uvm_fault(0xffffffff83a99090, 0xffff80001b532000, 0, 2) -> d kernel: page fault trap, code=2 Stopped at memset+0x52: repe stosq %es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND memset() at memset+0x52 VOP_WRITE(fffffd806de26038,ffff80002a2949f0,0,fffffd80097fd618) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 uvn_io(fffffd806e8ae3c8,ffff80002a294b70,6,39,1) at uvn_io+0x498 sys/uvm/uvm_vnode.c:1232 uvm_pager_put(fffffd806e8ae3c8,fffffd800860bd88,ffff80002a294c10,ffff80002a294c34,39,0,b70570c3e6339ae8) at uvm_pager_put+0x10a sys/uvm/uvm_pager.c:505 uvn_flush(fffffd806e8ae3c8,0,0,19) at uvn_flush+0x690 sys/uvm/uvm_vnode.c:705 uvn_detach(fffffd806e8ae3c8) at uvn_detach+0xcf sys/uvm/uvm_vnode.c:344 uvm_unmap_detach(ffff80002a294d40,0) at uvm_unmap_detach+0x15e sys/uvm/uvm_map.c:1370 uvm_map_teardown(fffffd806e7e5b80) at uvm_map_teardown+0x360 sys/uvm/uvm_map.c:2536 exit1(ffff8000ffffcf98,43,0,1) at exit1+0x6fc sys/kern/kern_exit.c:260 sys_exit(ffff8000ffffcf98,ffff80002a294f10,ffff80002a294e60) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80002a294f10) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80002a294f10) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7ae31e6e61c0, count: 3 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xffffffff83a99090, 0xffff80001b532000, 0, 2) -> d ddb{0}> trace memset() at memset+0x52 VOP_WRITE(fffffd806de26038,ffff80002a2949f0,0,fffffd80097fd618) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 uvn_io(fffffd806e8ae3c8,ffff80002a294b70,6,39,1) at uvn_io+0x498 sys/uvm/uvm_vnode.c:1232 uvm_pager_put(fffffd806e8ae3c8,fffffd800860bd88,ffff80002a294c10,ffff80002a294c34,39,0,b70570c3e6339ae8) at uvm_pager_put+0x10a sys/uvm/uvm_pager.c:505 uvn_flush(fffffd806e8ae3c8,0,0,19) at uvn_flush+0x690 sys/uvm/uvm_vnode.c:705 uvn_detach(fffffd806e8ae3c8) at uvn_detach+0xcf sys/uvm/uvm_vnode.c:344 uvm_unmap_detach(ffff80002a294d40,0) at uvm_unmap_detach+0x15e sys/uvm/uvm_map.c:1370 uvm_map_teardown(fffffd806e7e5b80) at uvm_map_teardown+0x360 sys/uvm/uvm_map.c:2536 exit1(ffff8000ffffcf98,43,0,1) at exit1+0x6fc sys/kern/kern_exit.c:260 sys_exit(ffff8000ffffcf98,ffff80002a294f10,ffff80002a294e60) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80002a294f10) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80002a294f10) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7ae31e6e61c0, count: -12 ddb{0}> show registers rdi 0xffff80001b532000 rsi 0 rbp 0xffff80002a294950 rbx 0xe rdx 0 rcx 0x800 rax 0 r8 0x4000 __ALIGN_SIZE+0x3000 r9 0xffff80002a2947d8 r10 0xf64b238d2920156b r11 0xffff80001b532000 r12 0x4000 __ALIGN_SIZE+0x3000 r13 0x4000 __ALIGN_SIZE+0x3000 r14 0xffff80001b532000 r15 0x4000 __ALIGN_SIZE+0x3000 rip 0xffffffff828c9fa2 memset+0x52 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff80002a294888 ss 0x10 memset+0x52: repe stosq %es:(%rdi) ddb{0}> show proc PROC (syz-executor) tid=50561 pid=48942 tcnt=0 stat=onproc flags process=a proc=2000 runpri=32, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=1 