panic: Assertion clen >= sizeof(*cm) && clen <= cm->cmsg_len failed at /syzkaller/managers/main/kernel/sys/kern/uipc_usr
0 views
Skip to first unread message
syzbot
May 25, 2022, 11:27:32 PM5/25/22
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 20b2b464ebb6 syscons: note incompatibility with UEFI
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=135480f9f00000
dashboard link: https://syzkaller.appspot.com/bug?extid=c48c62e7fbd8ef327088
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+c48c62...@syzkaller.appspotmail.com
panic: Assertion clen >= sizeof(*cm) && clen <= cm->cmsg_len failed at /syzkaller/managers/main/kernel/sys/kern/uipc_usrreq.c:2018
cpuid = 1
time = 281
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe00a892d430
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe00a892d590
vpanic() at vpanic+0x2b8/frame 0xfffffe00a892d670
panic() at panic+0xb5/frame 0xfffffe00a892d730
unp_externalize() at unp_externalize+0x693/frame 0xfffffe00a892d7d0
soreceive_generic() at soreceive_generic+0xf24/frame 0xfffffe00a892d9c0
soreceive() at soreceive+0xf6/frame 0xfffffe00a892da30
kern_recvit() at kern_recvit+0x54e/frame 0xfffffe00a892dbf0
sys_recvfrom() at sys_recvfrom+0x1f9/frame 0xfffffe00a892dd30
amd64_syscall() at amd64_syscall+0x410/frame 0xfffffe00a892df30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe00a892df30
--- syscall (198, FreeBSD ELF64, nosys), rip = 0x28a47a, rsp = 0x83135df08, rbp = 0x83135df70 ---
KDB: enter: panic
[ thread pid 14256 tid 117747 ]
Stopped at kdb_enter+0x6b: movq $0,0x275b7aa(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe00a4000000
rdx 0x3ffff
rbx 0
rsp 0xfffffe00a892d570
rbp 0xfffffe00a892d590
rsi 0x40001
rdi 0xffffffff8172b348 printf+0x158
r8 0
r9 0xffffffff
r10 0
r11 0
r12 0xfffffe00a99503a0
r13 0xfffffe00a892d501
r14 0xffffffff82b577a0 .str.26
r15 0xffffffff82b577a0 .str.26
rip 0xffffffff8171ae6b kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x275b7aa(%rip)
db> show proc
Process 14256 (syz-executor.2) at 0xfffffe00a9ed4548:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 780 at 0xfffffe0058cb2000
ABI: FreeBSD ELF64
flag: 0x10000080 flag2: 0
arguments: /root/syz-executor.2 exec
reaper: 0xfffffe0053de1000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe009e8b93f0
(map 0xfffffe009e8b93f0)
(map.pmap 0xfffffe009e8b94b0)
(pmap 0xfffffe009e8b9518)
threads: 3
117718 Run CPU 0 syz-executor.2
117747 Run CPU 1 syz-executor.2
117751 RunQ syz-executor.2
db> ps
pid ppid pgrp uid state wmesg wchan cmd
14256 780 780 0 R (threaded) syz-executor.2
117718 Run CPU 0 syz-executor.2
117747 Run CPU 1 syz-executor.2
117751 RunQ syz-executor.2
14252 14249 777 0 SV uwait 0xfffffe00a75b9d00 syz-executor.1
14249 777 777 0 T (threaded) syz-executor.1
102711 s syz-executor.1
117739 D ppwait 0xfffffe00a958bf88 syz-executor.1
14056 1 777 0 S uwait 0xfffffe00a75b9b80 syz-executor.1
14049 1 781 0 S uwait 0xfffffe00a75b9880 syz-executor.3
14047 1 776 0 S uwait 0xfffffe00a5db0b80 syz-executor.0
14046 1 777 0 S uwait 0xfffffe00a9957380 syz-executor.1
14042 1 781 0 S uwait 0xfffffe0057889480 syz-executor.3
14040 1 777 0 S uwait 0xfffffe00a9956d00 syz-executor.1
14039 1 776 0 S uwait 0xfffffe00a5db0d80 syz-executor.0
14035 1 781 0 S uwait 0xfffffe00a75eb000 syz-executor.3
14031 1 776 0 S uwait 0xfffffe00a75b9e00 syz-executor.0
14021 1 776 0 S uwait 0xfffffe00a9957780 syz-executor.0
13595 1 776 0 S uwait 0xfffffe00a75ea380 syz-executor.0
13588 1 776 0 S uwait 0xfffffe0058b27500 syz-executor.0
13585 1 776 0 S uwait 0xfffffe00a75b9780 syz-executor.0
13584 1 780 0 S uwait 0xfffffe00a9599580 syz-executor.2
13582 1 780 0 S uwait 0xfffffe00a75b6300 syz-executor.2
13579 1 780 0 S uwait 0xfffffe0058b29580 syz-executor.2
13577 1 780 0 S uwait 0xfffffe00a75eaa80 syz-executor.2
13456 0 0 0 DL - 0xffffffff83e1ba40 [accounting]
13379 1 781 0 S uwait 0xfffffe00a75ea880 syz-executor.3
13377 1 776 0 S umtxn 0xfffffe0057889a80 syz-executor.0
13375 1 780 0 S uwait 0xfffffe00a75b6200 syz-executor.2
13371 1 777 0 S uwait 0xfffffe0057889380 syz-executor.1
13367 1 781 0 S uwait 0xfffffe00a75b8a00 syz-executor.3
13365 1 776 0 S uwait 0xfffffe0058b28a00 syz-executor.0
13363 1 780 0 S uwait 0xfffffe00a75ea680 syz-executor.2
13361 1 777 0 S uwait 0xfffffe00a75ec900 syz-executor.1
13355 1 781 0 S uwait 0xfffffe00a75b7a80 syz-executor.3
13354 1 776 0 S uwait 0xfffffe0057889880 syz-executor.0
13351 1 780 0 S uwait 0xfffffe0058b26e80 syz-executor.2
13349 1 777 0 S uwait 0xfffffe00a5dafd00 syz-executor.1
13339 1 777 0 S uwait 0xfffffe0058b26d80 syz-executor.1
13279 1 780 0 S uwait 0xfffffe0058b26a80 syz-executor.2
13276 1 780 0 S uwait 0xfffffe005788b400 syz-executor.2
13273 1 780 0 S uwait 0xfffffe00a75ea580 syz-executor.2
13271 1 780 0 S uwait 0xfffffe005788b500 syz-executor.2
13150 1 13150 0 Ss+ ttyin 0xfffffe00579c68b0 getty
13148 1 13148 0 Ss+ ttyin 0xfffffe00579c6cb0 getty
13146 1 13146 0 Ss+ ttyin 0xfffffe00574764b0 getty
13145 1 13145 0 Ss+ ttyin 0xfffffe00579c60b0 getty
13144 1 13144 0 Ss+ ttyin 0xfffffe00579c58b0 getty
13143 1 13143 0 Ss+ ttyin 0xfffffe00579c5cb0 getty
13142 1 13142 0 Ss+ ttyin 0xfffffe00579c64b0 getty
13141 1 13141 0 Ss+ ttyin 0xfffffe00579c70b0 getty
13140 1 13140 0 Ss+ ttyin 0xfffffe00579c74b0 getty
12969 1 780 0 SV uwait 0xfffffe00a75ec800 syz-executor.2
12863 1 776 0 SV uwait 0xfffffe00a75ea180 syz-executor.0
12478 1 780 0 S uwait 0xfffffe00a75b6600 syz-executor.2
12476 1 776 0 S uwait 0xfffffe00a75eae80 syz-executor.0
12473 1 781 0 S uwait 0xfffffe00a75ea780 syz-executor.3
12471 1 777 0 S uwait 0xfffffe00a75eca00 syz-executor.1
12465 1 780 0 S uwait 0xfffffe00a75b6000 syz-executor.2
12464 1 777 0 S uwait 0xfffffe00a75eb700 syz-executor.1
12460 1 776 0 S uwait 0xfffffe00a75eb100 syz-executor.0
12458 1 781 0 S uwait 0xfffffe00a75eab80 syz-executor.3
12456 1 780 0 S uwait 0xfffffe00a9599780 syz-executor.2
12450 1 777 0 S uwait 0xfffffe00a75eac80 syz-executor.1
12448 1 781 0 S uwait 0xfffffe00a75b9a80 syz-executor.3
12445 1 776 0 S uwait 0xfffffe00a75ea980 syz-executor.0
12439 1 781 0 S uwait 0xfffffe00a75b6380 syz-executor.3
12065 1 777 0 S uwait 0xfffffe00a75b6c00 syz-executor.1
11631 1 776 0 S uwait 0xfffffe00a75ea280 syz-executor.0
11623 1 776 0 S uwait 0xfffffe00a75ead80 syz-executor.0
11615 1 776 0 S uwait 0xfffffe00a75ecc00 syz-executor.0
11603 1 776 0 S uwait 0xfffffe00a75ec300 syz-executor.0
9677 1 777 0 S uwait 0xfffffe00a75ec600 syz-executor.1
9676 1 780 0 S uwait 0xfffffe00a75ea480 syz-executor.2
9675 1 780 0 S uwait 0xfffffe00a75eb800 syz-executor.2
9673 1 777 0 S uwait 0xfffffe00a75b7580 syz-executor.1
9665 1 777 0 S uwait 0xfffffe00a5daf900 syz-executor.1
9664 1 780 0 S uwait 0xfffffe0058b29480 syz-executor.2
9661 1 777 0 S uwait 0xfffffe00a75b6e00 syz-executor.1
9660 1 780 0 S uwait 0xfffffe00a75b7d80 syz-executor.2
9653 1 780 0 S uwait 0xfffffe00a75b6a00 syz-executor.2
9652 1 777 0 S uwait 0xfffffe00a75ec500 syz-executor.1
9651 1 780 0 S uwait 0xfffffe00a75b7880 syz-executor.2
9649 1 777 0 S uwait 0xfffffe00a75b7000 syz-executor.1
9641 1 780 0 S uwait 0xfffffe00a75b6900 syz-executor.2
9640 1 780 0 S uwait 0xfffffe00a75b8100 syz-executor.2
9630 0 0 0 DL (threaded) [zfskern]
111366 D t->zthr 0xfffffe00585ef448 [arc_evict]
111512 D t->zthr 0xfffffe00585ee048 [arc_reap]
111513 D - 0xfffffe00a690c700 [dbu_evict]
111514 D dbuf_ev 0xffffffff85835960 [dbuf_evict_thread]
111515 D - 0xfffffe00a6de8b00 [z_vdev_file_0]
111516 D - 0xfffffe00a6de8b00 [z_vdev_file_1]
111517 D - 0xfffffe00a6de8b00 [z_vdev_file_2]
111518 D - 0xfffffe00a6de8b00 [z_vdev_file_3]
111519 D - 0xfffffe00a6de8b00 [z_vdev_file_4]
111520 D - 0xfffffe00a6de8b00 [z_vdev_file_5]
111521 D - 0xfffffe00a6de8b00 [z_vdev_file_6]
111522 D - 0xfffffe00a6de8b00 [z_vdev_file_7]
111523 D - 0xfffffe00a6de8b00 [z_vdev_file_8]
111524 D - 0xfffffe00a6de8b00 [z_vdev_file_9]
111525 D - 0xfffffe00a6de8b00 [z_vdev_file_10]
111526 D - 0xfffffe00a6de8b00 [z_vdev_file_11]
111527 D - 0xfffffe00a6de8b00 [z_vdev_file_12]
111528 D - 0xfffffe00a6de8b00 [z_vdev_file_13]
111529 D - 0xfffffe00a6de8b00 [z_vdev_file_14]
111530 D - 0xfffffe00a6de8b00 [z_vdev_file_15]
111531 D l2arc_f 0xffffffff857f4a80 [l2arc_feed_thread]
111532 D - 0xfffffe00a6fe0500 [zfsvfs]
111533 S zevent_ 0xffffffff85836500 [sysevent]
9436 1 781 0 S uwait 0xfffffe0058b29c80 syz-executor.3
8903 1 780 0 SV uwait 0xfffffe0053c03180 syz-executor.2
8894 1 780 0 SV uwait 0xfffffe0058b29e80 syz-executor.2
8889 1 780 0 SV uwait 0xfffffe0058b29a80 syz-executor.2
8869 1 777 0 SV uwait 0xfffffe00a75b8e00 syz-executor.1
8864 1 777 0 SV uwait 0xfffffe00a75b8f00 syz-executor.1
8859 1 777 0 SV uwait 0xfffffe0053c03380 syz-executor.1
8849 1 777 0 SV uwait 0xfffffe00a75b7980 syz-executor.1
8767 1 781 0 S uwait 0xfffffe00a5dad200 syz-executor.3
8765 1 776 0 S uwait 0xfffffe00a75b8800 syz-executor.0
8762 1 780 0 S uwait 0xfffffe00a75b8900 syz-executor.2
8761 1 781 0 S uwait 0xfffffe0053c03980 syz-executor.3
8760 1 776 0 S uwait 0xfffffe0057327000 syz-executor.0
8757 1 780 0 S uwait 0xfffffe00a75b9580 syz-executor.2
8754 1 781 0 S uwait 0xfffffe00a75b7300 syz-executor.3
8752 1 776 0 S uwait 0xfffffe00a75b7c80 syz-executor.0
8750 1 780 0 S uwait 0xfffffe00a75b6d00 syz-executor.2
8741 1 780 0 S uwait 0xfffffe00a75b8c00 syz-executor.2
8616 0 0 0 DL - 0xffffffff83f639c0 [soaiod4]
8615 0 0 0 DL - 0xffffffff83f639c0 [soaiod3]
8614 0 0 0 DL - 0xffffffff83f639c0 [soaiod2]
8613 0 0 0 DL - 0xffffffff83f639c0 [soaiod1]
8497 1 781 0 T syz-executor.3
8490 1 777 0 T syz-executor.1
8489 1 781 0 T syz-executor.3
8487 1 776 0 T syz-executor.0
8482 1 777 0 T syz-executor.1
8481 1 776 0 T syz-executor.0
8474 1 781 0 T syz-executor.3
8473 1 776 0 T syz-executor.0
8472 1 777 0 T syz-executor.1
8465 1 776 0 T syz-executor.0
8456 1 776 0 T syz-executor.0
8447 1 776 0 T syz-executor.0
8438 1 776 0 T syz-executor.0
7715 0 0 0 DL (threaded) [KTLS]
104588 D - 0xfffffe00a720b000 [thr_0]
108786 D - 0xfffffe00a720b080 [thr_1]
108787 D - 0xffffffff83f64728 [alloc_0]
7315 1 7314 0 SV uwait 0xfffffe00a75b8000 syz-executor.3
7305 1 7302 0 SV uwait 0xfffffe00a75b8200 syz-executor.3
7293 1 7292 0 SV uwait 0xfffffe00a75b9280 syz-executor.3
7288 1 7287 0 SV uwait 0xfffffe005788a980 syz-executor.3
5114 1 776 0 S uwait 0xfffffe0053c03280 syz-executor.0
5107 1 776 0 S uwait 0xfffffe00a75b9480 syz-executor.0
5104 1 776 0 S uwait 0xfffffe00a5dad100 syz-executor.0
5099 1 776 0 S uwait 0xfffffe0057327200 syz-executor.0
4374 1 776 0 S uwait 0xfffffe0053c03b80 syz-executor.0
4372 1 780 0 S uwait 0xfffffe005788ad00 syz-executor.2
4370 1 776 0 S uwait 0xfffffe00a5dad000 syz-executor.0
4367 1 776 0 S uwait 0xfffffe00a5dad300 syz-executor.0
4366 1 780 0 S uwait 0xfffffe00a75b9080 syz-executor.2
4361 1 780 0 S uwait 0xfffffe0058b29980 syz-executor.2
4359 1 780 0 S uwait 0xfffffe00a75b8d00 syz-executor.2
4357 1 780 0 S uwait 0xfffffe00a75ed680 syz-executor.2
