[email protected] (Stefan Kempf), 2016.01.30 (Sat) 10:49 (CET): > Marcus MERIGHI wrote: > > [email protected] (Stefan Kempf), 2016.01.28 (Thu) 20:57 (CET): > > > Marcus MERIGHI wrote: > > > > > > Let's see what the stack pointer looks like when you get the illegal > > > instruction. Can you try this please: > > > > > > We need to see the lines that say [ stack ] > > > > 00007F7FFDFE1000 28672K [ stack ] > > 00007F7FFFBE1000 4028K read/write [ stack ] > > 00007F7FFFFD0000 64K read/write [ stack ] > > 00007F7FFFFE0000 4K [ stack ] > > > > > Now, back in top, hit ctrl+c to make it crash. Then run: > > > > > > $ gdb -q /usr/bin/top top.core > > > (gdb) info reg > > > > > > And send us the output of the 'info reg' command. > > > > rsp 0x7f7ffffdf848 0x7f7ffffdf848 > > 0x7f7ffffdf848 is within 00007F7FFFFD0000 + 64K, which is mapped > read/write, so the process seems to enter the kernel with a proper > stack pointer. > > We need to see how it looks like from within the kernel (and whether > the illegal instruction is really raised from within sendsig()). Can you > try the diff below? > > Before booting the new kernel, add to your sysctl.conf: > ddb.panic=1 > ddb.console=1
Done. > You should get a kernel panic now instead of an illegal instruction > signal if you try running ping or top. We need the output of the panic > message and the output of the following commands: ping(1), top(1) messed up the screen. > ddb> trace > ddb> show proc > > This will also print something like vmspace=<address>. > Use this address for the next command: > > ddb> show map /f <address> > > Thanks for helping remote-debugging :-) Thanks for looking at it and taking me further down the rabbit hole than I could have gone myself... And thanks for all the explanations! Console log below, attached as well for better readability. Thanks, Marcus # ping 192.168.188.189 PING 192.168.188.189 (192.168.188.189): 56 data bytes 64 bytes from 192.168.188.189: icmp_seq=0 ttl=255 time=166.533 ms panic: sendsig 1: fxsave 0xffff800032c8a000, sp 0x7f7fff0d20b1, fxave_size 512, savefpu_size 832, fpu_save_len 15773951, tf_rsp 0x7f7ffffdd238, userstack 1 Stopped at Debugger+0x9: leave TID PID UID PRFLAGS PFLAGS CPU COMMAND * 4460 4460 0 0x100033 0 1 ping Debugger() at Debugger+0x9 panic() at panic+0xfe sendsig() at sendsig+0x33e postsig() at postsig+0x24e userret() at userret+0x4c syscall() at syscall+0x209 --- syscall (number 4) --- end of kernel end trace frame: 0x12f5ee349ee8, count: 9 0x12f5edf06afa: http://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> trace Debugger() at Debugger+0x9 panic() at panic+0xfe sendsig() at sendsig+0x33e postsig() at postsig+0x24e userret() at userret+0x4c syscall() at syscall+0x209 --- syscall (number 4) --- end of kernel end trace frame: 0x12f5ee349ee8, count: -6 0x12f5edf06afa: ddb{1}> show proc PROC (ping) pid=4460 stat=onproc flags process=100033<CONTROLT,EXEC,SUGID,SUGIDEXEC,PLEDGE> proc=0 pri=24, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff800032d191d8,0xffffffff81943240 process=0xffff800032c98a90 user=0xffff800032c8a000, vmspace=0xffffff011da41100 estcpu=0, cpticks=1, pctcpu=0.1 user=0, sys=1, intr=0 ddb{1}> show map /f 0xffffff011da41100 MAP 0xffffff011da41100: [0x1000->0x7f7fffffc000] brk() allocate range: 0x12f5ee100000-0x12f7ee100000 stack allocate range: 0x7f7ffdfdf000-0x7f7ffffdf000 sz=33988608, ref=1, version=77, flags=0x41 pmap=0xffffff0111450638(resident=73) vm_refcnt=1 vm_shm=0x0 vm_rssize=0 vm_swrss=0 vm_tsize=42 vm_dsize=587 vm_taddr=0x12f5edf00000 vm_daddr=0x12f5ee100000 vm_maxsaddr=0x7f7ffdfdf000 vm_minsaddr=0x7f7ffffdf000 - 0xffffff01118ad2c0: 0x1000->0x1000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=F, nc=F, prot(max)=0/0, inh=0, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x1000-0x12f5edf00000 fspace_augment=20847468212224 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124bec18: 0x12f5edf00000->0x12f5edf2a000: