uvm_fault(0xfffffd806c286e20, 0x0, 0, 1) -> e kernel: page fault trap, code=0 Stopped at dt_ioctl_record_stop+0xf0: movq 0(%r14),%r12 TID PID UID PRFLAGS PFLAGS CPU COMMAND dt_ioctl_record_stop(ffff80000157f000) at dt_ioctl_record_stop+0xf0 sys/dev/dt/dt_dev.c:580 dtclose(11e5f,81,2000,ffff80002a7c27c8) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(11e5f,81,2000,ffff80002a7c27c8) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003ca09030) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8068f73040,81,fffffd8007bfb2d8,ffff80002a7c27c8) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd800a2a36a0,ffff80002a7c27c8) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd800a2a36a0,ffff80002a7c27c8) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd800a2a36a0,ffff80002a7c27c8) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd800a2a36a0,ffff80002a7c27c8) at closef+0x18d sys/kern/kern_descrip.c:1251 fdfree(ffff80002a7c27c8) at fdfree+0x115 sys/kern/kern_descrip.c:1182 exit1(ffff80002a7c27c8,0,0,1) at exit1+0x59c sys/kern/kern_exit.c:215 sys_exit(ffff80002a7c27c8,ffff80003ca093a0,ffff80003ca092f0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ca093a0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca093a0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x78502bc05d70, count: 3 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806c286e20, 0x0, 0, 1) -> e ddb> trace dt_ioctl_record_stop(ffff80000157f000) at dt_ioctl_record_stop+0xf0 sys/dev/dt/dt_dev.c:580 dtclose(11e5f,81,2000,ffff80002a7c27c8) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(11e5f,81,2000,ffff80002a7c27c8) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003ca09030) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8068f73040,81,fffffd8007bfb2d8,ffff80002a7c27c8) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd800a2a36a0,ffff80002a7c27c8) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd800a2a36a0,ffff80002a7c27c8) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd800a2a36a0,ffff80002a7c27c8) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd800a2a36a0,ffff80002a7c27c8) at closef+0x18d sys/kern/kern_descrip.c:1251 fdfree(ffff80002a7c27c8) at fdfree+0x115 sys/kern/kern_descrip.c:1182 exit1(ffff80002a7c27c8,0,0,1) at exit1+0x59c sys/kern/kern_exit.c:215 sys_exit(ffff80002a7c27c8,ffff80003ca093a0,ffff80003ca092f0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ca093a0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca093a0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x78502bc05d70, count: -12 ddb> show registers rdi 0 rsi 0 rbp 0xffff80003ca08f60 rbx 0xffffffff814af560 dtclose rdx 0 rcx 0xffff80002a7c27c8 rax 0xffffffff837ddb88 dt_prov_static r8 0xffffffffffffffff r9 0 r10 0xa1fc556537cbf1ec r11 0x89167522a7ff1d4d r12 0xffffffff837de328 dt_static_uvm_malloc r13 0 r14 0 r15 0xffff8000014d6a00 rip 0xffffffff814af8e0 dt_ioctl_record_stop+0xf0 cs 0x8 rflags 0x10207 __ALIGN_SIZE+0xf207 rsp 0xffff80003ca08f30 ss 0x10 dt_ioctl_record_stop+0xf0: movq 0(%r14),%r12 ddb> show proc PROC (syz-executor) tid=35910 pid=1136 tcnt=0 stat=onproc flags process=1008 proc=2000 runpri=32, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff80002a7c27c8 scnt=-1 ecnt=1 forw=0xffffffffffffffff, list=0xffff80003c9df220,0xffff80003c9df9e0 process=0xffff800036917678 user=0xffff80003ca04000, vmspace=0xfffffd806c286e20 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 49466 339778 24991 0 2 0 syz-executor 49466 373819 24991 0 3 0x4000080 fsleep syz-executor 