uvm_fault(0xfffffd805de62410, 0x0, 0, 1) -> e
fatal page fault in supervisor mode
trap type 6 code 0 rip ffffffff82f88b68 cs 8 rflags 10207 cr2 0 cpl 0 rsp ffff80003c539500
gsbase 0xffff8000299edff0 kgsbase 0x0
panic: trap type 6, code=0, pc=ffffffff82f88b68
Starting stack trace...
panic(ffffffff833a1b4a) at panic+0x1d0 sys/kern/subr_prf.c:229
kerntrap(ffff80003c539450) at kerntrap+0x30b
alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b
dt_ioctl_record_stop(ffff800001493000) at dt_ioctl_record_stop+0x108 sys/dev/dt/dt_dev.c:586
dtclose(11e5f,81,2000,ffff80003c4b6568) at dtclose+0x109 dt_pcb_purge sys/dev/dt/dt_dev.c:-1 [inline]
dtclose(11e5f,81,2000,ffff80003c4b6568) at dtclose+0x109 sys/dev/dt/dt_dev.c:232
spec_close(ffff80003c539600) at spec_close+0x466 sys/kern/spec_vnops.c:-1
VOP_CLOSE(fffffd805b677540,81,fffffd80097fb270,ffff80003c4b6568) at VOP_CLOSE+0x132 sys/kern/vfs_vops.c:156
vn_closefile(fffffd805b4f0dc0,ffff80003c4b6568) at vn_closefile+0x12b vn_close sys/kern/vfs_vnops.c:292 [inline]
vn_closefile(fffffd805b4f0dc0,ffff80003c4b6568) at vn_closefile+0x12b sys/kern/vfs_vnops.c:615
fdrop(fffffd805b4f0dc0,ffff80003c4b6568) at fdrop+0x121 sys/kern/kern_descrip.c:1280
closef(fffffd805b4f0dc0,ffff80003c4b6568) at closef+0x192 sys/kern/kern_descrip.c:1264
fdfree(ffff80003c4b6568) at fdfree+0x116 sys/kern/kern_descrip.c:1195
exit1(ffff80003c4b6568,0,0,1) at exit1+0x576 sys/kern/kern_exit.c:215
sys_exit(ffff80003c4b6568,ffff80003c539970,ffff80003c5398c0) at sys_exit+0x1a sys/kern/kern_exit.c:-1
syscall(ffff80003c539970) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80003c539970) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:748
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7d19b384d970, count: 242
End of stack trace.
WARNING: SPL NOT LOWERED ON TRAP EXIT 4 0
Stopped at alltraps_kern_meltdown+0xb8: movl %ebx,%gs:0x688
TID PID UID PRFLAGS PFLAGS CPU COMMAND
* 84069 83642 0 0x2 0 1 sshd-session
alltraps_kern_meltdown() at alltraps_kern_meltdown+0xb8
kcopy() at kcopy+0x41
syscall(ffff80003c43b140) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80003c43b140) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:748
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7381088d5b18, count: 11
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{1}> set $lines = 0
ddb{1}> set $maxwidth = 0
ddb{1}> show panic
*cpu1: uvm_fault(0xfffffd805de62410, 0x0, 0, 1) -> e
ddb{1}> trace
alltraps_kern_meltdown() at alltraps_kern_meltdown+0xb8
kcopy() at kcopy+0x41
syscall(ffff80003c43b140) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80003c43b140) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:748
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7381088d5b18, count: -4
ddb{1}> show registers
rdi 0
rsi 0
rbp 0xffff80003c43af40
rbx 0
rdx 0
rcx 0xffff80003c477cb8
rax 0x2a
r8 0xffff80003c43ae70
r9 0x1
r10 0xf1ac226c8d85eb4d
r11 0x12858f24f5ea6722
r12 0x8
r13 0x841751d7000
