syzbot

 sign-in | mailing list | source | docs
🐞 Open [132] 🐞 Fixed [269] 🐞 Invalid [577] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

uvm_fault: softclock

Status: auto-obsoleted due to no activity on 2023/01/17 03:44
Reported-by: syzbot+f75eecf8e339978da30f@syzkaller.appspotmail.com
First crash: 555d, last: 555d
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
openbsd uvm_fault: softclock (3) 1 245d 245d 0/3 auto-obsoleted due to no activity on 2023/11/22 14:27
openbsd uvm_fault: softclock (4) 9 20d 51d 0/3 upstream: reported on 2024/03/05 22:35
openbsd uvm_fault: softclock (2) 2 414d 427d 0/3 auto-obsoleted due to no activity on 2023/06/06 21:13

Sample crash report:
kernel: page fault trap, code=0
Stopped at      softclock+0xc7: movq    %rcx,0x8(%rax)
ddb> 
ddb> set $lines = 0
ddb> set $maxwidth = 0
ddb> show panic
the kernel did not panic
ddb> trace
softclock(0) at softclock+0xc7 sys/kern/kern_timeout.c:750
softintr_dispatch(0) at softintr_dispatch+0xd1 sys/arch/amd64/amd64/softintr.c:90
Xsoftclock() at Xsoftclock+0x1f
buf_get(0,0,38314fa) at buf_get+0x750 sys/kern/vfs_bio.c:1186
geteblk(38314fa) at geteblk+0x2c sys/kern/vfs_bio.c:1061
readdisklabel(2902,ffffffff81835040,ffff800000d54000,0) at readdisklabel+0x145 sys/arch/amd64/amd64/disksubr.c:96
vndopen(2902,1,2000,ffff80002179a540) at vndopen+0x17a sys/dev/vnd.c:203
spec_open(ffff80002e958db8) at spec_open+0x3df sys/kern/spec_vnops.c:150
VOP_OPEN(fffffd806eea9a78,1,fffffd807f7d78f0,ffff80002179a540) at VOP_OPEN+0x6c sys/kern/vfs_vops.c:138
vn_open(ffff80002e959008,1,0) at vn_open+0x467 sys/kern/vfs_vnops.c:177
doopenat(ffff80002179a540,ffffff9c,200000c0,0,0,ffff80002e9591f0) at doopenat+0x26a sys/kern/vfs_syscalls.c:1127
syscall(ffff80002e959260) at syscall+0x447 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x2f9acd4f9a0, count: -13
ddb> show registers
rdi                              0x4
rsi                              0xd
rbp               0xffff80002e958990
rbx                              0x1
rdx                                0
rcx                                0
rax                                0
r8                          0x100000    acpi_pdirpa+0xebe68
r9                                 0
r10               0x1f1e0b7018ba0160
r11               0x6106c95bc1e5a773
r12               0xffffffff82ac19e8    rdrand_tmo
r13               0xffffffff82a59218    x86_soft_intrs+0x8
r14                                0
r15               0xffff800021780b48
rip               0xffffffff81110547    softclock+0xc7
cs                               0x8
rflags                       0x10246    __ALIGN_SIZE+0xf246
rsp               0xffff80002e958950
ss                              0x10
softclock+0xc7: movq    %rcx,0x8(%rax)
ddb> show proc
PROC (kernel: page fault trap, code=0
Faulted in DDB; continuing...
