uvm_fault(0xffffffff82e4b670, 0xffff800000e86008, 0, 2) -> e kernel: page fault trap, code=2 Stopped at unveil_add_vnode+0xb6: movq %rax,0x8(%r14,%r13,1) TID PID UID PRFLAGS PFLAGS CPU COMMAND * 39111 92316 32767 0x8502010 0x4080000 1K syz-executor.1 291482 69752 32767 0x8000010 0x4000000 0 syz-executor.2 unveil_add_vnode(ffff8000373c47f0,fffffd807a870a48) at unveil_add_vnode+0xb6 sys/kern/kern_unveil.c:391 unveil_add(ffff8000373c47f0,ffff800035f95d08,ffff800035f95dc3) at unveil_add+0x30b sys/kern/kern_unveil.c:494 sys_unveil(ffff8000373c47f0,ffff800035f95ef0,ffff800035f95e40) at sys_unveil+0x41b sys/kern/vfs_syscalls.c:1023 syscall(ffff800035f95ef0) at syscall+0x854 mi_syscall sys/sys/syscall_mi.h:180 [inline] syscall(ffff800035f95ef0) at syscall+0x854 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xecc1fb2a220, count: 10 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic *cpu1: uvm_fault(0xffffffff82e4b670, 0xffff800000e86008, 0, 2) -> e ddb{1}> trace unveil_add_vnode(ffff8000373c47f0,fffffd807a870a48) at unveil_add_vnode+0xb6 sys/kern/kern_unveil.c:391 unveil_add(ffff8000373c47f0,ffff800035f95d08,ffff800035f95dc3) at unveil_add+0x30b sys/kern/kern_unveil.c:494 sys_unveil(ffff8000373c47f0,ffff800035f95ef0,ffff800035f95e40) at sys_unveil+0x41b sys/kern/vfs_syscalls.c:1023 syscall(ffff800035f95ef0) at syscall+0x854 mi_syscall sys/sys/syscall_mi.h:180 [inline] syscall(ffff800035f95ef0) at syscall+0x854 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xecc1fb2a220, count: -5 ddb{1}> show registers rdi 0xffff80002c6ce000 rsi 0x182e __ALIGN_SIZE+0x82e rbp 0xffff800035f95c30 rbx 0xffff80003255f560 rdx 0xffff80002c6ce000 rcx 0x182d __ALIGN_SIZE+0x82d rax 0xffffffffffffffff r8 0x40 r9 0xfffffd807f7d7548 r10 0x70498e6e5be5531d r11 0x5e2ad24cc7bd5fe8 r12 0xfffffd807a870a48 r13 0 r14 0xffff800000e86000 r15 0 rip 0xffffffff82530ec6 unveil_add_vnode+0xb6 cs 0x8 rflags 0x10246 __ALIGN_SIZE+0xf246 rsp 0xffff800035f95bc0 ss 0x10 unveil_add_vnode+0xb6: movq %rax,0x8(%r14,%r13,1) ddb{1}> show proc PROC (syz-executor.1) tid=39111 pid=92316 tcnt=3 stat=onproc flags process=8502010 proc=4080000 runpri=32, usrpri=80, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0xffff8000ffff6a60 forw=0xffffffffffffffff, list=0xffff8000373c4fa0,0xffff8000ffff6a70 process=0xffff80003255f560 user=0xffff800035f90000, vmspace=0xfffffd807f003898 estcpu=36, cpticks=0, pctcpu=0.0, user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 92316 293412 43188 32767 4 0x8582010 syz-executor.1 *92316 39111 43188 32767 7 0xc582010 syz-executor.1 92316 26564 43188 32767 3 0xc502010 suspend syz-executor.1 69752 141364 64208 32767 2 0x8000010 syz-executor.2 69752 291482 64208 32767 7 0xc000010 syz-executor.2 69752 517046 64208 32767 2 0xc000010 syz-executor.2 27266 210785 56785 32767 2 0x8000010 syz-executor.5 27266 290110 56785 32767 3 0xc000090 fsleep syz-executor.5 99893 45448 23014 32767 2 0x8000010 syz-executor.7 99893 421755 23014 32767 3 0xc000090 fsleep syz-executor.7 64208 25122 19222 32767 3 0x8000090 nanoslp syz-executor.2 19222 1422 71424 0 3 0x8000082 wait syz-executor.2 56785 445854 8827 32767 3 