login: panic: uvm_fault_unwire_locked: address not in map Stopped at db_enter+0x25: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *307006 80750 60928 0x10 0x4000000 0K syz-executor 506932 17341 0 0x14000 0x200 1 reaper db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff830bdbc6) at panic+0x1e5 sys/kern/subr_prf.c:198 uvm_fault_unwire_locked(fffffd806bd71dc8,20000000,20001000) at uvm_fault_unwire_locked+0x487 sys/uvm/uvm_fault.c:1663 uvm_fault_unwire(fffffd806bd71dc8,20000000,20001000) at uvm_fault_unwire+0x55 sys/uvm/uvm_fault.c:1623 kern_sysctl(ffff800037262744,2,20000100,ffff800037262778,0,27,c2bf96c70e25524a) at kern_sysctl+0x500 sysctl_vsunlock sys/kern/kern_sysctl.c:209 [inline] kern_sysctl(ffff800037262744,2,20000100,ffff800037262778,0,27,c2bf96c70e25524a) at kern_sysctl+0x500 sys/kern/kern_sysctl.c:507 sys_sysctl(ffff8000fffee030,ffff8000372628b0,ffff800037262800) at sys_sysctl+0x422 syscall(ffff8000372628b0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:178 [inline] syscall(ffff8000372628b0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdb5efda9dd0, count: 7 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault_unwire_locked: address not in map ddb{0}> trace db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff830bdbc6) at panic+0x1e5 sys/kern/subr_prf.c:198 uvm_fault_unwire_locked(fffffd806bd71dc8,20000000,20001000) at uvm_fault_unwire_locked+0x487 sys/uvm/uvm_fault.c:1663 uvm_fault_unwire(fffffd806bd71dc8,20000000,20001000) at uvm_fault_unwire+0x55 sys/uvm/uvm_fault.c:1623 kern_sysctl(ffff800037262744,2,20000100,ffff800037262778,0,27,c2bf96c70e25524a) at kern_sysctl+0x500 sysctl_vsunlock sys/kern/kern_sysctl.c:209 [inline] kern_sysctl(ffff800037262744,2,20000100,ffff800037262778,0,27,c2bf96c70e25524a) at kern_sysctl+0x500 sys/kern/kern_sysctl.c:507 sys_sysctl(ffff8000fffee030,ffff8000372628b0,ffff800037262800) at sys_sysctl+0x422 syscall(ffff8000372628b0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:178 [inline] syscall(ffff8000372628b0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdb5efda9dd0, count: -8 ddb{0}> show registers rdi 0 rsi 0x1 rbp 0xffff8000372623f0 rbx 0xffffffff8348bdbf cpu_info_full_primary+0x2dbf rdx 0xffff8000012a66c0 rcx 0xffff8000fffee030 rax 0xffffffff8348aff0 cpu_info_full_primary+0x1ff0 r8 0 r9 0x8080808080808080 r10 0x1f5b206eef9693f0 r11 0x96550e1a0ae59fca r12 0xffffffff8348bbc0 cpu_info_full_primary+0x2bc0 r13 0 r14 0 r15 0x1 rip 0xffffffff82f7a995 db_enter+0x25 cs 0x8 rflags 0x246 rsp 0xffff8000372623e0 ss 0x10 db_enter+0x25: addq $0x8,%rsp ddb{0}> show proc PROC (syz-executor) tid=307006 pid=80750 tcnt=9 stat=onproc flags process=10 proc=4000000 runpri=32, usrpri=77, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000fffee7c8,0xffff8000ffffdbf8 process=0xffff8000371d2440 user=0xffff80003725d000, vmspace=0xfffffd806bd71dc8 estcpu=27, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 52377 352263 51977 0 2 0 syz-executor 40433 441832 1 0 3 0x80 nanoslp init 80750 49894 19302 60928 3 0x90 nanoslp