4355 1 780 0 S uwait 0xfffffe00a75ed580 syz-executor.2
4353 1 780 0 S uwait 0xfffffe0057327a00 syz-executor.2
4330 1 777 0 S uwait 0xfffffe005788a880 syz-executor.1
4329 1 777 0 S uwait 0xfffffe0053c03880 syz-executor.1
4322 1 781 0 S uwait 0xfffffe0057328380 syz-executor.3
4321 1 781 0 S uwait 0xfffffe00a5daf500 syz-executor.3
4318 1 777 0 S uwait 0xfffffe00a5dafa00 syz-executor.1
4316 1 781 0 S uwait 0xfffffe005788ac00 syz-executor.3
4314 1 777 0 S uwait 0xfffffe0057328080 syz-executor.1
4313 1 781 0 S uwait 0xfffffe0053c03480 syz-executor.3
4312 1 780 0 S uwait 0xfffffe005732af00 syz-executor.2
4309 1 780 0 S uwait 0xfffffe0057327400 syz-executor.2
4308 1 777 0 S uwait 0xfffffe0053c03580 syz-executor.1
4307 1 781 0 S uwait 0xfffffe0053c03680 syz-executor.3
4304 1 777 0 S uwait 0xfffffe0057889e80 syz-executor.1
4303 1 781 0 S uwait 0xfffffe0057327600 syz-executor.3
4301 1 780 0 S uwait 0xfffffe00a5dad600 syz-executor.2
4299 1 776 0 S uwait 0xfffffe0057327900 syz-executor.0
4297 1 776 0 S uwait 0xfffffe00a5dae580 syz-executor.0
4296 1 780 0 S uwait 0xfffffe0053c03a80 syz-executor.2
4294 1 776 0 S uwait 0xfffffe0053c03d80 syz-executor.0
4291 1 780 0 S uwait 0xfffffe00a5dadb00 syz-executor.2
4290 1 776 0 S uwait 0xfffffe00a5dae980 syz-executor.0
4289 1 780 0 S uwait 0xfffffe0053c03780 syz-executor.2
4286 1 776 0 S uwait 0xfffffe0057327d00 syz-executor.0
4285 1 776 0 S uwait 0xfffffe00a5daed80 syz-executor.0
4283 1 780 0 S uwait 0xfffffe005788ab00 syz-executor.2
4281 1 780 0 S uwait 0xfffffe00a5dada00 syz-executor.2
4277 1 780 0 S uwait 0xfffffe0057327500 syz-executor.2
4275 1 780 0 S uwait 0xfffffe0057328580 syz-executor.2
4272 1 780 0 S uwait 0xfffffe00a5dad700 syz-executor.2
4271 1 780 0 S uwait 0xfffffe0053c03e80 syz-executor.2
4269 1 780 0 S uwait 0xfffffe0057327100 syz-executor.2
4268 1 780 0 S uwait 0xfffffe0057327300 syz-executor.2
3900 1 776 0 S uwait 0xfffffe00a5dae880 syz-executor.0
3898 1 777 0 S uwait 0xfffffe005788b180 syz-executor.1
3897 1 776 0 S uwait 0xfffffe0053c03c80 syz-executor.0
3895 1 777 0 S uwait 0xfffffe00a5daf300 syz-executor.1
3884 1 776 0 S uwait 0xfffffe00a5dad400 syz-executor.0
3883 1 776 0 S uwait 0xfffffe0057889080 syz-executor.0
3882 1 777 0 S uwait 0xfffffe0057327700 syz-executor.1
3880 1 777 0 S uwait 0xfffffe0057328400 syz-executor.1
3873 1 776 0 S uwait 0xfffffe0057328280 syz-executor.0
3872 1 776 0 S uwait 0xfffffe0057328180 syz-executor.0
3871 1 777 0 S uwait 0xfffffe0057327f00 syz-executor.1
3870 1 777 0 S uwait 0xfffffe005788a000 syz-executor.1
3867 1 780 0 S uwait 0xfffffe00a5dad800 syz-executor.2
3866 1 781 0 S uwait 0xfffffe0057327b00 syz-executor.3
3865 1 780 0 S uwait 0xfffffe00a5dafc00 syz-executor.2
3864 1 781 0 S uwait 0xfffffe005788ae00 syz-executor.3
3861 1 776 0 S uwait 0xfffffe0058b26600 syz-executor.0
3860 1 777 0 S uwait 0xfffffe00a5dae680 syz-executor.1
3859 1 776 0 S uwait 0xfffffe0057889580 syz-executor.0
3858 1 777 0 S uwait 0xfffffe00a5daeb80 syz-executor.1
3855 1 781 0 S uwait 0xfffffe005788b080 syz-executor.3
3854 1 780 0 S uwait 0xfffffe005788af00 syz-executor.2
3853 1 780 0 S uwait 0xfffffe00a5dad500 syz-executor.2
3852 1 781 0 S uwait 0xfffffe0058b28c00 syz-executor.3
3850 1 776 0 S uwait 0xfffffe0057889680 syz-executor.0
3848 1 777 0 S uwait 0xfffffe00a5dae180 syz-executor.1
3847 1 776 0 S uwait 0xfffffe00a5dadd00 syz-executor.0
3846 1 777 0 S uwait 0xfffffe00a5dae280 syz-executor.1
3843 1 780 0 S uwait 0xfffffe0057327e00 syz-executor.2
3842 1 781 0 S uwait 0xfffffe005788a500 syz-executor.3
3841 1 780 0 S uwait 0xfffffe0057327c00 syz-executor.2
3839 1 781 0 S uwait 0xfffffe00a5dad900 syz-executor.3
3838 1 776 0 S uwait 0xfffffe00a5dae480 syz-executor.0
3837 1 777 0 S uwait 0xfffffe00a5dafb00 syz-executor.1
3836 1 776 0 S uwait 0xfffffe00a5dade00 syz-executor.0
3834 1 777 0 S uwait 0xfffffe005788a100 syz-executor.1
3831 1 780 0 S uwait 0xfffffe00a5dadf00 syz-executor.2
3830 1 780 0 S uwait 0xfffffe00a5daf200 syz-executor.2
3825 1 780 0 S uwait 0xfffffe00a5daea80 syz-executor.2
3824 1 780 0 S uwait 0xfffffe00a5dae080 syz-executor.2
3819 1 780 0 S uwait 0xfffffe00a5daec80 syz-executor.2
3818 1 780 0 S uwait 0xfffffe0057889280 syz-executor.2
3810 1 780 0 S uwait 0xfffffe0057889d80 syz-executor.2
3808 1 780 0 S uwait 0xfffffe0057889980 syz-executor.2
2856 1 781 0 SV uwait 0xfffffe00a5daf000 syz-executor.3
2855 1 776 0 SV uwait 0xfffffe00a5db0480 syz-executor.0
2852 1 780 0 SV uwait 0xfffffe00a5daf400 syz-executor.2
2850 1 777 0 SV uwait 0xfffffe005788a300 syz-executor.1
2848 1 781 0 SV uwait 0xfffffe00a5daf600 syz-executor.3
2847 1 776 0 SV uwait 0xfffffe00a5daf100 syz-executor.0
2844 1 780 0 SV uwait 0xfffffe0058b28700 syz-executor.2
2842 1 777 0 SV uwait 0xfffffe005732a900 syz-executor.1
2840 1 776 0 SV uwait 0xfffffe005788a200 syz-executor.0
2839 1 781 0 SV uwait 0xfffffe0057889180 syz-executor.3
2834 1 780 0 SV uwait 0xfffffe0057889b80 syz-executor.2
2831 1 777 0 SV uwait 0xfffffe00a5daf800 syz-executor.1
2821 1 777 0 SV uwait 0xfffffe005788c480 syz-executor.1
2508 1 776 0 S uwait 0xfffffe005732aa00 syz-executor.0
2507 1 777 0 S uwait 0xfffffe00a5db0080 syz-executor.1
2502 1 776 0 S uwait 0xfffffe0057889780 syz-executor.0
2501 1 777 0 S uwait 0xfffffe0057328a00 syz-executor.1
2497 1 777 0 S uwait 0xfffffe00a5daee80 syz-executor.1
2495 1 776 0 S uwait 0xfffffe005788a400 syz-executor.0
2489 1 776 0 S uwait 0xfffffe0057328a80 syz-executor.0
1339 1 776 0 S uwait 0xfffffe00a5daf700 syz-executor.0
1331 1 781 0 S uwait 0xfffffe005788c680 syz-executor.3
1330 1 776 0 S uwait 0xfffffe005788c580 syz-executor.0
1326 1 777 0 S uwait 0xfffffe0058b26100 syz-executor.1
1324 1 776 0 S uwait 0xfffffe00a5db0180 syz-executor.0
1322 1 776 0 S uwait 0xfffffe005732a800 syz-executor.0
1321 1 780 0 S uwait 0xfffffe005732ac00 syz-executor.2
1317 1 776 0 S uwait 0xfffffe0058b28900 syz-executor.0
1314 1 780 0 S uwait 0xfffffe00a5db0280 syz-executor.2
1312 1 781 0 S uwait 0xfffffe0058b26700 syz-executor.3
1311 1 776 0 S uwait 0xfffffe005732ad00 syz-executor.0
1310 1 780 0 S uwait 0xfffffe005732a500 syz-executor.2
1308 1 776 0 S uwait 0xfffffe005788c980 syz-executor.0
1306 1 777 0 S uwait 0xfffffe005732a600 syz-executor.1
1303 1 780 0 S uwait 0xfffffe005788c780 syz-executor.2
1301 1 777 0 S uwait 0xfffffe005732ab00 syz-executor.1
1299 1 776 0 S uwait 0xfffffe005732a700 syz-executor.0
1297 1 781 0 S uwait 0xfffffe0058b27600 syz-executor.3
1296 1 777 0 S uwait 0xfffffe0058b28600 syz-executor.1
1294 1 780 0 S uwait 0xfffffe005732a300 syz-executor.2
1290 1 776 0 S uwait 0xfffffe0058b28800 syz-executor.0
1288 1 777 0 S uwait 0xfffffe005732a400 syz-executor.1
1287 1 776 0 S uwait 0xfffffe0058b26000 syz-executor.0
1286 1 780 0 S uwait 0xfffffe0058b26300 syz-executor.2
1284 1 776 0 S uwait 0xfffffe00a5daff00 syz-executor.0
1279 1 777 0 S uwait 0xfffffe0058b27780 syz-executor.1
1278 1 776 0 S uwait 0xfffffe005788c380 syz-executor.0
1267 1 777 0 S uwait 0xfffffe00a5dafe00 syz-executor.1
1056 1 777 0 SV uwait 0xfffffe0058b28d00 syz-executor.1
1051 1 776 0 SV uwait 0xfffffe0058b27980 syz-executor.0
1042 1 777 0 SV uwait 0xfffffe0058b26200 syz-executor.1
1005 1 776 0 SV uwait 0xfffffe00a5db0380 syz-executor.0
997 1 777 0 SV uwait 0xfffffe0058b26400 syz-executor.1
993 1 776 0 SV uwait 0xfffffe0058b26800 syz-executor.0
979 1 776 0 SV uwait 0xfffffe0058b26900 syz-executor.0
915 0 0 0 DL aiordy 0xfffffe00a5dd5548 [aiod4]
914 0 0 0 DL aiordy 0xfffffe00a25ee548 [aiod3]
913 0 0 0 DL aiordy 0xfffffe00a5dd5a90 [aiod2]
912 0 0 0 DL aiordy 0xfffffe00a25f2a90 [aiod1]
781 774 781 0 Ss piperd 0xfffffe0058be6000 syz-executor.3
780 774 780 0 Ss nanslp 0xffffffff83e43c80 syz-executor.2
777 774 777 0 Ss nanslp 0xffffffff83e43c80 syz-executor.1
776 774 776 0 Ss piperd 0xfffffe0058bd2000 syz-executor.0
774 772 772 0 S (threaded) syz-fuzzer
100108 S uwait 0xfffffe0057328800 syz-fuzzer
100113 S uwait 0xfffffe0058b27d80 syz-fuzzer
100114 S uwait 0xfffffe0058b27c80 syz-fuzzer
100115 S uwait 0xfffffe0058b27b80 syz-fuzzer
100116 S uwait 0xfffffe0058b27100 syz-fuzzer
100117 S kqread 0xfffffe0007957300 syz-fuzzer
100118 S uwait 0xfffffe0058b27000 syz-fuzzer
100119 S uwait 0xfffffe0058b28b00 syz-fuzzer
100121 S uwait 0xfffffe0058b27880 syz-fuzzer
772 770 772 0 Ss pause 0xfffffe0058cb25f8 csh
770 688 770 0 Ss select 0xfffffe0056f6adc0 sshd
688 1 688 0 Ss select 0xfffffe0056f6b0c0 sshd
17 0 0 0 DL vlruwt 0xfffffe0056fa0548 [vnlru]
16 0 0 0 DL syncer 0xffffffff83f694e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83f67ae0 [bufdaemon]
100082 D - 0xffffffff83211f80 [bufspacedaemon-0]
100094 D sdflush 0xfffffe00574720e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83f9b5c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff83f8f478 [dom0]
100083 D launds 0xffffffff83f8f484 [laundry: dom0]
100084 D umarcl 0xffffffff81e492f0 [uma]
7 0 0 0 DL - 0xffffffff83c002a8 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84a2b550 [pf purge]
5 0 0 0 DL waiting 0xffffffff848284a0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83aa3240 [doneq0]
100045 D - 0xffffffff83aa31c0 [async]
100076 D - 0xffffffff83aa3040 [scanner]
14 0 0 0 DL seqstat 0xfffffe0053fd7488 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83f8aca0 [crypto]
100041 D crypto_ 0xfffffe0053ecd830 [crypto returns 0]
100042 D crypto_ 0xfffffe0053ecd880 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff83e19280 [g_event]
100036 D - 0xffffffff83e192a0 [g_up]
100037 D - 0xffffffff83e192c0 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100015 I [swi5: fast taskq]
100018 I [swi6: task queue]
100019 I [swi6: Giant taskq]
100031 I [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0053de1000 [init]
10 0 0 0 DL audit_w 0xffffffff83f8b780 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83e19c80 [swapper]
100005 D - 0xfffffe0053e84100 [if_config_tqg_0]
100006 D - 0xfffffe0053e84000 [softirq_0]
100007 D - 0xfffffe0053e83e00 [softirq_1]
100008 D - 0xfffffe0053e83d00 [if_io_tqg_0]
100009 D - 0xfffffe0053e83c00 [if_io_tqg_1]
100010 D - 0xfffffe000795a100 [inm_free taskq]
100011 D - 0xfffffe000795a000 [linuxkpi_irq_wq]
100012 D - 0xfffffe0007959e00 [in6m_free taskq]
100013 D - 0xfffffe0007959d00 [deferred_unmount ta]
100014 D - 0xfffffe0007959c00 [thread taskq]
100016 D - 0xfffffe0007959a00 [kqueue_ctx taskq]
100017 D - 0xfffffe0007959900 [pci_hp taskq]
100020 D - 0xfffffe0007959600 [aiod_kick taskq]
100021 D - 0xfffffe0007959500 [linuxkpi_short_wq_0]
100022 D - 0xfffffe0007959500 [linuxkpi_short_wq_1]
100023 D - 0xfffffe0007959500 [linuxkpi_short_wq_2]
100024 D - 0xfffffe0007959500 [linuxkpi_short_wq_3]
100025 D - 0xfffffe0007959400 [linuxkpi_long_wq_0]
100026 D - 0xfffffe0007959400 [linuxkpi_long_wq_1]
100027 D - 0xfffffe0007959400 [linuxkpi_long_wq_2]
100028 D - 0xfffffe0007959400 [linuxkpi_long_wq_3]
100034 D - 0xfffffe0007959300 [firmware taskq]
100038 D - 0xfffffe0007959200 [crypto_0]