obj=0xffffff0110c13d48/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=5/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5edf2a000-0x12f5ee029000 fspace_augment=20847468212224 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124becc0: 0x12f5ee029000->0x12f5ee030000: obj=0xffffff0110c13d48/0x29000, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=1/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee030000-0x12f5ee100000 fspace_augment=851968 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa6b0: 0x12f5ee100000->0x12f5ee100000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=F, nc=F, prot(max)=0/0, inh=0, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee100000-0x12f5ee12f000 fspace_augment=192512 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124beb70: 0x12f5ee12f000->0x12f5ee130000: obj=0x0/0x0, amap=0xffffff01124b2798/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee130000-0x12f5ee22f000 fspace_augment=20847468212224 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124beeb8: 0x12f5ee22f000->0x12f5ee230000: obj=0x0/0x0, amap=0xffffff01124b24c8/0 submap=F, cow=T, nc=F, prot(max)=1/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee230000-0x12f5ee32f000 fspace_augment=1044480 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aa8a8: 0x12f5ee32f000->0x12f5ee330000: obj=0xffffff0110c13d48/0x2f000, amap=0xffffff01124b2168/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee330000-0x12f5ee330000 fspace_augment=8587530240 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aad40: 0x12f5ee330000->0x12f5ee331000: obj=0x0/0x0, amap=0xffffff01124b2630/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee331000-0x12f5ee331000 fspace_augment=0 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aab48: 0x12f5ee331000->0x12f5ee334000: obj=0x0/0x0, amap=0xffffff01124b2318/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee334000-0x12f5ee334000 fspace_augment=8587530240 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aade8: 0x12f5ee334000->0x12f5ee335000: obj=0x0/0x0, amap=0xffffff01124b2318/3 submap=F, cow=T, nc=F, prot(max)=1/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee335000-0x12f5ee335000 fspace_augment=8587530240 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff0111a51d28: 0x12f5ee335000->0x12f5ee34b000: obj=0x0/0x0, amap=0xffffff01124b2318/4 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee34b000-0x12f7ee100000 fspace_augment=8587530240 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aae90: 0x12f7ee100000->0x12f7ee100000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=F, nc=F, prot(max)=0/0, inh=0, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f7ee100000-0x12f7f6b7e000 fspace_augment=119327938801664 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa368: 0x12f7f6b7e000->0x12f7f6b80000: obj=0x0/0x0, amap=0xffffff01124b2ab0/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f7f6b80000-0x12f80c9f5000 fspace_augment=367480832 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa560: 0x12f80c9f5000->0x12f80c9f6000: obj=0x0/0x0, amap=0xffffff01124b2558/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=3, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f80c9f6000-0x12f823d82000 fspace_augment=1555902464 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff0111a51bd8: 0x12f823d82000->0x12f823d83000: obj=0x0/0x0, amap=0xffffff01124b21f8/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f823d83000-0x12f880956000 fspace_augment=1555902464 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa2c0: 0x12f880956000->0x12f880957000: obj=0xffffff011e2dc240/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=5/7, inh=1, wc=0, adv=1 hole=F, free=T, guard=0x0, free=0x12f880957000-0x12f8923ca000 fspace_augment=1555902464 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff0111c41558: 0x12f8923ca000->0x12f8923cb000: obj=0x0/0x0, amap=0xffffff01124b2cf0/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8923cb000-0x12f897e95000 