syz-executor 80750 61192 19302 60928 2 0x4000010 syz-executor 80750 190325 19302 60928 3 0x4000090 fsleep syz-executor 80750 404453 19302 60928 3 0x4000090 fsleep syz-executor *80750 307006 19302 60928 7 0x4000010 syz-executor 80750 427053 19302 60928 2 0x4000010 syz-executor 80750 40981 19302 60928 2 0x4000010 syz-executor 80750 128530 19302 60928 2 0x4000010 syz-executor 80750 258420 19302 60928 3 0x4000090 fsleep syz-executor 17177 94927 14579 0 2 0 syz-executor 17177 205087 14579 0 3 0x4000080 fsleep syz-executor 17177 506892 14579 0 3 0x4000080 fsleep syz-executor 21436 20138 0 0 3 0x14200 bored sosplice 67434 347752 0 0 3 0x14280 nfsidl nfsio 79713 512527 0 0 3 0x14280 nfsidl nfsio 28745 488840 0 0 3 0x14280 nfsidl nfsio 46085 480349 0 0 3 0x14280 nfsidl nfsio 25361 277699 0 0 3 0x14280 nfsidl nfsio 20129 439000 0 0 3 0x14280 nfsidl nfsio 34242 67743 0 0 3 0x14280 nfsidl nfsio 45911 11764 0 0 3 0x14280 nfsidl nfsio 27143 412597 0 0 3 0x14280 nfsidl nfsio 80429 223181 0 0 3 0x14280 nfsidl nfsio 17481 395930 0 0 3 0x14280 nfsidl nfsio 88331 264444 0 0 3 0x14280 nfsidl nfsio 66996 306121 0 0 3 0x14280 nfsidl nfsio 91198 232440 0 0 3 0x14280 nfsidl nfsio 68033 136437 0 0 3 0x14280 nfsidl nfsio 43038 67358 0 0 3 0x14280 nfsidl nfsio 33862 205743 0 0 3 0x14280 nfsidl nfsio 51912 475290 0 0 3 0x14280 nfsidl nfsio 40834 65399 0 0 3 0x14280 nfsidl nfsio 59284 354234 0 0 3 0x14280 nfsidl nfsio 40915 6254 56728 0 2 0x2 syz-executor 14579 77643 56728 0 3 0x82 nanoslp syz-executor 73000 162323 56728 0 2 0x2 syz-executor 51977 5759 56728 0 3 0x82 nanoslp syz-executor 19302 245415 56728 0 2 0x482 syz-executor 11356 322669 56728 0 2 0x2 syz-executor 28447 200491 56728 0 2 0x2 syz-executor 93910 442764 56728 0 2 0x482 syz-executor 56728 325842 5975 0 2 0x82 syz-executor 5975 318895 96008 0 3 0x10008a sigsusp ksh 96008 176890 22977 0 3 0x98 kqread sshd-session 22977 46827 61660 0 3 0x92 kqread sshd-session 61660 163735 1 0 3 0x88 kqread sshd 26634 172512 54340 74 3 0x1100092 bpf pflogd 54340 410656 1 0 3 0x80 sbwait pflogd 18416 350823 42057 73 3 0x1100090 kqread syslogd 42057 367407 1 0 3 0x100082 sbwait syslogd 88619 510444 1 0 3 0x100080 kqread resolvd 81230 229912 20101 77 3 0x100092 kqread dhcpleased 86496 175169 20101 77 3 0x100092 kqread dhcpleased 20101 302235 1 0 3 0x80 kqread dhcpleased 41471 50555 0 0 3 0x14200 pause smr 42083 92337 0 0 2 0x14200 zerothread 51945 439014 0 0 3 0x14200 aiodoned aiodoned 25389 256073 0 0 3 0x14200 syncer update 2258 431983 0 0 3 0x14200 cleaner cleaner 17341 506932 0 0 7 0x14200 reaper 12585 365539 0 0 3 0x14200 pgdaemon pagedaemon 74802 511675 0 0 3 0x14200 bored viomb 68757 111394 0 0 3 0x40014200 acpi0 acpi0 60175 215004 0 0 3 0x40014200 idle1 53122 416240 0 0 3 0x14200 bored softnet3 27328 484157 0 0 3 0x14200 bored softnet2 88355 282017 0 0 3 0x14200 bored softnet1 51171 277386 0 0 3 0x14200 bored softnet0 7461 202247 0 0 3 0x14200 bored systqmp 11003 168711 0 0 3 0x14200 bored systq 50293 127952 0 0 3 0x14200 tmoslp softclockmp 88892 484545 0 0 3 0x40014200 tmoslp softclock 12789 124944 0 0 3 0x40014200 idle0 1 436706 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks CPU 1: exclusive kernel: protection fault trap, code=0 Faulted in DDB; continuing... ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10192 11178K 11517K 166960K 11328 0 pcb 17 12K 12K 166960K 25 0 rtable 236 6K 6K 166960K 355 0 pf 34 17K 18K 166960K 48 0 ifaddr 43 7K 7K 166960K 46 0 ifgroup 55 2K 2K 166960K 60 0 counters 64 36K 36K 166960K 66 0 ioctlops 0 0K 4K 166960K 1490 0 iov 0 0K 8K 166960K 3 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1366 86K 86K 166960K 1426 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 6 0 VM map 2 1K 1K 166960K 2 0 sem 4 0K 0K 166960K 4 0 dirhash 12 2K 2K 166960K 15 0 ACPI 1690 195K 286K 166960K 12468 0 file desc 13 45K 93K 166960K 178 0 proc 63 79K 128K 166960K 544 0 subproc 104 6K 6K 166960K 104 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 5 0 in_multi 99 7K 7K 166960K 99 0 ether_multi 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 49 228K 228K 166960K 49 0 exec 0 0K 1K 166960K 380 0 pfkey data 0 0K 0K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 202 72K 73K 166960K 3340 0 UVM aobj 6 2K 2K 166960K 8 0 pinsyscall 37 74K 108K 166960K 1262 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 4 0 NDP 12 0K 2K 166960K 29 0 temp 40 6810K 6874K 166960K 4584 0 kqueue 13 20K 24K 166960K 28 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 38 0 35 1 0 1 1 0 8 0 rtentry 112 112 0 1 4 0 4 4 0 8 0 unpcb 144 60 0 39 1 0 1 1 0 8 0 syncache 336 3 0 3 1 0 1 1 0 8 1 tcpcb 808 19 0 15 1 0 1 1 0 8 0 arp 120 19 0 0 1 0 1 1 0 8 0 inpcb 336 103 0 95 2 0 2 2 0 8 1 nd6 136 24 0 0 1 0 1 1 0 8 0 pkpcb 40 33 0 33 1 0 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 21 0 0 1 0 1 1 0 8 0 pfstkey 128 21 0 0 1 0 1 1 0 8 0 pfstate 376 21 0 0 3 0 3 3 0 8 0 pfrule 1344 21 0 15 2 0 2 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 452 0 0 29 0 29 29 0 8 0 art_table 32 453 0 0 4 0 4 4 0 8 0 art_node 16 111 0 11 1 0 1 1 0 8 0 sysvmsgpl 40 1 0 1 1 0 1 1 0 8 1 semapl 112 2 0 0 1 0 1 1 0 8 0 shmpl 112 5 0 2 1 0 1 1 0 8 0 dirhash 1024 19 0 2 3 0 3 3 0 8 0 dino2pl 256 1647 0 140 95 0 95 95 0 8 0 ffsino 272 1647 0 140 101 0 101 101 0 8 0 nchpl 144 1900 0 215 63 0 63 63 0 8 0 uvmvnodes 80 1785 0 0 37 0 37 37 0 8 0 vnodes 216 1785 0 0 100 0 100 100 0 8 0 namei 1024 5994 0 5990 2 0 2 2 0 8 0 percpumem 16 47 0 1 1 0 1 1 0 8 0 kstatmem 264 26 0 2 2 0 2 2 0 8 0 scxspl 216 5414 0 5414 3 1 2 2 1 8 2 plimitpl 152 35 0 18 1 0 1 1 0 8 0 sigapl 424 502 0 435 8 0 8 8 0 8 0 futexpl 64 789 0 784 1 0 1 1 0 8 0 knotepl 120 297 0 0 9 0 9 9 0 8 0 kqueuepl 216 33 0 23 1 0 1 1 0 8 0 pipepl 320 115 0 88 3 0 3 3 0 8 0 fdescpl 496 463 0 436 5 0 5 5 0 8 1 filepl 152 1807 0 1558 12 0 12 12 0 8 2 lockfpl 104 20 0 18 1 0 1 1 0 8 0 lockfspl 48 11 0 9 1 0 1 1 0 8 0 sessionpl 144 23 0 15 1 0 1 1 0 8 0 pgrppl 48 31 0 15 1 0 1 1 0 8 0 ucredpl 104 81 0 66 1 0 1 1 0 8 0 zombiepl 144 436 0 435 1 0 1 1 0 8 0 processpl 1160 502 0 435 6 0 6 6 0 8 0 procpl 648 588 