uvm_fault(0xfffffd806c19f010, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND * 35197 38541 0 0 0x4000000 0 syz-executor ktrops(ffff80002a539708,ffffffffffffffff,0,80000310,fffffd806f8ab550,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a539708,ffffffffffffffff,0,80000310,fffffd806f8ab550,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd806f8ab550,4,310,0,ffff80002a539708) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806f8ab550,4,310,0,ffff80002a539708) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a539708,ffff800033809400,ffff800033809350) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff800033809400) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x68f5c80d5f0, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806c19f010, 0xf, 0, 1) -> e ddb> trace ktrops(ffff80002a539708,ffffffffffffffff,0,80000310,fffffd806f8ab550,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a539708,ffffffffffffffff,0,80000310,fffffd806f8ab550,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd806f8ab550,4,310,0,ffff80002a539708) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806f8ab550,4,310,0,ffff80002a539708) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a539708,ffff800033809400,ffff800033809350) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff800033809400) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x68f5c80d5f0, count: -5 ddb> show registers rdi 0xffff8000338c8000 rsi 0xf12 rbp 0xffff800033809120 rbx 0xfffffd807f7d7750 rdx 0xffff8000338c8000 rcx 0xf11 rax 0xffffffff81c202c3 ktrops+0x43 r8 0xfffffd806f8ab550 r9 0xfffffd807f7d7750 r10 0x6d06f0971cfc65cb r11 0xd53e484e03483368 r12 0xffff80002a539708 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0x80000310 __kernel_virt_to_phys+0x310 rip 0xffffffff81c202d8 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff8000338090a0 ss 0 ktrops+0x58: movq 0x10(%r14),%r14 ddb> show proc PROC (syz-executor) tid=35197 pid=38541 tcnt=2 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=86, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a539990,0xffffffff8350f098 process=0xffff80002a548468 user=0xffff800033804000, vmspace=0xfffffd806c19f010 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 38541 436996 18020 0 2 0 syz-executor *38541 35197 18020 0 7 0x4000000 syz-executor 29881 430804 89061 0 2 0 syz-executor 29881 421291 89061 0 3 0x4000080 fifor syz-executor 29881 227094 89061 0 2 0x4000000 syz-executor 38350 68623 30173 0 2 0 syz-executor 27153 53470 13598 0 2 0 syz-executor 27153 161825 13598 0 3 0x4000080 fsleep syz-executor 1547 305090 64481 0 2 0 syz-executor 1547 330950 64481 0 3 0x4000080 fsleep syz-executor 1547 250750 64481 0 3 0x4000080 fsleep syz-executor 79723 68510 70255 60929 2 0x10 syz-executor 79723 494721 70255 60929 3 0x4000090 sbwait syz-executor 79723 89533 70255 60929 3 0x4000090 fsleep syz-executor 90416 370719 50485 0 2 0 syz-executor 90416 368716 50485 0 3 0x4000080 pipewr syz-executor 90416 70949 50485 0 3 0x4000080 pipewr syz-executor 90416 228178 50485 0 3 0x4000080 