login: panic: vmmaplk: lock not shared Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *259172 90715 0 0x1000 0x4080000 0K syz-executor0 db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:399 panic() at panic+0x16c sys/kern/subr_prf.c:208 _rw_exit_read(ffff800020b93c38,294,ffff800020c8ee18) at _rw_exit_read+0x12b sys/kern/kern_rwlock.c:355 uvm_fault(73bd5bdf0c3cd5fd,ffff800020b93c38,0,ffffffff816897a0) at uvm_fault+0x23bb uvmfault_unlockall sys/uvm/uvm_fault.c:1388 [inline] uvm_fault(73bd5bdf0c3cd5fd,ffff800020b93c38,0,ffffffff816897a0) at uvm_fault+0x23bb sys/uvm/uvm_fault.c:1266 pageflttrap() at pageflttrap+0x216 sys/arch/amd64/amd64/trap.c:200 kerntrap(87b5e15cd01a45a3) at kerntrap+0xeb sys/arch/amd64/amd64/trap.c:294 alltraps_kern(6,7f7fdfffbf00,20000100,0,ffff800020b93c38,ffff800020c8f370) at alltraps_kern+0x7b copyinstr(b28ddbfdcea83ee0,ffff800020c8f330,1,0,ffff800020b93c38,0) at copyinstr+0x50 vn_open(3dfca7499f34ee2e,1,1) at vn_open+0xc3 sys/kern/vfs_vnops.c:137 doopenat(38a7dfba003cf5c0,0,ffff800020b93c38,be4509065b8,0,50) at doopenat+0x2b9 sys/kern/vfs_syscalls.c:1045 syscall(3dfca7499fd096b3) at syscall+0x5a0 mi_syscall sys/sys/syscall_mi.h:99 [inline] syscall(3dfca7499fd096b3) at syscall+0x5a0 sys/arch/amd64/amd64/trap.c:583 Xsyscall(6,0,ffffffffffffffac,0,3,be1aaa94010) at Xsyscall+0x128 end of kernel end trace frame: 0xbe450906640, count: 3 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> show panic vmmaplk: lock not shared ddb{0}> trace db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:399 panic() at panic+0x16c sys/kern/subr_prf.c:208 _rw_exit_read(ffff800020b93c38,294,ffff800020c8ee18) at _rw_exit_read+0x12b sys/kern/kern_rwlock.c:355 uvm_fault(73bd5bdf0c3cd5fd,ffff800020b93c38,0,ffffffff816897a0) at uvm_fault+0x23bb uvmfault_unlockall sys/uvm/uvm_fault.c:1388 [inline] uvm_fault(73bd5bdf0c3cd5fd,ffff800020b93c38,0,ffffffff816897a0) at uvm_fault+0x23bb sys/uvm/uvm_fault.c:1266 pageflttrap() at pageflttrap+0x216 sys/arch/amd64/amd64/trap.c:200 kerntrap(87b5e15cd01a45a3) at kerntrap+0xeb sys/arch/amd64/amd64/trap.c:294 alltraps_kern(6,7f7fdfffbf00,20000100,0,ffff800020b93c38,ffff800020c8f370) at alltraps_kern+0x7b copyinstr(b28ddbfdcea83ee0,ffff800020c8f330,1,0,ffff800020b93c38,0) at copyinstr+0x50 vn_open(3dfca7499f34ee2e,1,1) at vn_open+0xc3 sys/kern/vfs_vnops.c:137 doopenat(38a7dfba003cf5c0,0,ffff800020b93c38,be4509065b8,0,50) at doopenat+0x2b9 sys/kern/vfs_syscalls.c:1045 syscall(3dfca7499fd096b3) at syscall+0x5a0 mi_syscall sys/sys/syscall_mi.h:99 [inline] syscall(3dfca7499fd096b3) at syscall+0x5a0 sys/arch/amd64/amd64/trap.c:583 Xsyscall(6,0,ffffffffffffffac,0,3,be1aaa94010) at Xsyscall+0x128 end of kernel end trace frame: 0xbe450906640, count: -12 ddb{0}> show registers rdi 0 rsi 0x1 rbp 0xffff800020c8ec80 rbx 