1859 120154 24915 0 2 0 syz-executor 1859 240387 24915 0 3 0x4000080 fsleep syz-executor 1859 2050 24915 0 2 0x4000000 syz-executor 66132 147720 50298 0 2 0 syz-executor 66132 233343 50298 0 3 0x4000080 fsleep syz-executor 99804 403610 15781 0 2 0 syz-executor 99804 66489 15781 0 2 0x4000000 syz-executor 99804 112811 15781 0 3 0x4000080 sbwait syz-executor 25010 319629 66527 0 2 0 syz-executor 25010 367919 66527 0 3 0x4000080 rest syz-executor 25010 167788 66527 0 3 0x4000080 fsleep syz-executor 97676 501566 21710 0 2 0 syz-executor 97676 361193 21710 0 3 0x4000080 sbwait syz-executor 97676 474424 21710 0 3 0x4000080 fsleep syz-executor 4618 477450 32818 0 2 0 syz-executor 4618 291709 32818 0 3 0x4000080 fsleep syz-executor 20709 329537 0 0 3 0x14280 nfsidl nfsio 68997 365580 0 0 3 0x14280 nfsidl nfsio 32934 342234 0 0 3 0x14280 nfsidl nfsio 13992 272982 0 0 3 0x14280 nfsidl nfsio 91279 198580 0 0 3 0x14280 nfsidl nfsio 72604 93657 0 0 3 0x14280 nfsidl nfsio 97693 78759 0 0 3 0x14280 nfsidl nfsio 85643 96411 0 0 3 0x14280 nfsidl nfsio 77478 67607 0 0 3 0x14280 nfsidl nfsio 46839 214977 0 0 3 0x14280 nfsidl nfsio 79651 518499 0 0 3 0x14280 nfsidl nfsio 62703 106838 0 0 3 0x14280 nfsidl nfsio 54961 281096 0 0 3 0x14280 nfsidl nfsio 41484 65910 0 0 3 0x14280 nfsidl nfsio 32177 166016 0 0 3 0x14280 nfsidl nfsio 20925 446452 0 0 3 0x14280 nfsidl nfsio 9327 491702 0 0 3 0x14280 nfsidl nfsio 70588 103959 0 0 3 0x14280 nfsidl nfsio 88959 120076 0 0 3 0x14280 nfsidl nfsio 50511 214738 0 0 3 0x14280 nfsidl nfsio 267 300615 0 0 3 0x14200 bored sosplice 32818 11185 21390 0 3 0x82 nanoslp syz-executor 66527 222825 21390 0 2 0x2 syz-executor 43123 182046 21390 0 3 0x82 nanoslp syz-executor 24991 407205 21390 0 3 0x82 nanoslp syz-executor 50298 390937 21390 0 3 0x82 nanoslp syz-executor 21710 72904 21390 0 3 0x82 nanoslp syz-executor 24915 212305 21390 0 3 0x82 nanoslp syz-executor 15781 62862 21390 0 3 0x82 nanoslp syz-executor 21390 245493 12363 0 3 0x82 kqread syz-executor 12363 322732 84088 0 3 0x10008a sigsusp ksh 84088 321900 35060 0 3 0x98 kqread sshd-session 35060 400606 42665 0 3 0x92 kqread sshd-session 7143 491225 1 0 3 0x100083 ttyin getty 42665 138436 1 0 3 0x88 kqread sshd 84328 363280 63682 73 3 0x1100090 kqread syslogd 63682 89864 1 0 3 0x100082 sbwait syslogd 24989 277586 1 0 3 0x100080 kqread resolvd 9567 47300 88644 77 3 0x100092 kqread dhcpleased 37262 177580 88644 77 3 0x100092 kqread dhcpleased 88644 225368 1 0 3 0x80 kqread dhcpleased 49391 37279 0 0 3 0x14200 bored smr 59470 219944 0 0 2 0x14200 zerothread 65988 275772 0 0 3 0x14200 aiodoned aiodoned 34266 464872 0 0 3 0x14200 syncer update 20839 179080 0 0 3 0x14200 cleaner cleaner 50498 9058 0 0 3 0x14200 reaper reaper 59311 488654 0 0 3 0x14200 pgdaemon pagedaemon 74225 354360 0 0 3 0x14200 bored viomb 29759 20353 0 0 3 0x40014200 acpi0 acpi0 98667 415912 0 0 3 0x14200 bored softnet3 80977 151638 0 0 3 0x14200 bored softnet2 82058 346228 0 0 3 0x14200 bored softnet1 3978 377765 0 0 3 0x14200 bored softnet0 61076 141014 0 0 3 0x14200 bored systqmp 4732 25598 0 0 3 0x14200 bored systq 57543 295648 0 0 3 0x40014200 tmoslp softclock 71543 429301 0 0 3 0x40014200 idle0 1 388265 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10202 11212K 12360K 166960K 12227 0 pcb 17 18K 20K 166960K 178 0 rtable 185 7K 7K 166960K 412 0 pf 32 13K 15K 166960K 53 0 ifaddr 38 6K 7K 166960K 60 0 ifgroup 54 2K 2K 166960K 79 0 sysctl 4 1K 9K 166960K 9 0 counters 33 17K 18K 166960K 47 0 ioctlops 0 0K 4K 166960K 85 