ddb> ps
   PID     TID   PPID    UID  S       FLAGS  WAIT          COMMAND
 70659   20461      0      0  2           0                syz-executor.3
 70659   81579      0      0  3   0x4000080  fsleep        syz-executor.3
 42589  490330  57187      0  2           0                syz-executor.7
 42589  196767  57187      0  3   0x4000080  fsleep        syz-executor.7
 48372  468363      0      0  2           0                syz-executor.0
 48372  354433      0      0  3   0x4000080  fsleep        syz-executor.0
ddb> show all locks
No such command
ddb> show malloc
           Type InUse  MemUse  HighUse   Limit  Requests Type Lim
         devbuf 10224   6426K    7163K  78643K     38266        0
            pcb    13     18K      23K  78643K      2262        0
         rtable   241     23K      25K  78643K      3462        0
         ifaddr   215     52K      53K  78643K      1665        0
         sysctl     3      1K       1K  78643K         3        0
       counters    27     17K      17K  78643K       369        0
       ioctlops     0      0K       4K  78643K      4538        0
            iov     0      0K      32K  78643K      4872        0
          mount     1      1K       1K  78643K         1        0
            log     0      0K       0K  78643K         4        0
         vnodes  1468     92K      92K  78643K     12380        0
      UFS quota     1     32K      32K  78643K         1        0
      UFS mount     5     36K      36K  78643K         5        0
            shm     2      1K       9K  78643K        77        0
         VM map     2      0K       0K  78643K         2        0
            sem    23     10K      13K  78643K       228        0
        dirhash    12      2K       2K  78643K        12        0
           ACPI  1697    195K     286K  78643K     12548        0
      file desc    18     65K      73K  78643K     10533        0
          sigio     0      0K       0K  78643K       320        0
           proc    64     59K      75K  78643K      2350        0
        subproc   104      6K       6K  78643K       809        0
    NFS srvsock     1      0K       0K  78643K         1        0
     NFS daemon     1     16K      16K  78643K         1        0
    ip_moptions     1      0K       0K  78643K       318        0
       in_multi    89      6K       6K  78643K       893        0
    ether_multi     1      0K       0K  78643K        56        0
            mrt     1      0K       0K  78643K        52        0
    ISOFS mount     1     32K      32K  78643K         1        0
  MSDOSFS mount     1     16K      16K  78643K         1        0
           ttys   271   1208K    1208K  78643K       271        0
           exec     0      0K       2K  78643K      3207        0
            tdb     3      0K       0K  78643K         3        0
        pagedep     1      8K       8K  78643K         1        0
       inodedep     1     32K      32K  78643K         1        0
         newblk     1      0K       0K  78643K         1        0
        VM swap     8     62K      64K  78643K        10        0
       UVM amap   389    416K     425K  78643K     59329        0
       UVM aobj    26      2K       2K  78643K        29        0
        memdesc     1      4K       4K  78643K         1        0
    crypto data     1      1K       1K  78643K         1        0
    ip6_options     0      0K       1K  78643K       507        0
            NDP    14      0K       2K  78643K       341        0
           temp   136   4730K    5754K  78643K     75952        0
         kqueue    12     18K      26K  78643K       928        0
      SYN cache     2     16K      16K  78643K         2        0
ddb> show all pools
Name      Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
rtpcb      120      971    0      968    16    15     1     3     0     8    0
rtentry    112      938    0      851     4     1     3     4     0     8    0
unpcb      144     7345    0     7330    85    84     1    10     0     8    0
syncache   296       71    0       71    15    15     0     1     0     8    0
tcpqe       32      248    0      248     4     4     0     1     0     8    0
tcpcb      768     2976    0     2934   133   128     5    15     0     8    0