100039 D - 0xfffffe0007959200 [crypto_1]
100055 D - 0xfffffe0007959000 [vtnet0 rxq 0]
100056 D - 0xfffffe0007958e00 [vtnet0 txq 0]
100057 D - 0xfffffe0007958d00 [vtnet0 rxq 1]
100058 D - 0xfffffe0007958c00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0056f6c000 [virtio_balloon]
100066 D - 0xffffffff82b5d620 [deadlkres]
100070 D - 0xfffffe000795a200 [mca taskq]
100071 D - 0xfffffe00585ef600 [acpi_task_0]
100072 D - 0xfffffe00585ef600 [acpi_task_1]
100073 D - 0xfffffe00585ef600 [acpi_task_2]
100075 D - 0xfffffe0007959100 [CAM taskq]
111507 D - 0xfffffe00a6674600 [system_taskq_0]
111508 D - 0xfffffe00a6674600 [system_taskq_1]
111509 D - 0xfffffe0058b5d300 [system_delay_taskq_]
111510 D - 0xfffffe0058b5d300 [system_delay_taskq_]
111511 D - 0xfffffe009e8fe200 [arc_prune]
db> show all locks
Process 14256 (syz-executor.2) thread 0xfffffe00a9950ac0 (117718)
exclusive sleep mutex pmap (pmap) r = 0 (0xfffffe009e8b9518) locked @ /syzkaller/managers/main/kernel/sys/amd64/amd64/pmap.c:7502
shared rw vm object (vm object) r = 0 (0xfffffe009ec26000) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_fault.c:1495
shared sx vm map (user) (vm map (user)) r = 0 (0xfffffe009e8b9450) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_map.c:4934
Process 14256 (syz-executor.2) thread 0xfffffe00a99503a0 (117747)
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe00a9937cc0) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4165
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
linker 402 10034K 878
tcp_hpts 7 4801K 7
devbuf 4217 4323K 4246
filedesc 511 4092K 26343
sysctloid 47808 2812K 47912
solaris 130 2804K 200
vtbuf 24 1968K 46
pcb 1284 1961K 27246
kobj 328 1312K 490
subproc 610 1306K 14583
newblk 96 1048K 56151
vfscache 3 1025K 3
inodedep 134 562K 15740
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
sctp_atcl 967 363K 19947
sctp_stro 333 333K 5788
vmem 3 276K 6
acpica 1674 184K 57552
vnet_data 1 168K 1
tidhash 3 141K 3
pagedep 30 136K 13266
tfo_ccache 1 128K 1
kdtrace 711 123K 32012
DEVFS1 110 110K 127
umtx 880 110K 880
sem 4 106K 4
filemon 12 96K 306
bus 995 81K 5208
mtx_pool 2 72K 2
syncache 1 68K 1
module 519 65K 519
acpitask 1 64K 1
ddb_capture 1 64K 1
sctp_atky 1309 52K 26910
shm 3 36K 123
temp 35 35K 3687
DEVFS3 129 33K 139
hostcache 1 32K 1
msg 4 30K 4
gtaskqueue 18 26K 18
dirrem 100 25K 15128
kbdmux 6 22K 6
kqueue 300 22K 14352
routetbl 146 21K 1774
ifaddr 70 20K 72
DEVFS_RULE 56 20K 56
lltable 58 19K 494
pwddesc 297 19K 14322
kstat_data 17 17K 17
ufs_mount 4 17K 5
proc 3 17K 3
sctp_timw 64 16K 64
tty 16 16K 16
ithread 97 16K 97
sctp_athm 967 16K 20760
ksem 37 15K 211
bus-sc 34 15K 1681
freefile 103 13K 14826
KTRACE 101 13K 27952
ifnet 7 13K 7
ether_multi 152 13K 207
eventhandler 139 12K 139
cred 46 12K 481
kenv 95 12K 95
DEVFSP 169 11K 1635
sctp_map 666 11K 11560
rman 88 11K 431
GEOM 61 11K 494
CAM queue 5 11K 1528
freework 37 10K 29936
in6_multi 65 9K 66
taskqueue 81 9K 81
bmsafemap 2 9K 16114
UART 12 9K 12
devstat 4 9K 4
pf_table 4 8K 341
rpc 2 8K 2
shmfd 1 8K 37
pfs_vncache 1 8K 1
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
UMA 369 7K 369
pf_ifnet 20 7K 374
proc-args 303 7K 15671
cryptodev 97 7K 2139
sglist 5 7K 5
CAM DEV 3 6K 510
CC Mem 86 6K 5005
ufs_dirhash 24 5K 24
ip6opt 10 5K 430
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
plimit 16 4K 1104
evdev 4 4K 4
acpisem 28 4K 28
hhook 15 4K 17
kcovinfo 52 4K 52
inpcbpolicy 103 4K 6031
newdirblk 25 4K 13100
freeblks 12 3K 15107
BPF 10 3K 98
terminal 11 3K 11
session 21 3K 121
filedesc_to_leader 41 3K 95
lockf 17 3K 945
uidinfo 2 3K 67
osd 114 3K 4942
pf_osfp 19 2K 19
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
ip6ndp 12 2K 14
Unitno 31 2K 1141
sctp_ifa 13 2K 14
CAM XPT 22 2K 543
tcp_fsb 12 2K 1805
msi 12 2K 12
in_multi 6 2K 22
vnodemarker 3 2K 549
ipsecpolicy 2 2K 2
acpidev 20 2K 20
sctp_aadr 19 2K 90
clone 9 2K 9
tun 7 2K 7
softdep 1 1K 1
mkdir 8 1K 26200
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
NFSD session 1 1K 1
CAM periph 4 1K 271
sctp_ifn 6 1K 14
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 261
pci_link 10 1K 10
crypto 4 1K 531
encap_export_host 12 1K 12
ip_msource 10 1K 31
selfd 10 1K 176443
sctp_stri 1 1K 1592
diradd 4 1K 15168
indirdep 2 1K 21895
pfil 4 1K 4
cdev 2 1K 2
chacha20random 1 1K 1
pf_rule 2 1K 224
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
freefrag 2 1K 272
vnodes 1 1K 36
ktls 1 1K 15
CAM SIM 2 1K 2
select 2 1K 134
prison 8 1K 8
feeder 7 1K 7
taskq 2 1K 2
ip6_msource 3 1K 5
tcpfunc 3 1K 3
loginclass 3 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
pmchooks 1 1K 1
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 44
pmc 1 1K 1
acpiintr 1 1K 1
filecaps 1 1K 128
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
soname 1 1K 20759
p1003.1b 1 1K 1
ext2_mount 0 0K 0
ext2_node 0 0K 0
ext2_extents 0 0K 0
sfs_nodes 0 0K 0
zones_data 0 0K 0
pf_altq 0 0K 0
pf_temp 0 0K 0
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 9366
sctp_iter 0 0K 78
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 82
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 12
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
tcp_do 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
ixl 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
xen_intr 0 0K 0
NFSD V4state 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
xenbus 0 0K 0
DEVFS4 0 0K 0
vm_fictitious 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
UMAHash 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 15461
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 263
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
allocindir 0 0K 0
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
vtfont 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
ktls_ocf 0 0K 0
AHCI driver 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_moptions 0 0K 17
in6_mfilter 0 0K 22
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_moptions 0 0K 54
in_mfilter 0 0K 102
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 13
VN POLL 0 0K 7
agp 0 0K 0
statfs 0 0K 13383
namei_tracker 0 0K 27
export_host 0 0K 0
cl_savebuf 0 0K 110
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 713
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
aios 0 0K 22
lio 0 0K 93
acl 0 0K 0
mbuf_tag 0 0K 216
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
lDevFlags * malloc 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
procdesc 0 0K 18
iov 0 0K 24430
ioctlops 0 0K 1689
eventfd 0 0K 50
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 296
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 908
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 3
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 22
pwd 0 0K 0
tty console 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
boottrace 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8355 1551 98614 0 254 40574976 0
tcp_log 416 28988 12421 1596250 0 254 17226144 0
mbuf 256 9605 8188 4844859 0 254 4555008 0
malloc-16384 16384 259 5 13333 0 1 4325376 0
pbuf 2624 0 957 0 0 2 2511168 0
RADIX NODE 144 14711 1412 302279 0 64 2321712 0
ertt_txseginfo 40 39406 14528 2273766 0 254 2157360 0
malloc-128 128 15697 206 31068 0 126 2035584 0
VM OBJECT 264 7198 167 318547 0 32 1944360
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following issue on:
HEAD commit: 20b2b464ebb6 syscons: note incompatibility with UEFI
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=135480f9f00000
dashboard link: https://syzkaller.appspot.com/bug?extid=c48c62e7fbd8ef327088
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+c48c62...@syzkaller.appspotmail.com
panic: Assertion clen >= sizeof(*cm) && clen <= cm->cmsg_len failed at /syzkaller/managers/main/kernel/sys/kern/uipc_usrreq.c:2018
cpuid = 1
time = 281
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe00a892d430
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe00a892d590
vpanic() at vpanic+0x2b8/frame 0xfffffe00a892d670
panic() at panic+0xb5/frame 0xfffffe00a892d730
unp_externalize() at unp_externalize+0x693/frame 0xfffffe00a892d7d0
soreceive_generic() at soreceive_generic+0xf24/frame 0xfffffe00a892d9c0
soreceive() at soreceive+0xf6/frame 0xfffffe00a892da30
kern_recvit() at kern_recvit+0x54e/frame 0xfffffe00a892dbf0
sys_recvfrom() at sys_recvfrom+0x1f9/frame 0xfffffe00a892dd30
amd64_syscall() at amd64_syscall+0x410/frame 0xfffffe00a892df30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe00a892df30
--- syscall (198, FreeBSD ELF64, nosys), rip = 0x28a47a, rsp = 0x83135df08, rbp = 0x83135df70 ---
KDB: enter: panic
[ thread pid 14256 tid 117747 ]
Stopped at kdb_enter+0x6b: movq $0,0x275b7aa(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe00a4000000
rdx 0x3ffff
rbx 0
rsp 0xfffffe00a892d570
rbp 0xfffffe00a892d590
rsi 0x40001
rdi 0xffffffff8172b348 printf+0x158
r8 0
r9 0xffffffff
r10 0
r11 0
r12 0xfffffe00a99503a0
r13 0xfffffe00a892d501
r14 0xffffffff82b577a0 .str.26
r15 0xffffffff82b577a0 .str.26
rip 0xffffffff8171ae6b kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x275b7aa(%rip)
db> show proc
Process 14256 (syz-executor.2) at 0xfffffe00a9ed4548:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 780 at 0xfffffe0058cb2000
ABI: FreeBSD ELF64
flag: 0x10000080 flag2: 0
arguments: /root/syz-executor.2 exec
reaper: 0xfffffe0053de1000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe009e8b93f0
(map 0xfffffe009e8b93f0)
(map.pmap 0xfffffe009e8b94b0)
(pmap 0xfffffe009e8b9518)
threads: 3
117718 Run CPU 0 syz-executor.2
117747 Run CPU 1 syz-executor.2
117751 RunQ syz-executor.2
db> ps
pid ppid pgrp uid state wmesg wchan cmd
14256 780 780 0 R (threaded) syz-executor.2
117718 Run CPU 0 syz-executor.2
117747 Run CPU 1 syz-executor.2
117751 RunQ syz-executor.2
14252 14249 777 0 SV uwait 0xfffffe00a75b9d00 syz-executor.1
14249 777 777 0 T (threaded) syz-executor.1
102711 s syz-executor.1
117739 D ppwait 0xfffffe00a958bf88 syz-executor.1
14056 1 777 0 S uwait 0xfffffe00a75b9b80 syz-executor.1
14049 1 781 0 S uwait 0xfffffe00a75b9880 syz-executor.3
14047 1 776 0 S uwait 0xfffffe00a5db0b80 syz-executor.0
14046 1 777 0 S uwait 0xfffffe00a9957380 syz-executor.1
14042 1 781 0 S uwait 0xfffffe0057889480 syz-executor.3
14040 1 777 0 S uwait 0xfffffe00a9956d00 syz-executor.1
14039 1 776 0 S uwait 0xfffffe00a5db0d80 syz-executor.0
14035 1 781 0 S uwait 0xfffffe00a75eb000 syz-executor.3
14031 1 776 0 S uwait 0xfffffe00a75b9e00 syz-executor.0
14021 1 776 0 S uwait 0xfffffe00a9957780 syz-executor.0
13595 1 776 0 S uwait 0xfffffe00a75ea380 syz-executor.0
13588 1 776 0 S uwait 0xfffffe0058b27500 syz-executor.0
13585 1 776 0 S uwait 0xfffffe00a75b9780 syz-executor.0
13584 1 780 0 S uwait 0xfffffe00a9599580 syz-executor.2
13582 1 780 0 S uwait 0xfffffe00a75b6300 syz-executor.2
13579 1 780 0 S uwait 0xfffffe0058b29580 syz-executor.2
13577 1 780 0 S uwait 0xfffffe00a75eaa80 syz-executor.2
