suppressed report

0 views

Skip to first unread message

syzbot

unread,

Feb 21, 2021, 10:56:19 AM2/21/21

to syzkaller-o...@googlegroups.com

Hello,

syzbot found the following issue on:

HEAD commit: 11bb5c24 sync
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=135e6312d00000
kernel config: https://syzkaller.appspot.com/x/.config?x=bf87b6915a88cd0d
dashboard link: https://syzkaller.appspot.com/bug?extid=94b31fe1b87e0f693733

Unfortunately, I don't have any reproducer for this issue yet.

IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+94b31f...@syzkaller.appspotmail.com

witness: lock order reversal:
1st 0xfffffd807d112638 fdlock (&newfdp->fd_fd.fd_lock)
2nd 0xfffffd806b029f78 inode (&ip->i_lock)
lock order data w2 -> w1 missing
lock order data w1 -> w2 missing
Stopped at db_enter+0x18: addq $0x8,%rsp

---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.

syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.

Greg Steuck

unread,

Feb 21, 2021, 11:50:54 PM2/21/21

to syzbot, 'Dmitry Vyukov' via syzkaller-openbsd-bugs

I wonder why this is suppressed. The dashboard seems quite actionable:

witness: lock order reversal:
 1st 0xfffffd807effa5d8 vmmaplk (&map->lock)
 2nd 0xfffffd80667cd920 inode (&ip->i_lock)
lock order "&ip->i_lock"(rrwlock) -> "&map->lock"(rwlock) first seen at:
#0  witness_checkorder+0x722 witness_lock_order_add sys/kern/subr_witness.c:2475 [inline]
#0  witness_checkorder+0x722 sys/kern/subr_witness.c:892
#1  rw_enter_read+0x66 sys/kern/kern_rwlock.c:112
#2  uvmfault_lookup+0xd9 sys/uvm/uvm_fault.c:1641
#3  uvm_fault_check+0x3a sys/uvm/uvm_fault.c:637
#4  uvm_fault+0xe2 sys/uvm/uvm_fault.c:591
#5  kpageflttrap+0x202 sys/arch/amd64/amd64/trap.c:265
#6  kerntrap+0xef sys/arch/amd64/amd64/trap.c:321
#7  alltraps_kern_meltdown+0x7b
#8  copyout+0x53
#9  ffs_read+0x3e2 sys/ufs/ffs/ffs_vnops.c:258
#10 VOP_READ+0xbf sys/kern/vfs_vops.c:253
#11 vn_rdwr+0x10b
#12 vmcmd_map_readvn+0xda sys/kern/exec_subr.c:246
#13 exec_process_vmcmds+0xb2 sys/kern/exec_subr.c:143
#14 sys_execve+0x9ff sys/kern/kern_exec.c:461
#15 syscall+0x4a1 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#15 syscall+0x4a1 sys/arch/amd64/amd64/trap.c:590
#16 Xsyscall+0x128
lock order "&map->lock"(rwlock) -> "&ip->i_lock"(rrwlock) first seen at:
#0  witness_checkorder+0x722 witness_lock_order_add sys/kern/subr_witness.c:2475 [inline]
#0  witness_checkorder+0x722 sys/kern/subr_witness.c:892
#1  rw_enter+0xd4
#2  rrw_enter+0x88 sys/kern/kern_rwlock.c:461
#3  VOP_LOCK+0x4b sys/kern/vfs_vops.c:614
#4  vn_lock+0x6c sys/kern/vfs_vnops.c:575
#5  uvn_get+0x276 uvm_vnode_lock sys/uvm/uvm_vnode.c:1499 [inline]
#5  uvn_get+0x276 sys/uvm/uvm_vnode.c:993
#6  uvm_fault_lower+0x5e7 sys/uvm/uvm_fault.c:1206
#7  uvm_fault+0x17c sys/uvm/uvm_fault.c:603
#8  uvm_fault_wire+0x63 sys/uvm/uvm_fault.c:1487
#9  uvm_map_pageable_wire+0x30d sys/uvm/uvm_map.c:2365
#10 sys_mlock+0x180 sys/uvm/uvm_mmap.c:772
#11 syscall+0x4a1 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#11 syscall+0x4a1 sys/arch/amd64/amd64/trap.c:590
#12 Xsyscall+0x128
Stopped at      db_enter+0x18:  addq    $0x8,%rsp
ddb{0}> 
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
the kernel did not panic
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398
witness_checkorder(fffffd80667cd920,9,0) at witness_checkorder+0x108b
rw_enter(fffffd80667cd910,81) at rw_enter+0xd4
rrw_enter(fffffd80667cd910,81) at rrw_enter+0x88 sys/kern/kern_rwlock.c:461
VOP_LOCK(fffffd807e7d02b8,81) at VOP_LOCK+0x4b sys/kern/vfs_vops.c:614
vn_lock(fffffd807e7d02b8,81) at vn_lock+0x6c sys/kern/vfs_vnops.c:575
uvn_get(fffffd80665a4888,0,ffff8000212a34c8,ffff8000212a34ac,0,1) at uvn_get+0x276 uvm_vnode_lock sys/uvm/uvm_vnode.c:1499 [inline]
uvn_get(fffffd80665a4888,0,ffff8000212a34c8,ffff8000212a34ac,0,1) at uvn_get+0x276 sys/uvm/uvm_vnode.c:993
uvm_fault_lower(ffff8000212a3630,ffff8000212a3668,ffff8000212a3530,2) at uvm_fault_lower+0x5e7 sys/uvm/uvm_fault.c:1206
uvm_fault(fffffd807effa5c0,20ff8000,2,3) at uvm_fault+0x17c sys/uvm/uvm_fault.c:603
