uvm_fault(0xffffffff83a0a918, 0xffff800027e530d8, 0, 1) -> d kernel: page fault trap, code=0 Stopped at ffs2_balloc+0xa0a: movq 0(%rcx,%rax,8),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *282322 78406 0 0x1000 0x4080000 0 syz-executor ffs2_balloc(fffff10043c6d400,89c000,4000,fffff10007ffd548,2,ffff80002a795408) at ffs2_balloc+0xa0a sys/ufs/ffs/ffs_balloc.c:614 ffs_write(ffff80002a795490) at ffs_write+0x4f9 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffff1006a9d4958,ffff80002a795648,7,fffff10007ffd548) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 vn_write(fffff1006f2410f0,ffff80002a795648,0) at vn_write+0x1c2 sys/kern/vfs_vnops.c:414 dofilewritev(ffff8000314ac2b8,3,ffff80002a795648,0,ffff80002a7956f0) at dofilewritev+0x2bd sys/kern/sys_generic.c:384 sys_write(ffff8000314ac2b8,ffff80002a7957a0,ffff80002a7956f0) at sys_write+0xa2 sys/kern/sys_generic.c:300 syscall(ffff80002a7957a0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80002a7957a0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x341b54a56a0, count: 7 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff83a0a918, 0xffff800027e530d8, 0, 1) -> d ddb> trace ffs2_balloc(fffff10043c6d400,89c000,4000,fffff10007ffd548,2,ffff80002a795408) at ffs2_balloc+0xa0a sys/ufs/ffs/ffs_balloc.c:614 ffs_write(ffff80002a795490) at ffs_write+0x4f9 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffff1006a9d4958,ffff80002a795648,7,fffff10007ffd548) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 vn_write(fffff1006f2410f0,ffff80002a795648,0) at vn_write+0x1c2 sys/kern/vfs_vnops.c:414 dofilewritev(ffff8000314ac2b8,3,ffff80002a795648,0,ffff80002a7956f0) at dofilewritev+0x2bd sys/kern/sys_generic.c:384 sys_write(ffff8000314ac2b8,ffff80002a7957a0,ffff80002a7956f0) at sys_write+0xa2 sys/kern/sys_generic.c:300 syscall(ffff80002a7957a0) at syscall+0x962 mi_syscall sys/sys/syscall_mi.h:-1 [inline] syscall(ffff80002a7957a0) at syscall+0x962 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x341b54a56a0, count: -8 ddb> show registers rdi 0 rsi 0x2 rbp 0xffff80002a7953b0 rbx 0xfffff10043c6d400 rdx 0 rcx 0xffff800027e52000 rax 0x21b r8 0xffffffffffffffff r9 0xffff80002a795408 r10 0xaf0f49ed62fa9418 r11 0x53614106b004b7a5 r12 0x1 r13 0xffff800000c47800 r14 0xffff80002a795250 r15 0xfffff1006ab17558 rip 0xffffffff823fc67a ffs2_balloc+0xa0a cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002a795240 ss 0x10 ffs2_balloc+0xa0a: movq 0(%rcx,%rax,8),%r14 ddb> show proc PROC (syz-executor) tid=282322 pid=78406 tcnt=3 stat=onproc flags process=1000 proc=4080000 runpri=17, usrpri=84, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0xffff8000314ad248 scnt=2 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000314ad248,0xffff80002a726d10 process=0xffff8000314a9218 user=0xffff80002a790000, vmspace=0xfffff10075833178 estcpu=34, cpticks=9, pctcpu=0.1, user=0, sys=9, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 69471 187770 21954 0 2 0 syz-executor 69471 67535 21954 0 3 0x4000080 fsleep syz-executor 39898 414942 6729 0 2 0 syz-executor 39898 427724 6729 0 2 0x4000000 syz-executor 39898 338840 6729 0 3 0x4000080 fsleep syz-executor 6272 414950 88599 0 2 0 syz-executor 6272 494886 88599 0 3 0x4000088 kqpoll syz-executor 6272 