panic: vtnet_txq_offload_ctx: mbuf ADDR start NUM offset NUM proto -NUM
2 views
Skip to first unread message
syzbot
Nov 24, 2023, 2:48:25 PM11/24/23
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 5e16809c953f tzsetup: symlink /etc/localtime instead of co..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=14963294e80000
dashboard link: https://syzkaller.appspot.com/bug?extid=618d4f014f60c0bd06b4
userspace arch: i386
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+618d4f...@syzkaller.appspotmail.com
panic: vtnet_txq_offload_ctx: mbuf 0xfffffe0073cc3800 start 14 offset 14 proto -1
cpuid = 1
time = 1700855231
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a69d8b0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a69da10
vpanic() at vpanic+0x271/frame 0xfffffe006a69dbb0
panic() at panic+0xb5/frame 0xfffffe006a69dc70
vtnet_txq_encap() at vtnet_txq_encap+0xa93/frame 0xfffffe006a69ddf0
vtnet_txq_mq_start_locked() at vtnet_txq_mq_start_locked+0x2e0/frame 0xfffffe006a69def0
vtnet_txq_mq_start() at vtnet_txq_mq_start+0xd9/frame 0xfffffe006a69df30
ether_output_frame() at ether_output_frame+0x37d/frame 0xfffffe006a69e010
ether_output() at ether_output+0x1234/frame 0xfffffe006a69e180
ip_output_send() at ip_output_send+0x301/frame 0xfffffe006a69e1f0
ip_output() at ip_output+0x2ba9/frame 0xfffffe006a69e3f0
udp_send() at udp_send+0x1a0b/frame 0xfffffe006a69e630
udp6_send() at udp6_send+0x613/frame 0xfffffe006a69e920
sosend_dgram() at sosend_dgram+0x68b/frame 0xfffffe006a69e9a0
sousrsend() at sousrsend+0x116/frame 0xfffffe006a69ea30
kern_sendit() at kern_sendit+0x5a2/frame 0xfffffe006a69eba0
sendit() at sendit+0x157/frame 0xfffffe006a69ebf0
sys_sendto() at sys_sendto+0x181/frame 0xfffffe006a69ed10
ia32_syscall() at ia32_syscall+0x46e/frame 0xfffffe006a69ef30
int0x80_syscall_common() at int0x80_syscall_common+0x9c/frame 0xdfffcf9c
KDB: enter: panic
[ thread pid 897 tid 100189 ]
Stopped at kdb_enter+0x6e: movq $0,0x217e2f7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0
rax 0x12
rcx 0xfffffe006d400000
rdx 0x3ffff
rbx 0xffffffff826ec200 .str.28
rsp 0xfffffe006a69d9f0
rbp 0xfffffe006a69da10
rsi 0x40001
rdi 0xffffffff815d65b6 printf+0x156
r8 0
r9 0xffffffff
r10 0x1
r11 0
r12 0
r13 0xfffffe006d2a3000
r14 0xffffffff826ec200 .str.28
r15 0
rip 0xffffffff815c559e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x217e2f7(%rip)
db> show proc
Process 897 (syz-executor.0) at 0xfffffe006cde15a0:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 771 at 0xfffffe0007c21020
ABI: FreeBSD ELF32
flag: 0x10000080 flag2: 0
arguments: /root/syz-executor.0 exec
reaper: 0xfffffe0054234040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0058a9ac08
(map 0xfffffe0058a9ac08)
(map.pmap 0xfffffe0058a9acc8)
(pmap 0xfffffe0058a9ad38)
threads: 2
100130 RunQ syz-executor.0
100189 Run CPU 1 syz-executor.0
db> ps
pid ppid pgrp uid state wmesg wchan cmd
899 772 772 0 R (threaded) syz-executor.1
100119 RunQ syz-executor.1
100191 S uwait 0xfffffe006ce0f180 syz-executor.1
897 771 771 0 R (threaded) syz-executor.0
100130 RunQ syz-executor.0
100189 Run CPU 1 syz-executor.0
896 811 811 0 S (threaded) syz-executor.3
100137 S nanslp 0xffffffff83724c81 syz-executor.3
100186 S select 0xfffffe0057b04ac0 syz-executor.3
