panic: Bad link elm ADDR prev->next != elm (3)
1 view
Skip to first unread message
syzbot
Dec 6, 2021, 11:01:21 PM12/6/21
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: dabd8bf9145a libc sctp: fix sctp_getladdrs() for 64-bit BE..
git tree: https://github.com/freebsd/freebsd-src.git main
console output: https://syzkaller.appspot.com/x/log.txt?x=12e32ae5b00000
dashboard link: https://syzkaller.appspot.com/bug?extid=36e6be9e02735fe66ca8
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+36e6be...@syzkaller.appspotmail.com
panic: Bad link elm 0xfffffe00b15f9100 prev->next != elm
cpuid = 1
time = 1638849606
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe00b60059b0
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe00b6005b10
vpanic() at vpanic+0x2b8/frame 0xfffffe00b6005bf0
panic() at panic+0xb5/frame 0xfffffe00b6005cc0
kqueue_close() at kqueue_close+0x328/frame 0xfffffe00b6005d20
_fdrop() at _fdrop+0x58/frame 0xfffffe00b6005d50
filemon_close_log() at filemon_close_log+0x3e8/frame 0xfffffe00b6005e90
filemon_dtr() at filemon_dtr+0x41/frame 0xfffffe00b6005ec0
devfs_destroy_cdevpriv() at devfs_destroy_cdevpriv+0x168/frame 0xfffffe00b6005f00
devfs_close_f() at devfs_close_f+0xbd/frame 0xfffffe00b6005f40
_fdrop() at _fdrop+0x58/frame 0xfffffe00b6005f70
closef() at closef+0x689/frame 0xfffffe00b6006150
fdescfree() at fdescfree+0xab7/frame 0xfffffe00b6006340
exit1() at exit1+0x8bf/frame 0xfffffe00b60063d0
sigexit() at sigexit+0x3d2/frame 0xfffffe00b6006d30
postsig() at postsig+0x2c4/frame 0xfffffe00b6006eb0
ast() at ast+0xc2b/frame 0xfffffe00b6006f30
doreti_ast() at doreti_ast+0x1f/frame 0x22f00
KDB: enter: panic
[ thread pid 65979 tid 174304 ]
Stopped at kdb_enter+0x6b: movq $0,0x250eeda(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0x50dd558c53cfe84a
rdx 0x1
rbx 0
rsp 0xfffffe00b6005af0
rbp 0xfffffe00b6005b10
rsi 0
rdi 0xffffffff8175c9aa vprintf+0x35a
r8 0
r9 0xffffffff
r10 0
r11 0xfffffe00b5857a70
r12 0xfffffe00b53733a0
r13 0xfffffe00b6005b01
r14 0xffffffff82b3f2e0 .str.18
r15 0xffffffff82b3f2e0 .str.18
rip 0xffffffff817501bb kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x250eeda(%rip)
db> show proc
Process 65979 (syz-executor.1) at 0xfffffe00b346a000:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 1 at 0xfffffe0053de2000
ABI: FreeBSD ELF64
flag: 0x10002010 flag2: 0
arguments: /root/syz-executor.1 exec
reaper: 0xfffffe0053de2000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00b53d69f8
(map 0xfffffe00b53d69f8)
(map.pmap 0xfffffe00b53d6ab8)
(pmap 0xfffffe00b53d6b20)
threads: 1
174304 Run CPU 1 syz-executor.1
db> ps
pid ppid pgrp uid state wmesg wchan cmd
66769 842 842 0 R (threaded) syz-executor.1
175278 RunQ syz-executor.1
175330 S uwait 0xfffffe009caa1100 syz-executor.1
66763 779 779 0 R (threaded) syz-executor.3
175318 RunQ syz-executor.3
175320 S connec 0xfffffe0058aad49a syz-executor.3
175327 RunQ syz-executor.3
66759 66753 779 0 SV uwait 0xfffffe00b0fdd800 syz-executor.3
66753 1 779 0 DV ppwait 0xfffffe00b56faa40 syz-executor.3
66742 66741 779 0 SV uwait 0xfffffe009d073c80 syz-executor.3
66741 1 779 0 DV ppwait 0xfffffe00b58024f8 syz-executor.3
66729 66728 779 0 SV uwait 0xfffffe00b569c080 syz-executor.3
66728 1 779 0 DV ppwait 0xfffffe00b5782a40 syz-executor.3
66720 66719 779 0 SV uwait 0xfffffe00b569c880 syz-executor.3
66719 66717 779 0 DV ppwait 0xfffffe00b56fa4f8 syz-executor.3
66717 1 779 0 DV ppwait 0xfffffe009e237f88 syz-executor.3
66710 66702 779 0 SV aiowc 0xfffffe00b56fae18 syz-executor.3
66702 1 779 0 DV ppwait 0xfffffe00b56faf88 syz-executor.3
66693 66688 779 0 SV uwait 0xfffffe009c30f380 syz-executor.3
66688 1 779 0 DV ppwait 0xfffffe00b5802a40 syz-executor.3
66654 66651 779 0 SV uwait 0xfffffe00b0fdd900 syz-executor.3
66651 1 779 0 DV ppwait 0xfffffe00b5721a40 syz-executor.3
66642 66638 779 0 SV uwait 0xfffffe00b569c580 syz-executor.3
66638 1 779 0 DV ppwait 0xfffffe00b5783f88 syz-executor.3
66628 66627 779 0 SV uwait 0xfffffe00b0fdde00 syz-executor.3
66627 1 779 0 DV ppwait 0xfffffe00b56fff88 syz-executor.3
66622 66619 779 0 SV connec 0xfffffe00b3adf49a syz-executor.3
66619 1 779 0 DV ppwait 0xfffffe00b5722f88 syz-executor.3
66604 66601 779 0 SV uwait 0xfffffe00b569d200 syz-executor.3
66601 1 779 0 DV ppwait 0xfffffe00b56fe4f8 syz-executor.3
66574 66572 779 0 SV uwait 0xfffffe009c5f6280 syz-executor.3
66573 66572 779 0 S uwait 0xfffffe009c30f080 syz-executor.3
66572 1 779 0 DV ppwait 0xfffffe00b56ff4f8 syz-executor.3
66563 66562 779 0 SV uwait 0xfffffe00b569d800 syz-executor.3
66562 1 779 0 DV ppwait 0xfffffe00b565ef88 syz-executor.3
66557 66556 779 0 S uwait 0xfffffe009c30f780 syz-executor.3
66543 66540 779 0 SV uwait 0xfffffe00b0fdd600 syz-executor.3
66540 1 779 0 DV ppwait 0xfffffe00b565e4f8 syz-executor.3
66532 66530 66530 0 SV uwait 0xfffffe009c30f680 syz-executor.3
66530 1 66530 0 DVs ppwait 0xfffffe009d741f88 syz-executor.3
66520 66518 779 0 SV uwait 0xfffffe009e155100 syz-executor.3
66518 1 779 0 DV ppwait 0xfffffe009c2364f8 syz-executor.3
66507 66506 779 0 SV uwait 0xfffffe009e155700 syz-executor.3
66506 1 779 0 DV ppwait 0xfffffe009eb0da40 syz-executor.3
66500 66496 779 0 SV uwait 0xfffffe009e155300 syz-executor.3
66496 1 779 0 DV ppwait 0xfffffe009eb0d4f8 syz-executor.3
66484 66483 779 0 SV uwait 0xfffffe009e155f00 syz-executor.3
66483 1 779 0 DV ppwait 0xfffffe009d7414f8 syz-executor.3
66474 66471 779 0 SV uwait 0xfffffe009e155000 syz-executor.3
66471 1 779 0 DV ppwait 0xfffffe00b33dcf88 syz-executor.3
66463 66462 779 0 SV uwait 0xfffffe009e155a00 syz-executor.3
66462 1 779 0 DV ppwait 0xfffffe009e1b8f88 syz-executor.3
66450 66444 779 0 SV uwait 0xfffffe009c30f480 syz-executor.3
66444 1 779 0 DV ppwait 0xfffffe009cfa1a40 syz-executor.3
66420 66412 779 0 SV uwait 0xfffffe009c5f6980 syz-executor.3
66412 1 779 0 DV ppwait 0xfffffe009cee3a40 syz-executor.3
66394 66392 779 0 SV uwait 0xfffffe009e155900 syz-executor.3
66392 1 779 0 DV ppwait 0xfffffe009dbffa40 syz-executor.3
66384 66383 779 0 SV uwait 0xfffffe009c30fe80 syz-executor.3
66383 1 779 0 DV ppwait 0xfffffe009e1b84f8 syz-executor.3
66375 66374 779 0 SV uwait 0xfffffe009d073080 syz-executor.3
66374 1 779 0 DV ppwait 0xfffffe009eb0df88 syz-executor.3
66365 66363 779 0 SV uwait 0xfffffe009c243a80 syz-executor.3
66363 66362 779 0 DV ppwait 0xfffffe009cee34f8 syz-executor.3
66362 1 779 0 DV ppwait 0xfffffe009cb8b4f8 syz-executor.3
66351 66350 779 0 SV uwait 0xfffffe009e155d00 syz-executor.3
66350 1 779 0 DV ppwait 0xfffffe009d4a1f88 syz-executor.3
66316 66314 779 0 SV uwait 0xfffffe009c243880 syz-executor.3
66314 1 779 0 DV ppwait 0xfffffe00b3f41a40 syz-executor.3
66300 66294 779 0 SV uwait 0xfffffe009caa1800 syz-executor.3
66294 1 779 0 DV ppwait 0xfffffe00b4eaff88 syz-executor.3
66274 66272 779 0 SV uwait 0xfffffe009cc60c00 syz-executor.3
66272 1 779 0 DV ppwait 0xfffffe00b4091f88 syz-executor.3
66260 66259 779 0 SV uwait 0xfffffe009c5f6a80 syz-executor.3
66259 1 779 0 DV ppwait 0xfffffe00b3bdff88 syz-executor.3
66242 66239 779 0 SV uwait 0xfffffe009c5f6b80 syz-executor.3
66239 1 779 0 DV ppwait 0xfffffe009e4b84f8 syz-executor.3
66219 66218 779 0 SV uwait 0xfffffe009c243c80 syz-executor.3
