uvm_fault(0xffffffff82e6b420, 0xffff800028112004, 0, 1) -> d kernel: page fault trap, code=0 Stopped at ufs_lookup+0x4d0: movzwl 0x4(%r15,%r12,1),%ebx TID PID UID PRFLAGS PFLAGS CPU COMMAND *508773 33915 0 0 0x4000000 0 syz-executor.3 ufs_lookup() at ufs_lookup+0x4d0 sys/ufs/ufs/ufs_lookup.c:279 VOP_LOOKUP(fffffd8078eac6f8,ffff800035ddd638,ffff800035ddd668) at VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 vfs_lookup(ffff800035ddd608) at vfs_lookup+0x6dc sys/kern/vfs_lookup.c:566 namei(ffff800035ddd608) at namei+0x55a sys/kern/vfs_lookup.c:250 sys_unveil(ffff80002a63c560,ffff800035ddd7f0,ffff800035ddd740) at sys_unveil+0x22d sys/kern/vfs_syscalls.c:1000 syscall(ffff800035ddd7f0) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x57477ecf000, count: 8 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff82e6b420, 0xffff800028112004, 0, 1) -> d ddb> trace ufs_lookup() at ufs_lookup+0x4d0 sys/ufs/ufs/ufs_lookup.c:279 VOP_LOOKUP(fffffd8078eac6f8,ffff800035ddd638,ffff800035ddd668) at VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 vfs_lookup(ffff800035ddd608) at vfs_lookup+0x6dc sys/kern/vfs_lookup.c:566 namei(ffff800035ddd608) at namei+0x55a sys/kern/vfs_lookup.c:250 sys_unveil(ffff80002a63c560,ffff800035ddd7f0,ffff800035ddd740) at sys_unveil+0x22d sys/kern/vfs_syscalls.c:1000 syscall(ffff800035ddd7f0) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x57477ecf000, count: -7 ddb> show registers rdi 0 rsi 0 rbp 0xffff800035ddd440 rbx 0 rdx 0 rcx 0 rax 0xfffffd80682ebb08 r8 0xffffffffffffffff r9 0xfffffd807f7d7410 r10 0xdf3c5ca3c4ba9bd4 r11 0xfeb2600bb74f1889 r12 0 r13 0xffffffff r14 0 r15 0xffff800028112000 rip 0xffffffff8280dc10 ufs_lookup+0x4d0 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800035ddd340 ss 0x10 ufs_lookup+0x4d0: movzwl 0x4(%r15,%r12,1),%ebx ddb> show proc PROC (syz-executor.3) tid=508773 pid=33915 tcnt=4 stat=onproc flags process=0 proc=4000000 runpri=32, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a63dd48,0xffff80002a63d560 process=0xffff800037a01d70 user=0xffff800035dd8000, vmspace=0xfffffd8065ac7a08 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 39160 400440 43714 0 2 0 syz-executor.6 39160 501522 43714 0 2 0x4000000 syz-executor.6 20744 328033 24753 0 2 0 syz-executor.4 20744 45528 24753 0 3 0x4000080 fsleep syz-executor.4 20744 213290 24753 0 3 0x4000080 fsleep syz-executor.4 67457 260035 3459 0 2 0 syz-executor.7 67457 112532 3459 0 3 0x4000080 fsleep syz-executor.7 67457 1986 3459 0 3 0x4000080 fsleep syz-executor.7 61402 458610 49166 0 2 0 syz-executor.0 61402 192061 49166 0 3 0x4000080 fsleep syz-executor.0 33915 465539 91308 0 2 0 syz-executor.3 33915 37699 91308 0 2 0x4000000 syz-executor.3 *33915 508773 91308 0 7 0x4000000 syz-executor.3 33915 75222 91308 0 2 0x4000000 syz-executor.3 80432 368061 38434 0 2 0 syz-executor.2 80432 209121 38434 0 3 0x4000080 fsleep syz-executor.2 49033 506996 65964 0 2 0x480 syz-executor.1 49033 17102 65964 0 3 0x4000080 netcon syz-executor.1 49033 463499 65964 0 3 0x4000080 fsleep syz-executor.1 49033 502327 65964 0 3 0x4000080 fsleep syz-executor.1 20795 