*cpu1: uvm_fault(0xfffffd806c928b90, 0x0, 0, 1) -> e
ddb{0}> trace
savectx() at savectx+0xae
end of kernel
end trace frame: 0x7a0d943daed0, count: -1
ddb{0}> show registers
rdi 0
rsi 0
rbp 0xffff80002a2d4370
rbx 0
rdx 0
rcx 0xffff80002a262d08
rax 0x34
r8 0xffff80002a2d42a0
r9 0xffff80002a2d410c
r10 0xfc64f08c346e8c0c
r11 0xdde1d6513634ebc4
r12 0
r13 0
r14 0xffff80002a262d08
r15 0
rip 0xffffffff814cd3ee savectx+0xae
cs 0x8
rflags 0x46
rsp 0xffff80002a2d42f0
ss 0x10
savectx+0xae: movl $0,%gs:0x688
ddb{0}> show proc
PROC (syz-executor) tid=56578 pid=53888 tcnt=1 stat=onproc
flags process=2<EXEC> proc=0
runpri=57, usrpri=57, slppri=16, nice=20
wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
forw=0xffffffffffffffff, list=0xffff80002a2622a8,0xffff8000ffffd4d8
process=0xffff80002a2661c0 user=0xffff80002a2cf000, vmspace=0xfffffd806ec3cd68
estcpu=7, cpticks=534, pctcpu=0.49, user=20, sys=393, intr=121
ddb{0}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
25904 254299 30663 0 2 0 syz-executor
25904 393645 30663 0 3 0x4000080 fsleep syz-executor
67115 261899 34198 0 2 0 syz-executor
67115 395894 34198 0 3 0x4000080 fsleep syz-executor
26981 198206 72936 0 2 0 syz-executor
26981 95341 72936 0 3 0x4000080 fsleep syz-executor
26981 167365 72936 0 3 0x4000080 lockf syz-executor
59632 224122 63824 0 3 0x80 nanoslp syz-executor
59632 218021 63824 0 3 0x4000080 pipewr syz-executor
59632 240176 63824 0 3 0x4000080 fsleep syz-executor
1534 283593 77985 0 3 0x80 nanoslp syz-executor
1534 260913 77985 0 3 0x4000080 sbwait syz-executor
1534 217166 77985 0 3 0x4000080 fsleep syz-executor
45396 135399 51749 0 3 0x80 nanoslp syz-executor
45396 315360 51749 0 3 0x4000080 lockf syz-executor
45396 448825 51749 0 3 0x4000080 lockf syz-executor
45396 168582 51749 0 3 0x4000080 fsleep syz-executor
10992 250197 86423 0 3 0x80 nanoslp syz-executor
10992 109145 86423 0 3 0x4000080 kqread syz-executor
10992 220689 86423 0 3 0x4000080 fsleep syz-executor
51652 490928 1 0 3 0x100083 ttyopn getty
51749 35788 53888 0 3 0x82 nanoslp syz-executor
86423 492040 53888 0 3 0x82 nanoslp syz-executor
30663 267811 53888 0 3 0x82 nanoslp syz-executor
63824 230937 53888 0 3 0x82 nanoslp syz-executor
20747 468753 53888 0 3 0x82 nanoslp syz-executor
72936 24346 53888 0 3 0x82 nanoslp syz-executor
77985 490158 53888 0 3 0x82 nanoslp syz-executor
34198 249716 53888 0 3 0x82 nanoslp syz-executor
*53888 56578 769 0 7 0x2 syz-executor
769 247902 74427 0 3 0x10008a sigsusp ksh
74427 58826 11155 0 3 0x98 kqread sshd-session
11155 909 84130 0 3 0x92 kqread sshd-session
84130 370994 1 0 3 0x88 kqread sshd
