uvm_fault(0xffffffff8397c948, 0xffff800026805ff8, 0, 1) -> d kernel: page fault trap, code=0 Stopped at ffs_indirtrunc+0x689: movq 0(%rax,%rbx,8),%rbx TID PID UID PRFLAGS PFLAGS CPU COMMAND *192533 3145 0 0x2 0 0 syz-executor ffs_indirtrunc(fffffd806caa3a00,ffffffffedfffff4,eff00,ffffffffffffffff,0,ffff80002a895188) at ffs_indirtrunc+0x689 sys/ufs/ffs/ffs_inode.c:495 ffs_indirtrunc(fffffd806caa3a00,ffffffffee3ff7f3,efee0,ffffffffffffffff,1,ffff80002a895288) at ffs_indirtrunc+0x723 sys/ufs/ffs/ffs_inode.c:499 ffs_indirtrunc(fffffd806caa3a00,ffffffffffbff7f2,efec0,ffffffffffffffff,2,ffff80002a895488) at ffs_indirtrunc+0x723 sys/ufs/ffs/ffs_inode.c:499 ffs_truncate(fffffd806caa3a00,0,0,ffffffffffffffff) at ffs_truncate+0x1036 sys/ufs/ffs/ffs_inode.c:297 ufs_inactive(ffff80002a8955e0) at ufs_inactive+0x1ff sys/ufs/ufs/ufs_inode.c:84 VOP_INACTIVE(fffffd807666fda8,ffff80002a746a68) at VOP_INACTIVE+0xfb sys/kern/vfs_vops.c:498 vput(fffffd807666fda8) at vput+0xdc sys/kern/vfs_subr.c:789 VOP_REMOVE(fffffd806ffa7b18,fffffd807666fda8,ffff80002a895748) at VOP_REMOVE+0x199 sys/kern/vfs_vops.c:336 dounlinkat(ffff80002a746a68,ffffff9c,7d330488c0f0,0) at dounlinkat+0x1c4 sys/kern/vfs_syscalls.c:1923 syscall(ffff80002a8958b0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80002a8958b0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d330488c5a0, count: 4 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff8397c948, 0xffff800026805ff8, 0, 1) -> d ddb> trace ffs_indirtrunc(fffffd806caa3a00,ffffffffedfffff4,eff00,ffffffffffffffff,0,ffff80002a895188) at ffs_indirtrunc+0x689 sys/ufs/ffs/ffs_inode.c:495 ffs_indirtrunc(fffffd806caa3a00,ffffffffee3ff7f3,efee0,ffffffffffffffff,1,ffff80002a895288) at ffs_indirtrunc+0x723 sys/ufs/ffs/ffs_inode.c:499 ffs_indirtrunc(fffffd806caa3a00,ffffffffffbff7f2,efec0,ffffffffffffffff,2,ffff80002a895488) at ffs_indirtrunc+0x723 sys/ufs/ffs/ffs_inode.c:499 ffs_truncate(fffffd806caa3a00,0,0,ffffffffffffffff) at ffs_truncate+0x1036 sys/ufs/ffs/ffs_inode.c:297 ufs_inactive(ffff80002a8955e0) at ufs_inactive+0x1ff sys/ufs/ufs/ufs_inode.c:84 VOP_INACTIVE(fffffd807666fda8,ffff80002a746a68) at VOP_INACTIVE+0xfb sys/kern/vfs_vops.c:498 vput(fffffd807666fda8) at vput+0xdc sys/kern/vfs_subr.c:789 VOP_REMOVE(fffffd806ffa7b18,fffffd807666fda8,ffff80002a895748) at VOP_REMOVE+0x199 sys/kern/vfs_vops.c:336 dounlinkat(ffff80002a746a68,ffffff9c,7d330488c0f0,0) at dounlinkat+0x1c4 sys/kern/vfs_syscalls.c:1923 syscall(ffff80002a8958b0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80002a8958b0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d330488c5a0, count: -11 ddb> show registers rdi 0x2 rsi 0x2 rbp 0xffff80002a895160 rbx 0x7ff rdx 0 rcx 0xffffffffedfffff4 rax 0xffff800026802000 r8 0xffffffffffffffff r9 0xffff80002a895188 r10 0x3259f2c385ea1b9e r11 0xc752a39f932c5f87 r12 0xffffffffedfff7f6 r13 0x1 r14 0x2 r15 0xfffffd806caa3a00 rip 0xffffffff81557fe9 ffs_indirtrunc+0x689 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002a895070 ss 0x10 ffs_indirtrunc+0x689: movq 0(%rax,%rbx,8),%rbx ddb> show proc PROC (syz-executor) tid=192533 pid=3145 tcnt=1 stat=onproc flags process=2 proc=0 runpri=17, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a746008,0xffff80002a7467e0 process=0xffff80002a7aed10 user=0xffff80002a890000, vmspace=0xfffffd80719fb178 estcpu=36, cpticks=6, pctcpu=0.1, user=1, sys=5, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 80972 350731 19624 0 2 0 syz-executor 80972 273531 