šjšjuvm_fault(0xfffffd806c6009a0, 0x98, 0, 1) -> e fatal page fault in supervisor mode trap type 6 code 0 rip ffffffff8250fed8 cs 8 rflags 10246 cr2 98 cpl 0 rsp ffff80003c40adb0 gsbase 0xffff8000299bdff0 kgsbase 0x0 panic: trap type 6, code=0, pc=ffffffff8250fed8 Starting stack trace... panic(ffffffff83483ffa) at panic+0x1d0 sys/kern/subr_prf.c:229 kerntrap(ffff80003c40ad00) at kerntrap+0x30b alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b dovutimens(ffff8000357c9cb8,fffffd806b84d638,ffff80003c40aec0) at dovutimens+0x368 sys/kern/vfs_syscalls.c:2771 sys_futimens(ffff8000357c9cb8,ffff80003c40b010,ffff80003c40af60) at sys_futimens+0xb3 sys/kern/vfs_syscalls.c:2847 syscall(ffff80003c40b010) at syscall+0xb17 mi_syscall sys/sys/syscall_mi.h:176 [inline] syscall(ffff80003c40b010) at syscall+0xb17 sys/arch/amd64/amd64/trap.c:783 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x27cc71d3570, count: 250 End of stack trace. WARNING: SPL NOT LOWERED ON TRAP EXIT 4 0 Stopped at proc_trampoline+0xc7: movl $0,%gs:0x688 TID PID UID PRFLAGS PFLAGS CPU COMMAND *498603 35234 0 0 0 1 syz-executor 267620 86143 0 0 0 0 syz-executor proc_trampoline() at proc_trampoline+0xc7 end of kernel end trace frame: 0x7f78ac9031d0, count: 14 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic *cpu1: uvm_fault(0xfffffd806c6009a0, 0x98, 0, 1) -> e ddb{1}> trace proc_trampoline() at proc_trampoline+0xc7 end of kernel end trace frame: 0x7f78ac9031d0, count: -1 ddb{1}> show registers rdi 0 rsi 0 rbp 0xffff80003c405800 rbx 0 rdx 0 rcx 0xffff8000357c9788 rax 0x2a r8 0xffff80003c405730 r9 0x1 r10 0xc1a4546cb64e313e r11 0x3e3d7ec48b914c92 r12 0 r13 0xffffffff82dcee58 Xdoreti+0x18 r14 0 r15 0 rip 0xffffffff811f54c7 proc_trampoline+0xc7 cs 0x8 rflags 0x246 rsp 0xffff80003c405780 ss 0x10 proc_trampoline+0xc7: movl $0,%gs:0x688 ddb{1}> show proc PROC (syz-executor) tid=498603 pid=35234 tcnt=2 stat=onproc flags process=0 proc=0 runpri=50, usrpri=50, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff8000357c8560,0xffff8000357c9cc8 process=0xffff8000fffe26a8 user=0xffff80003c400000, vmspace=0xfffffd806c6009a0 estcpu=36, cpticks=2, pctcpu=0.0, user=1, sys=1, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND *35234 498603 20232 0 7 0 syz-executor 35234 277498 20232 0 3 0x4000000 sbar syz-executor 25327 226007 51991 0 2 0 syz-executor 86143 267620 25274 0 7 0 syz-executor 86143 273562 25274 0 2 0x4000000 syz-executor 86653 483728 76893 0 2 0 syz-executor 86653 326259 76893 0 3 0x4000080 fsleep syz-executor 41361 405306 75694 0 3 0x80 nanoslp syz-executor 41361 143815 75694 0 3 0x4000080 kqsel syz-executor 41361 432799 75694 0 3 0x4000080 fsleep syz-executor 5514 186768 22054 0 3 0x80 nanoslp syz-executor 5514 124629 22054 0 3 0x4000080 kqsel syz-executor 5514 84546 22054 0 3 0x4000080 fsleep syz-executor 5914 127307 0 0 3 0x14280 nfsidl nfsio 49250 288284 0 0 3 0x14280 nfsidl nfsio 38288 444818 0 0 3 0x14280 nfsidl nfsio 32758 352476 0 0 3 0x14280 nfsidl nfsio 85496 271988 0 0 3 0x14280 nfsidl nfsio 51579 68963 0 0 3 0x14280 nfsidl nfsio 17163 195143 0 0 3 0x14280 nfsidl nfsio 339 449751 0 0 3 0x14280 nfsidl nfsio 44929 111136 0 0 3 