uvm_fault(0xffffffff83504770, 0xffff800012c62004, 0, 1) -> d kernel: page fault trap, code=0 Stopped at ufs_lookup+0x5e1: movzwl 0x4(%r15,%rbx,1),%r14d TID PID UID PRFLAGS PFLAGS CPU COMMAND *503221 68719 0 0x2 0 0K syz-executor ufs_lookup() at ufs_lookup+0x5e1 sys/ufs/ufs/ufs_lookup.c:279 VOP_LOOKUP(fffffd8076d42b10,ffff80003598c0e8,ffff80003598c118) at VOP_LOOKUP+0x6e sys/kern/vfs_vops.c:85 vfs_lookup(ffff80003598c0b8) at vfs_lookup+0x8fa sys/kern/vfs_lookup.c:566 namei(ffff80003598c0b8) at namei+0x7aa sys/kern/vfs_lookup.c:250 dounlinkat(ffff800029fe6540,ffffff9c,770e1b933d30,8) at dounlinkat+0xc1 sys/kern/vfs_syscalls.c:1852 syscall(ffff80003598c290) at syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80003598c290) at syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x770e1b933d20, count: 8 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xffffffff83504770, 0xffff800012c62004, 0, 1) -> d ddb{0}> trace ufs_lookup() at ufs_lookup+0x5e1 sys/ufs/ufs/ufs_lookup.c:279 VOP_LOOKUP(fffffd8076d42b10,ffff80003598c0e8,ffff80003598c118) at VOP_LOOKUP+0x6e sys/kern/vfs_vops.c:85 vfs_lookup(ffff80003598c0b8) at vfs_lookup+0x8fa sys/kern/vfs_lookup.c:566 namei(ffff80003598c0b8) at namei+0x7aa sys/kern/vfs_lookup.c:250 dounlinkat(ffff800029fe6540,ffffff9c,770e1b933d30,8) at dounlinkat+0xc1 sys/kern/vfs_syscalls.c:1852 syscall(ffff80003598c290) at syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80003598c290) at syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x770e1b933d20, count: -7 ddb{0}> show registers rdi 0 rsi 0 rbp 0xffff80003598bf00 rbx 0 rdx 0 rcx 0xffffffff rax 0xfffffd8062405d38 r8 0xffffffffffffffff r9 0xfffffd807f7d32d8 r10 0xdcbaab812edac80a r11 0xe0249454fb9cbe05 r12 0 r13 0xfffffd80696c6ee0 r14 0 r15 0xffff800012c62000 rip 0xffffffff81ea10a1 ufs_lookup+0x5e1 cs 0x8 rflags 0x10202 __ALIGN_SIZE+0xf202 rsp 0xffff80003598bdf0 ss 0x10 ufs_lookup+0x5e1: movzwl 0x4(%r15,%rbx,1),%r14d ddb{0}> show proc PROC (syz-executor) tid=503221 pid=68719 tcnt=1 stat=onproc flags process=2 proc=0 runpri=81, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff800033d85988,0xffff800033d85710 process=0xffff80002a96a8d0 user=0xffff800035987000, vmspace=0xfffffd806c6d46f8 estcpu=36, cpticks=2, pctcpu=0.1, user=1, sys=6, intr=0 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 38573 417881 78380 60928 2 0x490 syz-executor 38573 64327 78380 60928 3 0x4000010 smrbar syz-executor 38573 358299 78380 60928 3 0x4000090 fsleep syz-executor 93576 474910 26939 0 3 0x90 fsleep syz-executor 93576 232197 26939 0 3 0x4000090 netcon syz-executor 35055 437453 42514 60928 3 0x90 fsleep syz-executor 35055 315327 42514 60928 3 0x4000090 kqread syz-executor 84442 52014 61314 0 3 0x80 fsleep syz-executor 84442 337047 61314 0 3 0x4000080 netcon syz-executor 94031 307009 23547 0 3 0x80 fsleep syz-executor 94031 232035 23547 0 3 0x4000080 semwait syz-executor 23547 314210 50109 0 3 0x82 nanoslp syz-executor 90262 107182 50109 0 3 0x82 wait syz-executor 61314 249040 50109 0 2 0x482 syz-executor 26939 184641 50109 0 