forw=0xffffffffffffffff, list=0xffff8000ffffd760,0xffff8000fffea560 process=0xffff80002a227030 user=0xffff80002a28f000, vmspace=0xfffffd806e7e5b80 estcpu=36, cpticks=76, pctcpu=0.64, user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 38139 408463 1 0 3 0x100083 ttyin getty 18526 291231 77909 0 3 0x10008a sigsusp ksh 77909 212611 14940 0 3 0x98 kqread sshd-session 14940 209332 44065 0 3 0x92 kqread sshd-session 44065 337508 1 0 3 0x88 kqread sshd 47352 348171 67232 74 3 0x1100092 bpf pflogd 67232 319988 1 0 3 0x80 sbwait pflogd 60949 178231 21006 73 3 0x1100090 kqread syslogd 21006 454036 1 0 3 0x100082 sbwait syslogd 62363 181322 1 0 3 0x100080 kqread resolvd 61929 193856 31030 77 3 0x100092 kqread dhcpleased 11851 134750 31030 77 3 0x100092 kqread dhcpleased 31030 207466 1 0 3 0x80 kqread dhcpleased 2391 475460 0 0 3 0x14200 bored smr 82839 51593 0 0 2 0x14200 zerothread 86765 155376 0 0 3 0x14200 aiodoned aiodoned 1181 374497 0 0 2 0x14e00 update 88257 275423 0 0 3 0x14200 cleaner cleaner 93899 378986 0 0 3 0x14200 reaper reaper 9414 374236 0 0 3 0x14200 pgdaemon pagedaemon 13517 347379 0 0 3 0x14200 bored viomb 68494 271171 0 0 3 0x40014200 acpi0 acpi0 59104 416434 0 0 3 0x40014200 idle1 36057 518336 0 0 3 0x14200 bored softnet1 86001 438161 0 0 2 0x14200 softnet0 36866 264127 0 0 3 0x14200 bored systqmp 46541 163331 0 0 3 0x14200 bored systq 46975 369197 0 0 3 0x14200 tmoslp softclockmp 75322 250168 0 0 3 0x40014200 tmoslp softclock 68352 250290 0 0 3 0x40014200 idle0 1 454322 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11049 12081K 12360K 166960K 12495 0 pcb 17 14K 16K 166960K 59 0 rtable 58 3K 9K 166960K 438 0 pf 20 15K 24K 166960K 79 0 ifaddr 12 1K 7K 166960K 52 0 ifgroup 26 1K 2K 166960K 70 0 sysctl 3 1K 9K 166960K 7 0 counters 56 35K 37K 166960K 88 0 ioctlops 0 0K 4K 166960K 1567 0 iov 0 0K 16K 166960K 7 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1297 82K 82K 166960K 1514 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 6 0 VM map 2 1K 1K 166960K 2 0 sem 11 0K 0K 166960K 43 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 1 0K 89K 166960K 478 0 sigio 0 0K 0K 166960K 8 0 proc 72 115K 164K 166960K 598 0 subproc 0 0K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 23 0 in_multi 8 0K 7K 166960K 103 0 ether_multi 1 0K 0K 166960K 2 0 mrt 0 0K 0K 166960K 6 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 85 387K 387K 166960K 85 0 exec 0 0K 1K 166960K 556 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 121 99K 181K 166960K 6293 0 UVM aobj 11 2K 2K 166960K 11 0 pinsyscall 26 52K 100K 166960K 1946 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 13 0 NDP 5 0K 2K 166960K 33 0 temp 10 9109K 9179K 166960K 16922 0 kqueue 12 18K 26K 166960K 70 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 26 0 0 1 0 1 1 0 8 0 rtpcb 120 120 0 117 3 1 2 3 0 8 1 rtentry 176 113 0 101 6 0 6 6 0 8 4 unpcb 144 197 0 180 4 0 4 4 0 8 3 syncache 336 6 0 6 1 1 0 1 0 8 0 tcpcb 736 189 0 185 7 0 7 7 0 8 6 arp 136 18 0 16 1 0 1 1 0 8 0 inpcb 328 569 0 562 12 3 9 12 0 8 8 