Warning: Permanently added '10.128.1.172' (ED25519) to the list of known hosts. 2024/04/01 17:51:58 ignoring optional flag "sandboxArg"="0" 2024/04/01 17:51:58 parsed 1 programs 2024/04/01 17:51:59 executed programs: 0 vnd0: sloppy read from proc 41485 (syz-executor.4): blkno 64 bcount 2048 vnd0: sloppy read from proc 41485 (syz-executor.4): blkno 1024 bcount 2048 uvm_fault(0xffffffff82d4a338, 0xffff800026152000, 0, 2) -> d kernel: page fault trap, code=2 Stopped at memset+0x52: repe stosq %es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND *130115 85233 0 0x8000000 0x4000000 0 syz-executor.3 memset() at memset+0x52 VOP_WRITE(fffffd807271b208,ffff80002a7db960,5,fffffd807f7d7958) at VOP_WRITE+0xc3 vn_write(fffffd807e1e36a8,ffff80002a7db960,1) at vn_write+0x19f dofilewritev(ffff80002a605000,3,ffff80002a7db960,1,ffff80002a7dba20) at dofilewritev+0x1ac sys_pwritev(ffff80002a605000,ffff80002a7dbad0,ffff80002a7dba20) at sys_pwritev+0xb6 syscall(ffff80002a7dbad0) at syscall+0x730 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdc90e40b6f0, count: 8 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff82d4a338, 0xffff800026152000, 0, 2) -> d ddb> trace memset() at memset+0x52 VOP_WRITE(fffffd807271b208,ffff80002a7db960,5,fffffd807f7d7958) at VOP_WRITE+0xc3 vn_write(fffffd807e1e36a8,ffff80002a7db960,1) at vn_write+0x19f dofilewritev(ffff80002a605000,3,ffff80002a7db960,1,ffff80002a7dba20) at dofilewritev+0x1ac sys_pwritev(ffff80002a605000,ffff80002a7dbad0,ffff80002a7dba20) at sys_pwritev+0xb6 syscall(ffff80002a7dbad0) at syscall+0x730 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdc90e40b6f0, count: -7 ddb> show registers rdi 0xffff800026152000 rsi 0 rbp 0xffff80002a7db730 rbx 0xe rdx 0 rcx 0x800 rax 0 r8 0x4000 __ALIGN_SIZE+0x3000 r9 0 r10 0xb001b28dd936470a r11 0xffff800026152000 r12 0x4000 __ALIGN_SIZE+0x3000 r13 0x4000 __ALIGN_SIZE+0x3000 r14 0xffff800026152000 r15 0x4000 __ALIGN_SIZE+0x3000 rip 0xffffffff82315452 memset+0x52 cs 0x8 rflags 0x10206 __ALIGN_SIZE+0xf206 rsp 0xffff80002a7db668 ss 0 memset+0x52: repe stosq %es:(%rdi) ddb> show proc PROC (syz-executor.3) tid=130115 pid=85233 tcnt=4 stat=onproc flags process=8000000 proc=4000000 runpri=17, usrpri=53, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a67dd58,0xffff80002a603ab8 process=0xffff80002a65d0d0 user=0xffff80002a7d6000, vmspace=0xfffffd8069732430 estcpu=36, cpticks=3, pctcpu=0.0, user=0, sys=2, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 4082 213294 25264 0 2 0x8100002 sh 11164 231898 16949 0 2 0x8100002 sh 93767 493259 60990 0 2 0x8000000 syz-executor.5 93767 430373 60990 0 2 0xc000000 syz-executor.5 93767 2359 60990 0 3 0xc000000 inode