uvm_fault(0xffffffff82dd0f38, 0xffff8000266c20b8, 0, 1) -> d kernel: page fault trap, code=0 Stopped at ffs2_balloc+0x7ae: movq 0(%rcx,%rax,8),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *249096 23651 0 0x2 0x1 0 syz-executor.3 ffs2_balloc(fffffd806f286b40,8fda3,45,fffffd807f7d76e8,1,ffff80002bf24ca8) at ffs2_balloc+0x7ae sys/ufs/ffs/ffs_balloc.c:660 ffs_write(ffff80002bf24d40) at ffs_write+0x411 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffffd80713feb00,ffff80002bf24df0,3,fffffd807f7d76e8) at VOP_WRITE+0xc3 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff80002a679ab0,fffffd80713feb00,fffffd807f7d76e8,ffff80002bf24eb0,ffff80002bf24e90) at ktrwriteraw+0x14a sys/kern/kern_ktrace.c:682 ktrnamei(ffff80002a679ab0,ffff80002a6e2c00) at ktrnamei+0x118 ktrwrite sys/kern/kern_ktrace.c:623 [inline] ktrnamei(ffff80002a679ab0,ffff80002a6e2c00) at ktrnamei+0x118 sys/kern/kern_ktrace.c:217 namei(ffff80002bf25090) at namei+0x1e4 sys/kern/vfs_lookup.c:170 domkdirat(ffff80002a679ab0,ffffff9c,736775c578b0,1ff) at domkdirat+0x79 sys/kern/vfs_syscalls.c:3058 syscall(ffff80002bf252a0) at syscall+0x5ef sys/arch/amd64/amd64/trap.c:591 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x736775c57920, count: 6 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff82dd0f38, 0xffff8000266c20b8, 0, 1) -> d ddb> trace ffs2_balloc(fffffd806f286b40,8fda3,45,fffffd807f7d76e8,1,ffff80002bf24ca8) at ffs2_balloc+0x7ae sys/ufs/ffs/ffs_balloc.c:660 ffs_write(ffff80002bf24d40) at ffs_write+0x411 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffffd80713feb00,ffff80002bf24df0,3,fffffd807f7d76e8) at VOP_WRITE+0xc3 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff80002a679ab0,fffffd80713feb00,fffffd807f7d76e8,ffff80002bf24eb0,ffff80002bf24e90) at ktrwriteraw+0x14a sys/kern/kern_ktrace.c:682 ktrnamei(ffff80002a679ab0,ffff80002a6e2c00) at ktrnamei+0x118 ktrwrite sys/kern/kern_ktrace.c:623 [inline] ktrnamei(ffff80002a679ab0,ffff80002a6e2c00) at ktrnamei+0x118 sys/kern/kern_ktrace.c:217 namei(ffff80002bf25090) at namei+0x1e4 sys/kern/vfs_lookup.c:170 domkdirat(ffff80002a679ab0,ffffff9c,736775c578b0,1ff) at domkdirat+0x79 sys/kern/vfs_syscalls.c:3058 syscall(ffff80002bf252a0) at syscall+0x5ef sys/arch/amd64/amd64/trap.c:591 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x736775c57920, count: -9 ddb> show registers rdi 0 rsi 0 rbp 0xffff80002bf24c60 rbx 0xffffffff rdx 0 rcx 0xffff8000266c2000 rax 0x17 r8 0xffffffffffffffff r9 0xffff80002bf24ca8 r10 0xade88159d0c10b24 r11 0x933e7ad6b5ab315e r12 0x10 r13 0xfffffd8068061a48 r14 0 r15 0 rip 0xffffffff82294d7e ffs2_balloc+0x7ae cs 0x8 rflags 0x10202 __ALIGN_SIZE+0xf202 rsp 0xffff80002bf24ad0 