Warning: Permanently added '10.128.10.13' (ECDSA) to the list of known hosts. 2019/01/28 14:26:52 parsed 1 programs 2019/01/28 14:26:57 executed programs: 0 witness: userret: returning with the following locks held: exclusive rrwlock inode r = 0 (0xfffffd80793640a8) locked @ /syzkaller/managers/setuid/kernel/sys/ufs/ufs/ufs_vnops.c:1547 panic: witness_warn Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *261200 39287 32767 0x10 0x4000000 0 syz-executor0 390613 48313 32767 0x10 0 1 syz-executor0 db_enter() at db_enter+0x18 panic() at panic+0x16c witness_warn(a698e9887506a05a,0,ffff800020b924c8) at witness_warn+0x700 userret(40c0cbacb0a35f40) at userret+0x361 syscall(754aa1feb1d47ffa) at syscall+0x680 Xsyscall(6,5,c,0,3,2897132010) at Xsyscall+0x128 end of kernel end trace frame: 0x2afe927380, count: 9 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> show panic witness_warn ddb{0}> trace db_enter() at db_enter+0x18 panic() at panic+0x16c witness_warn(a698e9887506a05a,0,ffff800020b924c8) at witness_warn+0x700 userret(40c0cbacb0a35f40) at userret+0x361 syscall(754aa1feb1d47ffa) at syscall+0x680 Xsyscall(6,5,c,0,3,2897132010) at Xsyscall+0x128 end of kernel end trace frame: 0x2afe927380, count: -6 ddb{0}> show registers rdi 0 rsi 0x1 rbp 0xffff800020c99a70 rbx 0xffff800020c99b10 rdx 0xffffffff81ec9049 cmd0646_9_tim_udma+0x1780c rcx 0x201 rax 0x1 r8 0xffffffff816aa1c4 kprintf+0x174 r9 0x1 r10 0xcf7d10b24c70f176 r11 0x410d48264cf9a550 r12 0x3000000008 r13 0xffff800020c99a80 r14 0x100 r15 0x1 rip 0xffffffff8156b348 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff800020c99a60 ss 0 db_enter+0x18: addq $0x8,%rsp ddb{0}> show proc PROC (syz-executor0) pid=261200 stat=onproc flags process=10 proc=4000000 pri=32, usrpri=56, nice=20 forw=0xffffffffffffffff, list=0xffff800020b92270,0xffff800020b92e38 process=0xffff800020b94358 user=0xffff800020c94000, vmspace=0xfffffd807f00d168 estcpu=36, cpticks=2, pctcpu=0.0 user=0, sys=2, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 39287 447954 48313 32767 2 0x10 syz-executor0 *39287 261200 48313 32767 7 0x4000010 syz-executor0 39287 451022 48313 32767 2 0x4000010 syz-executor0 39287 254581 48313 32767 2 0x4000010 syz-executor0 45782 261744 44329 32767 2 0x10 syz-executor1 45782 475265 44329 32767 3 0x4000090 fsleep syz-executor1 45782 511178 44329 32767 3 0x4000090 fsleep syz-executor1 48313 390613 52464 32767 7 0x10 syz-executor0 44329 239402 94922 32767 2 0x490 syz-executor1 52464 227335 30907 0 3 0x82 wait syz-executor0 94922 306564 30907 0 3 0x82 wait syz-executor1 30907 232968 28994 0 3 0x82 thrsleep syz-execprog 30907 11389 28994 0 3 0x4000082 thrsleep syz-execprog 30907 177648 28994 0 3 0x4000082 thrsleep syz-execprog 30907 196170 28994 0 3 0x4000082 thrsleep syz-execprog 30907 488248 28994 0 3 0x4000082 thrsleep syz-execprog 30907 215400 28994 0 3 0x4000082 thrsleep syz-execprog 30907 367546 28994 0 3 0x4000082 thrsleep syz-execprog 30907 235076 28994 0 3 0x4000082 kqread syz-execprog 30907 330360 28994 0 3 0x4000082 thrsleep syz-execprog 28994 290523 39570 0 3 0x10008a pause ksh 39570 117375 96715 0 3 0x92 select sshd 67634 115821 1 0 3 0x100083 ttyin getty 96715 204606 1 0 3 0x80 select sshd 47002 341024 74609 73 2 0x100010 syslogd 74609 238324 1 0 3 0x100082 netio syslogd 26712 31573 1 77 3 0x100090 poll dhclient 79328 169819 1 0 3 0x80 poll dhclient 35727 72283 0 0 2 0x14200 zerothread 3596 21007 0 0 3 0x14200 aiodoned aiodoned 53615 200880 0 0 3 0x14200 syncer update 14679 272580 0 0 3 0x14200 cleaner cleaner 94915 419158 0 0 3 0x14200 reaper reaper 69672 133505 0 0 3 0x14200 pgdaemon pagedaemon 62703 64024 0 0 3 0x14200 bored crynlk 76694 250807 0 0 3 0x14200 bored crypto 78605 272193 0 0 3 0x40014200 acpi0 acpi0 89891 210971 0 0 3 0x40014200 idle1 60661 382903 0 0 3 0x14200 bored softnet 93017 46928 0 0 3 0x14200 bored systqmp 39514 268493 0 0 3 0x14200 bored systq 35893 410338 0 0 2 0x40014200 softclock 87541 314157 0 0 3 0x40014200 idle0 1 289247 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 39287 (syz-executor0) thread 0xffff800020b924c8 (261200) exclusive rrwlock inode r = 0 (0xfffffd80793640a8) locked @ /syzkaller/managers/setuid/kernel/sys/ufs/ufs/ufs_vnops.c:1547 ddb{0}>