100188 S uwait 0xfffffe006d26a400 syz-executor.3
895 781 781 0 R (threaded) syz-executor.2
100173 RunQ syz-executor.2
100185 S connec 0xfffffe0058dadc1a syz-executor.2
100187 S connec 0xfffffe0058dac0da syz-executor.2
100192 S uwait 0xfffffe006d269e00 syz-executor.2
855 1 855 0 Ss select 0xfffffe0057b042c0 rtsol
853 1 853 0 Ss select 0xfffffe005724a5c0 rtsol
852 1 852 0 Ss select 0xfffffe0057235940 rtsol
849 783 424 0 S kqread 0xfffffe00576c3e00 rtsol
811 768 811 0 Rs syz-executor.3
783 775 424 0 S wait 0xfffffe0007c21580 sh
781 768 781 0 Ss nanslp 0xffffffff83724c81 syz-executor.2
775 424 424 0 S wait 0xfffffe0007c20ac0 sh
772 768 772 0 Rs CPU 0 syz-executor.1
771 768 771 0 Rs syz-executor.0
768 766 766 0 S (threaded) syz-fuzzer
100112 S uwait 0xfffffe0057ae8580 syz-fuzzer
100113 S uwait 0xfffffe0057147480 syz-fuzzer
100114 S wait 0xfffffe0007c22040 syz-fuzzer
100115 S uwait 0xfffffe0057147680 syz-fuzzer
100116 S uwait 0xfffffe0057ae7780 syz-fuzzer
100118 S uwait 0xfffffe0057ae8680 syz-fuzzer
100117 S kqread 0xfffffe00576c2200 syz-fuzzer
100120 S wait 0xfffffe0007c22040 syz-fuzzer
100123 S wait 0xfffffe0007c22040 syz-fuzzer
100124 S wait 0xfffffe0007c22040 syz-fuzzer
100131 S uwait 0xfffffe0057147f00 syz-fuzzer
100146 S uwait 0xfffffe006d269f00 syz-fuzzer
766 764 766 0 Ss pause 0xfffffe0007c23110 csh
764 682 764 0 Ss select 0xfffffe005724a840 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00540d18b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00540cf8b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00540cfcb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00540d00b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00540d04b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe00540d08b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe0007c3c4b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe0007c3c8b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe0007c3ccb0 getty
686 1 686 0 Ss nanslp 0xffffffff83724c80 cron
682 1 682 0 Ss select 0xfffffe0057234b40 sshd
495 1 495 0 Ss select 0xfffffe0057b047c0 syslogd
424 1 424 0 Ss wait 0xfffffe0058b7b000 devd
423 1 423 65 Ss select 0xfffffe0057234ec0 dhclient
338 1 338 0 Ss select 0xfffffe0057234cc0 dhclient
335 1 335 0 Ss select 0xfffffe0057b04740 dhclient
17 0 0 0 DL syncer 0xffffffff838423a0 [syncer]
16 0 0 0 DL vlruwt 0xfffffe00571fd040 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83840980 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100096 D sdflush 0xfffffe00570ccce8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838b35c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff8389b438 [dom0]
100080 D launds 0xffffffff8389b444 [laundry: dom0]
100081 D umarcl 0xffffffff81d59130 [uma]
7 0 0 0 DL - 0xffffffff834b9c30 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff83f7ea30 [pf purge]
5 0 0 0 DL waiting 0xffffffff845cb4e0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83484340 [doneq0]
100045 D - 0xffffffff834842c0 [async]
100076 D - 0xffffffff83484140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83896c60 [crypto]
100042 D crypto_ 0xfffffe00540ed230 [crypto returns 0]
100043 D crypto_ 0xfffffe00540ed280 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe00079bec88 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836cd600 [g_event]