0x8000090 nanoslp syz-executor.5 8827 26578 71424 0 3 0x8000082 wait syz-executor.5 48551 592 38261 32767 3 0x8000010 getblk syz-executor.4 38261 83052 71424 0 3 0x8000082 wait syz-executor.4 43188 163959 1 32767 2 0x8000490 syz-executor.1 2275 380579 1 32767 3 0x8000010 biowait syz-executor.6 91804 491235 0 0 3 0x14200 bored sosplice 23014 126160 1 32767 3 0x8000090 nanoslp syz-executor.7 71424 124479 58905 0 3 0x1a000082 thrsleep syz-fuzzer 71424 342074 58905 0 3 0x1e000082 nanoslp syz-fuzzer 71424 375087 58905 0 3 0x1e000082 thrsleep syz-fuzzer 71424 507742 58905 0 3 0x1e000082 thrsleep syz-fuzzer 71424 372389 58905 0 3 0x1e000082 thrsleep syz-fuzzer 71424 30736 58905 0 2 0x1e000082 syz-fuzzer 71424 32086 58905 0 3 0x1e000082 thrsleep syz-fuzzer 71424 422421 58905 0 3 0x1e000082 thrsleep syz-fuzzer 71424 63810 58905 0 2 0x1e000082 syz-fuzzer 71424 325085 58905 0 2 0x1e000082 syz-fuzzer 71424 504628 58905 0 3 0x1e000082 thrsleep syz-fuzzer 71424 145591 58905 0 3 0x1e000082 thrsleep syz-fuzzer 71424 448961 58905 0 2 0x1e000082 syz-fuzzer 71424 452684 58905 0 3 0x1e000082 thrsleep syz-fuzzer 71424 406732 58905 0 3 0x1e000082 thrsleep syz-fuzzer 71424 39238 58905 0 2 0x1e000082 syz-fuzzer 58905 246580 46413 0 3 0x810008a sigsusp ksh 46413 128915 4142 0 3 0x1800009a kqread sshd 46726 398505 1 0 3 0x18100083 ttyin getty 4142 159958 1 0 3 0x18000088 kqread sshd 11163 67663 58946 73 3 0x19100010 ffs_fsync syslogd 58946 239652 1 0 3 0x18100082 sbwait syslogd 11274 394912 1 0 3 0x18100080 kqread resolvd 44929 297989 44453 77 3 0x18100092 kqread dhcpleased 24728 220808 44453 77 3 0x18100092 kqread dhcpleased 44453 482585 1 0 3 0x18000080 kqread dhcpleased 49920 326229 0 0 2 0x40014200 smr 5248 255050 0 0 2 0x14200 zerothread 91780 53057 0 0 3 0x14200 aiodoned aiodoned 5986 75364 0 0 3 0x14200 syncer update 64785 351384 0 0 3 0x14200 cleaner cleaner 68925 310577 0 0 3 0x14200 reaper reaper 36602 377376 0 0 3 0x14200 pgdaemon pagedaemon 28528 399745 0 0 3 0x14200 bored viomb 65712 198060 0 0 3 0x40014200 acpi0 acpi0 59406 384007 0 0 3 0x40014200 idle1 81267 28567 0 0 3 0x14200 bored softnet3 35340 196855 0 0 3 0x14200 bored softnet2 26339 140243 0 0 3 0x14200 bored softnet1 96204 339166 0 0 3 0x14200 bored softnet0 92962 167970 0 0 3 0x14200 bored systqmp 53772 433947 0 0 3 0x14200 bored systq 98982 179681 0 0 3 0x14200 tmoslp softclockmp 17922 21879 0 0 2 0x40014200 softclock 54874 520069 0 0 3 0x40014200 idle0 1 360392 0 0 3 0x8000082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 92316 (syz-executor.1) thread 0xffff8000373c47f0 (39111) exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82ddb9b0) #0 witness_lock+0x446 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x446 sys/kern/subr_witness.c:1187 #1 __mp_acquire_count+0x48 sys/kern/kern_lock.c:227 #2 mi_switch+0x491 sys/kern/sched_bsd.c:470 #3 sleep_finish+0x19a sys/kern/kern_synch.c:417 #4 rw_enter+0x29d sys/kern/kern_rwlock.c:285 #5 rrw_enter+0x91 sys/kern/kern_rwlock.c:464 #6 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #7 vn_lock+0x85 sys/kern/vfs_vnops.c:564 #8 vget+0x1fd sys/kern/vfs_subr.c:676 #9 