panic: size_on_reasm_queue is NUM (4)
1 view
Skip to first unread message
syzbot
Jan 18, 2024, 6:04:20 PMJan 18
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 47a6fb9d5a2e mlx5: Zero DMA memory mlx5_alloc_cmd_msg() an..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=12e4a48be80000
dashboard link: https://syzkaller.appspot.com/bug?extid=2e2dc35c0e24a74663a7
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+2e2dc3...@syzkaller.appspotmail.com
panic: size_on_reasm_queue is 1193
cpuid = 0
time = 1705619003
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0075da2fb0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0075da3110
vpanic() at vpanic+0x271/frame 0xfffffe0075da32b0
panic() at panic+0xb5/frame 0xfffffe0075da3380
sctp_calc_rwnd() at sctp_calc_rwnd+0x26e/frame 0xfffffe0075da33d0
sctp_user_rcvd() at sctp_user_rcvd+0x25b/frame 0xfffffe0075da34d0
sctp_sorecvmsg() at sctp_sorecvmsg+0x34a1/frame 0xfffffe0075da3780
sctp_soreceive() at sctp_soreceive+0x2b0/frame 0xfffffe0075da3a60
soreceive() at soreceive+0xdf/frame 0xfffffe0075da3ac0
dofileread() at dofileread+0x15d/frame 0xfffffe0075da3b30
kern_readv() at kern_readv+0xd7/frame 0xfffffe0075da3bf0
sys_read() at sys_read+0x1fc/frame 0xfffffe0075da3d10
amd64_syscall() at amd64_syscall+0x473/frame 0xfffffe0075da3f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0075da3f30
--- syscall (198, FreeBSD ELF64, __syscall), rip = 0x2aeb2a, rsp = 0x824c7cf08, rbp = 0x824c7cf80 ---
KDB: enter: panic
[ thread pid 4095 tid 104695 ]
Stopped at kdb_enter+0x6e: movq $0,0x21941e7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe006d200000
rdx 0x3ffff
rbx 0xffffffff826f87e0 .str.28
rsp 0xfffffe0075da30f0
rbp 0xfffffe0075da3110
rsi 0x40001
rdi 0xffffffff815de3a6 printf+0x156
r8 0
r9 0xffffffff
r10 0x7
r11 0xfffffe0074447c60
r12 0
r13 0xfffffe0074447740
r14 0xffffffff826f87e0 .str.28
r15 0
rip 0xffffffff815cae2e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21941e7(%rip)
db> show proc
Process 4095 (syz-executor.0) at 0xfffffe0074f36020:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 770 at 0xfffffe0057bd55a0
ABI: FreeBSD ELF64
flag: 0x10100080 flag2: 0x80001
arguments: /root/syz-executor.0 exec
reaper: 0xfffffe00541f8040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00749344d0
(map 0xfffffe00749344d0)
(map.pmap 0xfffffe0074934590)
(pmap 0xfffffe0074934600)
threads: 2
101848 RunQ syz-executor.0
104695 Run CPU 0 syz-executor.0
db> ps
pid ppid pgrp uid state wmesg wchan cmd
4096 771 771 0 R syz-executor.2
4095 770 770 0 R (threaded) syz-executor.0
101848 RunQ syz-executor.0
104695 Run CPU 0 syz-executor.0
4092 775 775 0 TL (threaded) syz-executor.3
104440 RunQ syz-executor.3
104692 RunQ syz-executor.3
4088 772 772 0 DL (threaded) syz-executor.1
101855 S nanslp 0xffffffff83740400 syz-executor.1
104685 S connec 0xfffffe0058b3a49a syz-executor.1
104689 S connec 0xfffffe0058d3ec1a syz-executor.1
104691 D reapst 0xfffffe0075c6fa08 syz-executor.1
104696 S uwait 0xfffffe0057ab6500 syz-executor.1
4087 1 4087 0 Ss+ ttyin 0xfffffe005434a4b0 getty
4083 1 1 0 S nanslp 0xffffffff83740400 init
4079 1 1 0 S nanslp 0xffffffff83740400 init
4078 1 1 0 S nanslp 0xffffffff83740401 init
4077 1 1 0 S nanslp 0xffffffff83740400 init
4073 1 1 0 S nanslp 0xffffffff83740401 init
4070 1 1 0 S nanslp 0xffffffff83740401 init
4062 1 1 0 S nanslp 0xffffffff83740401 init
4060 1 1 0 S nanslp 0xffffffff83740400 init
3097 1 772 0 S uwait 0xfffffe005720c400 syz-executor.1
3092 1 775 0 S uwait 0xfffffe007519e700 syz-executor.3
3089 1 770 0 S uwait 0xfffffe0057ab6000 syz-executor.0
3080 1 772 0 S uwait 0xfffffe007519e600 syz-executor.1
3076 1 775 0 S uwait 0xfffffe006cde3200 syz-executor.3
3074 1 770 0 S uwait 0xfffffe005720c380 syz-executor.0
3072 1 772 0 S uwait 0xfffffe006cde4500 syz-executor.1
3070 1 771 0 S uwait 0xfffffe007519e500 syz-executor.2
3068 1 770 0 S uwait 0xfffffe005720c480 syz-executor.0
3066 1 775 0 S uwait 0xfffffe007519e800 syz-executor.3
3064 1 771 0 S uwait 0xfffffe007519d780 syz-executor.2
3062 1 772 0 S uwait 0xfffffe007519f080 syz-executor.1
3060 1 770 0 S uwait 0xfffffe0057209900 syz-executor.0
3057 1 771 0 S uwait 0xfffffe006cde3c80 syz-executor.2
3055 1 772 0 S uwait 0xfffffe0057ab9a80 syz-executor.1
3053 1 770 0 S uwait 0xfffffe007519e900 syz-executor.0
3051 1 772 0 S uwait 0xfffffe00749c7080 syz-executor.1
3049 1 770 0 S uwait 0xfffffe007519d580 syz-executor.0
3045 1 772 0 S uwait 0xfffffe007519d400 syz-executor.1
3041 1 772 0 S uwait 0xfffffe005720c880 syz-executor.1
3039 1 772 0 S uwait 0xfffffe007519dd00 syz-executor.1
2993 1 775 0 S uwait 0xfffffe006cde6300 syz-executor.3
2990 1 775 0 S uwait 0xfffffe0057ab9680 syz-executor.3
2987 1 775 0 S uwait 0xfffffe006cde6100 syz-executor.3
2975 1 775 0 S uwait 0xfffffe007519d980 syz-executor.3
2101 1 772 0 S uwait 0xfffffe007519e200 syz-executor.1
2088 1 775 0 S uwait 0xfffffe005720cd80 syz-executor.3
2087 1 771 0 S uwait 0xfffffe007519f480 syz-executor.2
2086 1 772 0 S uwait 0xfffffe006cde3680 syz-executor.1
2085 1 770 0 S uwait 0xfffffe0057ab6400 syz-executor.0
2081 1 775 0 S uwait 0xfffffe007519f180 syz-executor.3
2080 1 771 0 S uwait 0xfffffe0057ab9c80 syz-executor.2
2077 1 772 0 S uwait 0xfffffe007519ec00 syz-executor.1
2075 1 770 0 S uwait 0xfffffe0057ab9480 syz-executor.0
2072 1 775 0 S uwait 0xfffffe007519ea00 syz-executor.3
2071 1 771 0 S uwait 0xfffffe0057ab9380 syz-executor.2
2069 1 772 0 S uwait 0xfffffe006cde3100 syz-executor.1
2067 1 770 0 S uwait 0xfffffe006cde3e80 syz-executor.0
2061 1 775 0 S uwait 0xfffffe0057ab9980 syz-executor.3
2048 1 772 0 S uwait 0xfffffe0057ab9780 syz-executor.1
2033 1 775 0 S uwait 0xfffffe006cde3780 syz-executor.3
2029 1 772 0 S uwait 0xfffffe006cde3380 syz-executor.1
2027 1 775 0 S uwait 0xfffffe006cde4300 syz-executor.3
2009 1 775 0 S umtxn 0xfffffe006cde4900 syz-executor.3
2008 1 770 0 S uwait 0xfffffe0057ab6700 syz-executor.0
2003 1 775 0 S uwait 0xfffffe006cde4000 syz-executor.3
2002 1 770 0 S uwait 0xfffffe006cde4100 syz-executor.0
1997 1 775 0 S uwait 0xfffffe005720cb80 syz-executor.3
1996 1 770 0 S uwait 0xfffffe006cde3580 syz-executor.0
1973 1 775 0 S uwait 0xfffffe0054040c80 syz-executor.3
1971 1 772 0 S uwait 0xfffffe006cde4a00 syz-executor.1
1968 1 775 0 S uwait 0xfffffe0057ab9880 syz-executor.3
1966 1 770 0 S uwait 0xfffffe005720ce80 syz-executor.0
1965 1 772 0 S uwait 0xfffffe0057ab9580 syz-executor.1
1964 1 775 0 S uwait 0xfffffe006cde7000 syz-executor.3
1961 1 772 0 S uwait 0xfffffe005720cf00 syz-executor.1
1958 1 772 0 S uwait 0xfffffe006cde6200 syz-executor.1
1774 0 0 0 DL - 0xffffffff83850240 [soaiod4]
1773 0 0 0 DL - 0xffffffff83850240 [soaiod3]
1772 0 0 0 DL - 0xffffffff83850240 [soaiod2]
1771 0 0 0 DL - 0xffffffff83850240 [soaiod1]
1770 0 0 0 DL aiordy 0xfffffe006ce3dac0 [aiod4]
1769 0 0 0 DL aiordy 0xfffffe0073e59060 [aiod3]
1768 0 0 0 DL aiordy 0xfffffe0073e595c0 [aiod2]
1767 0 0 0 DL aiordy 0xfffffe0057bd4020 [aiod1]
1603 1 770 0 S uwait 0xfffffe0057ab9b80 syz-executor.0
1602 1 771 0 S uwait 0xfffffe0057ab7380 syz-executor.2
1599 1 775 0 S uwait 0xfffffe0057ab7200 syz-executor.3
1597 1 772 0 S uwait 0xfffffe006cde3b80 syz-executor.1
1595 1 771 0 S uwait 0xfffffe006cde3980 syz-executor.2
1593 1 770 0 S uwait 0xfffffe006cde4600 syz-executor.0
1591 1 775 0 S uwait 0xfffffe0057ab7100 syz-executor.3
1589 1 772 0 S uwait 0xfffffe006cde3480 syz-executor.1
1587 1 770 0 S uwait 0xfffffe006cde4c80 syz-executor.0
1585 1 771 0 S uwait 0xfffffe0057ab6300 syz-executor.2
1583 1 775 0 S uwait 0xfffffe0057ab7c00 syz-executor.3
1581 1 772 0 S uwait 0xfffffe006cde4400 syz-executor.1
1579 1 770 0 S uwait 0xfffffe0057ab6e80 syz-executor.0
1578 1 771 0 S uwait 0xfffffe005720a480 syz-executor.2
1575 1 772 0 S uwait 0xfffffe006cde4b80 syz-executor.1
1574 1 775 0 S uwait 0xfffffe006cde6e80 syz-executor.3
1571 1 771 0 S uwait 0xfffffe0054040100 syz-executor.2
1569 1 770 0 S uwait 0xfffffe006cde4e80 syz-executor.0
1567 1 772 0 S uwait 0xfffffe006cde6000 syz-executor.1
1565 1 775 0 S uwait 0xfffffe0057ab6600 syz-executor.3
1563 1 770 0 S uwait 0xfffffe0057ab7000 syz-executor.0
1562 1 771 0 S uwait 0xfffffe0057ab6100 syz-executor.2
1560 1 772 0 S uwait 0xfffffe006cde4200 syz-executor.1
1553 1 775 0 S uwait 0xfffffe0057ab7a80 syz-executor.3
1520 1 775 0 S uwait 0xfffffe006cde6d80 syz-executor.3
775 768 775 0 Rs syz-executor.3
772 768 772 0 Rs syz-executor.1
771 768 771 0 Ss nanslp 0xffffffff83740400 syz-executor.2
770 768 770 0 Rs syz-executor.0
768 1 766 0 R (threaded) syz-fuzzer
100100 S wait 0xfffffe006cc39040 syz-fuzzer
100118 S nanslp 0xffffffff83740400 syz-fuzzer
100119 S uwait 0xfffffe0054040400 syz-fuzzer
100120 S wait 0xfffffe006cc39040 syz-fuzzer
100121 S wait 0xfffffe006cc39040 syz-fuzzer
100122 S uwait 0xfffffe006cde6980 syz-fuzzer
100123 S uwait 0xfffffe006cde6a80 syz-fuzzer
100124 S kqread 0xfffffe0058a11700 syz-fuzzer
100125 S uwait 0xfffffe0057ab6c80 syz-fuzzer
100126 S uwait 0xfffffe006cde6c80 syz-fuzzer
100127 S wait 0xfffffe006cc39040 syz-fuzzer
100151 S uwait 0xfffffe006cde7100 syz-fuzzer
103127 RunQ syz-fuzzer
764 682 764 0 Ss select 0xfffffe0058dbccc0 sshd
682 1 682 0 Ss select 0xfffffe0058dbd5c0 sshd
17 0 0 0 DL syncer 0xffffffff8385db20 [syncer]
16 0 0 0 DL vlruwt 0xfffffe00571c9040 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff8385c100 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100095 D sdflush 0xfffffe00085fe8e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838a55c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff8388d438 [dom0]
100080 D launds 0xffffffff8388d444 [laundry: dom0]
100081 D umarcl 0xffffffff81d61170 [uma]