66218 1 779 0 DV ppwait 0xfffffe009e6b8a40 syz-executor.3
66210 66208 779 0 SV uwait 0xfffffe009cc60a00 syz-executor.3
66208 1 779 0 DV ppwait 0xfffffe009e6b8f88 syz-executor.3
66197 66195 779 0 SV uwait 0xfffffe009f047500 syz-executor.3
66195 1 779 0 DV ppwait 0xfffffe00b34c1a40 syz-executor.3
66186 66185 779 0 SV uwait 0xfffffe009cc60400 syz-executor.3
66185 1 779 0 DV ppwait 0xfffffe009def94f8 syz-executor.3
66173 66172 779 0 SV uwait 0xfffffe009caa1a00 syz-executor.3
66172 1 779 0 DV ppwait 0xfffffe009e1564f8 syz-executor.3
66161 66153 779 0 SV uwait 0xfffffe009f047400 syz-executor.3
66153 1 779 0 DV ppwait 0xfffffe00b34bff88 syz-executor.3
66140 66139 779 0 SV uwait 0xfffffe009d81d380 syz-executor.3
66139 1 779 0 DV ppwait 0xfffffe00b4eaf4f8 syz-executor.3
66130 66129 779 0 SV uwait 0xfffffe009caa1f00 syz-executor.3
66129 1 779 0 DV ppwait 0xfffffe00b40914f8 syz-executor.3
66115 66113 779 0 SV uwait 0xfffffe009cc60500 syz-executor.3
66114 66113 779 0 S uwait 0xfffffe009cc60200 syz-executor.3
66113 1 779 0 DV ppwait 0xfffffe009e6b84f8 syz-executor.3
66097 66096 779 0 SV uwait 0xfffffe009cc60900 syz-executor.3
66096 1 779 0 DV ppwait 0xfffffe009dfd24f8 syz-executor.3
66066 66065 779 0 SV uwait 0xfffffe009d073500 syz-executor.3
66065 1 779 0 DV ppwait 0xfffffe00b34bfa40 syz-executor.3
66043 66041 779 0 SV uwait 0xfffffe00b0fdc200 syz-executor.3
66041 1 779 0 DV ppwait 0xfffffe009e055a40 syz-executor.3
66020 1 833 0 REV CPU 0 syz-executor.2
66019 1 779 0 RV syz-executor.3
66018 1 779 0 RV syz-executor.3
66008 1 833 0 RV syz-executor.2
66005 1 779 0 RV syz-executor.3
65995 1 833 0 RV syz-executor.2
65987 65986 851 0 SV uwait 0xfffffe00b0fdbd00 syz-executor.0
65986 1 851 0 DV ppwait 0xfffffe009ec04f88 syz-executor.0
65984 1 833 0 RV syz-executor.2
65982 1 779 0 RV syz-executor.3
65979 1 842 0 REV CPU 1 syz-executor.1
65974 1 833 0 RV syz-executor.2
65971 1 779 0 RV syz-executor.3
65968 1 842 0 RV syz-executor.1
65963 1 833 0 RV syz-executor.2
65960 1 779 0 RV syz-executor.3
65957 1 842 0 RV syz-executor.1
65952 1 833 0 RV syz-executor.2
65949 1 779 0 RV syz-executor.3
65946 1 842 0 RV syz-executor.1
65941 1 833 0 RV syz-executor.2
65938 1 779 0 RV syz-executor.3
65935 1 842 0 RV syz-executor.1
65930 1 833 0 RV syz-executor.2
65927 1 779 0 RV syz-executor.3
65924 1 842 0 RV syz-executor.1
65918 1 833 0 RV syz-executor.2
65915 1 779 0 RV syz-executor.3
65913 1 842 0 RV syz-executor.1
65911 1 851 0 RV syz-executor.0
65910 1 833 0 RV syz-executor.2
65904 1 779 0 RV syz-executor.3
65901 1 842 0 RV syz-executor.1
65894 1 779 0 RV syz-executor.3
65891 1 842 0 RV syz-executor.1
65884 1 779 0 RV syz-executor.3
65881 1 842 0 RV syz-executor.1
65875 1 779 0 RV syz-executor.3
65871 1 842 0 RV syz-executor.1
65865 1 779 0 RV syz-executor.3
65861 1 842 0 RV syz-executor.1
65855 1 779 0 RV syz-executor.3
65851 1 842 0 RV syz-executor.1
65845 1 779 0 RV syz-executor.3
65841 1 842 0 RV syz-executor.1
65832 1 779 0 RV syz-executor.3
65828 1 842 0 RV syz-executor.1
65822 1 779 0 RV syz-executor.3
65818 1 842 0 RV syz-executor.1
65813 1 779 0 RV syz-executor.3
65808 1 842 0 RV syz-executor.1
65802 1 779 0 RV syz-executor.3
65798 1 842 0 RV syz-executor.1
65791 1 779 0 RV syz-executor.3
65788 1 842 0 RV syz-executor.1
65782 1 779 0 RV syz-executor.3
65778 1 842 0 RV syz-executor.1
65772 1 779 0 RV syz-executor.3
65768 1 842 0 RV syz-executor.1
65762 1 779 0 RV syz-executor.3
65758 1 842 0 RV syz-executor.1
65752 1 779 0 RV syz-executor.3
65748 1 842 0 RV syz-executor.1
65742 1 779 0 RV syz-executor.3
65739 1 842 0 RV syz-executor.1
65730 1 842 0 RV syz-executor.1
65727 1 779 0 RV syz-executor.3
65720 1 842 0 RV syz-executor.1
65717 1 779 0 RV syz-executor.3
65711 1 842 0 RV syz-executor.1
65707 1 779 0 RV syz-executor.3
65702 1 842 0 RV syz-executor.1
65692 1 842 0 RV syz-executor.1
65682 1 842 0 RV syz-executor.1
65679 1 842 0 RV syz-executor.1
65668 1 842 0 RV syz-executor.1
65660 1 842 0 RV syz-executor.1
65659 1 833 0 RV syz-executor.2
65651 1 833 0 RV syz-executor.2
65645 1 842 0 RV syz-executor.1
65641 1 833 0 RV syz-executor.2
65635 1 842 0 RV syz-executor.1
65631 1 833 0 RV syz-executor.2
65626 1 842 0 RV syz-executor.1
65617 1 842 0 RV syz-executor.1
65611 1 842 0 RV syz-executor.1
65600 1 842 0 RV syz-executor.1
65590 1 842 0 RV syz-executor.1
65580 1 842 0 RV syz-executor.1
65573 1 842 0 RV syz-executor.1
63785 63784 779 0 SV uwait 0xfffffe00afac4000 syz-executor.3
63784 1 779 0 DV ppwait 0xfffffe0058a9cf88 syz-executor.3
60210 60203 779 0 SV uwait 0xfffffe00afac4c00 syz-executor.3
60203 1 779 0 DV ppwait 0xfffffe00b52214f8 syz-executor.3
56935 1 779 0 R syz-executor.3
56934 1 779 0 R syz-executor.3
49217 1 851 0 R syz-executor.0
49209 1 851 0 R syz-executor.0
39587 1 851 0 R syz-executor.0
39586 1 851 0 R syz-executor.0
39151 1 851 0 RV syz-executor.0
39145 1 851 0 RV syz-executor.0
23447 1 842 0 R syz-executor.1
23446 1 842 0 R syz-executor.1
20099 0 0 0 DL - 0xffffffff83d4c440 [soaiod4]
20098 0 0 0 DL - 0xffffffff83d4c440 [soaiod3]
20097 0 0 0 DL - 0xffffffff83d4c440 [soaiod2]
20096 0 0 0 DL - 0xffffffff83d4c440 [soaiod1]
7031 1 7031 65 Rs dhclient
6750 1 842 0 R syz-executor.1
5367 1 5367 0 Rs dhclient
5312 1 5312 65 Rs dhclient
3635 1 3635 0 Rs dhclient
3632 1 3632 0 Rs dhclient
3606 1 3606 65 Rs dhclient
1881 1 1881 0 Rs dhclient
1878 1 1878 0 Rs dhclient
1859 1 1859 65 Rs dhclient
1337 0 0 0 DL aiordy 0xfffffe00aff00548 [aiod4]
1336 0 0 0 DL aiordy 0xfffffe00aff01000 [aiod3]
1335 0 0 0 DL aiordy 0xfffffe00b0092548 [aiod2]
1334 0 0 0 DL aiordy 0xfffffe00aff02a90 [aiod1]
1324 0 0 0 DL (threaded) [zfskern]
100399 D t->zthr 0xfffffe009c1a1148 [arc_evict]
100778 D t->zthr 0xfffffe009c1a1048 [arc_reap]
100779 D - 0xfffffe0007963100 [dbu_evict]
100780 D dbuf_ev 0xffffffff85634fa0 [dbuf_evict_thread]
100781 D - 0xfffffe0007963700 [z_vdev_file_0]
100782 D - 0xfffffe0007963700 [z_vdev_file_1]
100783 D - 0xfffffe0007963700 [z_vdev_file_2]
100784 D - 0xfffffe0007963700 [z_vdev_file_3]
100785 D - 0xfffffe0007963700 [z_vdev_file_4]
100786 D - 0xfffffe0007963700 [z_vdev_file_5]
100787 D - 0xfffffe0007963700 [z_vdev_file_6]
100788 D - 0xfffffe0007963700 [z_vdev_file_7]
100789 D - 0xfffffe0007963700 [z_vdev_file_8]
100790 D - 0xfffffe0007963700 [z_vdev_file_9]
100791 D - 0xfffffe0007963700 [z_vdev_file_10]
100792 D - 0xfffffe0007963700 [z_vdev_file_11]
100793 D - 0xfffffe0007963700 [z_vdev_file_12]
100794 D - 0xfffffe0007963700 [z_vdev_file_13]
100795 D - 0xfffffe0007963700 [z_vdev_file_14]
100796 D - 0xfffffe0007963700 [z_vdev_file_15]
100797 D l2arc_f 0xffffffff85624120 [l2arc_feed_thread]
100798 D - 0xfffffe0007963e00 [zfsvfs]
100799 S zevent_ 0xffffffff85635b80 [sysevent]
1113 1 851 0 R syz-executor.0
1110 1 851 0 R syz-executor.0
1101 1 851 0 R syz-executor.0
1095 1 851 0 R syz-executor.0
1084 1 851 0 R syz-executor.0
1074 1 851 0 R syz-executor.0
1064 1 851 0 R syz-executor.0
1060 1 851 0 R syz-executor.0
1050 1 833 0 R syz-executor.2
1048 1 851 0 R syz-executor.0
1046 1 833 0 R syz-executor.2
1042 1 851 0 R syz-executor.0
1039 1 833 0 R syz-executor.2
1035 1 851 0 R syz-executor.0