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119 #10 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1201 #11 ufs_lookup+0x10b9 sys/ufs/ufs/ufs_lookup.c:555 #12 VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 #13 unveil_find_cover+0x132 sys/kern/kern_unveil.c:277 #14 unveil_add_vnode+0xb6 sys/kern/kern_unveil.c:391 #15 unveil_add+0x30b sys/kern/kern_unveil.c:494 #16 sys_unveil+0x41b sys/kern/vfs_syscalls.c:1023 #17 syscall+0x854 mi_syscall sys/sys/syscall_mi.h:180 [inline] #17 syscall+0x854 sys/arch/amd64/amd64/trap.c:577 #18 Xsyscall+0x128 Process 69752 (syz-executor.2) thread 0xffff8000373c59e0 (291482) shared rwlock vmmaplk r = 0 (0xfffffd8069fc40f0) #0 witness_lock+0x446 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x446 sys/kern/subr_witness.c:1187 #1 uvmfault_lookup+0xd9 sys/uvm/uvm_fault.c:1785 #2 uvm_fault_check+0x3e sys/uvm/uvm_fault.c:672 #3 uvm_fault+0xf2 sys/uvm/uvm_fault.c:600 #4 kpageflttrap+0x238 sys/arch/amd64/amd64/trap.c:279 #5 kerntrap+0xf2 sys/arch/amd64/amd64/trap.c:332 #6 alltraps_kern_meltdown+0x7b #7 copyout+0x57 #8 syscall+0x8cf mi_syscall sys/sys/syscall_mi.h:180 [inline] #8 syscall+0x8cf sys/arch/amd64/amd64/trap.c:577 #9 Xsyscall+0x128 Process 48551 (syz-executor.4) thread 0xffff80002f1022c0 (592) exclusive rrwlock inode r = 0 (0xfffffd8067af6b38) #0 witness_lock+0x446 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x446 sys/kern/subr_witness.c:1187 #1 rw_enter+0x32d sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x91 sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x85 sys/kern/vfs_vnops.c:564 #5 vn_closefile+0xc9 vn_close sys/kern/vfs_vnops.c:292 [inline] #5 vn_closefile+0xc9 sys/kern/vfs_vnops.c:609 #6 fdrop+0xd5 sys/kern/kern_descrip.c:1274 #7 closef+0x120 sys/kern/kern_descrip.c:1258 #8 syscall+0x8cf mi_syscall sys/sys/syscall_mi.h:180 [inline] #8 syscall+0x8cf sys/arch/amd64/amd64/trap.c:577 #9 Xsyscall+0x128 Process 2275 (syz-executor.6) thread 0xffff8000ffff7c50 (380579) exclusive rrwlock inode r = 0 (0xfffffd8062145f80) #0 witness_lock+0x446 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x446 sys/kern/subr_witness.c:1187 #1 rw_enter+0x32d sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x91 sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x85 sys/kern/vfs_vnops.c:564 #5 vget+0x1fd sys/kern/vfs_subr.c:676 #6 ufs_ihashget+0x121 sys/ufs/ufs/ufs_ihash.c:119 #7 ffs_vget+0x7c sys/ufs/ffs/ffs_vfsops.c:1201 #8 ufs_lookup+0x1373 sys/ufs/ufs/ufs_lookup.c:478 #9 VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 #10 vfs_lookup+0x6f8 sys/kern/vfs_lookup.c:566 #11 namei+0x56a sys/kern/vfs_lookup.c:250 #12 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1855 #13 syscall+0x854 mi_syscall sys/sys/syscall_mi.h:180 [inline] #13 syscall+0x854 sys/arch/amd64/amd64/trap.c:577 #14 Xsyscall+0x128 exclusive rrwlock inode r = 0 (0xfffffd8062145810) #0 witness_lock+0x446 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x446 sys/kern/subr_witness.c:1187 #1 rw_enter+0x32d sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x91 sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x85 sys/kern/vfs_vnops.c:564 #5 vget+0x1fd sys/kern/vfs_subr.c:676 #6 cache_lookup+0x2b3 sys/kern/vfs_cache.c:222 #7 ufs_lookup+0x1b2 sys/ufs/ufs/ufs_lookup.c:160 #8 VOP_LOOKUP+0x5c sys/kern/vfs_vops.c:85 #9 vfs_lookup+0x6f8 sys/kern/vfs_lookup.c:566 #10 namei+0x56a sys/kern/vfs_lookup.c:250 #11 dounlinkat+0x9d sys/kern/vfs_syscalls.c:1855 #12 syscall+0x854 mi_syscall sys/sys/syscall_mi.h:180 [inline] #12 syscall+0x854 sys/arch/amd64/amd64/trap.c:577 #13 Xsyscall+0x128 Process 11163 (syslogd) thread 0xffff8000ffffdc40 (67663) exclusive rrwlock inode r = 0 (0xfffffd806e6a6c50) #0 witness_lock+0x446 stacktrace_save sys/sys/stacktrace.h:37 [inline] #0 witness_lock+0x446 sys/kern/subr_witness.c:1187 #1 rw_enter+0x32d sys/kern/kern_rwlock.c:309 #2 rrw_enter+0x91 sys/kern/kern_rwlock.c:464 #3 VOP_LOCK+0x8b sys/kern/vfs_vops.c:518 #4 vn_lock+0x85 sys/kern/vfs_vnops.c:564 #5 sys_fsync+0xf1 sys/kern/vfs_syscalls.c:2904 #6 syscall+0x854 mi_syscall sys/sys/syscall_mi.h:180 [inline] #6 syscall+0x854 sys/arch/amd64/amd64/trap.c:577 #7 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10176 6406K 6419K 166960K 11350 0 pcb 17 12K 12K 166960K 17 0 rtable 226 6K 7K 166960K 1563 0 pf 27 8K 8K 166960K 91 0 ifaddr 40 15K 16K 166960K 174 0 ifgroup 46 2K 2K 166960K 174 0 sysctl 4 1K 2K 166960K 6 0 counters 62 36K 36K 166960K 126 0 ioctlops 0 0K 2K 166960K 159 0 iov 0 0K 20K 166960K 276 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1390 87K 87K 166960K 2245 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 3 5K 9K 166960K 105 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 1K 166960K 577 0 dirhash 15 2K 3K 166960K 276 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 16 57K 117K 166960K 4387 0 sigio 0 0K 0K 166960K 103 0 proc 56 78K 127K 166960K 1762 0 subproc 91 5K 8K 166960K 533 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 1101 0 in_multi 88 6K 7K 166960K 694 0 ether_multi 1 0K 0K 166960K 27 0 mrt 2 0K 0K 166960K 4 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 91 413K 413K 166960K 91 0 exec 0 0K 1K 166960K 1236 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 268 68K 100K 166960K 39705 0 UVM aobj 131 6K 8K 166960K 153 0 pinsyscall 36 72K 106K 166960K 6312 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 311 0 NDP 10 0K 2K 166960K 120 0 temp 70 6819K 6885K 166960K 16891 0 kqueue 14 22K 30K 166960K 797 0 SYN cache 2 16K 16K 166960K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 24 0 0 1 0 1 1 0 8 0 rtpcb 120 594 0 590 1 0 1 1 0 8 0 rtentry 112 505 0 399 4 0 4 4 0 8 0 unpcb 144 3955 0 3936 18 17 1 6 0 8 0 syncache 336 30 0 30 19 19 0 1 0 8 0 sackhl 24 8 0 8 8 8 0 1 0 8 0 tcpqe 32 132 0 132 9 9 0 1 0 8 0 tcpcb 808 2223 0 2217 52 48 4 8 0 8 3 arp 120 80 0 64 1 0 1 1 0 8 0 ipq 40 15 0 15 3 3 0 1 0 8 0 ipqe 40 157 0 157 3 3 0 1 0 8 0 inpcb 384 5149 0 5137 78 73 5 9 0 8 3 nd6 136 170 0 142 2 0 2 2 0 8 0 kcovpl 48 41 0 34 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 1990 0 1562 37 7 30 31 0 8 0 art_table 32 1991 0 1562 4 0 4 4 0 8 0 art_node 16 504 0 407 1 0 1 1 0 8 0 sysvmsgpl 40 19 0 14 1 0 1 1 0 8 0 semupl 112 3 0 3 1 1 0 1 0 8 0 semapl 112 575 0 565 1 0 1 1 0 8 0 shmpl 112 150 0 22 4 0 4 4 0 8 0 dirhash 1024 193 0 174 3 0 3 3 0 8 0 dino2pl 256 7998 0 6458 97 0 97 97 0 8 0 ffsino 272 7998 0 6458 104 0 104 104 0 8 0 nchpl 144 13902 0 12162 66 0 66 66 0 8 0 uvmvnodes 80 8540 0 0 175 0 175 175 0 8 0 vnodes 216 8540 0 0 475 0 475 475 0 8 0 namei 1024 50423 0 50421 25 24 1 2 0 8 0 percpumem 16 77 0 32 1 0 1 1 0 8 0 kstatmem 264 84 0 64 2 0 2 2 0 8 0 scxspl 216 134945 0 134943 34 33 1 7 1 8 0 plimitpl 152 1197 0 1178 2 0 2 2 0 8 0 sigapl 424 4611 0 4564 8 1 7 7 0 8 0 futexpl 64 63340 0 63338 25 24 1 1 0 8 0 knotepl 120 956 0 0 12 0 12 12 0 8 0 kqueuepl 216 1509 0 1498 7 6 1 3 0 8 0 pipepl 320 896 0 870 17 13 4 8 0 8 1 fdescpl 496 4592 0 4565 6 1 5 6 0 8 0 filepl 152 29791 0 29554 28 16 12 16 0 8 0 lockfpl 104 981 0 979 1 0 1 1 0 8 0 lockfspl 48 370 0 368 1 0 1 1 0 8 0 sessionpl 144 54 0 39 1 0 1 1 0 8 0 pgrppl 48 138 0 123 1 0 1 1 0 8 0 ucredpl 104 5967 0 5950 1 0 1 1 0 8 0 zombiepl 144 4566 0 4564 1 0 1 1 0 8 0 processpl 1136 4611 0 4564 5 0 5 5 0 8 0 procpl 656 9505 0 9437 9 1 8 8 0 8 0 sosppl 168 89 0 89 29 28 1 1 0 8 1 sockpl 664 9799 0 9764 94 88 6 15 0 8 3 mcl64k 65536 8 0 0 1 0 1 1 0 8 0 mcl16k 16384 2 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 5 0 0 1 0 1 1 0 8 0 mcl4k 4096 6 0 0 1 0 1 1 0 8 0 mcl2k2 2112 2 0 0 1 0 1 1 0 8 0 mcl2k 2048 738 0 0 43 9 34 41 0 8 0 mtagpl 96 4 0 0 1 0 1 1 0 8 0 mbufpl 256 1669 0 0 63 0 63 63 0 8 0 bufpl 280 14863 0 5892 642 0 642 642 0 8 0 anonpl 24 841822 0 835498 238 158 80 126 0 186 7 amapchunkpl 152 141588 0 140928 134 86 48 65 0 158 14 amappl16 200 17013 0 16887 113 100 13 24 0 8 0 amappl15 192 18 0 16 1 0 1 1 0 8 0 amappl14 184 318 0 306 2 1 1 2 0 8 0 amappl13 176 7 0 7 5 5 0 1 0 8 0 amappl12 168 5685 0 5656 3 1 2 2 0 8 0 amappl11 160 53 0 43 1 0 1 1 0 8 0 amappl10 152 95 0 87 1 0 1 1 0 8 0 amappl9 144 173 0 173 2 2 0 1 0 8 0 amappl8 136 318 0 279 2 0 2 2 0 8 0 amappl7 128 62 0 46 1 0 1 1 0 8 0 amappl6 120 724 0 709 3 2 1 3 0 8 0 amappl5 112 292 0 280 1 0 1 1 0 8 0 amappl4 104 755 0 717 3 1 2 2 0 8 0 amappl3 96 24695 0 24620 4 1 3 4 0 8 0 amappl2 88 5065 0 4996 4 2 2 4 0 8 0 amappl1 80 24271 0 23776 22 9 13 22 0 8 0 amappl 88 38531 0 38344 6 0 6 6 0 92 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 152 0 22 3 0 3 3 0 8 0 uaddrrnd 24 4592 0 4565 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 4592 0 4565 1 0 1 1 0 8 0 vmmpekpl 168 34354 0 34282 4 0 4 4 0 8 0 vmmpepl 168 288835 0 287008 194 97 97 115 0 357 0 vmsppl 440 4591 0 4565 6 1 5 5 0 8 0 rwobjpl 56 81253 0 71531 155 17 138 139 0 8 0 pdppl 4096 9191 0 9130 312 241 71 93 0 8 10 pvpl 32 48694 0 0 394 1 393 393 0 265 0 pmappl 248 4591 0 4565 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 763 0 350 13 0 13 13 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1e: addq $0x8,%rsp x86_ipi_db(ffffffff82d49ff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff82ddb7a8) at __mp_lock+0x122 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82ddb7a8) at __mp_lock+0x122 sys/kern/kern_lock.c:147 intr_handler(ffff80002ba9c770,ffff80000067b300) at intr_handler+0x62 sys/arch/amd64/amd64/intr.c:539 Xintr_ioapic_edge26_untramp() at