nd6 152 26 0 26 1 0 1 1 0 8 1 pkpcb 40 1 0 1 1 0 1 1 0 8 1 kcovpl 48 8 0 8 1 0 1 1 0 8 1 ppxss 1192 7 0 7 1 1 0 1 0 8 0 pfstscr 40 2 0 0 1 0 1 1 0 8 0 pffrag 232 2 0 1 1 0 1 1 0 482 0 pffrnode 88 2 0 1 1 0 1 1 0 8 0 pffrent 40 5 0 3 1 0 1 1 0 8 0 pfosfp 40 1428 0 1428 5 3 2 5 0 8 2 pfosfpen 112 1428 0 1428 21 3 18 21 0 8 18 pfrktable 1344 1 0 1 1 1 0 1 0 8 0 pfanchor 1288 2 0 0 1 0 1 1 0 8 0 pftag 88 1 0 0 1 0 1 1 0 8 0 pfstitem 24 36 0 1 1 0 1 1 0 8 0 pfstkey 128 36 0 1 2 0 2 2 0 8 0 pfstate 448 35 0 1 4 0 4 4 0 8 0 pfrule 1360 25 0 20 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 457 0 401 29 5 24 29 0 8 18 art_table 40 458 0 401 5 0 5 5 0 8 4 art_node 32 113 0 104 1 0 1 1 0 8 0 sysvmsgpl 40 7 0 5 1 0 1 1 0 8 0 semapl 64 41 0 32 1 0 1 1 0 8 0 shmpl 112 8 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1998 0 534 93 0 93 93 0 8 0 ffsino 296 2070 0 606 114 0 114 114 0 8 0 nchpl 144 2443 0 736 64 0 64 64 0 8 0 rtmask 32 3 0 3 1 1 0 1 0 8 0 vnodes 216 2248 0 0 125 0 125 125 0 8 0 namei 1024 8248 0 8248 2 1 1 2 0 8 1 percpumem 16 59 0 16 1 0 1 1 0 8 0 kstatmem 264 39 0 24 3 0 3 3 0 8 0 scxspl 216 17593 0 17593 4 3 1 3 1 8 1 plimitpl 152 250 0 234 1 0 1 1 0 8 0 sigapl 424 808 0 769 7 1 6 7 0 8 1 knotepl 120 358 0 0 11 0 11 11 0 8 0 kqueuepl 224 91 0 83 2 0 2 2 0 8 1 pipepl 344 548 0 545 4 0 4 4 0 8 3 fdescpl 528 792 0 777 3 0 3 3 0 8 0 filepl 160 4230 0 4168 15 3 12 15 0 8 8 lockfpl 104 84 0 82 1 0 1 1 0 8 0 lockfspl 48 38 0 36 1 0 1 1 0 8 0 sessionpl 144 35 0 26 1 0 1 1 0 8 0 pgrppl 48 179 0 163 1 0 1 1 0 8 0 ucredpl 104 391 0 378 1 0 1 1 0 8 0 zombiepl 144 777 0 769 1 0 1 1 0 8 0 processpl 1232 808 0 769 5 0 5 5 0 8 1 procpl 664 1148 0 1109 6 0 6 6 0 8 2 sockpl 752 894 0 867 17 6 11 17 0 8 8 mcl64k 65536 4 0 0 1 0 1 1 0 8 0 mcl16k 16384 2 0 0 1 0 1 1 0 8 0 mcl12k 12288 1 0 0 1 0 1 1 0 8 0 mcl8k 8192 5 0 0 1 0 1 1 0 8 0 mcl4k 4096 115 0 0 15 0 15 15 0 8 0 mcl2k 2048 31 0 0 4 0 4 4 0 8 0 mtagpl 96 1 0 0 1 0 1 1 0 8 0 mbufpl 256 189 0 0 12 0 12 12 0 8 0 bufpl 280 7770 0 791 499 0 499 499 0 8 0 anonpl 32 10208 0 0 83 0 83 83 0 246 0 amapchunkpl 152 18216 0 18048 29 1 28 28 0 158 17 amappl16 200 1871 0 1864 25 11 14 24 0 8 12 amappl15 192 6 0 6 1 1 0 1 0 8 0 amappl14 184 443 0 442 1 0 1 1 0 8 0 amappl13 176 162 0 150 1 0 1 1 0 8 0 amappl12 168 1206 0 1191 2 0 2 2 0 8 0 amappl11 160 10 0 9 2 1 1 1 0 8 0 amappl10 152 76 0 62 1 0 1 1 0 8 0 amappl9 144 289 0 289 1 1 0 1 0 8 0 amappl8 136 123 0 121 1 0 1 1 0 8 0 amappl7 128 154 0 141 1 0 1 1 0 8 0 amappl6 120 158 0 156 1 0 1 1 0 8 0 amappl5 112 99 0 88 1 0 1 1 0 8 0 amappl4 104 297 0 277 1 0 1 1 0 8 0 amappl3 96 3565 0 3522 4 0 4 4 0 8 1 amappl2 88 561 0 501 2 0 2 2 0 8 0 amappl1 80 12362 0 11833 15 1 14 15 0 8 1 amappl 88 5361 0 5304 5 0 5 5 0 92 0 uvmvnodes 80 108 0 0 3 0 3 3 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 10 0 0 1 0 1 1 0 8 0 uaddrrnd 24 792 0 777 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 792 0 777 1 0 1 1 0 8 0 vmmpekpl 168 9493 0 9473 3 0 3 3 0 8 0 vmmpepl 168 61119 0 59902 105 0 105 105 0 357 