uvm_fault_wire(fffffd807effa5c0,20ff8000,20ffb000,3) at uvm_fault_wire+0x63 sys/uvm/uvm_fault.c:1487
uvm_map_pageable_wire(fffffd807effa5c0,fffffd80743fb650,fffffd80743fb458,1322,ffffffff81444b7e,0) at uvm_map_pageable_wire+0x30d sys/uvm/uvm_map.c:2365
sys_mlock(ffff8000222d02b0,ffff8000212a3878,ffff8000212a38c0) at sys_mlock+0x180 sys/uvm/uvm_mmap.c:772
syscall(ffff8000212a3940) at syscall+0x4a1 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff8000212a3940) at syscall+0x4a1 sys/arch/amd64/amd64/trap.c:590
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x42b173f09b0, count: -14
ddb{0}> show registers
rdi                              0x3
rsi                          0x40000    acpi_pdirpa+0x2be68
rbp               0xffff8000212a3140
rbx                              0x3
rdx               0xffff800000af8640
rcx                              0x3
rax                          0x3ffff    acpi_pdirpa+0x2be67
r8                0xffffffff81442811    witness_checkorder+0x1061
r9                               0x5
r10               0xe37f00f0b3e9a1b9
r11               0xbf560d458bf50d7b
r12               0xffffffff82879e20    w_lodata+0x54170
r13               0xfffffd80667cd920
r14               0xffffffff8286c220    w_lodata+0x46570
r15               0xfffffd8002ce1600
rip               0xffffffff81e1d5b8    db_enter+0x18
cs                               0x8
rflags                         0x246
rsp               0xffff8000212a3130
ss                              0x10
db_enter+0x18:  addq    $0x8,%rsp
ddb{0}> show proc
PROC (syz-executor.0) pid=8166 stat=onproc
    flags process=0 proc=4000000<THREAD>
    pri=32, usrpri=86, nice=20
    forw=0xffffffffffffffff, list=0xffff8000222d07f0,0xffff8000222d1280
    process=0xffff8000224a8450 user=0xffff80002129e000, vmspace=0xfffffd807effa5c0
    estcpu=36, cpticks=0, pctcpu=0.0
    user=0, sys=0, intr=0
ddb{0}> ps
   PID     TID   PPID    UID  S       FLAGS  WAIT          COMMAND
 83872  324652  32275      0  7           0                syz-executor.1
 95076  109566  56269      0  2           0                syz-executor.0
*95076    8166  56269      0  7   0x4000000                syz-executor.0
 78996   18933      0      0  3     0x14280  nfsidl        nfsio
 50616   32421      0      0  3     0x14280  nfsidl        nfsio
 30008   59596      0      0  3     0x14280  nfsidl        nfsio
 99391  370829      0      0  3     0x14280  nfsidl        nfsio
 46928  131460      0      0  3     0x14280  nfsidl        nfsio
 31003  339508      0      0  3     0x14280  nfsidl        nfsio
 28458  468117      0      0  3     0x14280  nfsidl        nfsio
 92616  315419      0      0  3     0x14280  nfsidl        nfsio
 53840  325134      0      0  3     0x14280  nfsidl        nfsio
 38947  522794      0      0  3     0x14280  nfsidl        nfsio
 17786   95300      0      0  3     0x14280  nfsidl        nfsio
 50197   85914      0      0  3     0x14280  nfsidl        nfsio
 28517  225700      0      0  3     0x14280  nfsidl        nfsio
 56645  281044      0      0  3     0x14280  nfsidl        nfsio
 64275  404786      0      0  3     0x14280  nfsidl        nfsio
 96848  241586      0      0  3     0x14280  nfsidl        nfsio
 22650  158306      0      0  3     0x14280  nfsidl        nfsio
 76264   91559      0      0  3     0x14280  nfsidl        nfsio
 78300   20972      0      0  3     0x14280  nfsidl        nfsio
 79930  491807      0      0  3     0x14280  nfsidl        nfsio
 32275  255644  72714      0  3        0x82  nanoslp       syz-executor.1
 56269  163019  72714      0  3        0x82  nanoslp       syz-executor.0
 72714   92251  19463      0  3        0x82  thrsleep      syz-fuzzer
 72714  441684  19463      0  3   0x4000082  nanoslp       syz-fuzzer
 72714  254486  19463      0  3   0x4000082  thrsleep      syz-fuzzer
 72714   34035  19463      0  3   0x4000082  thrsleep      syz-fuzzer
 72714  117854  19463      0  3   0x4000082  kqread        syz-fuzzer