2 0x482 syz-executor *68719 503221 50109 0 7 0x2 syz-executor 42514 493278 50109 0 3 0x82 nanoslp syz-executor 78380 17259 50109 0 3 0x82 nanoslp syz-executor 25262 284326 0 0 3 0x14280 nfsidl nfsio 16926 483170 0 0 3 0x14280 nfsidl nfsio 28158 237125 0 0 3 0x14280 nfsidl nfsio 11927 291233 0 0 3 0x14280 nfsidl nfsio 77725 464338 0 0 3 0x14280 nfsidl nfsio 67057 276597 0 0 3 0x14280 nfsidl nfsio 50944 408802 0 0 3 0x14280 nfsidl nfsio 77821 8822 0 0 3 0x14280 nfsidl nfsio 97317 136952 0 0 3 0x14280 nfsidl nfsio 24228 414184 0 0 3 0x14280 nfsidl nfsio 13382 87012 0 0 3 0x14280 nfsidl nfsio 31830 432733 0 0 3 0x14280 nfsidl nfsio 68772 45042 0 0 3 0x14280 nfsidl nfsio 90883 472170 0 0 3 0x14280 nfsidl nfsio 60525 211871 0 0 3 0x14280 nfsidl nfsio 75118 61630 0 0 3 0x14280 nfsidl nfsio 78567 460463 0 0 3 0x14280 nfsidl nfsio 37790 400147 0 0 3 0x14280 nfsidl nfsio 7352 302584 0 0 3 0x14280 nfsidl nfsio 3676 201274 0 0 3 0x14280 nfsidl nfsio 79001 203958 1 0 3 0x100083 ttyin getty 82984 153226 0 0 3 0x14200 bored sosplice 50109 281321 78551 0 3 0x82 wait syz-executor 78551 198255 86324 0 3 0x10008a sigsusp ksh 86324 400234 89437 0 3 0x98 kqread sshd-session 89437 165936 97869 0 3 0x92 kqread sshd-session 97869 108140 1 0 3 0x88 kqread sshd 51657 415093 4758 74 3 0x1100092 bpf pflogd 4758 249688 1 0 3 0x80 sbwait pflogd 51482 519940 67215 73 3 0x1100090 kqread syslogd 67215 382169 1 0 3 0x100082 sbwait syslogd 47949 113125 1 0 3 0x100080 kqread resolvd 67655 505643 57821 77 3 0x100092 kqread dhcpleased 77390 345506 57821 77 3 0x100092 kqread dhcpleased 57821 498891 1 0 3 0x80 kqread dhcpleased 92612 54071 0 0 3 0x14200 bored smr 33957 455360 0 0 2 0x14200 zerothread 78842 10776 0 0 3 0x14200 aiodoned aiodoned 20163 444912 0 0 3 0x14200 syncer update 96358 440476 0 0 3 0x14200 cleaner cleaner 58425 489213 0 0 3 0x14200 reaper reaper 98302 85665 0 0 3 0x14200 pgdaemon pagedaemon 5078 111663 0 0 3 0x14200 bored viomb 3031 407587 0 0 3 0x40014200 acpi0 acpi0 87647 260666 0 0 7 0x40014200 idle1 72255 455199 0 0 3 0x14200 bored softnet3 45176 288020 0 0 3 0x14200 bored softnet2 77187 467355 0 0 3 0x14200 bored softnet1 76512 422749 0 0 3 0x14200 bored softnet0 27660 83031 0 0 3 0x14200 bored systqmp 19942 195902 0 0 3 0x14200 bored systq 10154 298594 0 0 3 0x14200 tmoslp softclockmp 17936 82489 0 0 2 0x40014200 softclock 15442 96331 0 0 3 0x40014200 idle0 1 411536 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{0}> show all locks Process 38573 (syz-executor) thread 0xffff80002a11ece8 (64327) Process 68719 (syz-executor) thread 0xffff800029fe6540 (503221) ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10231 10109K 10480K 166960K 13490 0 pcb 17 17K 18K 166960K 286 0 rtable 225 9K 9K 166960K 1825 0 pf 42 19K 26K 166960K 459 0 ifaddr 44 8K 8K 166960K 252 0 ifgroup 62 2K 2K 166960K 365 0 sysctl 3 0K 0K 166960K 3 0 counters 68 36K 37K 166960K 218 0 ioctlops 0 0K 4K 166960K 1788 0 iov 0 0K 24K 166960K 100 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1554 98K 98K 166960K 3511 