uvm_fault(0xffffffff836190a8, 0xffff800016c33bf9, 0, 2) -> d kernel: page fault trap, code=2 Stopped at memset+0x49: repe stosb %es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND 350815 59045 0 0x2 0 1 syz-executor *238397 47821 73 0x1100010 0x1 0K syslogd memset() at memset+0x49 ffs_write(ffff80002a06a830) at ffs_write+0xbab sys/ufs/ffs/ffs_vnops.c:401 VOP_WRITE(fffffd8074e66960,ffff80002a06a8e8,3,fffffd807f7d3138) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000ffffd960,fffffd8074e66960,fffffd807f7d3138,ffff80002a06a9b0,ffff80002a06a990) at ktrwriteraw+0x1bc sys/kern/kern_ktrace.c:682 ktrsyscall(ffff8000ffffd960,5f,8,ffff80002a06ab40) at ktrsyscall+0x31d sys/kern/kern_ktrace.c:182 syscall(ffff80002a06ab40) at syscall+0x2eb mi_syscall sys/sys/syscall_mi.h:157 [inline] syscall(ffff80002a06ab40) at syscall+0x2eb sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d595b6cac90, count: 8 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xffffffff836190a8, 0xffff800016c33bf9, 0, 2) -> d ddb{0}> trace memset() at memset+0x49 ffs_write(ffff80002a06a830) at ffs_write+0xbab sys/ufs/ffs/ffs_vnops.c:401 VOP_WRITE(fffffd8074e66960,ffff80002a06a8e8,3,fffffd807f7d3138) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000ffffd960,fffffd8074e66960,fffffd807f7d3138,ffff80002a06a9b0,ffff80002a06a990) at ktrwriteraw+0x1bc sys/kern/kern_ktrace.c:682 ktrsyscall(ffff8000ffffd960,5f,8,ffff80002a06ab40) at ktrsyscall+0x31d sys/kern/kern_ktrace.c:182 syscall(ffff80002a06ab40) at syscall+0x2eb mi_syscall sys/sys/syscall_mi.h:157 [inline] syscall(ffff80002a06ab40) at syscall+0x2eb sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d595b6cac90, count: -7 ddb{0}> show registers rdi 0xffff800016c33bf9 rsi 0 rbp 0xffff80002a06a750 rbx 0x2a5bf9 acpi_pdirpa+0x291a6a rdx 0x7 rcx 0x7 rax 0 r8 0x2400 __ALIGN_SIZE+0x1400 r9 0xffff80002a06a6b0 r10 0x2388e148fc4fc22b r11 0xffff800016c33bf9 r12 0x4000 __ALIGN_SIZE+0x3000 r13 0x1bf9 __ALIGN_SIZE+0xbf9 r14 0xfffffd8074e66960 r15 0x1 rip 0xffffffff81b179c9 memset+0x49 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff80002a06a548 ss 0x10 memset+0x49: repe stosb %es:(%rdi) ddb{0}> show proc PROC (syslogd) tid=238397 pid=47821 tcnt=1 stat=onproc flags process=1100010 proc=1 runpri=17, usrpri=57, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000ffffc010,0xffff8000ffffc530 process=0xffff8000ffff8da8 user=0xffff80002a065000, vmspace=0xfffffd806ecb08a0 estcpu=7, cpticks=11, pctcpu=7.73, user=8, sys=1402, intr=1088 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 69413 491954 43323 0 2 0 syz-executor 82050 15223 30479 0 2 0 syz-executor 82050 411905 30479 0 3 0x4000080 netcon syz-executor 82783 428220 42976 0 2 0 syz-executor 82783 189570 42976 0 3 0x4000080 fsleep syz-executor 75688 159231 