1033 1 833 0 R syz-executor.2
1029 1 842 0 R syz-executor.1
1028 1 842 0 R syz-executor.1
1026 1 851 0 R syz-executor.0
1025 1 833 0 R syz-executor.2
1022 1 779 0 R syz-executor.3
1020 1 779 0 R syz-executor.3
1010 1 851 0 R syz-executor.0
1009 1 833 0 R syz-executor.2
1008 1 779 0 R syz-executor.3
1004 1 842 0 R syz-executor.1
1002 1 851 0 R syz-executor.0
1000 1 779 0 R syz-executor.3
999 1 833 0 R syz-executor.2
989 1 833 0 R syz-executor.2
988 1 779 0 R syz-executor.3
982 1 833 0 R syz-executor.2
980 1 779 0 R syz-executor.3
973 1 833 0 R syz-executor.2
970 1 779 0 R syz-executor.3
957 1 779 0 R syz-executor.3
956 1 833 0 R syz-executor.2
948 1 833 0 R syz-executor.2
946 1 779 0 R syz-executor.3
939 1 779 0 R syz-executor.3
934 1 833 0 R syz-executor.2
928 1 779 0 R syz-executor.3
923 1 833 0 R syz-executor.2
917 1 779 0 R syz-executor.3
913 1 833 0 R syz-executor.2
912 1 833 0 R syz-executor.2
902 1 833 0 R syz-executor.2
901 1 833 0 R syz-executor.2
900 1 779 0 R syz-executor.3
895 1 833 0 R syz-executor.2
894 1 833 0 R syz-executor.2
893 1 779 0 R syz-executor.3
888 1 833 0 R syz-executor.2
887 1 833 0 R syz-executor.2
886 1 779 0 R syz-executor.3
885 1 779 0 R syz-executor.3
882 1 833 0 R syz-executor.2
879 1 779 0 R syz-executor.3
878 1 833 0 R syz-executor.2
877 1 779 0 R syz-executor.3
874 1 833 0 R syz-executor.2
873 1 833 0 R syz-executor.2
870 1 779 0 R syz-executor.3
869 1 779 0 R syz-executor.3
866 1 833 0 R syz-executor.2
865 1 833 0 R syz-executor.2
864 1 779 0 R syz-executor.3
863 1 779 0 R syz-executor.3
851 773 851 0 Ss piperd 0xfffffe009f0a08b8 syz-executor.0
842 773 842 0 Rs syz-executor.1
833 773 833 0 Ss piperd 0xfffffe0058a1a5d0 syz-executor.2
831 1 779 0 R syz-executor.3
830 1 779 0 R syz-executor.3
827 1 779 0 R syz-executor.3
826 1 779 0 R syz-executor.3
822 1 779 0 R syz-executor.3
821 1 779 0 R syz-executor.3
818 1 779 0 R syz-executor.3
817 1 779 0 R syz-executor.3
815 1 794 0 R syz-executor.3
814 1 794 0 R syz-executor.3
808 1 808 0 Rs dhclient
798 1 779 0 R syz-executor.3
797 1 779 0 R syz-executor.3
779 773 779 0 Rs syz-executor.3
773 771 771 0 S (threaded) syz-fuzzer
100098 S uwait 0xfffffe0053c0b280 syz-fuzzer
100114 S uwait 0xfffffe0053c0e980 syz-fuzzer
100115 S uwait 0xfffffe0053c0ea80 syz-fuzzer
100116 S uwait 0xfffffe0053c0eb80 syz-fuzzer
100117 S uwait 0xfffffe009f046e00 syz-fuzzer
100118 S uwait 0xfffffe009e7fe280 syz-fuzzer
100119 S uwait 0xfffffe0053c0a080 syz-fuzzer
100120 S kqread 0xfffffe0053c98400 syz-fuzzer
100121 S uwait 0xfffffe009f046f00 syz-fuzzer
109407 S uwait 0xfffffe00afac4600 syz-fuzzer
771 769 771 0 Ss pause 0xfffffe009e75a0b0 csh
769 687 769 0 Ss select 0xfffffe0056d9a9c0 sshd
753 1 753 0 Rs+ getty
752 1 752 0 Rs+ getty
751 1 751 0 Rs+ getty
750 1 750 0 Rs+ getty
749 1 749 0 Rs+ getty
748 1 748 0 Rs+ getty
747 1 747 0 Rs+ getty
746 1 746 0 Rs+ getty
745 1 745 0 Rs+ getty
691 1 691 0 Rs cron
687 1 687 0 Rs sshd
500 1 500 0 Ss select 0xfffffe0053c05340 syslogd
429 1 429 0 Rs devd
428 1 428 65 Rs dhclient
340 1 340 0 Rs dhclient
16 0 0 0 DL syncer 0xffffffff83d51f40 [syncer]
15 0 0 0 DL vlruwt 0xfffffe0058604000 [vnlru]
9 0 0 0 RL (threaded) [bufdaemon]
100078 D qsleep 0xffffffff83d50560 [bufdaemon]
100081 D - 0xffffffff83011f80 [bufspacedaemon-0]
100091 RunQ [/ worker]
8 0 0 0 DL psleep 0xffffffff83d83a00 [vmdaemon]
7 0 0 0 DL (threaded) [pagedaemon]
100076 D psleep 0xffffffff83d778b8 [dom0]
100082 D launds 0xffffffff83d778c4 [laundry: dom0]
100083 D umarcl 0xffffffff81e41410 [uma]
6 0 0 0 RL [rand_harvestq]
5 0 0 0 DL waiting 0xffffffff8450a1c0 [sctp_iterator]
4 0 0 0 DL pftm 0xffffffff84961530 [pf purge]
3 0 0 0 DL (threaded) [cam]
100045 D - 0xffffffff8388a640 [doneq0]
100046 D - 0xffffffff8388a5c0 [async]
100075 D - 0xffffffff8388a440 [scanner]
14 0 0 0 DL seqstat 0xfffffe0053fc0c88 [sequencer 00]
2 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83d73100 [crypto]
100042 D crypto_ 0xfffffe00543d2030 [crypto returns 0]
100043 D crypto_ 0xfffffe00543d2080 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100036 D - 0xffffffff83c01e80 [g_event]
100037 D - 0xffffffff83c01ea0 [g_up]
100038 D - 0xffffffff83c01ec0 [g_down]
12 0 0 0 WL (threaded) [intr]
100013 I [swi5: fast taskq]
100017 I [swi6: task queue]
100020 I [swi6: Giant taskq]
100029 I [swi3: vm]
100030 I [swi1: netisr 0]
100031 I [swi4: clock (0)]
100032 I [swi4: clock (1)]
100033 I [swi1: hpts]
100034 I [swi1: hpts]
100047 I [irq24: virtio_pci0]
100048 I [irq25: virtio_pci0]
100049 I [irq26: virtio_pci0]
100050 I [irq27: virtio_pci0]
100051 I [irq28: virtio_pci1]
100052 I [irq29: virtio_pci1]
100053 I [irq30: virtio_pci1]
100054 I [irq31: virtio_pci1]
100055 I [irq32: virtio_pci1]
100060 I [irq10: virtio_pci2]
100062 I [irq1: atkbd0]
100063 I [irq12: psm0]
100064 I [swi0: uart uart++]
100068 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 RLs [init]
10 0 0 0 DL audit_w 0xffffffff83d73be0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83c028e0 [swapper]
100005 D - 0xfffffe0007966300 [if_config_tqg_0]
100006 D - 0xfffffe0007966200 [softirq_0]
100007 D - 0xfffffe0007966100 [softirq_1]
100008 D - 0xfffffe0007966000 [if_io_tqg_0]
100009 D - 0xfffffe0007965e00 [if_io_tqg_1]
100010 D - 0xfffffe0007965d00 [aiod_kick taskq]
100011 D - 0xfffffe0007965c00 [deferred_unmount ta]
100012 D - 0xfffffe0007965b00 [thread taskq]
100014 D - 0xfffffe0007965900 [linuxkpi_irq_wq]
100015 D - 0xfffffe0007965800 [kqueue_ctx taskq]
100016 D - 0xfffffe0007965700 [pci_hp taskq]
100018 D - 0xfffffe0007965500 [inm_free taskq]
100019 D - 0xfffffe0007965400 [in6m_free taskq]
100021 D - 0xfffffe0007965200 [linuxkpi_short_wq_0]
100022 D - 0xfffffe0007965200 [linuxkpi_short_wq_1]
100023 D - 0xfffffe0007965200 [linuxkpi_short_wq_2]
100024 D - 0xfffffe0007965200 [linuxkpi_short_wq_3]
100025 D - 0xfffffe0007965100 [linuxkpi_long_wq_0]
100026 D - 0xfffffe0007965100 [linuxkpi_long_wq_1]
100027 D - 0xfffffe0007965100 [linuxkpi_long_wq_2]
100028 D - 0xfffffe0007965100 [linuxkpi_long_wq_3]
100035 D - 0xfffffe0056da1300 [firmware taskq]
100039 D - 0xfffffe0056da1200 [crypto_0]
100040 D - 0xfffffe0056da1200 [crypto_1]
100056 D - 0xfffffe0056da1000 [vtnet0 rxq 0]
100057 D - 0xfffffe0056da0e00 [vtnet0 txq 0]
100058 D - 0xfffffe0056da0d00 [vtnet0 rxq 1]
100059 D - 0xfffffe0056da0c00 [vtnet0 txq 1]
100061 D vtbslp 0xfffffe0056d9ae80 [virtio_balloon]
100065 D - 0xfffffe0056da0b00 [mca taskq]
100066 D - 0xffffffff82b44dc0 [deadlkres]
100071 D - 0xfffffe0056da0900 [acpi_task_0]
100072 D - 0xfffffe0056da0900 [acpi_task_1]
100073 D - 0xfffffe0056da0900 [acpi_task_2]
100074 D - 0xfffffe0056da1100 [CAM taskq]
100772 D - 0xfffffe0007963400 [system_taskq_0]
100773 D - 0xfffffe0007963400 [system_taskq_1]
100774 D - 0xfffffe0007963300 [system_delay_taskq_]
100775 D - 0xfffffe0007963300 [system_delay_taskq_]
100776 D - 0xfffffe0007963200 [arc_prune_0]
100777 D - 0xfffffe0007963200 [arc_prune_1]
66577 1 779 0 RE syz-executor.3
66588 1 779 0 REV syz-executor.3
66595 1 779 0 REV syz-executor.3
66613 1 779 0 REV syz-executor.3
66667 1 779 0 REV syz-executor.3
66722 1 779 0 REV syz-executor.3
5378 1 5378 0 Z dhclient
