uvm_fault(0xfffffd806b7a5020, 0xf, 0, 1) -> e kernel: page fault trap, code=0 Stopped at ktrops+0x58: movq 0x10(%r14),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *490055 70989 0 0x1000 0x4080000 0K syz-executor 91484 19025 0 0x2 0 1 syz-executor ktrops(ffff800037bf9cc0,ffffffffffffffff,0,80000310,fffffd805dd8c360,fffffd80097fb138) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff800037bf9cc0,ffffffffffffffff,0,80000310,fffffd805dd8c360,fffffd80097fb138) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805dd8c360,4,310,0,ffff800037bf9cc0) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805dd8c360,4,310,0,ffff800037bf9cc0) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff800037bf9cc0,ffff80003c01ebd0,ffff80003c01eb20) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c01ebd0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80003c01ebd0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:746 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa3c58c6cdb0, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xfffffd806b7a5020, 0xf, 0, 1) -> e ddb{0}> trace ktrops(ffff800037bf9cc0,ffffffffffffffff,0,80000310,fffffd805dd8c360,fffffd80097fb138) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff800037bf9cc0,ffffffffffffffff,0,80000310,fffffd805dd8c360,fffffd80097fb138) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805dd8c360,4,310,0,ffff800037bf9cc0) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805dd8c360,4,310,0,ffff800037bf9cc0) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff800037bf9cc0,ffff80003c01ebd0,ffff80003c01eb20) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c01ebd0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80003c01ebd0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:746 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa3c58c6cdb0, count: -5 ddb{0}> show registers rdi 0xffff800037bf9cc0 rsi 0xffffffffffffffff rbp 0xffff80003c01e8e0 rbx 0xfffffd80097fb138 rdx 0 rcx 0xffff800037bf9cc0 rax 0xffffffff83845ff0 cpu_info_full_primary+0x1ff0 r8 0xfffffd805dd8c360 r9 0xfffffd80097fb138 r10 0x851bbe59f0794805 r11 0xccd1bb11002df2c1 r12 0xffff800037bf9cc0 r13 0xffffffffffffffff r14 0xffffffffffffffff r15 0x80000310 __kernel_virt_to_phys+0x310 rip 0xffffffff815449a8 ktrops+0x58 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80003c01e860 ss 0x10 ktrops+0x58: movq 0x10(%r14),%r14 ddb{0}> show proc PROC (syz-executor) tid=490055 pid=70989 tcnt=2 stat=onproc flags process=1000 proc=4080000 runpri=17, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0xffff800037bf8800 scnt=1 ecnt=0 forw=0xffffffffffffffff, list=0xffff800037bf8800,0xffffffff8392ced8 process=0xffff8000fffee698 user=0xffff80003c019000, vmspace=0xfffffd806b7a5020 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 70989 313802 98415 0 3 0x3000 suspend syz-executor *70989 490055 98415 0 7 0x4081000 syz-executor 39522 314057 12074 0 2 0 syz-executor 39522 30548 12074 0 3 0x4000080 fsleep syz-executor 27228 268573 67233 60929 2 0x10 syz-executor 27228 335976 67233 60929 3 0x4000090 fsleep syz-executor 27228 294861 67233 60929 3 0x4000090 fsleep syz-executor 26108 5355 82510 60928 2 0x10 syz-executor 26108 404457 82510 60928 2 