ss 0x10 ffs2_balloc+0x7ae: movq 0(%rcx,%rax,8),%r15 ddb> show proc PROC (syz-executor.3) tid=249096 pid=23651 tcnt=1 stat=onproc flags process=2 proc=1 runpri=17, usrpri=78, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a68b7e8,0xffff80002a6792c8 process=0xffff8000ffff3690 user=0xffff80002bf20000, vmspace=0xfffffd806977bb90 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 94402 474585 28239 0 2 0 syz-executor.2 419 270320 8945 0 2 0 syz-executor.1 419 142255 8945 0 3 0x4000080 fsleep syz-executor.1 50946 282797 55009 0 2 0 syz-executor.6 4071 356672 4718 0 2 0 syz-executor.4 4071 508566 4718 0 3 0x4000000 smrbar syz-executor.4 4071 452735 4718 0 3 0x4000000 clonelk syz-executor.4 28239 39785 32480 0 2 0x482 syz-executor.2 92269 260226 0 0 3 0x14280 nfsidl nfsio 37064 67659 0 0 3 0x14280 nfsidl nfsio 89519 5930 0 0 3 0x14280 nfsidl nfsio 16215 498890 0 0 3 0x14280 nfsidl nfsio 37441 420671 0 0 3 0x14280 nfsidl nfsio 35565 383677 0 0 3 0x14280 nfsidl nfsio 80215 160190 0 0 3 0x14280 nfsidl nfsio 63866 305138 0 0 3 0x14280 nfsidl nfsio 37645 123668 0 0 3 0x14280 nfsidl nfsio 31289 323385 0 0 3 0x14280 nfsidl nfsio 44343 5969 0 0 3 0x14280 nfsidl nfsio 56920 521698 0 0 3 0x14280 nfsidl nfsio 26455 227767 0 0 3 0x14280 nfsidl nfsio 45990 455 0 0 3 0x14280 nfsidl nfsio 98695 128496 0 0 3 0x14280 nfsidl nfsio 37227 5424 0 0 3 0x14280 nfsidl nfsio 66202 513884 0 0 3 0x14280 nfsidl nfsio 52671 142339 0 0 3 0x14280 nfsidl nfsio 45464 141288 0 0 3 0x14280 nfsidl nfsio 38373 520217 0 0 3 0x14280 nfsidl nfsio 55009 494005 32480 0 2 0x2 syz-executor.6 14847 177957 32480 0 2 0x2 syz-executor.7 26823 270823 32480 0 2 0x482 syz-executor.5 77963 191748 32480 0 2 0x2 syz-executor.0 36024 263655 1 0 3 0x100083 ttyin getty 4718 153668 32480 0 2 0x482 syz-executor.4 8945 98394 32480 0 2 0x482 syz-executor.1 *23651 249096 32480 0 7 0x3 syz-executor.3 78535 428444 0 0 3 0x14200 bored sosplice 32480 516135 92367 0 3 0x2000082 thrsleep syz-fuzzer 32480 10034 92367 0 2 0x6000482 syz-fuzzer 32480 119008 92367 0 3 0x6000082 wait syz-fuzzer 32480 202268 92367 0 3 0x6000082 wait syz-fuzzer 32480 103775 92367 0 3 0x6000082 wait syz-fuzzer 32480 315053 92367 0 3 0x6000082 thrsleep syz-fuzzer 32480 229256 92367 0 3 0x6000082 thrsleep syz-fuzzer 32480 511323 92367 0 3 0x6000082 wait syz-fuzzer 32480 460265 92367 0 3 0x6000082 wait syz-fuzzer 32480 442146 92367 0 3 0x6000082 wait syz-fuzzer 32480 146421 92367 0 3 0x6000082 kqread syz-fuzzer 32480 210706 92367 0 3 0x6000082 thrsleep syz-fuzzer 32480 409845 92367 0 3 0x6000082 wait syz-fuzzer 32480 496286 92367 0 3 0x6000082 wait syz-fuzzer 92367 171060 4621 0 3 0x10008a sigsusp ksh 4621 144772 80707 0 