343 1 343 0 Z dhclient
66027 1 833 0 Z syz-executor.2
66033 1 779 0 Z syz-executor.3
66037 1 833 0 Z syz-executor.2
66047 1 833 0 Z syz-executor.2
66054 1 779 0 Z syz-executor.3
66055 1 779 0 REV syz-executor.3
66058 1 833 0 REV syz-executor.2
66069 1 833 0 Z syz-executor.2
66076 1 779 0 REV syz-executor.3
66077 1 779 0 Z syz-executor.3
66081 1 833 0 Z syz-executor.2
66084 1 779 0 REV syz-executor.3
66085 1 779 0 REV syz-executor.3
66087 1 842 0 Z syz-executor.1
66092 1 833 0 Z syz-executor.2
66100 1 842 0 REV syz-executor.1
66102 1 833 0 Z syz-executor.2
66111 1 833 0 REV syz-executor.2
66116 1 779 0 RE syz-executor.3
66124 1 833 0 Z syz-executor.2
66135 1 833 0 Z syz-executor.2
66147 1 833 0 REV syz-executor.2
66158 1 833 0 REV syz-executor.2
66163 1 779 0 REV syz-executor.3
66164 1 779 0 REV syz-executor.3
66231 1 779 0 REV syz-executor.3
66233 1 779 0 REV syz-executor.3
66250 1 779 0 REV syz-executor.3
66283 1 779 0 REV syz-executor.3
66288 66283 779 0 Z syz-executor.3
66307 1 779 0 REV syz-executor.3
66326 1 779 0 REV syz-executor.3
66332 1 779 0 REV syz-executor.3
66339 1 779 0 REV syz-executor.3
66345 1 779 0 REV syz-executor.3
811 1 811 0 Z dhclient
66366 1 779 0 REV syz-executor.3
66402 1 779 0 REV syz-executor.3
66403 1 779 0 REV syz-executor.3
66423 1 779 0 REV syz-executor.3
66424 1 779 0 REV syz-executor.3
66435 1 779 0 REV syz-executor.3
66556 1 779 0 REV syz-executor.3
db> show all locks
Process 66020 (syz-executor.2) thread 0xfffffe00b5373ac0 (174339)
exclusive sx vm map (user) (vm map (user)) r = 0 (0xfffffe00b540f450) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_map.c:4001
Process 65979 (syz-executor.1) thread 0xfffffe00b53733a0 (174304)
exclusive sx filedesc structure (filedesc structure) r = 0 (0xfffffe00b537e020) locked @ /syzkaller/managers/main/kernel/sys/kern/kern_event.c:2308
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
linker 397 10237K 838
filedesc 570 4561K 131460
devbuf 4213 4323K 4242
tcp_hpts 6 3201K 6
solaris 129 2804K 199
sysctloid 47267 2780K 47371
vtbuf 24 1968K 46
subproc 793 1712K 67175
pcb 873 1476K 192760
filemon 164 1312K 1482
kobj 322 1288K 481
newblk 102 1050K 68275
vfscache 3 1025K 3
inodedep 250 606K 65900
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
sctp_stro 374 374K 42733
sctp_atcl 791 297K 134561
vmem 3 276K 6
acpica 1674 184K 56282
vnet_data 1 168K 1
pagedep 90 151K 65621
kdtrace 892 150K 142102
tidhash 3 141K 3
umtx 1034 130K 1034
tfo_ccache 1 128K 1
DEVFS1 110 110K 127
sem 4 106K 4
bus 973 80K 3426
mtx_pool 2 72K 2
syncache 1 68K 1
acpitask 1 64K 1
ddb_capture 1 64K 1
module 510 64K 510
BPF 34 62K 147
shm 11 52K 4256
sctp_atky 1165 49K 179745
dirrem 182 46K 65723
sctp_timw 157 40K 157
temp 35 35K 5459
kqueue 419 34K 66871
DEVFS3 129 33K 139
hostcache 1 32K 1
msg 4 30K 4
gtaskqueue 18 26K 18
kbdmux 6 22K 6
freefile 169 22K 65504
pwddesc 337 22K 66920
ifaddr 70 20K 72
DEVFS_RULE 56 20K 56
DEVFSP 311 20K 9467
routetbl 136 18K 435
kstat_data 17 17K 17
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
ithread 99 16K 99
bus-sc 34 15K 1651
lltable 45 14K 228
KTRACE 100 13K 100
sctp_athm 791 13K 135475
ifnet 7 13K 7
ether_multi 152 13K 162
sctp_map 748 12K 85108
eventhandler 139 12K 139
kenv 95 12K 95
newdirblk 83 11K 65587
CAM queue 5 11K 1528
mount 32 10K 1681
GEOM 61 10K 494
rman 84 10K 425
ksem 4 10K 44
in6_multi 65 9K 65
freework 35 9K 66120
freeblks 34 9K 65482
bmsafemap 3 9K 65926
taskqueue 81 9K 81
kcovinfo 132 9K 561
UART 12 9K 12
devstat 4 9K 4
rpc 2 8K 2
shmfd 1 8K 288
pfs_vncache 1 8K 1
proc-args 366 8K 68423
pfs_nodes 20 8K 20
audit_evclass 237 8K 295
UMA 363 7K 363
cred 26 7K 418
sglist 5 7K 5
CAM DEV 3 6K 510
plimit 24 6K 753
pf_osfp 51 6K 51
pf_ifnet 14 6K 65
ufs_dirhash 24 5K 24
session 37 5K 102
vt 11 5K 11
pf_table 2 4K 6
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
acpisem 28 4K 28
lockf 32 4K 136
hhook 15 4K 17
selfd 49 4K 859669
terminal 11 3K 11
uidinfo 3 3K 25
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
select 16 2K 116
ip6ndp 12 2K 13
Unitno 29 2K 67
sctp_ifa 13 2K 14
CAM XPT 22 2K 543
CC Mem 25 2K 12070
diradd 12 2K 65769
in_multi 6 2K 8
vnodemarker 3 2K 303
ipsecpolicy 2 2K 2
acpidev 20 2K 20
osd 54 2K 12050
msi 9 2K 9
clone 9 2K 9
inpcbpolicy 35 2K 15155
tun 7 2K 7
softdep 1 1K 1
mkdir 8 1K 131174
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
NFSD session 1 1K 1
CAM periph 4 1K 271
sctp_ifn 6 1K 14
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
pci_link 10 1K 10
crypto 4 1K 273
encap_export_host 12 1K 12
procdesc 5 1K 14
pfil 4 1K 4
eventfd 4 1K 118
cdev 2 1K 2
sigio 7 1K 8
chacha20random 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
xform 4 1K 8389
ip6opt 1 1K 161
vnodes 1 1K 1
CAM SIM 2 1K 2
prison 8 1K 8
feeder 7 1K 7
taskq 2 1K 2
tcpfunc 3 1K 3
loginclass 3 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
soname 6 1K 100243
pf_rule 1 1K 113
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
pmchooks 1 1K 1
filecaps 5 1K 120
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 65
acpiintr 1 1K 1
pmc 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
ext2_mount 0 0K 0
ext2_node 0 0K 0
ext2_extents 0 0K 0
sfs_nodes 0 0K 0
zones_data 0 0K 0
pf_altq 0 0K 0
pf_temp 0 0K 0
mqdata 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 1607
sctp_mcore 0 0K 0
sctp_socko 0 0K 76294
sctp_iter 0 0K 77
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 65
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 12
sctp_aadr 0 0K 376
sctp_stri 0 0K 1042
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
ixl 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
qpidrv 0 0K 0
DEVFS4 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
DEVFS2 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
gntdev 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
privcmd_dev 0 0K 0
xenbus 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
vm_fictitious 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
UMAHash 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 57272
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 148
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 35
allocindir 0 0K 0
indirdep 0 0K 924
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
AHCI driver 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
ktls_ocf 0 0K 0
agp 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
seq_file 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpifw 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
LRO 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 56
in_mfilter 0 0K 2
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 12
VN POLL 0 0K 0
nvme_da 0 0K 0
statfs 0 0K 66419
namei_tracker 0 0K 6
export_host 0 0K 0
cl_savebuf 0 0K 2
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 2479
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
aios 0 0K 22
lio 0 0K 16
acl 0 0K 0
PUC 0 0K 0
mbuf_tag 0 0K 186
ktls 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
lDevFlags * malloc 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following issue on:
HEAD commit: dabd8bf9145a libc sctp: fix sctp_getladdrs() for 64-bit BE..
