uvm_fault(0xffffffff835a88a0, 0xffff800027375a00, 0, 2) -> d kernel: page fault trap, code=2 Stopped at memcpy+0x19: repe movsq (%rsi),%es:(%rdi) TID PID UID PRFLAGS PFLAGS CPU COMMAND *220555 91842 0 0x2 0 0 syz-executor.4 memcpy() at memcpy+0x19 ufs_inactive(ffff80002a5c1818) at ufs_inactive+0x2e2 sys/ufs/ufs/ufs_inode.c:95 VOP_INACTIVE(fffffd8074d74118,ffff80002a520f50) at VOP_INACTIVE+0xfe sys/kern/vfs_vops.c:495 vput(fffffd8074d74118) at vput+0xdc sys/kern/vfs_subr.c:776 ufs_rmdir(ffff80002a5c1928) at ufs_rmdir+0x225 sys/ufs/ufs/ufs_vnops.c:1279 VOP_RMDIR(fffffd806bd0b3b0,fffffd8074d74118,ffff80002a5c1a08) at VOP_RMDIR+0x19a sys/kern/vfs_vops.c:413 dounlinkat(ffff80002a520f50,ffffff9c,75651ad37b70,8) at dounlinkat+0x2e0 sys/kern/vfs_syscalls.c:1885 syscall(ffff80002a5c1b80) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x75651ad37b60, count: 6 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: uvm_fault(0xffffffff835a88a0, 0xffff800027375a00, 0, 2) -> d ddb> trace memcpy() at memcpy+0x19 ufs_inactive(ffff80002a5c1818) at ufs_inactive+0x2e2 sys/ufs/ufs/ufs_inode.c:95 VOP_INACTIVE(fffffd8074d74118,ffff80002a520f50) at VOP_INACTIVE+0xfe sys/kern/vfs_vops.c:495 vput(fffffd8074d74118) at vput+0xdc sys/kern/vfs_subr.c:776 ufs_rmdir(ffff80002a5c1928) at ufs_rmdir+0x225 sys/ufs/ufs/ufs_vnops.c:1279 VOP_RMDIR(fffffd806bd0b3b0,fffffd8074d74118,ffff80002a5c1a08) at VOP_RMDIR+0x19a sys/kern/vfs_vops.c:413 dounlinkat(ffff80002a520f50,ffffff9c,75651ad37b70,8) at dounlinkat+0x2e0 sys/kern/vfs_syscalls.c:1885 syscall(ffff80002a5c1b80) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x75651ad37b60, count: -9 ddb> show registers rdi 0xffff800027375a00 rsi 0xfffffd8067669f00 rbp 0xffff80002a5c17a0 rbx 0 rdx 0x100 rcx 0x20 rax 0x4e0 r8 0xffffffffffffffff r9 0x4bf00 acpi_pdirpa+0x37d71 r10 0x4b8fe633d1ca0d2b r11 0xffff800027375a00 r12 0xfffffd8072515f00 r13 0xfffffd806aeddb10 r14 0 r15 0xffff800000b59000 rip 0xffffffff8168e109 memcpy+0x19 cs 0x8 rflags 0x10202 __ALIGN_SIZE+0xf202 rsp 0xffff80002a5c1738 ss 0x10 memcpy+0x19: repe movsq (%rsi),%es:(%rdi) ddb> show proc PROC (syz-executor.4) tid=220555 pid=91842 tcnt=1 stat=onproc flags process=2 proc=0 runpri=17, usrpri=83, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a520cc8,0xffff80002a520a50 process=0xffff8000ffff8ce8 user=0xffff80002a5bc000, vmspace=0xfffffd8007c22408 estcpu=36, cpticks=1, pctcpu=0.1, user=3, sys=38, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 66136 416176 54066 0 2 0 syz-executor.3 66136 190942 54066 0 2 0x4000080 syz-executor.3 93061 246366 77359 