r14 0xffff80002a2a1cc0
r15 0xffff80003c43af98
rip 0xffffffff832dd20b alltraps_kern_meltdown+0xb8
cs 0x8
rflags 0x246
rsp 0xffff80003c43aec0
ss 0x10
alltraps_kern_meltdown+0xb8: movl %ebx,%gs:0x688
ddb{1}> show proc
PROC (sshd-session) tid=84069 pid=83642 tcnt=1 stat=onproc
flags process=2<EXEC> proc=0
runpri=36, usrpri=52, slppri=36, nice=20
wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0
forw=0xffffffffffffffff, list=0xffff80003c476a90,0xffff80003c4b6578
process=0xffff80003c4b8028 user=0xffff80003c436000, vmspace=0xfffffd805de62d98
estcpu=2, cpticks=4, pctcpu=0.0, user=0, sys=4, intr=0
ddb{1}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
*83642 84069 47741 0 7 0x2 sshd-session
12554 452043 47112 60929 2 0x10 syz-executor
12554 459065 47112 60929 3 0x4000090 fifor syz-executor
53046 224235 90233 0 3 0x80 nanoslp syz-executor
53046 58756 90233 0 3 0x4000080 netcon syz-executor
53046 197454 90233 0 3 0x4000080 fsleep syz-executor
53046 357953 90233 0 3 0x4000080 fsleep syz-executor
52509 73814 60130 -1 3 0x90 nanoslp syz-executor
52509 506015 60130 -1 3 0x4000090 kqpoll syz-executor
52509 44792 60130 -1 3 0x4000090 fsleep syz-executor
82001 226565 4808 0 3 0x80 nanoslp syz-executor
82001 123111 4808 0 3 0x4000080 lockf syz-executor
82001 102667 4808 0 3 0x4000080 fsleep syz-executor
1330 229424 47741 0 3 0x82 sbwait sshd-session
61688 268670 0 0 3 0x14200 acct acct
39157 512119 1 0 3 0x100083 ttyopn getty
70628 455790 0 0 3 0x14200 bored sosplice
2748 497660 61209 0 3 0x2 biowait syz-executor
53168 241891 61209 0 3 0x82 nanoslp syz-executor
88389 222071 61209 0 3 0x82 nanoslp syz-executor
60130 228753 61209 0 3 0x82 nanoslp syz-executor
4808 465418 61209 0 3 0x82 nanoslp syz-executor
80492 159564 61209 0 3 0x82 wait syz-executor
47112 94586 61209 0 3 0x82 nanoslp syz-executor
90233 419803 61209 0 3 0x82 nanoslp syz-executor
61209 150078 48531 0 2 0x2 syz-executor
48531 261527 77042 0 3 0x10008a sigsusp ksh
77042 190215 19262 0 3 0x98 kqread sshd-session
19262 492500 47741 0 3 0x92 kqread sshd-session
47741 66905 1 0 3 0x88 kqread sshd
93513 224081 41238 74 3 0x1100092 bpf pflogd
41238 378610 1 0 3 0x80 sbwait pflogd
58884 228594 32804 73 3 0x1100090 kqread syslogd
32804 515809 1 0 3 0x100082 sbwait syslogd
47597 111964 1 0 3 0x100080 kqread resolvd
40098 195646 52853 77 3 0x100092 kqread dhcpleased
88795 234559 52853 77 3 0x100092 kqread dhcpleased
52853 87902 1 0 3 0x80 kqread dhcpleased
53170 145942 0 0 3 0x14200 bored smr
84691 482303 0 0 2 0x14200 zerothread
75232 156239 0 0 3 0x14200 aiodoned aiodoned
64303 185587 0 0 3 0x14200 syncer update
89582 402186 0 0 3 0x14200 cleaner cleaner
21943 225122 0 0 3 0x14200 reaper reaper
9485 345470 0 0 3 0x14200 pgdaemon pagedaemon
48942 166390 0 0 3 0x14200 bored viomb
34439 312271 0 0 3 0x40014200 acpi0 acpi0
76748 15761 0 0 3 0x40014200 idle1
64988 268298 0 0 3 0x14200 bored softnet7
11764 144764 0 0 3 0x14200 bored softnet6
13175 55534 0 0 3 0x14200 bored softnet5