80891 35256 49885 74 3 0x1100092 bpf pflogd
49885 351170 1 0 3 0x80 sbwait pflogd
95023 124051 74946 73 3 0x1100090 kqread syslogd
74946 297247 1 0 3 0x100082 sbwait syslogd
75313 69915 1 0 3 0x100080 kqread resolvd
80212 393614 87178 77 3 0x100092 kqread dhcpleased
27212 281934 87178 77 3 0x100092 kqread dhcpleased
87178 299375 1 0 3 0x80 kqread dhcpleased
9984 387528 0 0 3 0x14200 bored smr
93410 392812 0 0 2 0x14200 zerothread
95968 204353 0 0 3 0x14200 aiodoned aiodoned
72912 241104 0 0 3 0x14200 syncer update
10654 282268 0 0 3 0x14200 cleaner cleaner
67869 285358 0 0 3 0x14200 reaper reaper
85364 35449 0 0 3 0x14200 pgdaemon pagedaemon
43385 410572 0 0 3 0x14200 bored viomb
33554 162296 0 0 3 0x40014200 acpi0 acpi0
76282 326893 0 0 3 0x40014200 idle1
53202 326633 0 0 3 0x14200 bored softnet1
46506 31977 0 0 3 0x14200 bored softnet0
54601 179830 0 0 3 0x14200 bored systqmp
27431 14201 0 0 3 0x14200 bored systq
92878 174185 0 0 3 0x14200 tmoslp softclockmp
13515 100877 0 0 3 0x40014200 tmoslp softclock
29916 53340 0 0 3 0x40014200 idle0
1 244474 0 0 3 0x82 wait init
0 0 -1 0 3 0x10010200 scheduler swapper
ddb{0}> show all locks
ddb{0}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10262 11094K 12443K 166960K 15751 0
pcb 19 16K 17K 166960K 909 0
rtable 230 14K 14K 166960K 1162 0
pf 46 19K 83K 166960K 448 0
ifaddr 38 7K 8K 166960K 232 0
ifgroup 72 3K 3K 166960K 449 0
sysctl 4 1K 9K 166960K 36 0
counters 76 37K 38K 166960K 602 0
ioctlops 0 0K 4K 166960K 2642 0
iov 0 0K 24K 166960K 263 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1544 97K 97K 166960K 4975 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 2K 6K 166960K 17 0
VM map 2 1K 1K 166960K 2 0
sem 12 0K 0K 166960K 229 0
dirhash 24 4K 16K 166960K 2337 0
ACPI 1692 195K 286K 166960K 12470 0
file desc 18 65K 240K 166960K 3972 0
sigio 0 0K 0K 166960K 92 0
proc 73 115K 180K 166960K 1181 0
subproc 72 4K 4K 166960K 136 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 0 0K 0K 166960K 801 0
in_multi 72 5K 7K 166960K 338 0
ether_multi 1 0K 0K 166960K 58 0
mrt 1 0K 0K 166960K 35 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 265 1182K 1182K 166960K 265 0
exec 0 0K 1K 166960K 1278 0
fusefs mount 1 32K 32K 166960K 1 0
pfkey data 0 0K 0K 166960K 6 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 270 161K 178K 166960K 37540 0
UVM aobj 148 169K 171K 166960K 159 0
pinsyscall 43 86K 106K 166960K 5294 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 1K 166960K 273 0
NDP 15 0K 2K 166960K 176 0
temp 154 8677K 8932K 166960K 195467 0
kqueue 16 22K 34K 166960K 804 0
SYN cache 2 16K 16K 166960K 2 0