7 0 0 0 DL - 0xffffffff834bdc10 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84577ea0 [pf purge]
5 0 0 0 DL waiting 0xffffffff841a35a0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83488340 [doneq0]
100045 D - 0xffffffff834882c0 [async]
100076 D - 0xffffffff83488140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83888c60 [crypto]
100042 D crypto_ 0xfffffe00542edd30 [crypto returns 0]
100043 D crypto_ 0xfffffe00542edd80 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe000799c088 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836e8d40 [g_event]
100036 D - 0xffffffff836e8d60 [g_up]
100037 D - 0xffffffff836e8d80 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100031 Run CPU 1 [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe00541f8040 [init]
10 0 0 0 DL audit_w 0xffffffff838896c0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836e9720 [swapper]
100005 D - 0xfffffe00540a8800 [softirq_0]
100006 D - 0xfffffe00540a8600 [softirq_1]
100007 D - 0xfffffe00540a8400 [if_io_tqg_0]
100008 D - 0xfffffe00540a8200 [if_io_tqg_1]
100009 D - 0xfffffe00540a8000 [if_config_tqg_0]
100010 D - 0xfffffe00079e5000 [pci_hp taskq]
100011 D - 0xfffffe00079e4e00 [kqueue_ctx taskq]
100014 s [thread taskq]
100016 D - 0xfffffe00079e4900 [aiod_kick taskq]
100017 D - 0xfffffe00079e4800 [deferred_unmount ta]
100018 D - 0xfffffe00079e4700 [inm_free taskq]
100019 D - 0xfffffe00079e4600 [in6m_free taskq]
100020 D - 0xfffffe00079e4500 [linuxkpi_irq_wq]
100021 D - 0xfffffe00079e4400 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00079e4400 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00079e4400 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00079e4400 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00079e4300 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00079e4300 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00079e4300 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00079e4300 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00079e4200 [firmware taskq]
100039 D - 0xfffffe00079e3700 [crypto_0]
100040 D - 0xfffffe00079e3700 [crypto_1]
100055 D - 0xfffffe00079e3000 [vtnet0 rxq 0]
100056 D - 0xfffffe00079e2e00 [vtnet0 txq 0]
100057 D - 0xfffffe00079e2d00 [vtnet0 rxq 1]
100058 D - 0xfffffe00079e2c00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0057197400 [virtio_balloon]
100066 D - 0xffffffff826fda40 [deadlkres]
100070 D - 0xfffffe00079e3200 [acpi_task_0]
100071 D - 0xfffffe00079e3200 [acpi_task_1]
100072 D - 0xfffffe00079e3200 [acpi_task_2]
100074 D - 0xfffffe00079e5100 [mca taskq]
100075 D - 0xfffffe00079e3100 [CAM taskq]
db> show all locks
Process 4095 (syz-executor.0) thread 0xfffffe0074447740 (104695)
exclusive sleep mutex sctp-read (inpr) r = 0 (0xfffffe006d8a2900) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctputil.c:6063
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe0058d71540) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:3992
Process 4088 (syz-executor.1) thread 0xfffffe00743da000 (104691)
exclusive sx sapblk (sapblk) r = 0 (0xffffffff8372e6c0) locked @ /syzkaller/managers/main/kernel/sys/kern/kern_proc.c:3439
Process 12 (intr) thread 0xfffffe00542c9740 (100031)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe0073cca8b0) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:2135
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4220
sysctloid 34817 2052K 34888
vtbuf 24 1968K 46
filedesc 181 1447K 5479
kobj 326 1304K 488
pcb 548 1260K 9522
newblk 10 1027K 26892
vfscache 3 1025K 3
subproc 305 579K 4282
inodedep 44 529K 3858
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
filemon 50 400K 148
vmem 3 268K 7
vnet_data 2 224K 2
acpitask 1 224K 1
acpica 1674 184K 60830
sctp_atcl 377 142K 6431
tidhash 3 141K 3
pagedep 10 131K 2726
linker 352 130K 386
tfo_ccache 1 128K 1
IP reass 1 128K 1
sctp_stro 112 112K 1405
DEVFS1 109 109K 126
sem 4 106K 4
gtaskqueue 18 98K 18
bus 985 81K 5155
mtx_pool 2 72K 2
kdtrace 378 71K 8794
syncache 1 68K 1
umtx 544 68K 544
NFSD srvcache 3 68K 3
module 513 65K 513
ddb_capture 1 64K 1
temp 38 40K 3127
hostcache 1 32K 1
shm 1 32K 66
DEVFS3 128 32K 138
msg 4 30K 4
kbdmux 6 28K 6
LRO 24 25K 24
ifaddr 70 20K 72
DEVFS_RULE 56 20K 56
sctp_atky 489 19K 8192
routetbl 138 19K 494
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
ithread 97 16K 97
lltable 47 15K 108
bus-sc 34 15K 1687
sctp_timw 54 14K 54
eventhandler 161 14K 161
KTRACE 101 13K 153
ifnet 7 13K 7
ether_multi 152 13K 162
kenv 95 12K 95
GEOM 61 11K 481
kqueue 130 11K 4152
rman 86 11K 431
CAM queue 5 11K 1528
DEVFSP 158 10K 617
in6_multi 65 9K 65
bmsafemap 3 9K 3925
rpc 4 9K 4
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 128
CC Mem 32 8K 1882
shmfd 1 8K 1
pwddesc 128 8K 4089
pfs_vncache 1 8K 1
dirrem 30 8K 3422
audit_evclass 238 8K 300
taskqueue 63 7K 96
sglist 6 7K 6
CAM DEV 3 6K 510
sctp_athm 377 6K 6784
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
pf_ifnet 12 5K 33
UMA 267 5K 267
tcp_fsb 2 5K 1022
vt 11 5K 11
pf_table 2 4K 21
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
freefile 30 4K 3307
sctp_map 224 4K 3170
acpisem 28 4K 28
cryptodev 52 4K 570
kcovinfo 52 4K 52
cred 12 3K 506
proc-args 128 3K 5732
terminal 11 3K 11
clone 9 3K 9
uidinfo 2 3K 20
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
plimit 8 2K 3254
lockf 16 2K 62
ip6ndp 12 2K 14
Unitno 32 2K 19025
sctp_ifa 13 2K 14
tun 7 2K 7
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 8
toponodes 6 2K 6
inpcbpolicy 44 2K 2342
ipsecpolicy 2 2K 2
acpidev 20 2K 20
session 9 2K 191
freework 5 2K 12731
sctp_aadr 16 1K 16
sctp_stri 2 1K 706
softdep 1 1K 1
mkdir 8 1K 5300
freeblks 4 1K 3748
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 322
NFSD session 1 1K 1
osd 37 1K 1874
CAM periph 4 1K 271
sctp_ifn 6 1K 14
ipsec 3 1K 3
diradd 6 1K 3461
mld 6 1K 6
igmp 6 1K 6
pfil 6 1K 6
BPF 6 1K 108
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 61
netlink 3 1K 94
encap_export_host 12 1K 12
newdirblk 4 1K 2650
selfd 8 1K 51062
cdev 2 1K 2
lkpikmalloc 8 1K 9
pf_osfp 4 1K 4
chacha20random 1 1K 1
biobuf 1 1K 1
vnodes 1 1K 1
select 2 1K 72
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
pf_rule 1 1K 50
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
aio 4 1K 29
pmchooks 1 1K 1
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
sctp_vrf 1 1K 1
vnet 1 1K 1
soname 3 1K 10231
pmc 1 1K 1
entropy 2 1K 44
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
pf_altq 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
tcp_do 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 2813
sctp_iter 0 0K 11
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 11
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
mqdata 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
ixl 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
fpukern_ctx 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
aesni_data 0 0K 0
xenbus 0 0K 0
vm_fictitious 0 0K 0
UMAHash 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 8349
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 155
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 2
allocindir 0 0K 0
indirdep 0 0K 13676
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ktls_ocf 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 13
ip6_msource 0 0K 0
ip6_moptions 0 0K 10
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 7
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 202
namei_tracker 0 0K 4
export_host 0 0K 0
cl_savebuf 0 0K 3
lio 0 0K 28
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
procdesc 0 0K 18
iov 0 0K 22634
ioctlops 0 0K 421
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 1166
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
filecaps 0 0K 115
sigio 0 0K 1
filedesc_to_leader 0 0K 35
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
pvscsi 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 132
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
SIIS driver 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
md_disk 0 0K 7
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
ciss_data 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
aacraidcam 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
scsi_pass 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
nvme_da 0 0K 0
CAM CCB 0 0K 523
CAM ccb queue 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8322 1076 47275 0 254 38494208 0
mbuf 256 10249 13634 2555079 0 254 6114048 0
tcp_log 416 1205 5401 44363 0 254 2748096 0
malloc-4096 4096 462 24 4593 0 2 1990656 0
ertt_txseginfo 40 20359 23879 828347 0 254 1769520 0
BUF TRIE 144 303 11513 24560 0 62 1701504 0
malloc-384 384 4122 48 4123 0 30 1601280 0
mbuf_cluster 2048 762 0 762 0 254 1560576 0
malloc-16384 16384 90 4 2737 0 1 1540096 0
malloc-128 128 11442 152 15110 0 126 1484032 0
RADIX NODE 144 8336 1039 126899 0 62 1350000 0
UMA Slabs 0 112 11458 20 11458 0 126 1285536 0
sctp_asoc 2256 112 398 1380 0 254 1150560 0
vmem btag 56 19983 144 19983 0 254 1127112 0
FFS inode 1168 626 32 3933 0 8 768544 0
256 Bucket 2048 342 28 10400 0 8 757760 0
VM OBJECT 264 1801 509 55374 0 30 609840 0
sctp_ep 1176 263 247 4698 0 254 599760 0
malloc-2048 2048 270 18 4705 0 8 589824 0
tcp_bbr_map 128 2158 2151 91720 0 126 551552 0
lkpicurr 176 2 3080 2 0 62 542432 0
pbuf 2624 0 194 0 0 2 509056 0
sctp_chunk 152 110 3192 217935 0 254 501904 0
THREAD 1824 249 23 4696 0 8 496128 0
socket 960 200 308 8586 0 254 487680 0
malloc-8192 8192 52 5 150 0 1 466944 0
MAP ENTRY 96 3098 1186 176214 0 126 411264 0
malloc-65536 65536 4 2 11 0 1 393216 0
sctp_raddr 736 117 400 1558 0 254 380512 0
malloc-256 256 228 1212 27726 0 62 368640 0