0x4000010 syz-executor 26108 199954 82510 60928 3 0x4000090 fsleep syz-executor 98415 456245 64898 0 3 0x82 nanoslp syz-executor 19081 222660 0 0 3 0x14200 acct acct 99032 340976 1 0 3 0x100083 ttyin getty 75023 335746 0 0 3 0x14280 nfsidl nfsio 88101 113822 0 0 3 0x14280 nfsidl nfsio 63593 416285 0 0 3 0x14280 nfsidl nfsio 27250 308171 0 0 3 0x14280 nfsidl nfsio 89645 278829 64898 0 2 0x2 syz-executor 19025 91484 64898 0 7 0x2 syz-executor 87642 139753 0 0 3 0x14200 bored sosplice 67233 493199 64898 0 2 0xc82 syz-executor 12074 69942 64898 0 2 0xc82 syz-executor 82510 207412 64898 0 2 0xc82 syz-executor 28964 356757 64898 0 2 0x2 syz-executor 67015 511285 64898 0 2 0x2 syz-executor 64898 349104 54034 0 2 0x3 syz-executor 54034 222234 24947 0 3 0x10008a sigsusp ksh 24947 58189 70914 0 3 0x98 kqread sshd-session 70914 327695 18352 0 3 0x92 kqread sshd-session 18352 211684 1 0 3 0x88 kqread sshd 13378 384804 65424 74 3 0x1100092 bpf pflogd 65424 205479 1 0 3 0x80 sbwait pflogd 72787 330761 31251 73 3 0x1100090 kqread syslogd 31251 262467 1 0 3 0x100082 sbwait syslogd 49275 438123 1 0 3 0x100080 kqread resolvd 75459 61928 62521 77 3 0x100092 kqread dhcpleased 73279 32120 62521 77 3 0x100092 kqread dhcpleased 62521 287448 1 0 3 0x80 kqread dhcpleased 96774 462507 0 0 3 0x14200 bored smr 55452 517230 0 0 2 0x14200 zerothread 77820 314398 0 0 3 0x14200 aiodoned aiodoned 1427 1245 0 0 3 0x14200 syncer update 65750 482820 0 0 3 0x14200 cleaner cleaner 79259 453158 0 0 3 0x14200 reaper reaper 16269 433070 0 0 3 0x14200 pgdaemon pagedaemon 46931 162646 0 0 3 0x14200 bored viomb 10451 18828 0 0 3 0x40014200 acpi0 acpi0 45430 387849 0 0 3 0x40014200 idle1 25979 320478 0 0 3 0x14200 bored softnet1 21345 246116 0 0 2 0x14200 softnet0 22128 209096 0 0 3 0x14200 bored systqmp 97678 291903 0 0 3 0x14200 bored systq 34071 497131 0 0 3 0x14200 tmoslp softclockmp 62513 333860 0 0 3 0x40014200 tmoslp softclock 81545 191333 0 0 3 0x40014200 idle0 1 209418 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb{0}> show all locks Process 70989 (syz-executor) thread 0xffff800037bf9cc0 (490055) Process 89645 (syz-executor) thread 0xffff800037bf9a28 (278829) Process 28964 (syz-executor) thread 0xffff8000ffffdc90 (356757) Process 67015 (syz-executor) thread 0xffff8000ffffd9f8 (511285) ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10260 11250K 11440K 166960K 14838 0 pcb 20 14K 16K 166960K 600 0 rtable 185 9K 10K 166960K 542 0 pf 42 19K 67486K 166960K 266 0 ifaddr 39 7K 8K 166960K 140 0 ifgroup 63 2K 2K 166960K 248 0 sysctl 4 1K 9K 166960K 17 0 counters 72 37K 38K 166960K 250 0 ioctlops 0 0K 4K 166960K 1930 0 iov 0 0K 32K 166960K 148 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1422 89K 90K 166960K 3255 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 23 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 141 0 dirhash 12 2K 2K 166960K 60 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 15 53K 236K 166960K 2101 0 sigio 0 0K 0K 166960K 41 0 proc 72 115K 163K 166960K 801 0 subproc 72 4K 4K 166960K 99 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 362 0 in_multi 82 6K 7K 166960K 218 0 ether_multi 1 0K 0K 166960K 32 0 mrt 2 0K 0K 166960K 20 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 