uvm_fault(0xffffffff839b9bc0, 0xffff8000291f20b0, 0, 1) -> d kernel: page fault trap, code=0 Stopped at ffs2_balloc+0xa0a: movq 0(%rcx,%rax,8),%r14 TID PID UID PRFLAGS PFLAGS CPU COMMAND *134302 3257 0 0x2 0x1 0 syz-executor ffs2_balloc(fffffd807e850300,89fcd,78,fffffd8007bfd618,1,ffff80002a7fda98) at ffs2_balloc+0xa0a sys/ufs/ffs/ffs_balloc.c:614 ffs_write(ffff80002a7fdb20) at ffs_write+0x4f9 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffffd806c701370,ffff80002a7fdbd0,3,fffffd8007bfd618) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff80002a7b82a8,fffffd806c701370,fffffd8007bfd618,ffff80002a7fdca0,ffff80002a7fdc80) at ktrwriteraw+0x19b sys/kern/kern_ktrace.c:691 ktrsyscall(ffff80002a7b82a8,6e,30,ffff80002a7fde20) at ktrsyscall+0x332 ktrwrite sys/kern/kern_ktrace.c:-1 [inline] ktrsyscall(ffff80002a7b82a8,6e,30,ffff80002a7fde20) at ktrsyscall+0x332 sys/kern/kern_ktrace.c:183 syscall(ffff80002a7fde20) at syscall+0x2bc mi_syscall sys/sys/syscall_mi.h:154 [inline] syscall(ffff80002a7fde20) at syscall+0x2bc sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x71f481bf0b50, count: 8 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff839b9bc0, 0xffff8000291f20b0, 0, 1) -> d ddb> trace ffs2_balloc(fffffd807e850300,89fcd,78,fffffd8007bfd618,1,ffff80002a7fda98) at ffs2_balloc+0xa0a sys/ufs/ffs/ffs_balloc.c:614 ffs_write(ffff80002a7fdb20) at ffs_write+0x4f9 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffffd806c701370,ffff80002a7fdbd0,3,fffffd8007bfd618) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff80002a7b82a8,fffffd806c701370,fffffd8007bfd618,ffff80002a7fdca0,ffff80002a7fdc80) at ktrwriteraw+0x19b sys/kern/kern_ktrace.c:691 ktrsyscall(ffff80002a7b82a8,6e,30,ffff80002a7fde20) at ktrsyscall+0x332 ktrwrite sys/kern/kern_ktrace.c:-1 [inline] ktrsyscall(ffff80002a7b82a8,6e,30,ffff80002a7fde20) at ktrsyscall+0x332 sys/kern/kern_ktrace.c:183 syscall(ffff80002a7fde20) at syscall+0x2bc mi_syscall sys/sys/syscall_mi.h:154 [inline] syscall(ffff80002a7fde20) at syscall+0x2bc sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x71f481bf0b50, count: -7 ddb> show registers rdi 0 rsi 0 rbp 0xffff80002a7fda40 rbx 0xfffffd807e850300 rdx 0 rcx 0xffff8000291f2000 rax 0x16 r8 0xffffffffffffffff r9 0xffff80002a7fda98 r10 0xec3a14992f078d59 r11 0xc4b97f56886fd48a r12 0x1 r13 0xffff800000b3f800 r14 0xffff80002a7fd8e0 r15 0xfffffd805f2fe5a0 rip 0xffffffff817c2eda ffs2_balloc+0xa0a cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002a7fd8d0 ss 0x10 ffs2_balloc+0xa0a: movq 0(%rcx,%rax,8),%r14 ddb> show proc PROC (syz-executor) tid=134302 pid=3257 tcnt=1 stat=onproc flags process=2 proc=1 runpri=82, usrpri=82, slppri=24, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a7b9a00,0xffff80002a7b9778 process=0xffff80002a7dc910 user=0xffff80002a7f8000, vmspace=0xfffffd807eb812e0 estcpu=32, cpticks=23, pctcpu=0.0, user=4, sys=19, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 49938 77896 1404 0 2 0 syz-executor 49938 482440 1404 0 2 0x4000000 syz-executor 80544 502923 88774 0 3 0x80 nanoslp syz-executor 80544 172233 88774 0 3 0x4000080 bell syz-executor 81237 441059 75470 60929 3 0x90 nanoslp syz-executor 81237 437471 75470 60929 3 0x4000090 piperd syz-executor 81237 519571 75470 60929 3 0x4000090 fsleep syz-executor 81237 258820 75470 60929 3 0x4000090 fsleep syz-executor 79852 88504 53008 0 3 0x80 nanoslp syz-executor 79852 350665 53008 0 3 0x4000080 sbwait syz-executor 79852 335034 53008 0 3 0x4000080 fsleep syz-executor 53008 451549 3257 0 3 0x82 nanoslp syz-executor 22105 159138 0 0 3 0x14280 nfsidl nfsio 26779 380298 0 0 3 0x14280 nfsidl nfsio 96168 462574 0 0 3 0x14280 nfsidl nfsio 17523 486495 0 0 3 0x14280 nfsidl nfsio 46734 375956 0 0 3 0x14280 nfsidl nfsio 53684 221064 0 0 3 0x14280 nfsidl nfsio 31186 12170 0 0 3 0x14280 nfsidl nfsio 77291 356136 0 0 3 0x14280 nfsidl nfsio 14946 165400 0 0 3 0x14280 nfsidl nfsio 7959 404082 0 0 3 0x14280 nfsidl nfsio 50265 353861 0 0 3 0x14280 nfsidl nfsio 66408 154444 0 0 3 0x14280 nfsidl nfsio 20392 30721 0 0 3 0x14280 nfsidl nfsio 49808 277542 0 0 3 0x14280 nfsidl nfsio 12034 396981 0 0 3 0x14280 nfsidl nfsio 57134 207125 0 0 3 0x14280 nfsidl nfsio 71516 69698 0 0 3 0x14280 nfsidl nfsio 52475 172880 0 0 3 0x14280 nfsidl nfsio 85264 203673 0 0 3 0x14280 nfsidl nfsio 44566 609 0 0 3 0x14280 nfsidl nfsio 20459 187039 1 0 3 0x100083 ttyin getty 1404 99599 3257 0 3 0x82 nanoslp syz-executor 38689 406962 3257 0 3 0x82 piperd syz-executor 83203 191434 3257 0 3 0x82 nanoslp syz-executor 88774 367338 3257 0 3 0x82 nanoslp syz-executor 75470 392641 3257 0 3 0x82 nanoslp syz-executor 48492 138701 3257 0 3 0x82 nanoslp syz-executor 8607 209122 3257 0 3 0x82 piperd syz-executor * 3257 134302 75890 0 7 0x3 syz-executor 75890 287592 76651 0 3 0x10008a sigsusp ksh 76651 203746 64538 0 3 0x98 kqread sshd-session 64538 225697 29033 0 3 0x92 kqread sshd-session 29033 482858 1 0 3 0x88 kqread sshd 16900 245648 23268 73 3 0x1100090 kqread syslogd 23268 393439 1 0 3 0x100082 sbwait syslogd 11162 359360 1 0 3 0x100080 kqread resolvd 84282 362318 12523 77 3 0x100092 kqread dhcpleased 41676 323474 12523 77 