uvm_fault(0xffffffff83899a28, 0xffff800026a12600, 0, 2) -> d kernel: page fault trap, code=2 Stopped at memcpy+0x19: repe movsq (%rsi),%es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND *202072 98457 0 0x2 0 0K syz-executor memcpy() at memcpy+0x19 ufs_reclaim(fffffd806dcc05f8) at ufs_reclaim+0x10f sys/ufs/ufs/ufs_inode.c:137 ffs_reclaim(ffff80002a4269b8) at ffs_reclaim+0x43 sys/ufs/ffs/ffs_vnops.c:519 VOP_RECLAIM(fffffd806dcc05f8,ffff80002a3b34b8) at VOP_RECLAIM+0x77 sys/kern/vfs_vops.c:509 vclean(fffffd806dcc05f8,8,ffff80002a3b34b8) at vclean+0x322 sys/kern/vfs_subr.c:1103 vgonel(fffffd806dcc05f8,ffff80002a3b34b8) at vgonel+0xb0 sys/kern/vfs_subr.c:1193 vrecycle(fffffd806dcc05f8,ffff80002a3b34b8) at vrecycle+0x7c sys/kern/vfs_subr.c:1144 ufs_inactive(ffff80002a426b78) at ufs_inactive+0x360 sys/ufs/ufs/ufs_inode.c:107 VOP_INACTIVE(fffffd806dcc05f8,ffff80002a3b34b8) at VOP_INACTIVE+0x107 sys/kern/vfs_vops.c:495 vput(fffffd806dcc05f8) at vput+0xe5 sys/kern/vfs_subr.c:797 VOP_REMOVE(fffffd805dc25dc0,fffffd806dcc05f8,ffff80002a426cf8) at VOP_REMOVE+0x19d sys/kern/vfs_vops.c:336 dounlinkat(ffff80002a3b34b8,ffffff9c,7bb4b587f3f0,0) at dounlinkat+0x177 sys/kern/vfs_syscalls.c:1902 syscall(ffff80002a426e70) at syscall+0xb08 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80002a426e70) at syscall+0xb08 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7bb4b587f8a0, count: 1 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{0}> ddb{0}> set $lines = 0 ddb{0}> set $maxwidth = 0 ddb{0}> show panic *cpu0: uvm_fault(0xffffffff83899a28, 0xffff800026a12600, 0, 2) -> d ddb{0}> trace memcpy() at memcpy+0x19 ufs_reclaim(fffffd806dcc05f8) at ufs_reclaim+0x10f sys/ufs/ufs/ufs_inode.c:137 ffs_reclaim(ffff80002a4269b8) at ffs_reclaim+0x43 sys/ufs/ffs/ffs_vnops.c:519 VOP_RECLAIM(fffffd806dcc05f8,ffff80002a3b34b8) at VOP_RECLAIM+0x77 sys/kern/vfs_vops.c:509 vclean(fffffd806dcc05f8,8,ffff80002a3b34b8) at vclean+0x322 sys/kern/vfs_subr.c:1103 vgonel(fffffd806dcc05f8,ffff80002a3b34b8) at vgonel+0xb0 sys/kern/vfs_subr.c:1193 vrecycle(fffffd806dcc05f8,ffff80002a3b34b8) at vrecycle+0x7c sys/kern/vfs_subr.c:1144 ufs_inactive(ffff80002a426b78) at ufs_inactive+0x360 sys/ufs/ufs/ufs_inode.c:107 VOP_INACTIVE(fffffd806dcc05f8,ffff80002a3b34b8) at VOP_INACTIVE+0x107 sys/kern/vfs_vops.c:495 vput(fffffd806dcc05f8) at vput+0xe5 sys/kern/vfs_subr.c:797 VOP_REMOVE(fffffd805dc25dc0,fffffd806dcc05f8,ffff80002a426cf8) at VOP_REMOVE+0x19d sys/kern/vfs_vops.c:336 dounlinkat(ffff80002a3b34b8,ffffff9c,7bb4b587f3f0,0) at dounlinkat+0x177 sys/kern/vfs_syscalls.c:1902 syscall(ffff80002a426e70) at syscall+0xb08 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80002a426e70) at syscall+0xb08 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7bb4b587f8a0, count: -14 ddb{0}> show registers rdi 0xffff800026a12600 rsi 0xfffffd806dccbb00 rbp 0xffff80002a426910 rbx 0 rdx 0x100 rcx 0x20 rax 0x8 r8 0xffffffffffffffff r9 0 r10 0x599e1325d4199979 r11 0xffff800026a12600 r12 0xfffffd806dcf0478 r13 0xfffffd8072c5b7e8 r14 0 r15 0xffff800000b2c800 rip 0xffffffff831125b9 memcpy+0x19 cs 0x8 rflags 0x10202 __ALIGN_SIZE+0xf202 rsp 0xffff80002a4268a8 ss 0x10 memcpy+0x19: repe movsq (%rsi),%es:(%rdi) ddb{0}> show proc PROC (syz-executor) tid=202072 pid=98457 tcnt=1 stat=onproc flags process=2 proc=0 runpri=50, usrpri=50, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a3b2558,0xffff8000ffff6030 process=0xffff80003c52e050 user=0xffff80002a421000, vmspace=0xfffffd806cfd3ad8 estcpu=36, cpticks=1, pctcpu=0.11, user=1, sys=50, intr=1 ddb{0}> ps PID TID PPID UID S FLAGS WAIT COMMAND 84649 416216 94772 0 2 0 syz-executor 84649 368627 94772 0 2 0x4000000 syz-executor 96338 176183 29190 0 3 0x80 fsleep syz-executor 96338 166414 29190 0 3 0x4000080 ttyopn syz-executor 44026 410105 92329 -1 3 0x90 fsleep syz-executor 44026 1671 92329 -1 3 0x4000090 kqsel syz-executor 54376 491687 96965 0 3 0x80 fsleep syz-executor 54376 90160 96965 0 3 0x4000080 pipewr syz-executor 68557 164419 26123 0 3 0x80 fsleep syz-executor 68557 7164 26123 0 3 0x4000080 sbwait syz-executor 23505 233603 98098 0 3 0x80 fsleep syz-executor 23505 74864 98098 0 3 0x4000080 lockf syz-executor 96965 486838 37949 0 2 0x482 syz-executor 94772 401686 37949 0 2 0x482 syz-executor 26123 220253 37949 0 2 0x482 syz-executor 8248 485381 1 0 3 0x82 nanoslp getty *98457 202072 37949 0 7 0x2 syz-executor 56056 223860 24665 0 3 0x82 sbwait sshd-session 29190 213894 37949 0 2 0x482 syz-executor 27885 298516 37949 0 3 0x82 wait syz-executor 82153 379926 0 0 3 0x14200 bored sosplice 98098 29129 37949 0 2 0x482 syz-executor 92329 426102 37949 0 2 0x482 syz-executor 37949 247863 26475 0 3 0x82 kqread syz-executor 26475 408408 49123 0 3 0x10008a sigsusp ksh 49123 350239 84378 0 3 0x98 kqread sshd-session 84378 115553 24665 0 3 0x92 kqread sshd-session 24665 402015 1 0 3 0x88 kqread sshd 26883 241823 59052 74 3 0x1100092 bpf pflogd 59052 453056 1 0 3 0x80 sbwait pflogd 36016 237882 68448 73 3 0x1100090 kqread syslogd 68448 346487 1 0 3 0x100082 sbwait syslogd 54576 102191 1 0 3 0x100080 kqread resolvd 67302 509716 39925 77 3 0x100092 kqread dhcpleased 58039 133970 39925 77 3 0x100092 kqread dhcpleased 39925 224027 1 0 3 0x80 kqread dhcpleased 72222 109301 0 0 3 0x14200 bored smr 65147 276153 0 0 3 0x14200 pgzero zerothread 99235 115505 0 0 3 0x14200 aiodoned aiodoned 58532 221616 0 0 3 0x14200 syncer update 41405 384472 0 0 3 0x14200 cleaner cleaner 30305 320364 0 0 3 0x14200 reaper reaper 96867 243544 0 0 3 0x14200 pgdaemon pagedaemon 