13456 0 0 0 DL - 0xffffffff83e1ba40 [accounting]
13379 1 781 0 S uwait 0xfffffe00a75ea880 syz-executor.3
13377 1 776 0 S umtxn 0xfffffe0057889a80 syz-executor.0
13375 1 780 0 S uwait 0xfffffe00a75b6200 syz-executor.2
13371 1 777 0 S uwait 0xfffffe0057889380 syz-executor.1
13367 1 781 0 S uwait 0xfffffe00a75b8a00 syz-executor.3
13365 1 776 0 S uwait 0xfffffe0058b28a00 syz-executor.0
13363 1 780 0 S uwait 0xfffffe00a75ea680 syz-executor.2
13361 1 777 0 S uwait 0xfffffe00a75ec900 syz-executor.1
13355 1 781 0 S uwait 0xfffffe00a75b7a80 syz-executor.3
13354 1 776 0 S uwait 0xfffffe0057889880 syz-executor.0
13351 1 780 0 S uwait 0xfffffe0058b26e80 syz-executor.2
13349 1 777 0 S uwait 0xfffffe00a5dafd00 syz-executor.1
13339 1 777 0 S uwait 0xfffffe0058b26d80 syz-executor.1
13279 1 780 0 S uwait 0xfffffe0058b26a80 syz-executor.2
13276 1 780 0 S uwait 0xfffffe005788b400 syz-executor.2
13273 1 780 0 S uwait 0xfffffe00a75ea580 syz-executor.2
13271 1 780 0 S uwait 0xfffffe005788b500 syz-executor.2
13150 1 13150 0 Ss+ ttyin 0xfffffe00579c68b0 getty
13148 1 13148 0 Ss+ ttyin 0xfffffe00579c6cb0 getty
13146 1 13146 0 Ss+ ttyin 0xfffffe00574764b0 getty
13145 1 13145 0 Ss+ ttyin 0xfffffe00579c60b0 getty
13144 1 13144 0 Ss+ ttyin 0xfffffe00579c58b0 getty
13143 1 13143 0 Ss+ ttyin 0xfffffe00579c5cb0 getty
13142 1 13142 0 Ss+ ttyin 0xfffffe00579c64b0 getty
13141 1 13141 0 Ss+ ttyin 0xfffffe00579c70b0 getty
13140 1 13140 0 Ss+ ttyin 0xfffffe00579c74b0 getty
12969 1 780 0 SV uwait 0xfffffe00a75ec800 syz-executor.2
12863 1 776 0 SV uwait 0xfffffe00a75ea180 syz-executor.0
12478 1 780 0 S uwait 0xfffffe00a75b6600 syz-executor.2
12476 1 776 0 S uwait 0xfffffe00a75eae80 syz-executor.0
12473 1 781 0 S uwait 0xfffffe00a75ea780 syz-executor.3
12471 1 777 0 S uwait 0xfffffe00a75eca00 syz-executor.1
12465 1 780 0 S uwait 0xfffffe00a75b6000 syz-executor.2
12464 1 777 0 S uwait 0xfffffe00a75eb700 syz-executor.1
12460 1 776 0 S uwait 0xfffffe00a75eb100 syz-executor.0
12458 1 781 0 S uwait 0xfffffe00a75eab80 syz-executor.3
12456 1 780 0 S uwait 0xfffffe00a9599780 syz-executor.2
12450 1 777 0 S uwait 0xfffffe00a75eac80 syz-executor.1
12448 1 781 0 S uwait 0xfffffe00a75b9a80 syz-executor.3
12445 1 776 0 S uwait 0xfffffe00a75ea980 syz-executor.0
12439 1 781 0 S uwait 0xfffffe00a75b6380 syz-executor.3
12065 1 777 0 S uwait 0xfffffe00a75b6c00 syz-executor.1
11631 1 776 0 S uwait 0xfffffe00a75ea280 syz-executor.0
11623 1 776 0 S uwait 0xfffffe00a75ead80 syz-executor.0
11615 1 776 0 S uwait 0xfffffe00a75ecc00 syz-executor.0
11603 1 776 0 S uwait 0xfffffe00a75ec300 syz-executor.0
9677 1 777 0 S uwait 0xfffffe00a75ec600 syz-executor.1
9676 1 780 0 S uwait 0xfffffe00a75ea480 syz-executor.2
9675 1 780 0 S uwait 0xfffffe00a75eb800 syz-executor.2
9673 1 777 0 S uwait 0xfffffe00a75b7580 syz-executor.1
9665 1 777 0 S uwait 0xfffffe00a5daf900 syz-executor.1
9664 1 780 0 S uwait 0xfffffe0058b29480 syz-executor.2
9661 1 777 0 S uwait 0xfffffe00a75b6e00 syz-executor.1
9660 1 780 0 S uwait 0xfffffe00a75b7d80 syz-executor.2
9653 1 780 0 S uwait 0xfffffe00a75b6a00 syz-executor.2
9652 1 777 0 S uwait 0xfffffe00a75ec500 syz-executor.1
9651 1 780 0 S uwait 0xfffffe00a75b7880 syz-executor.2
9649 1 777 0 S uwait 0xfffffe00a75b7000 syz-executor.1
9641 1 780 0 S uwait 0xfffffe00a75b6900 syz-executor.2
9640 1 780 0 S uwait 0xfffffe00a75b8100 syz-executor.2
9630 0 0 0 DL (threaded) [zfskern]
111366 D t->zthr 0xfffffe00585ef448 [arc_evict]
111512 D t->zthr 0xfffffe00585ee048 [arc_reap]
111513 D - 0xfffffe00a690c700 [dbu_evict]
111514 D dbuf_ev 0xffffffff85835960 [dbuf_evict_thread]
111515 D - 0xfffffe00a6de8b00 [z_vdev_file_0]
111516 D - 0xfffffe00a6de8b00 [z_vdev_file_1]
111517 D - 0xfffffe00a6de8b00 [z_vdev_file_2]
111518 D - 0xfffffe00a6de8b00 [z_vdev_file_3]
111519 D - 0xfffffe00a6de8b00 [z_vdev_file_4]
111520 D - 0xfffffe00a6de8b00 [z_vdev_file_5]
111521 D - 0xfffffe00a6de8b00 [z_vdev_file_6]
111522 D - 0xfffffe00a6de8b00 [z_vdev_file_7]
111523 D - 0xfffffe00a6de8b00 [z_vdev_file_8]
111524 D - 0xfffffe00a6de8b00 [z_vdev_file_9]
111525 D - 0xfffffe00a6de8b00 [z_vdev_file_10]
111526 D - 0xfffffe00a6de8b00 [z_vdev_file_11]
111527 D - 0xfffffe00a6de8b00 [z_vdev_file_12]
111528 D - 0xfffffe00a6de8b00 [z_vdev_file_13]
111529 D - 0xfffffe00a6de8b00 [z_vdev_file_14]
111530 D - 0xfffffe00a6de8b00 [z_vdev_file_15]
111531 D l2arc_f 0xffffffff857f4a80 [l2arc_feed_thread]
111532 D - 0xfffffe00a6fe0500 [zfsvfs]
111533 S zevent_ 0xffffffff85836500 [sysevent]
9436 1 781 0 S uwait 0xfffffe0058b29c80 syz-executor.3
8903 1 780 0 SV uwait 0xfffffe0053c03180 syz-executor.2
8894 1 780 0 SV uwait 0xfffffe0058b29e80 syz-executor.2
8889 1 780 0 SV uwait 0xfffffe0058b29a80 syz-executor.2
8869 1 777 0 SV uwait 0xfffffe00a75b8e00 syz-executor.1
8864 1 777 0 SV uwait 0xfffffe00a75b8f00 syz-executor.1
8859 1 777 0 SV uwait 0xfffffe0053c03380 syz-executor.1
8849 1 777 0 SV uwait 0xfffffe00a75b7980 syz-executor.1
8767 1 781 0 S uwait 0xfffffe00a5dad200 syz-executor.3
8765 1 776 0 S uwait 0xfffffe00a75b8800 syz-executor.0
8762 1 780 0 S uwait 0xfffffe00a75b8900 syz-executor.2
8761 1 781 0 S uwait 0xfffffe0053c03980 syz-executor.3
8760 1 776 0 S uwait 0xfffffe0057327000 syz-executor.0
8757 1 780 0 S uwait 0xfffffe00a75b9580 syz-executor.2
8754 1 781 0 S uwait 0xfffffe00a75b7300 syz-executor.3
8752 1 776 0 S uwait 0xfffffe00a75b7c80 syz-executor.0
8750 1 780 0 S uwait 0xfffffe00a75b6d00 syz-executor.2
8741 1 780 0 S uwait 0xfffffe00a75b8c00 syz-executor.2
8616 0 0 0 DL - 0xffffffff83f639c0 [soaiod4]
8615 0 0 0 DL - 0xffffffff83f639c0 [soaiod3]
8614 0 0 0 DL - 0xffffffff83f639c0 [soaiod2]
8613 0 0 0 DL - 0xffffffff83f639c0 [soaiod1]
8497 1 781 0 T syz-executor.3
8490 1 777 0 T syz-executor.1
8489 1 781 0 T syz-executor.3
8487 1 776 0 T syz-executor.0
8482 1 777 0 T syz-executor.1
8481 1 776 0 T syz-executor.0
8474 1 781 0 T syz-executor.3
8473 1 776 0 T syz-executor.0
8472 1 777 0 T syz-executor.1
8465 1 776 0 T syz-executor.0
8456 1 776 0 T syz-executor.0
8447 1 776 0 T syz-executor.0
8438 1 776 0 T syz-executor.0
7715 0 0 0 DL (threaded) [KTLS]
104588 D - 0xfffffe00a720b000 [thr_0]
108786 D - 0xfffffe00a720b080 [thr_1]
108787 D - 0xffffffff83f64728 [alloc_0]
7315 1 7314 0 SV uwait 0xfffffe00a75b8000 syz-executor.3
7305 1 7302 0 SV uwait 0xfffffe00a75b8200 syz-executor.3
7293 1 7292 0 SV uwait 0xfffffe00a75b9280 syz-executor.3
7288 1 7287 0 SV uwait 0xfffffe005788a980 syz-executor.3
5114 1 776 0 S uwait 0xfffffe0053c03280 syz-executor.0
5107 1 776 0 S uwait 0xfffffe00a75b9480 syz-executor.0
5104 1 776 0 S uwait 0xfffffe00a5dad100 syz-executor.0
5099 1 776 0 S uwait 0xfffffe0057327200 syz-executor.0
4374 1 776 0 S uwait 0xfffffe0053c03b80 syz-executor.0
4372 1 780 0 S uwait 0xfffffe005788ad00 syz-executor.2
4370 1 776 0 S uwait 0xfffffe00a5dad000 syz-executor.0
4367 1 776 0 S uwait 0xfffffe00a5dad300 syz-executor.0
4366 1 780 0 S uwait 0xfffffe00a75b9080 syz-executor.2
4361 1 780 0 S uwait 0xfffffe0058b29980 syz-executor.2
4359 1 780 0 S uwait 0xfffffe00a75b8d00 syz-executor.2
4357 1 780 0 S uwait 0xfffffe00a75ed680 syz-executor.2
4355 1 780 0 S uwait 0xfffffe00a75ed580 syz-executor.2
4353 1 780 0 S uwait 0xfffffe0057327a00 syz-executor.2
4330 1 777 0 S uwait 0xfffffe005788a880 syz-executor.1
4329 1 777 0 S uwait 0xfffffe0053c03880 syz-executor.1
4322 1 781 0 S uwait 0xfffffe0057328380 syz-executor.3
4321 1 781 0 S uwait 0xfffffe00a5daf500 syz-executor.3
4318 1 777 0 S uwait 0xfffffe00a5dafa00 syz-executor.1
4316 1 781 0 S uwait 0xfffffe005788ac00 syz-executor.3
4314 1 777 0 S uwait 0xfffffe0057328080 syz-executor.1
4313 1 781 0 S uwait 0xfffffe0053c03480 syz-executor.3
4312 1 780 0 S uwait 0xfffffe005732af00 syz-executor.2
4309 1 780 0 S uwait 0xfffffe0057327400 syz-executor.2
4308 1 777 0 S uwait 0xfffffe0053c03580 syz-executor.1
4307 1 781 0 S uwait 0xfffffe0053c03680 syz-executor.3
4304 1 777 0 S uwait 0xfffffe0057889e80 syz-executor.1
4303 1 781 0 S uwait 0xfffffe0057327600 syz-executor.3
4301 1 780 0 S uwait 0xfffffe00a5dad600 syz-executor.2
4299 1 776 0 S uwait 0xfffffe0057327900 syz-executor.0
4297 1 776 0 S uwait 0xfffffe00a5dae580 syz-executor.0
4296 1 780 0 S uwait 0xfffffe0053c03a80 syz-executor.2
4294 1 776 0 S uwait 0xfffffe0053c03d80 syz-executor.0
4291 1 780 0 S uwait 0xfffffe00a5dadb00 syz-executor.2
4290 1 776 0 S uwait 0xfffffe00a5dae980 syz-executor.0
4289 1 780 0 S uwait 0xfffffe0053c03780 syz-executor.2
4286 1 776 0 S uwait 0xfffffe0057327d00 syz-executor.0
4285 1 776 0 S uwait 0xfffffe00a5daed80 syz-executor.0
4283 1 780 0 S uwait 0xfffffe005788ab00 syz-executor.2
4281 1 780 0 S uwait 0xfffffe00a5dada00 syz-executor.2
4277 1 780 0 S uwait 0xfffffe0057327500 syz-executor.2
4275 1 780 0 S uwait 0xfffffe0057328580 syz-executor.2
4272 1 780 0 S uwait 0xfffffe00a5dad700 syz-executor.2
4271 1 780 0 S uwait 0xfffffe0053c03e80 syz-executor.2
4269 1 780 0 S uwait 0xfffffe0057327100 syz-executor.2
4268 1 780 0 S uwait 0xfffffe0057327300 syz-executor.2
3900 1 776 0 S uwait 0xfffffe00a5dae880 syz-executor.0
3898 1 777 0 S uwait 0xfffffe005788b180 syz-executor.1
3897 1 776 0 S uwait 0xfffffe0053c03c80 syz-executor.0
3895 1 777 0 S uwait 0xfffffe00a5daf300 syz-executor.1
3884 1 776 0 S uwait 0xfffffe00a5dad400 syz-executor.0
3883 1 776 0 S uwait 0xfffffe0057889080 syz-executor.0
3882 1 777 0 S uwait 0xfffffe0057327700 syz-executor.1
3880 1 777 0 S uwait 0xfffffe0057328400 syz-executor.1
3873 1 776 0 S uwait 0xfffffe0057328280 syz-executor.0
3872 1 776 0 S uwait 0xfffffe0057328180 syz-executor.0
3871 1 777 0 S uwait 0xfffffe0057327f00 syz-executor.1
3870 1 777 0 S uwait 0xfffffe005788a000 syz-executor.1
3867 1 780 0 S uwait 0xfffffe00a5dad800 syz-executor.2
3866 1 781 0 S uwait 0xfffffe0057327b00 syz-executor.3
3865 1 780 0 S uwait 0xfffffe00a5dafc00 syz-executor.2
3864 1 781 0 S uwait 0xfffffe005788ae00 syz-executor.3
3861 1 776 0 S uwait 0xfffffe0058b26600 syz-executor.0
3860 1 777 0 S uwait 0xfffffe00a5dae680 syz-executor.1
3859 1 776 0 S uwait 0xfffffe0057889580 syz-executor.0
3858 1 777 0 S uwait 0xfffffe00a5daeb80 syz-executor.1
3855 1 781 0 S uwait 0xfffffe005788b080 syz-executor.3
3854 1 780 0 S uwait 0xfffffe005788af00 syz-executor.2
3853 1 780 0 S uwait 0xfffffe00a5dad500 syz-executor.2
3852 1 781 0 S uwait 0xfffffe0058b28c00 syz-executor.3
3850 1 776 0 S uwait 0xfffffe0057889680 syz-executor.0
3848 1 777 0 S uwait 0xfffffe00a5dae180 syz-executor.1
3847 1 776 0 S uwait 0xfffffe00a5dadd00 syz-executor.0
3846 1 777 0 S uwait 0xfffffe00a5dae280 syz-executor.1
3843 1 780 0 S uwait 0xfffffe0057327e00 syz-executor.2
3842 1 781 0 S uwait 0xfffffe005788a500 syz-executor.3
3841 1 780 0 S uwait 0xfffffe0057327c00 syz-executor.2
3839 1 781 0 S uwait 0xfffffe00a5dad900 syz-executor.3
3838 1 776 0 S uwait 0xfffffe00a5dae480 syz-executor.0
3837 1 777 0 S uwait 0xfffffe00a5dafb00 syz-executor.1