3 0x100092 kqread dhcpleased 12523 83055 1 0 3 0x80 kqread dhcpleased 85544 380596 0 0 3 0x14200 bored smr 58379 203672 0 0 2 0x14200 zerothread 70479 56726 0 0 3 0x14200 aiodoned aiodoned 98706 20403 0 0 3 0x14200 syncer update 50601 55383 0 0 3 0x14200 cleaner cleaner 36908 323765 0 0 3 0x14200 reaper reaper 43395 273143 0 0 3 0x14200 pgdaemon pagedaemon 66549 16114 0 0 3 0x14200 bored viomb 84191 277740 0 0 3 0x40014200 acpi0 acpi0 30868 235768 0 0 3 0x14200 bored softnet0 84909 70456 0 0 3 0x14200 bored systqmp 5560 295107 0 0 3 0x14200 bored systq 15566 115961 0 0 3 0x40014200 tmoslp softclock 75910 202144 0 0 3 0x40014200 idle0 1 338566 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10235 11121K 11514K 166960K 12898 0 pcb 18 16K 17K 166960K 326 0 rtable 211 9K 9K 166960K 590 0 pf 29 12K 16K 166960K 113 0 ifaddr 37 6K 8K 166960K 96 0 ifgroup 46 2K 2K 166960K 136 0 sysctl 3 1K 9K 166960K 11 0 counters 32 17K 18K 166960K 73 0 ioctlops 0 0K 4K 166960K 314 0 iov 1 1K 28K 166960K 112 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1365 86K 87K 166960K 2228 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 15 0 VM map 2 1K 1K 166960K 2 0 sem 19 5K 6K 166960K 46 0 dirhash 12 2K 2K 166960K 21 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 16 57K 97K 166960K 1079 0 sigio 1 0K 0K 166960K 19 0 proc 64 67K 108K 166960K 683 0 subproc 72 4K 4K 166960K 100 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 2 0K 0K 166960K 124 0 in_multi 83 6K 7K 166960K 183 0 ether_multi 1 0K 0K 166960K 18 0 mrt 1 0K 0K 166960K 12 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 409 1818K 1818K 166960K 409 0 exec 0 0K 1K 166960K 468 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 226 151K 176K 166960K 11008 0 UVM aobj 61 9K 11K 166960K 65 0 pinsyscall 37 74K 96K 166960K 2238 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 54 0 NDP 12 0K 2K 166960K 63 0 temp 62 8667K 8923K 166960K 38568 0 kqueue 15 20K 28K 166960K 190 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 182 0 179 3 0 3 3 0 8 2 rtentry 136 175 0 92 4 0 4 4 0 8 0 unpcb 144 1120 0 1102 7 0 7 7 0 8 6 syncache 336 6 0 6 1 0 1 1 0 8 1 tcpqe 32 3 0 3 1 0 1 1 0 8 1 tcpcb 736 339 0 266 7 0 7 7 0 8 0 arp 96 27 0 10 1 0 1 1 0 8 0 ipq 40 6 0 0 1 0 1 1 0 8 0 ipqe 40 7 0 1 1 0 1 1 0 8 0 inpcb 328 1162 0 1083 10 0 10 10 0 8 3 ip6q 72 6 0 3 1 0 1 1 0 8 0 ip6af 40 12 0 7 1 0 1 1 0 8 0 nd6 112 38 0 18 1 0 1 1 0 8 0 pkpcb 40 5 0 5 1 0 1 1 0 8 1 kcovpl 48 11 0 3 1 0 1 1 0 8 0 ppxss 1072 29 0 29 1 0 1 1 0 8 1 pppxif 1384 4 0 4 1 0 1 1 0 8 1 pfrktable 1344 2 0 