fspace_augment=95199232 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01125ebcd0: 0x12f897e95000->0x12f897ea5000: obj=0x0/0x0, amap=0xffffff01124b2990/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f897ea5000-0x12f8ad773000 fspace_augment=361553920 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa218: 0x12f8ad773000->0x12f8ad774000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=0/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8ad774000-0x12f8ad774000 fspace_augment=0 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa0c8: 0x12f8ad774000->0x12f8ad776000: obj=0x0/0x0, amap=0xffffff01124b28b8/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8ad776000-0x12f8ad776000 fspace_augment=488570880 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aabf0: 0x12f8ad776000->0x12f8ad777000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=0/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8ad777000-0x12f8ca967000 fspace_augment=488570880 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aaaa0: 0x12f8ca967000->0x12f8ca968000: obj=0x0/0x0, amap=0xffffff01124b2c60/0 submap=F, cow=T, nc=F, prot(max)=1/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8ca968000-0x7f7ffdfdf000 fspace_augment=119327938801664 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aac98: 0x7f7ffdfdf000->0x7f7fff7df000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=0/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x7f7fff7df000-0x7f7fff7df000 fspace_augment=0 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aa170: 0x7f7fff7df000->0x7f7ffffd0000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x7f7ffffd0000-0x7f7ffffd0000 fspace_augment=118784 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aa020: 0x7f7ffffd0000->0x7f7ffffde000: obj=0x0/0x0, amap=0xffffff01124b2510/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free [At this point output from ddb via tip(1) '~| cat > ~/ddb.out' stops. Below is continued via copy/paste, resuming at 0xffffff01124aa020.] - 0xffffff01124aa020: 0x7f7ffffd0000->0x7f7ffffde000: obj=0x0/0x0, amap=0xffffff01124b2510/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x7f7ffffde000-0x7f7ffffde000 fspace_augment=0 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aa758: 0x7f7ffffde000->0x7f7ffffdf000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=0/0, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x7f7ffffdf000-0x7f7fffffc000 fspace_augment=118784 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - uvm_addr exe: NULL - uvm_addr any[0]: 0xffffff011edd12a0 (uaddr_rnd 0x1000-0x7f7fffffc000) - uvm_addr any[1]: NULL - uvm_addr any[2]: NULL - uvm_addr any[3]: NULL - uvm_addr brk/stack: 0xffffff011edd02a0 (uaddr_stckbrk 0x1000-0x7f7fffffc000) # additionally cpu0, I was wondering whether this makes sense? ddb{1}> machine ddbcpu 0 Stopped at Debugger+0x9: leave Debugger() at Debugger+0x9 x86_ipi_handler() at x86_ipi_handler+0x76 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x1c --- interrupt --- __mp_lock() at __mp_lock+0x48 softintr_dispatch() at softintr_dispatch+0x43 Xsoftclock() at Xsoftclock+0x1f --- interrupt --- end of kernel end trace frame: 0x1388, count: 9 0x8: ddb{0}> trace Debugger() at Debugger+0x9 x86_ipi_handler() at x86_ipi_handler+0x76 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x1c --- interrupt --- __mp_lock() at __mp_lock+0x48 softintr_dispatch() at softintr_dispatch+0x43 Xsoftclock() at Xsoftclock+0x1f --- interrupt --- end of kernel end trace frame: 0x1388, count: -6 0x8: ddb{0}> show proc PROC (idle0) pid=3293 stat=onproc flags process=14000<NOZOMBIE,SYSTEM> proc=40000200<SYSTEM,CPUPEG> pri=0, usrpri=86, nice=20 forw=0x804f638d9d1bbb95, list=0xffff8000ffffe238,0xffff8000ffffe6b8 process=0xffff8000ffffc540 user=0xffff800032c2a000, vmspace=0xffffffff8193f260 estcpu=36, cpticks=44, pctcpu=20.27 user=0, sys=0, intr=0 ddb{0}> show map /f 0xffffffff8193f260 MAP 