3836 1 776 0 S uwait 0xfffffe00a5dade00 syz-executor.0
3834 1 777 0 S uwait 0xfffffe005788a100 syz-executor.1
3831 1 780 0 S uwait 0xfffffe00a5dadf00 syz-executor.2
3830 1 780 0 S uwait 0xfffffe00a5daf200 syz-executor.2
3825 1 780 0 S uwait 0xfffffe00a5daea80 syz-executor.2
3824 1 780 0 S uwait 0xfffffe00a5dae080 syz-executor.2
3819 1 780 0 S uwait 0xfffffe00a5daec80 syz-executor.2
3818 1 780 0 S uwait 0xfffffe0057889280 syz-executor.2
3810 1 780 0 S uwait 0xfffffe0057889d80 syz-executor.2
3808 1 780 0 S uwait 0xfffffe0057889980 syz-executor.2
2856 1 781 0 SV uwait 0xfffffe00a5daf000 syz-executor.3
2855 1 776 0 SV uwait 0xfffffe00a5db0480 syz-executor.0
2852 1 780 0 SV uwait 0xfffffe00a5daf400 syz-executor.2
2850 1 777 0 SV uwait 0xfffffe005788a300 syz-executor.1
2848 1 781 0 SV uwait 0xfffffe00a5daf600 syz-executor.3
2847 1 776 0 SV uwait 0xfffffe00a5daf100 syz-executor.0
2844 1 780 0 SV uwait 0xfffffe0058b28700 syz-executor.2
2842 1 777 0 SV uwait 0xfffffe005732a900 syz-executor.1
2840 1 776 0 SV uwait 0xfffffe005788a200 syz-executor.0
2839 1 781 0 SV uwait 0xfffffe0057889180 syz-executor.3
2834 1 780 0 SV uwait 0xfffffe0057889b80 syz-executor.2
2831 1 777 0 SV uwait 0xfffffe00a5daf800 syz-executor.1
2821 1 777 0 SV uwait 0xfffffe005788c480 syz-executor.1
2508 1 776 0 S uwait 0xfffffe005732aa00 syz-executor.0
2507 1 777 0 S uwait 0xfffffe00a5db0080 syz-executor.1
2502 1 776 0 S uwait 0xfffffe0057889780 syz-executor.0
2501 1 777 0 S uwait 0xfffffe0057328a00 syz-executor.1
2497 1 777 0 S uwait 0xfffffe00a5daee80 syz-executor.1
2495 1 776 0 S uwait 0xfffffe005788a400 syz-executor.0
2489 1 776 0 S uwait 0xfffffe0057328a80 syz-executor.0
1339 1 776 0 S uwait 0xfffffe00a5daf700 syz-executor.0
1331 1 781 0 S uwait 0xfffffe005788c680 syz-executor.3
1330 1 776 0 S uwait 0xfffffe005788c580 syz-executor.0
1326 1 777 0 S uwait 0xfffffe0058b26100 syz-executor.1
1324 1 776 0 S uwait 0xfffffe00a5db0180 syz-executor.0
1322 1 776 0 S uwait 0xfffffe005732a800 syz-executor.0
1321 1 780 0 S uwait 0xfffffe005732ac00 syz-executor.2
1317 1 776 0 S uwait 0xfffffe0058b28900 syz-executor.0
1314 1 780 0 S uwait 0xfffffe00a5db0280 syz-executor.2
1312 1 781 0 S uwait 0xfffffe0058b26700 syz-executor.3
1311 1 776 0 S uwait 0xfffffe005732ad00 syz-executor.0
1310 1 780 0 S uwait 0xfffffe005732a500 syz-executor.2
1308 1 776 0 S uwait 0xfffffe005788c980 syz-executor.0
1306 1 777 0 S uwait 0xfffffe005732a600 syz-executor.1
1303 1 780 0 S uwait 0xfffffe005788c780 syz-executor.2
1301 1 777 0 S uwait 0xfffffe005732ab00 syz-executor.1
1299 1 776 0 S uwait 0xfffffe005732a700 syz-executor.0
1297 1 781 0 S uwait 0xfffffe0058b27600 syz-executor.3
1296 1 777 0 S uwait 0xfffffe0058b28600 syz-executor.1
1294 1 780 0 S uwait 0xfffffe005732a300 syz-executor.2
1290 1 776 0 S uwait 0xfffffe0058b28800 syz-executor.0
1288 1 777 0 S uwait 0xfffffe005732a400 syz-executor.1
1287 1 776 0 S uwait 0xfffffe0058b26000 syz-executor.0
1286 1 780 0 S uwait 0xfffffe0058b26300 syz-executor.2
1284 1 776 0 S uwait 0xfffffe00a5daff00 syz-executor.0
1279 1 777 0 S uwait 0xfffffe0058b27780 syz-executor.1
1278 1 776 0 S uwait 0xfffffe005788c380 syz-executor.0
1267 1 777 0 S uwait 0xfffffe00a5dafe00 syz-executor.1
1056 1 777 0 SV uwait 0xfffffe0058b28d00 syz-executor.1
1051 1 776 0 SV uwait 0xfffffe0058b27980 syz-executor.0
1042 1 777 0 SV uwait 0xfffffe0058b26200 syz-executor.1
1005 1 776 0 SV uwait 0xfffffe00a5db0380 syz-executor.0
997 1 777 0 SV uwait 0xfffffe0058b26400 syz-executor.1
993 1 776 0 SV uwait 0xfffffe0058b26800 syz-executor.0
979 1 776 0 SV uwait 0xfffffe0058b26900 syz-executor.0
915 0 0 0 DL aiordy 0xfffffe00a5dd5548 [aiod4]
914 0 0 0 DL aiordy 0xfffffe00a25ee548 [aiod3]
913 0 0 0 DL aiordy 0xfffffe00a5dd5a90 [aiod2]
912 0 0 0 DL aiordy 0xfffffe00a25f2a90 [aiod1]
781 774 781 0 Ss piperd 0xfffffe0058be6000 syz-executor.3
780 774 780 0 Ss nanslp 0xffffffff83e43c80 syz-executor.2
777 774 777 0 Ss nanslp 0xffffffff83e43c80 syz-executor.1
776 774 776 0 Ss piperd 0xfffffe0058bd2000 syz-executor.0
774 772 772 0 S (threaded) syz-fuzzer
100108 S uwait 0xfffffe0057328800 syz-fuzzer
100113 S uwait 0xfffffe0058b27d80 syz-fuzzer
100114 S uwait 0xfffffe0058b27c80 syz-fuzzer
100115 S uwait 0xfffffe0058b27b80 syz-fuzzer
100116 S uwait 0xfffffe0058b27100 syz-fuzzer
100117 S kqread 0xfffffe0007957300 syz-fuzzer
100118 S uwait 0xfffffe0058b27000 syz-fuzzer
100119 S uwait 0xfffffe0058b28b00 syz-fuzzer
100121 S uwait 0xfffffe0058b27880 syz-fuzzer
772 770 772 0 Ss pause 0xfffffe0058cb25f8 csh
770 688 770 0 Ss select 0xfffffe0056f6adc0 sshd
688 1 688 0 Ss select 0xfffffe0056f6b0c0 sshd
17 0 0 0 DL vlruwt 0xfffffe0056fa0548 [vnlru]
16 0 0 0 DL syncer 0xffffffff83f694e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83f67ae0 [bufdaemon]
100082 D - 0xffffffff83211f80 [bufspacedaemon-0]
100094 D sdflush 0xfffffe00574720e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83f9b5c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff83f8f478 [dom0]
100083 D launds 0xffffffff83f8f484 [laundry: dom0]
100084 D umarcl 0xffffffff81e492f0 [uma]
7 0 0 0 DL - 0xffffffff83c002a8 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84a2b550 [pf purge]
5 0 0 0 DL waiting 0xffffffff848284a0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83aa3240 [doneq0]
100045 D - 0xffffffff83aa31c0 [async]
100076 D - 0xffffffff83aa3040 [scanner]
14 0 0 0 DL seqstat 0xfffffe0053fd7488 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83f8aca0 [crypto]
100041 D crypto_ 0xfffffe0053ecd830 [crypto returns 0]
100042 D crypto_ 0xfffffe0053ecd880 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff83e19280 [g_event]
100036 D - 0xffffffff83e192a0 [g_up]
100037 D - 0xffffffff83e192c0 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100015 I [swi5: fast taskq]
100018 I [swi6: task queue]
100019 I [swi6: Giant taskq]
100031 I [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0053de1000 [init]
10 0 0 0 DL audit_w 0xffffffff83f8b780 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83e19c80 [swapper]
100005 D - 0xfffffe0053e84100 [if_config_tqg_0]
100006 D - 0xfffffe0053e84000 [softirq_0]
100007 D - 0xfffffe0053e83e00 [softirq_1]
100008 D - 0xfffffe0053e83d00 [if_io_tqg_0]
100009 D - 0xfffffe0053e83c00 [if_io_tqg_1]
100010 D - 0xfffffe000795a100 [inm_free taskq]
100011 D - 0xfffffe000795a000 [linuxkpi_irq_wq]
100012 D - 0xfffffe0007959e00 [in6m_free taskq]
100013 D - 0xfffffe0007959d00 [deferred_unmount ta]
100014 D - 0xfffffe0007959c00 [thread taskq]
100016 D - 0xfffffe0007959a00 [kqueue_ctx taskq]
100017 D - 0xfffffe0007959900 [pci_hp taskq]
100020 D - 0xfffffe0007959600 [aiod_kick taskq]
100021 D - 0xfffffe0007959500 [linuxkpi_short_wq_0]
100022 D - 0xfffffe0007959500 [linuxkpi_short_wq_1]
100023 D - 0xfffffe0007959500 [linuxkpi_short_wq_2]
100024 D - 0xfffffe0007959500 [linuxkpi_short_wq_3]
100025 D - 0xfffffe0007959400 [linuxkpi_long_wq_0]
100026 D - 0xfffffe0007959400 [linuxkpi_long_wq_1]
100027 D - 0xfffffe0007959400 [linuxkpi_long_wq_2]
100028 D - 0xfffffe0007959400 [linuxkpi_long_wq_3]
100034 D - 0xfffffe0007959300 [firmware taskq]
100038 D - 0xfffffe0007959200 [crypto_0]
100039 D - 0xfffffe0007959200 [crypto_1]
100055 D - 0xfffffe0007959000 [vtnet0 rxq 0]
100056 D - 0xfffffe0007958e00 [vtnet0 txq 0]
100057 D - 0xfffffe0007958d00 [vtnet0 rxq 1]
100058 D - 0xfffffe0007958c00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0056f6c000 [virtio_balloon]
100066 D - 0xffffffff82b5d620 [deadlkres]
100070 D - 0xfffffe000795a200 [mca taskq]
100071 D - 0xfffffe00585ef600 [acpi_task_0]
100072 D - 0xfffffe00585ef600 [acpi_task_1]
100073 D - 0xfffffe00585ef600 [acpi_task_2]
100075 D - 0xfffffe0007959100 [CAM taskq]
111507 D - 0xfffffe00a6674600 [system_taskq_0]
111508 D - 0xfffffe00a6674600 [system_taskq_1]
111509 D - 0xfffffe0058b5d300 [system_delay_taskq_]
111510 D - 0xfffffe0058b5d300 [system_delay_taskq_]
111511 D - 0xfffffe009e8fe200 [arc_prune]
db> show all locks
Process 14256 (syz-executor.2) thread 0xfffffe00a9950ac0 (117718)
exclusive sleep mutex pmap (pmap) r = 0 (0xfffffe009e8b9518) locked @ /syzkaller/managers/main/kernel/sys/amd64/amd64/pmap.c:7502
shared rw vm object (vm object) r = 0 (0xfffffe009ec26000) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_fault.c:1495
shared sx vm map (user) (vm map (user)) r = 0 (0xfffffe009e8b9450) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_map.c:4934
Process 14256 (syz-executor.2) thread 0xfffffe00a99503a0 (117747)
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe00a9937cc0) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4165
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
linker 402 10034K 878
tcp_hpts 7 4801K 7
devbuf 4217 4323K 4246
filedesc 511 4092K 26343
sysctloid 47808 2812K 47912
solaris 130 2804K 200
vtbuf 24 1968K 46
pcb 1284 1961K 27246
kobj 328 1312K 490
subproc 610 1306K 14583
newblk 96 1048K 56151
vfscache 3 1025K 3
inodedep 134 562K 15740
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
sctp_atcl 967 363K 19947
sctp_stro 333 333K 5788
vmem 3 276K 6
acpica 1674 184K 57552
vnet_data 1 168K 1
tidhash 3 141K 3
pagedep 30 136K 13266
tfo_ccache 1 128K 1
kdtrace 711 123K 32012
DEVFS1 110 110K 127
umtx 880 110K 880
sem 4 106K 4
filemon 12 96K 306
bus 995 81K 5208
mtx_pool 2 72K 2
syncache 1 68K 1
module 519 65K 519
acpitask 1 64K 1
ddb_capture 1 64K 1
sctp_atky 1309 52K 26910
shm 3 36K 123
temp 35 35K 3687
DEVFS3 129 33K 139
hostcache 1 32K 1
msg 4 30K 4
gtaskqueue 18 26K 18
dirrem 100 25K 15128
kbdmux 6 22K 6
kqueue 300 22K 14352
routetbl 146 21K 1774
ifaddr 70 20K 72
DEVFS_RULE 56 20K 56
lltable 58 19K 494
pwddesc 297 19K 14322
kstat_data 17 17K 17
ufs_mount 4 17K 5
proc 3 17K 3
sctp_timw 64 16K 64
tty 16 16K 16
ithread 97 16K 97
sctp_athm 967 16K 20760
ksem 37 15K 211
bus-sc 34 15K 1681
freefile 103 13K 14826
KTRACE 101 13K 27952
ifnet 7 13K 7
ether_multi 152 13K 207
eventhandler 139 12K 139
cred 46 12K 481
kenv 95 12K 95
DEVFSP 169 11K 1635
sctp_map 666 11K 11560
rman 88 11K 431
GEOM 61 11K 494
CAM queue 5 11K 1528
freework 37 10K 29936
in6_multi 65 9K 66
taskqueue 81 9K 81
bmsafemap 2 9K 16114
UART 12 9K 12
devstat 4 9K 4
pf_table 4 8K 341
rpc 2 8K 2
shmfd 1 8K 37
pfs_vncache 1 8K 1
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
UMA 369 7K 369
pf_ifnet 20 7K 374
proc-args 303 7K 15671
cryptodev 97 7K 2139
sglist 5 7K 5
CAM DEV 3 6K 510
CC Mem 86 6K 5005
ufs_dirhash 24 5K 24
ip6opt 10 5K 430
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
plimit 16 4K 1104
evdev 4 4K 4
acpisem 28 4K 28
hhook 15 4K 17
kcovinfo 52 4K 52
inpcbpolicy 103 4K 6031
newdirblk 25 4K 13100
freeblks 12 3K 15107
BPF 10 3K 98
terminal 11 3K 11
session 21 3K 121
filedesc_to_leader 41 3K 95
lockf 17 3K 945
uidinfo 2 3K 67
osd 114 3K 4942
pf_osfp 19 2K 19
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
ip6ndp 12 2K 14
Unitno 31 2K 1141
sctp_ifa 13 2K 14
CAM XPT 22 2K 543
tcp_fsb 12 2K 1805