45961 128103 0 0 3 0x14200 bored viomb 53653 130791 0 0 3 0x40014200 acpi0 acpi0 97161 136924 0 0 7 0x40014200 idle1 71072 278971 0 0 3 0x14200 bored softnet3 52289 499980 0 0 3 0x14200 bored softnet2 61075 496764 0 0 3 0x14200 bored softnet1 16626 126217 0 0 2 0x14200 softnet0 14266 361464 0 0 3 0x14200 bored systqmp 12668 271396 0 0 3 0x14200 bored systq 92195 480230 0 0 3 0x14200 tmoslp softclockmp 40251 468626 0 0 2 0x40014200 softclock 87234 83314 0 0 3 0x40014200 idle0 1 236896 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb{0}> show all locks Process 68557 (syz-executor) thread 0xffff80002a3b3228 (7164) Process 98457 (syz-executor) thread 0xffff80002a3b34b8 (202072) ddb{0}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10235 11122K 11641K 166960K 19683 0 pcb 17 16K 18K 166960K 1193 0 rtable 260 14K 15K 166960K 1085 0 pf 43 19K 26K 166960K 416 0 ifaddr 41 8K 9K 166960K 265 0 ifgroup 61 2K 3K 166960K 520 0 sysctl 4 1K 1K 166960K 12 0 counters 64 36K 37K 166960K 578 0 ioctlops 0 0K 4K 166960K 2382 0 iov 2 16K 28K 166960K 466 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1480 93K 94K 166960K 5253 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 13K 166960K 91 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 249 0 dirhash 12 2K 3K 166960K 117 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 17 61K 85K 166960K 4957 0 sigio 0 0K 0K 166960K 99 0 proc 74 91K 128K 166960K 1268 0 subproc 72 4K 4K 166960K 145 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 3 0K 0K 166960K 949 0 in_multi 86 6K 7K 166960K 290 0 ether_multi 2 0K 0K 166960K 34 0 mrt 2 0K 0K 166960K 16 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 259 1155K 1155K 166960K 259 0 exec 0 0K 1K 166960K 1756 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 5 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 241 74K 89K 166960K 47929 0 UVM aobj 131 4K 4K 166960K 133 0 pinsyscall 44 88K 100K 166960K 6438 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 250 0 NDP 12 0K 1K 166960K 204 0 temp 80 8644K 8898K 166960K 227555 0 kqueue 13 20K 30K 166960K 853 0 SYN cache 2 16K 16K 166960K 2 0 ddb{0}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 512 0 509 5 4 1 3 0 8 0 rtentry 112 306 0 201 4 0 4 4 0 8 0 unpcb 144 4338 0 4316 28 26 2 6 0 8 0 syncache 336 41 0 41 13 13 0 1 0 8 0 tcpqe 32 8 0 8 5 5 0 1 0 8 0 tcpcb 808 1264 0 1252 20 18 2 8 0 8 0 arp 120 52 0 30 1 0 1 1 0 8 0 inpcb 376 5920 0 5900 76 71 5 16 0 8 2 ip6q 72 1 0 1 1 1 0 1 0 8 0 ip6af 40 8 0 8 1 1 0 1 0 8 0 nd6 136 60 0 34 1 0 1 1 0 8 0 pkpcb 40 33 0 33 10 9 1 1 0 8 1 kcovpl 48 16 0 8 1 0 1 1 0 8 0 mppekey 1024 4 0 4 3 3 0 1 0 8 0 ppxss 1168 199 0 199 12 11 1 1 0 8 1 pppxif 1472 24 0 24 9 9 0 1 0 8 0 pfstscr 40 1 0 1 1 1 0 1 0 8 0 pffrag 232 28 0 22 