79122 9857 0 0 3 0x14200 bored softnet4
78639 485662 0 0 3 0x14200 bored softnet3
66183 36494 0 0 3 0x14200 bored softnet2
62720 363904 0 0 3 0x14200 bored softnet1
87498 368889 0 0 2 0x14200 softnet0
85673 96546 0 0 2 0x40014200 systqmp
86298 42811 0 0 3 0x14200 bored systq
77792 164124 0 0 3 0x14200 tmoslp softclockmp
31095 7338 0 0 3 0x40014200 tmoslp softclock
67075 48523 0 0 7 0x40014200 idle0
1 426720 0 0 3 0x82 wait init
0 0 -1 0 3 0x10010200 scheduler swapper
ddb{1}> show all locks
Process 2748 (syz-executor) thread 0xffff8000ffff3238 (497660)
ddb{1}> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10265 11103K 12410K 166960K 15266 0
pcb 17 16K 30K 166960K 871 0
rtable 235 15K 16K 166960K 729 0
pf 42 19K 67487K 166960K 281 0
ifaddr 38 6K 8K 166960K 171 0
ifgroup 63 2K 3K 166960K 317 0
sysctl 4 1K 9K 166960K 27 0
counters 72 37K 38K 166960K 356 0
ioctlops 0 0K 4K 166960K 2012 0
iov 0 0K 16K 166960K 216 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1531 96K 96K 166960K 4459 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 28K 48K 166960K 12 0
VM map 2 1K 1K 166960K 2 0
sem 12 0K 0K 166960K 159 0
dirhash 15 2K 2K 166960K 72 0
ACPI 1692 195K 286K 166960K 12470 0
file desc 17 61K 240K 166960K 3102 0
sigio 0 0K 0K 166960K 102 0
proc 72 115K 164K 166960K 885 0
subproc 72 4K 4K 166960K 77 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 2 0K 0K 166960K 650 0
in_multi 65 5K 7K 166960K 236 0
ether_multi 1 0K 0K 166960K 43 0
mrt 3 0K 0K 166960K 25 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 253 1129K 1129K 166960K 253 0
exec 0 0K 1K 166960K 798 0
fusefs mount 1 32K 32K 166960K 1 0
pfkey data 0 0K 0K 166960K 11 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 278 189K 194K 166960K 30115 0
UVM aobj 53 4K 5K 166960K 63 0
pinsyscall 46 92K 103K 166960K 4274 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 0 0K 0K 166960K 187 0
NDP 14 0K 2K 166960K 121 0
temp 82 8652K 8728K 166960K 156368 0
kqueue 14 20K 33K 166960K 651 0
SYN cache 2 0K 16K 166960K 4 0
ddb{1}> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache 128 26 0 0 1 0 1 1 0 8 0
rtpcb 120 293 0 289 3 2 1 3 0 8 0
rtentry 176 228 0 147 5 0 5 5 0 8 0
unpcb 144 2535 0 2512 19 15 4 6 0 8 3
syncache 336 20 0 20 5 4 1 1 0 8 1
tcpqe 32 6 0 6 3 2 1 1 0 8 1
tcpcb 736 1211 0 1200 22 20 2 7 0 8 0
arp 128 36 0 27 1 0 1 1 0 8 0
inpcb 328 3857 0 3833 60 52 8 24 0 8 5
nd6 144 48 0 15 2 0 2 2 0 8 0
pkpcb 40 72 0 72 10 9 1 1 0 8 1
kcovpl 48 8 0 0 1 0 1 1 0 8 0
mppekey 1024 4 0 4 2 2 0 1 0 8 0
ppxss 1192 116 0 116 7 6 1 1 0 8 1
pppxif 1504 15 0 15 5 4 1 1 0 8 1
pffrag 232 21 0 15 1 0 1 1 0 482 0
pffrnode 88 18 0 12 1 0 1 1 0 8 0
pffrent 40 42 0 36 1 0 1 1 0 8 0
pfosfp 40 1428 0 1005 5 0 5 5 0 8 0
pfosfpen 112 1428 0 714 21 0 21 21 0 8 0
pfrktable 1344 7 0 4 1 0 1 1 0 8 0
pfanchor 1288 1 0 0 1 0 1 1 0 8 0
pftag 88 1 0 0 1 0 1 1 0 8 0
pfstitem 24 275 0 122 1 0 1 1 0 8 0
pfstkey 128 275 0 122 5 0 5 5 0 8 0
