uvm_fault(0xfffffd806b6d42c8, 0x8, 0, 1) -> e kernel: page fault trap, code=0 Stopped at fifo_write+0x6e: movq 0x8(%rax),%r15 TID PID UID PRFLAGS PFLAGS CPU COMMAND *325939 45623 0 0 0x4000000 0 syz-executor fifo_write(ffff80002a594a60) at fifo_write+0x6e sys/miscfs/fifofs/fifo_vnops.c:281 VOP_WRITE(fffffd8071b1f3c0,ffff80002a594af8,8,fffffd807f7d73a8) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 vn_rdwr(1,fffffd8071b1f3c0,ffff80002a521800,fc,0,1,31dec89ffb6c0ac,ffff80002a594c20,fffffd8071b1f3c0,78) at vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 ufs_symlink(ffff80002a594c20) at ufs_symlink+0x1e2 sys/ufs/ufs/ufs_vnops.c:1309 VOP_SYMLINK(fffffd8065da31e8,ffff80002a594da0,ffff80002a594dd0,ffff80002a594cd0,ffff80002a521800) at VOP_SYMLINK+0x11a sys/kern/vfs_vops.c:432 dosymlinkat(ffff80002a4d02a0,20000700,3,200004c0) at dosymlinkat+0x1dd sys/kern/vfs_syscalls.c:1806 syscall(ffff80002a594f50) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdcff19eb170, count: 7 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xfffffd806b6d42c8, 0x8, 0, 1) -> e ddb> trace fifo_write(ffff80002a594a60) at fifo_write+0x6e sys/miscfs/fifofs/fifo_vnops.c:281 VOP_WRITE(fffffd8071b1f3c0,ffff80002a594af8,8,fffffd807f7d73a8) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 vn_rdwr(1,fffffd8071b1f3c0,ffff80002a521800,fc,0,1,31dec89ffb6c0ac,ffff80002a594c20,fffffd8071b1f3c0,78) at vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 ufs_symlink(ffff80002a594c20) at ufs_symlink+0x1e2 sys/ufs/ufs/ufs_vnops.c:1309 VOP_SYMLINK(fffffd8065da31e8,ffff80002a594da0,ffff80002a594dd0,ffff80002a594cd0,ffff80002a521800) at VOP_SYMLINK+0x11a sys/kern/vfs_vops.c:432 dosymlinkat(ffff80002a4d02a0,20000700,3,200004c0) at dosymlinkat+0x1dd sys/kern/vfs_syscalls.c:1806 syscall(ffff80002a594f50) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdcff19eb170, count: -8 ddb> show registers rdi 0xfffffd8071b1f3c0 rsi 0x8a2 rbp 0xffff80002a594a50 rbx 0xfffffd8071b1f3c0 rdx 0xffff80002d9e2000 rcx 0x8a1 rax 0 r8 0 r9 0x1 r10 0x3ca999fc15ee7849 r11 0xb6dcc05839f68616 r12 0x4000 __ALIGN_SIZE+0x3000 r13 0xffff80002a594af8 r14 0xffff80002a594a60 r15 0x1 rip 0xffffffff8244c2de fifo_write+0x6e cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff80002a594a20 ss 0x10 fifo_write+0x6e: movq 0x8(%rax),%r15 ddb> show proc PROC (syz-executor) tid=325939 pid=45623 tcnt=4 stat=onproc flags process=0 proc=4000000 runpri=17, usrpri=77, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a4d0a38,0xffff80002a4d1c00 process=0xffff80002a570030 user=0xffff80002a590000, vmspace=0xfffffd806b6d42c8 estcpu=27, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 97922 322052 68803 0 3 0x80 nanoslp syz-executor 97922 255339 68803 0 3 0x4000080 kqpoll syz-executor 97922 434266 68803 0 3 0x4000080 fsleep syz-executor 45623 163716 42581 0 3 0x80 nanoslp syz-executor *45623 325939 42581 0 7 0x4000000 syz-executor 45623 75109 42581 0 2 0x4000000 syz-executor 45623 368572 42581 0 3 0x4000080 fsleep syz-executor 90185 411842 32967 0 2 0x4081000 syz-executor 90185 352576 32967 0 3 0x4003000 suspend syz-executor 32967 392833 40094 0 