0x14280 nfsidl nfsio 68818 290083 0 0 3 0x14280 nfsidl nfsio 51110 323586 0 0 3 0x14280 nfsidl nfsio 81693 283183 0 0 3 0x14280 nfsidl nfsio 42427 34124 0 0 3 0x14280 nfsidl nfsio 14207 193512 0 0 3 0x14280 nfsidl nfsio 31963 132192 0 0 3 0x14280 nfsidl nfsio 16825 412612 0 0 3 0x14280 nfsidl nfsio 2725 445325 0 0 3 0x14280 nfsidl nfsio 5358 63322 0 0 3 0x14280 nfsidl nfsio 21774 393420 0 0 3 0x14280 nfsidl nfsio 1961 405967 0 0 3 0x14280 nfsidl nfsio 34688 309727 52770 0 3 0x100082 sbwait arp 52770 159668 75781 0 3 0x10008a sigsusp sh 75781 328751 38297 0 3 0x82 wait syz-executor 51991 171298 38297 0 3 0x82 nanoslp syz-executor 76893 479626 38297 0 3 0x82 nanoslp syz-executor 20232 392797 38297 0 3 0x82 nanoslp syz-executor 63159 358239 38297 0 3 0x2 biowait syz-executor 25274 188320 38297 0 3 0x82 nanoslp syz-executor 22054 483276 38297 0 2 0x2 syz-executor 75694 524051 38297 0 3 0x82 nanoslp syz-executor 38297 271817 91246 0 2 0x2 syz-executor 91246 323006 25145 0 3 0x10008a sigsusp ksh 25145 123343 94378 0 3 0x98 kqread sshd-session 94378 123776 28176 0 3 0x92 kqread sshd-session 59988 485798 1 0 3 0x100083 ttyopn getty 28176 427645 1 0 3 0x88 kqread sshd 14314 133944 65926 74 3 0x1100092 bpf pflogd 65926 458105 1 0 3 0x80 sbwait pflogd 62598 185508 72908 73 3 0x1100090 kqread syslogd 72908 110451 1 0 3 0x100082 sbwait syslogd 43556 315524 1 0 3 0x100080 kqread resolvd 5663 96535 40805 77 3 0x100092 kqread dhcpleased 21515 25067 40805 77 3 0x100092 kqread dhcpleased 40805 509711 1 0 3 0x80 kqread dhcpleased 22560 244818 0 0 3 0x14200 bored smr 77930 328338 0 0 3 0x14200 pgzero zerothread 97543 131736 0 0 3 0x14200 aiodoned aiodoned 33806 440954 0 0 3 0x14200 syncer update 84356 445003 0 0 3 0x14200 cleaner cleaner 6394 175017 0 0 3 0x14200 reaper reaper 56686 231396 0 0 3 0x14200 pgdaemon pagedaemon 89933 152493 0 0 3 0x14200 bored viomb 3759 302263 0 0 3 0x40014200 acpi0 acpi0 98556 392812 0 0 3 0x40014200 idle1 80507 128933 0 0 3 0x14200 bored softnet1 12121 461029 0 0 3 0x14200 netlock softnet0 69658 118407 0 0 2 0x40014200 systqmp 28773 24199 0 0 3 0x14200 bored systq 51993 249669 0 0 3 0x14200 tmoslp softclockmp 62144 35949 0 0 3 0x40014200 tmoslp softclock 70416 309304 0 0 3 0x40014200 idle0 1 214817 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 35234 (syz-executor) thread 0xffff8000357c9cb8 (277498) Process 63159 (syz-executor) thread 0xffff8000ffffd230 (358239) ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11066 12149K 14029K 166960K 12971 0 pcb 19 12K 12K 166960K 64 0 rtable 204 6K 7K 166960K 376 0 pf 36 18K 82K 166960K 78 0 ifaddr 37 6K 6K 166960K 51 0 ifgroup 52 2K 2K 166960K 73 0 sysctl 4 1K 9K 166960K 10 0 counters 70 37K 37K 166960K 84 0 ioctlops 0 0K 4K 166960K 1534 0 iov 0 0K 12K 166960K 9 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1373 86K 86K 166960K 1652 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 3 5K 5K 166960K 7 0 VM map 2 1K 1K 166960K 2 0 sem 6 0K 0K 166960K 9 0 dirhash 12 2K 2K 166960K 15 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 18 65K 89K 166960K 356 0 sigio 0 0K 0K 166960K 2 0 proc 72 115K 147K 166960K 566 0 subproc 73 4K 4K 166960K 