34 vmsppl 488 791 0 775 5 1 4 5 0 8 1 rwobjpl 80 18912 0 18099 31 0 31 31 0 8 3 pdppl 4096 1591 0 1550 99 46 53 83 0 8 12 pvpl 32 17358 0 0 142 2 140 140 0 265 0 pmappl 256 791 0 775 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 281 0 56 8 0 8 8 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace memset() at memset+0x52 VOP_WRITE(fffffd806de26038,ffff80002a2949f0,0,fffffd80097fd618) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 uvn_io(fffffd806e8ae3c8,ffff80002a294b70,6,39,1) at uvn_io+0x498 sys/uvm/uvm_vnode.c:1232 uvm_pager_put(fffffd806e8ae3c8,fffffd800860bd88,ffff80002a294c10,ffff80002a294c34,39,0,b70570c3e6339ae8) at uvm_pager_put+0x10a sys/uvm/uvm_pager.c:505 uvn_flush(fffffd806e8ae3c8,0,0,19) at uvn_flush+0x690 sys/uvm/uvm_vnode.c:705 uvn_detach(fffffd806e8ae3c8) at uvn_detach+0xcf sys/uvm/uvm_vnode.c:344 uvm_unmap_detach(ffff80002a294d40,0) at uvm_unmap_detach+0x15e sys/uvm/uvm_map.c:1370 uvm_map_teardown(fffffd806e7e5b80) at uvm_map_teardown+0x360 sys/uvm/uvm_map.c:2536 exit1(ffff8000ffffcf98,43,0,1) at exit1+0x6fc sys/kern/kern_exit.c:260 sys_exit(ffff8000ffffcf98,ffff80002a294f10,ffff80002a294e60) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff80002a294f10) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80002a294f10) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7ae31e6e61c0, count: -12 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff80002999dff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff83b2bc80) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:142 [inline] __mp_lock(ffffffff83b2bc80) at __mp_lock+0x192 sys/kern/kern_lock.c:173 uvn_detach(fffffd806e8ae058) at uvn_detach+0x7e sys/uvm/uvm_vnode.c:-1 uvm_unmap_detach(ffff800038bee160,0) at uvm_unmap_detach+0x15e sys/uvm/uvm_map.c:1370 uvm_map_teardown(fffffd800b0631e8) at uvm_map_teardown+0x360 sys/uvm/uvm_map.c:2536 exit1(ffff8000fffeafb0,43,0,1) at exit1+0x6fc sys/kern/kern_exit.c:260 sys_exit(ffff8000fffeafb0,ffff800038bee330,ffff800038bee280) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff800038bee330) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff800038bee330) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x73a358185430, count: 4 ddb{1}> trace x86_ipi_db(ffff80002999dff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff83b2bc80) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:142 [inline] __mp_lock(ffffffff83b2bc80) at __mp_lock+0x192 sys/kern/kern_lock.c:173 uvn_detach(fffffd806e8ae058) at uvn_detach+0x7e sys/uvm/uvm_vnode.c:-1 uvm_unmap_detach(ffff800038bee160,0) at uvm_unmap_detach+0x15e sys/uvm/uvm_map.c:1370 uvm_map_teardown(fffffd800b0631e8) at uvm_map_teardown+0x360 sys/uvm/uvm_map.c:2536 exit1(ffff8000fffeafb0,43,0,1) at exit1+0x6fc sys/kern/kern_exit.c:260 sys_exit(ffff8000fffeafb0,ffff800038bee330,ffff800038bee280) at sys_exit+0x1a sys/kern/kern_exit.c:-1 syscall(ffff800038bee330) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff800038bee330) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x73a358185430, count: -11