VNODE 448 665 91 3975 0 30 338688 0
malloc-2048 2048 5 131 1117 0 8 278528 0
malloc-64 64 4065 282 12084 0 254 278208 0
malloc-384 384 455 205 10422 0 30 253440 0
PROC 1376 127 49 4096 0 8 242176 0
FPU_save_area 832 251 37 5953 0 16 239616 0
malloc-256 256 135 795 30611 0 62 238080 0
malloc-16 16 14416 334 16316 0 254 236000 0
malloc-32768 32768 0 7 12951 0 1 229376 0
DEVCTL 1024 0 220 151 0 0 225280 0
mbuf_packet 256 25 737 67285 0 254 195072 0
FFS2 dinode 256 626 124 3933 0 62 192000 0
UMA Zones 768 239 0 239 0 16 183552 0
malloc-32 32 5411 259 7741 0 254 181440 0
filedesc0 1072 128 40 4089 0 8 180096 0
malloc-128 128 1170 225 28379 0 126 178560 0
lkpimm 56 1 3095 1 0 254 173376 0
malloc-128 128 730 541 8184 0 126 162688 0
S VFS Cache 104 1065 456 4845 0 126 158184 0
malloc-1024 1024 128 16 145 0 16 147456 0
malloc-65536 65536 0 2 114 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-65536 65536 0 2 174 0 1 131072 0
malloc-1024 1024 112 16 1319 0 16 131072 0
unpcb 256 2 508 1492 0 254 130560 0
malloc-256 256 322 188 8858 0 62 130560 0
128 Bucket 1024 83 32 654 0 16 117760 0
ksiginfo 112 162 882 2130 0 126 116928 0
malloc-256 256 293 142 4759 0 62 111360 0
malloc-384 384 227 43 230 0 30 103680 0
64 Bucket 512 136 64 11293 0 30 102400 0
VMSPACE 616 103 59 4066 0 16 99792 0
malloc-128 128 637 138 2093 0 126 99200 0
malloc-32768 32768 3 0 3 0 1 98304 0
malloc-32768 32768 3 0 3 0 1 98304 0
malloc-4096 4096 3 21 25 0 2 98304 0
tcp_inpcb 1312 32 40 1861 0 8 94464 0
UMA Kegs 384 226 7 226 0 30 89472 0
g_bio 408 0 210 195971 0 30 85680 0
malloc-128 128 307 344 8617 0 126 83328 0
sctp_readq 152 2 518 351 0 254 79040 0
malloc-4096 4096 13 5 123 0 2 73728 0
Files 80 470 430 24017 0 126 72000 0
malloc-64 64 458 613 1185 0 254 68544 0
malloc-64 64 627 444 3733 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
32 Bucket 256 101 154 6443 0 62 65280 0
sctp_stream_msg_out 112 41 499 459 0 254 60480 0
tcp_bbr_pcb 832 26 46 955 0 16 59904 0
malloc-64 64 119 700 20746 0 254 52416 0
malloc-64 64 351 468 391 0 254 52416 0
TURNSTILE 136 273 105 273 0 62 51408 0
ttyoutq 256 8 187 4416 0 62 49920 0
malloc-256 256 68 127 2946 0 62 49920 0
malloc-256 256 58 137 5179 0 62 49920 0
ripcb 392 0 126 198 0 30 49392 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 34700 0 16 49152 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-2048 2048 17 7 60 0 8 49152 0
malloc-2048 2048 7 17 169 0 8 49152 0
malloc-1024 1024 4 44 553 0 16 49152 0
da_ccb 544 0 84 49124 0 16 45696 0
pcpu-8 8 4819 813 6228 0 254 45056 0
PWD 40 96 1015 2739 0 254 44440 0
syncache 168 0 264 4 0 254 44352 0
clpbuf 2624 0 16 290 0 4 41984 0
malloc-8192 8192 5 0 5 0 1 40960 0
malloc-4096 4096 2 8 519 0 2 40960 0
pipe 728 18 37 552 0 16 40040 0
ttyinq 160 15 235 8280 0 62 40000 0
udp_inpcb 424 5 85 269 0 30 38160 0
hostcache 64 3 564 3 0 254 36288 0
malloc-64 64 37 530 83 0 254 36288 0
malloc-64 64 201 366 55837 0 254 36288 0
malloc-64 64 195 372 1085 0 254 36288 0
16 Bucket 144 90 162 2301 0 62 36288 0
tcp_rack_map 128 2 277 1085 0 126 35712 0
malloc-128 128 24 255 69 0 126 35712 0
malloc-128 128 103 176 971 0 126 35712 0
malloc-128 128 79 200 235 0 126 35712 0
routing nhops 256 27 108 34 0 62 34560 0
malloc-256 256 4 131 421 0 62 34560 0
malloc-256 256 44 91 1089 0 62 34560 0
SLEEPQUEUE 88 273 111 273 0 126 33792 0
tcp_rack_pcb 1024 1 31 511 0 16 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-8192 8192 3 1 104 0 1 32768 0
malloc-4096 4096 5 3 10 0 2 32768 0
malloc-2048 2048 8 8 8 0 8 32768 0
malloc-2048 2048 0 16 50 0 8 32768 0
malloc-2048 2048 2 14 193 0 8 32768 0
malloc-2048 2048 2 14 101 0 8 32768 0
malloc-1024 1024 15 17 16 0 16 32768 0
malloc-1024 1024 13 19 26 0 16 32768 0
malloc-1024 1024 2 30 161 0 16 32768 0
malloc-1024 1024 10 22 10 0 16 32768 0
malloc-1024 1024 1 31 1576 0 16 32768 0
malloc-512 512 1 63 73 0 30 32768 0
malloc-512 512 7 57 73 0 30 32768 0
malloc-512 512 4 60 59 0 30 32768 0
malloc-512 512 3 61 323 0 30 32768 0
malloc-512 512 2 62 706 0 30 32768 0
malloc-512 512 8 56 22 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
KNOTE 160 30 170 27351 0 62 32000 0
PGRP 120 9 255 216 0 126 31680 0
sctp_laddr 48 245 343 1607 0 254 28224 0
tcp_inpcb ports 32 5 877 1150 0 254 28224 0
malloc-32 32 12 870 19035 0 254 28224 0
malloc-32 32 403 479 6378 0 254 28224 0
malloc-32 32 443 439 9108 0 254 28224 0
4 Bucket 48 8 580 26 0 254 28224 0
2 Bucket 32 93 789 3248 0 254 28224 0
AIO 208 1 132 113 0 62 27664 0
udplite_inpcb 424 7 56 14 0 30 26712 0
cpuset 200 7 121 107 0 62 25600 0
malloc-8192 8192 3 0 29 0 1 24576 0
malloc-4096 4096 1 5 8 0 2 24576 0
rl_entry 40 149 457 149 0 254 24240 0
rtentry 168 30 114 34 0 62 24192 0
8 Bucket 80 76 224 1881 0 126 24000 0
itimer 352 0 66 8 0 30 23232 0
malloc-384 384 0 60 7 0 30 23040 0
malloc-384 384 52 8 52 0 30 23040 0
malloc-384 384 0 60 343 0 30 23040 0
malloc-384 384 14 46 15 0 30 23040 0
domainset 40 0 567 75 0 254 22680 0
Mountpoints 2816 2 6 2 0 4 22528 0
udplite_inpcb ports 32 0 630 7 0 254 20160 0
udp_inpcb ports 32 3 627 49 0 254 20160 0
ertt 72 32 248 1861 0 126 20160 0
malloc-32 32 105 525 353 0 254 20160 0
malloc-32 32 52 578 1108 0 254 20160 0
malloc-32 32 50 580 154 0 254 20160 0
malloc-32 32 35 595 1198 0 254 20160 0
cryptop 280 0 70 34 0 30 19600 0
AIOCB 552 0 35 85 0 16 19320 0
AIOLIO 272 0 70 28 0 30 19040 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 1 1 3
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: 47a6fb9d5a2e mlx5: Zero DMA memory mlx5_alloc_cmd_msg() an..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=12e4a48be80000
dashboard link: https://syzkaller.appspot.com/bug?extid=2e2dc35c0e24a74663a7
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+2e2dc3...@syzkaller.appspotmail.com
panic: size_on_reasm_queue is 1193
cpuid = 0
time = 1705619003
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0075da2fb0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0075da3110
vpanic() at vpanic+0x271/frame 0xfffffe0075da32b0
panic() at panic+0xb5/frame 0xfffffe0075da3380
sctp_calc_rwnd() at sctp_calc_rwnd+0x26e/frame 0xfffffe0075da33d0
sctp_user_rcvd() at sctp_user_rcvd+0x25b/frame 0xfffffe0075da34d0
sctp_sorecvmsg() at sctp_sorecvmsg+0x34a1/frame 0xfffffe0075da3780
sctp_soreceive() at sctp_soreceive+0x2b0/frame 0xfffffe0075da3a60
soreceive() at soreceive+0xdf/frame 0xfffffe0075da3ac0
dofileread() at dofileread+0x15d/frame 0xfffffe0075da3b30
kern_readv() at kern_readv+0xd7/frame 0xfffffe0075da3bf0
sys_read() at sys_read+0x1fc/frame 0xfffffe0075da3d10
amd64_syscall() at amd64_syscall+0x473/frame 0xfffffe0075da3f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0075da3f30
--- syscall (198, FreeBSD ELF64, __syscall), rip = 0x2aeb2a, rsp = 0x824c7cf08, rbp = 0x824c7cf80 ---
KDB: enter: panic
[ thread pid 4095 tid 104695 ]
Stopped at kdb_enter+0x6e: movq $0,0x21941e7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe006d200000
rdx 0x3ffff
rbx 0xffffffff826f87e0 .str.28
rsp 0xfffffe0075da30f0
rbp 0xfffffe0075da3110
rsi 0x40001
rdi 0xffffffff815de3a6 printf+0x156
r8 0
r9 0xffffffff
r10 0x7
r11 0xfffffe0074447c60
r12 0
r13 0xfffffe0074447740
r14 0xffffffff826f87e0 .str.28
r15 0
rip 0xffffffff815cae2e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21941e7(%rip)
db> show proc
Process 4095 (syz-executor.0) at 0xfffffe0074f36020:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 770 at 0xfffffe0057bd55a0
ABI: FreeBSD ELF64
flag: 0x10100080 flag2: 0x80001
arguments: /root/syz-executor.0 exec
reaper: 0xfffffe00541f8040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00749344d0
(map 0xfffffe00749344d0)
(map.pmap 0xfffffe0074934590)
(pmap 0xfffffe0074934600)
threads: 2
101848 RunQ syz-executor.0
104695 Run CPU 0 syz-executor.0
db> ps
pid ppid pgrp uid state wmesg wchan cmd
4096 771 771 0 R syz-executor.2
4095 770 770 0 R (threaded) syz-executor.0
101848 RunQ syz-executor.0
104695 Run CPU 0 syz-executor.0
4092 775 775 0 TL (threaded) syz-executor.3
104440 RunQ syz-executor.3
104692 RunQ syz-executor.3
4088 772 772 0 DL (threaded) syz-executor.1
101855 S nanslp 0xffffffff83740400 syz-executor.1
104685 S connec 0xfffffe0058b3a49a syz-executor.1
104689 S connec 0xfffffe0058d3ec1a syz-executor.1
104691 D reapst 0xfffffe0075c6fa08 syz-executor.1
104696 S uwait 0xfffffe0057ab6500 syz-executor.1
4087 1 4087 0 Ss+ ttyin 0xfffffe005434a4b0 getty
4083 1 1 0 S nanslp 0xffffffff83740400 init
4079 1 1 0 S nanslp 0xffffffff83740400 init
4078 1 1 0 S nanslp 0xffffffff83740401 init
4077 1 1 0 S nanslp 0xffffffff83740400 init
4073 1 1 0 S nanslp 0xffffffff83740401 init
4070 1 1 0 S nanslp 0xffffffff83740401 init
4062 1 1 0 S nanslp 0xffffffff83740401 init
4060 1 1 0 S nanslp 0xffffffff83740400 init
3097 1 772 0 S uwait 0xfffffe005720c400 syz-executor.1
3092 1 775 0 S uwait 0xfffffe007519e700 syz-executor.3
3089 1 770 0 S uwait 0xfffffe0057ab6000 syz-executor.0
3080 1 772 0 S uwait 0xfffffe007519e600 syz-executor.1
3076 1 775 0 S uwait 0xfffffe006cde3200 syz-executor.3
3074 1 770 0 S uwait 0xfffffe005720c380 syz-executor.0
3072 1 772 0 S uwait 0xfffffe006cde4500 syz-executor.1
3070 1 771 0 S uwait 0xfffffe007519e500 syz-executor.2
3068 1 770 0 S uwait 0xfffffe005720c480 syz-executor.0
3066 1 775 0 S uwait 0xfffffe007519e800 syz-executor.3
3064 1 771 0 S uwait 0xfffffe007519d780 syz-executor.2
3062 1 772 0 S uwait 0xfffffe007519f080 syz-executor.1
3060 1 770 0 S uwait 0xfffffe0057209900 syz-executor.0
3057 1 771 0 S uwait 0xfffffe006cde3c80 syz-executor.2
3055 1 772 0 S uwait 0xfffffe0057ab9a80 syz-executor.1
3053 1 770 0 S uwait 0xfffffe007519e900 syz-executor.0
3051 1 772 0 S uwait 0xfffffe00749c7080 syz-executor.1