0 iov 0 0K 16K 166960K 28 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1459 92K 92K 166960K 1825 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 5 0 VM map 2 1K 1K 166960K 2 0 sem 7 0K 0K 166960K 8 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 102K 166960K 562 0 sigio 1 0K 0K 166960K 3 0 proc 61 67K 91K 166960K 498 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 2 0K 0K 166960K 104 0 in_multi 80 5K 7K 166960K 117 0 ether_multi 1 0K 0K 166960K 2 0 mrt 0 0K 0K 166960K 2 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 73 334K 334K 166960K 73 0 exec 0 0K 1K 166960K 479 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 2 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 232 151K 166K 166960K 6435 0 UVM aobj 13 3K 3K 166960K 14 0 pinsyscall 39 78K 94K 166960K 1597 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 11 0 NDP 12 0K 1K 166960K 36 0 temp 47 8680K 8753K 166960K 23682 0 kqueue 14 22K 31K 166960K 91 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 187 0 183 3 0 3 3 0 8 2 rtentry 136 121 0 41 4 0 4 4 0 8 0 unpcb 144 204 0 189 2 0 2 2 0 8 1 syncache 336 6 0 6 1 0 1 1 0 8 1 tcpqe 32 1 0 1 1 0 1 1 0 8 1 tcpcb 808 297 0 292 14 0 14 14 0 8 13 arp 88 18 0 6 1 0 1 1 0 8 0 ipq 40 1 0 0 1 0 1 1 0 8 0 ipqe 40 1 0 0 1 0 1 1 0 8 0 inpcb 328 812 0 799 15 3 12 12 0 8 10 nd6 104 26 0 6 1 0 1 1 0 8 0 pkpcb 40 5 0 5 1 0 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 mppekey 1024 1 0 1 1 0 1 1 0 8 1 ppxss 1072 11 0 11 1 0 1 1 0 8 1 pppxif 1384 2 0 2 1 0 1 1 0 8 1 rttmr 136 1 0 1 1 0 1 1 0 8 1 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 525 0 151 29 0 29 29 0 8 4 art_table 32 527 0 151 4 0 4 4 0 8 0 art_node 16 120 0 49 1 0 1 1 0 8 0 sysvmsgpl 40 2 0 2 1 0 1 1 0 8 1 semapl 112 6 0 1 1 0 1 1 0 8 0 shmpl 112 11 0 1 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 2306 0 809 95 0 95 95 0 8 0 ffsino 248 2306 0 809 95 0 95 95 0 8 0 nchpl 144 3110 0 1426 63 0 63 63 0 8 0 rtmask 32 2 0 2 1 0 1 1 0 8 1 uvmvnodes 80 2737 0 0 56 0 56 56 0 8 0 vnodes 216 2737 0 0 153 0 153 153 0 8 0 namei 1024 10000 0 10000 2 0 2 2 0 8 2 kstatmem 264 40 0 16 2 0 2 2 0 8 0 scsiplug 72 2 0 2 1 0 1 1 0 8 1 scxspl 216 9902 0 9902 8 0 8 8 1 8 8 plimitpl 152 148 0 131 1 0 1 1 0 8 0 sigapl 424 859 0 792 8 0 8 8 0 8 0 knotepl 120 17551 0 17503 15 5 10 15 0 8 8 kqueuepl 184 146 0 135 1 0 1 1 0 8 0 pipepl 296 189 0 161 3 0 3 3 0 8 0 fdescpl 440 821 0 791 5 0 5 5 0 8 1 filepl 120 4553 0 4324 12 0 12 12 0 8 5 lockfpl 104 133 0 131 1 0 1 1 0 8 0 lockfspl 48 60 0 58 1 0 1 1 0 8 0 sessionpl 144 23 0 15 1 0 1 1 0 8 0 pgrppl 48 36 0 20 1 0 1 1 0 8 0 ucredpl 104 486 0 475 1 0 1 1 0 8 0 zombiepl 144 793 0 792 1 0 1 1 0 8 0 processpl 1160 859 0 792 5 0 5 5 0 8 0 procpl 656 1486 0 1408 8 0 8 8 0 8 1 sosppl 168 2 0 1 1 0 1 1 0 8 0 sockpl 528 1218 0 1182 12 1 11 12 0 8 8 mcl64k 65536 12 0 12 1 0 1 1 0 8 1 mcl16k 16384 2 0 2 1 0 1 1 0 8 1 mcl8k 8192 9 0 9 1 0 1 1 0 8 1 mcl4k 4096 3008 0 2956 14 0 14 14 0 8 7 mcl2k2 2112 1 0 1 1 0 1 1 0 8 1 mcl2k 2048 696 0 692 2 0 2 2 0 8 1 mtagpl 96 48 0 11 1 0 1 1 0 8 0 mbufpl 256 8773 0 8588 24 0 24 24 0 8 12 bufpl 280 3281 0 127 226 0 226 226 0 8 0 anonpl 24 140132 0 136881 57 0 57 57 0 187 31 amapchunkpl 152 20504 0 20003 27 0 27 27 0 158 7 amappl16 200 2688 0 2652 19 7 12 15 0 8 8 amappl15 192 36 0 36 1 0 1 1 0 8 1 amappl14 184 149 0 139 1 0 1 1 0 8 0 amappl13 176 29 0 29 1 0 1 1 0 8 1 amappl12 168 1433 0 1403 3 0 3 3 0 8 1 amappl11 160 43 0 33 1 0 1 1 0 8 0 amappl10 152 8 0 8 1 0 1 1 0 8 1 amappl9 144 266 0 265 1 0 