3 0x82 wait syz-executor 24907 301076 40094 0 2 0x2 syz-executor 68803 118955 40094 0 3 0x82 nanoslp syz-executor 39245 500471 40094 0 2 0x2 syz-executor 44258 51597 40094 0 2 0x2 syz-executor 42581 503233 40094 0 3 0x82 nanoslp syz-executor 88395 257770 40094 0 2 0x2 syz-executor 59098 69381 40094 0 2 0x82 syz-executor 82953 388140 0 0 3 0x14200 acct acct 51813 442068 0 0 3 0x14280 nfsidl nfsio 84232 385260 0 0 3 0x14280 nfsidl nfsio 75407 185109 0 0 3 0x14280 nfsidl nfsio 89819 212686 0 0 3 0x14280 nfsidl nfsio 99605 380306 0 0 3 0x14280 nfsidl nfsio 73379 269705 0 0 3 0x14280 nfsidl nfsio 81983 291775 0 0 3 0x14280 nfsidl nfsio 41210 516250 0 0 3 0x14280 nfsidl nfsio 91121 162553 0 0 3 0x14280 nfsidl nfsio 29257 233177 0 0 3 0x14280 nfsidl nfsio 36524 327505 0 0 3 0x14280 nfsidl nfsio 37782 119297 0 0 3 0x14280 nfsidl nfsio 35409 400825 0 0 3 0x14280 nfsidl nfsio 71813 11781 0 0 3 0x14280 nfsidl nfsio 38158 271860 0 0 3 0x14280 nfsidl nfsio 14126 264149 0 0 3 0x14280 nfsidl nfsio 10786 45755 0 0 3 0x14280 nfsidl nfsio 98280 228618 0 0 3 0x14280 nfsidl nfsio 3290 208297 0 0 3 0x14280 nfsidl nfsio 38083 348718 0 0 3 0x14280 nfsidl nfsio 88896 324200 0 0 3 0x14200 bored sosplice 40094 457469 19320 0 3 0x82 kqread syz-executor 19320 86263 54159 0 3 0x10008a sigsusp ksh 54159 420492 55860 0 3 0x98 kqread sshd-session 55860 43940 36799 0 3 0x92 kqread sshd-session 81039 516331 1 0 3 0x100083 ttyin getty 36799 349111 1 0 3 0x88 kqread sshd 43237 330607 85324 73 3 0x1100090 kqread syslogd 85324 517437 1 0 3 0x100082 sbwait syslogd 87473 79722 1 0 3 0x100080 kqread resolvd 43911 50298 38970 77 3 0x100092 kqread dhcpleased 12212 282705 38970 77 3 0x100092 kqread dhcpleased 38970 206639 1 0 3 0x80 kqread dhcpleased 78030 88576 0 0 3 0x14200 bored smr 24954 283089 0 0 2 0x14200 zerothread 65068 363013 0 0 3 0x14200 aiodoned aiodoned 29489 141929 0 0 3 0x14200 syncer update 31301 11589 0 0 3 0x14200 cleaner cleaner 22383 502710 0 0 3 0x14200 reaper reaper 94615 390736 0 0 3 0x14200 pgdaemon pagedaemon 91998 232802 0 0 3 0x14200 bored viomb 62644 298309 0 0 3 0x40014200 acpi0 acpi0 90575 340163 0 0 3 0x14200 bored softnet3 45554 466721 0 0 3 0x14200 bored softnet2 1978 271357 0 0 3 0x14200 bored softnet1 21891 189201 0 0 3 0x14200 bored softnet0 85544 359794 0 0 3 0x14200 bored systqmp 75377 396055 0 0 3 0x14200 bored systq 39857 462534 0 0 3 0x40014200 tmoslp softclock 35703 438631 0 0 3 0x40014200 idle0 1 380403 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10209 10121K 10419K 166960K 15460 0 pcb 18 24K 27K 166960K 837 0 rtable 244 10K 11K 166960K 2534 0 pf 45 15K 21K 166960K 293 0 ifaddr 50 9K 9K 166960K 344 0 ifgroup 75 3K 3K 166960K 451 0 sysctl 4 1K 2K 166960K 11 0 counters 36 18K 18K 166960K 141 0 ioctlops 0 0K 4K 166960K 524 0 iov 0 0K 18K 166960K 337 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1464 92K 92K 166960K 4803 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 3 5K 13K 166960K 84 0 VM map 2 1K 1K 166960K 2 0 sem 23 109K 149K 166960K 123 0 dirhash 12 2K 2K 166960K 81 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 13 45K 97K 166960K 4264 0 sigio 