arp         88      141    0      125     1     0     1     1     0     8    0
ipq         40        3    0        3     3     3     0     1     0     8    0
ipqe        40        7    0        7     3     3     0     1     0     8    0
inpcb      336     9256    0     9213   189   185     4    20     0     8    0
ip6q        72        3    0        3     1     1     0     1     0     8    0
ip6af       40        6    0        6     1     1     0     1     0     8    0
nd6         48      196    0      174     1     0     1     1     0     8    0
pkpcb       40       33    0       33     5     5     0     1     0     8    0
kcovpl      48       62    0       54     1     0     1     1     0     8    0
ppxss      1160     172    0      172    20    20     0     1     0     8    0
pppxif     1608     141    0      141    19    19     0     1     0     8    0
pfstscr     40      209    0      199     1     0     1     1     0     8    0
pfosfp      40       47    0       44     1     0     1     1     0     8    0
pfosfpen   112       47    0       42     1     0     1     1     0     8    0
pfrktable  1344     305    0      291     8     6     2     2     0     8    0
pfanchor   1280     585   40       73    43     0    43    43     0     8    0
pftag       88       16    0        7     1     0     1     1     0     8    0
pfqueue    264        3    0        3     1     1     0     1     0     8    0
pfstitem    24       24    0        9     1     0     1     1     0     8    0
pfstkey    120      404    0      392     1     0     1     1     0     8    0
pfstate    336      203    0      195     1     0     1     1     0     8    0
pfrule     1360     388    0      302    12     4     8     8     0     8    0
rttmr      136       15    0       14     6     5     1     1     0     8    0
art_heap8  4096       1    0        0     1     0     1     1     0     8    0
art_heap4  256     3654    0     3263    56    31    25    30     0     8    0
art_table   32     3655    0     3263     4     0     4     4     0     8    0
art_node    16      864    0      788     1     0     1     1     0     8    0
sysvmsgpl   40        6    0        6     2     2     0     1     0     8    0
semapl     112      213    0      192     1     0     1     1     0     8    0
shmpl      112       26    0        3     1     0     1     1     0     8    0
dirhash    1024      17    0        0     3     0     3     3     0     8    0
dirhash: pool(0xffffffff82a4a7f0:dirhash): free list modified: page 0xffff800021716000; item ordinal 0; addr 0xffff800021716000 (p 0xfffffd806ef40000); offset 0x0=0x0
pool(dirhash): free list modified: page 0xffff800021716000; item ordinal 0; addr 0xffff800021716000 (p 0xfffffd806ef40000); offset 0x0=0x0
dirhash: pool(0xffffffff82a4a7f0:dirhash): page inconsistency: page 0xffff800021716000; item ordinal 1; addr 0x6865dd0df526267a
dino2pl    256    15619    0    14156    92     0    92    92     0     8    0
ffsino     240    15619    0    14156    87     0    87    87     0     8    0
nchpl      144    29859    0    28226    63     1    62    63     0     8    0
rtmask      32        1    0        1     1     1     0     1     0     8    0
uvmvnodes   80    25307    0        0   517     0   517   517     0     8    0
vnodes     216    25307    0        0  1406     0  1406  1406     0     8    0
namei      1024  115193    0   115193    11    10     1     2     0     8    1
namei: pool(0xffffffff82a4ca50:namei): free list modified: page 0xffff8000216df000; item ordinal 0; addr 0xffff8000216e0c00 (p 0xfffffd807df9e000); offset 0x0=0x0
pool(namei): free list modified: page 0xffff8000216df000; item ordinal 0; addr 0xffff8000216e0c00 (p 0xfffffd807df9e000); offset 0x0=0x0
namei: pool(0xffffffff82a4ca50:namei): page inconsistency: page 0xffff8000216df000; item ordinal 1; addr 0x8fd51b7916b719f5
vcpupl     2048     121    0        0    16     0    16    16     0     8    0
vmpool     536      193    0       72     9     0     9     9     0     8    0
vmpool: pool(0xffffffff82a463a0:vmpool): page inconsistency: page 0x0; at page head addr 0xffff800021789f90 (p 0xffff800021788000)