277 1235K 1235K 166960K 277 0 exec 0 0K 1K 166960K 958 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 5 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 228 167K 192K 166960K 21521 0 UVM aobj 62 3K 3K 166960K 69 0 pinsyscall 40 80K 102K 166960K 3248 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 134 0 NDP 14 0K 0K 166960K 100 0 temp 78 8652K 8912K 166960K 77185 0 kqueue 13 20K 32K 166960K 391 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 26 0 0 1 0 1 1 0 8 0 rtpcb 120 174 0 169 1 0 1 1 0 8 0 rtentry 176 167 0 100 5 0 5 5 0 8 0 unpcb 144 1343 0 1326 10 8 2 6 0 8 1 syncache 336 7 0 7 4 3 1 1 0 8 1 tcpcb 736 750 0 744 12 11 1 7 0 8 0 arp 136 23 0 14 1 0 1 1 0 8 0 inpcb 328 2456 0 2444 27 20 7 9 0 8 5 nd6 152 25 0 10 1 0 1 1 0 8 0 pkpcb 40 86 0 86 5 4 1 1 0 8 1 kcovpl 48 11 0 3 1 0 1 1 0 8 0 mppekey 1024 3 0 3 1 1 0 1 0 8 0 ppxss 1192 69 0 69 3 2 1 1 0 8 1 pppxif 1504 6 0 6 4 4 0 1 0 8 0 pfstscr 40 7 0 7 3 2 1 1 0 8 1 pffrag 232 16 0 9 1 0 1 1 0 482 0 pffrnode 88 10 0 3 1 0 1 1 0 8 0 pffrent 40 198 0 191 1 0 1 1 0 8 0 pfosfp 40 1449 0 1023 5 0 5 5 0 8 0 pfosfpen 112 1449 0 732 21 0 21 21 0 8 0 pfrktable 1344 6 0 6 3 3 0 1 0 8 0 pfanchor 1288 2 0 0 1 0 1 1 0 8 0 pftag 88 4 0 1 1 0 1 1 0 8 0 pfstitem 24 94 0 45 1 0 1 1 0 8 0 pfstkey 128 108 0 59 2 0 2 2 0 8 0 pfstate 384 101 0 54 6 0 6 6 0 8 0 pfrule 1344 34 0 28 2 1 1 2 0 8 0 rttmr 136 5 0 5 2 1 1 1 0 8 1 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 856 0 507 31 7 24 28 0 8 1 art_table 40 859 0 507 5 0 5 5 0 8 0 art_node 32 165 0 107 1 0 1 1 0 8 0 sysvmsgpl 40 3 0 2 1 0 1 1 0 8 0 semupl 112 3 0 3 3 3 0 1 0 8 0 semapl 112 136 0 126 1 0 1 1 0 8 0 shmpl 112 66 0 7 2 0 2 2 0 8 0 dirhash 1024 50 0 33 3 0 3 3 0 8 0 dino2pl 256 5371 0 3861 96 0 96 96 0 8 0 ffsino 296 5371 0 3861 118 0 118 118 0 8 0 nchpl 144 8318 0 6616 64 0 64 64 0 8 0 rtmask 32 10 0 10 5 4 1 1 0 8 1 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 29054 0 29052 4 3 1 2 0 8 0 percpumem 16 140 0 89 1 0 1 1 0 8 0 kstatmem 264 160 0 128 4 1 3 3 0 8 0 acpiwqpl 32 2 0 2 1 0 1 1 1 8 1 scsiplug 72 9 0 9 5 4 1 1 0 8 1 scxspl 216 49806 0 49806 12 11 1 7 1 8 1 plimitpl 152 485 0 468 1 0 1 1 0 8 0 sigapl 424 2408 0 2357 9 2 7 8 0 8 0 knotepl 120 575 0 0 17 0 17 17 0 8 0 kqueuepl 224 987 0 978 17 15 2 5 0 8 1 pipepl 344 439 0 411 12 9 3 9 0 8 0 fdescpl 528 2363 0 2334 3 0 3 3 0 8 0 filepl 160 16334 0 16108 30 17 13 18 0 8 1 lockfpl 104 1109 0 1107 2 1 1 2 0 8 0 lockfspl 48 494 0 492 1 0 1 1 0 8 0 sessionpl 144 26 0 17 1 0 1 1 0 8 0 pgrppl 48 72 0 55 1 0 1 1 0 8 0 ucredpl 104 2407 0 2391 1 0 1 1 0 8 0 zombiepl 144 3371 0 3370 1 0 1 1 0 8 0 processpl 1232 2408 0 2357 6 1 5 6 0 8 0 procpl 664 5985 0 5928 10 3 7 8 0 8 0 sosppl 168 5 0 5 3 3 0 1 0 8 0 sockpl 752 4124 0 4090 49 39 10 17 0 8 6 mcl64k 65536 12 0 0 2 0 2 2 0 8 0 mcl12k 12288 1 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 3 0 0 1 0 1 1 0 8 0 mcl4k 4096 126 0 0 16 0 16 16 0 8 0 mcl2k2 2112 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 55 0 0 6 0 6 6 0 8 0 mtagpl 96 152 0 0 4 0 4 4 0 8 0 mbufpl 256 1322 0 0 83 0 83 83 0 8 0 bufpl 280 21172 0 15028 440 0 440 440 0 8 0 anonpl 32 13221 0 0 107 0 107 107 0 246 0 amapchunkpl 152 76625 0 76114 