git tree: https://github.com/freebsd/freebsd-src.git main
console output: https://syzkaller.appspot.com/x/log.txt?x=12e32ae5b00000
dashboard link: https://syzkaller.appspot.com/bug?extid=36e6be9e02735fe66ca8
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+36e6be...@syzkaller.appspotmail.com
panic: Bad link elm 0xfffffe00b15f9100 prev->next != elm
cpuid = 1
time = 1638849606
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe00b60059b0
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe00b6005b10
vpanic() at vpanic+0x2b8/frame 0xfffffe00b6005bf0
panic() at panic+0xb5/frame 0xfffffe00b6005cc0
kqueue_close() at kqueue_close+0x328/frame 0xfffffe00b6005d20
_fdrop() at _fdrop+0x58/frame 0xfffffe00b6005d50
filemon_close_log() at filemon_close_log+0x3e8/frame 0xfffffe00b6005e90
filemon_dtr() at filemon_dtr+0x41/frame 0xfffffe00b6005ec0
devfs_destroy_cdevpriv() at devfs_destroy_cdevpriv+0x168/frame 0xfffffe00b6005f00
devfs_close_f() at devfs_close_f+0xbd/frame 0xfffffe00b6005f40
_fdrop() at _fdrop+0x58/frame 0xfffffe00b6005f70
closef() at closef+0x689/frame 0xfffffe00b6006150
fdescfree() at fdescfree+0xab7/frame 0xfffffe00b6006340
exit1() at exit1+0x8bf/frame 0xfffffe00b60063d0
sigexit() at sigexit+0x3d2/frame 0xfffffe00b6006d30
postsig() at postsig+0x2c4/frame 0xfffffe00b6006eb0
ast() at ast+0xc2b/frame 0xfffffe00b6006f30
doreti_ast() at doreti_ast+0x1f/frame 0x22f00
KDB: enter: panic
[ thread pid 65979 tid 174304 ]
Stopped at kdb_enter+0x6b: movq $0,0x250eeda(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0x50dd558c53cfe84a
rdx 0x1
rbx 0
rsp 0xfffffe00b6005af0
rbp 0xfffffe00b6005b10
rsi 0
rdi 0xffffffff8175c9aa vprintf+0x35a
r8 0
r9 0xffffffff
r10 0
r11 0xfffffe00b5857a70
r12 0xfffffe00b53733a0
r13 0xfffffe00b6005b01
r14 0xffffffff82b3f2e0 .str.18
r15 0xffffffff82b3f2e0 .str.18
rip 0xffffffff817501bb kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x250eeda(%rip)
db> show proc
Process 65979 (syz-executor.1) at 0xfffffe00b346a000:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 1 at 0xfffffe0053de2000
ABI: FreeBSD ELF64
flag: 0x10002010 flag2: 0
arguments: /root/syz-executor.1 exec
reaper: 0xfffffe0053de2000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00b53d69f8
(map 0xfffffe00b53d69f8)
(map.pmap 0xfffffe00b53d6ab8)
(pmap 0xfffffe00b53d6b20)
threads: 1
174304 Run CPU 1 syz-executor.1
db> ps
pid ppid pgrp uid state wmesg wchan cmd
66769 842 842 0 R (threaded) syz-executor.1
175278 RunQ syz-executor.1
175330 S uwait 0xfffffe009caa1100 syz-executor.1
66763 779 779 0 R (threaded) syz-executor.3
175318 RunQ syz-executor.3
175320 S connec 0xfffffe0058aad49a syz-executor.3
175327 RunQ syz-executor.3
66759 66753 779 0 SV uwait 0xfffffe00b0fdd800 syz-executor.3
66753 1 779 0 DV ppwait 0xfffffe00b56faa40 syz-executor.3
66742 66741 779 0 SV uwait 0xfffffe009d073c80 syz-executor.3
66741 1 779 0 DV ppwait 0xfffffe00b58024f8 syz-executor.3
66729 66728 779 0 SV uwait 0xfffffe00b569c080 syz-executor.3
66728 1 779 0 DV ppwait 0xfffffe00b5782a40 syz-executor.3
66720 66719 779 0 SV uwait 0xfffffe00b569c880 syz-executor.3
66719 66717 779 0 DV ppwait 0xfffffe00b56fa4f8 syz-executor.3
66717 1 779 0 DV ppwait 0xfffffe009e237f88 syz-executor.3
66710 66702 779 0 SV aiowc 0xfffffe00b56fae18 syz-executor.3
66702 1 779 0 DV ppwait 0xfffffe00b56faf88 syz-executor.3
66693 66688 779 0 SV uwait 0xfffffe009c30f380 syz-executor.3
66688 1 779 0 DV ppwait 0xfffffe00b5802a40 syz-executor.3
66654 66651 779 0 SV uwait 0xfffffe00b0fdd900 syz-executor.3
66651 1 779 0 DV ppwait 0xfffffe00b5721a40 syz-executor.3
66642 66638 779 0 SV uwait 0xfffffe00b569c580 syz-executor.3
66638 1 779 0 DV ppwait 0xfffffe00b5783f88 syz-executor.3
66628 66627 779 0 SV uwait 0xfffffe00b0fdde00 syz-executor.3
66627 1 779 0 DV ppwait 0xfffffe00b56fff88 syz-executor.3
66622 66619 779 0 SV connec 0xfffffe00b3adf49a syz-executor.3
66619 1 779 0 DV ppwait 0xfffffe00b5722f88 syz-executor.3
66604 66601 779 0 SV uwait 0xfffffe00b569d200 syz-executor.3
66601 1 779 0 DV ppwait 0xfffffe00b56fe4f8 syz-executor.3
66574 66572 779 0 SV uwait 0xfffffe009c5f6280 syz-executor.3
66573 66572 779 0 S uwait 0xfffffe009c30f080 syz-executor.3
66572 1 779 0 DV ppwait 0xfffffe00b56ff4f8 syz-executor.3
66563 66562 779 0 SV uwait 0xfffffe00b569d800 syz-executor.3
66562 1 779 0 DV ppwait 0xfffffe00b565ef88 syz-executor.3
66557 66556 779 0 S uwait 0xfffffe009c30f780 syz-executor.3
66543 66540 779 0 SV uwait 0xfffffe00b0fdd600 syz-executor.3
66540 1 779 0 DV ppwait 0xfffffe00b565e4f8 syz-executor.3
66532 66530 66530 0 SV uwait 0xfffffe009c30f680 syz-executor.3
66530 1 66530 0 DVs ppwait 0xfffffe009d741f88 syz-executor.3
66520 66518 779 0 SV uwait 0xfffffe009e155100 syz-executor.3
66518 1 779 0 DV ppwait 0xfffffe009c2364f8 syz-executor.3
66507 66506 779 0 SV uwait 0xfffffe009e155700 syz-executor.3
66506 1 779 0 DV ppwait 0xfffffe009eb0da40 syz-executor.3
66500 66496 779 0 SV uwait 0xfffffe009e155300 syz-executor.3
66496 1 779 0 DV ppwait 0xfffffe009eb0d4f8 syz-executor.3
66484 66483 779 0 SV uwait 0xfffffe009e155f00 syz-executor.3
66483 1 779 0 DV ppwait 0xfffffe009d7414f8 syz-executor.3
66474 66471 779 0 SV uwait 0xfffffe009e155000 syz-executor.3
66471 1 779 0 DV ppwait 0xfffffe00b33dcf88 syz-executor.3
66463 66462 779 0 SV uwait 0xfffffe009e155a00 syz-executor.3
66462 1 779 0 DV ppwait 0xfffffe009e1b8f88 syz-executor.3
66450 66444 779 0 SV uwait 0xfffffe009c30f480 syz-executor.3
66444 1 779 0 DV ppwait 0xfffffe009cfa1a40 syz-executor.3
66420 66412 779 0 SV uwait 0xfffffe009c5f6980 syz-executor.3
66412 1 779 0 DV ppwait 0xfffffe009cee3a40 syz-executor.3
66394 66392 779 0 SV uwait 0xfffffe009e155900 syz-executor.3
66392 1 779 0 DV ppwait 0xfffffe009dbffa40 syz-executor.3
66384 66383 779 0 SV uwait 0xfffffe009c30fe80 syz-executor.3
66383 1 779 0 DV ppwait 0xfffffe009e1b84f8 syz-executor.3
66375 66374 779 0 SV uwait 0xfffffe009d073080 syz-executor.3
66374 1 779 0 DV ppwait 0xfffffe009eb0df88 syz-executor.3
66365 66363 779 0 SV uwait 0xfffffe009c243a80 syz-executor.3
66363 66362 779 0 DV ppwait 0xfffffe009cee34f8 syz-executor.3
66362 1 779 0 DV ppwait 0xfffffe009cb8b4f8 syz-executor.3
66351 66350 779 0 SV uwait 0xfffffe009e155d00 syz-executor.3
66350 1 779 0 DV ppwait 0xfffffe009d4a1f88 syz-executor.3
66316 66314 779 0 SV uwait 0xfffffe009c243880 syz-executor.3
66314 1 779 0 DV ppwait 0xfffffe00b3f41a40 syz-executor.3
66300 66294 779 0 SV uwait 0xfffffe009caa1800 syz-executor.3
66294 1 779 0 DV ppwait 0xfffffe00b4eaff88 syz-executor.3
66274 66272 779 0 SV uwait 0xfffffe009cc60c00 syz-executor.3
66272 1 779 0 DV ppwait 0xfffffe00b4091f88 syz-executor.3
66260 66259 779 0 SV uwait 0xfffffe009c5f6a80 syz-executor.3
66259 1 779 0 DV ppwait 0xfffffe00b3bdff88 syz-executor.3
66242 66239 779 0 SV uwait 0xfffffe009c5f6b80 syz-executor.3
66239 1 779 0 DV ppwait 0xfffffe009e4b84f8 syz-executor.3
66219 66218 779 0 SV uwait 0xfffffe009c243c80 syz-executor.3
66218 1 779 0 DV ppwait 0xfffffe009e6b8a40 syz-executor.3
66210 66208 779 0 SV uwait 0xfffffe009cc60a00 syz-executor.3
66208 1 779 0 DV ppwait 0xfffffe009e6b8f88 syz-executor.3