fsleep syz-executor 18020 224959 88658 0 2 0x482 syz-executor 13598 362192 88658 0 2 0x482 syz-executor 98022 309730 88658 0 2 0x2 syz-executor 30173 491497 88658 0 2 0x482 syz-executor 64481 487252 88658 0 2 0x482 syz-executor 89061 126137 88658 0 2 0x482 syz-executor 70255 18939 88658 0 2 0x482 syz-executor 50485 191896 88658 0 2 0x482 syz-executor 42545 292175 0 0 3 0x14200 acct acct 74568 145151 0 0 3 0x14280 nfsidl nfsio 86214 393362 0 0 3 0x14280 nfsidl nfsio 11728 269597 0 0 3 0x14280 nfsidl nfsio 6413 102689 0 0 3 0x14280 nfsidl nfsio 61170 69754 0 0 3 0x14280 nfsidl nfsio 83065 232301 0 0 3 0x14280 nfsidl nfsio 40945 247472 0 0 3 0x14280 nfsidl nfsio 92458 80263 0 0 3 0x14280 nfsidl nfsio 51726 483421 0 0 3 0x14280 nfsidl nfsio 99075 198384 0 0 3 0x14280 nfsidl nfsio 35877 197961 0 0 3 0x14280 nfsidl nfsio 4608 253297 0 0 3 0x14280 nfsidl nfsio 23711 5601 0 0 3 0x14280 nfsidl nfsio 42766 251092 0 0 3 0x14280 nfsidl nfsio 23727 278258 0 0 3 0x14280 nfsidl nfsio 61000 229104 0 0 3 0x14280 nfsidl nfsio 43396 382049 0 0 3 0x14280 nfsidl nfsio 30926 86455 0 0 3 0x14280 nfsidl nfsio 94188 90890 0 0 3 0x14280 nfsidl nfsio 40947 317572 0 0 3 0x14280 nfsidl nfsio 15779 337145 0 0 3 0x14200 bored sosplice 88658 489601 82189 0 2 0x2 syz-executor 82189 178359 8094 0 3 0x10008a sigsusp ksh 8094 212192 66030 0 3 0x98 kqread sshd-session 66030 312104 1 0 3 0x92 kqread sshd-session 98697 334934 1 0 3 0x100083 ttyin getty 9456 111188 72660 73 2 0x1100010 syslogd 72660 458226 1 0 3 0x100082 sbwait syslogd 3925 455028 1 0 3 0x100080 kqread resolvd 18224 491799 5062 77 3 0x100092 kqread dhcpleased 87219 305479 5062 77 3 0x100092 kqread dhcpleased 5062 125436 1 0 3 0x80 kqread dhcpleased 83497 260282 0 0 3 0x14200 bored smr 91364 168110 0 0 2 0x14200 zerothread 44796 116591 0 0 3 0x14200 aiodoned aiodoned 7557 85085 0 0 3 0x14200 syncer update 11977 406398 0 0 3 0x14200 cleaner cleaner 36229 338064 0 0 3 0x14200 reaper reaper 18494 332140 0 0 3 0x14200 pgdaemon pagedaemon 51160 216016 0 0 3 0x14200 bored viomb 97799 10513 0 0 3 0x40014200 acpi0 acpi0 90950 229345 0 0 3 0x14200 bored softnet3 13983 476027 0 0 3 0x14200 bored softnet2 87815 504657 0 0 3 0x14200 bored softnet1 85744 65240 0 0 2 0x14200 softnet0 69092 68777 0 0 3 0x14200 bored systqmp 6696 138320 0 0 3 0x14200 bored systq 17400 188597 0 0 2 0x40014200 softclock 10826 417292 0 0 3 0x40014200 idle0 1 435844 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10213 11082K 11403K 166960K 14499 0 pcb 17 16K 17K 166960K 465 0 rtable 196 7K 9K 166960K 4619 0 pf 42 15K 18K 166960K 468 0 ifaddr 39 8K 9K 166960K 618 0 ifgroup 57 2K 2K 166960K 670 0 sysctl 3 0K 2K 166960K 9 0 counters 31 17K 18K 166960K 190 0 ioctlops 0 0K 4K 166960K 540 0 iov 1 12K 28K 166960K 142 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1464 92K 93K 166960K 4901 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 37 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 270 0 dirhash 15 2K 3K 166960K 51 0 ACPI 1690 195K 286K 166960K 12468 0 file desc 17 61K 97K 166960K 4069 0 sigio 