65 29 36 36 0 158 11 amappl16 200 8336 0 8264 50 35 15 22 0 8 7 amappl15 192 6 0 6 1 1 0 1 0 8 0 amappl14 184 120 0 107 1 0 1 1 0 8 0 amappl13 176 5 0 5 1 1 0 1 0 8 0 amappl12 168 3053 0 3025 3 1 2 2 0 8 0 amappl11 160 76 0 62 1 0 1 1 0 8 0 amappl10 152 7 0 7 1 1 0 1 0 8 0 amappl9 144 259 0 258 1 0 1 1 0 8 0 amappl8 136 20 0 17 1 0 1 1 0 8 0 amappl7 128 114 0 101 1 0 1 1 0 8 0 amappl6 120 211 0 207 1 0 1 1 0 8 0 amappl5 112 142 0 131 1 0 1 1 0 8 0 amappl4 104 298 0 277 1 0 1 1 0 8 0 amappl3 96 12857 0 12774 4 1 3 3 0 8 0 amappl2 88 2693 0 2615 2 0 2 2 0 8 0 amappl1 80 16552 0 15971 14 1 13 14 0 8 0 amappl 88 20424 0 20270 5 0 5 5 0 92 0 dma32768 32768 1 0 1 1 1 0 1 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma2048 2048 2 0 2 2 2 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 256 0 256 4 4 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 8 0 8 2 1 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 68 0 7 2 0 2 2 0 8 0 uaddrrnd 24 2362 0 2334 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2362 0 2334 1 0 1 1 0 8 0 vmmpekpl 168 20243 0 20196 4 1 3 3 0 8 0 vmmpepl 168 152344 0 150443 123 20 103 106 0 357 3 vmsppl 488 2362 0 2334 6 1 5 5 0 8 0 rwobjpl 80 46420 0 39471 147 0 147 147 0 8 0 pdppl 4096 4733 0 4668 109 38 71 83 0 8 6 pvpl 32 20771 0 0 168 0 168 168 0 265 0 pmappl 256 2362 0 2334 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 380 0 68 10 1 9 10 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace ktrops(ffff800037bf9cc0,ffffffffffffffff,0,80000310,fffffd805dd8c360,fffffd80097fb138) at ktrops+0x58 ktrcanset sys/kern/kern_ktrace.c:727 [inline] ktrops(ffff800037bf9cc0,ffffffffffffffff,0,80000310,fffffd805dd8c360,fffffd80097fb138) at ktrops+0x58 sys/kern/kern_ktrace.c:570 doktrace(fffffd805dd8c360,4,310,0,ffff800037bf9cc0) at doktrace+0x6bd ktrsetchildren sys/kern/kern_ktrace.c:595 [inline] doktrace(fffffd805dd8c360,4,310,0,ffff800037bf9cc0) at doktrace+0x6bd sys/kern/kern_ktrace.c:517 sys_ktrace(ffff800037bf9cc0,ffff80003c01ebd0,ffff80003c01eb20) at sys_ktrace+0x11c sys/kern/kern_ktrace.c:558 syscall(ffff80003c01ebd0) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80003c01ebd0) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:746 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa3c58c6cdb0, count: -5 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff8397b818) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:134 [inline] __mp_lock(ffffffff8397b818) at __mp_lock+0x192 sys/kern/kern_lock.c:165 syscall(ffff80003c496030) at syscall+0xaf4 mi_syscall sys/sys/syscall_mi.h:175 [inline] syscall(ffff80003c496030) at syscall+0xaf4 sys/arch/amd64/amd64/trap.c:746 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x77515ef6f850, count: 9 ddb{1}> trace x86_ipi_db(ffff8000299edff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff8397b818) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:134 [inline] __mp_lock(ffffffff8397b818) at __mp_lock+0x192 sys/kern/kern_lock.c:165 syscall(ffff80003c496030) at syscall+0xaf4 mi_syscall sys/sys/syscall_mi.h:175 [inline] syscall(ffff80003c496030) at syscall+0xaf4 sys/arch/amd64/amd64/trap.c:746 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x77515ef6f850, count: -6