398397 88599 0 3 0x4000088 kqpoll syz-executor 25020 363222 26366 0 2 0xc80 syz-executor 25020 124113 26366 0 3 0x4000080 rest syz-executor 25020 461006 26366 0 3 0x4000080 bell syz-executor 25020 351758 26366 0 3 0x4000080 fsleep syz-executor 34329 471173 63977 60929 2 0xc90 syz-executor 34329 169267 63977 60929 3 0x4000090 ttyin syz-executor 34329 439856 63977 60929 3 0x4000090 fsleep syz-executor 93190 518888 1 0 3 0x82 nanoslp getty 9378 205168 80624 0 2 0xc80 syz-executor 9378 520894 80624 0 3 0x4000080 ttyin syz-executor 9378 93245 80624 0 3 0x4000080 fsleep syz-executor 78406 168533 69092 0 3 0x3000 suspend syz-executor *78406 282322 69092 0 7 0x4081000 syz-executor 78406 430550 69092 0 3 0x4081000 inode syz-executor 26366 483296 7509 0 3 0x82 nanoslp syz-executor 63977 513407 7509 0 3 0x82 nanoslp syz-executor 74958 226407 7509 0 2 0x2 syz-executor 88599 514007 7509 0 3 0x82 nanoslp syz-executor 69092 183355 7509 0 3 0x82 nanoslp syz-executor 21954 476534 7509 0 3 0x82 nanoslp syz-executor 80624 357903 7509 0 3 0x82 nanoslp syz-executor 6729 108100 7509 0 3 0x82 nanoslp syz-executor 7509 362499 1 0 2 0x2 syz-executor 68896 230408 0 0 3 0x14200 bored smr 74963 254570 0 0 2 0x14200 zerothread 72089 273267 0 0 3 0x14200 aiodoned aiodoned 73756 335689 0 0 3 0x14200 syncer update 71063 155866 0 0 3 0x14200 cleaner cleaner 82239 147448 0 0 3 0x14200 reaper reaper 19410 173192 0 0 3 0x14200 pgdaemon pagedaemon 9997 462689 0 0 3 0x14200 bored viomb 35763 262968 0 0 3 0x40014200 acpi0 acpi0 82935 370106 0 0 3 0x14200 bored softnet0 8970 143796 0 0 3 0x14200 smrbar systqmp 7154 393156 0 0 3 0x14200 bored systq 96417 162600 0 0 3 0x40014200 tmoslp softclock 81905 146007 0 0 3 0x40014200 idle0 1 36217 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11038 12225K 12738K 166960K 12765 0 pcb 18 15K 16K 166960K 122 0 rtable 201 6K 8K 166960K 488 0 pf 31 13K 20K 166960K 140 0 ifaddr 38 6K 7K 166960K 65 0 ifgroup 46 2K 2K 166960K 81 0 sysctl 3 1K 9K 166960K 8 0 counters 32 17K 18K 166960K 46 0 ioctlops 0 0K 4K 166960K 206 0 iov 0 0K 16K 166960K 14 0 mount 1 1K 1K 166960K 1 0 log 4 0K 8K 166960K 11 0 vnodes 1392 88K 88K 166960K 2057 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 7 0 VM map 2 1K 1K 166960K 2 0 sem 11 0K 0K 166960K 20 0 dirhash 12 2K 2K 166960K 18 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 61K 89K 166960K 500 0 sigio 0 0K 0K 166960K 5 0 proc 20 25K 83K 166960K 616 0 subproc 72 4K 4K 166960K 92 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 44 0 in_multi 90 6K 7K 166960K 133 0 ether_multi 1 0K 0K 166960K 3 0 mrt 0 0K 0K 166960K 16 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 103 466K 466K 166960K 103 0 exec 0 0K 1K 166960K 491 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 150 83K 166K 166960K 6036 0 UVM aobj 14 2K 2K 166960K 16 0 pinsyscall 19 38K 93K 166960K 1674 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 12 0 NDP 12 0K 2K 166960K 42 0 temp 79 9120K 9184K 166960K 14086 0 kqueue 3 6K 24K 166960K 94 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 61 0 61 1 0 1 1 0 8 1 rtentry 136 139 0 52 4 0 4 4 0 8 0 unpcb 144 254 0 254 3 0 3 3 0 8 3 syncache 336 10 0 8 1 0 1 1 0 8 0 tcpcb 736 108 0 105 1 0 1 1 0 8 0 arp 96 22 0 8 1 0 1 1 0 8 0 ipq