syz-executor.5 93767 183761 60990 0 2 0xc000000 syz-executor.5 27932 359890 18549 0 2 0x8000000 syz-executor.1 27932 365966 18549 0 2 0xc000000 syz-executor.1 27932 446051 18549 0 3 0xc000000 inode syz-executor.1 27932 4475 18549 0 2 0xc000000 syz-executor.1 41485 425808 27925 0 2 0x8000000 syz-executor.4 41485 10704 27925 0 2 0xc000000 syz-executor.4 41485 17675 27925 0 3 0xc000000 inode syz-executor.4 41485 76146 27925 0 2 0xc000000 syz-executor.4 85233 328769 25052 0 2 0x8000000 syz-executor.3 *85233 130115 25052 0 7 0xc000000 syz-executor.3 85233 214576 25052 0 3 0xc000000 inode syz-executor.3 85233 39688 25052 0 2 0xc000080 syz-executor.3 16949 345250 43509 0 3 0x8000082 wait syz-executor.7 10405 329125 64900 0 2 0x8100000 sh 64900 355510 52157 0 3 0x810008a sigsusp sh 25264 327519 43509 0 3 0x8000082 wait syz-executor.6 60990 238319 43509 0 2 0x8000482 syz-executor.5 27925 355319 43509 0 2 0x8000482 syz-executor.4 52157 470061 43509 0 3 0x8000082 wait syz-executor.2 25052 260346 43509 0 2 0x8000482 syz-executor.3 18549 309252 43509 0 2 0x8000482 syz-executor.1 17494 130926 43509 0 3 0x8000082 piperd syz-executor.0 43509 454335 57744 0 3 0x1a000082 wait syz-execprog 43509 42382 57744 0 2 0x1e000002 syz-execprog 43509 228968 57744 0 3 0x1e000082 wait syz-execprog 43509 385311 57744 0 3 0x1e000082 wait syz-execprog 43509 13566 57744 0 3 0x1e000082 wait syz-execprog 43509 441638 57744 0 3 0x1e000082 thrsleep syz-execprog 43509 121389 57744 0 2 0x1e000002 syz-execprog 43509 172955 57744 0 3 0x1e000082 wait syz-execprog 43509 498809 57744 0 3 0x1e000082 thrsleep syz-execprog 43509 137309 57744 0 3 0x1e000082 thrsleep syz-execprog 43509 273189 57744 0 3 0x1e000082 wait syz-execprog 43509 160305 57744 0 3 0x1e000082 wait syz-execprog 43509 387916 57744 0 3 0x1e000082 wait syz-execprog 57744 183587 459 0 3 0x810008a sigsusp ksh 459 363734 84870 0 3 0x1800009a kqread sshd 53925 270537 1 0 3 0x18100083 ttyin getty 84870 103747 1 0 3 0x18000088 kqread sshd 71963 449761 28663 73 3 0x19100090 kqread syslogd 28663 166355 1 0 3 0x18100082 sbwait syslogd 76792 285885 1 0 3 0x18100080 kqread resolvd 61977 91971 97673 77 3 0x18100092 kqread dhcpleased 24299 170619 97673 77 3 0x18100092 kqread dhcpleased 97673 18998 1 0 3 0x18000080 kqread dhcpleased 8549 356310 0 0 3 0x14200 bored smr 21060 171837 0 0 2 0x14200 zerothread 69452 327467 0 0 3 0x14200 aiodoned aiodoned 40854 158720 0 0 3 0x14200 syncer update 1215 48058 0 0 3 0x14200 cleaner cleaner 14294 248592 0 0 3 0x14200 reaper reaper 24888 2962 0 0 3 0x14200 pgdaemon pagedaemon 77573 30172 0 0 3 0x14200 bored viomb 91713 7447 0 0 3 0x40014200 acpi0 acpi0 81176 491829 0 0 3 0x14200 bored