3049 1 770 0 S uwait 0xfffffe007519d580 syz-executor.0
3045 1 772 0 S uwait 0xfffffe007519d400 syz-executor.1
3041 1 772 0 S uwait 0xfffffe005720c880 syz-executor.1
3039 1 772 0 S uwait 0xfffffe007519dd00 syz-executor.1
2993 1 775 0 S uwait 0xfffffe006cde6300 syz-executor.3
2990 1 775 0 S uwait 0xfffffe0057ab9680 syz-executor.3
2987 1 775 0 S uwait 0xfffffe006cde6100 syz-executor.3
2975 1 775 0 S uwait 0xfffffe007519d980 syz-executor.3
2101 1 772 0 S uwait 0xfffffe007519e200 syz-executor.1
2088 1 775 0 S uwait 0xfffffe005720cd80 syz-executor.3
2087 1 771 0 S uwait 0xfffffe007519f480 syz-executor.2
2086 1 772 0 S uwait 0xfffffe006cde3680 syz-executor.1
2085 1 770 0 S uwait 0xfffffe0057ab6400 syz-executor.0
2081 1 775 0 S uwait 0xfffffe007519f180 syz-executor.3
2080 1 771 0 S uwait 0xfffffe0057ab9c80 syz-executor.2
2077 1 772 0 S uwait 0xfffffe007519ec00 syz-executor.1
2075 1 770 0 S uwait 0xfffffe0057ab9480 syz-executor.0
2072 1 775 0 S uwait 0xfffffe007519ea00 syz-executor.3
2071 1 771 0 S uwait 0xfffffe0057ab9380 syz-executor.2
2069 1 772 0 S uwait 0xfffffe006cde3100 syz-executor.1
2067 1 770 0 S uwait 0xfffffe006cde3e80 syz-executor.0
2061 1 775 0 S uwait 0xfffffe0057ab9980 syz-executor.3
2048 1 772 0 S uwait 0xfffffe0057ab9780 syz-executor.1
2033 1 775 0 S uwait 0xfffffe006cde3780 syz-executor.3
2029 1 772 0 S uwait 0xfffffe006cde3380 syz-executor.1
2027 1 775 0 S uwait 0xfffffe006cde4300 syz-executor.3
2009 1 775 0 S umtxn 0xfffffe006cde4900 syz-executor.3
2008 1 770 0 S uwait 0xfffffe0057ab6700 syz-executor.0
2003 1 775 0 S uwait 0xfffffe006cde4000 syz-executor.3
2002 1 770 0 S uwait 0xfffffe006cde4100 syz-executor.0
1997 1 775 0 S uwait 0xfffffe005720cb80 syz-executor.3
1996 1 770 0 S uwait 0xfffffe006cde3580 syz-executor.0
1973 1 775 0 S uwait 0xfffffe0054040c80 syz-executor.3
1971 1 772 0 S uwait 0xfffffe006cde4a00 syz-executor.1
1968 1 775 0 S uwait 0xfffffe0057ab9880 syz-executor.3
1966 1 770 0 S uwait 0xfffffe005720ce80 syz-executor.0
1965 1 772 0 S uwait 0xfffffe0057ab9580 syz-executor.1
1964 1 775 0 S uwait 0xfffffe006cde7000 syz-executor.3
1961 1 772 0 S uwait 0xfffffe005720cf00 syz-executor.1
1958 1 772 0 S uwait 0xfffffe006cde6200 syz-executor.1
1774 0 0 0 DL - 0xffffffff83850240 [soaiod4]
1773 0 0 0 DL - 0xffffffff83850240 [soaiod3]
1772 0 0 0 DL - 0xffffffff83850240 [soaiod2]
1771 0 0 0 DL - 0xffffffff83850240 [soaiod1]
1770 0 0 0 DL aiordy 0xfffffe006ce3dac0 [aiod4]
1769 0 0 0 DL aiordy 0xfffffe0073e59060 [aiod3]
1768 0 0 0 DL aiordy 0xfffffe0073e595c0 [aiod2]
1767 0 0 0 DL aiordy 0xfffffe0057bd4020 [aiod1]
1603 1 770 0 S uwait 0xfffffe0057ab9b80 syz-executor.0
1602 1 771 0 S uwait 0xfffffe0057ab7380 syz-executor.2
1599 1 775 0 S uwait 0xfffffe0057ab7200 syz-executor.3
1597 1 772 0 S uwait 0xfffffe006cde3b80 syz-executor.1
1595 1 771 0 S uwait 0xfffffe006cde3980 syz-executor.2
1593 1 770 0 S uwait 0xfffffe006cde4600 syz-executor.0
1591 1 775 0 S uwait 0xfffffe0057ab7100 syz-executor.3
1589 1 772 0 S uwait 0xfffffe006cde3480 syz-executor.1
1587 1 770 0 S uwait 0xfffffe006cde4c80 syz-executor.0
1585 1 771 0 S uwait 0xfffffe0057ab6300 syz-executor.2
1583 1 775 0 S uwait 0xfffffe0057ab7c00 syz-executor.3
1581 1 772 0 S uwait 0xfffffe006cde4400 syz-executor.1
1579 1 770 0 S uwait 0xfffffe0057ab6e80 syz-executor.0
1578 1 771 0 S uwait 0xfffffe005720a480 syz-executor.2
1575 1 772 0 S uwait 0xfffffe006cde4b80 syz-executor.1
1574 1 775 0 S uwait 0xfffffe006cde6e80 syz-executor.3
1571 1 771 0 S uwait 0xfffffe0054040100 syz-executor.2
1569 1 770 0 S uwait 0xfffffe006cde4e80 syz-executor.0
1567 1 772 0 S uwait 0xfffffe006cde6000 syz-executor.1
1565 1 775 0 S uwait 0xfffffe0057ab6600 syz-executor.3
1563 1 770 0 S uwait 0xfffffe0057ab7000 syz-executor.0
1562 1 771 0 S uwait 0xfffffe0057ab6100 syz-executor.2
1560 1 772 0 S uwait 0xfffffe006cde4200 syz-executor.1
1553 1 775 0 S uwait 0xfffffe0057ab7a80 syz-executor.3
1520 1 775 0 S uwait 0xfffffe006cde6d80 syz-executor.3
775 768 775 0 Rs syz-executor.3
772 768 772 0 Rs syz-executor.1
771 768 771 0 Ss nanslp 0xffffffff83740400 syz-executor.2
770 768 770 0 Rs syz-executor.0
768 1 766 0 R (threaded) syz-fuzzer
100100 S wait 0xfffffe006cc39040 syz-fuzzer
100118 S nanslp 0xffffffff83740400 syz-fuzzer
100119 S uwait 0xfffffe0054040400 syz-fuzzer
100120 S wait 0xfffffe006cc39040 syz-fuzzer
100121 S wait 0xfffffe006cc39040 syz-fuzzer
100122 S uwait 0xfffffe006cde6980 syz-fuzzer
100123 S uwait 0xfffffe006cde6a80 syz-fuzzer
100124 S kqread 0xfffffe0058a11700 syz-fuzzer
100125 S uwait 0xfffffe0057ab6c80 syz-fuzzer
100126 S uwait 0xfffffe006cde6c80 syz-fuzzer
100127 S wait 0xfffffe006cc39040 syz-fuzzer
100151 S uwait 0xfffffe006cde7100 syz-fuzzer
103127 RunQ syz-fuzzer
764 682 764 0 Ss select 0xfffffe0058dbccc0 sshd
682 1 682 0 Ss select 0xfffffe0058dbd5c0 sshd
17 0 0 0 DL syncer 0xffffffff8385db20 [syncer]
16 0 0 0 DL vlruwt 0xfffffe00571c9040 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff8385c100 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100095 D sdflush 0xfffffe00085fe8e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838a55c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff8388d438 [dom0]
100080 D launds 0xffffffff8388d444 [laundry: dom0]
100081 D umarcl 0xffffffff81d61170 [uma]
7 0 0 0 DL - 0xffffffff834bdc10 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84577ea0 [pf purge]
5 0 0 0 DL waiting 0xffffffff841a35a0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83488340 [doneq0]
100045 D - 0xffffffff834882c0 [async]
100076 D - 0xffffffff83488140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83888c60 [crypto]
100042 D crypto_ 0xfffffe00542edd30 [crypto returns 0]
100043 D crypto_ 0xfffffe00542edd80 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe000799c088 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836e8d40 [g_event]
100036 D - 0xffffffff836e8d60 [g_up]
100037 D - 0xffffffff836e8d80 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100031 Run CPU 1 [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe00541f8040 [init]
10 0 0 0 DL audit_w 0xffffffff838896c0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836e9720 [swapper]
100005 D - 0xfffffe00540a8800 [softirq_0]
100006 D - 0xfffffe00540a8600 [softirq_1]
100007 D - 0xfffffe00540a8400 [if_io_tqg_0]
100008 D - 0xfffffe00540a8200 [if_io_tqg_1]
100009 D - 0xfffffe00540a8000 [if_config_tqg_0]
100010 D - 0xfffffe00079e5000 [pci_hp taskq]
100011 D - 0xfffffe00079e4e00 [kqueue_ctx taskq]
100014 s [thread taskq]
100016 D - 0xfffffe00079e4900 [aiod_kick taskq]
100017 D - 0xfffffe00079e4800 [deferred_unmount ta]
100018 D - 0xfffffe00079e4700 [inm_free taskq]
100019 D - 0xfffffe00079e4600 [in6m_free taskq]
100020 D - 0xfffffe00079e4500 [linuxkpi_irq_wq]
100021 D - 0xfffffe00079e4400 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00079e4400 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00079e4400 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00079e4400 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00079e4300 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00079e4300 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00079e4300 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00079e4300 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00079e4200 [firmware taskq]
100039 D - 0xfffffe00079e3700 [crypto_0]
100040 D - 0xfffffe00079e3700 [crypto_1]
100055 D - 0xfffffe00079e3000 [vtnet0 rxq 0]
100056 D - 0xfffffe00079e2e00 [vtnet0 txq 0]
100057 D - 0xfffffe00079e2d00 [vtnet0 rxq 1]
100058 D - 0xfffffe00079e2c00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0057197400 [virtio_balloon]
100066 D - 0xffffffff826fda40 [deadlkres]
100070 D - 0xfffffe00079e3200 [acpi_task_0]
100071 D - 0xfffffe00079e3200 [acpi_task_1]
100072 D - 0xfffffe00079e3200 [acpi_task_2]
100074 D - 0xfffffe00079e5100 [mca taskq]
100075 D - 0xfffffe00079e3100 [CAM taskq]
db> show all locks
Process 4095 (syz-executor.0) thread 0xfffffe0074447740 (104695)
exclusive sleep mutex sctp-read (inpr) r = 0 (0xfffffe006d8a2900) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctputil.c:6063
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe0058d71540) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:3992
Process 4088 (syz-executor.1) thread 0xfffffe00743da000 (104691)
exclusive sx sapblk (sapblk) r = 0 (0xffffffff8372e6c0) locked @ /syzkaller/managers/main/kernel/sys/kern/kern_proc.c:3439
Process 12 (intr) thread 0xfffffe00542c9740 (100031)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe0073cca8b0) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:2135
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4220
sysctloid 34817 2052K 34888
vtbuf 24 1968K 46
filedesc 181 1447K 5479
kobj 326 1304K 488
pcb 548 1260K 9522
newblk 10 1027K 26892
vfscache 3 1025K 3
subproc 305 579K 4282
inodedep 44 529K 3858
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
filemon 50 400K 148
vmem 3 268K 7
vnet_data 2 224K 2
acpitask 1 224K 1
acpica 1674 184K 60830
sctp_atcl 377 142K 6431
tidhash 3 141K 3
pagedep 10 131K 2726
linker 352 130K 386
tfo_ccache 1 128K 1
IP reass 1 128K 1
sctp_stro 112 112K 1405
DEVFS1 109 109K 126
sem 4 106K 4
gtaskqueue 18 98K 18
bus 985 81K 5155
mtx_pool 2 72K 2
kdtrace 378 71K 8794
syncache 1 68K 1
umtx 544 68K 544
NFSD srvcache 3 68K 3
module 513 65K 513
ddb_capture 1 64K 1
temp 38 40K 3127
hostcache 1 32K 1
shm 1 32K 66
DEVFS3 128 32K 138
msg 4 30K 4
kbdmux 6 28K 6
LRO 24 25K 24
ifaddr 70 20K 72
DEVFS_RULE 56 20K 56
sctp_atky 489 19K 8192
routetbl 138 19K 494
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
ithread 97 16K 97
