Warning: Permanently added '10.128.0.75' (ECDSA) to the list of known hosts. 2019/01/27 22:43:45 parsed 1 programs 2019/01/27 22:43:50 executed programs: 0 login: panic: vmmaplk: lock not shared Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *259172 90715 0 0x1000 0x4080000 0K syz-executor0 db_enter() at db_enter+0x18 panic() at panic+0x16c _rw_exit_read(ffff800020b93c38,294,ffff800020c8ee18) at _rw_exit_read+0x12b uvm_fault(73bd5bdf0c3cd5fd,ffff800020b93c38,0,ffffffff816897a0) at uvm_fault+0x 23bb pageflttrap() at pageflttrap+0x216 kerntrap(87b5e15cd01a45a3) at kerntrap+0xeb alltraps_kern(6,7f7fdfffbf00,20000100,0,ffff800020b93c38,ffff800020c8f370) at a lltraps_kern+0x7b copyinstr(b28ddbfdcea83ee0,ffff800020c8f330,1,0,ffff800020b93c38,0) at copyinst r+0x50 vn_open(3dfca7499f34ee2e,1,1) at vn_open+0xc3 doopenat(38a7dfba003cf5c0,0,ffff800020b93c38,be4509065b8,0,50) at doopenat+0x2b 9 syscall(3dfca7499fd096b3) at syscall+0x5a0 Xsyscall(6,0,ffffffffffffffac,0,3,be1aaa94010) at Xsyscall+0x128 end of kernel end trace frame: 0xbe450906640, count: 3 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> show panic vmmaplk: lock not shared ddb{0}> trace db_enter() at db_enter+0x18 panic() at panic+0x16c _rw_exit_read(ffff800020b93c38,294,ffff800020c8ee18) at _rw_exit_read+0x12b uvm_fault(73bd5bdf0c3cd5fd,ffff800020b93c38,0,ffffffff816897a0) at uvm_fault+0x23bb pageflttrap() at pageflttrap+0x216 kerntrap(87b5e15cd01a45a3) at kerntrap+0xeb alltraps_kern(6,7f7fdfffbf00,20000100,0,ffff800020b93c38,ffff800020c8f370) at alltraps_kern+0x7b copyinstr(b28ddbfdcea83ee0,ffff800020c8f330,1,0,ffff800020b93c38,0) at copyinstr+0x50 vn_open(3dfca7499f34ee2e,1,1) at vn_open+0xc3 doopenat(38a7dfba003cf5c0,0,ffff800020b93c38,be4509065b8,0,50) at doopenat+0x2b9 syscall(3dfca7499fd096b3) at syscall+0x5a0 Xsyscall(6,0,ffffffffffffffac,0,3,be1aaa94010) at Xsyscall+0x128 end of kernel end trace frame: 0xbe450906640, count: -12 ddb{0}> show registers rdi 0 rsi 0x1 rbp 0xffff800020c8ec80 rbx 0xffff800020c8ed20 rdx 0xffffffff81f32964 cy_pio_rec+0x1609 rcx 0x201 rax 0x1 r8 0xffffffff81c104a4 kprintf+0x174 r9 0x1 r10 0xff54057cfc14d11e r11 0xca469bec56136732 r12 0x3000000008 r13 0xffff800020c8ec90 r14 0x100 r15 0x1 rip 0xffffffff81326598 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff800020c8ec70 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb{0}> show proc PROC (syz-executor0) pid=259172 stat=onproc flags process=1000 proc=4080000 pri=32, usrpri=54, nice=20 forw=0xffffffffffffffff, list=0xffff800020b74e18,0xffffffff8230d770 process=0xffff800020b94010 user=0xffff800020c8a000, vmspace=0xfffffd807f00c2d0 estcpu=4, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 90715 222863 84529 0 3 0x3000 suspend syz-executor0 *90715 259172 84529 0 7 0x4081000 syz-executor0 22678 75009 69345 0 2 0x482 syz-executor1 84529 308526 69345 0 2 0x482 syz-executor0 69345 224021 45236 0 3 0x82 thrsleep syz-execprog 69345 12293 45236 0 3 0x4000082 thrsleep syz-execprog 69345 302964 45236 0 3 0x4000082 thrsleep syz-execprog 69345 206324 45236 0 3 0x4000082 thrsleep syz-execprog 69345 331838 45236 0 3 0x4000082 thrsleep syz-execprog 69345 38488 45236 0 3 0x4000082 kqread syz-execprog 69345 328282 45236 0 3 0x4000082 thrsleep syz-execprog 69345 244352 45236 0 3 0x4000082 thrsleep syz-execprog 69345 56584 45236 0 3 0x4000082 thrsleep syz-execprog 45236 425939 33149 0 3 0x10008a pause ksh 33149 288581 14301 0 3 0x92 select sshd 7659 475117 1 0 3 0x100083 ttyin getty 14301 363216 1 0 3 0x80 select sshd 76696 135138 83265 73 3 0x100090 kqread syslogd 83265 463075 1 0 3 0x100082 netio syslogd 72833 479866 1 77 3 0x100090 poll dhclient 82005 447568 1 0 3 0x80 poll dhclient 73091 377664 0 0 3 0x14200 pgzero zerothread 14236 358140 0 0 3 0x14200 aiodoned aiodoned 86214 117820 0 0 3 0x14200 syncer update 70733 280040 0 0 3 0x14200 cleaner cleaner 90374 351742 0 0 2 0x14200 reaper 33482 355442 0 0 3 0x14200 pgdaemon pagedaemon 85847 134266 0 0 3 0x14200 bored crynlk 6344 235369 0 0 3 0x14200 bored crypto 72219 229178 0 0 3 0x40014200 acpi0 acpi0 61356 333239 0 0 7 0x40014200 idle1 28096 82920 0 0 3 0x14200 bored softnet 71705 383826 0 0 2 0x14200 systqmp 43606 498069 0 0 3 0x14200 bored systq 61346 278800 0 0 3 0x40014200 bored softclock 56041 199506 0 0 3 0x40014200 idle0 1 177094 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 90715 (syz-executor0) thread 0xffff800020b93c38 (259172) exclusive kernel_lock &kernel_lock r = 1 (0xffffffff8231ef10) locked @ /syzkaller/managers/multicore/kernel/sys/kern/sched_bsd.c:429 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9452 6320K 6320K 78643K 10539 0 0 pcb 23 9K 9K 78643K 55 0 0 rtable 97 3K 3K 78643K 167 0 0 ifaddr 34 9K 9K 78643K 34 0 0 counters 39 33K 33K 78643K 39 0 0 ioctlops 0 0K 2K 78643K 15 0 0 mount 1 1K