panic: thread 0xffff800020b932d8 cannot exit while holding sleeplocks Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *140274 98308 0 0x14000 0x200 1 reaper db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:399 panic() at panic+0x16c sys/kern/subr_prf.c:208 witness_thread_exit(3b01253709a9144d) at witness_thread_exit+0x244 sys/kern/subr_witness.c:1377 reaper(0) at reaper+0x14f sys/kern/kern_exit.c:412 end trace frame: 0x0, count: 11 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> show panic thread 0xffff800020b932d8 cannot exit while holding sleeplocks ddb{1}> trace db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:399 panic() at panic+0x16c sys/kern/subr_prf.c:208 witness_thread_exit(3b01253709a9144d) at witness_thread_exit+0x244 sys/kern/subr_witness.c:1377 reaper(0) at reaper+0x14f sys/kern/kern_exit.c:412 end trace frame: 0x0, count: -4 ddb{1}> show registers rdi 0 rsi 0x1 rbp 0xffff800020b67870 rbx 0xffff800020b67910 rdx 0xffffffff81f32964 cy_pio_rec+0x1609 rcx 0 rax 0 r8 0xffffffff81c104a4 kprintf+0x174 r9 0x1 r10 0xbee0c8e0b08bb12e r11 0x89856ca388a19fab r12 0x3000000008 r13 0xffff800020b67880 r14 0x100 r15 0x1 rip 0xffffffff81326598 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff800020b67860 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb{1}> show proc PROC (reaper) pid=140274 stat=onproc flags process=14000 proc=200 pri=4, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff800020b20bb8,0xffff800020b219d8 process=0xffff800020b5ad28 user=0xffff800020b62000, vmspace=0xffffffff82319cc8 estcpu=0, cpticks=2, pctcpu=0.41 user=0, sys=2, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 92894 316819 1 0 3 0x100083 ttyin getty 35550 160431 0 0 3 0x14200 bored sosplice 65072 228968 33457 0 3 0x82 piperd syz-executor1 55747 260721 33457 0 3 0x82 nanosleep syz-executor0 33457 258781 65642 0 3 0x82 thrsleep syz-fuzzer 33457 495508 65642 0 3 0x4000082 thrsleep syz-fuzzer 33457 138323 65642 0 3 0x4000082 thrsleep syz-fuzzer 33457 436149 65642 0 3 0x4000082 thrsleep syz-fuzzer 33457 187380 65642 0 3 0x4000082 kqread syz-fuzzer 33457 417218 65642 0 3 0x4000082 thrsleep syz-fuzzer 33457 444781 65642 0 3 0x4000082 thrsleep syz-fuzzer 33457 173570 65642 0 3 0x4000082 thrsleep syz-fuzzer 33457 520368 65642 0 3 0x4000082 thrsleep syz-fuzzer 33457 288215 65642 0 3 0x4000082 thrsleep syz-fuzzer 65642 194574 79829 0 3 0x10008a pause ksh 79829 89487 48692 0 3 0x92 select sshd 48692 431388 1 0 3 0x80 select sshd 89822 96559 57531 73 3 0x100010 ffs_fsync syslogd 57531 457370 1 0 3 0x100082 netio syslogd 1117 287082 1 77 3 0x100090 poll dhclient 9718 99353 1 0 3 0x80 poll dhclient 81559 194042 0 0 3 0x14200 pgzero zerothread 49469 192081 0 0 3 0x14200 aiodoned aiodoned 