3 0x9a kqread sshd 80707 410341 1 0 3 0x88 kqread sshd 26440 481933 23230 73 3 0x1100090 kqread syslogd 23230 259867 1 0 3 0x100082 netio syslogd 29077 397768 1 0 3 0x100080 kqread resolvd 6098 207118 4242 77 3 0x100092 kqread dhcpleased 12113 292161 4242 77 3 0x100092 kqread dhcpleased 4242 489794 1 0 3 0x80 kqread dhcpleased 79025 200388 0 0 3 0x14200 bored smr 6659 10137 0 0 2 0x14200 zerothread 76616 378006 0 0 3 0x14200 aiodoned aiodoned 99789 347115 0 0 3 0x14200 syncer update 83275 389845 0 0 3 0x14200 cleaner cleaner 44487 244254 0 0 3 0x14200 reaper reaper 86957 374522 0 0 3 0x14200 pgdaemon pagedaemon 42603 153260 0 0 3 0x14200 bored viomb 13534 211328 0 0 3 0x40014200 acpi0 acpi0 13771 494614 0 0 3 0x14200 bored softnet3 88773 388231 0 0 3 0x14200 bored softnet2 4629 398055 0 0 3 0x14200 bored softnet1 56645 102887 0 0 3 0x14200 bored softnet0 13857 131583 0 0 3 0x14200 bored systqmp 9138 214510 0 0 3 0x14200 bored systq 48098 224649 0 0 2 0x40014200 softclock 58022 185581 0 0 3 0x40014200 idle0 1 265076 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10195 6432K 6993K 166960K 18764 0 pcb 15 18K 20K 166960K 332 0 rtable 235 15K 15K 166960K 1482 0 pf 36 10K 10K 166960K 210 0 ifaddr 44 12K 12K 166960K 201 0 ifgroup 61 2K 2K 166960K 337 0 sysctl 2 0K 0K 166960K 4 0 counters 33 17K 17K 166960K 107 0 ioctlops 0 0K 2K 166960K 317 0 iov 0 0K 32K 166960K 916 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1437 90K 90K 166960K 4383 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 56 0 VM map 2 1K 1K 166960K 2 0 sem 12 1K 1K 166960K 446 0 dirhash 12 2K 2K 166960K 33 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 14 49K 73K 166960K 4250 0 sigio 1 0K 0K 166960K 50 0 proc 57 59K 75K 166960K 1318 0 subproc 104 6K 6K 166960K 403 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 269 0 in_multi 94 6K 7K 166960K 387 0 ether_multi 1 0K 0K 166960K 9 0 mrt 0 0K 0K 166960K 6 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 73 334K 334K 166960K 73 0 exec 0 0K 1K 166960K 1077 0 tdb 3 0K 0K 166960K 3 0 pagedep 1 8K 8K 166960K 1 0 inodedep 1 32K 32K 166960K 1 0 newblk 1 0K 0K 166960K 1 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 364 299K 300K 166960K 40146 0 UVM aobj 131 4K 4K 166960K 134 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 151 0 NDP 14 0K 2K 166960K 152 0 temp 74 6704K 6832K 166960K 44439 0 kqueue 12 18K 28K 166960K 372 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 425 0 422 4 3 1 3 0 8 0 rtentry 112 436 0 330 7 3 4 4 0 8 0 unpcb 144 3397 0 3384 37 33 4 8 0 8 3 syncache 312 60 0 60 9 9 0 1 0 8 0 tcpqe 32 632 0 632 8 8 0 1 0 8 0 tcpcb 808 1214 0 1179 44 40 4 12 0 8 0 arp 88 85 0 