msi 12 2K 12
in_multi 6 2K 22
vnodemarker 3 2K 549
ipsecpolicy 2 2K 2
acpidev 20 2K 20
sctp_aadr 19 2K 90
clone 9 2K 9
tun 7 2K 7
softdep 1 1K 1
mkdir 8 1K 26200
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
NFSD session 1 1K 1
CAM periph 4 1K 271
sctp_ifn 6 1K 14
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 261
pci_link 10 1K 10
crypto 4 1K 531
encap_export_host 12 1K 12
ip_msource 10 1K 31
selfd 10 1K 176443
sctp_stri 1 1K 1592
diradd 4 1K 15168
indirdep 2 1K 21895
pfil 4 1K 4
cdev 2 1K 2
chacha20random 1 1K 1
pf_rule 2 1K 224
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
freefrag 2 1K 272
vnodes 1 1K 36
ktls 1 1K 15
CAM SIM 2 1K 2
select 2 1K 134
prison 8 1K 8
feeder 7 1K 7
taskq 2 1K 2
ip6_msource 3 1K 5
tcpfunc 3 1K 3
loginclass 3 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
pmchooks 1 1K 1
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 44
pmc 1 1K 1
acpiintr 1 1K 1
filecaps 1 1K 128
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
soname 1 1K 20759
p1003.1b 1 1K 1
ext2_mount 0 0K 0
ext2_node 0 0K 0
ext2_extents 0 0K 0
sfs_nodes 0 0K 0
zones_data 0 0K 0
pf_altq 0 0K 0
pf_temp 0 0K 0
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 9366
sctp_iter 0 0K 78
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 82
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 12
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
tcp_do 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
ixl 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
xen_intr 0 0K 0
NFSD V4state 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
xenbus 0 0K 0
DEVFS4 0 0K 0
vm_fictitious 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
UMAHash 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 15461
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 263
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
allocindir 0 0K 0
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
vtfont 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
ktls_ocf 0 0K 0
AHCI driver 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_moptions 0 0K 17
in6_mfilter 0 0K 22
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_moptions 0 0K 54
in_mfilter 0 0K 102
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 13
VN POLL 0 0K 7
agp 0 0K 0
statfs 0 0K 13383
namei_tracker 0 0K 27
export_host 0 0K 0
cl_savebuf 0 0K 110
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 713
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
aios 0 0K 22
lio 0 0K 93
acl 0 0K 0
mbuf_tag 0 0K 216
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
lDevFlags * malloc 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
procdesc 0 0K 18
iov 0 0K 24430
ioctlops 0 0K 1689
eventfd 0 0K 50
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 296
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 908
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 3
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 22
pwd 0 0K 0
tty console 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
boottrace 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8355 1551 98614 0 254 40574976 0
tcp_log 416 28988 12421 1596250 0 254 17226144 0
mbuf 256 9605 8188 4844859 0 254 4555008 0
malloc-16384 16384 259 5 13333 0 1 4325376 0
pbuf 2624 0 957 0 0 2 2511168 0
RADIX NODE 144 14711 1412 302279 0 64 2321712 0
ertt_txseginfo 40 39406 14528 2273766 0 254 2157360 0
malloc-128 128 15697 206 31068 0 126 2035584 0
VM OBJECT 264 7198 167 318547 0 32 1944360
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
May 26, 2022, 1:50:25 AM5/26/22
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: 20b2b464ebb6 syscons: note incompatibility with UEFI
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=17d480f9f00000
dashboard link: https://syzkaller.appspot.com/bug?extid=c48c62e7fbd8ef327088
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=139d063df00000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=167afe4df00000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+c48c62...@syzkaller.appspotmail.com
login: panic: Assertion clen >= sizeof(*cm) && clen <= cm->cmsg_len failed at /syzkaller/managers/main/kernel/sys/kern/uipc_usrreq.c:2018
cpuid = 0
time = 1653544042
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe0092a0d430
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe0092a0d590
vpanic() at vpanic+0x2b8/frame 0xfffffe0092a0d670
panic() at panic+0xb5/frame 0xfffffe0092a0d730
unp_externalize() at unp_externalize+0x693/frame 0xfffffe0092a0d7d0
soreceive_generic() at soreceive_generic+0xf24/frame 0xfffffe0092a0d9c0
soreceive() at soreceive+0xf6/frame 0xfffffe0092a0da30
kern_recvit() at kern_recvit+0x54e/frame 0xfffffe0092a0dbf0
sys_recvfrom() at sys_recvfrom+0x1f9/frame 0xfffffe0092a0dd30
amd64_syscall() at amd64_syscall+0x410/frame 0xfffffe0092a0df30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0092a0df30
--- syscall (0, FreeBSD ELF64, nosys), rip = 0x2b42da, rsp = 0x828884f78, rbp = 0x828884fb0 ---
KDB: enter: panic
[ thread pid 779 tid 100114 ]
rdx 0xdffff7c000000000
rbx 0
rsp 0xfffffe0092a0d570
rbp 0xfffffe0092a0d590
rsi 0x1
rdi 0
r8 0x3
r9 0xffffffff
r10 0
r11 0xfffffe008feaf8b0
r12 0xfffffe008feafac0
r13 0xfffffe0092a0d501
ABI: FreeBSD ELF64
flag: 0x10004080 flag2: 0
arguments: ./syz-executor3555975411
(map 0xfffffe00927e3000)
(map.pmap 0xfffffe00927e30c0)
(pmap 0xfffffe00927e3128)
threads: 3
100113 Run CPU 1 syz-executor3555975
100114 Run CPU 0 syz-executor3555975
100115 RunQ syz-executor3555975
100113 Run CPU 1 syz-executor3555975
100114 Run CPU 0 syz-executor3555975
100115 RunQ syz-executor3555975
777 775 777 0 Ss pause 0xfffffe009266a5f8 csh
775 688 775 0 Ss select 0xfffffe0056f6b840 sshd
756 1 756 0 Ss+ ttyin 0xfffffe00574764b0 getty
755 1 755 0 Ss+ ttyin 0xfffffe00574728b0 getty
754 1 754 0 Ss+ ttyin 0xfffffe00579ca0b0 getty
753 1 753 0 Ss+ ttyin 0xfffffe0057472cb0 getty
752 1 752 0 Ss+ ttyin 0xfffffe00579ca4b0 getty
751 1 751 0 Ss+ ttyin 0xfffffe00579ca8b0 getty
750 1 750 0 Ss+ ttyin 0xfffffe00579cacb0 getty
749 1 749 0 Ss+ ttyin 0xfffffe00579cb0b0 getty
748 1 748 0 Ss+ ttyin 0xfffffe00579cb4b0 getty
746 1 18 0 S+ piperd 0xfffffe0058b692e8 logger
745 744 18 0 S+ nanslp 0xffffffff83e43c81 sleep
744 1 18 0 S+ wait 0xfffffe0058c27548 sh
692 1 692 0 Ss nanslp 0xffffffff83e43c81 cron
688 1 688 0 Ss select 0xfffffe0056f6a840 sshd
501 1 501 0 Ss select 0xfffffe0056f6abc0 syslogd
430 1 430 0 Ss select 0xfffffe0056f6ac40 devd
429 1 429 65 Ss select 0xfffffe0056f6acc0 dhclient
344 1 344 0 Ss select 0xfffffe0056f6adc0 dhclient
341 1 341 0 Ss select 0xfffffe0056f6b740 dhclient
100081 D umarcl 0xffffffff81e492f0 [uma]
5 0 0 0 DL waiting 0xffffffff846914a0 [sctp_iterator]
100066 D - 0xffffffff82b5d621 [deadlkres]
Process 779 (syz-executor3555975) thread 0xfffffe008fe111e0 (100113)
exclusive sleep mutex umtxql (umtxql) r = 0 (0xffffffff83e65150) locked @ /syzkaller/managers/main/kernel/sys/kern/kern_umtx.c:1267
Process 779 (syz-executor3555975) thread 0xfffffe008feafac0 (100114)
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe008fe71900) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4165
devbuf 4217 4323K 4242
sysctloid 35322 2081K 35393
vtbuf 24 1968K 46
kobj 328 1312K 490
newblk 540 1159K 591
vfscache 3 1025K 3
pcb 19 537K 38
inodedep 44 529K 71
subproc 98 182K 838
linker 358 134K 386
pagedep 14 132K 18
tfo_ccache 1 128K 1
sem 4 106K 4
DEVFS1 105 105K 114
hostcache 1 32K 1
shm 1 32K 1
kdtrace 156 32K 896
DEVFS3 124 31K 134
umtx 242 31K 242
DEVFS_RULE 56 20K 56
BPF 10 18K 10
KTRACE 100 13K 100
eventhandler 136 12K 136
kenv 95 12K 95
ifaddr 30 12K 32
rman 88 11K 431
GEOM 61 11K 490
routetbl 50 11K 176
rpc 2 8K 2
bmsafemap 1 8K 40
shmfd 1 8K 1
UMA 272 5K 272
dirrem 17 5K 28
plimit 17 5K 322
vt 11 5K 11
ifnet 3 5K 3
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
kqueue 40 3K 782
pwddesc 40 3K 780
uidinfo 3 3K 8
proc-args 62 3K 1720
Unitno 27 2K 39
msi 12 2K 12
softdep 1 1K 1
ipsec 3 1K 3
indirdep 3 1K 3
nhops 6 1K 6
pci_link 10 1K 10
sctp_ifa 5 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
inpcbpolicy 10 1K 137
sctp_ifn 2 1K 6
DEVFS 9 1K 10
freework 1 1K 26
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
tcpfunc 3 1K 3
CC Mem 3 1K 7
loginclass 3 1K 7
prison 6 1K 6
lkpikmalloc 5 1K 6
filecaps 5 1K 67
aesni_data 2 1K 2
cryptodev 2 1K 49
procdesc 1 1K 6
pmchooks 1 1K 1
tun 3 1K 3
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
tcp_fsb 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_cpal 0 0K 0
sctp_atky 0 0K 0
sctp_atcl 0 0K 0
sctp_a_it 0 0K 4
sctp_aadr 0 0K 0
sctp_stro 0 0K 0
sctp_stri 0 0K 0
sctp_map 0 0K 0
savedino 0 0K 18
freeblks 0 0K 25
freefrag 0 0K 1
ip6opt 0 0K 3
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
statfs 0 0K 196
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 3
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 27
ktls 0 0K 0
iov 0 0K 13499
ioctlops 0 0K 85
eventfd 0 0K 0
filedesc_to_leader 0 0K 0
mbuf_jumbo_page 4096 8320 1078 13362 0 254 38494208 0
mbuf 256 8582 1080 15666 0 254 2473472 0
pbuf 2624 0 794 0 0 2 2083456 0
BUF TRIE 144 171 11617 454 0 62 1697472 0
malloc-384 384 4169 31 4509 0 30 1612800 0
malloc-128 128 11647 226 11681 0 126 1519744 0
malloc-4096 4096 328 2 493 0 2 1351680 0
UMA Slabs 0 112 10549 29 10549 0 126 1184736 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 16243 68 16243 0 254 913416 0
FFS inode 1160 499 19 508 0 8 600880 0
tcpcb 1104 3 508 7 0 254 564144 0
RADIX NODE 144 3227 212 19815 0 62 495216 0
socket 960 20 488 1335 0 254 487680 0
VM OBJECT 264 1415 85 24452 0 30 396000 0
lkpicurr 168 2 2350 2 0 62 395136 0
malloc-65536 65536 4 2 140 0 1 393216 0
lkpimm 168 1 2327 1 0 62 391104 0
256 Bucket 2048 124 20 1006 0 8 294912 0
malloc-64 64 4113 234 5372 0 254 278208 0
VNODE 448 529 47 540 0 30 258048 0
malloc-16 16 14655 345 14729 0 254 240000 0
malloc-256 256 783 147 1191 0 62 238080 0
DEVCTL 1024 0 220 126 0 0 225280 0
THREAD 1808 115 6 115 0 8 218768 0
malloc-4096 4096 46 4 786 0 2 204800 0
MAP ENTRY 96 1568 448 84334 0 126 193536 0
malloc-32 32 5361 561 5938 0 254 189504 0
UMA Zones 768 244 0 244 0 16 187392 0
malloc-128 128 1203 192 26870 0 126 178560 0
malloc-1024 1024 117 27 325 0 16 147456 0
FFS2 dinode 256 499 71 508 0 62 145920 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-65536 65536 0 2 52 0 1 131072 0
malloc-2048 2048 5 59 1061 0 8 131072 0
unpcb 256 9 501 1181 0 254 130560 0
mbuf_packet 256 0 508 77 0 254 130048 0
S VFS Cache 104 966 204 1003 0 126 121680 0
FPU_save_area 832 117 27 130 0 16 119808 0
ksiginfo 112 36 1008 52 0 126 116928 0
malloc-16384 16384 3 4 163 0 1 114688 0
malloc-128 128 525 250 3836 0 126 99200 0
malloc-32768 32768 0 3 120 0 1 98304 0
UMA Kegs 384 230 3 230 0 30 89472 0
g_bio 408 0 210 4629 0 30 85680 0
128 Bucket 1024 46 37 472 0 16 84992 0
malloc-8192 8192 7 3 136 0 1 81920 0