lltable 47 15K 108
bus-sc 34 15K 1687
sctp_timw 54 14K 54
eventhandler 161 14K 161
KTRACE 101 13K 153
ifnet 7 13K 7
ether_multi 152 13K 162
kenv 95 12K 95
GEOM 61 11K 481
kqueue 130 11K 4152
rman 86 11K 431
CAM queue 5 11K 1528
DEVFSP 158 10K 617
in6_multi 65 9K 65
bmsafemap 3 9K 3925
rpc 4 9K 4
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 128
CC Mem 32 8K 1882
shmfd 1 8K 1
pwddesc 128 8K 4089
pfs_vncache 1 8K 1
dirrem 30 8K 3422
audit_evclass 238 8K 300
taskqueue 63 7K 96
sglist 6 7K 6
CAM DEV 3 6K 510
sctp_athm 377 6K 6784
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
pf_ifnet 12 5K 33
UMA 267 5K 267
tcp_fsb 2 5K 1022
vt 11 5K 11
pf_table 2 4K 21
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
freefile 30 4K 3307
sctp_map 224 4K 3170
acpisem 28 4K 28
cryptodev 52 4K 570
kcovinfo 52 4K 52
cred 12 3K 506
proc-args 128 3K 5732
terminal 11 3K 11
clone 9 3K 9
uidinfo 2 3K 20
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
plimit 8 2K 3254
lockf 16 2K 62
ip6ndp 12 2K 14
Unitno 32 2K 19025
sctp_ifa 13 2K 14
tun 7 2K 7
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 8
toponodes 6 2K 6
inpcbpolicy 44 2K 2342
ipsecpolicy 2 2K 2
acpidev 20 2K 20
session 9 2K 191
freework 5 2K 12731
sctp_aadr 16 1K 16
sctp_stri 2 1K 706
softdep 1 1K 1
mkdir 8 1K 5300
freeblks 4 1K 3748
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 322
NFSD session 1 1K 1
osd 37 1K 1874
CAM periph 4 1K 271
sctp_ifn 6 1K 14
ipsec 3 1K 3
diradd 6 1K 3461
mld 6 1K 6
igmp 6 1K 6
pfil 6 1K 6
BPF 6 1K 108
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 61
netlink 3 1K 94
encap_export_host 12 1K 12
newdirblk 4 1K 2650
selfd 8 1K 51062
cdev 2 1K 2
lkpikmalloc 8 1K 9
pf_osfp 4 1K 4
chacha20random 1 1K 1
biobuf 1 1K 1
vnodes 1 1K 1
select 2 1K 72
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
pf_rule 1 1K 50
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
aio 4 1K 29
pmchooks 1 1K 1
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
sctp_vrf 1 1K 1
vnet 1 1K 1
soname 3 1K 10231
pmc 1 1K 1
entropy 2 1K 44
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
pf_altq 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
tcp_do 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 2813
sctp_iter 0 0K 11
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 11
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
mqdata 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
ixl 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
fpukern_ctx 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
aesni_data 0 0K 0
xenbus 0 0K 0
vm_fictitious 0 0K 0
UMAHash 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 8349
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 155
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 2
allocindir 0 0K 0
indirdep 0 0K 13676
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ktls_ocf 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 13
ip6_msource 0 0K 0
ip6_moptions 0 0K 10
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 7
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 202
namei_tracker 0 0K 4
export_host 0 0K 0
cl_savebuf 0 0K 3
lio 0 0K 28
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
procdesc 0 0K 18
iov 0 0K 22634
ioctlops 0 0K 421
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 1166
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
filecaps 0 0K 115
sigio 0 0K 1
filedesc_to_leader 0 0K 35
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
pvscsi 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 132
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
SIIS driver 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
md_disk 0 0K 7
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
ciss_data 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
aacraidcam 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
scsi_pass 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
nvme_da 0 0K 0
CAM CCB 0 0K 523
CAM ccb queue 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8322 1076 47275 0 254 38494208 0
mbuf 256 10249 13634 2555079 0 254 6114048 0
tcp_log 416 1205 5401 44363 0 254 2748096 0
malloc-4096 4096 462 24 4593 0 2 1990656 0
ertt_txseginfo 40 20359 23879 828347 0 254 1769520 0
BUF TRIE 144 303 11513 24560 0 62 1701504 0
malloc-384 384 4122 48 4123 0 30 1601280 0
mbuf_cluster 2048 762 0 762 0 254 1560576 0
malloc-16384 16384 90 4 2737 0 1 1540096 0
malloc-128 128 11442 152 15110 0 126 1484032 0
RADIX NODE 144 8336 1039 126899 0 62 1350000 0
UMA Slabs 0 112 11458 20 11458 0 126 1285536 0
sctp_asoc 2256 112 398 1380 0 254 1150560 0
vmem btag 56 19983 144 19983 0 254 1127112 0
FFS inode 1168 626 32 3933 0 8 768544 0
256 Bucket 2048 342 28 10400 0 8 757760 0
VM OBJECT 264 1801 509 55374 0 30 609840 0
sctp_ep 1176 263 247 4698 0 254 599760 0
malloc-2048 2048 270 18 4705 0 8 589824 0
tcp_bbr_map 128 2158 2151 91720 0 126 551552 0
lkpicurr 176 2 3080 2 0 62 542432 0
pbuf 2624 0 194 0 0 2 509056 0
sctp_chunk 152 110 3192 217935 0 254 501904 0
THREAD 1824 249 23 4696 0 8 496128 0
socket 960 200 308 8586 0 254 487680 0
malloc-8192 8192 52 5 150 0 1 466944 0
MAP ENTRY 96 3098 1186 176214 0 126 411264 0
malloc-65536 65536 4 2 11 0 1 393216 0
sctp_raddr 736 117 400 1558 0 254 380512 0
malloc-256 256 228 1212 27726 0 62 368640 0
VNODE 448 665 91 3975 0 30 338688 0
malloc-2048 2048 5 131 1117 0 8 278528 0
malloc-64 64 4065 282 12084 0 254 278208 0
malloc-384 384 455 205 10422 0 30 253440 0
PROC 1376 127 49 4096 0 8 242176 0
FPU_save_area 832 251 37 5953 0 16 239616 0
malloc-256 256 135 795 30611 0 62 238080 0
malloc-16 16 14416 334 16316 0 254 236000 0
malloc-32768 32768 0 7 12951 0 1 229376 0
DEVCTL 1024 0 220 151 0 0 225280 0
mbuf_packet 256 25 737 67285 0 254 195072 0
FFS2 dinode 256 626 124 3933 0 62 192000 0
UMA Zones 768 239 0 239 0 16 183552 0
malloc-32 32 5411 259 7741 0 254 181440 0
filedesc0 1072 128 40 4089 0 8 180096 0
malloc-128 128 1170 225 28379 0 126 178560 0
lkpimm 56 1 3095 1 0 254 173376 0
malloc-128 128 730 541 8184 0 126 162688 0
S VFS Cache 104 1065 456 4845 0 126 158184 0
malloc-1024 1024 128 16 145 0 16 147456 0
malloc-65536 65536 0 2 114 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-65536 65536 0 2 174 0 1 131072 0
malloc-1024 1024 112 16 1319 0 16 131072 0
unpcb 256 2 508 1492 0 254 130560 0
malloc-256 256 322 188 8858 0 62 130560 0
128 Bucket 1024 83 32 654 0 16 117760 0
ksiginfo 112 162 882 2130 0 126 116928 0
malloc-256 256 293 142 4759 0 62 111360 0
malloc-384 384 227 43 230 0 30 103680 0
64 Bucket 512 136 64 11293 0 30 102400 0
VMSPACE 616 103 59 4066 0 16 99792 0
malloc-128 128 637 138 2093 0 126 99200 0
malloc-32768 32768 3 0 3 0 1 98304 0
malloc-32768 32768 3 0 3 0 1 98304 0
malloc-4096 4096 3 21 25 0 2 98304 0
tcp_inpcb 1312 32 40 1861 0 8 94464 0
UMA Kegs 384 226 7 226 0 30 89472 0
g_bio 408 0 210 195971 0 30 85680 0
malloc-128 128 307 344 8617 0 126 83328 0
sctp_readq 152 2 518 351 0 254 79040 0
malloc-4096 4096 13 5 123 0 2 73728 0
Files 80 470 430 24017 0 126 72000 0
malloc-64 64 458 613 1185 0 254 68544 0
malloc-64 64 627 444 3733 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
32 Bucket 256 101 154 6443 0 62 65280 0
sctp_stream_msg_out 112 41 499 459 0 254 60480 0
tcp_bbr_pcb 832 26 46 955 0 16 59904 0
malloc-64 64 119 700 20746 0 254 52416 0
malloc-64 64 351 468 391 0 254 52416 0
TURNSTILE 136 273 105 273 0 62 51408 0
ttyoutq 256 8 187 4416 0 62 49920 0
malloc-256 256 68 127 2946 0 62 49920 0
malloc-256 256 58 137 5179 0 62 49920 0
ripcb 392 0 126 198 0 30 49392 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 34700 0 16 49152 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-2048 2048 17 7 60 0 8 49152 0
malloc-2048 2048 7 17 169 0 8 49152 0
malloc-1024 1024 4 44 553 0 16 49152 0
da_ccb 544 0 84 49124 0 16 45696 0
pcpu-8 8 4819 813 6228 0 254 45056 0
PWD 40 96 1015 2739 0 254 44440 0
syncache 168 0 264 4 0 254 44352 0
clpbuf 2624 0 16 290 0 4 41984 0
malloc-8192 8192 5 0 5 0 1 40960 0
malloc-4096 4096 2 8 519 0 2 40960 0
pipe 728 18 37 552 0 16 40040 0
ttyinq 160 15 235 8280 0 62 40000 0
udp_inpcb 424 5 85 269 0 30 38160 0
hostcache 64 3 564 3 0 254 36288 0
malloc-64 64 37 530 83 0 254 36288 0
malloc-64 64 201 366 55837 0 254 36288 0
malloc-64 64 195 372 1085 0 254 36288 0
16 Bucket 144 90 162 2301 0 62 36288 0
tcp_rack_map 128 2 277 1085 0 126 35712 0
malloc-128 128 24 255 69 0 126 35712 0
malloc-128 128 103 176 971 0 126 35712 0
malloc-128 128 79 200 235 0 126 35712 0
routing nhops 256 27 108 34 0 62 34560 0
malloc-256 256 4 131 421 0 62 34560 0
malloc-256 256 44 91 1089 0 62 34560 0
SLEEPQUEUE 88 273 111 273 0 126 33792 0
tcp_rack_pcb 1024 1 31 511 0 16 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-8192 8192 3 1 104 0 1 32768 0
malloc-4096 4096 5 3 10 0 2 32768 0
malloc-2048 2048 8 8 8 0 8 32768 0
malloc-2048 2048 0 16 50 0 8 32768 0
malloc-2048 2048 2 14 193 0 8 32768 0
malloc-2048 2048 2 14 101 0 8 32768 0
malloc-1024 1024 15 17 16 0 16 32768 0
malloc-1024 1024 13 19 26 0 16 32768 0
malloc-1024 1024 2 30 161 0 16 32768 0
malloc-1024 1024 10 22 10 0 16 32768 0
malloc-1024 1024 1 31 1576 0 16 32768 0
malloc-512 512 1 63 73 0 30 32768 0
malloc-512 512 7 57 73 0 30 32768 0
malloc-512 512 4 60 59 0 30 32768 0
malloc-512 512 3 61 323 0 30 32768 0
malloc-512 512 2 62 706 0 30 32768 0
malloc-512 512 8 56 22 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
KNOTE 160 30 170 27351 0 62 32000 0
PGRP 120 9 255 216 0 126 31680 0
sctp_laddr 48 245 343 1607 0 254 28224 0
tcp_inpcb ports 32 5 877 1150 0 254 28224 0
malloc-32 32 12 870 19035 0 254 28224 0
malloc-32 32 403 479 6378 0 254 28224 0