66197 66195 779 0 SV uwait 0xfffffe009f047500 syz-executor.3
66195 1 779 0 DV ppwait 0xfffffe00b34c1a40 syz-executor.3
66186 66185 779 0 SV uwait 0xfffffe009cc60400 syz-executor.3
66185 1 779 0 DV ppwait 0xfffffe009def94f8 syz-executor.3
66173 66172 779 0 SV uwait 0xfffffe009caa1a00 syz-executor.3
66172 1 779 0 DV ppwait 0xfffffe009e1564f8 syz-executor.3
66161 66153 779 0 SV uwait 0xfffffe009f047400 syz-executor.3
66153 1 779 0 DV ppwait 0xfffffe00b34bff88 syz-executor.3
66140 66139 779 0 SV uwait 0xfffffe009d81d380 syz-executor.3
66139 1 779 0 DV ppwait 0xfffffe00b4eaf4f8 syz-executor.3
66130 66129 779 0 SV uwait 0xfffffe009caa1f00 syz-executor.3
66129 1 779 0 DV ppwait 0xfffffe00b40914f8 syz-executor.3
66115 66113 779 0 SV uwait 0xfffffe009cc60500 syz-executor.3
66114 66113 779 0 S uwait 0xfffffe009cc60200 syz-executor.3
66113 1 779 0 DV ppwait 0xfffffe009e6b84f8 syz-executor.3
66097 66096 779 0 SV uwait 0xfffffe009cc60900 syz-executor.3
66096 1 779 0 DV ppwait 0xfffffe009dfd24f8 syz-executor.3
66066 66065 779 0 SV uwait 0xfffffe009d073500 syz-executor.3
66065 1 779 0 DV ppwait 0xfffffe00b34bfa40 syz-executor.3
66043 66041 779 0 SV uwait 0xfffffe00b0fdc200 syz-executor.3
66041 1 779 0 DV ppwait 0xfffffe009e055a40 syz-executor.3
66020 1 833 0 REV CPU 0 syz-executor.2
66019 1 779 0 RV syz-executor.3
66018 1 779 0 RV syz-executor.3
66008 1 833 0 RV syz-executor.2
66005 1 779 0 RV syz-executor.3
65995 1 833 0 RV syz-executor.2
65987 65986 851 0 SV uwait 0xfffffe00b0fdbd00 syz-executor.0
65986 1 851 0 DV ppwait 0xfffffe009ec04f88 syz-executor.0
65984 1 833 0 RV syz-executor.2
65982 1 779 0 RV syz-executor.3
65979 1 842 0 REV CPU 1 syz-executor.1
65974 1 833 0 RV syz-executor.2
65971 1 779 0 RV syz-executor.3
65968 1 842 0 RV syz-executor.1
65963 1 833 0 RV syz-executor.2
65960 1 779 0 RV syz-executor.3
65957 1 842 0 RV syz-executor.1
65952 1 833 0 RV syz-executor.2
65949 1 779 0 RV syz-executor.3
65946 1 842 0 RV syz-executor.1
65941 1 833 0 RV syz-executor.2
65938 1 779 0 RV syz-executor.3
65935 1 842 0 RV syz-executor.1
65930 1 833 0 RV syz-executor.2
65927 1 779 0 RV syz-executor.3
65924 1 842 0 RV syz-executor.1
65918 1 833 0 RV syz-executor.2
65915 1 779 0 RV syz-executor.3
65913 1 842 0 RV syz-executor.1
65911 1 851 0 RV syz-executor.0
65910 1 833 0 RV syz-executor.2
65904 1 779 0 RV syz-executor.3
65901 1 842 0 RV syz-executor.1
65894 1 779 0 RV syz-executor.3
65891 1 842 0 RV syz-executor.1
65884 1 779 0 RV syz-executor.3
65881 1 842 0 RV syz-executor.1
65875 1 779 0 RV syz-executor.3
65871 1 842 0 RV syz-executor.1
65865 1 779 0 RV syz-executor.3
65861 1 842 0 RV syz-executor.1
65855 1 779 0 RV syz-executor.3
65851 1 842 0 RV syz-executor.1
65845 1 779 0 RV syz-executor.3
65841 1 842 0 RV syz-executor.1
65832 1 779 0 RV syz-executor.3
65828 1 842 0 RV syz-executor.1
65822 1 779 0 RV syz-executor.3
65818 1 842 0 RV syz-executor.1
65813 1 779 0 RV syz-executor.3
65808 1 842 0 RV syz-executor.1
65802 1 779 0 RV syz-executor.3
65798 1 842 0 RV syz-executor.1
65791 1 779 0 RV syz-executor.3
65788 1 842 0 RV syz-executor.1
65782 1 779 0 RV syz-executor.3
65778 1 842 0 RV syz-executor.1
65772 1 779 0 RV syz-executor.3
65768 1 842 0 RV syz-executor.1
65762 1 779 0 RV syz-executor.3
65758 1 842 0 RV syz-executor.1
65752 1 779 0 RV syz-executor.3
65748 1 842 0 RV syz-executor.1
65742 1 779 0 RV syz-executor.3
65739 1 842 0 RV syz-executor.1
65730 1 842 0 RV syz-executor.1
65727 1 779 0 RV syz-executor.3
65720 1 842 0 RV syz-executor.1
65717 1 779 0 RV syz-executor.3
65711 1 842 0 RV syz-executor.1
65707 1 779 0 RV syz-executor.3
65702 1 842 0 RV syz-executor.1
65692 1 842 0 RV syz-executor.1
65682 1 842 0 RV syz-executor.1
65679 1 842 0 RV syz-executor.1
65668 1 842 0 RV syz-executor.1
65660 1 842 0 RV syz-executor.1
65659 1 833 0 RV syz-executor.2
65651 1 833 0 RV syz-executor.2
65645 1 842 0 RV syz-executor.1
65641 1 833 0 RV syz-executor.2
65635 1 842 0 RV syz-executor.1
65631 1 833 0 RV syz-executor.2
65626 1 842 0 RV syz-executor.1
65617 1 842 0 RV syz-executor.1
65611 1 842 0 RV syz-executor.1
65600 1 842 0 RV syz-executor.1
65590 1 842 0 RV syz-executor.1
65580 1 842 0 RV syz-executor.1
65573 1 842 0 RV syz-executor.1
63785 63784 779 0 SV uwait 0xfffffe00afac4000 syz-executor.3
63784 1 779 0 DV ppwait 0xfffffe0058a9cf88 syz-executor.3
60210 60203 779 0 SV uwait 0xfffffe00afac4c00 syz-executor.3
60203 1 779 0 DV ppwait 0xfffffe00b52214f8 syz-executor.3
56935 1 779 0 R syz-executor.3
56934 1 779 0 R syz-executor.3
49217 1 851 0 R syz-executor.0
49209 1 851 0 R syz-executor.0
39587 1 851 0 R syz-executor.0
39586 1 851 0 R syz-executor.0
39151 1 851 0 RV syz-executor.0
39145 1 851 0 RV syz-executor.0
23447 1 842 0 R syz-executor.1
23446 1 842 0 R syz-executor.1
20099 0 0 0 DL - 0xffffffff83d4c440 [soaiod4]
20098 0 0 0 DL - 0xffffffff83d4c440 [soaiod3]
20097 0 0 0 DL - 0xffffffff83d4c440 [soaiod2]
20096 0 0 0 DL - 0xffffffff83d4c440 [soaiod1]
7031 1 7031 65 Rs dhclient
6750 1 842 0 R syz-executor.1
5367 1 5367 0 Rs dhclient
5312 1 5312 65 Rs dhclient
3635 1 3635 0 Rs dhclient
3632 1 3632 0 Rs dhclient
3606 1 3606 65 Rs dhclient
1881 1 1881 0 Rs dhclient
1878 1 1878 0 Rs dhclient
1859 1 1859 65 Rs dhclient
1337 0 0 0 DL aiordy 0xfffffe00aff00548 [aiod4]
1336 0 0 0 DL aiordy 0xfffffe00aff01000 [aiod3]
1335 0 0 0 DL aiordy 0xfffffe00b0092548 [aiod2]
1334 0 0 0 DL aiordy 0xfffffe00aff02a90 [aiod1]
1324 0 0 0 DL (threaded) [zfskern]
100399 D t->zthr 0xfffffe009c1a1148 [arc_evict]
100778 D t->zthr 0xfffffe009c1a1048 [arc_reap]
100779 D - 0xfffffe0007963100 [dbu_evict]
100780 D dbuf_ev 0xffffffff85634fa0 [dbuf_evict_thread]
100781 D - 0xfffffe0007963700 [z_vdev_file_0]
100782 D - 0xfffffe0007963700 [z_vdev_file_1]
100783 D - 0xfffffe0007963700 [z_vdev_file_2]
100784 D - 0xfffffe0007963700 [z_vdev_file_3]
100785 D - 0xfffffe0007963700 [z_vdev_file_4]
100786 D - 0xfffffe0007963700 [z_vdev_file_5]
100787 D - 0xfffffe0007963700 [z_vdev_file_6]
100788 D - 0xfffffe0007963700 [z_vdev_file_7]
100789 D - 0xfffffe0007963700 [z_vdev_file_8]
100790 D - 0xfffffe0007963700 [z_vdev_file_9]
100791 D - 0xfffffe0007963700 [z_vdev_file_10]
100792 D - 0xfffffe0007963700 [z_vdev_file_11]
100793 D - 0xfffffe0007963700 [z_vdev_file_12]
100794 D - 0xfffffe0007963700 [z_vdev_file_13]
100795 D - 0xfffffe0007963700 [z_vdev_file_14]
100796 D - 0xfffffe0007963700 [z_vdev_file_15]
100797 D l2arc_f 0xffffffff85624120 [l2arc_feed_thread]
100798 D - 0xfffffe0007963e00 [zfsvfs]
100799 S zevent_ 0xffffffff85635b80 [sysevent]
1113 1 851 0 R syz-executor.0
1110 1 851 0 R syz-executor.0
1101 1 851 0 R syz-executor.0
1095 1 851 0 R syz-executor.0
1084 1 851 0 R syz-executor.0
1074 1 851 0 R syz-executor.0
1064 1 851 0 R syz-executor.0
1060 1 851 0 R syz-executor.0
1050 1 833 0 R syz-executor.2
1048 1 851 0 R syz-executor.0
1046 1 833 0 R syz-executor.2
1042 1 851 0 R syz-executor.0
1039 1 833 0 R syz-executor.2
1035 1 851 0 R syz-executor.0
1033 1 833 0 R syz-executor.2
1029 1 842 0 R syz-executor.1
1028 1 842 0 R syz-executor.1