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 13K 166960K 23 0 VM map 2 1K 1K 166960K 2 0 sem 13 0K 1K 166960K 75 0 dirhash 12 2K 2K 166960K 45 0 ACPI 1690 195K 286K 166960K 12418 0 file desc 16 57K 93K 166960K 2262 0 sigio 0 0K 0K 166960K 56 0 proc 72 91K 140K 166960K 1740 0 subproc 104 6K 6K 166960K 612 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 357 0 in_multi 98 7K 7K 166960K 596 0 ether_multi 1 0K 0K 166960K 22 0 mrt 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 235 1049K 1049K 166960K 235 0 exec 0 0K 1K 166960K 1060 0 pfkey data 0 0K 1K 166960K 4 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 226 73K 91K 166960K 20557 0 UVM aobj 40 6K 6K 166960K 48 0 pinsyscall 41 82K 106K 166960K 4369 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 116 0 NDP 14 0K 2K 166960K 185 0 temp 76 6824K 7084K 166960K 110819 0 kqueue 13 20K 33K 166960K 338 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 331 0 328 4 3 1 3 0 8 0 rtentry 112 588 0 487 5 1 4 4 0 8 0 unpcb 144 1372 0 1355 22 18 4 6 0 8 3 syncache 336 8 0 8 5 5 0 1 0 8 0 tcpqe 32 3 0 3 2 2 0 1 0 8 0 tcpcb 808 662 0 654 17 15 2 8 0 8 1 arp 120 106 0 87 1 0 1 1 0 8 0 inpcb 336 2607 0 2594 34 32 2 12 0 8 0 nd6 136 151 0 126 1 0 1 1 0 8 0 pkpcb 40 11 0 11 5 4 1 1 0 8 1 kcovpl 48 47 0 39 1 0 1 1 0 8 0 ppxss 1168 11 0 10 7 6 1 1 0 8 0 pfstscr 40 3 0 3 1 1 0 1 0 8 0 pffrag 232 13 0 7 1 0 1 1 0 482 0 pffrnode 88 13 0 7 1 0 1 1 0 8 0 pffrent 40 64 0 57 1 0 1 1 0 8 0 pfosfp 40 1428 0 1428 5 5 0 5 0 8 0 pfosfpen 112 1428 0 1428 21 21 0 21 0 8 0 pftag 88 3 0 0 1 0 1 1 0 8 0 pfstitem 24 197 0 121 1 0 1 1 0 8 0 pfstkey 128 206 0 126 3 0 3 3 0 8 0 pfstate 376 199 0 124 8 0 8 8 0 8 0 pfrule 1344 160 0 136 5 2 3 3 0 8 1 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 2327 0 1876 33 4 29 30 0 8 0 art_table 32 2329 0 1876 4 0 4 4 0 8 0 art_node 16 582 0 492 1 0 1 1 0 8 0 sysvmsgpl 40 4 0 2 2 1 1 1 0 8 0 semapl 112 70 0 60 1 0 1 1 0 8 0 shmpl 112 45 0 8 2 0 2 2 0 8 0 dirhash 1024 40 0 23 3 0 3 3 0 8 0 dino2pl 256 4392 0 2811 100 0 100 100 0 8 1 ffsino 272 4392 0 2811 106 0 106 106 0 8 0 nchpl 144 6889 0 5145 65 0 65 65 0 8 0 uvmvnodes 80 6186 0 0 127 0 127 127 0 8 0 vnodes 216 6186 0 0 344 0 344 344 0 8 0 namei 1024 27382 0 27381 7 6 1 2 0 8 0 percpumem 16 123 0 75 1 0 1 1 0 8 0 kstatmem 264 178 0 150 3 0 3 3 0 8 1 acpiwqpl 32 1 0 1 1 0 1 1 1 8 1 scsiplug 72 5 0 5 2 1 1 1 0 8 1 scxspl 216 48091 0 48091 12 11 1 8 1 8 1 plimitpl 152 351 0 334 1 0 1 1 0 8 0 sigapl 424 2511 0 2442 13 4 9 9 0 8 0 futexpl 64 25688 0 25683 6 5 1 1 0 8 0 knotepl 120 593 0 0 17 0 17 17 0 8 0 kqueuepl 216 961 0 951 25 24 1 7 0 8 0 pipepl 320 503 0 475 14 8 6 8 0 8 3 fdescpl 496 2469 0 2439 9 4 5 5 0 8 0 filepl 152 15885 0 15634 44 29 15 22 0 8 4 lockfpl 104 671 0 669 2 0 2 2 0 8 1 lockfspl 48 298 0 296 1 0 1 1 0 8 0 sessionpl 144 66 0 57 1 0 1 1 0 8 0 pgrppl 48 131 0 114 1 0 1 1 0 8 0 ucredpl 104 2546 0 2530 1 0 1 1 0 8 0 zombiepl 144 2737 0 2735 2 1 1 1 0 8 0 processpl 1160 2511 0 2442 7 1 6 6 0 8 0 procpl 648 5054 0 4979 9 1 8 8 0 8 0 srpgc 96 4 0 4 2 2 0 1 0 8 0 sosppl 168 12 0 