 72714  295221  19463      0  3   0x4000082  thrsleep      syz-fuzzer
 72714  201532  19463      0  3   0x4000082  thrsleep      syz-fuzzer
 72714  471343  19463      0  3   0x4000082  thrsleep      syz-fuzzer
 19463  253548   3019      0  3    0x10008a  sigsusp       ksh
  3019  309232  77581      0  3        0x92  select        sshd
 22511   61057      1      0  3    0x100083  ttyin         getty
 77581  386663      1      0  3        0x80  select        sshd
 11379  103790  82622     74  3    0x100092  bpf           pflogd
 82622  260393      1      0  3        0x80  netio         pflogd
 52489  415890  94093     73  3    0x100090  kqread        syslogd
 94093  252281      1      0  3    0x100082  netio         syslogd
  9301  374126      1     77  3    0x100090  poll          dhclient
 17890  479124      1      0  3        0x80  poll          dhclient
 82600  227905      0      0  3     0x14200  bored         smr
 41446   96744      0      0  2     0x14200                zerothread
 58592     124      0      0  3     0x14200  aiodoned      aiodoned
 18924  180764      0      0  3     0x14200  syncer        update
 79845  504582      0      0  3     0x14200  cleaner       cleaner
 58515    1669      0      0  3     0x14200  reaper        reaper
 18057  320336      0      0  3     0x14200  pgdaemon      pagedaemon
 43276  384860      0      0  3     0x14200  bored         crynlk
  6871  208212      0      0  3     0x14200  bored         crypto
 78318  433411      0      0  3     0x14200  bored         viomb
 63565  370568      0      0  3  0x40014200  acpi0         acpi0
 95498  142286      0      0  3  0x40014200                idle1
 33374    3797      0      0  3     0x14200  bored         softnet
 60308  516533      0      0  3     0x14200  bored         systqmp
  7080  269839      0      0  3     0x14200  bored         systq
 75560  503051      0      0  3  0x40014200  bored         softclock
  8312  417175      0      0  3  0x40014200                idle0
     1  426117      0      0  3        0x82  wait          init
     0       0     -1      0  3     0x10200  scheduler     swapper
ddb{0}> show all locks
Process 95076 (syz-executor.0) thread 0xffff8000222d02b0 (8166)
shared rwlock vmmaplk r = 0 (0xfffffd807effa5d8)
#0  witness_lock+0x4b0 stacktrace_save sys/sys/stacktrace.h:36 [inline]
#0  witness_lock+0x4b0 sys/kern/subr_witness.c:1182
#1  rw_enter+0x416 sys/kern/kern_rwlock.c:310
#2  vm_map_lock_ln+0xda sys/uvm/uvm_map.c:5462
#3  uvm_map_pageable+0x120 sys/uvm/uvm_map.c:2461
#4  sys_mlock+0x180 sys/uvm/uvm_mmap.c:772
#5  syscall+0x4a1 mi_syscall sys/sys/syscall_mi.h:102 [inline]
#5  syscall+0x4a1 sys/arch/amd64/amd64/trap.c:590
#6  Xsyscall+0x128
exclusive kernel_lock &kernel_lock r = 1 (0xffffffff8289cfb0)
#0  witness_lock+0x4b0 stacktrace_save sys/sys/stacktrace.h:36 [inline]
#0  witness_lock+0x4b0 sys/kern/subr_witness.c:1182
#1  syscall+0x3fd mi_syscall sys/sys/syscall_mi.h:93 [inline]
#1  syscall+0x3fd sys/arch/amd64/amd64/trap.c:590
#2  Xsyscall+0x128
ddb{0}> show malloc
           Type InUse  MemUse  HighUse   Limit  Requests Type Lim
         devbuf  9483   6416K    6682K  78643K     10709        0
            pcb    13      8K       8K  78643K        21        0
         rtable   105      3K       3K  78643K       193        0
         ifaddr    44     10K      10K  78643K        45        0
         sysctl     2      0K       0K  78643K         2        0
       counters    44     34K      34K  78643K        44        0
       ioctlops     0      0K       4K  78643K      1469        0
            iov     0      0K       0K  78643K         4        0
          mount     1      1K       1K  78643K         1        0
         vnodes  1220     77K      77K  78643K      1663        0
      UFS quota     1     32K      32K  78643K         1        0
      UFS mount     5     36K      36K  78643K         5        0
            shm     2      1K       1K  78643K         2        0
         VM map     2      1K       1K  78643K         2        0