1026 1 851 0 R syz-executor.0
1025 1 833 0 R syz-executor.2
1022 1 779 0 R syz-executor.3
1020 1 779 0 R syz-executor.3
1010 1 851 0 R syz-executor.0
1009 1 833 0 R syz-executor.2
1008 1 779 0 R syz-executor.3
1004 1 842 0 R syz-executor.1
1002 1 851 0 R syz-executor.0
1000 1 779 0 R syz-executor.3
999 1 833 0 R syz-executor.2
989 1 833 0 R syz-executor.2
988 1 779 0 R syz-executor.3
982 1 833 0 R syz-executor.2
980 1 779 0 R syz-executor.3
973 1 833 0 R syz-executor.2
970 1 779 0 R syz-executor.3
957 1 779 0 R syz-executor.3
956 1 833 0 R syz-executor.2
948 1 833 0 R syz-executor.2
946 1 779 0 R syz-executor.3
939 1 779 0 R syz-executor.3
934 1 833 0 R syz-executor.2
928 1 779 0 R syz-executor.3
923 1 833 0 R syz-executor.2
917 1 779 0 R syz-executor.3
913 1 833 0 R syz-executor.2
912 1 833 0 R syz-executor.2
902 1 833 0 R syz-executor.2
901 1 833 0 R syz-executor.2
900 1 779 0 R syz-executor.3
895 1 833 0 R syz-executor.2
894 1 833 0 R syz-executor.2
893 1 779 0 R syz-executor.3
888 1 833 0 R syz-executor.2
887 1 833 0 R syz-executor.2
886 1 779 0 R syz-executor.3
885 1 779 0 R syz-executor.3
882 1 833 0 R syz-executor.2
879 1 779 0 R syz-executor.3
878 1 833 0 R syz-executor.2
877 1 779 0 R syz-executor.3
874 1 833 0 R syz-executor.2
873 1 833 0 R syz-executor.2
870 1 779 0 R syz-executor.3
869 1 779 0 R syz-executor.3
866 1 833 0 R syz-executor.2
865 1 833 0 R syz-executor.2
864 1 779 0 R syz-executor.3
863 1 779 0 R syz-executor.3
851 773 851 0 Ss piperd 0xfffffe009f0a08b8 syz-executor.0
842 773 842 0 Rs syz-executor.1
833 773 833 0 Ss piperd 0xfffffe0058a1a5d0 syz-executor.2
831 1 779 0 R syz-executor.3
830 1 779 0 R syz-executor.3
827 1 779 0 R syz-executor.3
826 1 779 0 R syz-executor.3
822 1 779 0 R syz-executor.3
821 1 779 0 R syz-executor.3
818 1 779 0 R syz-executor.3
817 1 779 0 R syz-executor.3
815 1 794 0 R syz-executor.3
814 1 794 0 R syz-executor.3
808 1 808 0 Rs dhclient
798 1 779 0 R syz-executor.3
797 1 779 0 R syz-executor.3
779 773 779 0 Rs syz-executor.3
773 771 771 0 S (threaded) syz-fuzzer
100098 S uwait 0xfffffe0053c0b280 syz-fuzzer
100114 S uwait 0xfffffe0053c0e980 syz-fuzzer
100115 S uwait 0xfffffe0053c0ea80 syz-fuzzer
100116 S uwait 0xfffffe0053c0eb80 syz-fuzzer
100117 S uwait 0xfffffe009f046e00 syz-fuzzer
100118 S uwait 0xfffffe009e7fe280 syz-fuzzer
100119 S uwait 0xfffffe0053c0a080 syz-fuzzer
100120 S kqread 0xfffffe0053c98400 syz-fuzzer
100121 S uwait 0xfffffe009f046f00 syz-fuzzer
109407 S uwait 0xfffffe00afac4600 syz-fuzzer
771 769 771 0 Ss pause 0xfffffe009e75a0b0 csh
769 687 769 0 Ss select 0xfffffe0056d9a9c0 sshd
753 1 753 0 Rs+ getty
752 1 752 0 Rs+ getty
751 1 751 0 Rs+ getty
750 1 750 0 Rs+ getty
749 1 749 0 Rs+ getty
748 1 748 0 Rs+ getty
747 1 747 0 Rs+ getty
746 1 746 0 Rs+ getty
745 1 745 0 Rs+ getty
691 1 691 0 Rs cron
687 1 687 0 Rs sshd
500 1 500 0 Ss select 0xfffffe0053c05340 syslogd
429 1 429 0 Rs devd
428 1 428 65 Rs dhclient
340 1 340 0 Rs dhclient
16 0 0 0 DL syncer 0xffffffff83d51f40 [syncer]
15 0 0 0 DL vlruwt 0xfffffe0058604000 [vnlru]
9 0 0 0 RL (threaded) [bufdaemon]
100078 D qsleep 0xffffffff83d50560 [bufdaemon]
100081 D - 0xffffffff83011f80 [bufspacedaemon-0]
100091 RunQ [/ worker]
8 0 0 0 DL psleep 0xffffffff83d83a00 [vmdaemon]
7 0 0 0 DL (threaded) [pagedaemon]
100076 D psleep 0xffffffff83d778b8 [dom0]
100082 D launds 0xffffffff83d778c4 [laundry: dom0]
100083 D umarcl 0xffffffff81e41410 [uma]
6 0 0 0 RL [rand_harvestq]
5 0 0 0 DL waiting 0xffffffff8450a1c0 [sctp_iterator]
4 0 0 0 DL pftm 0xffffffff84961530 [pf purge]
3 0 0 0 DL (threaded) [cam]
100045 D - 0xffffffff8388a640 [doneq0]
100046 D - 0xffffffff8388a5c0 [async]
100075 D - 0xffffffff8388a440 [scanner]
14 0 0 0 DL seqstat 0xfffffe0053fc0c88 [sequencer 00]
2 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83d73100 [crypto]
100042 D crypto_ 0xfffffe00543d2030 [crypto returns 0]
100043 D crypto_ 0xfffffe00543d2080 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100036 D - 0xffffffff83c01e80 [g_event]
100037 D - 0xffffffff83c01ea0 [g_up]
100038 D - 0xffffffff83c01ec0 [g_down]
12 0 0 0 WL (threaded) [intr]
100013 I [swi5: fast taskq]
100017 I [swi6: task queue]
100020 I [swi6: Giant taskq]
100029 I [swi3: vm]
100030 I [swi1: netisr 0]
100031 I [swi4: clock (0)]
100032 I [swi4: clock (1)]
100033 I [swi1: hpts]
100034 I [swi1: hpts]
100047 I [irq24: virtio_pci0]
100048 I [irq25: virtio_pci0]
100049 I [irq26: virtio_pci0]
100050 I [irq27: virtio_pci0]
100051 I [irq28: virtio_pci1]
100052 I [irq29: virtio_pci1]
100053 I [irq30: virtio_pci1]
100054 I [irq31: virtio_pci1]
100055 I [irq32: virtio_pci1]
100060 I [irq10: virtio_pci2]
100062 I [irq1: atkbd0]
100063 I [irq12: psm0]
100064 I [swi0: uart uart++]
100068 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 RLs [init]
10 0 0 0 DL audit_w 0xffffffff83d73be0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83c028e0 [swapper]
100005 D - 0xfffffe0007966300 [if_config_tqg_0]
100006 D - 0xfffffe0007966200 [softirq_0]
100007 D - 0xfffffe0007966100 [softirq_1]
100008 D - 0xfffffe0007966000 [if_io_tqg_0]
100009 D - 0xfffffe0007965e00 [if_io_tqg_1]
100010 D - 0xfffffe0007965d00 [aiod_kick taskq]
100011 D - 0xfffffe0007965c00 [deferred_unmount ta]
100012 D - 0xfffffe0007965b00 [thread taskq]
100014 D - 0xfffffe0007965900 [linuxkpi_irq_wq]
100015 D - 0xfffffe0007965800 [kqueue_ctx taskq]
100016 D - 0xfffffe0007965700 [pci_hp taskq]
100018 D - 0xfffffe0007965500 [inm_free taskq]
100019 D - 0xfffffe0007965400 [in6m_free taskq]
100021 D - 0xfffffe0007965200 [linuxkpi_short_wq_0]
100022 D - 0xfffffe0007965200 [linuxkpi_short_wq_1]
100023 D - 0xfffffe0007965200 [linuxkpi_short_wq_2]
100024 D - 0xfffffe0007965200 [linuxkpi_short_wq_3]
100025 D - 0xfffffe0007965100 [linuxkpi_long_wq_0]
100026 D - 0xfffffe0007965100 [linuxkpi_long_wq_1]
100027 D - 0xfffffe0007965100 [linuxkpi_long_wq_2]
100028 D - 0xfffffe0007965100 [linuxkpi_long_wq_3]
100035 D - 0xfffffe0056da1300 [firmware taskq]
100039 D - 0xfffffe0056da1200 [crypto_0]
100040 D - 0xfffffe0056da1200 [crypto_1]
100056 D - 0xfffffe0056da1000 [vtnet0 rxq 0]
100057 D - 0xfffffe0056da0e00 [vtnet0 txq 0]
100058 D - 0xfffffe0056da0d00 [vtnet0 rxq 1]
100059 D - 0xfffffe0056da0c00 [vtnet0 txq 1]
100061 D vtbslp 0xfffffe0056d9ae80 [virtio_balloon]
100065 D - 0xfffffe0056da0b00 [mca taskq]
100066 D - 0xffffffff82b44dc0 [deadlkres]
100071 D - 0xfffffe0056da0900 [acpi_task_0]
100072 D - 0xfffffe0056da0900 [acpi_task_1]
100073 D - 0xfffffe0056da0900 [acpi_task_2]
100074 D - 0xfffffe0056da1100 [CAM taskq]
100772 D - 0xfffffe0007963400 [system_taskq_0]
100773 D - 0xfffffe0007963400 [system_taskq_1]
100774 D - 0xfffffe0007963300 [system_delay_taskq_]
100775 D - 0xfffffe0007963300 [system_delay_taskq_]
100776 D - 0xfffffe0007963200 [arc_prune_0]
100777 D - 0xfffffe0007963200 [arc_prune_1]
66577 1 779 0 RE syz-executor.3
66588 1 779 0 REV syz-executor.3
66595 1 779 0 REV syz-executor.3
66613 1 779 0 REV syz-executor.3
66667 1 779 0 REV syz-executor.3
66722 1 779 0 REV syz-executor.3
5378 1 5378 0 Z dhclient
343 1 343 0 Z dhclient