0xffffffff8193f260: [0x1000->0x7fbfdfeff000] brk() allocate range: 0x0-0x0 stack allocate range: 0x0-0x0 sz=0, ref=1, version=1, flags=0x41 pmap=0xffffffff819715e0(resident=4385) vm_refcnt=20 vm_shm=0x0 vm_rssize=0 vm_swrss=0 vm_tsize=0 vm_dsize=0 vm_taddr=0x0 vm_daddr=0x0 vm_maxsaddr=0x0 vm_minsaddr=0x0 - 0xffffffff819322c8: 0x1000->0x1000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=F, nc=F, prot(max)=0/0, inh=0, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x1000-0x7fbfdfeff000 fspace_augment=140462072520704 freemapped=T, uaddr=0xffffff011edd1000 (0x1000-0x7fbfdfeff000 uaddr_rnd) - uvm_addr exe: NULL - uvm_addr any[0]: 0xffffff011edd1000 (uaddr_rnd 0x1000-0x7fbfdfeff000) - uvm_addr any[1]: NULL - uvm_addr any[2]: NULL - uvm_addr any[3]: NULL - uvm_addr brk/stack: 0xffffff011edd0000 (uaddr_stckbrk 0x1000-0x7fbfdfeff000) ddb{0}> boot sync
# ping 192.168.188.189 PING 192.168.188.189 (192.168.188.189): 56 data bytes 64 bytes from 192.168.188.189: icmp_seq=0 ttl=255 time=166.533 ms panic: sendsig 1: fxsave 0xffff800032c8a000, sp 0x7f7fff0d20b1, fxave_size 512, savefpu_size 832, fpu_save_len 15773951, tf_rsp 0x7f7ffffdd238, userstack 1 Stopped at Debugger+0x9: leave TID PID UID PRFLAGS PFLAGS CPU COMMAND * 4460 4460 0 0x100033 0 1 ping Debugger() at Debugger+0x9 panic() at panic+0xfe sendsig() at sendsig+0x33e postsig() at postsig+0x24e userret() at userret+0x4c syscall() at syscall+0x209 --- syscall (number 4) --- end of kernel end trace frame: 0x12f5ee349ee8, count: 9 0x12f5edf06afa: http://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> trace Debugger() at Debugger+0x9 panic() at panic+0xfe sendsig() at sendsig+0x33e postsig() at postsig+0x24e userret() at userret+0x4c syscall() at syscall+0x209 --- syscall (number 4) --- end of kernel end trace frame: 0x12f5ee349ee8, count: -6 0x12f5edf06afa: ddb{1}> show proc PROC (ping) pid=4460 stat=onproc flags process=100033<CONTROLT,EXEC,SUGID,SUGIDEXEC,PLEDGE> proc=0 pri=24, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff800032d191d8,0xffffffff81943240 process=0xffff800032c98a90 user=0xffff800032c8a000, vmspace=0xffffff011da41100 estcpu=0, cpticks=1, pctcpu=0.1 user=0, sys=1, intr=0 ddb{1}> show map /f 0xffffff011da41100 MAP 0xffffff011da41100: [0x1000->0x7f7fffffc000] brk() allocate range: 0x12f5ee100000-0x12f7ee100000 stack allocate range: 0x7f7ffdfdf000-0x7f7ffffdf000 sz=33988608, ref=1, version=77, flags=0x41 pmap=0xffffff0111450638(resident=73) vm_refcnt=1 vm_shm=0x0 vm_rssize=0 vm_swrss=0 vm_tsize=42 vm_dsize=587 vm_taddr=0x12f5edf00000 vm_daddr=0x12f5ee100000 vm_maxsaddr=0x7f7ffdfdf000 vm_minsaddr=0x7f7ffffdf000 - 0xffffff01118ad2c0: 0x1000->0x1000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=F, nc=F, prot(max)=0/0, inh=0, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x1000-0x12f5edf00000 fspace_augment=20847468212224 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124bec18: 0x12f5edf00000->0x12f5edf2a000: obj=0xffffff0110c13d48/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=5/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5edf2a000-0x12f5ee029000 fspace_augment=20847468212224 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124becc0: 0x12f5ee029000->0x12f5ee030000: obj=0xffffff0110c13d48/0x29000, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=1/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee030000-0x12f5ee100000 fspace_augment=851968 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa6b0: 0x12f5ee100000->0x12f5ee100000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=F, nc=F, prot(max)=0/0, inh=0, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee100000-0x12f5ee12f000 fspace_augment=192512 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124beb70: 0x12f5ee12f000->0x12f5ee130000: obj=0x0/0x0, amap=0xffffff01124b2798/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee130000-0x12f5ee22f000 fspace_augment=20847468212224 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124beeb8: 