12 6 5 1 1 0 8 1 sockpl 664 4379 0 4346 50 41 9 15 0 8 6 mcl64k 65536 11 0 0 2 0 2 2 0 8 0 mcl16k 16384 5 0 0 1 0 1 1 0 8 0 mcl12k 12288 2 0 0 1 0 1 1 0 8 0 mcl9k 9216 3 0 0 1 0 1 1 0 8 0 mcl8k 8192 6 0 0 1 0 1 1 0 8 0 mcl4k 4096 8 0 0 1 0 1 1 0 8 0 mcl2k2 2112 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 230 0 0 29 0 29 29 0 8 0 mtagpl 96 15 0 0 1 0 1 1 0 8 0 mbufpl 256 1023 0 0 62 0 62 62 0 8 0 bufpl 280 10226 0 3809 459 0 459 459 0 8 0 anonpl 24 389792 0 381318 195 108 87 94 0 185 9 amapchunkpl 152 67810 0 67284 89 45 44 44 0 158 19 amappl16 200 7416 0 7167 54 27 27 27 0 8 1 amappl15 192 6 0 6 1 1 0 1 0 8 0 amappl14 184 200 0 188 1 0 1 1 0 8 0 amappl13 176 6 0 6 1 1 0 1 0 8 0 amappl12 168 3742 0 3712 4 2 2 3 0 8 0 amappl11 160 61 0 47 1 0 1 1 0 8 0 amappl10 152 11 0 10 1 0 1 1 0 8 0 amappl9 144 131 0 131 1 1 0 1 0 8 0 amappl8 136 28 0 25 1 0 1 1 0 8 0 amappl7 128 260 0 247 1 0 1 1 0 8 0 amappl6 120 598 0 597 1 0 1 1 0 8 0 amappl5 112 304 0 292 1 0 1 1 0 8 0 amappl4 104 486 0 467 1 0 1 1 0 8 0 amappl3 96 13581 0 13482 5 1 4 4 0 8 0 amappl2 88 1285 0 1216 2 0 2 2 0 8 0 amappl1 80 17199 0 16627 15 1 14 14 0 8 0 amappl 88 19745 0 19581 7 2 5 5 0 92 0 dma65536 65536 1 0 1 1 1 0 1 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma2048 2048 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 7 0 7 2 2 0 1 0 8 0 dma128 128 254 0 254 2 1 1 1 0 8 1 dma64 64 7 0 7 2 2 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 19 0 18 1 0 1 1 0 8 0 aobjpl 72 47 0 8 1 0 1 1 0 8 0 uaddrrnd 24 2469 0 2439 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 2469 0 2439 1 0 1 1 0 8 0 vmmpekpl 168 20574 0 20518 3 0 3 3 0 8 0 vmmpepl 168 157167 0 155142 130 25 105 105 0 357 2 vmsppl 440 2468 0 2439 7 3 4 5 0 8 0 rwobjpl 56 49264 0 41895 111 6 105 105 0 8 0 pdppl 4096 4945 0 4878 167 92 75 85 0 8 8 pvpl 32 36526 0 0 293 0 293 293 0 265 0 pmappl 248 2468 0 2439 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 583 0 165 13 0 13 13 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace ufs_lookup() at ufs_lookup+0x5e1 sys/ufs/ufs/ufs_lookup.c:279 VOP_LOOKUP(fffffd8076d42b10,ffff80003598c0e8,ffff80003598c118) at VOP_LOOKUP+0x6e sys/kern/vfs_vops.c:85 vfs_lookup(ffff80003598c0b8) at vfs_lookup+0x8fa sys/kern/vfs_lookup.c:566 namei(ffff80003598c0b8) at namei+0x7aa sys/kern/vfs_lookup.c:250 dounlinkat(ffff800029fe6540,ffffff9c,770e1b933d30,8) at dounlinkat+0xc1 sys/kern/vfs_syscalls.c:1852 syscall(ffff80003598c290) at syscall+0xaf8 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80003598c290) at syscall+0xaf8 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x770e1b933d20, count: -7 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x41e sys/dev/acpi/acpicpu.c:1219 sched_idle(ffff800029b7bff0) at sched_idle+0x558 sys/kern/kern_sched.c:182 end trace frame: 0x0, count: 10 ddb{1}> trace x86_ipi_db(ffff800029b7bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x41e sys/dev/acpi/acpicpu.c:1219 sched_idle(ffff800029b7bff0) at sched_idle+0x558 sys/kern/kern_sched.c:182 end trace frame: 0x0, count: -5