73 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 39 0 in_multi 69 5K 6K 166960K 97 0 ether_multi 1 0K 0K 166960K 3 0 mrt 0 0K 0K 166960K 12 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 67 307K 307K 166960K 67 0 exec 0 0K 1K 166960K 414 0 fusefs mount 1 32K 32K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 230 161K 180K 166960K 5217 0 UVM aobj 13 2K 2K 166960K 15 0 pinsyscall 44 88K 106K 166960K 1534 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 2 0K 0K 166960K 13 0 NDP 12 0K 1K 166960K 32 0 temp 44 9075K 9139K 166960K 15522 0 kqueue 14 22K 26K 166960K 66 0 SYN cache 2 16K 16K 166960K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 26 0 0 1 0 1 1 0 8 0 rtpcb 120 53 0 49 1 0 1 1 0 8 0 rtentry 176 110 0 21 5 0 5 5 0 8 0 unpcb 144 275 0 258 6 0 6 6 0 8 5 syncache 336 4 0 4 1 0 1 1 0 8 1 tcpcb 736 92 0 85 4 0 4 4 0 8 3 arp 136 18 0 1 1 0 1 1 0 8 0 inpcb 328 249 0 236 4 0 4 4 0 8 2 nd6 152 21 0 6 1 0 1 1 0 8 0 pkpcb 40 4 0 4 1 0 1 1 0 8 1 kcovpl 48 8 0 0 1 0 1 1 0 8 0 ppxss 1192 5 0 5 1 0 1 1 0 8 1 pfstscr 40 2 0 2 1 0 1 1 0 8 1 pffrag 232 6 0 1 1 0 1 1 0 482 0 pffrnode 88 5 0 1 1 0 1 1 0 8 0 pffrent 40 7 0 2 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 29 0 0 1 0 1 1 0 8 0 pfstkey 128 33 0 4 1 0 1 1 0 8 0 pfstate 448 31 0 2 4 0 4 4 0 8 0 pfrule 1360 29 0 22 2 0 2 2 0 8 0 rttmr 136 3 0 3 1 0 1 1 0 8 1 art_heap8 4096 2 0 0 2 0 2 2 0 8 0 art_heap4 256 421 0 82 24 0 24 24 0 8 1 art_table 40 423 0 82 4 0 4 4 0 8 0 art_node 32 110 0 28 1 0 1 1 0 8 0 sysvmsgpl 40 3 0 3 1 0 1 1 0 8 1 semapl 112 6 0 2 1 0 1 1 0 8 0 shmpl 112 12 0 2 1 0 1 1 0 8 0 dirhash 1024 19 0 2 3 0 3 3 0 8 0 dino2pl 256 2024 0 563 93 0 93 93 0 8 0 ffsino 296 2024 0 563 114 0 114 114 0 8 0 nchpl 144 2525 0 827 64 0 64 64 0 8 0 rtmask 32 1 0 1 1 0 1 1 0 8 1 vnodes 216 2292 0 0 128 0 128 128 0 8 0 namei 1024 8193 0 8192 1 0 1 1 0 8 0 percpumem 16 57 0 7 1 0 1 1 0 8 0 kstatmem 264 38 0 12 2 0 2 2 0 8 0 scsiplug 72 1 0 1 1 0 1 1 0 8 1 scxspl 216 9225 0 9224 9 1 8 8 1 8 7 plimitpl 152 75 0 58 1 0 1 1 0 8 0 sigapl 424 702 0 634 8 0 8 8 0 8 0 knotepl 120 316 0 0 10 0 10 10 0 8 0 kqueuepl 224 151 0 138 5 0 5 5 0 8 4 pipepl 344 133 0 106 3 0 3 3 0 8 0 fdescpl 528 666 0 634 3 0 3 3 0 8 0 filepl 160 3262 0 3042 21 0 21 21 0 8 10 lockfpl 104 98 0 95 1 0 1 1 0 8 0 lockfspl 48 42 0 39 1 0 1 1 0 8 0 sessionpl 144 33 0 24 1 0 1 1 0 8 0 pgrppl 48 45 0 28 1 0 1 1 0 8 0 ucredpl 104 357 0 344 1 0 1 1 0 8 0 zombiepl 144 634 0 634 1 0 1 1 0 8 1 processpl 1232 702 0 634 6 0 6 6 0 8 0 procpl 664 1116 0 1041 8 0 8 8 0 8 1 sockpl 752 591 0 557 18 0 18 18 0 8 13 mcl64k 65536 4 0 0 1 0 1 1 0 8 0 mcl16k 16384 1 0 0 1 0 1 1 0 8 0 mcl9k 9216 1 0 0 1 0 1 1 0 8 0 mcl8k 8192 2 0 0 1 0 1 1 0 8 0 mcl4k 4096 108 0 0 14 0 14 14 0 8 0 mcl2k2 2112 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 22 0 0 3 0 3 3 0 8 0 mtagpl 96 4 0 0 1 0 1 1 0 8 0 mbufpl 256 194 0 0 12 0 12 12 0 8 0 bufpl 280 3149 0 109 218 0 218 218 0 8 0 anonpl 32 9662 0 0 78 0 78 78 0 246 0 amapchunkpl 152 15933 0 15484 35 0 35 35 0 158 15 amappl16 200 2233 0 2211 6 1 5 5 0 8 3 amappl15 192 63 0 63 1 1 0 1 0 8 0 amappl14 184 444 0 441 1 0 1 1 0 8 0 amappl13 176 138 0 125 1 0 1 