            sem     9      1K       1K  78643K         9        0
        dirhash    12      2K       2K  78643K        12        0
           ACPI  1697    195K     286K  78643K     12598        0
      file desc     6     17K      25K  78643K     30154        0
          sigio     0      0K       0K  78643K         4        0
           proc    60     63K      83K  78643K       446        0
        subproc    32      2K       2K  78643K        34        0
    NFS srvsock     1      0K       0K  78643K         1        0
     NFS daemon     1     16K      16K  78643K         1        0
       in_multi    33      2K       2K  78643K        33        0
    ether_multi     1      0K       0K  78643K         1        0
    ISOFS mount     1     32K      32K  78643K         1        0
  MSDOSFS mount     1     16K      16K  78643K         1        0
           ttys    31    148K     148K  78643K        31        0
           exec     0      0K       2K  78643K       356        0
        pagedep     1      8K       8K  78643K         1        0
       inodedep     1     32K      32K  78643K         1        0
         newblk     1      0K       0K  78643K         1        0
        VM swap     7     26K      26K  78643K         7        0
       UVM amap   192     31K      32K  78643K     62384        0
       UVM aobj     4      2K       2K  78643K         4        0
        memdesc     1      4K       4K  78643K         1        0
    crypto data     1      1K       1K  78643K         1        0
    ip6_options     0      0K       1K  78643K       127        0
            NDP     6      0K       0K  78643K        10        0
           temp   105   3973K    4037K  78643K     62348        0
         kqueue     3      4K       4K  78643K         3        0
      SYN cache     2     16K      16K  78643K         2        0
ddb{0}> show all pools
Name      Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
arp         64        6    0        0     1     0     1     1     0     8    0
plcache    128       20    0        0     1     0     1     1     0     8    0
rtpcb      120       19    0       17     1     0     1     1     0     8    0
rtentry    112       45    0        1     2     0     2     2     0     8    0
unpcb      120      919    0      909     1     0     1     1     0     8    0
syncache   296        4    0        4     1     1     0     1     0     8    0
tcpqe       32      485    0      485     2     2     0     1     0     8    0
tcpcb      736      153    0      149     3     2     1     3     0     8    0
inpcb      304      191    0      185     2     1     1     2     0     8    0
nd6         48        6    0        0     1     0     1     1     0     8    0
pkpcb       40        4    0        4     1     1     0     1     0     8    0
kcovpl      48        2    0        0     1     0     1     1     0     8    0
pfosfp      40     1428    0     1005     5     0     5     5     0     8    0
pfosfpen   112     1428    0      714    21     0    21    21     0     8    0
pfstitem    24       14    0       12     1     0     1     1     0     8    0
pfstkey    112       14    0       12     1     0     1     1     0     8    0
pfstate    320       14    0       12     1     0     1     1     0     8    0
pfrule     1360      21    0       16     2     1     1     2     0     8    0
art_heap8  4096       1    0        0     1     0     1     1     0     8    0
art_heap4  256      188    0        0    12     0    12    12     0     8    0
art_table   32      189    0        0     2     0     2     2     0     8    0
art_node    16       44    0        4     1     0     1     1     0     8    0
sysvmsgpl   40       59    0       19     1     0     1     1     0     8    0
semupl     112        6    0        6     1     1     0     1     0     8    0
semapl     112        7    0        0     1     0     1     1     0     8    0
shmpl      112        1    0        0     1     0     1     1     0     8    0
dirhash    1024      17    0        0     3     0     3     3     0     8    0