0x12f5ee22f000->0x12f5ee230000: obj=0x0/0x0, amap=0xffffff01124b24c8/0 submap=F, cow=T, nc=F, prot(max)=1/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee230000-0x12f5ee32f000 fspace_augment=1044480 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aa8a8: 0x12f5ee32f000->0x12f5ee330000: obj=0xffffff0110c13d48/0x2f000, amap=0xffffff01124b2168/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee330000-0x12f5ee330000 fspace_augment=8587530240 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aad40: 0x12f5ee330000->0x12f5ee331000: obj=0x0/0x0, amap=0xffffff01124b2630/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee331000-0x12f5ee331000 fspace_augment=0 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aab48: 0x12f5ee331000->0x12f5ee334000: obj=0x0/0x0, amap=0xffffff01124b2318/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee334000-0x12f5ee334000 fspace_augment=8587530240 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aade8: 0x12f5ee334000->0x12f5ee335000: obj=0x0/0x0, amap=0xffffff01124b2318/3 submap=F, cow=T, nc=F, prot(max)=1/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee335000-0x12f5ee335000 fspace_augment=8587530240 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff0111a51d28: 0x12f5ee335000->0x12f5ee34b000: obj=0x0/0x0, amap=0xffffff01124b2318/4 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f5ee34b000-0x12f7ee100000 fspace_augment=8587530240 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aae90: 0x12f7ee100000->0x12f7ee100000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=F, nc=F, prot(max)=0/0, inh=0, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f7ee100000-0x12f7f6b7e000 fspace_augment=119327938801664 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa368: 0x12f7f6b7e000->0x12f7f6b80000: obj=0x0/0x0, amap=0xffffff01124b2ab0/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f7f6b80000-0x12f80c9f5000 fspace_augment=367480832 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa560: 0x12f80c9f5000->0x12f80c9f6000: obj=0x0/0x0, amap=0xffffff01124b2558/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=3, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f80c9f6000-0x12f823d82000 fspace_augment=1555902464 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff0111a51bd8: 0x12f823d82000->0x12f823d83000: obj=0x0/0x0, amap=0xffffff01124b21f8/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f823d83000-0x12f880956000 fspace_augment=1555902464 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa2c0: 0x12f880956000->0x12f880957000: obj=0xffffff011e2dc240/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=5/7, inh=1, wc=0, adv=1 hole=F, free=T, guard=0x0, free=0x12f880957000-0x12f8923ca000 fspace_augment=1555902464 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff0111c41558: 0x12f8923ca000->0x12f8923cb000: obj=0x0/0x0, amap=0xffffff01124b2cf0/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8923cb000-0x12f897e95000 fspace_augment=95199232 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01125ebcd0: 0x12f897e95000->0x12f897ea5000: obj=0x0/0x0, amap=0xffffff01124b2990/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f897ea5000-0x12f8ad773000 fspace_augment=361553920 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa218: 0x12f8ad773000->0x12f8ad774000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=0/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8ad774000-0x12f8ad774000 fspace_augment=0 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aa0c8: 0x12f8ad774000->0x12f8ad776000: obj=0x0/0x0, amap=0xffffff01124b28b8/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8ad776000-0x12f8ad776000 fspace_augment=488570880 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aabf0: 0x12f8ad776000->0x12f8ad777000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=0/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8ad777000-0x12f8ca967000 