 1042 4 0 4 4 0 8 0 rwobjpl 24 24954 0 20914 26 0 26 26 0 8 0 pdppl 4096 2150 0 2087 135 66 69 82 0 8 6 pvpl 32 503899 0 494626 247 0 247 247 0 265 161 pmappl 216 1071 0 1042 3 0 3 3 0 8 1 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 461 0 86 12 0 12 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a48d968,ffffffffffffffff,0,80001100,fffffd8073aa6388,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a48d968,ffffffffffffffff,0,80001100,fffffd8073aa6388,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8073aa6388,4,1100,ffffffff,ffff80002a48d968) at doktrace+0x57d ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8073aa6388,4,1100,ffffffff,ffff80002a48d968) at doktrace+0x57d sys/kern/kern_ktrace.c:493 sys_ktrace(ffff80002a48d968,ffff80002a55b010,ffff80002a55af60) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff80002a55b010) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb139e4fcf70, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a48d968,ffffffffffffffff,0,80001100,fffffd8073aa6388,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a48d968,ffffffffffffffff,0,80001100,fffffd8073aa6388,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd8073aa6388,4,1100,ffffffff,ffff80002a48d968) at doktrace+0x57d ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd8073aa6388,4,1100,ffffffff,ffff80002a48d968) at doktrace+0x57d sys/kern/kern_ktrace.c:493 sys_ktrace(ffff80002a48d968,ffff80002a55b010,ffff80002a55af60) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff80002a55b010) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb139e4fcf70, count: -5