softnet3 71941 213953 0 0 3 0x14200 bored softnet2 35957 413795 0 0 3 0x14200 bored softnet1 82518 394302 0 0 3 0x14200 bored softnet0 35952 283509 0 0 3 0x14200 bored systqmp 79006 75467 0 0 3 0x14200 bored systq 81533 19736 0 0 3 0x40014200 tmoslp softclock 14049 87277 0 0 3 0x40014200 idle0 1 513807 0 0 3 0x8000082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10159 6401K 6413K 166960K 11240 0 pcb 15 10K 10K 166960K 15 0 rtable 182 5K 5K 166960K 310 0 pf 29 8K 8K 166960K 32 0 ifaddr 36 9K 9K 166960K 42 0 ifgroup 50 2K 2K 166960K 55 0 counters 30 17K 17K 166960K 31 0 ioctlops 0 0K 2K 166960K 27 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1272 80K 80K 166960K 1289 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 1K 166960K 2 0 VM map 2 1K 1K 166960K 2 0 sem 2 0K 0K 166960K 2 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 18 65K 77K 166960K 137 0 proc 55 58K 75K 166960K 470 0 subproc 0 0K 0K 166960K 13 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 in_multi 68 5K 5K 166960K 79 0 ether_multi 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 25 122K 122K 166960K 25 0 exec 0 0K 1K 166960K 392 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 260 74K 74K 166960K 4218 0 UVM aobj 3 2K 2K 166960K 3 0 pinsyscall 38 76K 100K 166960K 1402 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 NDP 21 1K 1K 166960K 24 0 temp 1 6788K 6852K 166960K 4518 0 kqueue 12 18K 18K 166960K 34 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 34 0 31 1 0 1 1 0 8 0 rtentry 112 96 0 12 3 0 3 3 0 8 0 unpcb 144 45 0 32 1 0 1 1 0 8 0 syncache 336 8 0 8 1 0 1 1 0 8 1 tcpqe 32 230 0 230 1 0 1 1 0 8 1 tcpcb 808 12 0 8 1 0 1 1 0 8 0 arp 88 17 0 2 1 0 1 1 0 8 0 inpcb 360 62 0 55 1 0 1 1 0 8 0 nd6 104 18 0 3 1 0 1 1 0 8 0 kcovpl 48 1 0 1 1 0 1 1 0 8 1 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 376 0 48 21 0 21 21 0 8 0 art_table 32 377 0 48 3 0 3 3 0 8 0 art_node 16 95 0 18 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1593 0 74 95 0 95 95 0 8 0 ffsino 240 1593 0 74 90 0 90 90 0 8 0 nchpl 144 1877 0 101 66 0 66 66 0 8 0 uvmvnodes 80 1616 0 0 33 0 33 33 0 8 0 vnodes 216 1616 0 0 90 0 90 90 0 8 0 namei 1024 7275 0 7275 3 0 3 3 0 8 3 kstatmem 264 24 0 2 2 0 2 2 0 8 0 scxspl 216 8674 0 8674 8 0 8 8 1 8 8 plimitpl 152 49 0 34 1 0 1 1 0 8 0 sigapl 424 467 0 422 6 0 6 6 0 8 0 futexpl 64 13 0 13 1 0 1 1 0 8 1 knotepl 120 7206 0 7122 4 0 4 4 0 8 0 kqueuepl 184 30 0 22 1 0 1 1 0 8 0 pipepl 288 183 0 155 3 0 3 3 0 8 0 fdescpl 432 451 0 422 4 0 4 4 0 8 0 filepl 120 2025 0 1891 5 0 5 5 0 8 0 lockfpl 104 6 0 4 1 0 1 1 0 8 0 lockfspl 48 4 0 2 1 0 1 1 0 8 0 sessionpl 144 32 0 16 1 0 1 1 0 8 0 pgrppl 48 32 0 16 1 0 1 1 