fspace_augment=488570880 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aaaa0: 0x12f8ca967000->0x12f8ca968000: obj=0x0/0x0, amap=0xffffff01124b2c60/0 submap=F, cow=T, nc=F, prot(max)=1/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x12f8ca968000-0x7f7ffdfdf000 fspace_augment=119327938801664 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - 0xffffff01124aac98: 0x7f7ffdfdf000->0x7f7fff7df000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=0/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x7f7fff7df000-0x7f7fff7df000 fspace_augment=0 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aa170: 0x7f7fff7df000->0x7f7ffffd0000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x7f7ffffd0000-0x7f7ffffd0000 fspace_augment=118784 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aa020: 0x7f7ffffd0000->0x7f7ffffde000: obj=0x0/0x0, amap=0xffffff01124b2510/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free [At this point output from ddb via tip(1) '~| cat > ~/ddb.out' stops. Below is continued via copy/paste, resuming at 0xffffff01124aa020.] - 0xffffff01124aa020: 0x7f7ffffd0000->0x7f7ffffde000: obj=0x0/0x0, amap=0xffffff01124b2510/0 submap=F, cow=T, nc=F, prot(max)=3/7, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x7f7ffffde000-0x7f7ffffde000 fspace_augment=0 freemapped=T, uaddr=0xffffff011edd02a0 (0x1000-0x7f7fffffc000 uaddr_stckbrk) - 0xffffff01124aa758: 0x7f7ffffde000->0x7f7ffffdf000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=T, nc=T, prot(max)=0/0, inh=1, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x7f7ffffdf000-0x7f7fffffc000 fspace_augment=118784 freemapped=T, uaddr=0xffffff011edd12a0 (0x1000-0x7f7fffffc000 uaddr_rnd) - uvm_addr exe: NULL - uvm_addr any[0]: 0xffffff011edd12a0 (uaddr_rnd 0x1000-0x7f7fffffc000) - uvm_addr any[1]: NULL - uvm_addr any[2]: NULL - uvm_addr any[3]: NULL - uvm_addr brk/stack: 0xffffff011edd02a0 (uaddr_stckbrk 0x1000-0x7f7fffffc000) # additionally cpu0, I was wondering whether this makes sense? ddb{1}> machine ddbcpu 0 Stopped at Debugger+0x9: leave Debugger() at Debugger+0x9 x86_ipi_handler() at x86_ipi_handler+0x76 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x1c --- interrupt --- __mp_lock() at __mp_lock+0x48 softintr_dispatch() at softintr_dispatch+0x43 Xsoftclock() at Xsoftclock+0x1f --- interrupt --- end of kernel end trace frame: 0x1388, count: 9 0x8: ddb{0}> trace Debugger() at Debugger+0x9 x86_ipi_handler() at x86_ipi_handler+0x76 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x1c --- interrupt --- __mp_lock() at __mp_lock+0x48 softintr_dispatch() at softintr_dispatch+0x43 Xsoftclock() at Xsoftclock+0x1f --- interrupt --- end of kernel end trace frame: 0x1388, count: -6 0x8: ddb{0}> show proc PROC (idle0) pid=3293 stat=onproc flags process=14000<NOZOMBIE,SYSTEM> proc=40000200<SYSTEM,CPUPEG> pri=0, usrpri=86, nice=20 forw=0x804f638d9d1bbb95, list=0xffff8000ffffe238,0xffff8000ffffe6b8 process=0xffff8000ffffc540 user=0xffff800032c2a000, vmspace=0xffffffff8193f260 estcpu=36, cpticks=44, pctcpu=20.27 user=0, sys=0, intr=0 ddb{0}> show map /f 0xffffffff8193f260 MAP 0xffffffff8193f260: [0x1000->0x7fbfdfeff000] brk() allocate range: 0x0-0x0 stack allocate range: 0x0-0x0 sz=0, ref=1, version=1, flags=0x41 pmap=0xffffffff819715e0(resident=4385) vm_refcnt=20 vm_shm=0x0 vm_rssize=0 vm_swrss=0 vm_tsize=0 vm_dsize=0 vm_taddr=0x0 vm_daddr=0x0 vm_maxsaddr=0x0 vm_minsaddr=0x0 - 0xffffffff819322c8: 0x1000->0x1000: obj=0x0/0x0, amap=0x0/0 submap=F, cow=F, nc=F, prot(max)=0/0, inh=0, wc=0, adv=0 hole=F, free=T, guard=0x0, free=0x1000-0x7fbfdfeff000 fspace_augment=140462072520704 freemapped=T, uaddr=0xffffff011edd1000 (0x1000-0x7fbfdfeff000 uaddr_rnd) - uvm_addr exe: NULL - uvm_addr any[0]: 0xffffff011edd1000 (uaddr_rnd 0x1000-0x7fbfdfeff000) - uvm_addr any[1]: NULL - uvm_addr any[2]: NULL - uvm_addr any[3]: NULL - uvm_addr brk/stack: 0xffffff011edd0000 (uaddr_stckbrk 0x1000-0x7fbfdfeff000) ddb{0}> boot sync
