uvm_fault(0xfffffd8071e16b88, 0x0, 0, 1) -> e kernel: page fault trap, code=0 Stopped at rw_enter+0xf0: movq 0(%r14),%r13 TID PID UID PRFLAGS PFLAGS CPU COMMAND *124448 97018 0 0x2 0 0 syz-executor.2 rw_enter(0,1) at rw_enter+0xf0 sys/kern/kern_rwlock.c:253 uvm_vnp_setsize(fffffd807e3c6a70,0) at uvm_vnp_setsize+0x2c sys/uvm/uvm_vnode.c:1454 ffs_truncate(fffffd807e247008,0,4,fffffd807f7d7750) at ffs_truncate+0x303 sys/ufs/ffs/ffs_inode.c:177 ufs_rmdir(ffff80002db8cdf8) at ufs_rmdir+0x3a9 sys/ufs/ufs/ufs_vnops.c:1342 VOP_RMDIR(fffffd8067d7f538,fffffd807e3c6a70,ffff80002db8ced8) at VOP_RMDIR+0x12a sys/kern/vfs_vops.c:407 dounlinkat(ffff80002a6712b0,ffffff9c,781347cf85d0,8) at dounlinkat+0x20e sys/kern/vfs_syscalls.c:1880 syscall(ffff80002db8d040) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x781347cf85c0, count: 7 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd8071e16b88, 0x0, 0, 1) -> e ddb> trace rw_enter(0,1) at rw_enter+0xf0 sys/kern/kern_rwlock.c:253 uvm_vnp_setsize(fffffd807e3c6a70,0) at uvm_vnp_setsize+0x2c sys/uvm/uvm_vnode.c:1454 ffs_truncate(fffffd807e247008,0,4,fffffd807f7d7750) at ffs_truncate+0x303 sys/ufs/ffs/ffs_inode.c:177 ufs_rmdir(ffff80002db8cdf8) at ufs_rmdir+0x3a9 sys/ufs/ufs/ufs_vnops.c:1342 VOP_RMDIR(fffffd8067d7f538,fffffd807e3c6a70,ffff80002db8ced8) at VOP_RMDIR+0x12a sys/kern/vfs_vops.c:407 dounlinkat(ffff80002a6712b0,ffffff9c,781347cf85d0,8) at dounlinkat+0x20e sys/kern/vfs_syscalls.c:1880 syscall(ffff80002db8d040) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x781347cf85c0, count: -8 ddb> show registers rdi 0 rsi 0 rbp 0xffff80002db8cb30 rbx 0x5 rdx 0 rcx 0xffff80002a6712b4 rax 0xffff80002a6712b0 r8 0xfffffd807e247078 r9 0 r10 0x7276562def8423a r11 0x11637e5524a85f62 r12 0xffffffffffffffff r13 0x1 r14 0 r15 0 rip 0xffffffff812979c0 rw_enter+0xf0 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002db8cab0 ss 0 rw_enter+0xf0: movq 0(%r14),%r13 ddb> show proc PROC (syz-executor.2) tid=124448 pid=97018 tcnt=1 stat=onproc flags process=2 proc=0 runpri=17, usrpri=84, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a670810,0xffff80002a72c580 process=0xffff80002a695ba0 user=0xffff80002db88000, vmspace=0xfffffd8071e16b88 estcpu=36, cpticks=0, pctcpu=0.15, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 60676 394304 5635 0 2 0 syz-executor.4 60676 463842 5635 0 3 0x4000080 fsleep syz-executor.4 64157 483888 90350 0 2 0 syz-executor.0 64157 165409 90350 0 3 0x4000080 fsleep syz-executor.0 64157 34379 90350 0 2 0x4000000 syz-executor.0 92780 67253 25349 0 2 0 syz-executor.7 92780 479865 25349 0 3 0x4000080 fsleep syz-executor.7 7162 11557 98484 0 2 0 syz-executor.6 7162 517249 98484 0 3 0x4000080 fsleep syz-executor.6 2369 504544 48307 0 2 0 syz-executor.1 2369 458992 48307 0 3 0x4000080 fsleep syz-executor.1 2369 272003 48307 0 3 0x4000080 fsleep syz-executor.1 5635 480175 71293 0 3 0x82 nanoslp syz-executor.4 98484 189110 71293 0 3 0x82 nanoslp syz-executor.6 11458 417360 71293 0 3 0x82 nanoslp syz-executor.3 93977 249670 0 0 3 0x14280 nfsidl nfsio 49833 351967 0 0 3 0x14280 nfsidl nfsio 29084 115305 0 0 3 