38240 33872 0 0 3 0x14200 syncer update 75048 255175 0 0 3 0x14200 cleaner cleaner *98308 140274 0 0 7 0x14200 reaper 15304 427500 0 0 3 0x14200 pgdaemon pagedaemon 9587 96232 0 0 3 0x14200 bored crynlk 80338 182399 0 0 3 0x14200 bored crypto 81484 385976 0 0 3 0x40014200 acpi0 acpi0 2815 423245 0 0 3 0x40014200 idle1 34738 88381 0 0 3 0x14200 bored softnet 70331 91933 0 0 3 0x14200 bored systqmp 83711 325604 0 0 3 0x14200 bored systq 70851 152877 0 0 3 0x40014200 bored softclock 1018 460235 0 0 7 0x40014200 idle0 1 286028 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 89822 (syslogd) thread 0xffff800020be5c30 (96559) exclusive rrwlock inode r = 0 (0xfffffd806eba8098) locked @ /syzkaller/managers/multicore/kernel/sys/ufs/ufs/ufs_vnops.c:1547 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9600 10480K 10495K 78643K 16058 0 0 pcb 23 9K 11K 78643K 12466 0 0 rtable 100 3K 4K 78643K 2548 0 0 ifaddr 78 22K 26K 78643K 1499 0 0 counters 39 33K 33K 78643K 39 0 0 ioctlops 0 0K 2K 78643K 199 0 0 iov 0 0K 32K 78643K 2367 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1207 75K 76K 78643K 16611 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 5K 78643K 390 0 0 VM map 2 1K 1K 78643K 2 0 0 sem 12 1K 1K 78643K 2402 0 0 dirhash 12 2K 2K 78643K 12 0 0 ACPI 1792 194K 288K 78643K 12592 0 0 file desc 5 13K 25K 78643K 24484 0 0 sigio 0 0K 0K 78643K 457 0 0 proc 42 38K 70K 78643K 4167 0 0 subproc 64 65538K 67586K 78643K 228 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 ip_moptions 0 0K 0K 78643K 3216 0 0 in_multi 33 2K 2K 78643K 1046 0 0 ether_multi 1 0K 0K 78643K 140 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 156 689K 689K 78643K 156 0 0 exec 0 0K 1K 78643K 1898 0 0 pfkey data 0 0K 4K 78643K 22 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 174 25K 214K 78643K 77994 0 0 UVM aobj 130 4K 4K 78643K 147 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 ip6_options 0 0K 1K 78643K 530 0 0 NDP 18 0K 0K 78643K 416 0 0 temp 212 2364K 2441K 78643K 68687 0 0 kqueue 0 0K 0K 78643K 285 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 4 0 0 1 0 1 1 0 8 0 inpcbpl 280 10579 0 10570 10 9 1 2 0 8 0 plimitpl 152 286 0 279 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtentry 112 41 0 1 2 0 2 2 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpcb 544 3728 0 3724 1 0 1 1 0 8 0 nd6 48 4 0 0 1 0 1 1 0 8 0 ppxss 1128 267 0 267 95 95 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 185 0 0 12 0 12 12 0 8 0 art_table 32 186 0 0 2 0 2 2 0 8 0 art_node 16 40 0 6 1 0 1 1 0 8 0 sysvmsgpl 40 9 0 7 2 1 1 1 0 8 0 semapl 112 2398 0 2388 1 0 1 1 0 8 0 shmpl 112 145 0 17 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 50483 0 48503 66 1 65 65 0 8 0 ffsino 272 50483 0 