1 0 8 0 amappl12 168 925 0 895 2 0 2 2 0 8 0 amappl11 160 45 0 45 1 1 0 1 0 8 0 amappl10 152 62 0 48 1 0 1 1 0 8 0 amappl9 144 276 0 276 1 1 0 1 0 8 0 amappl8 136 101 0 99 1 0 1 1 0 8 0 amappl7 128 149 0 135 1 0 1 1 0 8 0 amappl6 120 160 0 157 1 0 1 1 0 8 0 amappl5 112 100 0 90 1 0 1 1 0 8 0 amappl4 104 301 0 281 1 0 1 1 0 8 0 amappl3 96 3036 0 2925 4 0 4 4 0 8 0 amappl2 88 551 0 489 2 0 2 2 0 8 0 amappl1 80 10824 0 10194 17 0 17 17 0 8 3 amappl 88 4425 0 4271 5 0 5 5 0 92 0 uvmvnodes 80 104 0 0 3 0 3 3 0 8 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 254 0 254 2 1 1 1 0 8 1 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 14 0 2 1 0 1 1 0 8 0 uaddrrnd 24 666 0 634 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 666 0 634 1 0 1 1 0 8 0 vmmpekpl 168 7344 0 7310 2 0 2 2 0 8 0 vmmpepl 168 50512 0 48595 100 0 100 100 0 357 10 vmsppl 488 665 0 634 5 0 5 5 0 8 0 rwobjpl 80 17025 0 15954 27 0 27 27 0 8 3 pdppl 4096 1339 0 1268 103 26 77 83 0 8 6 pvpl 32 16735 0 0 135 0 135 135 0 265 0 pmappl 256 665 0 634 3 0 3 3 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 275 0 28 8 0 8 8 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x27: addq $0x8,%rsp x86_ipi_db(ffffffff83916ff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff8396a1c0) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:142 [inline] __mp_lock(ffffffff8396a1c0) at __mp_lock+0x192 sys/kern/kern_lock.c:173 softintr_dispatch(2) at softintr_dispatch+0x125 sys/kern/kern_softintr.c:83 dosoftint(2) at dosoftint+0x54 sys/arch/amd64/amd64/intr.c:862 Xsofttty() at Xsofttty+0x27 __mp_lock(ffffffff8396a1c0) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:142 [inline] __mp_lock(ffffffff8396a1c0) at __mp_lock+0x192 sys/kern/kern_lock.c:173 intr_handler(ffff80003c3e8b10,ffff8000002a3480) at intr_handler+0xe9 sys/arch/amd64/amd64/intr.c:560 Xintr_ioapic_edge23_untramp() at Xintr_ioapic_edge23_untramp+0x18f end of kernel end trace frame: 0x7a21aecb39e0, count: 5 ddb{0}> trace x86_ipi_db(ffffffff83916ff0) at x86_ipi_db+0x27 sys/arch/amd64/amd64/db_interface.c:394 x86_ipi_handler() at x86_ipi_handler+0xd9 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff8396a1c0) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:142 [inline] __mp_lock(ffffffff8396a1c0) at __mp_lock+0x192 sys/kern/kern_lock.c:173 softintr_dispatch(2) at softintr_dispatch+0x125 sys/kern/kern_softintr.c:83 dosoftint(2) at dosoftint+0x54 sys/arch/amd64/amd64/intr.c:862 Xsofttty() at Xsofttty+0x27 __mp_lock(ffffffff8396a1c0) at __mp_lock+0x192 __mp_lock_spin sys/kern/kern_lock.c:142 [inline] __mp_lock(ffffffff8396a1c0) at __mp_lock+0x192 sys/kern/kern_lock.c:173 intr_handler(ffff80003c3e8b10,ffff8000002a3480) at intr_handler+0xe9 sys/arch/amd64/amd64/intr.c:560 Xintr_ioapic_edge23_untramp() at Xintr_ioapic_edge23_untramp+0x18f end of kernel end trace frame: 0x7a21aecb39e0, count: -10 ddb{0}> machine ddbcpu 1 Stopped at proc_trampoline+0xc7: movl $0,%gs:0x688 proc_trampoline() at proc_trampoline+0xc7 end of kernel end trace frame: 0x7f78ac9031d0, count: 14 ddb{1}> trace proc_trampoline() at proc_trampoline+0xc7 end of kernel end trace frame: 0x7f78ac9031d0, count: -1