0x14280 nfsidl nfsio 7457 479472 0 0 3 0x14280 nfsidl nfsio 48378 411543 0 0 3 0x14280 nfsidl nfsio 15862 20752 0 0 3 0x14280 nfsidl nfsio 32725 1486 0 0 3 0x14280 nfsidl nfsio 84751 236679 0 0 3 0x14280 nfsidl nfsio 44531 62608 0 0 3 0x14280 nfsidl nfsio 28358 478986 0 0 3 0x14280 nfsidl nfsio 51297 112941 0 0 3 0x14280 nfsidl nfsio 48415 114435 0 0 3 0x14280 nfsidl nfsio 19500 196422 0 0 3 0x14280 nfsidl nfsio 54815 494422 0 0 3 0x14280 nfsidl nfsio 61587 259289 0 0 3 0x14280 nfsidl nfsio 54959 192310 0 0 3 0x14280 nfsidl nfsio 4536 247445 0 0 3 0x14280 nfsidl nfsio 21817 296428 0 0 3 0x14280 nfsidl nfsio 65800 361784 0 0 3 0x14280 nfsidl nfsio 2837 196282 0 0 3 0x14280 nfsidl nfsio 94615 48259 0 0 3 0x14200 bored sosplice 25349 180071 71293 0 3 0x82 nanoslp syz-executor.7 *97018 124448 71293 0 7 0x2 syz-executor.2 17974 343778 71293 0 3 0x82 nanoslp syz-executor.5 90350 346713 71293 0 3 0x82 nanoslp syz-executor.0 48307 339449 71293 0 3 0x82 nanoslp syz-executor.1 71293 487387 94571 0 3 0x2000082 wait syz-fuzzer 71293 12916 94571 0 3 0x6000082 nanoslp syz-fuzzer 71293 147168 94571 0 3 0x6000082 wait syz-fuzzer 71293 385789 94571 0 3 0x6000082 thrsleep syz-fuzzer 71293 105236 94571 0 3 0x6000082 wait syz-fuzzer 71293 515778 94571 0 3 0x6000082 thrsleep syz-fuzzer 71293 72197 94571 0 3 0x6000082 kqread syz-fuzzer 71293 348364 94571 0 3 0x6000082 wait syz-fuzzer 71293 186927 94571 0 3 0x6000082 wait syz-fuzzer 71293 300545 94571 0 3 0x6000082 wait syz-fuzzer 71293 271098 94571 0 3 0x6000082 thrsleep syz-fuzzer 71293 47628 94571 0 3 0x6000082 wait syz-fuzzer 71293 411839 94571 0 3 0x6000082 wait syz-fuzzer 71293 272944 94571 0 3 0x6000082 thrsleep syz-fuzzer 94571 135304 50093 0 3 0x10008a sigsusp ksh 50093 183008 62943 0 3 0x9a kqread sshd 17542 293670 1 0 3 0x100083 ttyin getty 62943 118629 1 0 3 0x88 kqread sshd 81057 6273 73437 73 3 0x1100090 kqread syslogd 73437 414042 1 0 3 0x100082 netio syslogd 89809 449256 1 0 3 0x100080 kqread resolvd 47991 456931 53451 77 3 0x100092 kqread dhcpleased 81532 483811 53451 77 3 0x100092 kqread dhcpleased 53451 257449 1 0 3 0x80 kqread dhcpleased 90193 425093 0 0 3 0x14200 bored smr 93834 286802 0 0 2 0x14200 zerothread 66011 188388 0 0 3 0x14200 aiodoned aiodoned 58674 42242 0 0 3 0x14200 syncer update 57702 243306 0 0 3 0x14200 cleaner cleaner 25476 197472 0 0 3 0x14200 reaper reaper 93474 513639 0 0 3 0x14200 pgdaemon pagedaemon 59176 373761 0 0 3 0x14200 bored viomb 90261 209551 0 0 3 0x40014200 acpi0 acpi0 81084 268521 0 0 3 0x14200 bored softnet3 80971 301050 0 0 3 0x14200 bored softnet2 52945 365204 0 0 3 0x14200 bored softnet1 42992 460900 0 0 3 0x14200 bored softnet0 96791 282345 0 0 3 0x14200 bored systqmp 90246 517791 0 0 3 0x14200 bored systq 78046 236231 0 0 3 0x40014200 tmoslp softclock 97549 307016 0 0 3 0x40014200 idle0 1 121355 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10182 6545K 9458K 166960K 110014 0 pcb 13 11K 13K 166960K 197 0 rtable 241 7K 7K 166960K 486 0 pf 29 8K 9K 166960K 81 0 ifaddr 43 11K 11K 166960K 76 0 ifgroup 50 2K 2K 166960K 132 0 sysctl 3 1K 1K 166960K 3 0 counters 29 