2 1 0 1 1 0 8 1 pftag 88 2 0 0 1 0 1 1 0 8 0 pfstitem 24 2 0 0 1 0 1 1 0 8 0 pfstkey 128 2 0 0 1 0 1 1 0 8 0 pfstate 384 1 0 0 1 0 1 1 0 8 0 pfrule 1344 6 0 6 1 0 1 1 0 8 1 rttmr 136 2 0 2 1 0 1 1 0 8 1 art_heap8 4096 3 0 0 3 0 3 3 0 8 0 art_heap4 256 799 0 438 31 0 31 31 0 8 6 art_table 40 802 0 438 5 0 5 5 0 8 0 art_node 32 172 0 98 1 0 1 1 0 8 0 sysvmsgpl 40 12 0 9 1 0 1 1 0 8 0 semupl 112 1 0 1 1 0 1 1 0 8 1 semapl 112 37 0 20 1 0 1 1 0 8 0 shmpl 112 58 0 3 2 0 2 2 0 8 0 dirhash 1024 23 0 6 3 0 3 3 0 8 0 dino2pl 256 3347 0 1845 95 0 95 95 0 8 0 ffsino 256 3347 0 1845 95 0 95 95 0 8 0 nchpl 144 4846 0 3143 64 0 64 64 0 8 0 rtmask 32 6 0 6 1 0 1 1 0 8 1 vnodes 216 3910 0 0 218 0 218 218 0 8 0 namei 1024 16938 0 16938 2 0 2 2 0 8 2 vcpupl 3904 4 0 1 1 0 1 1 0 8 0 vmpool 800 4 0 1 1 0 1 1 0 8 0 kstatmem 264 80 0 60 2 0 2 2 0 8 0 scsiplug 72 3 0 3 1 0 1 1 0 8 1 scxspl 216 20014 0 20013 8 0 8 8 1 8 7 plimitpl 152 309 0 292 1 0 1 1 0 8 0 sigapl 424 1403 0 1342 8 0 8 8 0 8 0 knotepl 120 34948 0 34900 16 4 12 16 0 8 7 kqueuepl 184 360 0 350 3 0 3 3 0 8 2 pipepl 304 178 0 148 3 0 3 3 0 8 0 fdescpl 448 1348 0 1320 5 0 5 5 0 8 1 filepl 120 9166 0 8871 17 1 16 17 0 8 6 lockfpl 104 499 0 497 2 0 2 2 0 8 1 lockfspl 48 141 0 139 1 0 1 1 0 8 0 sessionpl 144 29 0 21 1 0 1 1 0 8 0 pgrppl 48 50 0 34 1 0 1 1 0 8 0 ucredpl 104 1418 0 1404 1 0 1 1 0 8 0 zombiepl 144 1344 0 1342 1 0 1 1 0 8 0 processpl 1152 1403 0 1342 5 0 5 5 0 8 0 procpl 664 2801 0 2733 8 0 8 8 0 8 1 sosppl 176 4 0 4 1 0 1 1 0 8 1 sockpl 552 2493 0 2393 22 11 11 22 0 8 3 mcl64k 65536 221 0 219 1 0 1 1 0 8 0 mcl16k 16384 1 0 1 1 0 1 1 0 8 1 mcl9k 9216 2 0 2 1 0 1 1 0 8 1 mcl8k 8192 10 0 10 1 0 1 1 0 8 1 mcl4k 4096 3660 0 3598 14 0 14 14 0 8 6 mcl2k 2048 1866 0 1857 9 0 9 9 0 8 7 mtagpl 96 54 0 24 1 0 1 1 0 8 0 mbufpl 256 15553 0 15349 19 0 19 19 0 8 2 bufpl 280 10687 0 4466 445 0 445 445 0 8 0 anonpl 24 204584 0 199418 64 0 64 64 0 187 19 amapchunkpl 152 38765 0 38297 39 0 39 39 0 158 17 amappl16 200 3698 0 3554 35 21 14 25 0 8 2 amappl15 192 5 0 5 1 0 1 1 0 8 1 amappl14 184 6 0 6 1 0 1 1 0 8 1 amappl13 176 437 0 436 1 0 1 1 0 8 0 amappl12 168 1711 0 1674 2 0 2 2 0 8 0 amappl11 160 50 0 49 1 0 1 1 0 8 0 amappl10 152 62 0 52 1 0 1 1 0 8 0 amappl9 144 258 0 258 1 0 1 1 0 8 1 amappl8 136 18 0 17 1 0 1 1 0 8 0 amappl7 128 85 0 84 1 0 1 1 0 8 0 amappl6 120 298 0 286 1 0 1 1 0 8 0 amappl5 112 72 0 64 1 0 1 1 0 8 0 amappl4 104 467 0 444 1 0 1 1 0 8 0 amappl3 96 7206 0 7106 3 0 3 3 0 8 0 amappl2 88 581 0 524 2 0 2 2 0 8 0 amappl1 80 13743 0 13207 13 0 13 13 0 8 0 amappl 88 10067 0 