0xffff800020c8ed20 rdx 0xffffffff81f32964 cy_pio_rec+0x1609 rcx 0x201 rax 0x1 r8 0xffffffff81c104a4 kprintf+0x174 r9 0x1 r10 0xff54057cfc14d11e r11 0xca469bec56136732 r12 0x3000000008 r13 0xffff800020c8ec90 r14 0x100 r15 0x1 rip 0xffffffff81326598 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff800020c8ec70 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb{0}> show proc PROC (syz-executor0) pid=259172 stat=onproc flags process=1000 proc=4080000 pri=32, usrpri=54, nice=20 forw=0xffffffffffffffff, list=0xffff800020b74e18,0xffffffff8230d770 process=0xffff800020b94010 user=0xffff800020c8a000, vmspace=0xfffffd807f00c2d0 estcpu=4, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 90715 222863 84529 0 3 0x3000 suspend syz-executor0 *90715 259172 84529 0 7 0x4081000 syz-executor0 22678 75009 69345 0 2 0x482 syz-executor1 84529 308526 69345 0 2 0x482 syz-executor0 69345 224021 45236 0 3 0x82 thrsleep syz-execprog 69345 12293 45236 0 3 0x4000082 thrsleep syz-execprog 69345 302964 45236 0 3 0x4000082 thrsleep syz-execprog 69345 206324 45236 0 3 0x4000082 thrsleep syz-execprog 69345 331838 45236 0 3 0x4000082 thrsleep syz-execprog 69345 38488 45236 0 3 0x4000082 kqread syz-execprog 69345 328282 45236 0 3 0x4000082 thrsleep syz-execprog 69345 244352 45236 0 3 0x4000082 thrsleep syz-execprog 69345 56584 45236 0 3 0x4000082 thrsleep syz-execprog 45236 425939 33149 0 3 0x10008a pause ksh 33149 288581 14301 0 3 0x92 select sshd 7659 475117 1 0 3 0x100083 ttyin getty 14301 363216 1 0 3 0x80 select sshd 76696 135138 83265 73 3 0x100090 kqread syslogd 83265 463075 1 0 3 0x100082 netio syslogd 72833 479866 1 77 3 0x100090 poll dhclient 82005 447568 1 0 3 0x80 poll dhclient 73091 377664 0 0 3 0x14200 pgzero zerothread 14236 358140 0 0 3 0x14200 aiodoned aiodoned 86214 117820 0 0 3 0x14200 syncer update 70733 280040 0 0 3 0x14200 cleaner cleaner 90374 351742 0 0 2 0x14200 reaper 33482 355442 0 0 3 0x14200 pgdaemon pagedaemon 85847 134266 0 0 3 0x14200 bored crynlk 6344 235369 0 0 3 0x14200 bored crypto 72219 229178 0 0 3 0x40014200 acpi0 acpi0 61356 333239 0 0 7 0x40014200 idle1 28096 82920 0 0 3 0x14200 bored softnet 71705 383826 0 0 2 0x14200 systqmp 43606 498069 0 0 3 0x14200 bored systq 61346 278800 0 0 3 0x40014200 bored softclock 56041 199506 0 0 3 0x40014200 idle0 1 177094 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 90715 (syz-executor0) thread 0xffff800020b93c38 (259172) exclusive kernel_lock &kernel_lock r = 1 (0xffffffff8231ef10) locked @ /syzkaller/managers/multicore/kernel/sys/kern/sched_bsd.c:429 ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9452 6320K 6320K 78643K 10539 0 0 pcb 23 9K 9K 78643K 55 0 0 rtable 97 3K 3K 78643K 167 0 0 ifaddr 34 9K 9K 78643K 34 0 0 counters 39 33K 33K 78643K 39 0 0 ioctlops 0 0K 2K 78643K 15 0 0 mount 1 1K