pfstate 384 275 0 122 16 0 16 16 0 8 0
pfrule 1344 24 0 18 2 1 1 2 0 8 0
rttmr 136 2 0 2 2 2 0 1 0 8 0
art_heap8 4096 7 0 1 7 1 6 6 0 8 0
art_heap4 256 998 0 450 40 4 36 37 0 8 0
art_table 40 1005 0 451 6 0 6 6 0 8 0
art_node 32 222 0 150 1 0 1 1 0 8 0
sysvmsgpl 40 12 0 8 4 3 1 1 0 8 0
semapl 112 156 0 146 1 0 1 1 0 8 0
shmpl 112 60 0 10 2 0 2 2 0 8 0
dirhash 1024 58 0 39 3 0 3 3 0 8 0
dino2pl 256 7633 0 6121 95 0 95 95 0 8 0
ffsino 296 7633 0 6121 117 0 117 117 0 8 0
nchpl 144 12181 0 11628 64 39 25 64 0 8 0
rtmask 32 21 0 21 6 5 1 1 0 8 1
uvmvnodes 80 7616 0 0 156 0 156 156 0 8 0
vnodes 216 7616 0 0 424 0 424 424 0 8 0
namei 1024 41194 0 41193 10 9 1 3 0 8 0
percpumem 16 193 0 142 1 0 1 1 0 8 0
pfiaddrpl 120 1 0 0 1 0 1 1 0 8 0
kstatmem 264 212 0 178 3 0 3 3 0 8 0
acpiwqpl 32 1 0 1 1 0 1 1 1 8 1
scsiplug 72 10 0 10 7 7 0 1 0 8 0
scxspl 216 82058 0 82057 24 22 2 8 1 8 1
plimitpl 152 1441 0 1423 2 1 1 2 0 8 0
sigapl 424 3433 0 3376 9 2 7 9 0 8 0
knotepl 120 831 0 0 24 0 24 24 0 8 0
kqueuepl 224 1302 0 1291 14 9 5 5 0 8 4
pipepl 344 489 0 462 4 1 3 4 0 8 0
fdescpl 528 3379 0 3346 3 0 3 3 0 8 0
filepl 160 24613 0 24376 62 44 18 21 0 8 7
lockfpl 104 2137 0 2133 6 4 2 3 0 8 1
lockfspl 48 720 0 717 1 0 1 1 0 8 0
sessionpl 144 40 0 29 1 0 1 1 0 8 0
pgrppl 48 85 0 66 1 0 1 1 0 8 0
ucredpl 104 4716 0 4698 1 0 1 1 0 8 0
zombiepl 144 3818 0 3815 2 1 1 1 0 8 0
processpl 1248 3433 0 3376 6 0 6 6 0 8 0
procpl 664 8383 0 8318 9 2 7 9 0 8 0
sosppl 168 19 0 19 6 5 1 1 0 8 1
sockpl 752 6907 0 6856 105 93 12 31 0 8 6
mcl64k 65536 21 0 0 3 1 2 3 0 8 0
mcl16k 16384 14 0 0 2 0 2 2 0 8 0
mcl12k 12288 4 0 0 1 0 1 1 0 8 0
mcl9k 9216 4 0 0 1 0 1 1 0 8 0
mcl8k 8192 9 0 0 2 0 2 2 0 8 0
mcl4k 4096 130 0 0 17 0 17 17 0 8 0
mcl2k2 2112 3 0 0 1 0 1 1 0 8 0
mcl2k 2048 61 0 0 6 1 5 6 0 8 0
mtagpl 96 45 0 0 2 0 2 2 0 8 0
mbufpl 256 1217 0 0 76 0 76 76 0 8 0
bufpl 280 34371 0 28228 441 1 440 440 0 8 0
anonpl 32 17708 0 0 142 0 142 142 0 246 0
amapchunkpl 152 103660 0 103025 75 43 32 34 0 158 6
amappl16 200 12344 0 12031 135 105 30 42 0 8 0
amappl15 192 73 0 73 1 1 0 1 0 8 0
amappl14 184 150 0 136 1 0 1 1 0 8 0
amappl13 176 7 0 7 1 1 0 1 0 8 0
amappl12 168 4051 0 4018 4 1 3 3 0 8 0
amappl11 160 72 0 58 1 0 1 1 0 8 0
amappl10 152 29 0 28 1 0 1 1 0 8 0
amappl9 144 248 0 248 1 1 0 1 0 8 0
amappl8 136 24 0 21 1 0 1 1 0 8 0
amappl7 128 133 0 119 1 0 1 1 0 8 0
amappl6 120 198 0 193 1 0 1 1 0 8 0
amappl5 112 126 0 116 1 0 1 1 0 8 0
amappl4 104 373 0 351 1 0 1 1 0 8 0
amappl3 96 21416 0 21295 4 0 4 4 0 8 0
amappl2 88 804 0 727 2 0 2 2 0 8 0
amappl1 80 24023 0 23253 18 0 18 18 0 8 0
amappl 88 28754 0 28563 5 0 5 5 0 92 0
dma65536 65536 2 0 2 2 2 0 1 0 8 0
dma8192 8192 1 0 1 1 1 0 1 0 8 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 260 0 260 6 5 1 1 0 8 1
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 13 0 13 3 3 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 62 0 10 1 0 1 1 0 8 0
uaddrrnd 24 3379 0 3346 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 3379 0 3346 1 0 1 1 0 8 0