dino2pl    256    32382    0    30978    88     0    88    88     0     8    0
ffsino     272    32382    0    30978    95     1    94    94     0     8    0
nchpl      144    62766    0    61160    60     0    60    60     0     8    0
uvmvnodes   72     5926    0        0   108     0   108   108     0     8    0
vnodes     224     5926    0        0   349     0   349   349     0     8    0
namei      1024  126717    0   126717     2     1     1     1     0     8    1
percpumem   16       33    0        0     1     0     1     1     0     8    0
scxspl     216   186993    0   186993    10     9     1     8     0     8    1
plimitpl   152       17    0        9     1     0     1     1     0     8    0
sigapl     424    30389    0    30336     6     0     6     6     0     8    0
futexpl     56   117061    0   117061     1     0     1     1     0     8    1
knotepl    112       62    0       42     1     0     1     1     0     8    0
kqueuepl   168    29338    0    29336     1     0     1     1     0     8    0
pipepl     336      106    0       95     3     1     2     2     0     8    1
fdescpl    496    30353    0    30336     3     0     3     3     0     8    0
filepl     152    62341    0    62239     7     2     5     5     0     8    1
lockfpl    104       10    0        9     1     0     1     1     0     8    0
lockfspl    48        5    0        4     1     0     1     1     0     8    0
sessionpl  144       18    0        7     1     0     1     1     0     8    0
pgrppl      48       18    0        7     1     0     1     1     0     8    0
ucredpl     96       87    0       78     1     0     1     1     0     8    0
zombiepl   144    30336    0    30336     2     1     1     1     0     8    1
processpl  1080   30389    0    30336     4     0     4     4     0     8    0
procpl     672    61356    0    61295     6     0     6     6     0     8    0
sockpl     432     1133    0     1115     4     1     3     4     0     8    0
mcl64k     65536      3    0        0     1     0     1     1     0     8    0
mcl16k     16384      1    0        0     1     0     1     1     0     8    0
mcl12k     12288     18    0        0     2     0     2     2     0     8    0
mcl9k      9216       3    0        0     1     0     1     1     0     8    0
mcl8k      8192      18    0        0     3     0     3     3     0     8    0
mcl4k      4096       9    0        0     2     0     2     2     0     8    0
mcl2k2     2112       1    0        0     1     0     1     1     0     8    0
mcl2k      2048     307    0        0    29     3    26    29     0     8    0
mtagpl      96        5    0        0     1     0     1     1     0     8    0
mbufpl     256      649    0        0    26     0    26    26     0     8    0
bufpl      280    33478    0    27217   448     0   448   448     0     8    0
anonpl      24  1761999    0  1738602   143     1   142   142     0   186    0
amapchunkpl 152   93687    0    93009    30     2    28    29     0   158    0
amappl16   200    74298    0    73503    42     0    42    42     0     8    0
amappl15   192        5    0        2     1     0     1     1     0     8    0
amappl14   184    15027    0    15022     1     0     1     1     0     8    0
amappl13   176       28    0       27     1     0     1     1     0     8    0
amappl12   168       35    0       29     1     0     1     1     0     8    0
amappl11   160       47    0       33     1     0     1     1     0     8    0
amappl10   152       21    0       12     1     0     1     1     0     8    0
amappl9    144    15395    0    15393     2     1     1     1     0     8    0
amappl8    136      355    0      295     3     0     3     3     0     8    0
amappl7    128    15169    0    15157     1     0     1     1     0     8    0
amappl6    120       89    0       74     1     0     1     1     0     8    0
amappl5    112    30266    0    30253     1     0     1     1     0     8    0
amappl4    104      518    0      491     2     1     1     2     0     8    0