malloc-32 32 443 439 9108 0 254 28224 0
4 Bucket 48 8 580 26 0 254 28224 0
2 Bucket 32 93 789 3248 0 254 28224 0
AIO 208 1 132 113 0 62 27664 0
udplite_inpcb 424 7 56 14 0 30 26712 0
cpuset 200 7 121 107 0 62 25600 0
malloc-8192 8192 3 0 29 0 1 24576 0
malloc-4096 4096 1 5 8 0 2 24576 0
rl_entry 40 149 457 149 0 254 24240 0
rtentry 168 30 114 34 0 62 24192 0
8 Bucket 80 76 224 1881 0 126 24000 0
itimer 352 0 66 8 0 30 23232 0
malloc-384 384 0 60 7 0 30 23040 0
malloc-384 384 52 8 52 0 30 23040 0
malloc-384 384 0 60 343 0 30 23040 0
malloc-384 384 14 46 15 0 30 23040 0
domainset 40 0 567 75 0 254 22680 0
Mountpoints 2816 2 6 2 0 4 22528 0
udplite_inpcb ports 32 0 630 7 0 254 20160 0
udp_inpcb ports 32 3 627 49 0 254 20160 0
ertt 72 32 248 1861 0 126 20160 0
malloc-32 32 105 525 353 0 254 20160 0
malloc-32 32 52 578 1108 0 254 20160 0
malloc-32 32 50 580 154 0 254 20160 0
malloc-32 32 35 595 1198 0 254 20160 0
cryptop 280 0 70 34 0 30 19600 0
AIOCB 552 0 35 85 0 16 19320 0
AIOLIO 272 0 70 28 0 30 19040 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 1 1 3
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot
Jan 18, 2024, 10:38:21 PMJan 18
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: 47a6fb9d5a2e mlx5: Zero DMA memory mlx5_alloc_cmd_msg() an..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=10995fdbe80000
dashboard link: https://syzkaller.appspot.com/bug?extid=2e2dc35c0e24a74663a7
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=17234357e80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=14e48e77e80000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+2e2dc3...@syzkaller.appspotmail.com
panic: size_on_reasm_queue is 1412
cpuid = 1
time = 1705635335
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0007b12fb0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0007b13110
vpanic() at vpanic+0x271/frame 0xfffffe0007b132b0
panic() at panic+0xb5/frame 0xfffffe0007b13380
sctp_calc_rwnd() at sctp_calc_rwnd+0x26e/frame 0xfffffe0007b133d0
sctp_user_rcvd() at sctp_user_rcvd+0x25b/frame 0xfffffe0007b134d0
sctp_sorecvmsg() at sctp_sorecvmsg+0x34a1/frame 0xfffffe0007b13780
sctp_soreceive() at sctp_soreceive+0x2b0/frame 0xfffffe0007b13a60
soreceive() at soreceive+0xdf/frame 0xfffffe0007b13ac0
dofileread() at dofileread+0x15d/frame 0xfffffe0007b13b30
kern_readv() at kern_readv+0xd7/frame 0xfffffe0007b13bf0
sys_read() at sys_read+0x1fc/frame 0xfffffe0007b13d10
amd64_syscall() at amd64_syscall+0x473/frame 0xfffffe0007b13f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0007b13f30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x23514a, rsp = 0x820c948d8, rbp = 0x820c94930 ---
KDB: enter: panic
[ thread pid 7830 tid 100097 ]
rdx 0xdffff7c000000000
rbx 0xffffffff826f87e0 .str.28
rsp 0xfffffe0007b130f0
rbp 0xfffffe0007b13110
rsi 0x1
rdi 0
r12 0
r13 0xfffffe0058b97740
ABI: FreeBSD ELF64
flag: 0x10000000 flag2: 0
arguments: ./syz-executor3692535667
(map 0xfffffe006d4cd738)
(map.pmap 0xfffffe006d4cd7f8)
(pmap 0xfffffe006d4cd868)
threads: 1
100097 Run CPU 1 syz-executor3692535
780 778 778 0 S nanslp 0xffffffff83740401 syz-executor3692535
778 776 778 0 Ss pause 0xfffffe00541f9670 csh
776 682 776 0 Ss select 0xfffffe006ca883c0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00576a00b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00587e2cb0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00587e34b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00587e3cb0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00587e44b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe00587e4cb0 getty
742 1 742 0 Ss+ ttyin 0xfffffe00543494b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe0054349cb0 getty
740 1 740 0 Ss+ ttyin 0xfffffe005434a4b0 getty
686 1 686 0 Ss nanslp 0xffffffff83740400 cron
682 1 682 0 Ss select 0xfffffe0058a7c8c0 sshd
495 1 495 0 Ss select 0xfffffe006ca88bc0 syslogd
424 1 424 0 Ss select 0xfffffe006ca89140 devd
423 1 423 65 Ss select 0xfffffe006ca88f40 dhclient
338 1 338 0 Ss select 0xfffffe006ca89040 dhclient
335 1 335 0 Ss select 0xfffffe006ca89740 dhclient
5 0 0 0 DL waiting 0xffffffff845cd5a0 [sctp_iterator]
100014 D - 0xfffffe00079e4b00 [thread taskq]
Process 7830 (syz-executor3692535) thread 0xfffffe0058b97740 (100097)
exclusive sleep mutex sctp-read (inpr) r = 0 (0xfffffe006d3f9b38) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctputil.c:6063
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe0058b75900) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:3992
newblk 134 1058K 843
vfscache 3 1025K 3
pcb 25 671K 14142
inodedep 2 513K 73
tidhash 3 141K 3
vmem 3 134K 4
linker 352 130K 386
pagedep 2 129K 20
sem 4 106K 4
DEVFS1 105 105K 114
hostcache 1 32K 1
shm 1 32K 1
umtx 256 32K 256
kdtrace 156 32K 7949
DEVFS3 124 31K 134
BPF 10 18K 10
eventhandler 161 14K 161
KTRACE 100 13K 100
kenv 95 12K 95
ifaddr 30 12K 32
GEOM 61 11K 481
routetbl 50 11K 176
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 238 8K 300
taskqueue 63 7K 63
ifnet 3 5K 3
vt 11 5K 11
filedesc 1 4K 1
evdev 4 4K 4
acpisem 28 4K 28
ether_multi 40 4K 50
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 19 3K 33
kqueue 38 3K 7833
pwddesc 38 3K 7831
clone 9 3K 9
uidinfo 3 3K 10
selfd 27 2K 104768
lockf 16 2K 26
Unitno 27 2K 41
sctp_stro 1 1K 7050
softdep 1 1K 1
CC Mem 3 1K 7
nhops 6 1K 6
pfil 6 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
sctp_stri 1 1K 14100
in_multi 2 1K 4
netlink 2 1K 12
sctp_ifn 2 1K 6
indirdep 1 1K 3
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
tcpfunc 3 1K 3
loginclass 3 1K 7
prison 6 1K 6
cryptodev 2 1K 49
procdesc 1 1K 6
tun 3 1K 3
sctp_vrf 1 1K 1
freework 1 1K 26
vnet 1 1K 1
pmc 1 1K 1
entropy 2 1K 36
acpiintr 1 1K 1
sctp_athm 3 1K 28200
sctp_map 2 1K 14100
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_aadr 0 0K 0
mqdata 0 0K 0
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
savedino 0 0K 17
dirrem 0 0K 28
mkdir 0 0K 16
freefile 0 0K 26
freeblks 0 0K 25
ip6opt 0 0K 3
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 4
aio 0 0K 0
lio 0 0K 0
ioctlops 0 0K 86
filedesc_to_leader 0 0K 0
tcp_log_dev 0 0K 0
md_disk 0 0K 0
mbuf_jumbo_page 4096 8321 1077 26081 0 254 38494208 0
mbuf 256 8588 1074 372255 0 254 2473472 0
BUF TRIE 144 187 11629 621 0 62 1701504 0
malloc-384 384 4118 52 4119 0 30 1601280 0
malloc-4096 4096 372 6 8327 0 2 1548288 0
malloc-128 128 11436 158 11556 0 126 1484032 0
UMA Slabs 0 112 10818 12 10818 0 126 1212960 0
sctp_asoc 2256 1 509 7050 0 254 1150560 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 15857 94 15857 0 254 893256 0
FFS inode 1168 488 37 514 0 8 613200 0
sctp_ep 1176 1 509 7050 0 254 599760 0
malloc-2048 2048 5 283 1050 0 8 589824 0
RADIX NODE 144 3254 241 122448 0 62 503280 0
socket 960 19 489 8366 0 254 487680 0
sctp_raddr 736 2 515 14100 0 254 380512 0
256 Bucket 2048 149 21 1044 0 8 348160 0
malloc-64 64 3884 715 19522 0 254 294336 0
malloc-65536 65536 4 0 4 0 1 262144 0
VM OBJECT 264 884 106 70681 0 30 261360 0
VNODE 448 518 58 546 0 30 258048 0
malloc-256 256 347 658 1222 0 62 257280 0
THREAD 1824 117 11 117 0 8 233472 0
malloc-16 16 14387 113 14454 0 254 232000 0
DEVCTL 1024 0 220 123 0 0 225280 0
malloc-128 128 1169 226 28372 0 126 178560 0
FFS2 dinode 256 488 82 514 0 62 145920 0
malloc-256 256 493 77 516 0 62 145920 0
MAP ENTRY 96 821 565 125337 0 126 133056 0
malloc-65536 65536 0 2 110 0 1 131072 0
unpcb 256 7 503 1160 0 254 130560 0
mbuf_packet 256 0 508 21269 0 254 130048 0
S VFS Cache 104 982 188 1022 0 126 121680 0
FPU_save_area 832 119 25 139 0 16 119808 0
sctp_chunk 152 4 776 28200 0 254 118560 0
ksiginfo 112 40 1004 61 0 126 116928 0
malloc-128 128 656 119 4221 0 126 99200 0
sctp_readq 152 1 519 7050 0 254 79040 0
g_bio 408 0 180 5177 0 30 73440 0
64 Bucket 512 77 59 2809 0 30 69632 0
malloc-64 64 467 604 903 0 254 68544 0
malloc-64 64 515 556 22790 0 254 68544 0
malloc-128 128 306 221 483 0 126 67456 0
malloc-128 128 334 193 847 0 126 67456 0
malloc-2048 2048 8 24 7057 0 8 65536 0
malloc-256 256 186 69 896 0 62 65280 0
sctp_stream_msg_out 112 0 540 7050 0 254 60480 0
filedesc0 1072 38 18 7831 0 8 60032 0
malloc-64 64 327 492 332 0 254 52416 0
malloc-256 256 63 132 537 0 62 49920 0
malloc-256 256 23 172 7077 0 62 49920 0
32 Bucket 256 66 129 539 0 62 49920 0
malloc-384 384 101 19 104 0 30 46080 0
syncache 168 0 264 5 0 254 44352 0
malloc-8192 8192 3 2 104 0 1 40960 0
VMSPACE 616 21 45 7815 0 16 40656 0
udp_inpcb 424 6 84 128 0 30 38160 0
da_ccb 544 0 70 1430 0 16 38080 0
pcpu-8 8 4283 325 4311 0 254 36864 0
malloc-64 64 40 527 71 0 254 36288 0
malloc-64 64 17 550 13368 0 254 36288 0
malloc-64 64 86 481 113212 0 254 36288 0
malloc-64 64 34 533 58 0 254 36288 0
malloc-128 128 16 263 24 0 126 35712 0
malloc-128 128 100 179 594 0 126 35712 0
malloc-128 128 79 200 87 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 52 38 52 0 30 34560 0
malloc-384 384 19 71 21257 0 30 34560 0
malloc-256 256 5 130 340 0 62 34560 0
malloc-256 256 19 116 327 0 62 34560 0
malloc-256 256 50 85 760 0 62 34560 0
malloc-2048 2048 4 12 4 0 8 32768 0
malloc-2048 2048 6 10 15 0 8 32768 0
malloc-1024 1024 2 30 157 0 16 32768 0
malloc-512 512 3 61 3 0 30 32768 0
malloc-512 512 0 64 119 0 30 32768 0
malloc-512 512 2 62 12 0 30 32768 0
malloc-512 512 4 60 55 0 30 32768 0
malloc-512 512 3 61 23 0 30 32768 0
malloc-512 512 8 56 17 0 30 32768 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 19 245 33 0 126 31680 0
clpbuf 2624 0 12 28 0 4 31488 0
16 Bucket 144 57 139 291 0 62 28224 0
4 Bucket 48 6 582 7 0 254 28224 0
TURNSTILE 136 129 60 129 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
ripcb 392 1 62 4 0 30 24696 0