vmpool: pool(0xffffffff82a463a0:vmpool): page inconsistency: page 0x0; at page head addr 0xffff800021763f90 (p 0xffff800021762000)
pfiaddrpl  120      137    0       97     3     1     2     2     0     8    0
kstatmem   264      424    0      396     4     2     2     3     0     8    0
scsiplug    72        8    0        8     2     2     0     1     0     8    0
scxspl     216    83409    0    83409    28    27     1     8     0     8    1
plimitpl   152     1333    0     1317     1     0     1     1     0     8    0
sigapl     424    10734    0    10688     8     1     7     8     0     8    0
futexpl     64   101478    0   101469     3     2     1     1     0     8    0
knotepl    120   172886    0   172806   114   109     5    18     0     8    2
kqueuepl   184     1977    0     1969    23    22     1     4     0     8    0
pipepl     288     1939    0     1911    41    36     5    11     0     8    2
fdescpl    432    10695    0    10666     4     0     4     4     0     8    0
filepl     120    75966    0    75694   139   129    10    17     0     8    1
lockfpl    104     8190    0     8188    23    22     1     3     0     8    0
lockfspl    48     1661    0     1659     1     0     1     1     0     8    0
sessionpl  144       81    0       65     1     0     1     1     0     8    0
pgrppl      48      164    0      148     1     0     1     1     0     8    0
ucredpl    104     8071    0     8056     1     0     1     1     0     8    0
zombiepl   144    10688    0    10688     1     0     1     1     0     8    1
processpl  1000   10734    0    10688    10     3     7     9     0     8    0
processpl: pool(0xffffffff82acba68:processpl): page inconsistency: page 0x0; at page head addr 0xffff800021799f90 (p 0xffff800021798000)
processpl: pool(0xffffffff82acba68:processpl): page inconsistency: page 0x0; at page head addr 0xffff800021701f90 (p 0xffff800021700000)
procpl     672    28143    0    28072    27    20     7    10     0     8    0
procpl: pool(0xffffffff82acb8c0:procpl): page inconsistency: page 0x0; at page head addr 0xffff800021781f90 (p 0xffff800021780000)
sosppl     168       81    0       80    15    14     1     1     0     8    0
sockpl     456    17615    0    17554   477   469     8    33     0     8    0
mcl64k     65536    425    0      424    26    25     1     1     0     8    0
mcl16k     16384    116    0      115    22    21     1     1     0     8    0
mcl12k     12288    360    0      359    22    21     1     1     0     8    0
mcl9k      9216     153    0      153    30    29     1     1     0     8    1
mcl8k      8192     787    0      786    20    19     1     1     0     8    0
mcl4k      4096    1150    0     1150    10     9     1     1     0     8    1
mcl2k2     2112      83    0       83    21    21     0     1     0     8    0
mcl2k      2048   97280    0    97224    36    27     9    23     0     8    1
mtagpl      96     1306    0     1049    13     6     7     8     0     8    0
mbufpl     256   258857    0   258439   612   577    35    76     0     8    0
bufpl      288    20328    0    13919   459     0   459   459     0     8    0
anonpl      24  2054933    0  2036845   225    88   137   137     0   188   13
amapchunkpl 152  174297    0   173577    98    62    36    42     0   158    5
amappl16   200    29677    0    28972   141    94    47    50     0     8    8
amappl15   192     1641    0     1629     1     0     1     1     0     8    0
amappl14   184     1819    0     1817     1     0     1     1     0     8    0
amappl13   176     1997    0     1991     1     0     1     1     0     8    0
amappl12   168     1220    0     1218     1     0     1     1     0     8    0
amappl11   160     1603    0     1591     1     0     1     1     0     8    0
amappl10   152     1632    0     1626     1     0     1     1     0     8    0
amappl9    144     1540    0     1531     2     1     1     1     0     8    0
amappl8    136     2341    0     2255     4     0     4     4     0     8    0
amappl7    128     1003    0      982     1     0     1     1     0     8    0
amappl6    120     1182    0     1158     2     1     1     2     0     8    0
amappl5    112     8943    0     8924     1     0     1     1     0     8    0