0 8 0 ucredpl 104 94 0 83 1 0 1 1 0 8 0 zombiepl 144 422 0 422 1 0 1 1 0 8 1 processpl 1072 467 0 422 4 0 4 4 0 8 0 procpl 680 504 0 435 6 0 6 6 0 8 0 sockpl 488 141 0 118 4 0 4 4 0 8 0 mcl8k 8192 4 0 4 1 0 1 1 0 8 1 mcl4k 4096 16 0 16 1 0 1 1 0 8 1 mcl2k 2048 24655 0 24602 73 58 15 53 0 8 8 mtagpl 96 4 0 4 1 0 1 1 0 8 1 mbufpl 256 39481 0 39376 33 21 12 27 0 8 5 bufpl 280 5485 0 168 380 0 380 380 0 8 0 anonpl 24 349471 0 344514 50 0 50 50 0 188 18 amapchunkpl 152 16632 0 16020 26 0 26 26 0 158 1 amappl16 200 9823 0 9714 7 0 7 7 0 8 0 amappl15 192 35 0 33 1 0 1 1 0 8 0 amappl14 184 213 0 201 2 0 2 2 0 8 1 amappl13 176 34 0 34 1 0 1 1 0 8 1 amappl12 168 1111 0 1078 2 0 2 2 0 8 0 amappl11 160 75 0 65 1 0 1 1 0 8 0 amappl10 152 76 0 67 1 0 1 1 0 8 0 amappl9 144 325 0 325 1 0 1 1 0 8 1 amappl8 136 156 0 130 1 0 1 1 0 8 0 amappl7 128 88 0 85 1 0 1 1 0 8 0 amappl6 120 425 0 407 2 0 2 2 0 8 0 amappl5 112 232 0 220 1 0 1 1 0 8 0 amappl4 104 664 0 635 2 0 2 2 0 8 0 amappl3 96 4262 0 4177 3 0 3 3 0 8 0 amappl2 88 1079 0 1010 4 0 4 4 0 8 1 amappl1 80 14466 0 13965 24 5 19 21 0 8 8 amappl 88 3508 0 3328 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 2 0 0 1 0 1 1 0 8 0 uaddrrnd 24 451 0 422 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 451 0 422 1 0 1 1 0 8 0 vmmpekpl 168 12209 0 12182 2 0 2 2 0 8 0 vmmpepl 168 68066 0 66376 110 0 110 110 0 357 33 vmsppl 352 450 0 422 3 0 3 3 0 8 0 rwobjpl 24 32792 0 30146 20 0 20 20 0 8 1 pdppl 4096 908 0 844 110 40 70 70 0 8 6 pvpl 32 679722 0 669692 359 58 301 359 0 265 217 pmappl 216 450 0 422 2 0 2 2 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 445 0 119 10 0 10 10 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace memset() at memset+0x52 VOP_WRITE(fffffd807271b208,ffff80002a7db960,5,fffffd807f7d7958) at VOP_WRITE+0xc3 vn_write(fffffd807e1e36a8,ffff80002a7db960,1) at vn_write+0x19f dofilewritev(ffff80002a605000,3,ffff80002a7db960,1,ffff80002a7dba20) at dofilewritev+0x1ac sys_pwritev(ffff80002a605000,ffff80002a7dbad0,ffff80002a7dba20) at sys_pwritev+0xb6 syscall(ffff80002a7dbad0) at syscall+0x730 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdc90e40b6f0, count: -7 ddb> machine ddbcpu 1 No such command ddb> trace memset() at memset+0x52 VOP_WRITE(fffffd807271b208,ffff80002a7db960,5,fffffd807f7d7958) at VOP_WRITE+0xc3 vn_write(fffffd807e1e36a8,ffff80002a7db960,1) at vn_write+0x19f dofilewritev(ffff80002a605000,3,ffff80002a7db960,1,ffff80002a7dba20) at dofilewritev+0x1ac sys_pwritev(ffff80002a605000,ffff80002a7dbad0,ffff80002a7dba20) at sys_pwritev+0xb6 syscall(ffff80002a7dbad0) at syscall+0x730 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xdc90e40b6f0, count: -7