PROC 1352 39 18 779 0 8 77064 0
VMSPACE 2552 23 7 764 0 4 76560 0
malloc-64 64 520 551 1614 0 254 68544 0
malloc-128 128 330 197 480 0 126 67456 0
malloc-128 128 266 261 1040 0 126 67456 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-4096 4096 13 3 27 0 2 65536 0
malloc-256 256 162 93 175 0 62 65280 0
filedesc0 1072 40 16 780 0 8 60032 0
64 Bucket 512 66 38 1603 0 30 53248 0
malloc-64 64 505 314 741 0 254 52416 0
malloc-128 128 152 251 639 0 126 51584 0
malloc-256 256 73 122 798 0 62 49920 0
32 Bucket 256 59 136 12199 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 12233 0 16 49152 0
malloc-8192 8192 4 2 6 0 1 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-1024 1024 27 21 38 0 16 49152 0
malloc-1024 1024 6 42 530 0 16 49152 0
syncache 168 0 264 5 0 254 44352 0
clpbuf 2624 0 16 20 0 16 41984 0
malloc-8192 8192 5 0 5 0 1 40960 0
Mountpoints 2752 2 12 2 0 4 38528 0
udp_inpcb 424 6 84 126 0 30 38160 0
da_ccb 544 0 70 1271 0 16 38080 0
pcpu-8 8 4223 385 4251 0 254 36864 0
malloc-64 64 0 567 13178 0 254 36288 0
malloc-64 64 136 431 155 0 254 36288 0
malloc-64 64 90 477 9859 0 254 36288 0
malloc-64 64 61 506 1053 0 254 36288 0
malloc-64 64 13 554 31 0 254 36288 0
malloc-128 128 137 142 189 0 126 35712 0
malloc-128 128 35 244 111 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 56 34 111 0 30 34560 0
malloc-384 384 58 32 59 0 30 34560 0
malloc-256 256 2 133 285 0 62 34560 0
malloc-256 256 18 117 23 0 62 34560 0
malloc-256 256 57 78 655 0 62 34560 0
malloc-256 256 20 115 26 0 62 34560 0
malloc-256 256 10 125 565 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 2 0 17 0 1 32768 0
malloc-4096 4096 4 4 630 0 2 32768 0
malloc-2048 2048 3 13 65 0 8 32768 0
malloc-2048 2048 4 12 13 0 8 32768 0
malloc-2048 2048 4 12 195 0 8 32768 0
malloc-2048 2048 9 7 10 0 8 32768 0
malloc-1024 1024 7 25 7 0 16 32768 0
malloc-1024 1024 6 26 874 0 16 32768 0
malloc-512 512 11 53 19 0 30 32768 0
malloc-512 512 2 62 12 0 30 32768 0
pcpu-64 64 493 19 493 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
cpuset 104 7 272 7 0 126 29016 0
sctp_laddr 48 0 588 4 0 254 28224 0
malloc-32 32 265 617 3092 0 254 28224 0
16 Bucket 144 44 152 227 0 62 28224 0
4 Bucket 48 6 582 48 0 254 28224 0
tcp_inpcb 424 3 60 7 0 30 26712 0
ripcb 424 1 62 4 0 30 26712 0
pipe 744 7 28 284 0 16 26040 0
TURNSTILE 136 122 67 122 0 62 25704 0
malloc-4096 4096 6 0 6 0 2 24576 0
rtentry 176 13 125 17 0 62 24288 0
PGRP 88 20 256 31 0 126 24288 0
ertt_txseginfo 40 1 605 207 0 254 24240 0
rl_entry 40 29 577 29 0 254 24240 0
Files 80 73 227 6581 0 126 24000 0
8 Bucket 80 38 262 222 0 126 24000 0
malloc-384 384 27 33 29 0 30 23040 0
malloc-384 384 30 30 30 0 30 23040 0
SLEEPQUEUE 88 122 134 122 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udpcb 32 6 624 126 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
PWD 32 10 620 100 0 254 20160 0
malloc-32 32 5 625 13 0 254 20160 0
malloc-32 32 116 514 295 0 254 20160 0
malloc-32 32 33 597 35 0 254 20160 0
malloc-32 32 55 575 233 0 254 20160 0
malloc-32 32 23 607 1072 0 254 20160 0
2 Bucket 32 47 583 297 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 1 3 197 0 2 16384 0
malloc-4096 4096 3 1 3 0 2 16384 0
malloc-2048 2048 3 5 3 0 8 16384 0
malloc-2048 2048 1 7 1 0 8 16384 0
malloc-2048 2048 2 6 2 0 8 16384 0
malloc-1024 1024 4 12 4 0 16 16384 0
malloc-1024 1024 1 15 1 0 16 16384 0
malloc-512 512 3 29 170 0 30 16384 0
malloc-512 512 0 32 1 0 30 16384 0
malloc-512 512 2 30 2 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
malloc-16 16 478 522 3438 0 254 16000 0
kenv 258 15 45 1037 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
malloc-32 32 81 297 892 0 254 12096 0
KNOTE 160 0 75 7 0 62 12000 0
malloc-16 16 10 740 196 0 254 12000 0
malloc-16 16 18 732 131 0 254 12000 0
malloc-16 16 16 734 56 0 254 12000 0
malloc-16 16 34 716 26252 0 254 12000 0
malloc-16 16 23 727 1251 0 254 12000 0
malloc-16 16 11 739 59 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-384 384 2 28 2 0 30 11520 0
malloc-384 384 1 29 1 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 14 498 14 0 254 8192 0
vtnet_tx_hdr 24 0 334 1430 0 254 8016 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
pcpu-4 4 1 511 1 0 254 2048 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 312 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 896 0 0 0 0 16 0 0
tcp_rack_map 120 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 72 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1208 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIOP 32 0 0 0 0 254 0 0
AIO 208 0 0 0 0 62 0 0
TMPFS node 224 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 120 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 64 0 0
mdpbuf 2624 0 0 0 0 3 0 0
nfspbuf 2624 0 0 0 0 16 0 0
swwbuf 2624 0 0 0 0 8 0 0
swrbuf 2624 0 0 0 0 16 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-4096 4096 0 0 0 0 2 0 0
malloc-1024 1024 0 0 0 0 16 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
HEAD commit: 20b2b464ebb6 syscons: note incompatibility with UEFI
git tree: freebsd-src
dashboard link: https://syzkaller.appspot.com/bug?extid=c48c62e7fbd8ef327088
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=139d063df00000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=167afe4df00000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+c48c62...@syzkaller.appspotmail.com
cpuid = 0
time = 1653544042
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe0092a0d430
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe0092a0d590
vpanic() at vpanic+0x2b8/frame 0xfffffe0092a0d670
panic() at panic+0xb5/frame 0xfffffe0092a0d730
unp_externalize() at unp_externalize+0x693/frame 0xfffffe0092a0d7d0
soreceive_generic() at soreceive_generic+0xf24/frame 0xfffffe0092a0d9c0
soreceive() at soreceive+0xf6/frame 0xfffffe0092a0da30
kern_recvit() at kern_recvit+0x54e/frame 0xfffffe0092a0dbf0
sys_recvfrom() at sys_recvfrom+0x1f9/frame 0xfffffe0092a0dd30
amd64_syscall() at amd64_syscall+0x410/frame 0xfffffe0092a0df30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0092a0df30
--- syscall (0, FreeBSD ELF64, nosys), rip = 0x2b42da, rsp = 0x828884f78, rbp = 0x828884fb0 ---
KDB: enter: panic
[ thread pid 779 tid 100114 ]
Stopped at kdb_enter+0x6b: movq $0,0x275b7aa(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe00033eee30
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rdx 0xdffff7c000000000
rbx 0
rsp 0xfffffe0092a0d570
rbp 0xfffffe0092a0d590
rsi 0x1
rdi 0
r8 0x3
r9 0xffffffff
r10 0
r11 0xfffffe008feaf8b0
r12 0xfffffe008feafac0
r13 0xfffffe0092a0d501
r14 0xffffffff82b577a0 .str.26
r15 0xffffffff82b577a0 .str.26
rip 0xffffffff8171ae6b kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x275b7aa(%rip)
db> show proc
Process 779 (syz-executor3555975) at 0xfffffe00927c5000:
r15 0xffffffff82b577a0 .str.26
rip 0xffffffff8171ae6b kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x275b7aa(%rip)
db> show proc
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 777 at 0xfffffe009266a548
uid: 0 gids: 0, 0, 5
ABI: FreeBSD ELF64
flag: 0x10004080 flag2: 0
arguments: ./syz-executor3555975411
reaper: 0xfffffe0053de1000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00927e3000
sigparent: 20
(map 0xfffffe00927e3000)
(map.pmap 0xfffffe00927e30c0)
(pmap 0xfffffe00927e3128)
threads: 3
100113 Run CPU 1 syz-executor3555975
100114 Run CPU 0 syz-executor3555975
100115 RunQ syz-executor3555975
db> ps
pid ppid pgrp uid state wmesg wchan cmd
779 777 777 0 R (threaded) syz-executor3555975
pid ppid pgrp uid state wmesg wchan cmd
100113 Run CPU 1 syz-executor3555975
100114 Run CPU 0 syz-executor3555975
100115 RunQ syz-executor3555975
777 775 777 0 Ss pause 0xfffffe009266a5f8 csh
775 688 775 0 Ss select 0xfffffe0056f6b840 sshd
756 1 756 0 Ss+ ttyin 0xfffffe00574764b0 getty
755 1 755 0 Ss+ ttyin 0xfffffe00574728b0 getty
754 1 754 0 Ss+ ttyin 0xfffffe00579ca0b0 getty
753 1 753 0 Ss+ ttyin 0xfffffe0057472cb0 getty
752 1 752 0 Ss+ ttyin 0xfffffe00579ca4b0 getty
751 1 751 0 Ss+ ttyin 0xfffffe00579ca8b0 getty
750 1 750 0 Ss+ ttyin 0xfffffe00579cacb0 getty
749 1 749 0 Ss+ ttyin 0xfffffe00579cb0b0 getty
748 1 748 0 Ss+ ttyin 0xfffffe00579cb4b0 getty
746 1 18 0 S+ piperd 0xfffffe0058b692e8 logger
745 744 18 0 S+ nanslp 0xffffffff83e43c81 sleep
744 1 18 0 S+ wait 0xfffffe0058c27548 sh
692 1 692 0 Ss nanslp 0xffffffff83e43c81 cron
688 1 688 0 Ss select 0xfffffe0056f6a840 sshd
501 1 501 0 Ss select 0xfffffe0056f6abc0 syslogd
430 1 430 0 Ss select 0xfffffe0056f6ac40 devd
429 1 429 65 Ss select 0xfffffe0056f6acc0 dhclient
344 1 344 0 Ss select 0xfffffe0056f6adc0 dhclient
341 1 341 0 Ss select 0xfffffe0056f6b740 dhclient
17 0 0 0 DL vlruwt 0xfffffe0056fa0548 [vnlru]
16 0 0 0 DL syncer 0xffffffff83f694e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83f67ae0 [bufdaemon]
100082 D - 0xffffffff83211f80 [bufspacedaemon-0]
100095 D sdflush 0xfffffe00574720e8 [/ worker]
16 0 0 0 DL syncer 0xffffffff83f694e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83f67ae0 [bufdaemon]
100082 D - 0xffffffff83211f80 [bufspacedaemon-0]
9 0 0 0 DL psleep 0xffffffff83f9b5c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff83f8f478 [dom0]
100080 D launds 0xffffffff83f8f484 [laundry: dom0]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff83f8f478 [dom0]
100081 D umarcl 0xffffffff81e492f0 [uma]
7 0 0 0 DL - 0xffffffff83c002a8 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84b63550 [pf purge]
5 0 0 0 DL waiting 0xffffffff846914a0 [sctp_iterator]
100070 D - 0xfffffe000795a200 [mca taskq]
100071 D - 0xfffffe00585ef600 [acpi_task_0]
100072 D - 0xfffffe00585ef600 [acpi_task_1]
100073 D - 0xfffffe00585ef600 [acpi_task_2]
100075 D - 0xfffffe0007959100 [CAM taskq]
db> show all locks
100071 D - 0xfffffe00585ef600 [acpi_task_0]
100072 D - 0xfffffe00585ef600 [acpi_task_1]
100073 D - 0xfffffe00585ef600 [acpi_task_2]
100075 D - 0xfffffe0007959100 [CAM taskq]
Process 779 (syz-executor3555975) thread 0xfffffe008fe111e0 (100113)
exclusive sleep mutex umtxql (umtxql) r = 0 (0xffffffff83e65150) locked @ /syzkaller/managers/main/kernel/sys/kern/kern_umtx.c:1267
Process 779 (syz-executor3555975) thread 0xfffffe008feafac0 (100114)
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe008fe71900) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4165
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
Type InUse MemUse Requests
pf_hash 5 11524K 5
devbuf 4217 4323K 4242
sysctloid 35322 2081K 35393
vtbuf 24 1968K 46
kobj 328 1312K 490
newblk 540 1159K 591
vfscache 3 1025K 3
pcb 19 537K 38
inodedep 44 529K 71
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
acpica 1674 184K 57552
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
subproc 98 182K 838
vnet_data 1 168K 1
tidhash 3 141K 3
vmem 3 138K 4
tidhash 3 141K 3
linker 358 134K 386
pagedep 14 132K 18
tfo_ccache 1 128K 1
sem 4 106K 4
DEVFS1 105 105K 114
bus 995 81K 5208
mtx_pool 2 72K 2