amappl4    104     5142    0     5115     1     0     1     1     0     8    0
amappl3     96    31914    0    31855     2     0     2     2     0     8    0
amappl2     88    12870    0    12800     3     1     2     3     0     8    0
amappl1     80   253426    0   252668    22     6    16    21     0     8    0
amappl      88    57737    0    57533     7     2     5     5     0    92    0
dma4096    4096       1    0        1     1     1     0     1     0     8    0
dma1024    1024       1    0        0     1     0     1     1     0     8    0
dma256     256        6    0        6     1     1     0     1     0     8    0
dma128     128      253    0      253     1     1     0     1     0     8    0
dma64       64        6    0        6     1     1     0     1     0     8    0
dma32       32        7    0        7     1     1     0     1     0     8    0
dma16       16       18    0       17     1     0     1     1     0     8    0
aobjpl      72       28    0        3     1     0     1     1     0     8    0
uaddrrnd    24    10888    0    10738     1     0     1     1     0     8    0
uaddrbest   32        2    0        0     1     0     1     1     0     8    0
uaddr       24    10888    0    10738     1     0     1     1     0     8    0
vmmpekpl   168    78310    0    78247     4     0     4     4     0     8    0
vmmpepl    168  1058345    0  1054952   395   230   165   172     0   357   16
vmsppl     272    10887    0    10738    13     3    10    10     0     8    0
rwobjpl     24   275156    0   247951   164     0   164   164     0     8    0
pdppl      4096   21782    0    21597   920   735   185   185     0     8    0
pvpl        32  4017027    0  3993393   448   222   226   258     0   265   21
pmappl     216    10887    0    10738     9     0     9     9     0     8    0
extentpl    40       56    0       38     1     0     1     1     0     8    0
phpool     112     2630    0     1684    30     1    29    29     0     8    0
ddb> machine ddbcpu 0
No such command
ddb> trace
softclock(0) at softclock+0xc7 sys/kern/kern_timeout.c:750
softintr_dispatch(0) at softintr_dispatch+0xd1 sys/arch/amd64/amd64/softintr.c:90
Xsoftclock() at Xsoftclock+0x1f
buf_get(0,0,38314fa) at buf_get+0x750 sys/kern/vfs_bio.c:1186
geteblk(38314fa) at geteblk+0x2c sys/kern/vfs_bio.c:1061
readdisklabel(2902,ffffffff81835040,ffff800000d54000,0) at readdisklabel+0x145 sys/arch/amd64/amd64/disksubr.c:96
vndopen(2902,1,2000,ffff80002179a540) at vndopen+0x17a sys/dev/vnd.c:203
spec_open(ffff80002e958db8) at spec_open+0x3df sys/kern/spec_vnops.c:150
VOP_OPEN(fffffd806eea9a78,1,fffffd807f7d78f0,ffff80002179a540) at VOP_OPEN+0x6c sys/kern/vfs_vops.c:138
vn_open(ffff80002e959008,1,0) at vn_open+0x467 sys/kern/vfs_vnops.c:177
doopenat(ffff80002179a540,ffffff9c,200000c0,0,0,ffff80002e9591f0) at doopenat+0x26a sys/kern/vfs_syscalls.c:1127
syscall(ffff80002e959260) at syscall+0x447 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x2f9acd4f9a0, count: -13
ddb> machine ddbcpu 1
No such command
ddb> trace
softclock(0) at softclock+0xc7 sys/kern/kern_timeout.c:750
softintr_dispatch(0) at softintr_dispatch+0xd1 sys/arch/amd64/amd64/softintr.c:90
Xsoftclock() at Xsoftclock+0x1f
buf_get(0,0,38314fa) at buf_get+0x750 sys/kern/vfs_bio.c:1186
geteblk(38314fa) at geteblk+0x2c sys/kern/vfs_bio.c:1061
readdisklabel(2902,ffffffff81835040,ffff800000d54000,0) at readdisklabel+0x145 sys/arch/amd64/amd64/disksubr.c:96
vndopen(2902,1,2000,ffff80002179a540) at vndopen+0x17a sys/dev/vnd.c:203
spec_open(ffff80002e958db8) at spec_open+0x3df sys/kern/spec_vnops.c:150
VOP_OPEN(fffffd806eea9a78,1,fffffd807f7d78f0,ffff80002179a540) at VOP_OPEN+0x6c sys/kern/vfs_vops.c:138
vn_open(ffff80002e959008,1,0) at vn_open+0x467 sys/kern/vfs_vnops.c:177
doopenat(ffff80002179a540,ffffff9c,200000c0,0,0,ffff80002e9591f0) at doopenat+0x26a sys/kern/vfs_syscalls.c:1127
syscall(ffff80002e959260) at syscall+0x447 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x2f9acd4f9a0, count: -13

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/10/19 03:43 openbsd 7486b163f559 b31320fc .config console log report ci-openbsd-main uvm_fault: softclock
* Struck through repros no longer work on HEAD.