68 1 0 1 1 0 8 0 ipq 40 1 0 1 1 1 0 1 0 8 0 ipqe 40 3 0 3 1 1 0 1 0 8 0 inpcb 336 3530 0 3490 74 65 9 17 0 8 4 nd6 104 104 0 79 1 0 1 1 0 8 0 pkpcb 40 84 0 84 2 2 0 1 0 8 0 kcovpl 48 31 0 23 1 0 1 1 0 8 0 ppxss 1160 24 0 23 2 1 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 1644 0 1165 48 18 30 30 0 8 0 art_table 32 1645 0 1165 5 1 4 4 0 8 0 art_node 16 432 0 337 1 0 1 1 0 8 0 sysvmsgpl 40 4 0 0 1 0 1 1 0 8 0 semupl 112 4 0 4 1 1 0 1 0 8 0 semapl 112 434 0 424 1 0 1 1 0 8 0 shmpl 112 131 0 3 4 0 4 4 0 8 0 dirhash 1024 31 0 14 3 0 3 3 0 8 0 dino2pl 256 7006 0 5548 92 0 92 92 0 8 0 ffsino 240 7006 0 5548 86 0 86 86 0 8 0 nchpl 144 12736 0 11103 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 46413 0 46411 11 10 1 3 0 8 0 vcpupl 2048 98 0 0 13 0 13 13 0 8 0 vmpool 664 109 0 11 10 1 9 9 0 8 0 kstatmem 264 176 0 148 2 0 2 2 0 8 0 scxspl 216 51212 0 51212 22 19 3 8 1 8 3 plimitpl 152 535 0 520 1 0 1 1 0 8 0 sigapl 424 4764 0 4701 8 0 8 8 0 8 0 futexpl 64 38899 0 38898 3 2 1 1 0 8 0 knotepl 120 38132 0 38049 8 3 5 5 0 8 2 kqueuepl 184 870 0 862 18 16 2 4 0 8 1 pipepl 288 940 0 912 24 21 3 7 0 8 0 fdescpl 432 4487 0 4462 5 1 4 4 0 8 0 filepl 120 28303 0 28065 50 39 11 16 0 8 1 lockfpl 104 2032 0 2030 7 6 1 2 0 8 0 lockfspl 48 847 0 845 1 0 1 1 0 8 0 sessionpl 144 49 0 33 1 0 1 1 0 8 0 pgrppl 48 97 0 81 1 0 1 1 0 8 0 ucredpl 104 3104 0 3089 1 0 1 1 0 8 0 zombiepl 144 4702 0 4701 2 1 1 1 0 8 0 processpl 1072 4764 0 4701 5 0 5 5 0 8 0 procpl 680 10738 0 10659 15 7 8 9 0 8 0 sosppl 168 32 0 32 5 4 1 1 0 8 1 sockpl 456 7447 0 7392 191 176 15 30 0 8 6 mcl64k 65536 154 0 154 10 9 1 1 0 8 1 mcl16k 16384 111 0 111 12 12 0 1 0 8 0 mcl12k 12288 196 0 196 11 10 1 1 0 8 1 mcl9k 9216 84 0 84 11 11 0 1 0 8 0 mcl8k 8192 435 0 435 12 11 1 1 0 8 1 mcl4k 4096 468 0 468 14 13 1 3 0 8 1 mcl2k2 2112 29 0 29 12 11 1 1 0 8 1 mcl2k 2048 77695 0 77633 50 41 9 30 0 8 0 mtagpl 96 650 0 385 14 7 7 8 0 8 0 mbufpl 256 172711 0 172274 178 147 31 85 0 8 0 bufpl 288 13044 0 6651 457 0 457 457 0 8 0 anonpl 24 633945 0 620176 166 65 101 119 0 188 0 amapchunkpl 152 130613 0 129863 81 45 36 47 0 158 0 amappl16 200 14747 0 14251 102 75 27 38 0 8 0 amappl15 192 14 0 13 1 0 1 1 0 8 0 amappl14 184 221 0 208 2 1 1 2 0 8 0 amappl13 176 9 0 9 2 2 0 1 0 8 0 amappl12 168 5498 0 5472 2 0 2 2 0 8 0 amappl11 160 46 0 36 1 0 1 1 0 8 0 amappl10 152 53 0 43 1 0 1 1 0 8 0 amappl9 144 175 0 174 1 0 1 1 0 8 0 amappl8 136 300 0 227 3 0 3 3 0 8 0 amappl7 128 223 0 199 2 0 2 2 0 8 0 amappl6 120 583 0 575 1 0 1 1 0 8 0 amappl5 112 200 0 191 1 0 1 1 0 8 0 amappl4 104 603 0 578 2 1 1 2 0 8 0 amappl3 96 25552 0 25483 3 0 3 3 0 8 0 amappl2 88 5182 0 5115 3 1 2 3 0 8 0 amappl1 80 25808 0 