0 511 7 0 7 7 0 8 0 sockpl 664 235 0 203 6 0 6 6 0 8 3 mcl64k 65536 1 0 0 1 0 1 1 0 8 0 mcl8k 8192 4 0 0 1 0 1 1 0 8 0 mcl4k 4096 128 0 0 16 0 16 16 0 8 0 mcl2k 2048 25 0 0 4 0 4 4 0 8 0 mtagpl 96 34 0 0 1 0 1 1 0 8 0 mbufpl 256 155 0 0 10 0 10 10 0 8 0 bufpl 280 2295 0 97 157 0 157 157 0 8 0 anonpl 24 138065 0 130949 48 3 45 45 0 185 0 amapchunkpl 152 10322 0 9919 21 0 21 21 0 158 0 amappl16 200 3610 0 3355 17 3 14 14 0 8 0 amappl15 192 9 0 9 1 1 0 1 0 8 0 amappl14 184 118 0 107 1 0 1 1 0 8 0 amappl13 176 12 0 12 1 1 0 1 0 8 0 amappl12 168 1114 0 1089 3 1 2 2 0 8 0 amappl11 160 59 0 45 1 0 1 1 0 8 0 amappl10 152 23 0 23 1 1 0 1 0 8 0 amappl9 144 138 0 137 1 0 1 1 0 8 0 amappl8 136 21 0 19 1 0 1 1 0 8 0 amappl7 128 120 0 108 1 0 1 1 0 8 0 amappl6 120 163 0 161 1 0 1 1 0 8 0 amappl5 112 139 0 127 1 0 1 1 0 8 0 amappl4 104 307 0 290 1 0 1 1 0 8 0 amappl3 96 1974 0 1903 3 0 3 3 0 8 0 amappl2 88 726 0 651 3 0 3 3 0 8 0 amappl1 80 7613 0 7082 15 0 15 15 0 8 2 amappl 88 2962 0 2820 5 0 5 5 0 92 0 dma4096 4096 2 0 2 2 1 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 7 0 2 1 0 1 1 0 8 0 uaddrrnd 24 463 0 436 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 463 0 436 1 0 1 1 0 8 0 vmmpekpl 168 5339 0 5297 3 0 3 3 0 8 0 vmmpepl 168 36905 0 35060 85 0 85 85 0 357 0 vmsppl 440 462 0 436 6 1 5 5 0 8 1 rwobjpl 56 16459 0 13578 42 0 42 42 0 8 0 pdppl 4096 933 0 872 103 34 69 85 0 8 8 pvpl 32 12799 0 0 105 1 104 104 0 265 0 pmappl 248 462 0 436 3 0 3 3 0 8 0 extentpl 40 55 0 38 1 0 1 1 0 8 0 phpool 112 374 0 36 11 0 11 11 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff830bdbc6) at panic+0x1e5 sys/kern/subr_prf.c:198 uvm_fault_unwire_locked(fffffd806bd71dc8,20000000,20001000) at uvm_fault_unwire_locked+0x487 sys/uvm/uvm_fault.c:1663 uvm_fault_unwire(fffffd806bd71dc8,20000000,20001000) at uvm_fault_unwire+0x55 sys/uvm/uvm_fault.c:1623 kern_sysctl(ffff800037262744,2,20000100,ffff800037262778,0,27,c2bf96c70e25524a) at kern_sysctl+0x500 sysctl_vsunlock sys/kern/kern_sysctl.c:209 [inline] kern_sysctl(ffff800037262744,2,20000100,ffff800037262778,0,27,c2bf96c70e25524a) at kern_sysctl+0x500 sys/kern/kern_sysctl.c:507 sys_sysctl(ffff8000fffee030,ffff8000372628b0,ffff800037262800) at sys_sysctl+0x422 syscall(ffff8000372628b0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:178 [inline] syscall(ffff8000372628b0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdb5efda9dd0, count: -8 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff83505dc8) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:113 [inline] __mp_lock(ffffffff83505dc8) at __mp_lock+0x192 sys/kern/kern_lock.c:144 reaper(ffff800029fd96d0) at reaper+0x24b sys/kern/kern_exit.c:478 end trace frame: 0x0, count: 10 ddb{1}> trace x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff83505dc8) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:113 [inline] __mp_lock(ffffffff83505dc8) at __mp_lock+0x192 sys/kern/kern_lock.c:144 reaper(ffff800029fd96d0) at reaper+0x24b sys/kern/kern_exit.c:478 end trace frame: 0x0, count: -5