61851 0 2 0x480 syz-executor 75688 361023 61851 0 3 0x4000080 fsleep syz-executor 75688 252992 61851 0 2 0x4000000 syz-executor 38827 132491 59045 0 2 0x480 syz-executor 38827 226157 59045 0 3 0x4000080 sbwait syz-executor 38827 132852 59045 0 3 0x4000080 sbwait syz-executor 38827 292857 59045 0 3 0x4000080 fsleep syz-executor 56501 341874 31390 60929 3 0x90 nanoslp syz-executor 56501 319527 31390 60929 3 0x4000090 lockf syz-executor 56501 416435 31390 60929 3 0x4000090 fsleep syz-executor 56501 389872 31390 60929 3 0x4000090 fsleep syz-executor 66682 351628 18060 0 2 0 syz-executor 66682 359733 18060 0 3 0x4000080 kqread syz-executor 66682 81350 18060 0 3 0x4000080 fsleep syz-executor 3855 34285 67497 0 2 0 syz-executor 3855 114195 67497 0 3 0x4000080 pipewr syz-executor 3855 272910 67497 0 3 0x4000080 fsleep syz-executor 43323 250331 86743 0 2 0x482 syz-executor 31390 119675 86743 0 2 0x2 syz-executor 42976 313083 86743 0 2 0x482 syz-executor 18060 318386 86743 0 2 0x2 syz-executor 30479 131696 86743 0 2 0x482 syz-executor 59045 350815 86743 0 7 0x2 syz-executor 67497 482397 86743 0 2 0x482 syz-executor 61851 180771 86743 0 2 0x482 syz-executor 77574 363401 0 0 3 0x14280 nfsidl nfsio 37097 280991 0 0 3 0x14280 nfsidl nfsio 56679 34761 0 0 3 0x14280 nfsidl nfsio 94511 459199 0 0 3 0x14280 nfsidl nfsio 70160 211806 0 0 3 0x14280 nfsidl nfsio 52069 444500 0 0 3 0x14280 nfsidl nfsio 13324 435561 0 0 3 0x14280 nfsidl nfsio 45588 97988 0 0 3 0x14280 nfsidl nfsio 97271 101812 0 0 3 0x14280 nfsidl nfsio 35546 493468 0 0 3 0x14280 nfsidl nfsio 57342 95091 0 0 3 0x14280 nfsidl nfsio 81436 430021 0 0 3 0x14280 nfsidl nfsio 98710 277395 0 0 3 0x14280 nfsidl nfsio 90499 462304 0 0 3 0x14280 nfsidl nfsio 46957 490723 0 0 3 0x14280 nfsidl nfsio 73314 79298 0 0 3 0x14280 nfsidl nfsio 15869 348819 0 0 3 0x14280 nfsidl nfsio 38191 127857 0 0 3 0x14280 nfsidl nfsio 97772 458179 0 0 3 0x14280 nfsidl nfsio 76240 24908 0 0 3 0x14280 nfsidl nfsio 38307 419401 0 0 3 0x14200 acct acct 31745 116758 0 0 3 0x14200 bored sosplice 86743 496936 97519 0 3 0x82 kqread syz-executor 97519 292658 24148 0 3 0x10008a sigsusp ksh 24148 263842 20260 0 3 0x98 kqread sshd-session 20260 200992 18555 0 3 0x92 kqread sshd-session 16371 228128 1 0 3 0x100083 ttyin getty 18555 108910 1 0 3 0x88 kqread sshd 80011 56431 59784 74 3 0x1100092 bpf pflogd 59784 370402 1 0 3 0x80 sbwait pflogd *47821 238397 3653 73 7 0x1100011 syslogd 3653 300025 1 0 3 0x100082 sbwait syslogd 65986 388985 1 0 3 0x100080 kqread resolvd 12172 516237 8191 77 3 0x100092 kqread dhcpleased 68599 425704 8191 77 3 0x100092 kqread dhcpleased 8191 340274 1 0 3 0x80 kqread dhcpleased 93459 520262 0 0 3 0x14200 bored smr 51991 228381 0 0 2 0x14200 zerothread 41885 491160 0 0 3 0x14200 aiodoned aiodoned 43685 127560 