malloc-8192 8192 2 1 28 0 1 24576 0
malloc-4096 4096 5 1 5 0 2 24576 0
rl_entry 40 33 573 33 0 254 24240 0
PWD 40 10 596 103 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
pipe 728 6 27 287 0 16 24024 0
Files 80 68 232 13648 0 126 24000 0
8 Bucket 80 78 222 385 0 126 24000 0
tcp_inpcb 1312 3 15 7 0 8 23616 0
hostcache 64 1 314 1 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
malloc-32 32 3 627 19 0 254 20160 0
malloc-32 32 105 525 7211 0 254 20160 0
malloc-32 32 294 336 881 0 254 20160 0
malloc-32 32 57 573 8038 0 254 20160 0
malloc-32 32 47 583 77 0 254 20160 0
malloc-32 32 50 580 17096 0 254 20160 0
malloc-32 32 34 596 1081 0 254 20160 0
2 Bucket 32 53 577 298 0 254 20160 0
KNOTE 160 0 125 8 0 62 20000 0
SMR CPU 32 7 504 7 0 254 16352 0
sctp_laddr 48 0 336 4 0 254 16128 0
vtnet_tx_hdr 24 0 668 9370 0 254 16032 0
kenv 258 17 43 1069 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
malloc-16 16 18 732 56 0 254 12000 0
malloc-16 16 17 733 178 0 254 12000 0
malloc-16 16 52 698 42480 0 254 12000 0
malloc-16 16 204 546 4356 0 254 12000 0
malloc-16 16 31 719 46 0 254 12000 0
malloc-16 16 268 482 27991 0 254 12000 0
malloc-16 16 20 730 14169 0 254 12000 0
malloc-384 384 2 28 2 0 30 11520 0
malloc-4096 4096 1 1 1 0 2 8192 0
malloc-4096 4096 0 2 1 0 2 8192 0
malloc-4096 4096 1 1 1 0 2 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 360 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 232 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-384 384 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
HEAD commit: 47a6fb9d5a2e mlx5: Zero DMA memory mlx5_alloc_cmd_msg() an..
git tree: freebsd-src
dashboard link: https://syzkaller.appspot.com/bug?extid=2e2dc35c0e24a74663a7
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=17234357e80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=14e48e77e80000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+2e2dc3...@syzkaller.appspotmail.com
cpuid = 1
time = 1705635335
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0007b12fb0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0007b13110
vpanic() at vpanic+0x271/frame 0xfffffe0007b132b0
panic() at panic+0xb5/frame 0xfffffe0007b13380
sctp_calc_rwnd() at sctp_calc_rwnd+0x26e/frame 0xfffffe0007b133d0
sctp_user_rcvd() at sctp_user_rcvd+0x25b/frame 0xfffffe0007b134d0
sctp_sorecvmsg() at sctp_sorecvmsg+0x34a1/frame 0xfffffe0007b13780
sctp_soreceive() at sctp_soreceive+0x2b0/frame 0xfffffe0007b13a60
soreceive() at soreceive+0xdf/frame 0xfffffe0007b13ac0
dofileread() at dofileread+0x15d/frame 0xfffffe0007b13b30
kern_readv() at kern_readv+0xd7/frame 0xfffffe0007b13bf0
sys_read() at sys_read+0x1fc/frame 0xfffffe0007b13d10
amd64_syscall() at amd64_syscall+0x473/frame 0xfffffe0007b13f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0007b13f30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x23514a, rsp = 0x820c948d8, rbp = 0x820c94930 ---
KDB: enter: panic
[ thread pid 7830 tid 100097 ]
Stopped at kdb_enter+0x6e: movq $0,0x21941e7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe00033eee30
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rdx 0xdffff7c000000000
rbx 0xffffffff826f87e0 .str.28
rsp 0xfffffe0007b130f0
rbp 0xfffffe0007b13110
rsi 0x1
rdi 0
r8 0
r9 0xffffffff
r10 0x7
r11 0xfffffe0058b97c60
r9 0xffffffff
r10 0x7
r12 0
r13 0xfffffe0058b97740
r14 0xffffffff826f87e0 .str.28
r15 0
rip 0xffffffff815cae2e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21941e7(%rip)
db> show proc
Process 7830 (syz-executor3692535) at 0xfffffe0057bd4580:
r15 0
rip 0xffffffff815cae2e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21941e7(%rip)
db> show proc
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 780 at 0xfffffe00571c7000
uid: 0 gids: 0, 0, 5
ABI: FreeBSD ELF64
flag: 0x10000000 flag2: 0
arguments: ./syz-executor3692535667
reaper: 0xfffffe00541f8040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe006d4cd738
sigparent: 20
(map 0xfffffe006d4cd738)
(map.pmap 0xfffffe006d4cd7f8)
(pmap 0xfffffe006d4cd868)
threads: 1
100097 Run CPU 1 syz-executor3692535
db> ps
pid ppid pgrp uid state wmesg wchan cmd
7830 780 778 0 R CPU 1 syz-executor3692535
pid ppid pgrp uid state wmesg wchan cmd
780 778 778 0 S nanslp 0xffffffff83740401 syz-executor3692535
778 776 778 0 Ss pause 0xfffffe00541f9670 csh
776 682 776 0 Ss select 0xfffffe006ca883c0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00576a00b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00587e2cb0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00587e34b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00587e3cb0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00587e44b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe00587e4cb0 getty
742 1 742 0 Ss+ ttyin 0xfffffe00543494b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe0054349cb0 getty
740 1 740 0 Ss+ ttyin 0xfffffe005434a4b0 getty
686 1 686 0 Ss nanslp 0xffffffff83740400 cron
682 1 682 0 Ss select 0xfffffe0058a7c8c0 sshd
495 1 495 0 Ss select 0xfffffe006ca88bc0 syslogd
424 1 424 0 Ss select 0xfffffe006ca89140 devd
423 1 423 65 Ss select 0xfffffe006ca88f40 dhclient
338 1 338 0 Ss select 0xfffffe006ca89040 dhclient
335 1 335 0 Ss select 0xfffffe006ca89740 dhclient
17 0 0 0 DL syncer 0xffffffff8385db20 [syncer]
16 0 0 0 DL vlruwt 0xfffffe00571c9040 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff8385c100 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100095 D sdflush 0xfffffe00085fe8e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838a55c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff8388d438 [dom0]
100080 D launds 0xffffffff8388d444 [laundry: dom0]
100081 D umarcl 0xffffffff81d61170 [uma]
7 0 0 0 DL - 0xffffffff834bdc10 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff840a8ea0 [pf purge]
16 0 0 0 DL vlruwt 0xfffffe00571c9040 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff8385c100 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100095 D sdflush 0xfffffe00085fe8e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838a55c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff8388d438 [dom0]
100080 D launds 0xffffffff8388d444 [laundry: dom0]
100081 D umarcl 0xffffffff81d61170 [uma]
7 0 0 0 DL - 0xffffffff834bdc10 [rand_harvestq]
5 0 0 0 DL waiting 0xffffffff845cd5a0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83488340 [doneq0]
100045 D - 0xffffffff834882c0 [async]
100076 D - 0xffffffff83488140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83888c60 [crypto]
100042 D crypto_ 0xfffffe00542edd30 [crypto returns 0]
100043 D crypto_ 0xfffffe00542edd80 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe000799c088 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836e8d40 [g_event]
100036 D - 0xffffffff836e8d60 [g_up]
100037 D - 0xffffffff836e8d80 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100031 Run CPU 0 [swi1: netisr 0]
100044 D - 0xffffffff83488340 [doneq0]
100045 D - 0xffffffff834882c0 [async]
100076 D - 0xffffffff83488140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83888c60 [crypto]
100042 D crypto_ 0xfffffe00542edd30 [crypto returns 0]
100043 D crypto_ 0xfffffe00542edd80 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe000799c088 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836e8d40 [g_event]
100036 D - 0xffffffff836e8d60 [g_up]
100037 D - 0xffffffff836e8d80 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
exclusive sleep mutex sctp-read (inpr) r = 0 (0xfffffe006d3f9b38) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctputil.c:6063
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe0058b75900) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:3992
Process 12 (intr) thread 0xfffffe00542c9740 (100031)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe006d46da50) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:2135
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4220
sysctloid 34817 2052K 34888
vtbuf 24 1968K 46
kobj 326 1304K 488
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4220
sysctloid 34817 2052K 34888
vtbuf 24 1968K 46
newblk 134 1058K 843
vfscache 3 1025K 3
pcb 25 671K 14142
inodedep 2 513K 73
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vnet_data 2 224K 2
acpitask 1 224K 1
acpica 1674 184K 60830
subproc 105 178K 7898
acpitask 1 224K 1
acpica 1674 184K 60830
tidhash 3 141K 3
vmem 3 134K 4
linker 352 130K 386
pagedep 2 129K 20
tfo_ccache 1 128K 1
IP reass 1 128K 1
sctp_timw 487 122K 487
IP reass 1 128K 1
sem 4 106K 4
DEVFS1 105 105K 114
gtaskqueue 18 98K 18
bus 985 81K 5155
mtx_pool 2 72K 2
syncache 1 68K 1
bus 985 81K 5155
mtx_pool 2 72K 2
NFSD srvcache 3 68K 3
module 513 65K 513
ddb_capture 1 64K 1
temp 18 37K 1593
module 513 65K 513
ddb_capture 1 64K 1
hostcache 1 32K 1
shm 1 32K 1
umtx 256 32K 256
kdtrace 156 32K 7949
DEVFS3 124 31K 134
msg 4 30K 4
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
kbdmux 6 28K 6
BPF 10 18K 10
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
ithread 97 16K 97
bus-sc 34 15K 1687
proc 3 17K 3
tty 16 16K 16
ithread 97 16K 97
eventhandler 161 14K 161
KTRACE 100 13K 100
kenv 95 12K 95
ifaddr 30 12K 32
GEOM 61 11K 481
routetbl 50 11K 176
rman 86 11K 431
CAM queue 5 11K 1528
CAM queue 5 11K 1528
rpc 4 9K 4
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
bmsafemap 1 8K 43
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 238 8K 300
taskqueue 63 7K 63
sglist 6 7K 6
CAM DEV 3 6K 510
cred 22 6K 293
CAM DEV 3 6K 510
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 267 5K 267
hhook 15 5K 17
ufs_dirhash 24 5K 24
ifnet 3 5K 3
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
plimit 16 4K 353