1 0 1 1 0 482 0 pffrnode 88 27 0 21 1 0 1 1 0 8 0 pffrent 40 57 0 51 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfrktable 1344 1 0 0 1 0 1 1 0 8 0 pfanchor 1288 2 0 0 1 0 1 1 0 8 0 pftag 88 1 0 0 1 0 1 1 0 8 0 pfstitem 24 298 0 212 1 0 1 1 0 8 0 pfstkey 128 299 0 212 4 0 4 4 0 8 0 pfstate 376 296 0 212 13 1 12 12 0 8 0 pfrule 1344 26 0 19 2 1 1 2 0 8 0 art_heap8 4096 4 0 0 4 0 4 4 0 8 0 art_heap4 256 1187 0 768 37 8 29 31 0 8 0 art_table 32 1191 0 768 4 0 4 4 0 8 0 art_node 16 286 0 196 1 0 1 1 0 8 0 sysvmsgpl 40 49 0 42 1 0 1 1 0 8 0 semupl 112 2 0 2 2 1 1 1 0 8 1 semapl 112 245 0 235 1 0 1 1 0 8 0 shmpl 112 130 0 2 4 0 4 4 0 8 0 dirhash 1024 87 0 70 3 0 3 3 0 8 0 dino2pl 256 10255 0 8735 96 0 96 96 0 8 0 ffsino 280 10255 0 8735 109 0 109 109 0 8 0 nchpl 144 17289 0 15569 64 0 64 64 0 8 0 rtmask 32 26 0 26 8 7 1 1 0 8 1 uvmvnodes 80 5926 0 0 121 0 121 121 0 8 0 vnodes 216 5926 0 0 330 0 330 330 0 8 0 namei 1024 64610 0 64610 9 8 1 2 0 8 1 percpumem 16 303 0 257 1 0 1 1 0 8 0 kstatmem 264 330 0 306 5 3 2 3 0 8 0 acpiwqpl 32 3 0 3 1 0 1 1 1 8 1 scsiplug 72 12 0 12 9 9 0 1 0 8 0 scxspl 216 58181 0 58181 21 19 2 8 1 8 2 plimitpl 152 1182 0 1165 1 0 1 1 0 8 0 sigapl 424 5310 0 5259 10 3 7 9 0 8 0 futexpl 64 90934 0 90929 1 0 1 1 0 8 0 knotepl 120 677 0 0 18 0 18 18 0 8 0 kqueuepl 216 2200 0 2190 30 25 5 5 0 8 4 pipepl 328 971 0 942 22 14 8 8 0 8 5 fdescpl 504 5261 0 5229 5 0 5 5 0 8 0 filepl 152 38508 0 38274 52 37 15 21 0 8 3 lockfpl 104 2001 0 1997 3 2 1 2 0 8 0 lockfspl 48 598 0 595 1 0 1 1 0 8 0 sessionpl 144 69 0 60 1 0 1 1 0 8 0 pgrppl 48 292 0 275 1 0 1 1 0 8 0 ucredpl 104 6071 0 6056 2 1 1 2 0 8 0 zombiepl 144 6097 0 6096 4 3 1 1 0 8 0 processpl 1176 5310 0 5259 6 1 5 6 0 8 0 procpl 656 12944 0 12887 8 1 7 8 0 8 0 srpgc 96 20 0 20 9 8 1 1 0 8 1 sosppl 168 13 0 13 8 8 0 1 0 8 0 sockpl 688 11013 0 10970 94 87 7 23 0 8 2 mcl64k 65536 8 0 0 1 0 1 1 0 8 0 mcl16k 16384 3 0 0 1 0 1 1 0 8 0 mcl12k 12288 3 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 7 0 0 1 0 1 1 0 8 0 mcl4k 4096 134 0 0 17 0 17 17 0 8 0 mcl2k2 2112 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 81 0 0 8 1 7 8 0 8 0 mtagpl 96 236 0 0 6 0 6 6 0 8 0 mbufpl 256 682 0 0 35 0 35 35 0 8 0 bufpl 280 18991 0 12837 440 0 440 440 0 8 0 anonpl 24 600143 0 590055 204 118 86 86 0 184 0 amapchunkpl 152 163938 0 163327 102 68 34 38 0 158 8 amappl16 200 11608 0 11289 122 92 30 30 0 8 0 amappl15 192 32 0 32 1 1 0 1 0 8 0 amappl14 184 204 0 191 1 0 1 1 0 8 0 amappl13 176 11 0 11 3 3 0 1 0 8 0 amappl12 168 6070 0 6038 3 1 2 2 0 8 0 amappl11 160 52 0 38 1 0 1 1 0 8 0 amappl10 152 9 0 9 1 1 0 1 0 8 0 amappl9 144 255 0 254 2 1 1 1 0 8 0 amappl8 136 23 0 20 1 0 1 1 0 8 0 amappl7 128 227 0 213 1 0 1 1 0 8 0 amappl6 120 290 0 285 1 0 1 1 0 8 0 amappl5 