0 0K 0K 166960K 182 0 proc 59 59K 124K 166960K 2403 0 subproc 104 6K 7K 166960K 835 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 695 0 in_multi 103 7K 7K 166960K 824 0 ether_multi 1 0K 0K 166960K 22 0 mrt 1 0K 0K 166960K 16 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 115 519K 519K 166960K 115 0 exec 0 0K 1K 166960K 1500 0 pfkey data 0 0K 0K 166960K 6 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 197 71K 99K 166960K 38197 0 UVM aobj 131 4K 4K 166960K 136 0 pinsyscall 34 68K 100K 166960K 6743 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 1K 166960K 245 0 NDP 17 0K 2K 166960K 254 0 temp 78 6816K 6956K 166960K 138723 0 kqueue 14 22K 31K 166960K 560 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 457 0 454 3 2 1 3 0 8 0 rtentry 112 853 0 749 5 1 4 4 0 8 1 unpcb 144 4275 0 4260 26 18 8 8 0 8 7 syncache 336 19 0 19 5 4 1 1 0 8 1 tcpqe 32 9 0 9 2 1 1 1 0 8 1 tcpcb 808 2255 0 2251 38 29 9 14 0 8 8 arp 88 158 0 139 1 0 1 1 0 8 0 ipq 40 12 0 12 2 1 1 1 0 8 1 ipqe 40 94 0 94 2 1 1 1 0 8 1 inpcb 336 6146 0 6138 55 46 9 15 0 8 8 nd6 104 228 0 203 1 0 1 1 0 8 0 pkpcb 40 53 0 53 5 4 1 1 0 8 1 kcovpl 48 64 0 56 1 0 1 1 0 8 0 ppxss 1072 32 0 32 3 2 1 1 0 8 1 pfrule 1344 2 0 2 2 2 0 1 0 8 0 art_heap8 4096 4 0 1 4 0 4 4 0 8 1 art_heap4 256 3384 0 2904 33 3 30 31 0 8 0 art_table 32 3388 0 2905 4 0 4 4 0 8 0 art_node 16 844 0 752 1 0 1 1 0 8 0 sysvmsgpl 40 81 0 74 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 114 0 93 1 0 1 1 0 8 0 shmpl 112 133 0 5 4 0 4 4 0 8 0 dirhash 1024 64 0 47 3 0 3 3 0 8 0 dino2pl 256 7786 0 6193 100 0 100 100 0 8 0 ffsino 240 7786 0 6193 95 0 95 95 0 8 0 nchpl 144 13179 0 12565 66 33 33 66 0 8 8 uvmvnodes 80 8664 0 0 177 0 177 177 0 8 0 vnodes 216 8664 0 0 482 0 482 482 0 8 0 namei 1024 52067 0 52064 6 4 2 2 0 8 1 kstatmem 264 244 0 210 4 1 3 3 0 8 0 scsiplug 72 6 0 6 2 1 1 1 0 8 1 scxspl 216 100266 0 100266 14 12 2 8 1 8 2 plimitpl 152 1173 0 1157 1 0 1 1 0 8 0 sigapl 424 4457 0 4393 9 1 8 8 0 8 0 futexpl 64 56171 0 56169 1 0 1 1 0 8 0 knotepl 120 117138 0 117090 62 52 10 17 0 8 8 kqueuepl 184 1179 0 1167 8 7 1 6 0 8 0 pipepl 288 889 0 862 8 5 3 7 0 8 0 fdescpl 432 4416 0 4391 5 1 4 5 0 8 0 filepl 120 32160 0 31852 30 16 14 16 0 8 4 lockfpl 104 1763 0 1728 2 1 1 2 0 8 0 lockfspl 48 616 0 613 1 0 1 1 0 8 0 sessionpl 144 77 0 69 1 0 1 1 0 8 0 pgrppl 48 204 0 188 1 0 1 1 0 8 0 ucredpl 104 4870 0 4859 1 0 1 1 0 8 0 zombiepl 144 4879 0 4877 3 2 1 1 0 8 0 processpl 1096 4457 0 4393 7 1 6 6 0 8 0 procpl 648 9870 0 9799 10 2 8 8 0 8 1 sosppl 168 26 0 26 4 3 1 1 0 8 1 sockpl 504 11058 0 11032 176 164 12 29 0 8 8 mcl64k 65536 50 0 50 5 4 1 1 0 8 1 mcl16k 16384 11 0 11 4 4 0 1 0 8 0 mcl12k 12288 5 0 5 2 1 1 1 0 8 1 mcl9k 9216 7 0 7 3 2 1 1 0 8 1 mcl8k 8192 85 0 85 5 4 1 1 0 8 1 mcl4k 4096 10 0 10 5 4 1 1 0 8 1 mcl2k2 2112 3 0 3 2 1 1 1 0 8 1 mcl2k 2048 15592 0 15500 36 21 15 26 0 8 2 mtagpl 96 58 0 57 2 1 1 1 0 8 0 mbufpl 256 51959 0 51743 38 15 23 25 0 8 8 bufpl 280 17974 0 9320 620 0 620 620 0 8 0 anonpl 24 702050 0 698982 146 95 51 80 0 187 7 amapchunkpl 152 139735 0 139336 92 58 34 42 0 158 15 amappl16 200 13183 0 13163 86 78 