Warning: Permanently added '10.128.0.35' (ECDSA) to the list of known hosts. 2019/01/30 01:02:02 parsed 1 programs 2019/01/30 01:02:07 executed programs: 0 panic: vmmaplk: lock not shared Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *171224 95855 0 0x1000 0x4080000 1K syz-executor0 db_enter() at db_enter+0x18 panic() at panic+0x16c _rw_exit_read(ffff800020be5078,284,ffff800020c57408) at _rw_exit_read+0x12b uvm_fault(7c718bbcad00d2bc,ffff800020be5078,0,ffffffff8187fa60) at uvm_fault+0x 23bb pageflttrap() at pageflttrap+0x216 kerntrap(4ff21280bc24233f) at kerntrap+0xeb alltraps_kern(6,58,80585750,0,fffffd806d387bf0,20000200) at alltraps_kern+0x7b copyin(9691542c35fc58e1,0,ffff800020be5078,73b6615fa18,0,360) at copyin+0x4b syscall(3dbf216feb90a9fd) at syscall+0x5a0 Xsyscall(6,0,ffffffffffffff86,0,3,738d496d010) at Xsyscall+0x128 end of kernel end trace frame: 0x73b6615faa0, count: 5 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> show panic vmmaplk: lock not shared ddb{1}> trace db_enter() at db_enter+0x18 panic() at panic+0x16c _rw_exit_read(ffff800020be5078,284,ffff800020c57408) at _rw_exit_read+0x12b uvm_fault(7c718bbcad00d2bc,ffff800020be5078,0,ffffffff8187fa60) at uvm_fault+0x23bb pageflttrap() at pageflttrap+0x216 kerntrap(4ff21280bc24233f) at kerntrap+0xeb alltraps_kern(6,58,80585750,0,fffffd806d387bf0,20000200) at alltraps_kern+0x7b copyin(9691542c35fc58e1,0,ffff800020be5078,73b6615fa18,0,360) at copyin+0x4b syscall(3dbf216feb90a9fd) at syscall+0x5a0 Xsyscall(6,0,ffffffffffffff86,0,3,738d496d010) at Xsyscall+0x128 end of kernel end trace frame: 0x73b6615faa0, count: -10 ddb{1}> show registers rdi 0 rsi 0x1 rbp 0xffff800020c57270 rbx 0xffff800020c57310 rdx 0xffffffff81f30ae0 cy_pio_rec+0x9b0 rcx 0x201 rax 0x1 r8 0xffffffff815db184 kprintf+0x174 r9 0x1 r10 0x27dba108080ba265 r11 0x26a787d5189165e5 r12 0x3000000008 r13 0xffff800020c57280 r14 0x100 r15 0x1 rip 0xffffffff81565418 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff800020c57260 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb{1}> show proc PROC (syz-executor0) pid=171224 stat=onproc flags process=1000 proc=4080000 pri=32, usrpri=51, nice=20 forw=0xffffffffffffffff, list=0xffff800020be5c30,0xffffffff8230c7b8 process=0xffff800020bca6a8 user=0xffff800020c52000, vmspace=0xfffffd806e925440 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 95855 259149 15640 0 3 0x3000 suspend syz-executor0 *95855 171224 15640 0 7 0x4081000 syz-executor0 15640 377131 56344 0 3 0x82 nanosleep syz-executor0 56344 128494 94942 0 3 0x82 thrsleep syz-execprog 56344 215715 94942 0 3 0x4000082 thrsleep syz-execprog 56344 489376 94942 0 3 0x4000082 thrsleep syz-execprog 56344 140797 94942 0 3 0x4000082 thrsleep syz-execprog 56344 496934 94942 0 3 0x4000082 thrsleep syz-execprog 56344 382470 94942 0 3 0x4000082 thrsleep syz-execprog 56344 75483 94942 0 3 0x4000082 thrsleep syz-execprog 56344 461414 94942 0 3 0x4000082 thrsleep syz-execprog 56344 17379 94942 0 3 0x4000082 kqread syz-execprog 94942 202204 79175 0 3 0x10008a pause ksh 79175 52822 41368 0 3 0x92 select sshd 92225 436668 1 0 3 0x100083 ttyin getty 41368 240574 1 0 3 0x80 select sshd 66775 204199 97075 73 3 0x100090 kqread syslogd 97075 76465 1 0 3 0x100082 netio syslogd 65152 358537 1 77 3 0x100090 poll dhclient 87535 178470 1 0 3 0x80 poll dhclient 72133 257488 0 0 3 0x14200 pgzero zerothread 95235 37036 0 0 3 0x14200 aiodoned aiodoned 37461 302218 0 0 3 0x14200 syncer update 51766 251983 0 0 3 0x14200 cleaner cleaner 23193 274419 0 0 3 0x14200 reaper reaper 27503 305667 0 0 3 0x14200 pgdaemon pagedaemon 67527 344082 0 0 3 0x14200 bored crynlk 69585 351114 0 0 3 0x14200 bored crypto 62396 98756 0 0 3 0x40014200 acpi0 acpi0 39680 219521 0 0 3 0x40014200 idle1 15316 317444 0 0 3 0x14200 bored softnet 62901 139000 0 0 3 0x14200 bored systqmp 70432 290478 0 0 3 0x14200 bored systq 91519 110995 0 0 3 0x40014200 bored softclock 55502 380105 0 0 7 0x40014200 idle0 1 154059 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 95855 (syz-executor0) thread 0xffff800020be5078 (171224) exclusive kernel_lock &kernel_lock r = 1 (0xffffffff823212a0) locked @ /syzkaller/managers/multicore/kernel/sys/kern/sched_bsd.c:436 ddb{1}>