0 0 3 0x14200 syncer update 41156 468485 0 0 3 0x14200 cleaner cleaner 38544 203521 0 0 3 0x14200 reaper reaper 48419 90256 0 0 3 0x14200 pgdaemon pagedaemon 86078 75442 0 0 3 0x14200 bored viomb 11741 125088 0 0 3 0x40014200 acpi0 acpi0 97969 1113 0 0 3 0x40014200 idle1 99383 5182 0 0 3 0x14200 bored softnet3 27433 229524 0 0 3 0x14200 bored softnet2 28889 63895 0 0 3 0x14200 bored softnet1 22595 174468 0 0 3 0x14200 bored softnet0 70591 96837 0 0 3 0x14200 bored systqmp 71528 96270 0 0 3 0x14200 bored systq 21130 267494 0 0 3 0x14200 tmoslp softclockmp 30495 29801 0 0 3 0x40014200 tmoslp softclock 54317 271433 0 0 3 0x40014200 idle0 1 190238 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 47821 (syslogd) thread 0xffff8000ffffd960 (238397) exclusive rrwlock inode r = 0 (0xfffffd805d3ebf78) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 rw_enter+0x41b sys/kern/kern_rwlock.c:309 #2 rrw_enter+0xbe sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0xa6 sys/kern/vfs_vops.c:524 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:564 #5 vget+0x2bd sys/kern/vfs_subr.c:676 #6 ktrwriteraw+0x172 sys/kern/kern_ktrace.c:679 #7 ktrsyscall+0x31d sys/kern/kern_ktrace.c:182 #8 syscall+0x2eb mi_syscall sys/sys/syscall_mi.h:157 [inline] #8 syscall+0x2eb sys/arch/amd64/amd64/trap.c:577 #9 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 0 (0xffffffff8362f4e0) #0 witness_lock+0x5b8 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5b8 sys/kern/subr_witness.c:1151 #1 syscall+0x2cc mi_syscall sys/sys/syscall_mi.h:156 [inline] #1 syscall+0x2cc sys/arch/amd64/amd64/trap.c:577 #2 Xsyscall+0x128 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10197 10089K 10475K 166960K 12197 0 pcb 17 13K 14K 166960K 175 0 rtable 209 6K 7K 166960K 2041 0 pf 36 18K 25K 166960K 253 0 ifaddr 41 7K 7K 166960K 276 0 ifgroup 55 2K 2K 166960K 303 0 sysctl 2 0K 0K 166960K 4 0 counters 64 36K 36K 166960K 192 0 ioctlops 0 0K 4K 166960K 1655 0 iov 1 2K 12K 166960K 139 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1493 94K 94K 166960K 2700 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 8 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 30 0 dirhash 12 2K 2K 166960K 30 0 ACPI 1690 195K 286K 166960K 12418 0 file desc 18 65K 93K 166960K 1533 0 sigio 0 0K 0K 166960K 13 0 proc 72 91K 140K 166960K 2043 0 subproc 104 6K 6K 166960K 780 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 3 0K 0K 166960K 168 0 in_multi 96 7K 7K 166960K 702 0 ether_multi 1 0K 0K 166960K 5 0 mrt 1 0K 0K 166960K 4 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 73 334K 334K 166960K 73 0 exec 0 0K 1K 166960K 1142 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 248 73K 91K 166960K 12639 0 UVM aobj 21 4K 4K 166960K 24 0 pinsyscall 43 86K 108K 166960K 3954 