8 27 0 8 5 amappl15 192 6 0 6 1 1 0 1 0 8 0 amappl14 184 223 0 213 1 0 1 1 0 8 0 amappl13 176 7 0 7 2 1 1 1 0 8 1 amappl12 168 5916 0 5891 3 1 2 3 0 8 0 amappl11 160 56 0 46 1 0 1 1 0 8 0 amappl10 152 11 0 11 1 1 0 1 0 8 0 amappl9 144 149 0 149 1 1 0 1 0 8 0 amappl8 136 24 0 23 1 0 1 1 0 8 0 amappl7 128 208 0 198 1 0 1 1 0 8 0 amappl6 120 726 0 724 1 0 1 1 0 8 0 amappl5 112 367 0 357 1 0 1 1 0 8 0 amappl4 104 468 0 453 1 0 1 1 0 8 0 amappl3 96 22674 0 22593 3 0 3 3 0 8 0 amappl2 88 4761 0 4690 2 0 2 2 0 8 0 amappl1 80 23294 0 22781 14 2 12 14 0 8 0 amappl 88 37203 0 37061 5 0 5 5 0 92 1 dma32768 32768 34 0 34 2 2 0 1 0 8 0 dma8192 8192 1 0 1 1 1 0 1 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma2048 2048 2 0 2 2 2 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma512 512 1 0 1 1 1 0 1 0 8 0 dma256 256 7 0 7 2 2 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 8 0 8 3 2 1 1 0 8 1 dma32 32 8 0 8 2 2 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 135 0 5 3 0 3 3 0 8 0 uaddrrnd 24 4416 0 4391 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4416 0 4391 1 0 1 1 0 8 0 vmmpekpl 168 35053 0 34991 5 2 3 4 0 8 0 vmmpepl 168 268915 0 267365 131 40 91 100 0 357 15 vmsppl 344 4415 0 4391 4 1 3 4 0 8 0 rwobjpl 24 78181 0 68555 61 1 60 60 0 8 0 pdppl 4096 8839 0 8782 245 182 63 83 0 8 6 pvpl 32 2550897 0 2542204 838 610 228 329 0 265 120 pmappl 216 4415 0 4391 3 1 2 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 871 0 498 12 0 12 12 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace fifo_write(ffff80002a594a60) at fifo_write+0x6e sys/miscfs/fifofs/fifo_vnops.c:281 VOP_WRITE(fffffd8071b1f3c0,ffff80002a594af8,8,fffffd807f7d73a8) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 vn_rdwr(1,fffffd8071b1f3c0,ffff80002a521800,fc,0,1,31dec89ffb6c0ac,ffff80002a594c20,fffffd8071b1f3c0,78) at vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 ufs_symlink(ffff80002a594c20) at ufs_symlink+0x1e2 sys/ufs/ufs/ufs_vnops.c:1309 VOP_SYMLINK(fffffd8065da31e8,ffff80002a594da0,ffff80002a594dd0,ffff80002a594cd0,ffff80002a521800) at VOP_SYMLINK+0x11a sys/kern/vfs_vops.c:432 dosymlinkat(ffff80002a4d02a0,20000700,3,200004c0) at dosymlinkat+0x1dd sys/kern/vfs_syscalls.c:1806 syscall(ffff80002a594f50) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdcff19eb170, count: -8 ddb> machine ddbcpu 1 No such command ddb> trace fifo_write(ffff80002a594a60) at fifo_write+0x6e sys/miscfs/fifofs/fifo_vnops.c:281 VOP_WRITE(fffffd8071b1f3c0,ffff80002a594af8,8,fffffd807f7d73a8) at VOP_WRITE+0x102 sys/kern/vfs_vops.c:245 vn_rdwr(1,fffffd8071b1f3c0,ffff80002a521800,fc,0,1,31dec89ffb6c0ac,ffff80002a594c20,fffffd8071b1f3c0,78) at vn_rdwr+0x12d sys/kern/vfs_vnops.c:324 ufs_symlink(ffff80002a594c20) at ufs_symlink+0x1e2 sys/ufs/ufs/ufs_vnops.c:1309 VOP_SYMLINK(fffffd8065da31e8,ffff80002a594da0,ffff80002a594dd0,ffff80002a594cd0,ffff80002a521800) at VOP_SYMLINK+0x11a sys/kern/vfs_vops.c:432 dosymlinkat(ffff80002a4d02a0,20000700,3,200004c0) at dosymlinkat+0x1dd sys/kern/vfs_syscalls.c:1806 syscall(ffff80002a594f50) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdcff19eb170, count: -8