100036 D - 0xffffffff836cd620 [g_up]
100037 D - 0xffffffff836cd640 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100031 I [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0054234040 [init]
10 0 0 0 DL audit_w 0xffffffff838976c0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836cdfe0 [swapper]
100005 D - 0xfffffe00540ded00 [softirq_0]
100006 D - 0xfffffe00540dec00 [softirq_1]
100007 D - 0xfffffe00540deb00 [if_io_tqg_0]
100008 D - 0xfffffe00540dea00 [if_io_tqg_1]
100009 D - 0xfffffe00540de900 [if_config_tqg_0]
100010 D - 0xfffffe00085ebe00 [pci_hp taskq]
100011 D - 0xfffffe00085ebd00 [kqueue_ctx taskq]
100014 D - 0xfffffe00085eba00 [thread taskq]
100016 D - 0xfffffe00085eb800 [aiod_kick taskq]
100017 D - 0xfffffe00085eb700 [deferred_unmount ta]
100018 D - 0xfffffe00085eb600 [inm_free taskq]
100019 D - 0xfffffe00085eb500 [in6m_free taskq]
100020 D - 0xfffffe00085eb400 [linuxkpi_irq_wq]
100021 D - 0xfffffe00085eb300 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00085eb300 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00085eb300 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00085eb300 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00085eb200 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00085eb200 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00085eb200 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00085eb200 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00085eb100 [firmware taskq]
100039 D - 0xfffffe00085eb000 [crypto_0]
100040 D - 0xfffffe00085eb000 [crypto_1]
100055 D - 0xfffffe00085ead00 [vtnet0 rxq 0]
100056 D - 0xfffffe00085eac00 [vtnet0 txq 0]
100057 D - 0xfffffe00085eab00 [vtnet0 rxq 1]
100058 D - 0xfffffe00085eaa00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0057235300 [virtio_balloon]
100066 D - 0xffffffff826f1460 [deadlkres]
100070 D - 0xfffffe0057bae200 [acpi_task_0]
100071 D - 0xfffffe0057bae200 [acpi_task_1]
100072 D - 0xfffffe0057bae200 [acpi_task_2]
100074 D - 0xfffffe00085ec100 [mca taskq]
100075 D - 0xfffffe00085eae00 [CAM taskq]
db> show all locks
Process 897 (syz-executor.0) thread 0xfffffe006d2a3000 (100189)
exclusive sleep mutex vtnet0-tx1 (vtnet0-tx1) r = 0 (0xfffffe0057582900) locked @ /syzkaller/managers/i386/kernel/sys/dev/virtio/network/if_vtnet.c:2747
exclusive rw udpinp (udpinp) r = 0 (0xfffffe0058db2560) locked @ /syzkaller/managers/i386/kernel/sys/netinet/udp_usrreq.c:1105
Process 772 (syz-executor.1) thread 0xfffffe0058b67740 (100094)
exclusive sx proctree (proctree) r = 0 (0xffffffff82c09c40) locked @ /syzkaller/managers/i386/kernel/sys/kern/kern_exit.c:1321
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4220
sysctloid 34934 2059K 35005
vtbuf 24 1968K 46
kobj 326 1304K 488
newblk 620 1179K 709
vfscache 3 1025K 3
pcb 33 676K 74
inodedep 62 535K 125
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
subproc 118 230K 967
vnet_data 2 224K 2
acpitask 1 224K 1
acpica 1674 184K 60830
tidhash 3 141K 3
filedesc 18 137K 135
vmem 3 134K 4
pagedep 15 132K 63
linker 352 130K 410
tfo_ccache 1 128K 1
IP reass 1 128K 1
DEVFS1 109 109K 126
sem 4 106K 4
gtaskqueue 18 98K 18
bus 985 81K 5155
mtx_pool 2 72K 2
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 512 64K 512