473662 14079 0 2 0x482 syz-executor.5 24753 65211 14079 0 2 0x482 syz-executor.4 43714 214481 14079 0 3 0x82 nanoslp syz-executor.6 49166 306626 14079 0 2 0x482 syz-executor.0 65964 489998 14079 0 2 0x482 syz-executor.1 51455 260142 0 0 3 0x14200 acct acct 91308 463566 14079 0 2 0x482 syz-executor.3 79912 378696 1 0 3 0x100083 ttyin getty 3459 485699 14079 0 2 0x482 syz-executor.7 38434 314092 14079 0 2 0x482 syz-executor.2 89366 104954 0 0 3 0x14200 bored sosplice 8018 331401 0 0 3 0x14280 nfsidl nfsio 39820 219626 0 0 3 0x14280 nfsidl nfsio 71749 275964 0 0 3 0x14280 nfsidl nfsio 31314 235559 0 0 3 0x14280 nfsidl nfsio 83077 258971 0 0 3 0x14280 nfsidl nfsio 36156 194791 0 0 3 0x14280 nfsidl nfsio 32551 56656 0 0 3 0x14280 nfsidl nfsio 69943 285166 0 0 3 0x14280 nfsidl nfsio 88054 310820 0 0 3 0x14280 nfsidl nfsio 58777 29766 0 0 3 0x14280 nfsidl nfsio 93477 501576 0 0 3 0x14280 nfsidl nfsio 49625 439174 0 0 3 0x14280 nfsidl nfsio 84133 258230 0 0 3 0x14280 nfsidl nfsio 82153 336010 0 0 3 0x14280 nfsidl nfsio 23975 272909 0 0 3 0x14280 nfsidl nfsio 46982 8439 0 0 3 0x14280 nfsidl nfsio 11390 492982 0 0 3 0x14280 nfsidl nfsio 99098 42735 0 0 3 0x14280 nfsidl nfsio 10612 89926 0 0 3 0x14280 nfsidl nfsio 1870 512192 0 0 3 0x14280 nfsidl nfsio 14079 362213 98042 0 3 0x2000082 wait syz-fuzzer 14079 95512 98042 0 3 0x6000082 thrsleep syz-fuzzer 14079 389697 98042 0 3 0x6000082 wait syz-fuzzer 14079 168708 98042 0 3 0x6000082 thrsleep syz-fuzzer 14079 475524 98042 0 3 0x6000082 wait syz-fuzzer 14079 39281 98042 0 3 0x6000082 wait syz-fuzzer 14079 501099 98042 0 3 0x6000082 kqread syz-fuzzer 14079 468893 98042 0 3 0x6000082 thrsleep syz-fuzzer 14079 396715 98042 0 3 0x6000082 wait syz-fuzzer 14079 100561 98042 0 3 0x6000082 wait syz-fuzzer 14079 187794 98042 0 3 0x6000082 thrsleep syz-fuzzer 14079 512450 98042 0 3 0x6000082 thrsleep syz-fuzzer 14079 443983 98042 0 3 0x6000082 wait syz-fuzzer 14079 368822 98042 0 3 0x6000082 wait syz-fuzzer 98042 118117 75155 0 3 0x10008a sigsusp ksh 75155 337572 64091 0 3 0x9a kqread sshd 64091 15294 1 0 3 0x88 kqread sshd 93420 57679 9695 73 3 0x1100090 kqread syslogd 9695 88384 1 0 3 0x100082 netio syslogd 49105 302421 1 0 3 0x100080 kqread resolvd 74814 245111 73935 77 3 0x100092 kqread dhcpleased 30632 151096 73935 77 3 0x100092 kqread dhcpleased 73935 492362 1 0 3 0x80 kqread dhcpleased 69451 390429 0 0 3 0x14200 bored smr 93315 447588 0 0 2 0x14200 zerothread 6825 347971 0 0 3 0x14200 aiodoned aiodoned 86064 28482 0 0 3 0x14200 syncer update 9930 465447 0 0 3 0x14200 cleaner cleaner 23066 347003 0 0 3 0x14200 reaper reaper 78147 363719 0 0 3 0x14200 pgdaemon pagedaemon 24948 246641 0 0 3 0x14200 bored viomb 56560 45376 0 0 3 0x40014200 acpi0 acpi0 31546 414785 0 0 3 0x14200 bored softnet3 43054 97894 0 0 3 0x14200 bored softnet2 49858 115801 0 0 3 0x14200 bored softnet1 68999 393589 0 0 3 0x14200 bored softnet0 97937 242128 0 0 3 0x14200 bored systqmp 4375 224244 0 0 3 0x14200 bored systq 92897 444624 0 0 2 0x40014200 softclock 31128 493818 0 0 3 0x40014200 idle0 1 171352 0 0 3 0x80082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10180 