0 2 0 syz-executor.6 77359 45748 99677 0 2 0x2 syz-executor.6 54066 310965 99677 0 3 0x82 nanoslp syz-executor.3 21225 155326 99677 0 2 0x2 syz-executor.7 11135 280264 99677 0 2 0x2 syz-executor.5 *91842 220555 99677 0 7 0x2 syz-executor.4 96111 173849 99677 0 2 0x2 syz-executor.2 47340 242889 99677 0 2 0x2 syz-executor.1 17338 210378 99677 0 2 0x2 syz-executor.0 99677 64601 98212 0 3 0x82 wait syz-execprog 99677 21653 98212 0 2 0x4000482 syz-execprog 99677 518015 98212 0 3 0x4000082 wait syz-execprog 99677 460493 98212 0 3 0x4000082 thrsleep syz-execprog 99677 478639 98212 0 3 0x4000082 wait syz-execprog 99677 364714 98212 0 3 0x4000082 wait syz-execprog 99677 253335 98212 0 3 0x4000082 wait syz-execprog 99677 444279 98212 0 3 0x4000082 thrsleep syz-execprog 99677 489190 98212 0 3 0x4000082 wait syz-execprog 99677 445088 98212 0 3 0x4000082 thrsleep syz-execprog 99677 339740 98212 0 3 0x4000082 wait syz-execprog 99677 316651 98212 0 3 0x4000082 wait syz-execprog 99677 207493 98212 0 3 0x4000082 kqread syz-execprog 99677 430190 98212 0 3 0x4000082 thrsleep syz-execprog 98212 212972 38302 0 3 0x10008a sigsusp ksh 38302 196085 58681 0 3 0x98 kqread sshd-session 58681 338931 16577 0 3 0x92 kqread sshd-session 55258 511556 1 0 3 0x100083 ttyin getty 16577 139882 1 0 3 0x88 kqread sshd 33768 22418 52267 73 3 0x1100090 kqread syslogd 52267 24495 1 0 3 0x100082 sbwait syslogd 70945 485833 1 0 3 0x100080 kqread resolvd 2621 205249 25759 77 3 0x100092 kqread dhcpleased 28797 86548 25759 77 3 0x100092 kqread dhcpleased 25759 61528 1 0 3 0x80 kqread dhcpleased 31454 116431 0 0 3 0x14200 bored smr 26852 195903 0 0 3 0x14200 pgzero zerothread 13316 193874 0 0 3 0x14200 aiodoned aiodoned 5061 507106 0 0 3 0x14200 syncer update 92862 223377 0 0 3 0x14200 cleaner cleaner 58241 159232 0 0 3 0x14200 reaper reaper 92204 346621 0 0 3 0x14200 pgdaemon pagedaemon 14180 458794 0 0 3 0x14200 bored viomb 5447 96091 0 0 3 0x40014200 acpi0 acpi0 66932 510975 0 0 3 0x14200 bored softnet3 35090 158475 0 0 3 0x14200 bored softnet2 7952 95649 0 0 3 0x14200 bored softnet1 64942 317932 0 0 3 0x14200 bored softnet0 52280 6701 0 0 3 0x14200 bored systqmp 52138 104503 0 0 3 0x14200 bored systq 2489 226497 0 0 3 0x40014200 tmoslp softclock 66544 312374 0 0 3 0x40014200 idle0 1 275195 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10164 11040K 11052K 166960K 11245 0 pcb 17 12K 12K 166960K 17 0 rtable 234 6K 6K 166960K 382 0 pf 30 12K 12K 166960K 33 0 ifaddr 42 7K 7K 166960K 48 0 ifgroup 50 2K 2K 166960K 55 0 counters 30 17K 17K 166960K 31 0 ioctlops 0 0K 2K 