9910 5 0 5 5 0 92 0 uvmvnodes 80 120 0 0 3 0 3 3 0 8 0 dma4096 4096 3 0 3 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 20 0 19 1 0 1 1 0 8 0 aobjpl 72 64 0 4 2 0 2 2 0 8 0 uaddrrnd 24 1348 0 1320 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 1348 0 1320 1 0 1 1 0 8 0 vmmpekpl 168 11884 0 11848 2 0 2 2 0 8 0 vmmpepl 168 90199 0 88344 101 0 101 101 0 357 11 vmsppl 368 1347 0 1320 4 0 4 4 0 8 1 rwobjpl 40 24903 0 23767 15 0 15 15 0 8 1 pdppl 4096 2711 0 2645 109 37 72 83 0 8 6 pvpl 32 577997 0 566992 137 0 137 137 0 265 45 pmappl 216 1351 0 1321 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 403 0 37 11 0 11 11 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ffs2_balloc(fffffd807e850300,89fcd,78,fffffd8007bfd618,1,ffff80002a7fda98) at ffs2_balloc+0xa0a sys/ufs/ffs/ffs_balloc.c:614 ffs_write(ffff80002a7fdb20) at ffs_write+0x4f9 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffffd806c701370,ffff80002a7fdbd0,3,fffffd8007bfd618) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff80002a7b82a8,fffffd806c701370,fffffd8007bfd618,ffff80002a7fdca0,ffff80002a7fdc80) at ktrwriteraw+0x19b sys/kern/kern_ktrace.c:691 ktrsyscall(ffff80002a7b82a8,6e,30,ffff80002a7fde20) at ktrsyscall+0x332 ktrwrite sys/kern/kern_ktrace.c:-1 [inline] ktrsyscall(ffff80002a7b82a8,6e,30,ffff80002a7fde20) at ktrsyscall+0x332 sys/kern/kern_ktrace.c:183 syscall(ffff80002a7fde20) at syscall+0x2bc mi_syscall sys/sys/syscall_mi.h:154 [inline] syscall(ffff80002a7fde20) at syscall+0x2bc sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x71f481bf0b50, count: -7 ddb> machine ddbcpu 1 No such command ddb> trace ffs2_balloc(fffffd807e850300,89fcd,78,fffffd8007bfd618,1,ffff80002a7fda98) at ffs2_balloc+0xa0a sys/ufs/ffs/ffs_balloc.c:614 ffs_write(ffff80002a7fdb20) at ffs_write+0x4f9 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffffd806c701370,ffff80002a7fdbd0,3,fffffd8007bfd618) at VOP_WRITE+0x101 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff80002a7b82a8,fffffd806c701370,fffffd8007bfd618,ffff80002a7fdca0,ffff80002a7fdc80) at ktrwriteraw+0x19b sys/kern/kern_ktrace.c:691 ktrsyscall(ffff80002a7b82a8,6e,30,ffff80002a7fde20) at ktrsyscall+0x332 ktrwrite sys/kern/kern_ktrace.c:-1 [inline] ktrsyscall(ffff80002a7b82a8,6e,30,ffff80002a7fde20) at ktrsyscall+0x332 sys/kern/kern_ktrace.c:183 syscall(ffff80002a7fde20) at syscall+0x2bc mi_syscall sys/sys/syscall_mi.h:154 [inline] syscall(ffff80002a7fde20) at syscall+0x2bc sys/arch/amd64/amd64/trap.c:775 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x71f481bf0b50, count: -7