0 0K 0K 166960K 70 0 proc 61 67K 124K 166960K 4281 0 subproc 104 6K 7K 166960K 1859 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 703 0 in_multi 85 6K 7K 166960K 1602 0 ether_multi 1 0K 0K 166960K 8 0 mrt 1 0K 0K 166960K 6 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 253 1129K 1129K 166960K 253 0 exec 0 0K 1K 166960K 2478 0 pfkey data 0 0K 0K 166960K 3 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 211 72K 102K 166960K 30663 0 UVM aobj 15 2K 2K 166960K 19 0 pinsyscall 36 72K 100K 166960K 8508 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 127 0 NDP 12 0K 2K 166960K 456 0 temp 76 6828K 6956K 166960K 89952 0 kqueue 12 18K 34K 166960K 360 0 SYN cache 2 2352K 2360K 166960K 3 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 713 0 710 5 2 3 3 0 8 2 rtentry 112 1617 0 1531 4 0 4 4 0 8 1 unpcb 144 2002 0 1979 5 1 4 4 0 8 3 syncache 336 6 0 6 2 1 1 1 0 8 1 tcpqe 32 11 0 11 2 1 1 1 0 8 1 tcpcb 808 742 0 739 8 0 8 8 0 8 7 arp 88 290 0 274 1 0 1 1 0 8 0 ipq 40 16 0 15 1 0 1 1 0 8 0 ipqe 40 332 0 331 1 0 1 1 0 8 0 inpcb 336 3612 0 3601 18 9 9 12 0 8 7 nd6 104 434 0 412 1 0 1 1 0 8 0 pkpcb 40 13 0 13 1 0 1 1 0 8 1 kcovpl 48 143 0 135 1 0 1 1 0 8 0 ppxss 1072 18 0 18 2 1 1 1 0 8 1 pfstscr 40 13 0 12 1 0 1 1 0 8 0 pfanchor 1288 3 0 0 1 0 1 1 0 8 0 pftag 88 1 0 0 1 0 1 1 0 8 0 pfstitem 24 6 0 0 1 0 1 1 0 8 0 pfstkey 128 29 0 23 1 0 1 1 0 8 0 pfstate 344 15 0 12 1 0 1 1 0 8 0 pfrule 1344 15 0 14 2 1 1 1 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 6529 0 6153 29 2 27 29 0 8 1 art_table 32 6531 0 6153 4 0 4 4 0 8 0 art_node 16 1609 0 1532 1 0 1 1 0 8 0 sysvmsgpl 40 8 0 2 1 0 1 1 0 8 0 semapl 112 266 0 256 1 0 1 1 0 8 0 shmpl 112 16 0 4 1 0 1 1 0 8 0 dirhash 1024 44 0 24 3 0 3 3 0 8 0 dino2pl 256 5662 0 3900 111 0 111 111 0 8 0 ffsino 240 5662 0 3900 104 0 104 104 0 8 0 nchpl 144 8812 0 6932 70 0 70 70 0 8 0 uvmvnodes 80 7875 0 0 161 0 161 161 0 8 0 vnodes 216 7875 0 0 438 0 438 438 0 8 0 namei 1024 44087 0 44087 2 1 1 2 0 8 1 kstatmem 264 342 0 318 3 0 3 3 0 8 1 acpiwqpl 32 1 0 1 1 0 1 1 1 8 1 scsiplug 72 8 0 8 2 1 1 1 0 8 1 scxspl 216 72883 0 72883 10 2 8 8 1 8 8 plimitpl 152 781 0 765 1 0 1 1 0 8 0 sigapl 424 4124 0 4058 10 1 9 9 0 8 1 futexpl 64 31715 0 31710 1 0 1 1 0 8 0 knotepl 120 108629 0 108584 34 24 10 17 0 8 8 kqueuepl 184 759 0 750 4 0 4 4 0 8 3 pipepl 288 891 0 863 8 1 7 7 0 8 4 fdescpl 432 4065 0 4037 5 1 4 5 0 8 0 filepl 120 22628 0 22379 16 3 13 13 0 8 3 lockfpl 104 845 0 843 2 0 2 2 0 8 1 lockfspl 48 300 0 298 1 0 1 1 0 8 0 sessionpl 144 154 0 147 1 0 1 1 0 8 0 pgrppl 48 385 0 370 1 0 1 1 0 8 0 ucredpl 104 3887 0 3875 1 0 1 1 0 8 0 zombiepl 144 4058 0 4058 1 0 1 1 0 8 1 processpl 1096 4124 0 4058 6 0 6 6 0 8 0 procpl 648 7093 0 7016 9 1 8 8 0 8 1 sosppl 168 17 0 17 2 1 1 1 0 8 1 sockpl 504 6363 0 6326 50 37 13 21 0 8 8 mcl64k 65536 42 0 42 2 1 1 1 0 8 1 mcl16k 16384 10 0 10 1 0 1 1 0 8 1 mcl12k 12288 8 0 8 2 1 1 1 0 8 1 mcl9k 9216 4 0 4 1 0 1 1 0 8 1 mcl8k 8192 54 0 54 2 1 1 1 0 8 1 mcl4k 4096 5819 0 5760 22 9 13 17 0 8 5 mcl2k2 2112 11 0 11 1 0 1 1 0 8 1 