19624 0 2 0x4000000 syz-executor 25410 116926 32344 -1 2 0x10 syz-executor 25410 172784 32344 -1 3 0x4000090 netcon syz-executor 27029 68748 37172 0 2 0 syz-executor 27029 302718 37172 0 2 0x4000000 syz-executor 27029 107456 37172 0 3 0x4000080 fsleep syz-executor 27029 7802 37172 0 2 0x4000000 syz-executor 730 123725 4084 0 2 0xc80 syz-executor 730 9628 4084 0 3 0x4000080 msgwait syz-executor 730 133492 4084 0 3 0x4000080 msgwait syz-executor 730 451273 4084 0 3 0x4000080 fsleep syz-executor 50358 297041 83699 0 3 0x80 nanoslp syz-executor 50358 485293 83699 0 3 0x4000080 fifor syz-executor 50358 331711 83699 0 3 0x4000080 fsleep syz-executor 4228 407254 1 0 3 0x80 nanoslp init 40750 388703 0 0 3 0x14200 acct acct 32344 490302 94947 0 2 0xc82 syz-executor * 3145 192533 94947 0 7 0x2 syz-executor 93715 452514 94947 0 3 0x82 wait syz-executor 83699 17119 94947 0 3 0x82 nanoslp syz-executor 19624 7078 94947 0 3 0x82 nanoslp syz-executor 4084 123 94947 0 3 0x82 nanoslp syz-executor 37172 150031 94947 0 3 0x82 nanoslp syz-executor 49462 181863 94947 0 3 0x82 nanoslp syz-executor 94947 339952 1 0 3 0x82 kqread syz-executor 76603 373483 0 0 3 0x14200 bored smr 9571 278955 0 0 2 0x14200 zerothread 26784 322962 0 0 3 0x14200 aiodoned aiodoned 47924 503380 0 0 3 0x14200 syncer update 14693 54153 0 0 3 0x14200 cleaner cleaner 36368 515087 0 0 3 0x14200 reaper reaper 20301 20446 0 0 3 0x14200 pgdaemon pagedaemon 85946 63593 0 0 3 0x14200 bored viomb 14951 485450 0 0 3 0x40014200 acpi0 acpi0 9577 355424 0 0 3 0x14200 bored softnet0 65192 53449 0 0 3 0x14200 bored systqmp 79678 302004 0 0 3 0x14200 bored systq 95956 122823 0 0 3 0x40014200 tmoslp softclock 57339 30049 0 0 3 0x40014200 idle0 1 218781 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11051 12298K 13399K 166960K 13211 0 pcb 17 12K 12K 166960K 101 0 rtable 241 16K 16K 166960K 443 0 pf 34 13K 16K 166960K 66 0 ifaddr 40 6K 7K 166960K 62 0 ifgroup 54 2K 2K 166960K 84 0 sysctl 3 1K 9K 166960K 8 0 counters 34 17K 18K 166960K 53 0 ioctlops 0 0K 4K 166960K 110 0 iov 0 0K 16K 166960K 18 0 mount 1 1K 1K 166960K 1 0 log 3 4K 4K 166960K 7 0 vnodes 1355 85K 85K 166960K 1844 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 5 0 VM map 2 1K 1K 166960K 2 0 sem 11 5K 5K 166960K 15 0 dirhash 12 2K 2K 166960K 24 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 61K 89K 166960K 461 0 sigio 0 0K 0K 166960K 3 0 proc 11 17K 83K 166960K 541 0 subproc 72 4K 4K 166960K 72 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 62 0 in_multi 88 6K 7K 166960K 111 0 ether_multi 1 0K 0K 166960K 6 0 mrt 1 0K 0K 166960K 11 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 85 387K 387K 166960K 85 0 exec 0 0K 1K 166960K 408 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 141 78K 151K 166960K 6002 0 UVM aobj 78 4K 4K 166960K 81 0 pinsyscall 18 36K 94K 166960K 1557 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 10 0 NDP 12 0K 2K 166960K 40 0 temp 48 9068K 9159K 166960K 24073 0 kqueue 1 2K 26K 166960K 87 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 60 0 60 1 0 1 1 0 8 1 rtentry 136 124 0 24 4 0 4 4 0 8 0 unpcb 144 609 0 606 7 6 1 6 0 8 0 syncache 336 3 0 3 1 1 0 1 0 8 0 tcpcb 736 113 0 110 1 0 1 1 0 8 0 arp 96 20 0 4 1 0 1 1 0 8 0 ipq 40 1 0 0 1 0 1 1 0 8 0 ipqe 40 2 0 0 1 0 1 1 0 8 0 inpcb 328 357 0 353 2 1 1 2 0 8 0 nd6 112 25 0 4 1 0 1 1 0 8 0 pkpcb 40 3 0 3 1 1 0 1 0 8 0 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1072 17 0 17 2 1 1 1 0 8 1 pppxif 1416