1 1 0 8 0 amappl8 136 23 0 22 1 0 1 1 0 8 0 amappl7 128 99 0 89 1 0 1 1 0 8 0 amappl6 120 186 0 182 1 0 1 1 0 8 0 amappl5 112 119 0 112 1 0 1 1 0 8 0 amappl4 104 299 0 282 1 0 1 1 0 8 0 amappl3 96 4005 0 3892 4 0 4 4 0 8 0 amappl2 88 636 0 580 2 0 2 2 0 8 0 amappl1 80 10142 0 9588 14 0 14 14 0 8 1 amappl 88 5705 0 5536 5 0 5 5 0 92 1 dma4096 4096 2 0 2 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 255 0 255 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 13 0 1 1 0 1 1 0 8 0 uaddrrnd 24 821 0 791 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 821 0 791 1 0 1 1 0 8 0 vmmpekpl 168 8098 0 8070 2 0 2 2 0 8 0 vmmpepl 168 57516 0 55601 95 0 95 95 0 357 9 vmsppl 360 820 0 791 4 0 4 4 0 8 1 rwobjpl 32 20074 0 16463 30 0 30 30 0 8 0 pdppl 4096 1649 0 1582 103 34 69 83 0 8 2 pvpl 32 371350 0 362547 135 0 135 135 0 265 50 pmappl 216 820 0 791 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 296 0 34 8 0 8 8 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace dt_ioctl_record_stop(ffff80000157f000) at dt_ioctl_record_stop+0xf0 sys/dev/dt/dt_dev.c:580 dtclose(11e5f,81,2000,ffff80002a7c27c8) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(11e5f,81,2000,ffff80002a7c27c8) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003ca09030) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8068f73040,81,fffffd8007bfb2d8,ffff80002a7c27c8) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd800a2a36a0,ffff80002a7c27c8) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd800a2a36a0,ffff80002a7c27c8) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd800a2a36a0,ffff80002a7c27c8) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd800a2a36a0,ffff80002a7c27c8) at closef+0x18d sys/kern/kern_descrip.c:1251 fdfree(ffff80002a7c27c8) at fdfree+0x115 sys/kern/kern_descrip.c:1182 exit1(ffff80002a7c27c8,0,0,1) at exit1+0x59c sys/kern/kern_exit.c:215 sys_exit(ffff80002a7c27c8,ffff80003ca093a0,ffff80003ca092f0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ca093a0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca093a0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x78502bc05d70, count: -12 ddb> machine ddbcpu 1 No such command ddb> trace dt_ioctl_record_stop(ffff80000157f000) at dt_ioctl_record_stop+0xf0 sys/dev/dt/dt_dev.c:580 dtclose(11e5f,81,2000,ffff80002a7c27c8) at dtclose+0xd5 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline] dtclose(11e5f,81,2000,ffff80002a7c27c8) at dtclose+0xd5 sys/dev/dt/dt_dev.c:232 spec_close(ffff80003ca09030) at spec_close+0x45f sys/kern/spec_vnops.c:-1 VOP_CLOSE(fffffd8068f73040,81,fffffd8007bfb2d8,ffff80002a7c27c8) at VOP_CLOSE+0x12a sys/kern/vfs_vops.c:156 vn_closefile(fffffd800a2a36a0,ffff80002a7c27c8) at vn_closefile+0x11d vn_close sys/kern/vfs_vnops.c:292 [inline] vn_closefile(fffffd800a2a36a0,ffff80002a7c27c8) at vn_closefile+0x11d sys/kern/vfs_vnops.c:615 fdrop(fffffd800a2a36a0,ffff80002a7c27c8) at fdrop+0x126 sys/kern/kern_descrip.c:1267 closef(fffffd800a2a36a0,ffff80002a7c27c8) at closef+0x18d sys/kern/kern_descrip.c:1251 fdfree(ffff80002a7c27c8) at fdfree+0x115 sys/kern/kern_descrip.c:1182 exit1(ffff80002a7c27c8,0,0,1) at exit1+0x59c sys/kern/kern_exit.c:215 sys_exit(ffff80002a7c27c8,ffff80003ca093a0,ffff80003ca092f0) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80003ca093a0) at syscall+0x97e mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80003ca093a0) at syscall+0x97e sys/arch/amd64/amd64/trap.c:579 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x78502bc05d70, count: -12