uvm_fault(0xffffffff83a5cdf8, 0xffff8000295a2004, 0, 1) -> d kernel: page fault trap, code=0 Stopped at ufs_readdir+0x26e: movzwl 0x4(%r14),%ebx TID PID UID PRFLAGS PFLAGS CPU COMMAND *395816 3032 0 0x2 0 0 syz-executor ufs_readdir(ffff80002a8859c0) at ufs_readdir+0x26e sys/ufs/ufs/ufs_vnops.c:1397 VOP_READDIR(fffffd806d318398,ffff80002a885a48,fffffd8007ffd750,ffff80002a885a8c) at VOP_READDIR+0x125 sys/kern/vfs_vops.c:453 sys_getdents(ffff80002a7367d0,ffff80002a885bd0,ffff80002a885b20) at sys_getdents+0x2dd sys/kern/vfs_syscalls.c:3219 syscall(ffff80002a885bd0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80002a885bd0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x76a6418d2730, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff83a5cdf8, 0xffff8000295a2004, 0, 1) -> d ddb> trace ufs_readdir(ffff80002a8859c0) at ufs_readdir+0x26e sys/ufs/ufs/ufs_vnops.c:1397 VOP_READDIR(fffffd806d318398,ffff80002a885a48,fffffd8007ffd750,ffff80002a885a8c) at VOP_READDIR+0x125 sys/kern/vfs_vops.c:453 sys_getdents(ffff80002a7367d0,ffff80002a885bd0,ffff80002a885b20) at sys_getdents+0x2dd sys/kern/vfs_syscalls.c:3219 syscall(ffff80002a885bd0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80002a885bd0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x76a6418d2730, count: -5 ddb> show registers rdi 0x200 rsi 0x800 rbp 0xffff80002a8859b0 rbx 0x200 rdx 0 rcx 0xfffffd807c5d0348 rax 0xffff8000295a2200 r8 0xffffffffffffffff r9 0x3 r10 0x93e7f4c0e54468a4 r11 0xaa13f48b9b98d08c r12 0 r13 0xffff80002a885a48 r14 0xffff8000295a2000 r15 0xffff8000295a2008 rip 0xffffffff813f90de ufs_readdir+0x26e cs 0x8 rflags 0x10283 __ALIGN_SIZE+0xf283 rsp 0xffff80002a885800 ss 0x10 ufs_readdir+0x26e: movzwl 0x4(%r14),%ebx ddb> show proc PROC (syz-executor) tid=395816 pid=3032 tcnt=1 stat=onproc flags process=2 proc=0 runpri=50, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a737230,0xffff80002a737ca0 process=0xffff80002a793190 user=0xffff80002a880000, vmspace=0xfffffd807cb2f2e8 estcpu=36, cpticks=5, pctcpu=0.0, user=1, sys=3, intr=1 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 43308 136295 78227 0 2 0 syz-executor 43308 291620 78227 0 3 0x4000080 fsleep syz-executor 61278 26426 53504 0 2 0 syz-executor 61278 357673 53504 0 3 0x4000080 fsleep syz-executor 29334 456902 11416 0 3 0x80 nanoslp syz-executor 29334 469513 11416 0 3 0x4000080 kqread syz-executor 35093 410405 15572 -1 2 0xc90 syz-executor 35093 231857 15572 -1 3 0x4000090 kqsel syz-executor 35093 412538 15572 -1 3 0x4000090 fsleep syz-executor 11416 523623 47817 0 3 0x82 nanoslp syz-executor 92090 296762 1 0 3 0x100083 ttyin getty 37400 152021 47817 0 2 0xc82 syz-executor * 3032 395816 47817 0 7 0x2 syz-executor 17375 523521 47817 0 3 0x82 wait syz-executor 99690 405096 47817 0 3 0x82 nanoslp syz-executor 78227 416604 47817 0 2 0xc82 syz-executor 15572 354296 47817 0 3 0x82 nanoslp syz-executor 53504 294489 47817 0 2 0xc82 syz-executor 47817 152442 1 0 2 0x2 syz-executor 66038 183440 0 0 3 0x14200 bored smr 75025 427780 0 0 2 0x14200 zerothread 9573 346864 0 0 3 0x14200 aiodoned aiodoned 67046 304845 0 0 3 0x14200 syncer update 37579 274273 0 0 3 0x14200 cleaner cleaner 33070 384484 0 0 3 0x14200 reaper reaper 18047 464137 0 0 3 0x14200 pgdaemon pagedaemon 42968 376958 0 0 3 0x14200 bored viomb 46466 48536 0 0 3 0x40014200 acpi0 acpi0 7303 262933 0 0 2 0x14200 softnet0 40531 1003 0 0 3 0x14200 bored systqmp 5797 272938 0 0 3 0x14200 bored systq 25718 338045 0 0 3 0x40014200 tmoslp softclock 28961 466865 0 0 3 0x40014200 idle0 1 151378 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb>