uvm_fault(0xfffffd807c4c1ba8, 0x0, 0, 1) -> e fatal page fault in supervisor mode trap type 6 code 0 rip ffffffff825a0618 cs 8 rflags 10207 cr2 0 cpl 0 rsp ffff8000367dea60 gsbase 0xffff8000299edff0 kgsbase 0x0 panic: trap type 6, code=0, pc=ffffffff825a0618 Starting stack trace... panic(ffffffff833dba02) at panic+464 kerntrap(ffff8000367de9b0) at kerntrap+779 alltraps_kern_meltdown() at alltraps_kern_meltdown+123 dt_ioctl_record_stop(ffff800001719000) at dt_ioctl_record_stop+264 dtclose(11e5f,81,2000,ffff80002a270fa8) at dtclose+265 spec_close(ffff8000367deb60) at spec_close+1126 VOP_CLOSE(fffffd8062ad3da0,81,fffffd80097fd4e0,ffff80002a270fa8) at VOP_CLOSE+306 vn_closefile(fffffd80683fdc28,ffff80002a270fa8) at vn_closefile+299 fdrop(fffffd80683fdc28,ffff80002a270fa8) at fdrop+289 closef(fffffd80683fdc28,ffff80002a270fa8) at closef+402 fdfree(ffff80002a270fa8) at fdfree+278 exit1(ffff80002a270fa8,0,0,1) at exit1+1398 sys_exit(ffff80002a270fa8,ffff8000367deed0,ffff8000367dee20) at sys_exit+26 syscall(ffff8000367deed0) at syscall+2839 Xsyscall() at Xsyscall+296 end of kernel end trace frame: 0x76829917a970, count: 242 End of stack trace. WARNING: SPL NOT LOWERED ON TRAP EXIT 4 0 Stopped at proc_trampoline+199: movl $0,%gs:1672 TID PID UID PRFLAGS PFLAGS CPU COMMAND *258447 47063 0 0 0 1 syz-executor 269305 43129 0 0 0 0 syz-executor proc_trampoline() at proc_trampoline+199 end of kernel end trace frame: 0x6fd2090cdb60, count: 14 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic *cpu1: uvm_fault(0xfffffd807c4c1ba8, 0x0, 0, 1) -> e ddb{1}> trace proc_trampoline() at proc_trampoline+199 end of kernel end trace frame: 0x6fd2090cdb60, count: -1 ddb{1}> show registers rdi 0 rsi 0 rbp 18446603336929275264 rbx 0 rdx 0 rcx 18446603336928401264 rax 42 r8 18446603336929275056 r9 1 r10 10377092238870385730 r11 3533733009021955404 r12 0 r13 18446744071584108488 Xdoreti+24 r14 0 r15 0 rip 18446744071614895303 proc_trampoline+199 cs 8 rflags 582 rsp 18446603336929275136 ss 0 proc_trampoline+199: movl $0,%gs:1672 ddb{1}> show proc PROC (syz-executor) tid=258447 pid=47063 tcnt=3 stat=onproc flags process=0 proc=0 runpri=86, usrpri=86, slppri=17, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff80002a270548,0xffff8000fffe9788 process=0xffff8000fffee1c8 user=0xffff80002a341000, vmspace=0xfffffd807c4c1d90 estcpu=36, cpticks=3, pctcpu=0.0, user=1, sys=2, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 92170 520742 22617 0 2 0x2 ndp 22617 162839 63062 0 3 0x10008a sigsusp sh 76356 500979 8774 0 2 0 syz-executor 76356 446676 8774 0 3 0x4000080 fsleep syz-executor 76356 174228 8774 0 2 0x4000000 syz-executor *47063 258447 61600 0 7 0 syz-executor 47063 212303 61600 0 3 0x4000000 biowait syz-executor 47063 450961 61600 0 3 0x4000000 inode syz-executor 43129 269305 21197 0 7 0 syz-executor 43129 351505 21197 0 3 0x4000080 sbwait syz-executor 43129 361999 21197 0 3 0x4000080 fsleep syz-executor 81879 129465 64512 0 2 0x1 syz-executor 81879 212914 64512 0 3 0x4000080 ttyout syz-executor 81879 143171 64512 0 3 0x4000080 fsleep syz-executor 81879 134513 64512 0 3 0x4000080 fsleep syz-executor 94978 450856 97473 60928 3 0x3010 suspend syz-executor 94978 429600 97473 60928 3 0x4081010 biowait syz-executor 63062 80175 50 0 3 0x82 wait syz-executor 83573 230612 0 0 3 0x14280 nfsidl nfsio 35309 111251 0 0 3 0x14280 nfsidl nfsio 48794 125734 0 0 3 0x14280 nfsidl nfsio 74320 222269 0 0 3 0x14280 nfsidl nfsio 61600 507879 50 0 3 0x82 nanoslp syz-executor 8774 99950 50 0 3 0x82 nanoslp syz-executor 21197 94504 50 0 3 0x82 nanoslp syz-executor 77082 521320 1 0 3 0x100083 ttyopn getty 27089 424910 50 0 3 0x82 wait syz-executor 97473 317338 50 0 3 0x82 nanoslp syz-executor 87063 266424 50 0 3 0x82 nanoslp syz-executor 64512 345364 50 0 3 0x82 nanoslp syz-executor 50 139613 61936 0 3 0x82 kqread syz-executor 61936 288622 79172 0 3 0x10008a sigsusp ksh 79172 389703 1499 0 3 0x98 kqread sshd-session 1499 497312 505 0 3 0x92 kqread sshd-session 505 310252 1 0 3 0x88 kqread sshd 7713 9417 5817 74 3 0x1100092 bpf pflogd 5817 500754 1 0 3 0x80 sbwait pflogd 47223 244296 86352 73 3 0x1100090 kqread syslogd 86352 467228 1 0 3 0x100082 sbwait syslogd 39798 106826 1 0 3 0x100080 kqread resolvd 83604 236531 22995 77 3 0x100092 kqread dhcpleased 4363 254104 22995 77 3 0x100092 kqread dhcpleased 22995 279875 1 0 3 0x80 kqread dhcpleased 6815 433706 0 0 3 0x14200 bored smr 25982 96014 0 0 2 0x14200 zerothread 69250 75128 0 0 3 0x14200 aiodoned aiodoned 23661 65172 0 0 3 0x14200 syncer update 70151 244935 0 0 3 0x14200 cleaner cleaner 58070 320524 0 0 3 0x14200 reaper reaper 72886 17824 0 0 3 0x14200 pgdaemon pagedaemon 67732 501164 0 0 3 0x14200 bored viomb 91185 81083 0 0 3 0x40014200 acpi0 acpi0 43689 190126 0 0 3 0x40014200 idle1 25404 421269 0 0 3 0x14200 bored softnet1 91685 245980 0 0 3 0x14200 netlock softnet0 35242 106298 0 0 3 0x14200 smrbar systqmp 11192 217165 0 0 3 0x14200 bored systq 60783 260639 0 0 3 0x14200 tmoslp softclockmp 16539 300915 0 0 3 0x40014200 tmoslp softclock 28583 310586 0 0 3 0x40014200 idle0 1 397913 0 0 3 0x82 wait init 0 0 -1 0 3 0x10010200 scheduler swapper ddb{1}> show all locks Process 92170 (ndp) thread 0xffff8000fffe9ca8 (520742) Process 76356 (syz-executor) thread 0xffff80002a271240 (174228) Process 47063 (syz-executor) thread 0xffff8000fffe9778 (212303) Process 47063 (syz-executor) thread 0xffff80002a271a08 (450961) Process 94978 (syz-executor) thread 0xffff8000fffe9a10 (429600) Process 35242 (systqmp) thread 0xffff8000ffffe298 (106298) ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 11108 12155K 13451K 166960K 16399 0 pcb 17 16K 32K 166960K 1841 0 rtable 225 14K 15K 166960K 1521 0 pf 34 17K 82K 166960K 618 0 ifaddr 33 9K 12K 166960K 434 0 ifgroup 54 2K 2K 166960K 828 0 sysctl 4 1K 9K 166960K 47 0 counters 68 36K 38K 166960K 1046 0 ioctlops 0 0K 8K 166960K 3003 0 iov 0 0K 28K 166960K 494 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1445 91K 92K 166960K 5652 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 2K 13K 166960K 85 0 VM map 2 1K 1K 166960K 2 0 sem 25 1K 1K 166960K 51 0 dirhash 12 2K 2K 166960K 123 0 ACPI 1692 195K 286K 166960K 12470 0 file desc 19 69K 240K 166960K 6184 0 sigio 0 0K 0K 166960K 247 0 proc 78 131K 164K 166960K 1577 0 subproc 72 4K 4K 166960K 194 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 910 0 in_multi 60 4K 7K 166960K 624 0 ether_multi 1 0K 0K 166960K 94 0 mrt 1 0K 0K 166960K 43 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 265 1182K 1182K 166960K 265 0 exec 0 0K 1K 166960K 1951 0 fusefs mount 1 32K 32K 166960K 1 0 pfkey data 0 0K 0K 166960K 10 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 271 170K 196K 166960K 56713 0 UVM aobj 130 43K 45K 166960K 150 0 pinsyscall 44 88K 101K 166960K 7586 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 1 0K 1K 166960K 435 0 NDP 13 0K 2K 166960K 317 0 temp 85 8680K 8764K 166960K 315927 0 kqueue 14 22K 35K 166960K 1276 0 SYN cache 2 8K 16K 166960K 3 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle plcache 128 26 0 0 1 0 1 1 0 8 0 rtpcb 120 634 0 629 5 4 1 3 0 8 0 rtentry 176 437 0 360 6 1 5 6 0 8 0 unpcb 144 5110 0 5091 30 26 4 6 0 8 3 syncache 336 20 0 20 7 7 0 1 0 8 0 tcpqe 32 7 0 7 3 3 0 1 0 8 0 tcpcb 736 2385 0 2376 39 32 7 10 0 8 5 arp 136 64 0 49 1 0 1 1 0 8 0 inpcb 328 8258 0 8243 63 56 7 13 0 8 4 nd6 152 81 0 66 2 1 1 2 0 8 0 pkpcb 40 119 0 119 9 8 1 1 0 8 1 kcovpl 48 21 0 13 1 0 1 1 0 8 0 mppekey 1024 4 0 4 3 3 0 1 0 8 0 ppxss 1192 390 0 390 7 6 1 1 0 8 1 pppxif 1504 55 0 55 12 11 1 1 0 8 1 pffrag 232 49 0 35 1 0 1 1 0 482 0 pffrnode 88 37 0 24 1 0 1 1 0 8 0 pffrent 40 93 0 79 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfrktable 1344 2 0 2 2 2 0 1 0 8 0 rttmr 136 5 0 5 5 5 0 1 0 8 0 art_heap8 4096 5 0 0 5 0 5 5 0 8 0 art_heap4 256 2077 0 1760 44 17 27 32 0 8 1 art_table 40 2082 0 1760 6 1 5 6 0 8 0 art_node 32 435 0 367 1 0 1 1 0 8 0 sysvmsgpl 40 121 0 117 1 0 1 1 0 8 0 semupl 112 2 0 2 2 2 0 1 0 8 0 semapl 112 41 0 18 1 0 1 1 0 8 0 shmpl 112 110 0 2 4 0 4 4 0 8 0 dirhash 1024 91 0 74 3 0 3 3 0 8 0 dino2pl 256 13879 0 12340 97 0 97 97 0 8 0 ffsino 296 13879 0 12340 119 0 119 119 0 8 0 nchpl 144 22385 0 21764 65 41 24 65 0 8 0 rtmask 32 54 0 54 12 11 1 1 0 8 1 vnodes 216 12738 0 0 708 0 708 708 0 8 0 namei 1024 82399 0 82398 11 9 2 2 0 8 1 percpumem 16 538 0 489 1 0 1 1 0 8 0 vcpupl 3968 24 0 5 3 0 3 3 0 8 0 vmpool 848 34 0 15 4 1 3 3 0 8 0 kstatmem 264 530 0 504 10 7 3 3 0 8 0 acpiwqpl 32 1 0 1 1 0 1 1 1 8 1 scsiplug 72 41 0 41 13 12 1 1 0 8 1 scxspl 216 185307 0 185305 20 19 1 8 1 8 0 plimitpl 152 2106 0 2087 1 0 1 1 0 8 0 sigapl 424 6436 0 6383 9 2 7 8 0 8 0 knotepl 120 899 0 0 25 0 25 25 0 8 0 kqueuepl 224 2717 0 2704 27 25 2 5 0 8 1 pipepl 344 941 0 914 17 14 3 6 0 8 0 fdescpl 528 6356 0 6323 3 0 3 3 0 8 0 filepl 160 50728 0 50491 52 37 15 26 0 8 1 lockfpl 104 3208 0 3206 8 6 2 4 0 8 1 lockfspl 48 957 0 955 1 0 1 1 0 8 0 sessionpl 144 45 0 36 1 0 1 1 0 8 0 pgrppl 48 195 0 178 1 0 1 1 0 8 0 ucredpl 104 8726 0 8711 1 0 1 1 0 8 0 zombiepl 144 6806 0 6803 2 1 1 1 0 8 0 processpl 1232 6436 0 6383 6 1 5 6 0 8 0 procpl 664 16493 0 16430 9 2 7 8 0 8 0 sosppl 176 52 0 51 5 4 1 1 0 8 0 sockpl 752 14399 0 14360 108 91 17 18 0 8 12 mcl64k 65536 24 0 0 3 0 3 3 0 8 0 mcl16k 16384 3 0 0 1 0 1 1 0 8 0 mcl12k 12288 3 0 0 1 0 1 1 0 8 0 mcl9k 9216 2 0 0 1 0 1 1 0 8 0 mcl8k 8192 5 0 0 1 0 1 1 0 8 0 mcl4k 4096 123 0 0 15 0 15 15 0 8 0 mcl2k2 2112 1 0 0 1 0 1 1 0 8 0 mcl2k 2048 79 0 0 9 0 9 9 0 8 1 mtagpl 96 6 0 0 1 0 1 1 0 8 0 mbufpl 256 1891 0 0 110 0 110 110 0 8 0 bufpl 280 76553 0 70416 439 0 439 439 0 8 0 anonpl 32 18590 0 0 150 1 149 149 0 246 0 amapchunkpl 152 205566 0 204900 114 79 35 43 0 158 7 amappl16 200 26779 0 26545 169 136 33 44 0 8 6 amappl15 192 21 0 21 1 1 0 1 0 8 0 amappl14 184 4 0 4 1 1 0 1 0 8 0 amappl13 176 587 0 584 1 0 1 1 0 8 0 amappl12 168 6820 0 6777 3 0 3 3 0 8 0 amappl11 160 48 0 47 4 3 1 1 0 8 0 amappl10 152 53 0 39 1 0 1 1 0 8 0 amappl9 144 248 0 248 1 1 0 1 0 8 0 amappl8 136 35 0 31 1 0 1 1 0 8 0 amappl7 128 136 0 134 1 0 1 1 0 8 0 amappl6 120 458 0 443 1 0 1 1 0 8 0 amappl5 112 83 0 72 1 0 1 1 0 8 0 amappl4 104 537 0 507 1 0 1 1 0 8 0 amappl3 96 35720 0 35621 4 1 3 3 0 8 0 amappl2 88 6485 0 6405 2 0 2 2 0 8 0 amappl1 80 35698 0 35082 14 0 14 14 0 8 0 amappl 88 54660 0 54471 5 0 5 5 0 92 0 uvmvnodes 80 383 0 0 8 0 8 8 0 8 0 dma65536 65536 2 0 2 2 2 0 1 0 8 0 dma8192 8192 1 0 1 1 1 0 1 0 8 0 dma4096 4096 4 0 4 3 3 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 10 0 10 5 4 1 1 0 8 1 dma128 128 267 0 267 9 8 1 1 0 8 1 dma64 64 19 0 19 9 9 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 20 0 19 1 0 1 1 0 8 0 aobjpl 72 149 0 20 3 0 3 3 0 8 0 uaddrrnd 24 6356 0 6323 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 6356 0 6323 1 0 1 1 0 8 0 vmmpekpl 168 47462 0 47398 4 0 4 4 0 8 0 vmmpepl 168 405053 0 402824 185 69 116 124 0 357 5 vmsppl 488 6355 0 6323 8 3 5 5 0 8 0 rwobjpl 80 103587 0 101876 62 17 45 47 0 8 0 pdppl 4096 12788 0 12695 160 67 93 93 0 8 0 pvpl 32 26508 0 0 212 0 212 212 0 265 0 pmappl 256 6389 0 6338 4 0 4 4 0 8 0 extentpl 40 45 0 27 1 0 1 1 0 8 0 phpool 112 524 0 145 11 0 11 11 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+39: addq $8,%rsp x86_ipi_db(ffffffff837cdff0) at x86_ipi_db+39 x86_ipi_handler() at x86_ipi_handler+217 Xresume_lapic_ipi() at Xresume_lapic_ipi+39 __mp_lock(ffffffff838b9800) at __mp_lock+402 scsi_done(fffffd8064e4f108) at scsi_done+40 vioscsi_vq_done(ffff8000000a4268) at vioscsi_vq_done+225 intr_handler(ffff80002a358ea0,ffff8000002a3480) at intr_handler+293 Xintr_ioapic_edge23_untramp() at Xintr_ioapic_edge23_untramp+399 end of kernel end trace frame: 0x786005b7db90, count: 7 ddb{0}> trace x86_ipi_db(ffffffff837cdff0) at x86_ipi_db+39 x86_ipi_handler() at x86_ipi_handler+217 Xresume_lapic_ipi() at Xresume_lapic_ipi+39 __mp_lock(ffffffff838b9800) at __mp_lock+402 scsi_done(fffffd8064e4f108) at scsi_done+40 vioscsi_vq_done(ffff8000000a4268) at vioscsi_vq_done+225 intr_handler(ffff80002a358ea0,ffff8000002a3480) at intr_handler+293 Xintr_ioapic_edge23_untramp() at Xintr_ioapic_edge23_untramp+399 end of kernel end trace frame: 0x786005b7db90, count: -8 ddb{0}> machine ddbcpu 1 Stopped at proc_trampoline+199: movl $0,%gs:1672 proc_trampoline() at proc_trampoline+199 end of kernel end trace frame: 0x6fd2090cdb60, count: 14 ddb{1}> trace proc_trampoline() at proc_trampoline+199 end of kernel end trace frame: 0x6fd2090cdb60, count: -1