amappl3     96      532    0      521     1     0     1     1     0     8    0
amappl2     88   256955    0   256880     3     1     2     3     0     8    0
amappl1     80   797266    0   796783    27    15    12    21     0     8    0
amappl      88    61660    0    61533     3     0     3     3     0    92    0
dma4096    4096       1    0        1     1     1     0     1     0     8    0
dma1024    1024       1    0        0     1     0     1     1     0     8    0
dma256     256        6    0        6     1     1     0     1     0     8    0
dma128     128      253    0      253     1     1     0     1     0     8    0
dma64       64        6    0        6     1     1     0     1     0     8    0
dma32       32        7    0        7     1     1     0     1     0     8    0
dma16       16       18    0       17     1     0     1     1     0     8    0
aobjpl      64        3    0        0     1     0     1     1     0     8    0
uaddrrnd    24    30353    0    30336     1     0     1     1     0     8    0
uaddrbest   32        2    0        0     1     0     1     1     0     8    0
uaddr       24    30353    0    30336     1     0     1     1     0     8    0
vmmpekpl   168   173076    0   173051     3     1     2     2     0     8    0
vmmpepl    168  3687313    0  3685120   159    60    99   129     0   357    3
vmsppl     368    30352    0    30336     2     0     2     2     0     8    0
rwobjpl     56   726582    0   725004    50    27    23    24     0     8    0
pdppl      4096   60713    0    60672    65    24    41    45     0     8    0
pvpl        32 10024487    0  9997782   235    14   221   222     0   265    4
pmappl     232    30352    0    30336     2     1     1     2     0     8    0
extentpl    40       58    0       40     1     0     1     1     0     8    0
phpool     112      341    0       35     9     0     9     9     0     8    0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398
witness_checkorder(fffffd80667cd920,9,0) at witness_checkorder+0x108b
rw_enter(fffffd80667cd910,81) at rw_enter+0xd4
rrw_enter(fffffd80667cd910,81) at rrw_enter+0x88 sys/kern/kern_rwlock.c:461
VOP_LOCK(fffffd807e7d02b8,81) at VOP_LOCK+0x4b sys/kern/vfs_vops.c:614
vn_lock(fffffd807e7d02b8,81) at vn_lock+0x6c sys/kern/vfs_vnops.c:575
uvn_get(fffffd80665a4888,0,ffff8000212a34c8,ffff8000212a34ac,0,1) at uvn_get+0x276 uvm_vnode_lock sys/uvm/uvm_vnode.c:1499 [inline]
uvn_get(fffffd80665a4888,0,ffff8000212a34c8,ffff8000212a34ac,0,1) at uvn_get+0x276 sys/uvm/uvm_vnode.c:993
uvm_fault_lower(ffff8000212a3630,ffff8000212a3668,ffff8000212a3530,2) at uvm_fault_lower+0x5e7 sys/uvm/uvm_fault.c:1206
uvm_fault(fffffd807effa5c0,20ff8000,2,3) at uvm_fault+0x17c sys/uvm/uvm_fault.c:603
uvm_fault_wire(fffffd807effa5c0,20ff8000,20ffb000,3) at uvm_fault_wire+0x63 sys/uvm/uvm_fault.c:1487
uvm_map_pageable_wire(fffffd807effa5c0,fffffd80743fb650,fffffd80743fb458,1322,ffffffff81444b7e,0) at uvm_map_pageable_wire+0x30d sys/uvm/uvm_map.c:2365
sys_mlock(ffff8000222d02b0,ffff8000212a3878,ffff8000212a38c0) at sys_mlock+0x180 sys/uvm/uvm_mmap.c:772
syscall(ffff8000212a3940) at syscall+0x4a1 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff8000212a3940) at syscall+0x4a1 sys/arch/amd64/amd64/trap.c:590
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x42b173f09b0, count: -14
ddb{0}> machine ddbcpu 1
Stopped at      x86_ipi_db+0x1a:        addq    $0x8,%rsp
ddb{1}> trace
x86_ipi_db(ffff800020d68ff0) at x86_ipi_db+0x1a sys/arch/amd64/amd64/db_interface.c:352
x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
__mp_lock(ffffffff8289cda8) at __mp_lock+0x120 __mp_lock_spin sys/kern/kern_lock.c:117 [inline]
__mp_lock(ffffffff8289cda8) at __mp_lock+0x120 sys/kern/kern_lock.c:147
upageflttrap(ffff8000222c52d0,c61d3e3a000) at upageflttrap+0x77 sys/arch/amd64/amd64/trap.c:180
usertrap(ffff8000222c52d0) at usertrap+0x21a sys/arch/amd64/amd64/trap.c:406
recall_trap() at recall_trap+0x8
end of kernel
end trace frame: 0x7f7ffffea3e0, count: -7