25314 22 10 12 22 0 8 0 amappl 88 39351 0 39140 7 1 6 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 133 0 3 3 0 3 3 0 8 0 uaddrrnd 24 4596 0 4473 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4596 0 4473 1 0 1 1 0 8 0 vmmpekpl 168 36408 0 36336 4 0 4 4 0 8 0 vmmpepl 168 293922 0 291606 230 98 132 137 0 357 18 vmsppl 368 4595 0 4473 14 2 12 12 0 8 0 rwobjpl 24 80394 0 72842 49 1 48 48 0 8 0 pdppl 4096 9198 0 9044 448 286 162 164 0 8 8 pvpl 32 1565832 0 1546464 355 178 177 338 0 265 0 pmappl 216 4595 0 4473 8 0 8 8 0 8 1 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1618 0 693 27 0 27 27 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ffs2_balloc(fffffd806f286b40,8fda3,45,fffffd807f7d76e8,1,ffff80002bf24ca8) at ffs2_balloc+0x7ae sys/ufs/ffs/ffs_balloc.c:660 ffs_write(ffff80002bf24d40) at ffs_write+0x411 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffffd80713feb00,ffff80002bf24df0,3,fffffd807f7d76e8) at VOP_WRITE+0xc3 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff80002a679ab0,fffffd80713feb00,fffffd807f7d76e8,ffff80002bf24eb0,ffff80002bf24e90) at ktrwriteraw+0x14a sys/kern/kern_ktrace.c:682 ktrnamei(ffff80002a679ab0,ffff80002a6e2c00) at ktrnamei+0x118 ktrwrite sys/kern/kern_ktrace.c:623 [inline] ktrnamei(ffff80002a679ab0,ffff80002a6e2c00) at ktrnamei+0x118 sys/kern/kern_ktrace.c:217 namei(ffff80002bf25090) at namei+0x1e4 sys/kern/vfs_lookup.c:170 domkdirat(ffff80002a679ab0,ffffff9c,736775c578b0,1ff) at domkdirat+0x79 sys/kern/vfs_syscalls.c:3058 syscall(ffff80002bf252a0) at syscall+0x5ef sys/arch/amd64/amd64/trap.c:591 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x736775c57920, count: -9 ddb> machine ddbcpu 1 No such command ddb> trace ffs2_balloc(fffffd806f286b40,8fda3,45,fffffd807f7d76e8,1,ffff80002bf24ca8) at ffs2_balloc+0x7ae sys/ufs/ffs/ffs_balloc.c:660 ffs_write(ffff80002bf24d40) at ffs_write+0x411 sys/ufs/ffs/ffs_vnops.c:345 VOP_WRITE(fffffd80713feb00,ffff80002bf24df0,3,fffffd807f7d76e8) at VOP_WRITE+0xc3 sys/kern/vfs_vops.c:245 ktrwriteraw(ffff80002a679ab0,fffffd80713feb00,fffffd807f7d76e8,ffff80002bf24eb0,ffff80002bf24e90) at ktrwriteraw+0x14a sys/kern/kern_ktrace.c:682 ktrnamei(ffff80002a679ab0,ffff80002a6e2c00) at ktrnamei+0x118 ktrwrite sys/kern/kern_ktrace.c:623 [inline] ktrnamei(ffff80002a679ab0,ffff80002a6e2c00) at ktrnamei+0x118 sys/kern/kern_ktrace.c:217 namei(ffff80002bf25090) at namei+0x1e4 sys/kern/vfs_lookup.c:170 domkdirat(ffff80002a679ab0,ffffff9c,736775c578b0,1ff) at domkdirat+0x79 sys/kern/vfs_syscalls.c:3058 syscall(ffff80002bf252a0) at syscall+0x5ef sys/arch/amd64/amd64/trap.c:591 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x736775c57920, count: -9