Xintr_ioapic_edge26_untramp+0x18f Xspllower() at Xspllower+0x1d uvmfault_lookup(ffff80002ba9ca90,0) at uvmfault_lookup+0xd9 sys/uvm/uvm_fault.c:1785 uvm_fault_check(ffff80002ba9ca90,ffff80002ba9cac8,ffff80002ba9caf0) at uvm_fault_check+0x3e sys/uvm/uvm_fault.c:672 uvm_fault(fffffd8069fc4000,e5000,0,2) at uvm_fault+0xf2 sys/uvm/uvm_fault.c:600 kpageflttrap(ffff80002ba9cc30,e5e40) at kpageflttrap+0x238 sys/arch/amd64/amd64/trap.c:279 kerntrap(ffff80002ba9cc30) at kerntrap+0xf2 sys/arch/amd64/amd64/trap.c:332 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b copyout() at copyout+0x57 end trace frame: 0xffff80002ba9d070, count: 0 ddb{0}> trace x86_ipi_db(ffffffff82d49ff0) at x86_ipi_db+0x1e sys/arch/amd64/amd64/db_interface.c:393 x86_ipi_handler() at x86_ipi_handler+0xb7 sys/arch/amd64/amd64/ipi.c:106 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x27 __mp_lock(ffffffff82ddb7a8) at __mp_lock+0x122 __mp_lock_spin sys/kern/kern_lock.c:116 [inline] __mp_lock(ffffffff82ddb7a8) at __mp_lock+0x122 sys/kern/kern_lock.c:147 intr_handler(ffff80002ba9c770,ffff80000067b300) at intr_handler+0x62 sys/arch/amd64/amd64/intr.c:539 Xintr_ioapic_edge26_untramp() at Xintr_ioapic_edge26_untramp+0x18f Xspllower() at Xspllower+0x1d uvmfault_lookup(ffff80002ba9ca90,0) at uvmfault_lookup+0xd9 sys/uvm/uvm_fault.c:1785 uvm_fault_check(ffff80002ba9ca90,ffff80002ba9cac8,ffff80002ba9caf0) at uvm_fault_check+0x3e sys/uvm/uvm_fault.c:672 uvm_fault(fffffd8069fc4000,e5000,0,2) at uvm_fault+0xf2 sys/uvm/uvm_fault.c:600 kpageflttrap(ffff80002ba9cc30,e5e40) at kpageflttrap+0x238 sys/arch/amd64/amd64/trap.c:279 kerntrap(ffff80002ba9cc30) at kerntrap+0xf2 sys/arch/amd64/amd64/trap.c:332 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b copyout() at copyout+0x57 syscall(ffff80002ba9d080) at syscall+0x8cf mi_syscall sys/sys/syscall_mi.h:180 [inline] syscall(ffff80002ba9d080) at syscall+0x8cf sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x17286602610, count: -16 ddb{0}> machine ddbcpu 1 Stopped at unveil_add_vnode+0xb6: movq %rax,0x8(%r14,%r13,1) unveil_add_vnode(ffff8000373c47f0,fffffd807a870a48) at unveil_add_vnode+0xb6 sys/kern/kern_unveil.c:391 unveil_add(ffff8000373c47f0,ffff800035f95d08,ffff800035f95dc3) at unveil_add+0x30b sys/kern/kern_unveil.c:494 sys_unveil(ffff8000373c47f0,ffff800035f95ef0,ffff800035f95e40) at sys_unveil+0x41b sys/kern/vfs_syscalls.c:1023 syscall(ffff800035f95ef0) at syscall+0x854 mi_syscall sys/sys/syscall_mi.h:180 [inline] syscall(ffff800035f95ef0) at syscall+0x854 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xecc1fb2a220, count: 10 ddb{1}> trace unveil_add_vnode(ffff8000373c47f0,fffffd807a870a48) at unveil_add_vnode+0xb6 sys/kern/kern_unveil.c:391 unveil_add(ffff8000373c47f0,ffff800035f95d08,ffff800035f95dc3) at unveil_add+0x30b sys/kern/kern_unveil.c:494 sys_unveil(ffff8000373c47f0,ffff800035f95ef0,ffff800035f95e40) at sys_unveil+0x41b sys/kern/vfs_syscalls.c:1023 syscall(ffff800035f95ef0) at syscall+0x854 mi_syscall sys/sys/syscall_mi.h:180 [inline] syscall(ffff800035f95ef0) at syscall+0x854 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xecc1fb2a220, count: -5