uvm_fault(0xfffffd80762149e0, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *188100 95023 0 0 0x4000000 0 syz-executor ktrops(ffff80002a800cf0,ffffffffffffffff,0,80000112,fffffd8075c63b18,fffffd807f7d7478) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a800cf0,ffffffffffffffff,0,80000112,fffffd8075c63b18,fffffd807f7d7478) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8075c63b18,4,112,0,ffff80002a800cf0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8075c63b18,4,112,0,ffff80002a800cf0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a800cf0,ffff80003ca05c20,ffff80003ca05b70) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca05c20) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x59029683eb0, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd80762149e0, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a800cf0,ffffffffffffffff,0,80000112,fffffd8075c63b18,fffffd807f7d7478) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a800cf0,ffffffffffffffff,0,80000112,fffffd8075c63b18,fffffd807f7d7478) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8075c63b18,4,112,0,ffff80002a800cf0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8075c63b18,4,112,0,ffff80002a800cf0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a800cf0,ffff80003ca05c20,ffff80003ca05b70) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca05c20) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x59029683eb0, count: -5 ddb> show registers rdi 0xffff80002cd0c000 rsi 0x1588 __ALIGN_SIZE+0x588 rbp 0xffff80003ca05940 rbx 0xfffffd807f7d7478 rdx 0xffff80002cd0c000 rcx 0x1587 __ALIGN_SIZE+0x587 rax 0xffffffff82a7ae03 ktrops+0x43 r8 0xfffffd8075c63b18 r9 0xfffffd807f7d7478 r10 0xa2fb9f921880d6e9 r11 0x5f3062fdbd24773f r12 0xffff80002a800cf0 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0x80000112 __kernel_virt_to_phys+0x112 rip 0xffffffff82a7ae18 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003ca058c0 ss 0 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=188100 pid=95023 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a801c50,0xffff80002a800030 process=0xffff800035d262d8 user=0xffff80003ca00000, vmspace=0xfffffd80762149e0 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 69152 148457 20442 60928 2 0x10 syz-executor 69152 482411 20442 60928 3 0x4000090 fsleep syz-executor 34694 411573 74275 0 2 0x480 syz-executor 34694 357175 74275 0 3 0x4000080 pppxread syz-executor 34619 27982 45284 0 2 0 syz-executor 34619 208772 45284 0 3 0x4000080 fsleep syz-executor 96630 368368 53071 0 2 0 syz-executor 96630 481736 53071 0 3 0x4000080 fsleep syz-executor 96630 178735 53071 0 2 0x4000000 syz-executor 95023 472971 93372 0 2 0 syz-executor *95023 188100 93372 0 7 0x4000000 syz-executor 17402 344494 3327 0 3 0 vmmaplk syz-executor 17402 367931 3327 0 2 0x4000000 syz-executor 18982 499559 23778 0 2 0x2 syz-executor 45284 76993 23778 0 2 0x482 syz-executor 