--
You received this message because you are subscribed to the Google Groups "syzkaller-openbsd-bugs" group.
To unsubscribe from this group and stop receiving emails from it, send an email to syzkaller-openbsd...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/syzkaller-openbsd-bugs/000000000000cea1d805bbdab973%40google.com.

nest.cx is Gmail hosted, use PGP: https://pgp.key-server.io/0x0B1542BD8DF5A1B0
Fingerprint: 5E2B 2D0E 1E03 2046 BEC3 4D50 0B15 42BD 8DF5 A1B0

Dmitry Vyukov

unread,

Feb 22, 2021, 2:51:35 AM2/22/21

to Greg Steuck, syzbot, 'Dmitry Vyukov' via syzkaller-openbsd-bugs

It should have matched once of these:
https://github.com/google/syzkaller/blob/master/pkg/report/openbsd.go#L21-L24

> To view this discussion on the web visit https://groups.google.com/d/msgid/syzkaller-openbsd-bugs/CANMcDo_pbWK7BF9OzNRmDut6Tft%2BSU%3DAYFvYqwxsNrDJF-ZPvQ%40mail.gmail.com.

Greg Steuck

unread,

Feb 22, 2021, 2:48:12 PM2/22/21

to Dmitry Vyukov, syzbot, 'Dmitry Vyukov' via syzkaller-openbsd-bugs

Thanks, clearly that's what Anton wanted to happen:
https://github.com/google/syzkaller/commit/353b1a5cf9686f6fc17c4d35086ae6e004879a53

I'm somewhat surprised that it took 4 months for such a report to show up.

Dmitry Vyukov

unread,

Feb 22, 2021, 2:51:35 PM2/22/21

to Greg Steuck, syzbot, 'Dmitry Vyukov' via syzkaller-openbsd-bugs

On Mon, Feb 22, 2021 at 8:48 PM Greg Steuck <gr...@nest.cx> wrote:
>
> Thanks, clearly that's what Anton wanted to happen:
> https://github.com/google/syzkaller/commit/353b1a5cf9686f6fc17c4d35086ae6e004879a53
>
> I'm somewhat surprised that it took 4 months for such a report to show up.

Before this commit from yesterday:
https://github.com/google/syzkaller/commit/e894953c0c45c8a6d676292a81da90a615133b1c
suppressed reports were thrown away. Now we can see and monitor them.
So I think these reports were happening all the time, we just did not see them.

Greg Steuck

unread,

Feb 22, 2021, 3:21:11 PM2/22/21

to Dmitry Vyukov, syzbot, 'Dmitry Vyukov' via syzkaller-openbsd-bugs

Ah, that explains it. Thanks!

Anton Lindqvist

unread,

Mar 4, 2021, 2:12:25 AM3/4/21

to Greg Steuck, Dmitry Vyukov, syzbot, 'Dmitry Vyukov' via syzkaller-openbsd-bugs

On Mon, Feb 22, 2021 at 12:20:57PM -0800, Greg Steuck wrote:
> Ah, that explains it. Thanks!

I just put up a PR with some tweaks to detection of witness:

https://github.com/google/syzkaller/pull/2468

Reply all

Reply to author

Forward

0 new messages