112 189 0 178 1 0 1 1 0 8 0 amappl4 104 492 0 473 1 0 1 1 0 8 0 amappl3 96 33340 0 33226 4 0 4 4 0 8 0 amappl2 88 1139 0 1069 2 0 2 2 0 8 0 amappl1 80 31746 0 31090 22 4 18 18 0 8 0 amappl 88 47032 0 46852 5 0 5 5 0 92 0 dma65536 65536 1 0 1 1 1 0 1 0 8 0 dma32768 32768 4 0 4 3 2 1 1 0 8 1 dma16384 16384 2 0 2 2 2 0 1 0 8 0 dma4096 4096 38 0 38 4 3 1 1 0 8 1 dma1024 1024 2 0 1 1 0 1 1 0 8 0 dma256 256 8 0 8 3 3 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 21 0 20 1 0 1 1 0 8 0 aobjpl 72 132 0 2 3 0 3 3 0 8 0 uaddrrnd 24 5261 0 5229 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 5261 0 5229 1 0 1 1 0 8 0 vmmpekpl 168 40902 0 40837 4 0 4 4 0 8 0 vmmpepl 168 329042 0 326740 171 58 113 115 0 357 2 vmsppl 456 5260 0 5229 6 1 5 5 0 8 0 rwobjpl 64 85831 0 78448 132 9 123 124 0 8 0 pdppl 4096 10530 0 10458 151 76 75 82 0 8 3 pvpl 32 22030 0 0 181 4 177 177 0 265 0 pmappl 248 5260 0 5229 3 0 3 3 0 8 0 extentpl 40 55 0 38 1 0 1 1 0 8 0 phpool 112 430 0 149 9 0 9 9 0 8 0 ddb{0}> machine ddbcpu 0 Invalid cpu 0 ddb{0}> trace memcpy() at memcpy+0x19 ufs_reclaim(fffffd806dcc05f8) at ufs_reclaim+0x10f sys/ufs/ufs/ufs_inode.c:137 ffs_reclaim(ffff80002a4269b8) at ffs_reclaim+0x43 sys/ufs/ffs/ffs_vnops.c:519 VOP_RECLAIM(fffffd806dcc05f8,ffff80002a3b34b8) at VOP_RECLAIM+0x77 sys/kern/vfs_vops.c:509 vclean(fffffd806dcc05f8,8,ffff80002a3b34b8) at vclean+0x322 sys/kern/vfs_subr.c:1103 vgonel(fffffd806dcc05f8,ffff80002a3b34b8) at vgonel+0xb0 sys/kern/vfs_subr.c:1193 vrecycle(fffffd806dcc05f8,ffff80002a3b34b8) at vrecycle+0x7c sys/kern/vfs_subr.c:1144 ufs_inactive(ffff80002a426b78) at ufs_inactive+0x360 sys/ufs/ufs/ufs_inode.c:107 VOP_INACTIVE(fffffd806dcc05f8,ffff80002a3b34b8) at VOP_INACTIVE+0x107 sys/kern/vfs_vops.c:495 vput(fffffd806dcc05f8) at vput+0xe5 sys/kern/vfs_subr.c:797 VOP_REMOVE(fffffd805dc25dc0,fffffd806dcc05f8,ffff80002a426cf8) at VOP_REMOVE+0x19d sys/kern/vfs_vops.c:336 dounlinkat(ffff80002a3b34b8,ffffff9c,7bb4b587f3f0,0) at dounlinkat+0x177 sys/kern/vfs_syscalls.c:1902 syscall(ffff80002a426e70) at syscall+0xb08 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80002a426e70) at syscall+0xb08 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7bb4b587f8a0, count: -14 ddb{0}> machine ddbcpu 1 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffff800029a9bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x41e sys/dev/acpi/acpicpu.c:1218 sched_idle(ffff800029a9bff0) at sched_idle+0x558 sys/kern/kern_sched.c:182 end trace frame: 0x0, count: 10 ddb{1}> trace x86_ipi_db(ffff800029a9bff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 acpicpu_idle() at acpicpu_idle+0x41e sys/dev/acpi/acpicpu.c:1218 sched_idle(ffff800029a9bff0) at sched_idle+0x558 sys/kern/kern_sched.c:182 end trace frame: 0x0, count: -5