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 36 0 NDP 14 0K 2K 166960K 200 0 temp 59 6819K 6938K 166960K 52774 0 kqueue 15 24K 33K 166960K 117 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 195 0 190 1 0 1 1 0 8 0 rtentry 112 731 0 635 4 1 3 4 0 8 0 unpcb 144 487 0 463 8 7 1 4 0 8 0 syncache 336 3 0 3 2 2 0 1 0 8 0 tcpcb 808 519 0 511 26 25 1 8 0 8 0 arp 120 137 0 118 1 0 1 1 0 8 0 inpcb 336 1469 0 1450 32 30 2 15 0 8 0 nd6 136 184 0 160 1 0 1 1 0 8 0 pkpcb 40 3 0 3 2 2 0 1 0 8 0 kcovpl 48 60 0 52 1 0 1 1 0 8 0 ppxss 1168 7 0 7 4 3 1 1 0 8 1 pfstscr 40 1 0 1 1 1 0 1 0 8 0 pffrag 232 37 0 35 2 1 1 1 0 482 0 pffrnode 88 37 0 35 2 1 1 1 0 8 0 pffrent 40 71 0 69 2 1 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 119 0 86 1 0 1 1 0 8 0 pfstkey 128 121 0 88 2 0 2 2 0 8 0 pfstate 376 118 0 87 5 1 4 5 0 8 0 pfrule 1344 37 0 31 2 1 1 2 0 8 0 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 2924 0 2513 33 7 26 30 0 8 0 art_table 32 2926 0 2513 4 0 4 4 0 8 0 art_node 16 727 0 642 1 0 1 1 0 8 0 sysvmsgpl 40 47 0 7 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 27 0 17 1 0 1 1 0 8 0 shmpl 112 21 0 3 1 0 1 1 0 8 0 dirhash 1024 29 0 12 3 0 3 3 0 8 0 dino2pl 256 2781 0 1164 102 0 102 102 0 8 0 ffsino 272 2781 0 1164 108 0 108 108 0 8 0 nchpl 144 3881 0 2123 66 0 66 66 0 8 0 uvmvnodes 80 4006 0 0 82 0 82 82 0 8 0 vnodes 216 4006 0 0 223 0 223 223 0 8 0 namei 1024 17682 0 17682 4 3 1 2 0 8 1 percpumem 16 110 0 64 1 0 1 1 0 8 0 kstatmem 264 152 0 128 2 0 2 2 0 8 0 scsiplug 72 2 0 2 2 2 0 1 0 8 0 scxspl 216 31613 0 31613 12 10 2 8 1 8 2 plimitpl 152 200 0 182 1 0 1 1 0 8 0 sigapl 424 1749 0 1677 11 2 9 9 0 8 0 futexpl 64 9807 0 9800 6 5 1 1 0 8 0 knotepl 120 626 0 0 17 0 17 17 0 8 0 kqueuepl 216 249 0 236 6 5 1 5 0 8 0 pipepl 320 388 0 360 3 0 3 3 0 8 0 fdescpl 496 1709 0 1677 7 2 5 5 0 8 0 filepl 152 8509 0 8188 33 20 13 18 0 8 0 lockfpl 104 569 0 563 3 2 1 2 0 8 0 lockfspl 48 245 0 240 1 0 1 1 0 8 0 sessionpl 144 74 0 65 1 0 1 1 0 8 0 pgrppl 48 144 0 127 1 0 1 1 0 8 0 ucredpl 104 902 0 886 1 0 1 1 0 8 0 zombiepl 144 1677 0 1677 1 0 1 1 0 8 1 processpl 1160 1749 0 1677 7 1 6 6 0 8 0 procpl 648 2804 0 2718 10 2 8 8 0 8 0 srpgc 96 4 0 4 1 1 0 1 0 8 0 sosppl 168 3 0 3 2 2 0 1 0 8 0 sockpl 664 2228 0 2180 35 31 4 17 0 8 0 mcl64k 65536 3 0 0 1 0 1 1 0 8 0 mcl16k 16384 1 0 0 1 0 1 1 0 8 0 mcl12k 12288 1 0 0 1 0 1 1 0 8 0 mcl8k 8192 4 0 0 1 0 1 1 0 8 0 mcl4k 4096 5 0 0 1 0 1 1 0 8 0 mcl2k2 2112 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 248 0 0 31 0 31 31 0 8 0 mtagpl 96 9 0 0 1 0 1 1 0 8 0 mbufpl 256 492 0 0 26 0 26 26 0 8 0 bufpl 280 8712 0 1589 509 0 509 509 0 8 0 anonpl 24 284335 0 280593 61 10 51 53 0 185 17 amapchunkpl 152 40432 0 39892 36 6 30 33 0 158 7 amappl16 200 5133 0 5111 17 15 2 14 0 8 0 amappl15 