66027 1 833 0 Z syz-executor.2
66033 1 779 0 Z syz-executor.3
66037 1 833 0 Z syz-executor.2
66047 1 833 0 Z syz-executor.2
66054 1 779 0 Z syz-executor.3
66055 1 779 0 REV syz-executor.3
66058 1 833 0 REV syz-executor.2
66069 1 833 0 Z syz-executor.2
66076 1 779 0 REV syz-executor.3
66077 1 779 0 Z syz-executor.3
66081 1 833 0 Z syz-executor.2
66084 1 779 0 REV syz-executor.3
66085 1 779 0 REV syz-executor.3
66087 1 842 0 Z syz-executor.1
66092 1 833 0 Z syz-executor.2
66100 1 842 0 REV syz-executor.1
66102 1 833 0 Z syz-executor.2
66111 1 833 0 REV syz-executor.2
66116 1 779 0 RE syz-executor.3
66124 1 833 0 Z syz-executor.2
66135 1 833 0 Z syz-executor.2
66147 1 833 0 REV syz-executor.2
66158 1 833 0 REV syz-executor.2
66163 1 779 0 REV syz-executor.3
66164 1 779 0 REV syz-executor.3
66231 1 779 0 REV syz-executor.3
66233 1 779 0 REV syz-executor.3
66250 1 779 0 REV syz-executor.3
66283 1 779 0 REV syz-executor.3
66288 66283 779 0 Z syz-executor.3
66307 1 779 0 REV syz-executor.3
66326 1 779 0 REV syz-executor.3
66332 1 779 0 REV syz-executor.3
66339 1 779 0 REV syz-executor.3
66345 1 779 0 REV syz-executor.3
811 1 811 0 Z dhclient
66366 1 779 0 REV syz-executor.3
66402 1 779 0 REV syz-executor.3
66403 1 779 0 REV syz-executor.3
66423 1 779 0 REV syz-executor.3
66424 1 779 0 REV syz-executor.3
66435 1 779 0 REV syz-executor.3
66556 1 779 0 REV syz-executor.3
db> show all locks
Process 66020 (syz-executor.2) thread 0xfffffe00b5373ac0 (174339)
exclusive sx vm map (user) (vm map (user)) r = 0 (0xfffffe00b540f450) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_map.c:4001
Process 65979 (syz-executor.1) thread 0xfffffe00b53733a0 (174304)
exclusive sx filedesc structure (filedesc structure) r = 0 (0xfffffe00b537e020) locked @ /syzkaller/managers/main/kernel/sys/kern/kern_event.c:2308
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
linker 397 10237K 838
filedesc 570 4561K 131460
devbuf 4213 4323K 4242
tcp_hpts 6 3201K 6
solaris 129 2804K 199
sysctloid 47267 2780K 47371
vtbuf 24 1968K 46
subproc 793 1712K 67175
pcb 873 1476K 192760
filemon 164 1312K 1482
kobj 322 1288K 481
newblk 102 1050K 68275
vfscache 3 1025K 3
inodedep 250 606K 65900
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
sctp_stro 374 374K 42733
sctp_atcl 791 297K 134561
vmem 3 276K 6
acpica 1674 184K 56282
vnet_data 1 168K 1
pagedep 90 151K 65621
kdtrace 892 150K 142102
tidhash 3 141K 3
umtx 1034 130K 1034
tfo_ccache 1 128K 1
DEVFS1 110 110K 127
sem 4 106K 4
bus 973 80K 3426
mtx_pool 2 72K 2
syncache 1 68K 1
acpitask 1 64K 1
ddb_capture 1 64K 1
module 510 64K 510
BPF 34 62K 147
shm 11 52K 4256
sctp_atky 1165 49K 179745
dirrem 182 46K 65723
sctp_timw 157 40K 157
temp 35 35K 5459
kqueue 419 34K 66871
DEVFS3 129 33K 139
hostcache 1 32K 1
msg 4 30K 4
gtaskqueue 18 26K 18
kbdmux 6 22K 6
freefile 169 22K 65504
pwddesc 337 22K 66920
ifaddr 70 20K 72
DEVFS_RULE 56 20K 56
DEVFSP 311 20K 9467
routetbl 136 18K 435
kstat_data 17 17K 17
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
ithread 99 16K 99
bus-sc 34 15K 1651
lltable 45 14K 228
KTRACE 100 13K 100
sctp_athm 791 13K 135475
ifnet 7 13K 7
ether_multi 152 13K 162
sctp_map 748 12K 85108
eventhandler 139 12K 139
kenv 95 12K 95
newdirblk 83 11K 65587
CAM queue 5 11K 1528
mount 32 10K 1681
GEOM 61 10K 494
rman 84 10K 425
ksem 4 10K 44
in6_multi 65 9K 65
freework 35 9K 66120
freeblks 34 9K 65482
bmsafemap 3 9K 65926
taskqueue 81 9K 81
kcovinfo 132 9K 561
UART 12 9K 12
devstat 4 9K 4
rpc 2 8K 2
shmfd 1 8K 288
pfs_vncache 1 8K 1
proc-args 366 8K 68423
pfs_nodes 20 8K 20
audit_evclass 237 8K 295
UMA 363 7K 363
cred 26 7K 418
sglist 5 7K 5
CAM DEV 3 6K 510
plimit 24 6K 753
pf_osfp 51 6K 51
pf_ifnet 14 6K 65
ufs_dirhash 24 5K 24
session 37 5K 102
vt 11 5K 11
pf_table 2 4K 6
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
acpisem 28 4K 28
lockf 32 4K 136
hhook 15 4K 17
selfd 49 4K 859669
terminal 11 3K 11
uidinfo 3 3K 25
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
select 16 2K 116
ip6ndp 12 2K 13
Unitno 29 2K 67
sctp_ifa 13 2K 14
CAM XPT 22 2K 543
CC Mem 25 2K 12070
diradd 12 2K 65769
in_multi 6 2K 8
vnodemarker 3 2K 303
ipsecpolicy 2 2K 2
acpidev 20 2K 20
osd 54 2K 12050
msi 9 2K 9
clone 9 2K 9
inpcbpolicy 35 2K 15155
tun 7 2K 7
softdep 1 1K 1
mkdir 8 1K 131174
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
NFSD session 1 1K 1
CAM periph 4 1K 271
sctp_ifn 6 1K 14
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
pci_link 10 1K 10
crypto 4 1K 273
encap_export_host 12 1K 12
procdesc 5 1K 14
pfil 4 1K 4
eventfd 4 1K 118
cdev 2 1K 2
sigio 7 1K 8
chacha20random 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
xform 4 1K 8389
ip6opt 1 1K 161
vnodes 1 1K 1
CAM SIM 2 1K 2
prison 8 1K 8
feeder 7 1K 7
taskq 2 1K 2
tcpfunc 3 1K 3
loginclass 3 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
soname 6 1K 100243
pf_rule 1 1K 113
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
pmchooks 1 1K 1
filecaps 5 1K 120
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 65
acpiintr 1 1K 1
pmc 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
ext2_mount 0 0K 0
ext2_node 0 0K 0
ext2_extents 0 0K 0
sfs_nodes 0 0K 0
zones_data 0 0K 0
pf_altq 0 0K 0
pf_temp 0 0K 0
mqdata 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 1607
sctp_mcore 0 0K 0
sctp_socko 0 0K 76294
sctp_iter 0 0K 77
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 65
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 12
sctp_aadr 0 0K 376
sctp_stri 0 0K 1042
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
ixl 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
qpidrv 0 0K 0
DEVFS4 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
DEVFS2 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
gntdev 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
privcmd_dev 0 0K 0
xenbus 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
vm_fictitious 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
UMAHash 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 57272
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 148
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 35
allocindir 0 0K 0
indirdep 0 0K 924
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
AHCI driver 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
ktls_ocf 0 0K 0
agp 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
seq_file 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpifw 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
LRO 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 56
in_mfilter 0 0K 2
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 12
VN POLL 0 0K 0
nvme_da 0 0K 0
statfs 0 0K 66419
namei_tracker 0 0K 6
export_host 0 0K 0
cl_savebuf 0 0K 2
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 2479
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
aios 0 0K 22
lio 0 0K 16
acl 0 0K 0
PUC 0 0K 0
mbuf_tag 0 0K 186
ktls 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
lDevFlags * malloc 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
Reply all
Reply to author
Forward
0 new messages