92992 187220 23778 0 2 0x2 syz-executor 11022 313810 0 0 3 0x14280 nfsidl nfsio 90718 302541 0 0 3 0x14280 nfsidl nfsio 66795 248462 0 0 3 0x14280 nfsidl nfsio 93385 300796 0 0 3 0x14280 nfsidl nfsio 29505 24035 0 0 3 0x14280 nfsidl nfsio 31981 486845 0 0 3 0x14280 nfsidl nfsio 6151 354076 0 0 3 0x14280 nfsidl nfsio 80031 494616 0 0 3 0x14280 nfsidl nfsio 31898 425674 0 0 3 0x14280 nfsidl nfsio 25467 334718 0 0 3 0x14280 nfsidl nfsio 18589 298733 0 0 3 0x14280 nfsidl nfsio 32157 44766 0 0 3 0x14280 nfsidl nfsio 30154 64673 0 0 3 0x14280 nfsidl nfsio 80807 184474 0 0 3 0x14280 nfsidl nfsio 26230 393103 0 0 3 0x14280 nfsidl nfsio 39688 322128 0 0 3 0x14280 nfsidl nfsio 74134 447519 0 0 3 0x14280 nfsidl nfsio 67803 171926 0 0 3 0x14280 nfsidl nfsio 22933 417188 0 0 3 0x14280 nfsidl nfsio 93964 443008 0 0 3 0x14280 nfsidl nfsio 37009 318868 0 0 3 0x14200 bored sosplice 53071 294120 23778 0 3 0x82 nanoslp syz-executor 74275 479549 23778 0 3 0x82 nanoslp syz-executor 20442 320139 23778 0 3 0x82 nanoslp syz-executor 93372 388529 23778 0 3 0x82 nanoslp syz-executor 3327 249394 23778 0 2 0x482 syz-executor 23778 159255 31091 0 3 0x82 kqread syz-executor 31091 18036 8197 0 3 0x10008a sigsusp ksh 8197 425958 27170 0 3 0x98 kqread sshd-session 27170 48073 20917 0 3 0x92 kqread sshd-session 37504 62931 1 0 3 0x100083 ttyin getty 20917 26257 1 0 3 0x88 kqread sshd 84770 177262 88981 73 3 0x1100090 kqread syslogd 88981 365922 1 0 3 0x100082 sbwait syslogd 47404 313111 1 0 3 0x100080 kqread resolvd 41776 78818 85847 77 3 0x100092 kqread dhcpleased 38980 521920 85847 77 3 0x100092 kqread dhcpleased 85847 402956 1 0 3 0x80 kqread dhcpleased 19512 389023 0 0 3 0x14200 bored smr 88729 51341 0 0 2 0x14200 zerothread 55154 320462 0 0 3 0x14200 aiodoned aiodoned 26095 82206 0 0 3 0x14200 syncer update 61666 301074 0 0 3 0x14200 cleaner cleaner 2607 167435 0 0 3 0x14200 reaper reaper 3989 295995 0 0 3 0x14200 pgdaemon pagedaemon 78197 475400 0 0 3 0x14200 bored viomb 54921 391925 0 0 3 0x40014200 acpi0 acpi0 94521 21674 0 0 3 0x14200 bored softnet3 44762 326630 0 0 3 0x14200 bored softnet2 28317 464459 0 0 3 0x14200 bored softnet1 16635 411995 0 0 3 0x14200 bored softnet0 90449 384128 0 0 3 0x14200 bored systqmp 8926 382861 0 0 3 0x14200 bored systq 79498 8066 0 0 3 0x40014200 tmoslp softclock 64665 104188 0 0 3 0x40014200 idle0 1 47840 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10190 11069K 11635K 166960K 13077 0 pcb 19 16K 18K 166960K 235 0 rtable 202 8K 8K 166960K 609 0 pf 37 14K 16K 166960K 212 0 ifaddr 38 6K 7K 166960K 110 0 ifgroup 58 2K 2K 166960K 179 0 sysctl 3 1K 1K 166960K 5 0 counters 32 17K 18K 166960K 82 0 ioctlops 0 0K 4K 166960K 172 0 iov 0 0K 40K 166960K 228 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1430 90K 90K 166960K 2192 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 21 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 35 0 dirhash 12 2K 2K 