syncache 1 68K 1
module 514 65K 514
mtx_pool 2 72K 2
syncache 1 68K 1
acpitask 1 64K 1
ddb_capture 1 64K 1
temp 17 33K 1604
ddb_capture 1 64K 1
hostcache 1 32K 1
shm 1 32K 1
kdtrace 156 32K 896
DEVFS3 124 31K 134
umtx 242 31K 242
msg 4 30K 4
gtaskqueue 18 26K 18
kbdmux 6 22K 6
gtaskqueue 18 26K 18
DEVFS_RULE 56 20K 56
BPF 10 18K 10
ufs_mount 4 17K 5
proc 3 17K 3
proc 3 17K 3
tty 16 16K 16
ithread 97 16K 97
bus-sc 34 15K 1681
ithread 97 16K 97
KTRACE 100 13K 100
eventhandler 136 12K 136
kenv 95 12K 95
ifaddr 30 12K 32
rman 88 11K 431
GEOM 61 11K 490
routetbl 50 11K 176
CAM queue 5 11K 1528
cred 36 9K 234
UART 12 9K 12
devstat 4 9K 4
ksem 1 8K 1
devstat 4 9K 4
rpc 2 8K 2
bmsafemap 1 8K 40
shmfd 1 8K 1
pfs_vncache 1 8K 1
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
taskqueue 63 7K 63
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
sglist 5 7K 5
CAM DEV 3 6K 510
ufs_dirhash 24 5K 24
CAM DEV 3 6K 510
UMA 272 5K 272
dirrem 17 5K 28
plimit 17 5K 322
vt 11 5K 11
ifnet 3 5K 3
memdesc 1 4K 1
MCA 32 4K 32
filedesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
acpisem 28 4K 28
hhook 15 4K 17
ether_multi 40 4K 50
acpisem 28 4K 28
hhook 15 4K 17
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
kqueue 40 3K 782
pwddesc 40 3K 780
uidinfo 3 3K 8
proc-args 62 3K 1720
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
selfd 27 2K 9000
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
Unitno 27 2K 39
CAM XPT 22 2K 543
lockf 15 2K 22
msi 12 2K 12
ipsecpolicy 2 2K 2
acpidev 20 2K 20
clone 9 2K 9
acpidev 20 2K 20
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
vnodemarker 2 1K 10
secasvar 1 1K 1
NFSD session 1 1K 1
CAM periph 4 1K 271
select 7 1K 29
CAM periph 4 1K 271
ipsec 3 1K 3
indirdep 3 1K 3
nhops 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 89
isadev 6 1K 6
pci_link 10 1K 10
sctp_ifa 5 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
pfil 4 1K 4
cdev 2 1K 2
chacha20random 1 1K 1
osd 7 1K 18
cdev 2 1K 2
chacha20random 1 1K 1
inpcbpolicy 10 1K 137
sctp_ifn 2 1K 6
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFSP 4 1K 9
NFSD V4client 1 1K 1
DEVFS 9 1K 10
freework 1 1K 26
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
CAM SIM 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
CC Mem 3 1K 7
loginclass 3 1K 7
prison 6 1K 6
lkpikmalloc 5 1K 6
filecaps 5 1K 67
aesni_data 2 1K 2
cryptodev 2 1K 49
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
soname 5 1K 3472
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
procdesc 1 1K 6
pmchooks 1 1K 1
tun 3 1K 3
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 35
vnet 1 1K 1
pmc 1 1K 1
acpiintr 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_temp 0 0K 0
mqdata 0 0K 0
tcp_do 0 0K 0
mqdata 0 0K 0
tcp_fsb 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
filemon 0 0K 0
esp 0 0K 0
ah 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_athm 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_atky 0 0K 0
sctp_atcl 0 0K 0
sctp_a_it 0 0K 4
sctp_aadr 0 0K 0
sctp_stro 0 0K 0
sctp_stri 0 0K 0
sctp_map 0 0K 0
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 3
jfsync 0 0K 0
jtrunc 0 0K 0
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefile 0 0K 9
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freeblks 0 0K 25
freefrag 0 0K 1
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_msource 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
statfs 0 0K 196
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 3
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
aios 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 27
ktls 0 0K 0
ioctlops 0 0K 85
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 658
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 0
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
kcovinfo 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
Fail Points 0 0K 0
filedesc_to_leader 0 0K 0
mbuf 256 8582 1080 15666 0 254 2473472 0
pbuf 2624 0 794 0 0 2 2083456 0
BUF TRIE 144 171 11617 454 0 62 1697472 0
malloc-384 384 4169 31 4509 0 30 1612800 0
malloc-128 128 11647 226 11681 0 126 1519744 0
malloc-4096 4096 328 2 493 0 2 1351680 0
UMA Slabs 0 112 10549 29 10549 0 126 1184736 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 16243 68 16243 0 254 913416 0
FFS inode 1160 499 19 508 0 8 600880 0
tcpcb 1104 3 508 7 0 254 564144 0
RADIX NODE 144 3227 212 19815 0 62 495216 0
socket 960 20 488 1335 0 254 487680 0
VM OBJECT 264 1415 85 24452 0 30 396000 0
lkpicurr 168 2 2350 2 0 62 395136 0
malloc-65536 65536 4 2 140 0 1 393216 0
lkpimm 168 1 2327 1 0 62 391104 0
256 Bucket 2048 124 20 1006 0 8 294912 0
malloc-64 64 4113 234 5372 0 254 278208 0
VNODE 448 529 47 540 0 30 258048 0
malloc-16 16 14655 345 14729 0 254 240000 0
malloc-256 256 783 147 1191 0 62 238080 0
DEVCTL 1024 0 220 126 0 0 225280 0
THREAD 1808 115 6 115 0 8 218768 0
malloc-4096 4096 46 4 786 0 2 204800 0
MAP ENTRY 96 1568 448 84334 0 126 193536 0
malloc-32 32 5361 561 5938 0 254 189504 0
UMA Zones 768 244 0 244 0 16 187392 0
malloc-128 128 1203 192 26870 0 126 178560 0
malloc-1024 1024 117 27 325 0 16 147456 0
FFS2 dinode 256 499 71 508 0 62 145920 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-65536 65536 0 2 52 0 1 131072 0
malloc-2048 2048 5 59 1061 0 8 131072 0
unpcb 256 9 501 1181 0 254 130560 0
mbuf_packet 256 0 508 77 0 254 130048 0
S VFS Cache 104 966 204 1003 0 126 121680 0
FPU_save_area 832 117 27 130 0 16 119808 0
ksiginfo 112 36 1008 52 0 126 116928 0
malloc-16384 16384 3 4 163 0 1 114688 0
malloc-128 128 525 250 3836 0 126 99200 0
malloc-32768 32768 0 3 120 0 1 98304 0
UMA Kegs 384 230 3 230 0 30 89472 0
g_bio 408 0 210 4629 0 30 85680 0
128 Bucket 1024 46 37 472 0 16 84992 0
malloc-8192 8192 7 3 136 0 1 81920 0
PROC 1352 39 18 779 0 8 77064 0
VMSPACE 2552 23 7 764 0 4 76560 0
malloc-64 64 520 551 1614 0 254 68544 0
malloc-128 128 330 197 480 0 126 67456 0
malloc-128 128 266 261 1040 0 126 67456 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-4096 4096 13 3 27 0 2 65536 0
malloc-256 256 162 93 175 0 62 65280 0
filedesc0 1072 40 16 780 0 8 60032 0
64 Bucket 512 66 38 1603 0 30 53248 0
malloc-64 64 505 314 741 0 254 52416 0
malloc-128 128 152 251 639 0 126 51584 0
malloc-256 256 73 122 798 0 62 49920 0
32 Bucket 256 59 136 12199 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 12233 0 16 49152 0
malloc-8192 8192 4 2 6 0 1 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-1024 1024 27 21 38 0 16 49152 0
malloc-1024 1024 6 42 530 0 16 49152 0
syncache 168 0 264 5 0 254 44352 0
clpbuf 2624 0 16 20 0 16 41984 0
malloc-8192 8192 5 0 5 0 1 40960 0
Mountpoints 2752 2 12 2 0 4 38528 0
udp_inpcb 424 6 84 126 0 30 38160 0
da_ccb 544 0 70 1271 0 16 38080 0
pcpu-8 8 4223 385 4251 0 254 36864 0
malloc-64 64 0 567 13178 0 254 36288 0
malloc-64 64 136 431 155 0 254 36288 0
malloc-64 64 90 477 9859 0 254 36288 0
malloc-64 64 61 506 1053 0 254 36288 0
malloc-64 64 13 554 31 0 254 36288 0
malloc-128 128 137 142 189 0 126 35712 0
malloc-128 128 35 244 111 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 56 34 111 0 30 34560 0
malloc-384 384 58 32 59 0 30 34560 0
malloc-256 256 2 133 285 0 62 34560 0
malloc-256 256 18 117 23 0 62 34560 0
malloc-256 256 57 78 655 0 62 34560 0
malloc-256 256 20 115 26 0 62 34560 0
malloc-256 256 10 125 565 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 2 0 17 0 1 32768 0
malloc-4096 4096 4 4 630 0 2 32768 0
malloc-2048 2048 3 13 65 0 8 32768 0
malloc-2048 2048 4 12 13 0 8 32768 0
malloc-2048 2048 4 12 195 0 8 32768 0
malloc-2048 2048 9 7 10 0 8 32768 0
malloc-1024 1024 7 25 7 0 16 32768 0
malloc-1024 1024 6 26 874 0 16 32768 0
malloc-512 512 11 53 19 0 30 32768 0
malloc-512 512 2 62 12 0 30 32768 0
pcpu-64 64 493 19 493 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
cpuset 104 7 272 7 0 126 29016 0
sctp_laddr 48 0 588 4 0 254 28224 0
malloc-32 32 265 617 3092 0 254 28224 0
16 Bucket 144 44 152 227 0 62 28224 0
4 Bucket 48 6 582 48 0 254 28224 0
tcp_inpcb 424 3 60 7 0 30 26712 0
ripcb 424 1 62 4 0 30 26712 0
pipe 744 7 28 284 0 16 26040 0
TURNSTILE 136 122 67 122 0 62 25704 0
malloc-4096 4096 6 0 6 0 2 24576 0
rtentry 176 13 125 17 0 62 24288 0
PGRP 88 20 256 31 0 126 24288 0
ertt_txseginfo 40 1 605 207 0 254 24240 0
rl_entry 40 29 577 29 0 254 24240 0
Files 80 73 227 6581 0 126 24000 0
8 Bucket 80 38 262 222 0 126 24000 0
malloc-384 384 27 33 29 0 30 23040 0
malloc-384 384 30 30 30 0 30 23040 0
SLEEPQUEUE 88 122 134 122 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udpcb 32 6 624 126 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
PWD 32 10 620 100 0 254 20160 0
malloc-32 32 5 625 13 0 254 20160 0
malloc-32 32 116 514 295 0 254 20160 0
malloc-32 32 33 597 35 0 254 20160 0
malloc-32 32 55 575 233 0 254 20160 0
malloc-32 32 23 607 1072 0 254 20160 0
2 Bucket 32 47 583 297 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 1 3 197 0 2 16384 0
malloc-4096 4096 3 1 3 0 2 16384 0
malloc-2048 2048 3 5 3 0 8 16384 0
malloc-2048 2048 1 7 1 0 8 16384 0
malloc-2048 2048 2 6 2 0 8 16384 0
malloc-1024 1024 4 12 4 0 16 16384 0
malloc-1024 1024 1 15 1 0 16 16384 0
malloc-512 512 3 29 170 0 30 16384 0
malloc-512 512 0 32 1 0 30 16384 0
malloc-512 512 2 30 2 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
malloc-16 16 478 522 3438 0 254 16000 0
kenv 258 15 45 1037 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
malloc-32 32 81 297 892 0 254 12096 0
KNOTE 160 0 75 7 0 62 12000 0
malloc-16 16 10 740 196 0 254 12000 0
malloc-16 16 18 732 131 0 254 12000 0
malloc-16 16 16 734 56 0 254 12000 0
malloc-16 16 34 716 26252 0 254 12000 0
malloc-16 16 23 727 1251 0 254 12000 0
malloc-16 16 11 739 59 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-384 384 2 28 2 0 30 11520 0
malloc-384 384 1 29 1 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 14 498 14 0 254 8192 0
vtnet_tx_hdr 24 0 334 1430 0 254 8016 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
pcpu-4 4 1 511 1 0 254 2048 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 312 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 896 0 0 0 0 16 0 0
tcp_rack_map 120 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 72 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1208 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIOP 32 0 0 0 0 254 0 0
AIO 208 0 0 0 0 62 0 0
TMPFS node 224 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 120 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 64 0 0
mdpbuf 2624 0 0 0 0 3 0 0
nfspbuf 2624 0 0 0 0 16 0 0
swwbuf 2624 0 0 0 0 8 0 0
swrbuf 2624 0 0 0 0 16 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-4096 4096 0 0 0 0 2 0 0
malloc-1024 1024 0 0 0 0 16 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
Mark Johnston
May 26, 2022, 3:16:51 PM5/26/22
to syzbot, syzkaller-f...@googlegroups.com
Reply all
Reply to author
Forward
0 new messages