uvm_fault(0xfffffd806c6dbd70, 0x98, 0, 1) -> e fatal page fault in supervisor mode trap type 6 code 0 rip ffffffff81bdae08 cs 8 rflags 10246 cr2 98 cpl 0 rsp ffff80003c3df290 gsbase 0xffff8000299adff0 kgsbase 0x0 panic: trap type 6, code=0, pc=ffffffff81bdae08 Starting stack trace... panic(ffffffff83482441) at panic+0x1d0 sys/kern/subr_prf.c:229 kerntrap(ffff80003c3df1e0) at kerntrap+0x30b alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b dovutimens(ffff80003afc9778,fffffd807a7a1b08,ffff80003c3df3c0) at dovutimens+0x368 sys/kern/vfs_syscalls.c:2771 sys_futimes(ffff80003afc9778,ffff80003c3df510,ffff80003c3df460) at sys_futimes+0x208 sys/kern/vfs_syscalls.c:2813 syscall(ffff80003c3df510) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80003c3df510) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xa6ee9c5fa30, count: 250 End of stack trace. WARNING: SPL NOT LOWERED ON TRAP EXIT 4 0 Stopped at proc_trampoline+0xc7: movl $0,%gs:0x688 TID PID UID PRFLAGS PFLAGS CPU COMMAND *423597 37275 0 0 0 1 syz-executor 215449 18165 0 0 0 0 syz-executor proc_trampoline() at proc_trampoline+0xc7 end of kernel end trace frame: 0x7ccabb789980, count: 14 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic *cpu1: uvm_fault(0xfffffd806c6dbd70, 0x98, 0, 1) -> e ddb{1}> trace proc_trampoline() at proc_trampoline+0xc7 end of kernel end trace frame: 0x7ccabb789980, count: -1 ddb{1}> show registers rdi 0 rsi 0 rbp 0xffff800033395380 rbx 0 rdx 0 rcx 0xffff80003afc8a80 rax 0x2a r8 0xffff8000333952b0 r9 0x1 r10 0x564a923cf1c0147d r11 0x88f7a11205307fac r12 0 r13 0xffffffff831b7c58 Xdoreti+0x18 r14 0 r15 0 rip 0xffffffff81d2b4c7 proc_trampoline+0xc7 cs 0x8 rflags 0x246 rsp 0xffff800033395300 ss 0x10 proc_trampoline+0xc7: movl $0,%gs:0x688 ddb{1}> show proc PROC (syz-executor) tid=423597 pid=37275 tcnt=2 stat=onproc flags process=0 proc=0 runpri=83, usrpri=83, slppri=16, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80003afc8020,0xffff80003afc8fc0 process=0xffff80003c3e7510 user=0xffff800033390000, vmspace=0xfffffd800b0637a0 estcpu=33, cpticks=3, pctcpu=0.0, user=1, sys=2, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 85375 134150 56313 0 2 0 syz-executor *37275 423597 36199 0 7 0 syz-executor 37275 384990 36199 0 2 0x4000000 syz-executor 18165 215449 58976 0 7 0 syz-executor 18165 365116 58976 0 3 0x4000000 sbar syz-executor 11659 127210 55810 0 2 0 syz-executor 83702 446338 59165 0 2 0x2 syz-executor 34278 342249 68026 0 2 0 syz-executor 94415 240152 27471 0 2 0 syz-executor 48968 235641 1 0 3 0x82 nanoslp getty 27471 411948 59165 0 3 0x82 nanoslp syz-executor 56313 482208 59165 0 3 0x82 nanoslp syz-executor 36199 396793 59165 0 3 0x82 nanoslp syz-executor 68026 176424 59165 0 3 0x82 nanoslp syz-executor 58976 165844 59165 0 3 0x82 nanoslp syz-executor 55810 393911 59165 0 3 0x82 nanoslp syz-executor 59165 518346 1 0 3 0x82 nanoslp syz-executor 16924 223339 32128 74 3 0x1100092 bpf pflogd 32128 138127 1 0 3 0x80 sbwait pflogd 29444 326855 1 73 3 0x1100090 kqread syslogd 33250 228462 0 0 3 0x14200 bored smr 52421 231165 0 0 2 0x14200 zerothread 53475 127136 0 0 3 0x14200 aiodoned aiodoned 825 61281 0 0 3 0x14200 syncer update 52888 467150 0 0 3 0x14200 cleaner cleaner 95783 359024 0 0 3 0x14200 reaper reaper 34083 2489 0 0 3 0x14200 pgdaemon pagedaemon 59916 54504 0 0 3 0x14200 bored viomb 59583 343434 0 0 3 0x40014200 acpi0 acpi0 56461 512216 0 0 3 0x40014200 idle1 69190 202956 0 0 3 0x14200 bored softnet1 82087 359936 0 0 3 