166960K 30 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 57K 97K 166960K 1056 0 sigio 0 0K 0K 166960K 156 0 proc 61 59K 116K 166960K 655 0 subproc 72 4K 4K 166960K 108 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 2 0K 0K 166960K 338 0 in_multi 74 5K 7K 166960K 195 0 ether_multi 1 0K 0K 166960K 13 0 mrt 3 0K 0K 166960K 7 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 67 307K 307K 166960K 67 0 exec 0 0K 1K 166960K 700 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 3 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 213 74K 90K 166960K 10721 0 UVM aobj 36 5K 5K 166960K 41 0 pinsyscall 37 74K 96K 166960K 2182 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 48 0 NDP 13 0K 2K 166960K 75 0 temp 63 8681K 8753K 166960K 58574 0 kqueue 15 24K 30K 166960K 174 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 145 0 141 2 1 1 2 0 8 0 rtentry 112 191 0 104 4 0 4 4 0 8 0 unpcb 144 896 0 881 9 8 1 6 0 8 0 syncache 336 3 0 3 1 1 0 1 0 8 0 tcpcb 808 197 0 192 3 2 1 2 0 8 0 arp 88 31 0 16 1 0 1 1 0 8 0 ipq 40 2 0 1 1 0 1 1 0 8 0 ipqe 40 7 0 3 1 0 1 1 0 8 0 inpcb 344 1394 0 1381 36 27 9 19 0 8 7 nd6 104 43 0 27 1 0 1 1 0 8 0 pkpcb 40 10 0 10 3 2 1 1 0 8 1 kcovpl 48 12 0 4 1 0 1 1 0 8 0 ppxss 1072 32 0 32 2 1 1 1 0 8 1 pppxif 1376 8 0 8 2 1 1 1 0 8 1 pftag 88 4 0 1 1 0 1 1 0 8 0 pfqueue 320 3 0 3 3 2 1 1 0 8 1 pfstitem 24 2 0 0 1 0 1 1 0 8 0 pfstkey 128 3 0 1 1 0 1 1 0 8 0 pfstate 344 2 0 1 1 0 1 1 0 8 0 pfrule 1344 8 0 7 1 0 1 1 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 776 0 396 34 9 25 29 0 8 0 art_table 32 778 0 396 4 0 4 4 0 8 0 art_node 16 187 0 109 1 0 1 1 0 8 0 sysvmsgpl 40 16 0 10 1 0 1 1 0 8 0 semapl 112 32 0 22 1 0 1 1 0 8 0 shmpl 112 38 0 5 1 0 1 1 0 8 0 dirhash 1024 29 0 12 3 0 3 3 0 8 0 dino2pl 256 3200 0 1696 95 0 95 95 0 8 0 ffsino 248 3200 0 1696 95 0 95 95 0 8 0 nchpl 144 4670 0 2974 63 0 63 63 0 8 0 rtmask 32 1 0 1 1 1 0 1 0 8 0 uvmvnodes 80 3860 0 0 79 0 79 79 0 8 0 vnodes 216 3860 0 0 215 0 215 215 0 8 0 namei 1024 18445 0 18444 4 3 1 2 0 8 0 kstatmem 264 100 0 74 3 0 3 3 0 8 1 acpiwqpl 32 2 0 2 1 0 1 1 1 8 1 scsiplug 72 3 0 3 1 0 1 1 0 8 1 scxspl 216 15097 0 15097 10 9 1 8 1 8 1 plimitpl 152 210 0 193 1 0 1 1 0 8 0 sigapl 424 1347 0 1282 8 0 8 8 0 8 0 futexpl 64 15056 0 15053 1 0 1 1 0 8 0 knotepl 120 312092 0 312036 31 22 9 16 0 8 7 kqueuepl 184 454 0 440 7 3 4 4 0 8 3 pipepl 296 263 0 236 8 5 3 8 0 8 0 fdescpl 440 1309 0 1281 5 1 4 5 0 8 0 filepl 120 9882 0 9657 26 13 13 15 0 8 4 lockfpl 104 487 0 483 2 0 2 2 0 8 1 lockfspl 48 116 0 112 1 0 1 1 0 8 0 sessionpl 144 25 0 17 1 0 1 1 0 8 0 pgrppl 48 121 0 105 1 0 1 1 0 8 0 ucredpl 104 1929 0 1916 1 0 1 1 0 8 0 zombiepl 144 1282 0 1282 2 1 1 1 0 8 1 processpl 1112 1347 0 1282 5 0 5 5 0 8 0 procpl 656 2642 0 2570 9 1 8 8 0 8 1 sosppl 168 9 0 9 3 2 1 1 0 8 1 sockpl 528 2498 0 2466 38 28 10 16 0 8 7 mcl64k 65536 146 0 145 3 2 1 1 0 8 0 mcl9k 9216 3 0 3 2 1 1 1 0 8 1 mcl8k 