uvm_fault: uvm_aio_aiodone
0 views
Skip to first unread message
syzbot
Jan 14, 2026, 12:57:32 AM (4 days ago) Jan 14
to syzkaller-o...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 3d903ed5427e vio: Add more feature bit definitions
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=1101859a580000
kernel config: https://syzkaller.appspot.com/x/.config?x=1bc15e68cd2a49e5
dashboard link: https://syzkaller.appspot.com/bug?extid=1da48da04bb08ef91afd
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/3cdc85596811/disk-3d903ed5.raw.xz
bsd.gdb: https://storage.googleapis.com/syzbot-assets/76b91d32bcc2/bsd-3d903ed5.gdb.xz
kernel image: https://storage.googleapis.com/syzbot-assets/7c8b0b129761/kernel-3d903ed5.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+1da48d...@syzkaller.appspotmail.com
uvm_fault(0xffffffff838c2bb8, 0x4b, 0, 1) -> e
kernel: page fault trap, code=0
Stopped at uvm_aio_aiodone+0x223: movl 0x48(%rax),%r12d
TID PID UID PRFLAGS PFLAGS CPU COMMAND
*405049 37234 0 0x14000 0x200 0 aiodoned
uvm_aio_aiodone(fffffd806b948e40) at uvm_aio_aiodone+0x223 sys/uvm/uvm_pager.c:718
uvm_aiodone_daemon(ffff80002a777c90) at uvm_aiodone_daemon+0x212 sys/uvm/uvm_pdaemon.c:358
end trace frame: 0x0, count: 13
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: 3d903ed5427e vio: Add more feature bit definitions
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=1101859a580000
kernel config: https://syzkaller.appspot.com/x/.config?x=1bc15e68cd2a49e5
dashboard link: https://syzkaller.appspot.com/bug?extid=1da48da04bb08ef91afd
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/3cdc85596811/disk-3d903ed5.raw.xz
bsd.gdb: https://storage.googleapis.com/syzbot-assets/76b91d32bcc2/bsd-3d903ed5.gdb.xz
kernel image: https://storage.googleapis.com/syzbot-assets/7c8b0b129761/kernel-3d903ed5.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+1da48d...@syzkaller.appspotmail.com
uvm_fault(0xffffffff838c2bb8, 0x4b, 0, 1) -> e
kernel: page fault trap, code=0
Stopped at uvm_aio_aiodone+0x223: movl 0x48(%rax),%r12d
TID PID UID PRFLAGS PFLAGS CPU COMMAND
*405049 37234 0 0x14000 0x200 0 aiodoned
uvm_aio_aiodone(fffffd806b948e40) at uvm_aio_aiodone+0x223 sys/uvm/uvm_pager.c:718
uvm_aiodone_daemon(ffff80002a777c90) at uvm_aiodone_daemon+0x212 sys/uvm/uvm_pdaemon.c:358
end trace frame: 0x0, count: 13
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
Reply all
Reply to author
Forward
0 new messages