ddb{0}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 26 0 0 1 0 1 1 0 8 0
rtpcb 120 487 0 482 3 2 1 2 0 8 0
rtentry 176 329 0 245 6 1 5 6 0 8 0
unpcb 144 3305 0 3251 24 20 4 6 0 8 1
syncache 336 17 0 17 7 7 0 1 0 8 0
tcpqe 32 3 0 3 2 2 0 1 0 8 0
tcpcb 736 1449 0 1444 35 34 1 7 0 8 0
arp 136 37 0 22 1 0 1 1 0 8 0
inpcb 328 4960 0 4948 45 40 5 10 0 8 3
nd6 152 53 0 32 1 0 1 1 0 8 0
pkpcb 40 18 0 18 8 7 1 1 0 8 1
kcovpl 48 15 0 7 1 0 1 1 0 8 0
mppekey 1024 3 0 3 3 3 0 1 0 8 0
ppxss 1192 222 0 222 3 2 1 1 0 8 1
pppxif 1504 79 0 79 8 7 1 1 0 8 1
pfstscr 40 5 0 3 2 1 1 1 0 8 0
pffrag 232 231 0 221 1 0 1 1 0 482 0
pffrnode 88 230 0 221 1 0 1 1 0 8 0
pffrent 40 544 0 533 1 0 1 1 0 8 0
pfosfp 40 1428 0 1005 5 0 5 5 0 8 0
pfosfpen 112 1428 0 714 21 0 21 21 0 8 0
pfrktable 1344 6 0 6 5 5 0 1 0 8 0
pftag 88 4 0 4 2 2 0 1 0 8 0
pfstitem 24 268 0 178 1 0 1 1 0 8 0
pfstkey 128 275 0 185 3 0 3 3 0 8 0
pfstate 448 269 0 181 10 0 10 10 0 8 0
pfrule 1344 34 0 29 2 1 1 2 0 8 0
rttmr 136 6 0 6 6 6 0 1 0 8 0
art_heap8 4096 3 0 0 3 0 3 3 0 8 0
art_heap4 256 1256 0 897 33 8 25 31 0 8 0
art_table 40 1259 0 897 5 0 5 5 0 8 0
art_node 32 322 0 248 2 0 2 2 0 8 0
sysvmsgpl 40 15 0 3 1 0 1 1 0 8 0
semupl 112 5 0 5 4 4 0 1 0 8 0
semapl 112 224 0 214 1 0 1 1 0 8 0
shmpl 112 71 0 8 2 0 2 2 0 8 0
dirhash 1024 797 0 787 6 2 4 6 0 8 0
dino2pl 256 9218 0 7703 96 0 96 96 0 8 0
ffsino 296 9218 0 7703 118 0 118 118 0 8 0
nchpl 144 14730 0 14159 65 34 31 65 0 8 6
rtmask 32 41 0 41 10 9 1 1 0 8 1
vnodes 216 4581 0 0 255 0 255 255 0 8 0
namei 1024 53376 0 53376 4 3 1 2 0 8 1
percpumem 16 316 0 263 1 0 1 1 0 8 0
vcpupl 3968 83 0 1 11 0 11 11 0 8 0
vmpool 840 85 0 3 10 0 10 10 0 8 0
kstatmem 264 298 0 262 3 0 3 3 0 8 0
acpiwqpl 32 3 0 3 1 0 1 1 1 8 1
scsiplug 72 28 0 28 9 8 1 1 0 8 1
scxspl 216 105470 0 105470 16 15 1 8 1 8 1
plimitpl 152 1459 0 1442 1 0 1 1 0 8 0
sigapl 424 4261 0 4213 9 3 6 8 0 8 0
knotepl 120 658 0 0 17 0 17 17 0 8 0
kqueuepl 224 1732 0 1721 20 19 1 5 0 8 0
pipepl 344 581 0 553 12 9 3 9 0 8 0
fdescpl 528 4201 0 4169 3 0 3 3 0 8 0
filepl 160 31265 0 30805 41 21 20 20 0 8 0
lockfpl 104 1360 0 1352 1 0 1 1 0 8 0
lockfspl 48 501 0 497 1 0 1 1 0 8 0
sessionpl 144 45 0 36 1 0 1 1 0 8 0
pgrppl 48 162 0 145 1 0 1 1 0 8 0
ucredpl 104 5877 0 5864 1 0 1 1 0 8 0
zombiepl 144 4602 0 4601 1 0 1 1 0 8 0
processpl 1232 4261 0 4213 6 0 6 6 0 8 0
procpl 664 10398 0 10337 8 2 6 8 0 8 0
sosppl 176 42 0 42 10 10 0 1 0 8 0
sockpl 752 8983 0 8912 69 59 10 20 0 8 2
mcl64k 65536 10 0 0 2 0 2 2 0 8 0
mcl16k 16384 2 0 0 1 0 1 1 0 8 0
mcl12k 12288 2 0 0 1 0 1 1 0 8 0
mcl9k 9216 2 0 0 1 0 1 1 0 8 0
mcl8k 8192 4 0 0 1 0 1 1 0 8 0