0x14200 netlock softnet0 6781 229836 0 0 2 0x14200 systqmp 98498 264378 0 0 3 0x14200 bored systq 8546 59038 0 0 3 0x14200 tmoslp softclockmp 80930 437893 0 0 3 0x40014200 tmoslp softclock 87754 254121 0 0 3 0x40014200 idle0 1 405393 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 37275 (syz-executor) thread 0xffff80003afc94e0 (384990) exclusive rrwlock inode r = 0 (0xfffffd8077f04a58) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320 #2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621 #3 VOP_LOCK+0xbd sys/kern/vfs_vops.c:527 #4 ufs_ihashins+0x4f ufs_ihash sys/ufs/ufs/ufs_ihash.c:-1 [inline] #4 ufs_ihashins+0x4f sys/ufs/ufs/ufs_ihash.c:159 #5 ffs_vget+0x187 sys/ufs/ffs/ffs_vfsops.c:1232 #6 ffs_inode_alloc+0x279 sys/ufs/ffs/ffs_alloc.c:393 #7 ufs_makeinode+0xcd sys/ufs/ufs/ufs_vnops.c:1732 #8 ufs_create+0x4e sys/ufs/ufs/ufs_vnops.c:147 #9 VOP_CREATE+0xfe sys/kern/vfs_vops.c:103 #10 vn_open+0x50d sys/kern/vfs_vnops.c:118 #11 doopenat+0x35b sys/kern/vfs_syscalls.c:1155 #12 sys_open+0x59 sys/kern/vfs_syscalls.c:1063 #13 syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline] #13 syscall+0xbd4 sys/arch/amd64/amd64/trap.c:783 #14 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd806ee626d8) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 rw_do_enter_write+0x419 sys/kern/kern_rwlock.c:320 #2 rrw_enter+0xc6 sys/kern/kern_rwlock.c:621 #3 VOP_LOCK+0xbd sys/kern/vfs_vops.c:527 #4 vn_lock+0xa4 sys/kern/vfs_vnops.c:576 #5 vfs_lookup+0x11c sys/kern/vfs_lookup.c:-1 #6 namei+0x7ca sys/kern/vfs_lookup.c:250 #7 vn_open+0x22e sys/kern/vfs_vnops.c:109 #8 doopenat+0x35b sys/kern/vfs_syscalls.c:1155 #9 sys_open+0x59 sys/kern/vfs_syscalls.c:1063 #10 syscall+0xbd4 mi_syscall sys/sys/syscall_mi.h:176 [inline] #10 syscall+0xbd4 sys/arch/amd64/amd64/trap.c:783 #11 Xsyscall+0x128 Process 18165 (syz-executor) thread 0xffff80003afc9778 (365116) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff839a8ec0) #0 witness_lock+0x5f1 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x5f1 sys/kern/subr_witness.c:1160 #1 syscall+0xaf4 mi_syscall sys/sys/syscall_mi.h:175 [inline] #1 syscall+0xaf4 sys/arch/amd64/amd64/trap.c:783 #2 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11044 12068K 12352K 166960K 12581 0 pcb 19 13K 14K 166960K 113 0 rtable 173 8K 9K 166960K 470 0 pf 32 17K 22K 166960K 101 0 ifaddr 27 4K 8K 166960K 64 0 ifgroup 39 1K 2K 166960K 90 0 sysctl 3 1K 9K 166960K 16 0 counters 62 36K 37K 166960K 102 0 ioctlops 0 0K 4K 166960K 1707 0 iov 0 0K 12K 166960K 17 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1301 82K 82K 166960K 1810 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 9K 166960K 8 0 VM map 2 1K 1K 166960K 2 0 sem 9 0K 0K 166960K 14 0 dirhash 12 2K 2K 166960K 15 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 15 50K 89K 166960K 664 0 proc 32 50K 164K 166960K 634 0 subproc 54 3K 5K 166960K 171 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 2 0K 0K 166960K 68 0 in_multi 56 4K 7K 166960K 120 0 ether_multi 1 0K 0K 166960K 1 0 mrt 0 0K 0K 166960K 15 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 79 360K 360K 166960K 79 0 exec 0 0K 1K 166960K 447 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 116 82K 183K 166960K 7462 0 UVM aobj 10 2K 2K 166960K 12 0 pinsyscall 23 46K 103K 166960K 1863 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 18 0 NDP 8 0K 1K 166960K 42 0 temp 35 9075K 9155K 166960K 17305 0 kqueue 3 4K 28K 166960K 86 0 SYN cache 2 16K 16K 166960K 2 0 ddb{1}>