48503 134 1 133 133 0 8 0 nchpl 144 86309 0 84732 60 1 59 60 0 8 0 uvmvnodes 72 5926 0 0 108 0 108 108 0 8 0 vnodes 200 5926 0 0 312 0 312 312 0 8 0 namei 1024 274707 0 274707 5 4 1 1 0 8 1 percpumem 16 30 0 0 1 0 1 1 0 8 0 scsiplug 64 75 0 75 51 51 0 1 0 8 0 scxspl 192 238067 0 238066 78 77 1 6 0 8 0 sigapl 432 24682 0 24669 2 0 2 2 0 8 0 futexpl 56 292336 0 292336 3 2 1 1 0 8 1 knotepl 112 7043 0 7016 54 52 2 2 0 8 1 kqueuepl 104 8497 0 8495 1 0 1 1 0 8 0 pipepl 112 16520 0 16501 45 44 1 2 0 8 0 fdescpl 488 24683 0 24669 3 1 2 3 0 8 0 filepl 152 157699 0 157602 40 35 5 7 0 8 0 lockfpl 96 7748 0 7748 24 23 1 1 0 8 1 lockfspl 24 12671 0 12671 21 20 1 1 0 8 1 sessionpl 112 48 0 38 1 0 1 1 0 8 0 pgrppl 48 332 0 322 1 0 1 1 0 8 0 ucredpl 96 50665 0 50658 1 0 1 1 0 8 0 zombiepl 144 24670 0 24669 6 5 1 1 0 8 0 processpl 840 24698 0 24669 4 0 4 4 0 8 0 procpl 600 76409 0 76369 6 2 4 5 0 8 0 sosppl 128 537 0 537 97 96 1 1 0 8 1 sockpl 384 22408 0 22391 24 21 3 4 0 8 1 mcl64k 65536 2557 0 0 171 106 65 66 0 8 0 mcl16k 16384 23 0 0 3 1 2 3 0 8 0 mcl12k 12288 98 0 0 3 1 2 2 0 8 0 mcl9k 9216 69 0 0 4 2 2 2 0 8 0 mcl8k 8192 73 0 0 8 5 3 3 0 8 0 mcl4k 4096 57 0 0 6 4 2 3 0 8 0 mcl2k2 2112 36 0 0 3 1 2 2 0 8 0 mcl2k 2048 134 0 0 13 3 10 13 0 8 0 mtagpl 80 3 0 0 1 0 1 1 0 8 0 mbufpl 256 2608 0 0 41 7 34 35 0 8 0 bufpl 256 45129 0 38160 436 0 436 436 0 8 0 anonpl 16 2382429 0 2374592 726 678 48 51 0 125 12 amapchunkpl 152 150541 0 150423 580 574 6 190 0 158 0 amappl16 192 138644 0 138265 900 872 28 33 0 8 8 amappl15 184 12271 0 12268 1 0 1 1 0 8 0 amappl14 176 9 0 6 2 1 1 1 0 8 0 amappl13 168 26 0 22 1 0 1 1 0 8 0 amappl12 160 20 0 19 1 0 1 1 0 8 0 amappl11 152 12373 0 12363 1 0 1 1 0 8 0 amappl10 144 96 0 93 2 1 1 1 0 8 0 amappl9 136 12541 0 12539 1 0 1 1 0 8 0 amappl8 128 487 0 377 4 0 4 4 0 8 0 amappl7 120 32 0 27 1 0 1 1 0 8 0 amappl6 112 58 0 50 1 0 1 1 0 8 0 amappl5 104 12607 0 12594 1 0 1 1 0 8 0 amappl4 96 573 0 550 2 1 1 2 0 8 0 amappl3 88 1158 0 1151 1 0 1 1 0 8 0 amappl2 80 248989 0 248938 2 0 2 2 0 8 0 amappl1 72 526538 0 526103 24 14 10 19 0 8 0 amappl 72 76880 0 76837 1 0 1 1 0 75 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma64 64 259 0 259 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 17 0 17 1 1 0 1 0 8 0 aobjpl 64 146 0 17 3 0 3 3 0 8 0 uaddrrnd 24 24683 0 24669 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 24683 0 24669 1 0 1 1 0 8 0 vmmpekpl 168 196491 0 196468 2 0 2 2 0 8 0 vmmpepl 168 2599599 0 2598153 568 495 73 79 0 357 3 vmsppl 360 24682 0 24669 2 0 2 2 0 8 0 pdppl 4096 49373 0 49338 6 1 5 6 0 8 0 pvpl 32 6202912 0 6191940 1269 1143 126 137 0 265 31 pmappl 224 24682 0 24669 1 0 1 1 0 8 0 extentpl 40 39 0 25 1 0 1 1 0 8 0 phpool 112 842 0 134 21 0 21 21 0 8 0