vmmpekpl 168 28381 0 28335 3 0 3 3 0 8 0
vmmpepl 168 218887 0 216298 184 63 121 126 0 357 5
vmsppl 488 3378 0 3346 9 4 5 5 0 8 0
rwobjpl 80 64464 0 55360 193 7 186 186 0 8 0
pdppl 4096 6766 0 6692 132 54 78 86 0 8 4
pvpl 32 26629 0 0 216 1 215 215 0 265 0
pmappl 256 3378 0 3346 3 0 3 3 0 8 0
extentpl 40 45 0 27 1 0 1 1 0 8 0
phpool 112 431 0 101 10 0 10 10 0 8 0
ddb{1}> machine ddbcpu 0
Stopped at x86_ipi_db+0x27: addq $0x8,%rsp
x86_ipi_db(ffffffff837f9ff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
__mp_lock(ffffffff839abab8) at __mp_lock+0x199 __mp_lock_spin sys/kern/kern_lock.c:134 [inline]
__mp_lock(ffffffff839abab8) at __mp_lock+0x199 sys/kern/kern_lock.c:165
softintr_dispatch(2) at softintr_dispatch+0x125 sys/kern/kern_softintr.c:83
dosoftint(2) at dosoftint+0x54 sys/arch/amd64/amd64/intr.c:847
Xsofttty() at Xsofttty+0x27
__sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x3d sys/dev/kcov.c:159
intr_handler(ffff80002a202110,ffff800000079a80) at intr_handler+0xe9 sys/arch/amd64/amd64/intr.c:559
Xintr_ioapic_edge23_untramp() at Xintr_ioapic_edge23_untramp+0x18f
acpicpu_idle() at acpicpu_idle+0x457 sys/dev/acpi/acpicpu_x86.c:1224
sched_idle(ffffffff837f9ff0) at sched_idle+0x391 sys/kern/kern_sched.c:191
end trace frame: 0x0, count: 3
ddb{0}> trace
x86_ipi_db(ffffffff837f9ff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394
x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27
__mp_lock(ffffffff839abab8) at __mp_lock+0x199 __mp_lock_spin sys/kern/kern_lock.c:134 [inline]
__mp_lock(ffffffff839abab8) at __mp_lock+0x199 sys/kern/kern_lock.c:165
softintr_dispatch(2) at softintr_dispatch+0x125 sys/kern/kern_softintr.c:83
dosoftint(2) at dosoftint+0x54 sys/arch/amd64/amd64/intr.c:847
Xsofttty() at Xsofttty+0x27
__sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0x3d sys/dev/kcov.c:159
intr_handler(ffff80002a202110,ffff800000079a80) at intr_handler+0xe9 sys/arch/amd64/amd64/intr.c:559
Xintr_ioapic_edge23_untramp() at Xintr_ioapic_edge23_untramp+0x18f
acpicpu_idle() at acpicpu_idle+0x457 sys/dev/acpi/acpicpu_x86.c:1224
sched_idle(ffffffff837f9ff0) at sched_idle+0x391 sys/kern/kern_sched.c:191
end trace frame: 0x0, count: -12
ddb{0}> machine ddbcpu 1
Stopped at alltraps_kern_meltdown+0xb8: movl %ebx,%gs:0x688
alltraps_kern_meltdown() at alltraps_kern_meltdown+0xb8
kcopy() at kcopy+0x41
syscall(ffff80003c43b140) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80003c43b140) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:748
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7381088d5b18, count: 11
ddb{1}> trace
alltraps_kern_meltdown() at alltraps_kern_meltdown+0xb8
kcopy() at kcopy+0x41
syscall(ffff80003c43b140) at syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline]
syscall(ffff80003c43b140) at syscall+0xbd4 sys/arch/amd64/amd64/trap.c:748
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7381088d5b18, count: -4