6417K 7068K 166960K 32715 0 pcb 16 20K 22K 166960K 1941 0 rtable 217 10K 11K 166960K 2501 0 pf 29 8K 10K 166960K 384 0 ifaddr 39 12K 14K 166960K 337 0 ifgroup 50 2K 2K 166960K 579 0 sysctl 4 1K 1K 166960K 6 0 counters 30 17K 17K 166960K 184 0 ioctlops 0 0K 2K 166960K 672 0 iov 0 0K 28K 166960K 1347 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1514 95K 95K 166960K 8399 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 13K 166960K 175 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 1931 0 dirhash 12 2K 2K 166960K 69 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 17 61K 77K 166960K 10277 0 sigio 0 0K 0K 166960K 505 0 proc 63 59K 75K 166960K 1862 0 subproc 104 6K 7K 166960K 611 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 452 0 in_multi 84 6K 7K 166960K 639 0 ether_multi 1 0K 0K 166960K 7 0 mrt 1 0K 0K 166960K 20 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 97 440K 440K 166960K 97 0 exec 0 0K 1K 166960K 1892 0 pfkey data 0 0K 4K 166960K 11 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 460 578K 578K 166960K 95381 0 UVM aobj 131 6K 7K 166960K 137 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 251 0 NDP 11 0K 2K 166960K 269 0 temp 74 6764K 6892K 166960K 95496 0 kqueue 12 18K 38K 166960K 708 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 1062 0 1059 6 5 1 6 0 8 0 rtentry 112 804 0 706 4 1 3 4 0 8 0 unpcb 144 7671 0 7658 21 12 9 10 0 8 8 syncache 336 125 0 125 3 2 1 1 0 8 1 sackhl 24 4 0 4 1 1 0 1 0 8 0 tcpqe 32 330 436 330 3 2 1 1 0 8 1 tcpcb 808 3720 0 3604 21 9 12 15 0 8 0 arp 88 162 0 145 1 0 1 1 0 8 0 ipq 40 86 0 85 1 0 1 1 0 8 0 ipqe 40 280 0 279 1 0 1 1 0 8 0 inpcb 360 9453 0 9331 40 27 13 23 0 8 1 ip6q 72 2 0 2 1 0 1 1 0 8 1 ip6af 40 2 0 2 1 0 1 1 0 8 1 nd6 104 163 0 143 1 0 1 1 0 8 0 pkpcb 40 23 0 23 2 1 1 1 0 8 1 kcovpl 48 47 0 39 1 0 1 1 0 8 0 ppxss 1072 67 0 67 2 1 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 2803 0 2393 35 8 27 30 0 8 0 art_table 32 2804 0 2393 4 0 4 4 0 8 0 art_node 16 796 0 706 1 0 1 1 0 8 0 sysvmsgpl 40 50 0 50 2 2 0 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 1929 0 1919 1 0 1 1 0 8 0 shmpl 112 134 0 6 4 0 4 4 0 8 0 dirhash 1024 55 0 38 3 0 3 3 0 8 0 dino2pl 256 15175 0 13701 93 0 93 93 0 8 0 ffsino 240 15175 0 13701 87 0 87 87 0 8 0 nchpl 144 28881 0 27230 63 0 63 63 0 8 0 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 98105 0 98103 5 4 1 3 0 8 0 vcpupl 2048 115 0 0 15 0 15 15 0 8 0 vmpool 664 133 0 18 10 0 10 10 0 8 0 kstatmem 264 330 0 308 2 0 2 2 0 8 0 scxspl 216 80250 0 80250 12 9 3 8 1 8 3 plimitpl 152 1294 0 1279 1 0 1 1 0 8 0 sigapl 424 10521 0 10454 8 0 8 8 0 8 0 futexpl 64 93887 0 93879 1 0 1 1 0 8 0 knotepl 120 90181 0 90099 11 6 5 11 0 8 1 kqueuepl 184 1854 0 1846 7 6 1 7 0 8 0 pipepl 288 1550 0 1522 18 11 7 10 0 8 4 fdescpl 432 10482 0 10454 4 0 4 4 0 8 0 filepl 120 64775 0 64466 34 19 15 20 0 8 5 lockfpl 104 4143 0 4141 2 1 1 2 0 8 0 lockfspl 48 1284 0 1282 1 0 1 1 0 8 0 sessionpl 144 63 0 47 1 0 1 1 0 8 0 pgrppl 48 107 0 91 1 0 1 1 0 8 0 ucredpl 104 9458 0 9446 1 0 1 1 0 8 0 zombiepl 144 10455 0 10454 2 