ddb_capture 1 64K 1
kdtrace 195 40K 1093
umtx 304 38K 304
temp 35 37K 1889
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 128 32K 138
msg 4 30K 4
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
ifaddr 67 19K 69
BPF 15 19K 16
ufs_mount 4 17K 5
proc 3 17K 3
LRO 16 17K 16
tty 16 16K 16
routetbl 130 16K 413
ithread 97 16K 97
bus-sc 34 15K 1687
lltable 44 14K 44
eventhandler 161 14K 161
ether_multi 157 13K 167
KTRACE 100 13K 100
ifnet 7 13K 7
kenv 95 12K 95
GEOM 61 11K 481
rman 86 11K 429
CAM queue 5 11K 1528
in6_multi 71 9K 71
dirrem 33 9K 61
bmsafemap 2 9K 93
rpc 4 9K 4
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
shmfd 1 8K 1
pfs_vncache 1 8K 1
kqueue 55 8K 906
audit_evclass 238 8K 300
taskqueue 63 7K 63
sglist 6 7K 6
CAM DEV 3 6K 510
cred 23 6K 228
plimit 20 5K 334
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 268 5K 268
pf_ifnet 10 5K 19
freefile 33 5K 59
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
DEVFSP 61 4K 66
diradd 30 4K 92
acpisem 28 4K 28
session 26 4K 36
kcovinfo 52 4K 52
pwddesc 51 4K 900
proc-args 80 4K 1961
mkdir 24 3K 106
terminal 11 3K 11
indirdep 10 3K 10
clone 9 3K 9
uidinfo 3 3K 7
selfd 35 3K 24607
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
ip6ndp 12 2K 15
sctp_ifa 14 2K 15
CC Mem 7 2K 25
Unitno 27 2K 49
tun 7 2K 7
CAM XPT 22 2K 543
lockf 15 2K 22
msi 12 2K 12
newdirblk 12 2K 53
in_multi 6 2K 8
select 12 2K 38
toponodes 6 2K 6
ipsecpolicy 2 2K 2
acpidev 20 2K 20
sctp_atcl 3 2K 14
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 14
NFSD session 1 1K 1
CAM periph 4 1K 271
sctp_timw 3 1K 3
sctp_ifn 6 1K 15
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 4
encap_export_host 12 1K 12
inpcbpolicy 19 1K 211
procdesc 4 1K 10
cdev 2 1K 2
osd 12 1K 38
netlink 2 1K 2
chacha20random 1 1K 1
biobuf 1 1K 1
vnodes 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
soname 7 1K 3658
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
lkpikmalloc 5 1K 6
cryptodev 2 1K 42
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
pmchooks 1 1K 1
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
sctp_atky 3 1K 18
sctp_vrf 1 1K 1
freework 1 1K 59
vnet 1 1K 1
pmc 1 1K 1
entropy 2 1K 38
acpiintr 1 1K 1
sctp_athm 3 1K 15
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
filecaps 1 1K 78
sctp_mcore 0 0K 0
sctp_socko 0 0K 1
sctp_iter 0 0K 12
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 12
sctp_aadr 0 0K 0
sctp_stro 0 0K 3
sctp_stri 0 0K 2
sctp_map 0 0K 8
tcp_do 0 0K 0
tcp_fsb 0 0K 0
mqdata 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
filemon 0 0K 0
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
ixl 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
fpukern_ctx 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
aesni_data 0 0K 0
xenbus 0 0K 0
vm_fictitious 0 0K 0
UMAHash 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 17
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 4
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freeblks 0 0K 58
freefrag 0 0K 2
allocindir 0 0K 0
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ktls_ocf 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 4
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 196
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 2