8192 19 0 19 3 2 1 1 0 8 1 mcl4k 4096 3620 0 3566 17 9 8 16 0 8 0 mcl2k 2048 1165 0 1156 6 3 3 3 0 8 1 mtagpl 96 111 0 19 3 0 3 3 0 8 0 mbufpl 256 14115 0 13870 25 2 23 23 0 8 2 bufpl 280 4661 0 132 324 0 324 324 0 8 0 anonpl 24 220896 0 207597 100 0 100 100 0 187 19 amapchunkpl 152 36745 0 36066 60 24 36 43 0 158 9 amappl16 200 5024 0 4585 41 6 35 40 0 8 8 amappl15 192 9 0 9 1 1 0 1 0 8 0 amappl14 184 108 0 98 1 0 1 1 0 8 0 amappl13 176 13 0 13 1 1 0 1 0 8 0 amappl12 168 1989 0 1961 3 1 2 3 0 8 0 amappl11 160 48 0 38 1 0 1 1 0 8 0 amappl10 152 4 0 4 1 1 0 1 0 8 0 amappl9 144 250 0 249 1 0 1 1 0 8 0 amappl8 136 27 0 25 1 0 1 1 0 8 0 amappl7 128 102 0 92 1 0 1 1 0 8 0 amappl6 120 224 0 221 1 0 1 1 0 8 0 amappl5 112 130 0 123 1 0 1 1 0 8 0 amappl4 104 302 0 287 1 0 1 1 0 8 0 amappl3 96 6950 0 6846 6 2 4 4 0 8 1 amappl2 88 671 0 615 2 0 2 2 0 8 0 amappl1 80 10478 0 9960 13 1 12 13 0 8 0 amappl 88 10281 0 10117 6 1 5 5 0 92 0 dma65536 65536 2 0 2 2 1 1 1 0 8 1 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 254 0 254 2 1 1 1 0 8 1 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 40 0 5 1 0 1 1 0 8 0 uaddrrnd 24 1309 0 1281 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1309 0 1281 1 0 1 1 0 8 0 vmmpekpl 168 11375 0 11331 3 0 3 3 0 8 0 vmmpepl 168 86463 0 84358 117 7 110 110 0 357 16 vmsppl 360 1308 0 1281 4 1 3 4 0 8 0 rwobjpl 32 28238 0 23088 42 0 42 42 0 8 0 pdppl 4096 2624 0 2562 114 48 66 82 0 8 4 pvpl 32 569714 0 549901 197 9 188 188 0 265 26 pmappl 216 1308 0 1281 3 0 3 3 0 8 0 extentpl 40 55 0 38 1 0 1 1 0 8 0 phpool 112 315 0 84 8 0 8 8 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a800cf0,ffffffffffffffff,0,80000112,fffffd8075c63b18,fffffd807f7d7478) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a800cf0,ffffffffffffffff,0,80000112,fffffd8075c63b18,fffffd807f7d7478) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8075c63b18,4,112,0,ffff80002a800cf0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8075c63b18,4,112,0,ffff80002a800cf0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a800cf0,ffff80003ca05c20,ffff80003ca05b70) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca05c20) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x59029683eb0, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a800cf0,ffffffffffffffff,0,80000112,fffffd8075c63b18,fffffd807f7d7478) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff80002a800cf0,ffffffffffffffff,0,80000112,fffffd8075c63b18,fffffd807f7d7478) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd8075c63b18,4,112,0,ffff80002a800cf0) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd8075c63b18,4,112,0,ffff80002a800cf0) at doktrace+0x6dd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff80002a800cf0,ffff80003ca05c20,ffff80003ca05b70) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003ca05c20) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x59029683eb0, count: -5