166960K 30 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1260 79K 79K 166960K 1277 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 1K 166960K 2 0 VM map 2 1K 1K 166960K 2 0 sem 2 0K 0K 166960K 2 0 dirhash 12 2K 2K 166960K 12 0 ACPI 1690 195K 286K 166960K 12468 0 file desc 12 41K 77K 166960K 3083 0 proc 57 58K 75K 166960K 500 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 in_multi 99 7K 7K 166960K 110 0 ether_multi 1 0K 0K 166960K 1 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 25 122K 122K 166960K 25 0 exec 0 0K 1K 166960K 409 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 218 73K 75K 166960K 31491 0 UVM aobj 3 2K 2K 166960K 3 0 pinsyscall 34 68K 104K 166960K 4411 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 NDP 11 0K 2K 166960K 30 0 temp 1 6800K 6928K 166960K 308844 0 kqueue 13 20K 20K 166960K 46 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 39 0 36 1 0 1 1 0 8 0 rtentry 112 122 0 12 4 0 4 4 0 8 0 unpcb 144 67 0 52 1 0 1 1 0 8 0 syncache 336 9 0 9 1 0 1 1 0 8 1 tcpcb 808 12 0 9 1 0 1 1 0 8 0 arp 88 20 0 2 1 0 1 1 0 8 0 inpcb 336 66 0 60 1 0 1 1 0 8 0 nd6 104 27 0 3 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 500 0 48 29 0 29 29 0 8 0 art_table 32 501 0 48 4 0 4 4 0 8 0 art_node 16 121 0 21 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 7470 0 4911 160 0 160 160 0 8 0 ffsino 240 7470 0 4911 151 0 151 151 0 8 0 nchpl 144 13617 0 11841 67 0 67 67 0 8 0 uvmvnodes 80 6255 0 0 128 0 128 128 0 8 0 vnodes 216 6255 0 0 348 0 348 348 0 8 0 namei 1024 33853 0 33853 3 0 3 3 0 8 3 kstatmem 264 24 0 2 2 0 2 2 0 8 0 scxspl 216 39596 0 39596 8 0 8 8 1 8 8 plimitpl 152 58 0 42 1 0 1 1 0 8 0 sigapl 424 3424 0 3384 6 0 6 6 0 8 1 futexpl 64 14409 0 14409 1 0 1 1 0 8 1 knotepl 120 7313 0 7234 4 0 4 4 0 8 0 kqueuepl 184 42 0 33 1 0 1 1 0 8 0 pipepl 288 184 0 156 3 0 3 3 0 8 0 fdescpl 432 3408 0 3384 4 0 4 4 0 8 0 filepl 120 10832 0 10698 5 0 5 5 0 8 0 lockfpl 104 5859 0 5857 1 0 1 1 0 8 0 lockfspl 48 775 0 773 1 0 1 1 0 8 0 sessionpl 144 34 0 18 1 0 1 1 0 8 0 pgrppl 48 34 0 18 1 0 1 1 0 8 0 ucredpl 104 112 0 100 1 0 1 1 0 8 0 zombiepl 144 3384 0 3384 1 0 1 1 0 8 1 processpl 1096 3424 0 3384 4 0 4 4 0 8 0 procpl 648 7796 0 7742 7 0 7 7 0 8 0 sockpl 504 172 0 148 4 0 4 4 0 8 1 mcl8k 8192 13 0 13 1 0 1 1 0 8 1 mcl4k 4096 11255 0 11198 31 15 16 23 0 8 8 mcl2k 2048 170 0 170 1 0 1 1 0 8 1 mtagpl 96 4 0 4 1 0 1 1 0 8 1 mbufpl 256 15768 0 15571 13 0 13 13 0 8 0 bufpl 280 12217 0 5891 452 0 452 452 0 8 0 anonpl 24 559595 0 555064 51 0 51 51 0 187 18 amapchunkpl 152 102920 0 102443 28 0 