aio 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 13915
ioctlops 0 0K 98
eventfd 0 0K 3
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 646
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
pvscsi 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 0
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
SIIS driver 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
md_disk 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
ciss_data 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
aacraidcam 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
scsi_pass 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
nvme_da 0 0K 0
CAM CCB 0 0K 523
CAM ccb queue 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8320 1078 943582 0 254 38494208 0
mbuf 256 8636 7881 1431939 0 254 4228352 0
BUF TRIE 144 183 11633 535 0 62 1701504 0
malloc-384 384 4212 18 4277 0 30 1624320 0
RADIX NODE 144 11015 96 51760 0 62 1599984 0
malloc-128 128 11449 145 11467 0 126 1484032 0
malloc-4096 4096 327 3 568 0 2 1351680 0
UMA Slabs 0 112 10657 29 10657 0 126 1196832 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 16402 53 16402 0 254 921480 0
FFS inode 1160 503 22 562 0 8 609000 0
sctp_asoc 2256 0 255 3 0 254 575280 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
socket 960 39 469 1435 0 254 487680 0
256 Bucket 2048 185 23 3938 0 8 425984 0
malloc-65536 65536 4 1 12 0 1 327680 0
VM OBJECT 264 1157 43 16129 0 30 316800 0
sctp_ep 1176 3 257 10 0 254 305760 0
VNODE 448 540 90 601 0 30 282240 0
THREAD 1824 143 9 192 0 8 277248 0
sctp_chunk 152 0 1794 1344 0 254 272688 0
malloc-64 64 3856 239 4378 0 254 262080 0
malloc-2048 2048 14 106 1070 0 8 245760 0
malloc-16 16 14435 315 14495 0 254 236000 0
malloc-16384 16384 10 4 67 0 1 229376 0
DEVCTL 1024 23 197 148 0 0 225280 0
malloc-256 256 811 59 1085 0 62 222720 0
malloc-4096 4096 51 3 900 0 2 221184 0
malloc-65536 65536 1 2 65 0 1 196608 0
malloc-128 128 1321 198 28759 0 126 194432 0
sctp_raddr 736 0 264 3 0 254 194304 0
ertt_txseginfo 40 294 4554 8272 0 254 193920 0
UMA Zones 768 240 4 240 0 16 187392 0
malloc-32 32 5315 355 6028 0 254 181440 0
malloc-32768 32768 3 2 123 0 1 163840 0
FPU_save_area 832 145 35 2080 0 16 149760 0
FFS2 dinode 256 503 67 562 0 62 145920 0
MAP ENTRY 96 1286 226 46417 0 126 145152 0
S VFS Cache 104 1013 274 1092 0 126 133848 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-1024 1024 120 8 295 0 16 131072 0
unpcb 256 15 495 1188 0 254 130560 0
mbuf_packet 256 0 508 174 0 254 130048 0
ksiginfo 112 48 996 1943 0 126 116928 0
malloc-128 128 713 186 4358 0 126 115072 0
malloc-128 128 622 153 1269 0 126 99200 0
malloc-32768 32768 3 0 3 0 1 98304 0
PROC 1376 50 16 899 0 8 90816 0
UMA Kegs 384 227 6 227 0 30 89472 0
g_bio 408 0 210 4923 0 30 85680 0
filedesc0 1072 51 19 900 0 8 75040 0
malloc-8192 8192 7 2 110 0 1 73728 0
malloc-4096 4096 15 3 223 0 2 73728 0
64 Bucket 512 71 65 2009 0 30 69632 0
128 Bucket 1024 50 17 262 0 16 68608 0
malloc-64 64 788 283 1908 0 254 68544 0
malloc-64 64 586 485 1766 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-16384 16384 4 0 4 0 1 65536 0
malloc-4096 4096 12 4 492 0 2 65536 0
malloc-256 256 180 75 556 0 62 65280 0
malloc-256 256 139 56 595 0 62 49920 0