mcl4k 4096 111 0 0 14 0 14 14 0 8 0
mcl2k2 2112 1 0 0 1 0 1 1 0 8 0
mcl2k 2048 100 0 0 11 0 11 11 0 8 0
mtagpl 96 75 0 0 2 0 2 2 0 8 0
mbufpl 256 1468 0 0 92 0 92 92 0 8 0
bufpl 280 43419 0 37283 439 0 439 439 0 8 0
anonpl 32 15946 0 0 129 0 129 129 0 246 0
amapchunkpl 152 131404 0 130753 85 53 32 37 0 158 5
amappl16 200 15047 0 14950 116 101 15 34 0 8 4
amappl15 192 65 0 65 1 1 0 1 0 8 0
amappl14 184 4 0 4 1 1 0 1 0 8 0
amappl13 176 511 0 510 1 0 1 1 0 8 0
amappl12 168 4649 0 4606 3 0 3 3 0 8 0
amappl11 160 56 0 56 2 2 0 1 0 8 0
amappl10 152 84 0 70 1 0 1 1 0 8 0
amappl9 144 276 0 275 2 1 1 1 0 8 0
amappl8 136 28 0 24 1 0 1 1 0 8 0
amappl7 128 108 0 106 1 0 1 1 0 8 0
amappl6 120 383 0 369 1 0 1 1 0 8 0
amappl5 112 87 0 76 1 0 1 1 0 8 0
amappl4 104 544 0 513 1 0 1 1 0 8 0
amappl3 96 26737 0 26615 5 1 4 4 0 8 0
amappl2 88 694 0 633 2 0 2 2 0 8 0
amappl1 80 27866 0 27272 16 2 14 15 0 8 0
amappl 88 35960 0 35768 5 0 5 5 0 92 0
uvmvnodes 80 210 0 0 5 0 5 5 0 8 0
dma65536 65536 1 0 1 1 1 0 1 0 8 0
dma32768 32768 1 0 1 1 1 0 1 0 8 0
dma4096 4096 3 0 3 3 3 0 1 0 8 0
dma2048 2048 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma512 512 1 0 1 1 1 0 1 0 8 0
dma256 256 8 0 8 3 2 1 1 0 8 1
dma128 128 260 0 260 6 6 0 1 0 8 0
dma64 64 7 0 7 2 2 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 20 0 19 1 0 1 1 0 8 0
aobjpl 72 158 0 11 3 0 3 3 0 8 0
uaddrrnd 24 4201 0 4169 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 4201 0 4169 1 0 1 1 0 8 0
vmmpekpl 168 30433 0 30361 4 0 4 4 0 8 0
vmmpepl 168 269356 0 267275 146 47 99 113 0 357 0
vmsppl 488 4200 0 4169 5 0 5 5 0 8 0
rwobjpl 80 69413 0 68031 42 7 35 38 0 8 0
pdppl 4096 8580 0 8426 219 63 156 156 0 8 2
pvpl 32 22271 0 0 180 1 179 179 0 265 0
pmappl 256 4285 0 4172 8 0 8 8 0 8 0
extentpl 40 45 0 27 1 0 1 1 0 8 0
phpool 112 556 0 129 13 0 13 13 0 8 0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
savectx() at savectx+0xae
end of kernel
end trace frame: 0x7a0d943daed0, count: -1
ddb{0}> machine ddbcpu 1
Stopped at x86_ipi_db+0x27: addq $0x8,%rsp
x86_ipi_db(ffff8000299ddff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
x86_bus_space_io_read_4(b008,0) at x86_bus_space_io_read_4+0x37 sys/arch/amd64/amd64/bus_space.c:682
acpitimer_delay(1) at acpitimer_delay+0x76 acpitimer_read sys/dev/acpi/acpitimer.c:142 [inline]
acpitimer_delay(1) at acpitimer_delay+0x76 sys/dev/acpi/acpitimer.c:120
comcnputc(800,70) at comcnputc+0x29b sys/dev/ic/com.c:1269
cnputc(70) at cnputc+0x67 sys/dev/cons.c:218
kputchar(70,5,0) at kputchar+0x2ed sys/kern/subr_prf.c:367
kprintf() at kprintf+0x29a5 sys/kern/subr_prf.c:-1