17K 17K 166960K 49 0 ioctlops 0 0K 2K 166960K 2013 0 iov 0 0K 12K 166960K 3832 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1510 94K 95K 166960K 26146 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 68 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 2972 0 dirhash 12 2K 2K 166960K 18 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 15 53K 77K 166960K 12249 0 sigio 0 0K 0K 166960K 680 0 proc 58 59K 83K 166960K 602 0 subproc 104 6K 6K 166960K 143 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 610 0 in_multi 99 7K 7K 166960K 147 0 ether_multi 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 61 281K 281K 166960K 61 0 exec 0 0K 1K 166960K 575 0 tdb 3 0K 0K 166960K 3 0 pagedep 1 8K 8K 166960K 1 0 inodedep 1 32K 32K 166960K 1 0 newblk 1 0K 0K 166960K 1 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 397 166K 190K 166960K 108366 0 UVM aobj 131 4K 4K 166960K 134 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 17 0 NDP 11 0K 1K 166960K 53 0 temp 73 5912K 6040K 166960K 58306 0 kqueue 12 18K 24K 166960K 132 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 113 0 110 2 1 1 2 0 8 0 rtentry 112 152 0 40 4 0 4 4 0 8 0 unpcb 144 12599 0 12586 58 57 1 9 0 8 0 syncache 312 4 0 4 1 1 0 1 0 8 0 tcpqe 32 402 0 402 3 3 0 2 0 8 0 tcpcb 808 730 0 726 21 20 1 7 0 8 0 arp 88 24 0 6 1 0 1 1 0 8 0 ipq 40 2 0 2 1 1 0 1 0 8 0 ipqe 40 6 0 6 1 1 0 1 0 8 0 inpcb 336 2501 0 2494 62 61 1 7 0 8 0 nd6 104 36 0 10 1 0 1 1 0 8 0 kcovpl 48 11 0 3 1 0 1 1 0 8 0 ppxss 1160 5 0 5 2 1 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 594 0 134 33 4 29 29 0 8 0 art_table 32 595 0 134 4 0 4 4 0 8 0 art_node 16 146 0 44 1 0 1 1 0 8 0 sysvmsgpl 40 4 0 0 1 0 1 1 0 8 0 semupl 112 128 0 128 7 7 0 1 0 8 0 semapl 112 2940 0 2930 1 0 1 1 0 8 0 shmpl 112 131 0 3 4 0 4 4 0 8 0 dirhash 1024 21 0 4 3 0 3 3 0 8 0 dino2pl 256 14077 0 12633 91 0 91 91 0 8 0 ffsino 240 14077 0 12633 86 0 86 86 0 8 0 nchpl 144 30075 0 28428 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 uvmvnodes: pool(0xffffffff82c3c120:uvmvnodes): page inconsistency: page 0x0; at page head addr 0xfffffd8072e98f90 (p 0xfffffd8072e98000) vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 96002 0 96002 3 2 1 3 0 8 1 vcpupl 2048 20 0 3 3 0 3 3 0 8 0 vmpool 664 20 0 3 2 0 2 2 0 8 0 kstatmem 264 62 0 40 2 0 2 2 0 8 0 scxspl 216 80886 0 80886 13 12 1 8 1 8 1 plimitpl 152 132 0 116 1 0 1 1 0 8 0 sigapl 424 12563 0 12498 8 0 8 8 0 8 0 futexpl 64 198723 0 198717 1 0 1 1 0 8 0 knotepl 120 94953 0 94873 3 0 3 3 0 8 0 kqueuepl 184 170 0 162 1 0 1 1 0 8 0 pipepl 288 785 0 757 23 20 3 7 0 8 0 fdescpl 432 12526 0 12500 4 0 4 4 0 8 0 filepl 120 66158 0 65918 68 56 12 14 0 8 4 lockfpl 104 21663 0 21660 27 25 2 4 0 8 1 lockfspl 48 10761 0 10758 5 4 1 2 0 8 0 sessionpl 144 26 0 10 1 0 1 1 0 8 0 pgrppl 48 32 0 16 1 0 1 1 0 8 0 ucredpl 104 10034 0 10024 1 0 1 1 0 8 0 zombiepl 144 12500 0 12498 1 0 1 1 0 8 0 processpl 1008 12563 0 12498 10 1 9 9 0 8 0 procpl 680 27439 0 27354 12 4 8 9 0 8 0 sosppl 168 21 0 21 5 5 0 1 0 8 0 sockpl 456 15220 0 15197 378 373 5 29 0 8 2 mcl64k 65536 2583 0 2583 4 3 1 1 0 8 1 