32 Bucket 256 66 129 439 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 13284 0 16 49152 0
malloc-16384 16384 1 2 161 0 1 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-2048 2048 10 14 258 0 8 49152 0
malloc-1024 1024 22 26 27 0 16 49152 0
malloc-1024 1024 4 44 527 0 16 49152 0
syncache 168 0 264 4 0 254 44352 0
pcpu-8 8 4687 433 4850 0 254 40960 0
sctp_readq 152 0 260 1 0 254 39520 0
udp_inpcb 424 8 82 173 0 30 38160 0
da_ccb 544 0 70 1350 0 16 38080 0
malloc-64 64 15 552 13545 0 254 36288 0
malloc-64 64 34 533 39 0 254 36288 0
malloc-64 64 279 288 26639 0 254 36288 0
malloc-64 64 23 544 287 0 254 36288 0
malloc-64 64 23 544 27 0 254 36288 0
tcp_bbr_map 128 85 194 170 0 126 35712 0
malloc-128 128 39 240 141 0 126 35712 0
malloc-128 128 43 236 76 0 126 35712 0
malloc-128 128 103 176 611 0 126 35712 0
malloc-128 128 74 205 83 0 126 35712 0
routing nhops 256 26 109 34 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 69 21 425 0 30 34560 0
malloc-384 384 67 23 67 0 30 34560 0
malloc-256 256 42 93 564 0 62 34560 0
malloc-256 256 60 75 69 0 62 34560 0
malloc-256 256 12 123 87 0 62 34560 0
malloc-256 256 55 80 1039 0 62 34560 0
malloc-256 256 51 84 306 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-4096 4096 4 4 10 0 2 32768 0
malloc-4096 4096 6 2 6 0 2 32768 0
malloc-2048 2048 3 13 15 0 8 32768 0
malloc-2048 2048 2 14 2 0 8 32768 0
malloc-2048 2048 9 7 54 0 8 32768 0
malloc-2048 2048 8 8 8 0 8 32768 0
malloc-1024 1024 2 30 42 0 16 32768 0
malloc-1024 1024 17 15 1015 0 16 32768 0
malloc-512 512 0 64 118 0 30 32768 0
malloc-512 512 3 61 15 0 30 32768 0
malloc-512 512 12 52 34 0 30 32768 0
malloc-512 512 0 64 14 0 30 32768 0
malloc-512 512 2 62 53 0 30 32768 0
malloc-512 512 4 60 5 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
sctp_stream_msg_out 112 0 288 1 0 254 32256 0
KNOTE 160 31 169 29466 0 62 32000 0
ttyinq 160 135 65 300 0 62 32000 0
Files 80 190 210 7382 0 126 32000 0
PGRP 120 26 238 36 0 126 31680 0
tcp_inpcb 1312 7 17 25 0 8 31488 0
clpbuf 2624 0 12 22 0 4 31488 0
tcp_bbr_pcb 832 2 34 4 0 16 29952 0
VMSPACE 616 34 14 889 0 16 29568 0
sctp_laddr 48 0 588 14 0 254 28224 0
malloc-32 32 358 524 3558 0 254 28224 0
16 Bucket 144 52 144 244 0 62 28224 0
4 Bucket 48 6 582 8 0 254 28224 0
udplite_inpcb 424 0 63 3 0 30 26712 0
TURNSTILE 136 153 36 153 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
ripcb 392 4 59 10 0 30 24696 0
malloc-8192 8192 3 0 3 0 1 24576 0
rl_entry 40 37 569 37 0 254 24240 0
PWD 40 18 588 140 0 254 24240 0
rtentry 168 30 114 34 0 62 24192 0
pipe 728 19 14 339 0 16 24024 0
8 Bucket 80 51 249 633 0 126 24000 0
malloc-384 384 11 49 11 0 30 23040 0
malloc-384 384 40 20 77 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 153 103 153 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udp_inpcb ports 32 4 626 34 0 254 20160 0
tcp_inpcb ports 32 4 626 6 0 254 20160 0
ertt 72 7 273 25 0 126 20160 0
malloc-32 32 45 585 67 0 254 20160 0
malloc-32 32 251 379 1027 0 254 20160 0
malloc-32 32 18 612 102 0 254 20160 0
malloc-32 32 31 599 190 0 254 20160 0
malloc-32 32 26 604 1062 0 254 20160 0
2 Bucket 32 51 579 317 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-8192 8192 0 2 26 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-1024 1024 5 11 6 0 16 16384 0