printf(ffffffff83459b22) at printf+0x8b sys/kern/subr_prf.c:529
trap_print(ffff800034fd5ef0,6) at trap_print+0x70 sys/arch/amd64/amd64/trap.c:653
kerntrap(ffff800034fd5ef0) at kerntrap+0x2e6 sys/arch/amd64/amd64/trap.c:516
alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b
dt_ioctl_record_stop(ffff800001627000) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:593
end trace frame: 0xffff800034fd6020, count: 0
ddb{1}> trace
x86_ipi_db(ffff8000299ddff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
x86_bus_space_io_read_4(b008,0) at x86_bus_space_io_read_4+0x37 sys/arch/amd64/amd64/bus_space.c:682
acpitimer_delay(1) at acpitimer_delay+0x76 acpitimer_read sys/dev/acpi/acpitimer.c:142 [inline]
acpitimer_delay(1) at acpitimer_delay+0x76 sys/dev/acpi/acpitimer.c:120
comcnputc(800,70) at comcnputc+0x29b sys/dev/ic/com.c:1269
cnputc(70) at cnputc+0x67 sys/dev/cons.c:218
kputchar(70,5,0) at kputchar+0x2ed sys/kern/subr_prf.c:367
kprintf() at kprintf+0x29a5 sys/kern/subr_prf.c:-1
printf(ffffffff83459b22) at printf+0x8b sys/kern/subr_prf.c:529
trap_print(ffff800034fd5ef0,6) at trap_print+0x70 sys/arch/amd64/amd64/trap.c:653
kerntrap(ffff800034fd5ef0) at kerntrap+0x2e6 sys/arch/amd64/amd64/trap.c:516
alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b
dt_ioctl_record_stop(ffff800001627000) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:593
dtclose(11e5f,81,2000,ffff8000ffff3770) at dtclose+0x109 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline]
dtclose(11e5f,81,2000,ffff8000ffff3770) at dtclose+0x109 sys/dev/dt/dt_dev.c:239
spec_close(ffff800034fd60a0) at spec_close+0x466 sys/kern/spec_vnops.c:-1
VOP_CLOSE(fffffd805e6aee90,81,fffffd80097fd5b0,ffff8000ffff3770) at VOP_CLOSE+0x132 sys/kern/vfs_vops.c:156
vn_closefile(fffffd8073ffe790,ffff8000ffff3770) at vn_closefile+0x12b vn_close sys/kern/vfs_vnops.c:292 [inline]
vn_closefile(fffffd8073ffe790,ffff8000ffff3770) at vn_closefile+0x12b sys/kern/vfs_vnops.c:615
fdrop(fffffd8073ffe790,ffff8000ffff3770) at fdrop+0x121 sys/kern/kern_descrip.c:1280
closef(fffffd8073ffe790,ffff8000ffff3770) at closef+0x192 sys/kern/kern_descrip.c:1264
fdfree(ffff8000ffff3770) at fdfree+0x116 sys/kern/kern_descrip.c:1195
exit1(ffff8000ffff3770,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215
sys_exit(ffff8000ffff3770,ffff800034fd6410,ffff800034fd6360) at sys_exit+0x1a sys/kern/kern_exit.c:-1
syscall(ffff800034fd6410) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff800034fd6410) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:775
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x73ec12498900, count: -25