28 28 0 158 5 amappl16 200 13884 0 13784 6 0 6 6 0 8 0 amappl15 192 30 0 30 1 0 1 1 0 8 1 amappl14 184 225 0 213 2 0 2 2 0 8 0 amappl13 176 23 0 23 1 0 1 1 0 8 1 amappl12 168 4112 0 4087 2 0 2 2 0 8 0 amappl11 160 63 0 53 1 0 1 1 0 8 0 amappl10 152 99 0 89 1 0 1 1 0 8 0 amappl9 144 337 0 337 1 0 1 1 0 8 1 amappl8 136 160 0 130 2 0 2 2 0 8 0 amappl7 128 222 0 207 2 0 2 2 0 8 0 amappl6 120 349 0 344 2 0 2 2 0 8 1 amappl5 112 199 0 191 1 0 1 1 0 8 0 amappl4 104 513 0 497 2 0 2 2 0 8 1 amappl3 96 21440 0 21379 3 0 3 3 0 8 1 amappl2 88 4183 0 4112 4 0 4 4 0 8 1 amappl1 80 23237 0 22712 26 6 20 22 0 8 8 amappl 88 30758 0 30621 5 0 5 5 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 2 0 0 1 0 1 1 0 8 0 uaddrrnd 24 3408 0 3384 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 3408 0 3384 1 0 1 1 0 8 0 vmmpekpl 168 28287 0 28247 3 0 3 3 0 8 0 vmmpepl 168 197906 0 196324 116 0 116 116 0 357 38 vmsppl 344 3407 0 3384 3 0 3 3 0 8 0 rwobjpl 24 70570 0 63395 44 0 44 44 0 8 0 pdppl 4096 6822 0 6768 118 52 66 72 0 8 12 pvpl 32 1217715 0 1207847 381 74 307 372 0 265 220 pmappl 216 3407 0 3384 2 0 2 2 0 8 0 extentpl 40 55 0 38 1 0 1 1 0 8 0 phpool 112 524 0 67 14 0 14 14 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace memcpy() at memcpy+0x19 ufs_inactive(ffff80002a5c1818) at ufs_inactive+0x2e2 sys/ufs/ufs/ufs_inode.c:95 VOP_INACTIVE(fffffd8074d74118,ffff80002a520f50) at VOP_INACTIVE+0xfe sys/kern/vfs_vops.c:495 vput(fffffd8074d74118) at vput+0xdc sys/kern/vfs_subr.c:776 ufs_rmdir(ffff80002a5c1928) at ufs_rmdir+0x225 sys/ufs/ufs/ufs_vnops.c:1279 VOP_RMDIR(fffffd806bd0b3b0,fffffd8074d74118,ffff80002a5c1a08) at VOP_RMDIR+0x19a sys/kern/vfs_vops.c:413 dounlinkat(ffff80002a520f50,ffffff9c,75651ad37b70,8) at dounlinkat+0x2e0 sys/kern/vfs_syscalls.c:1885 syscall(ffff80002a5c1b80) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x75651ad37b60, count: -9 ddb> machine ddbcpu 1 No such command ddb> trace memcpy() at memcpy+0x19 ufs_inactive(ffff80002a5c1818) at ufs_inactive+0x2e2 sys/ufs/ufs/ufs_inode.c:95 VOP_INACTIVE(fffffd8074d74118,ffff80002a520f50) at VOP_INACTIVE+0xfe sys/kern/vfs_vops.c:495 vput(fffffd8074d74118) at vput+0xdc sys/kern/vfs_subr.c:776 ufs_rmdir(ffff80002a5c1928) at ufs_rmdir+0x225 sys/ufs/ufs/ufs_vnops.c:1279 VOP_RMDIR(fffffd806bd0b3b0,fffffd8074d74118,ffff80002a5c1a08) at VOP_RMDIR+0x19a sys/kern/vfs_vops.c:413 dounlinkat(ffff80002a520f50,ffffff9c,75651ad37b70,8) at dounlinkat+0x2e0 sys/kern/vfs_syscalls.c:1885 syscall(ffff80002a5c1b80) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x75651ad37b60, count: -9