mcl16k 16384 329 0 329 13 12 1 1 0 8 1 mcl12k 12288 1056 0 1056 7 6 1 1 0 8 1 mcl9k 9216 304 0 304 12 11 1 1 0 8 1 mcl8k 8192 1824 0 1824 6 5 1 1 0 8 1 mcl4k 4096 1580 0 1580 6 5 1 1 0 8 1 mcl2k2 2112 80 0 80 18 18 0 1 0 8 0 mcl2k 2048 107123 0 106906 87 57 30 34 0 8 2 mtagpl 96 14650 0 13140 46 3 43 45 0 8 0 mbufpl 256 317860 0 316219 194 68 126 130 0 8 0 bufpl 288 16758 0 10361 458 0 458 458 0 8 0 anonpl 24 1061294 0 1047055 121 30 91 109 0 188 0 amapchunkpl 152 343837 0 343015 83 47 36 42 0 158 2 amappl16 200 18498 0 18059 44 20 24 36 0 8 0 amappl15 192 16 0 16 1 1 0 1 0 8 0 amappl14 184 169 0 157 2 1 1 2 0 8 0 amappl13 176 21 0 20 1 0 1 1 0 8 0 amappl12 168 13195 0 13167 2 0 2 2 0 8 0 amappl11 160 49 0 39 1 0 1 1 0 8 0 amappl10 152 45 0 35 1 0 1 1 0 8 0 amappl9 144 393 0 392 1 0 1 1 0 8 0 amappl8 136 481 0 377 4 0 4 4 0 8 0 amappl7 128 2238 0 2219 2 0 2 2 0 8 0 amappl6 120 461 0 449 1 0 1 1 0 8 0 amappl5 112 253 0 245 1 0 1 1 0 8 0 amappl4 104 520 0 492 2 1 1 2 0 8 0 amappl3 96 68478 0 68386 3 0 3 3 0 8 0 amappl2 88 13083 0 13008 3 1 2 3 0 8 0 amappl1 80 51353 0 50849 22 9 13 22 0 8 0 amappl 88 107746 0 107522 6 0 6 6 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 133 0 3 3 0 3 3 0 8 0 uaddrrnd 24 12546 0 12503 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 12546 0 12503 1 0 1 1 0 8 0 vmmpekpl 168 68066 0 68005 4 1 3 3 0 8 0 vmmpepl 168 692238 0 689994 174 69 105 119 0 357 1 vmsppl 368 12545 0 12503 5 0 5 5 0 8 0 rwobjpl 24 157557 0 150015 47 0 47 47 0 8 0 pdppl 4096 25098 0 25023 452 373 79 83 0 8 4 pvpl 32 2962439 0 2942882 367 200 167 334 0 265 4 pmappl 216 12545 0 12503 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1567 0 637 27 0 27 27 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace rw_enter(0,1) at rw_enter+0xf0 sys/kern/kern_rwlock.c:253 uvm_vnp_setsize(fffffd807e3c6a70,0) at uvm_vnp_setsize+0x2c sys/uvm/uvm_vnode.c:1454 ffs_truncate(fffffd807e247008,0,4,fffffd807f7d7750) at ffs_truncate+0x303 sys/ufs/ffs/ffs_inode.c:177 ufs_rmdir(ffff80002db8cdf8) at ufs_rmdir+0x3a9 sys/ufs/ufs/ufs_vnops.c:1342 VOP_RMDIR(fffffd8067d7f538,fffffd807e3c6a70,ffff80002db8ced8) at VOP_RMDIR+0x12a sys/kern/vfs_vops.c:407 dounlinkat(ffff80002a6712b0,ffffff9c,781347cf85d0,8) at dounlinkat+0x20e sys/kern/vfs_syscalls.c:1880 syscall(ffff80002db8d040) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x781347cf85c0, count: -8 ddb> machine ddbcpu 1 No such command ddb> trace rw_enter(0,1) at rw_enter+0xf0 sys/kern/kern_rwlock.c:253 uvm_vnp_setsize(fffffd807e3c6a70,0) at uvm_vnp_setsize+0x2c sys/uvm/uvm_vnode.c:1454 ffs_truncate(fffffd807e247008,0,4,fffffd807f7d7750) at ffs_truncate+0x303 sys/ufs/ffs/ffs_inode.c:177 ufs_rmdir(ffff80002db8cdf8) at ufs_rmdir+0x3a9 sys/ufs/ufs/ufs_vnops.c:1342 VOP_RMDIR(fffffd8067d7f538,fffffd807e3c6a70,ffff80002db8ced8) at VOP_RMDIR+0x12a sys/kern/vfs_vops.c:407 dounlinkat(ffff80002a6712b0,ffffff9c,781347cf85d0,8) at dounlinkat+0x20e sys/kern/vfs_syscalls.c:1880 syscall(ffff80002db8d040) at syscall+0x543 sys/arch/amd64/amd64/trap.c:606 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x781347cf85c0, count: -8