mcl2k 2048 4912 0 4907 7 0 7 7 0 8 5 mtagpl 96 60 0 57 1 0 1 1 0 8 0 mbufpl 256 41624 0 41446 72 49 23 30 0 8 7 bufpl 280 14033 0 6157 563 0 563 563 0 8 0 anonpl 24 547215 0 544138 148 10 138 138 0 187 95 amapchunkpl 152 101275 0 100812 68 7 61 61 0 158 41 amappl16 200 8612 0 8588 62 52 10 18 0 8 8 amappl15 192 10 0 10 1 1 0 1 0 8 0 amappl14 184 369 0 360 1 0 1 1 0 8 0 amappl13 176 15 0 15 2 1 1 1 0 8 1 amappl12 168 6740 0 6712 3 1 2 3 0 8 0 amappl11 160 49 0 39 1 0 1 1 0 8 0 amappl10 152 19 0 18 1 0 1 1 0 8 0 amappl9 144 127 0 127 1 1 0 1 0 8 0 amappl8 136 41 0 39 1 0 1 1 0 8 0 amappl7 128 366 0 356 1 0 1 1 0 8 0 amappl6 120 1473 0 1470 1 0 1 1 0 8 0 amappl5 112 647 0 638 1 0 1 1 0 8 0 amappl4 104 689 0 676 1 0 1 1 0 8 0 amappl3 96 18970 0 18865 4 0 4 4 0 8 1 amappl2 88 2533 0 2469 2 0 2 2 0 8 0 amappl1 80 27337 0 26905 16 3 13 14 0 8 2 amappl 88 29159 0 28997 5 0 5 5 0 92 1 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma512 512 1 0 1 1 0 1 1 0 8 1 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 255 0 255 2 1 1 1 0 8 1 dma64 64 7 0 7 2 1 1 1 0 8 1 dma32 32 9 0 9 2 1 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 18 0 4 1 0 1 1 0 8 0 uaddrrnd 24 4065 0 4037 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4065 0 4037 1 0 1 1 0 8 0 vmmpekpl 168 31735 0 31677 3 0 3 3 0 8 0 vmmpepl 168 248586 0 246990 91 1 90 90 0 357 13 vmsppl 344 4064 0 4037 5 1 4 4 0 8 1 rwobjpl 24 74043 0 65403 54 0 54 54 0 8 0 pdppl 4096 8137 0 8074 323 258 65 83 0 8 2 pvpl 32 1887127 0 1877826 441 63 378 425 0 265 265 pmappl 216 4064 0 4037 3 0 3 3 0 8 1 extentpl 40 55 0 38 1 0 1 1 0 8 0 phpool 112 770 0 371 12 0 12 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ktrops(ffff80002a539708,ffffffffffffffff,0,80000310,fffffd806f8ab550,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a539708,ffffffffffffffff,0,80000310,fffffd806f8ab550,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd806f8ab550,4,310,0,ffff80002a539708) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806f8ab550,4,310,0,ffff80002a539708) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a539708,ffff800033809400,ffff800033809350) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff800033809400) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x68f5c80d5f0, count: -5 ddb> machine ddbcpu 1 No such command ddb> trace ktrops(ffff80002a539708,ffffffffffffffff,0,80000310,fffffd806f8ab550,fffffd807f7d7750) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:718 [inline] ktrops(ffff80002a539708,ffffffffffffffff,0,80000310,fffffd806f8ab550,fffffd807f7d7750) at ktrops+0x58 sys/kern/kern_ktrace.c:561 doktrace(fffffd806f8ab550,4,310,0,ffff80002a539708) at doktrace+0x6dd ktrsetchildren sys/kern/kern_ktrace.c:586 [inline] doktrace(fffffd806f8ab550,4,310,0,ffff80002a539708) at doktrace+0x6dd sys/kern/kern_ktrace.c:508 sys_ktrace(ffff80002a539708,ffff800033809400,ffff800033809350) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:549 syscall(ffff800033809400) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x68f5c80d5f0, count: -5