1 1 1 0 8 0 processpl 1072 10521 0 10454 5 0 5 5 0 8 0 procpl 680 25660 0 25567 9 0 9 9 0 8 0 sosppl 168 144 0 133 1 0 1 1 0 8 0 sockpl 488 18296 0 18160 275 253 22 39 0 8 4 mcl64k 65536 371 0 370 3 2 1 1 0 8 0 mcl16k 16384 242 0 240 3 2 1 1 0 8 0 mcl12k 12288 367 0 367 3 2 1 1 0 8 1 mcl9k 9216 180 0 180 3 2 1 1 0 8 1 mcl8k 8192 600 0 600 3 2 1 1 0 8 1 mcl4k 4096 1150 0 1150 4 3 1 2 0 8 1 mcl2k2 2112 126 0 126 2 1 1 1 0 8 1 mcl2k 2048 92893 0 92769 80 63 17 44 0 8 0 mtagpl 96 2250 0 1751 15 2 13 13 0 8 0 mbufpl 256 233806 0 233057 170 118 52 83 0 8 3 bufpl 280 20012 0 13622 457 0 457 457 0 8 0 anonpl 24 1107969 0 1093260 125 17 108 114 0 188 7 amapchunkpl 152 302085 0 301143 54 10 44 46 0 158 6 amappl16 200 24142 0 23674 80 45 35 38 0 8 8 amappl15 192 105 0 104 1 0 1 1 0 8 0 amappl14 184 280 0 267 2 1 1 2 0 8 0 amappl13 176 26 0 25 1 0 1 1 0 8 0 amappl12 168 11689 0 11661 2 0 2 2 0 8 0 amappl11 160 74 0 64 1 0 1 1 0 8 0 amappl10 152 93 0 83 1 0 1 1 0 8 0 amappl9 144 318 0 317 1 0 1 1 0 8 0 amappl8 136 469 0 390 3 0 3 3 0 8 0 amappl7 128 365 0 340 2 0 2 2 0 8 0 amappl6 120 872 0 861 1 0 1 1 0 8 0 amappl5 112 292 0 284 1 0 1 1 0 8 0 amappl4 104 741 0 719 2 1 1 2 0 8 0 amappl3 96 59374 0 59280 3 0 3 3 0 8 0 amappl2 88 11372 0 11294 3 1 2 3 0 8 0 amappl1 80 48065 0 47547 23 11 12 22 0 8 0 amappl 88 94356 0 94074 7 0 7 7 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 136 0 6 3 0 3 3 0 8 0 uaddrrnd 24 10615 0 10472 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 10615 0 10472 1 0 1 1 0 8 0 vmmpekpl 168 73729 0 73646 4 0 4 4 0 8 0 vmmpepl 168 634813 0 632343 183 48 135 136 0 357 10 vmsppl 352 10614 0 10472 14 0 14 14 0 8 0 rwobjpl 24 154846 0 147231 48 0 48 48 0 8 0 pdppl 4096 21236 0 21059 689 510 179 181 0 8 2 pvpl 32 2912354 0 2891910 431 235 196 362 0 265 16 pmappl 216 10614 0 10472 9 0 9 9 0 8 1 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 1245 0 736 16 0 16 16 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace ufs_lookup() at ufs_lookup+0x4d0 sys/ufs/ufs/ufs_lookup.c:279 VOP_LOOKUP(fffffd8078eac6f8,ffff800035ddd638,ffff800035ddd668) at VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 vfs_lookup(ffff800035ddd608) at vfs_lookup+0x6dc sys/kern/vfs_lookup.c:566 namei(ffff800035ddd608) at namei+0x55a sys/kern/vfs_lookup.c:250 sys_unveil(ffff80002a63c560,ffff800035ddd7f0,ffff800035ddd740) at sys_unveil+0x22d sys/kern/vfs_syscalls.c:1000 syscall(ffff800035ddd7f0) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x57477ecf000, count: -7 ddb> machine ddbcpu 1 No such command ddb> trace ufs_lookup() at ufs_lookup+0x4d0 sys/ufs/ufs/ufs_lookup.c:279 VOP_LOOKUP(fffffd8078eac6f8,ffff800035ddd638,ffff800035ddd668) at VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 vfs_lookup(ffff800035ddd608) at vfs_lookup+0x6dc sys/kern/vfs_lookup.c:566 namei(ffff800035ddd608) at namei+0x55a sys/kern/vfs_lookup.c:250 sys_unveil(ffff80002a63c560,ffff800035ddd7f0,ffff800035ddd740) at sys_unveil+0x22d sys/kern/vfs_syscalls.c:1000 syscall(ffff800035ddd7f0) at syscall+0x751 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x57477ecf000, count: -7