MCA 32 4K 32
filedesc 1 4K 1
evdev 4 4K 4
acpisem 28 4K 28
ether_multi 40 4K 50
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 19 3K 33
kqueue 38 3K 7833
pwddesc 38 3K 7831
clone 9 3K 9
uidinfo 3 3K 10
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
proc-args 57 2K 8774
io_apic 1 2K 1
ipsec-saq 2 2K 2
selfd 27 2K 104768
lockf 16 2K 26
Unitno 27 2K 41
CAM XPT 22 2K 543
msi 12 2K 12
toponodes 6 2K 6
msi 12 2K 12
ipsecpolicy 2 2K 2
acpidev 20 2K 20
sctp_atcl 3 2K 21150
acpidev 20 2K 20
sctp_stro 1 1K 7050
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
vnodemarker 2 1K 22
secasvar 1 1K 1
NFSD session 1 1K 1
select 7 1K 29
CAM periph 4 1K 271
ipsec 3 1K 3
CC Mem 3 1K 7
nhops 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
sctp_stri 1 1K 14100
in_multi 2 1K 4
cdev 2 1K 2
lkpikmalloc 8 1K 9
osd 8 1K 20
lkpikmalloc 8 1K 9
netlink 2 1K 12
chacha20random 1 1K 1
biobuf 1 1K 1
inpcbpolicy 10 1K 139
biobuf 1 1K 1
sctp_ifn 2 1K 6
indirdep 1 1K 3
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFSP 4 1K 9
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
sctp_atky 4 1K 35250
CAM SIM 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
loginclass 3 1K 7
prison 6 1K 6
cryptodev 2 1K 49
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
diradd 1 1K 37
apmdev 1 1K 1
atkbddev 2 1K 2
procdesc 1 1K 6
pmchooks 1 1K 1
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
soname 4 1K 17432
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
tun 3 1K 3
sctp_vrf 1 1K 1
freework 1 1K 26
vnet 1 1K 1
pmc 1 1K 1
entropy 2 1K 36
acpiintr 1 1K 1
sctp_athm 3 1K 28200
sctp_map 2 1K 14100
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
filecaps 1 1K 70
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 4
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_aadr 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
filemon 0 0K 0
esp 0 0K 0
ah 0 0K 0
mqdata 0 0K 0
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 0
pf_temp 0 0K 0
tcp_do 0 0K 0
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 7
jfsync 0 0K 0
jtrunc 0 0K 0
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
newdirblk 0 0K 8
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
dirrem 0 0K 28
mkdir 0 0K 16
freefile 0 0K 26
freeblks 0 0K 25
freefrag 0 0K 2
allocindir 0 0K 0
allocindir 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
LRO 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 201
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 4
aio 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 20745
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
ioctlops 0 0K 86
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 651
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
kcovinfo 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
Fail Points 0 0K 0
filedesc_to_leader 0 0K 0
mbuf 256 8588 1074 372255 0 254 2473472 0
BUF TRIE 144 187 11629 621 0 62 1701504 0
malloc-384 384 4118 52 4119 0 30 1601280 0
malloc-4096 4096 372 6 8327 0 2 1548288 0
malloc-128 128 11436 158 11556 0 126 1484032 0
UMA Slabs 0 112 10818 12 10818 0 126 1212960 0
sctp_asoc 2256 1 509 7050 0 254 1150560 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 15857 94 15857 0 254 893256 0
FFS inode 1168 488 37 514 0 8 613200 0
sctp_ep 1176 1 509 7050 0 254 599760 0
malloc-2048 2048 5 283 1050 0 8 589824 0
lkpicurr 176 2 3080 2 0 62 542432 0
pbuf 2624 0 198 0 0 2 519552 0
RADIX NODE 144 3254 241 122448 0 62 503280 0
socket 960 19 489 8366 0 254 487680 0
sctp_raddr 736 2 515 14100 0 254 380512 0
256 Bucket 2048 149 21 1044 0 8 348160 0
malloc-64 64 3884 715 19522 0 254 294336 0
malloc-65536 65536 4 0 4 0 1 262144 0
VM OBJECT 264 884 106 70681 0 30 261360 0
VNODE 448 518 58 546 0 30 258048 0
malloc-256 256 347 658 1222 0 62 257280 0
THREAD 1824 117 11 117 0 8 233472 0
malloc-16 16 14387 113 14454 0 254 232000 0
DEVCTL 1024 0 220 123 0 0 225280 0
UMA Zones 768 239 0 239 0 16 183552 0
malloc-32 32 5303 367 5459 0 254 181440 0
malloc-128 128 1169 226 28372 0 126 178560 0
lkpimm 56 1 3095 1 0 254 173376 0
malloc-1024 1024 124 20 133 0 16 147456 0
FFS2 dinode 256 488 82 514 0 62 145920 0
malloc-256 256 493 77 516 0 62 145920 0
MAP ENTRY 96 821 565 125337 0 126 133056 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-65536 65536 0 2 46 0 1 131072 0
unpcb 256 7 503 1160 0 254 130560 0
mbuf_packet 256 0 508 21269 0 254 130048 0
S VFS Cache 104 982 188 1022 0 126 121680 0
FPU_save_area 832 119 25 139 0 16 119808 0
sctp_chunk 152 4 776 28200 0 254 118560 0
ksiginfo 112 40 1004 61 0 126 116928 0
malloc-128 128 656 119 4221 0 126 99200 0
malloc-32768 32768 3 0 3 0 1 98304 0
malloc-32768 32768 3 0 3 0 1 98304 0
PROC 1376 37 29 7830 0 8 90816 0
malloc-32768 32768 3 0 3 0 1 98304 0
UMA Kegs 384 226 7 226 0 30 89472 0
128 Bucket 1024 42 41 264 0 16 84992 0
sctp_readq 152 1 519 7050 0 254 79040 0
g_bio 408 0 180 5177 0 30 73440 0
64 Bucket 512 77 59 2809 0 30 69632 0
malloc-64 64 467 604 903 0 254 68544 0
malloc-64 64 515 556 22790 0 254 68544 0
malloc-128 128 306 221 483 0 126 67456 0
malloc-128 128 334 193 847 0 126 67456 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-4096 4096 12 4 28 0 2 65536 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-2048 2048 8 24 7057 0 8 65536 0
malloc-256 256 186 69 896 0 62 65280 0
sctp_stream_msg_out 112 0 540 7050 0 254 60480 0
filedesc0 1072 38 18 7831 0 8 60032 0
malloc-64 64 327 492 332 0 254 52416 0
malloc-256 256 63 132 537 0 62 49920 0
malloc-256 256 23 172 7077 0 62 49920 0
32 Bucket 256 66 129 539 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 12254 0 16 49152 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-1024 1024 1 47 7053 0 16 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-1024 1024 4 44 553 0 16 49152 0
malloc-512 512 1 95 14100 0 30 49152 0
malloc-384 384 101 19 104 0 30 46080 0
syncache 168 0 264 5 0 254 44352 0
malloc-8192 8192 3 2 104 0 1 40960 0
malloc-8192 8192 5 0 5 0 1 40960 0
malloc-4096 4096 7 3 9 0 2 40960 0
VMSPACE 616 21 45 7815 0 16 40656 0
udp_inpcb 424 6 84 128 0 30 38160 0
da_ccb 544 0 70 1430 0 16 38080 0
pcpu-8 8 4283 325 4311 0 254 36864 0
malloc-64 64 40 527 71 0 254 36288 0
malloc-64 64 17 550 13368 0 254 36288 0
malloc-64 64 86 481 113212 0 254 36288 0
malloc-64 64 34 533 58 0 254 36288 0
malloc-128 128 16 263 24 0 126 35712 0
malloc-128 128 100 179 594 0 126 35712 0
malloc-128 128 79 200 87 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 52 38 52 0 30 34560 0
malloc-384 384 19 71 21257 0 30 34560 0
malloc-256 256 5 130 340 0 62 34560 0
malloc-256 256 19 116 327 0 62 34560 0
malloc-256 256 50 85 760 0 62 34560 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-2048 2048 5 11 5 0 8 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-2048 2048 4 12 4 0 8 32768 0
malloc-2048 2048 6 10 15 0 8 32768 0
malloc-2048 2048 0 16 50 0 8 32768 0
malloc-2048 2048 2 14 193 0 8 32768 0
malloc-2048 2048 1 15 25 0 8 32768 0
malloc-2048 2048 2 14 193 0 8 32768 0
malloc-1024 1024 15 17 16 0 16 32768 0
malloc-1024 1024 13 19 21 0 16 32768 0
malloc-1024 1024 2 30 157 0 16 32768 0
malloc-1024 1024 10 22 10 0 16 32768 0
malloc-1024 1024 1 31 886 0 16 32768 0
malloc-512 512 3 61 3 0 30 32768 0
malloc-512 512 0 64 119 0 30 32768 0
malloc-512 512 2 62 12 0 30 32768 0
malloc-512 512 4 60 55 0 30 32768 0
malloc-512 512 3 61 23 0 30 32768 0
malloc-512 512 8 56 17 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
ertt_txseginfo 40 0 808 7332 0 254 32320 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 19 245 33 0 126 31680 0
clpbuf 2624 0 12 28 0 4 31488 0
16 Bucket 144 57 139 291 0 62 28224 0
4 Bucket 48 6 582 7 0 254 28224 0
TURNSTILE 136 129 60 129 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
ripcb 392 1 62 4 0 30 24696 0
malloc-8192 8192 2 1 28 0 1 24576 0
malloc-4096 4096 5 1 5 0 2 24576 0
rl_entry 40 33 573 33 0 254 24240 0
PWD 40 10 596 103 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
pipe 728 6 27 287 0 16 24024 0
Files 80 68 232 13648 0 126 24000 0
8 Bucket 80 78 222 385 0 126 24000 0
tcp_inpcb 1312 3 15 7 0 8 23616 0
malloc-384 384 0 60 343 0 30 23040 0
malloc-384 384 14 46 15 0 30 23040 0
malloc-384 384 14 46 15 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 129 127 129 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
malloc-32 32 3 627 19 0 254 20160 0
malloc-32 32 105 525 7211 0 254 20160 0
malloc-32 32 294 336 881 0 254 20160 0
malloc-32 32 57 573 8038 0 254 20160 0
malloc-32 32 47 583 77 0 254 20160 0
malloc-32 32 50 580 17096 0 254 20160 0
malloc-32 32 34 596 1081 0 254 20160 0
2 Bucket 32 53 577 298 0 254 20160 0
KNOTE 160 0 125 8 0 62 20000 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 1 1 3 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 2 2 757 0 2 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
sctp_laddr 48 0 336 4 0 254 16128 0
vtnet_tx_hdr 24 0 668 9370 0 254 16032 0
kenv 258 17 43 1069 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
malloc-16 16 18 732 56 0 254 12000 0
malloc-16 16 17 733 178 0 254 12000 0
malloc-16 16 52 698 42480 0 254 12000 0
malloc-16 16 204 546 4356 0 254 12000 0
malloc-16 16 31 719 46 0 254 12000 0
malloc-16 16 268 482 27991 0 254 12000 0
malloc-16 16 20 730 14169 0 254 12000 0
malloc-384 384 2 28 2 0 30 11520 0
malloc-4096 4096 1 1 1 0 2 8192 0
malloc-4096 4096 0 2 1 0 2 8192 0
malloc-4096 4096 1 1 1 0 2 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 360 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 232 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-384 384 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
Reply all
Reply to author
Forward
0 new messages