192 6 0 6 1 1 0 1 0 8 0 amappl14 184 220 0 208 1 0 1 1 0 8 0 amappl13 176 16 0 16 1 1 0 1 0 8 0 amappl12 168 3183 0 3152 4 2 2 3 0 8 0 amappl11 160 76 0 62 1 0 1 1 0 8 0 amappl10 152 80 0 80 1 1 0 1 0 8 0 amappl9 144 154 0 154 1 1 0 1 0 8 0 amappl8 136 21 0 17 1 0 1 1 0 8 0 amappl7 128 226 0 213 1 0 1 1 0 8 0 amappl6 120 689 0 688 1 0 1 1 0 8 0 amappl5 112 363 0 351 1 0 1 1 0 8 0 amappl4 104 465 0 446 1 0 1 1 0 8 0 amappl3 96 7544 0 7425 5 1 4 4 0 8 0 amappl2 88 1395 0 1327 2 0 2 2 0 8 0 amappl1 80 14806 0 14236 14 1 13 14 0 8 0 amappl 88 11818 0 11632 6 1 5 5 0 92 0 dma4096 4096 2 0 2 2 2 0 1 0 8 0 dma2048 2048 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 7 0 7 2 2 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 20 0 19 1 0 1 1 0 8 0 aobjpl 72 23 0 3 1 0 1 1 0 8 0 uaddrrnd 24 1709 0 1677 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1709 0 1677 1 0 1 1 0 8 0 vmmpekpl 168 15155 0 15108 3 0 3 3 0 8 0 vmmpepl 168 110287 0 108376 103 17 86 94 0 357 0 vmsppl 440 1708 0 1677 6 2 4 5 0 8 0 rwobjpl 56 36932 0 31964 70 0 70 70 0 8 0 pdppl 4096 3425 0 3354 174 101 73 85 0 8 2 pvpl 32 28349 0 0 228 0 228 228 0 265 0 pmappl 248 1708 0 1677 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 557 0 176 12 0 12 12 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace memset() at memset+0x49 ffs_write(ffff80002a06a830) at ffs_write+0xbab sys/ufs/ffs/ffs_vnops.c:401 VOP_WRITE(fffffd8074e66960,ffff80002a06a8e8,3,fffffd807f7d3138) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff8000ffffd960,fffffd8074e66960,fffffd807f7d3138,ffff80002a06a9b0,ffff80002a06a990) at ktrwriteraw+0x1bc sys/kern/kern_ktrace.c:682 ktrsyscall(ffff8000ffffd960,5f,8,ffff80002a06ab40) at ktrsyscall+0x31d sys/kern/kern_ktrace.c:182 syscall(ffff80002a06ab40) at syscall+0x2eb mi_syscall sys/sys/syscall_mi.h:157 [inline] syscall(ffff80002a06ab40) at syscall+0x2eb sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d595b6cac90, count: -7 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff8362f2d8) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:113 [inline] __mp_lock(ffffffff8362f2d8) at __mp_lock+0x192 sys/kern/kern_lock.c:144 syscall(ffff8000357a6c60) at syscall+0xad6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff8000357a6c60) at syscall+0xad6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x76a9982b7a10, count: 9 ddb{1}> trace x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff8362f2d8) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:113 [inline] __mp_lock(ffffffff8362f2d8) at __mp_lock+0x192 sys/kern/kern_lock.c:144 syscall(ffff8000357a6c60) at syscall+0xad6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff8000357a6c60) at syscall+0xad6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x76a9982b7a10, count: -6