malloc-1024 1024 3 13 3 0 16 16384 0
malloc-512 512 1 31 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
vtnet_tx_hdr 24 1 667 468664 0 254 16032 0
malloc-16 16 483 517 3698 0 254 16000 0
kenv 258 17 43 1071 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
malloc-32 32 13 365 36 0 254 12096 0
malloc-16 16 11 739 99 0 254 12000 0
malloc-16 16 48 702 142 0 254 12000 0
malloc-16 16 72 678 28087 0 254 12000 0
malloc-16 16 42 708 1440 0 254 12000 0
malloc-16 16 4 746 5 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-384 384 1 29 1 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 0 2 1 0 2 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 232 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: 5e16809c953f tzsetup: symlink /etc/localtime instead of co..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=14963294e80000
dashboard link: https://syzkaller.appspot.com/bug?extid=618d4f014f60c0bd06b4
userspace arch: i386
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+618d4f...@syzkaller.appspotmail.com
panic: vtnet_txq_offload_ctx: mbuf 0xfffffe0073cc3800 start 14 offset 14 proto -1
cpuid = 1
time = 1700855231
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a69d8b0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a69da10
vpanic() at vpanic+0x271/frame 0xfffffe006a69dbb0
panic() at panic+0xb5/frame 0xfffffe006a69dc70
vtnet_txq_encap() at vtnet_txq_encap+0xa93/frame 0xfffffe006a69ddf0
vtnet_txq_mq_start_locked() at vtnet_txq_mq_start_locked+0x2e0/frame 0xfffffe006a69def0
vtnet_txq_mq_start() at vtnet_txq_mq_start+0xd9/frame 0xfffffe006a69df30
ether_output_frame() at ether_output_frame+0x37d/frame 0xfffffe006a69e010
ether_output() at ether_output+0x1234/frame 0xfffffe006a69e180
ip_output_send() at ip_output_send+0x301/frame 0xfffffe006a69e1f0
ip_output() at ip_output+0x2ba9/frame 0xfffffe006a69e3f0
udp_send() at udp_send+0x1a0b/frame 0xfffffe006a69e630
udp6_send() at udp6_send+0x613/frame 0xfffffe006a69e920
sosend_dgram() at sosend_dgram+0x68b/frame 0xfffffe006a69e9a0
sousrsend() at sousrsend+0x116/frame 0xfffffe006a69ea30
kern_sendit() at kern_sendit+0x5a2/frame 0xfffffe006a69eba0
sendit() at sendit+0x157/frame 0xfffffe006a69ebf0
sys_sendto() at sys_sendto+0x181/frame 0xfffffe006a69ed10
ia32_syscall() at ia32_syscall+0x46e/frame 0xfffffe006a69ef30
int0x80_syscall_common() at int0x80_syscall_common+0x9c/frame 0xdfffcf9c
KDB: enter: panic
[ thread pid 897 tid 100189 ]
Stopped at kdb_enter+0x6e: movq $0,0x217e2f7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0
rax 0x12
rcx 0xfffffe006d400000
rdx 0x3ffff
rbx 0xffffffff826ec200 .str.28
rsp 0xfffffe006a69d9f0
rbp 0xfffffe006a69da10
rsi 0x40001
rdi 0xffffffff815d65b6 printf+0x156
r8 0
r9 0xffffffff
r10 0x1
r11 0
r12 0
r13 0xfffffe006d2a3000
r14 0xffffffff826ec200 .str.28
r15 0
rip 0xffffffff815c559e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x217e2f7(%rip)
db> show proc
Process 897 (syz-executor.0) at 0xfffffe006cde15a0:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 771 at 0xfffffe0007c21020
ABI: FreeBSD ELF32
flag: 0x10000080 flag2: 0
arguments: /root/syz-executor.0 exec
reaper: 0xfffffe0054234040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0058a9ac08
(map 0xfffffe0058a9ac08)
(map.pmap 0xfffffe0058a9acc8)
(pmap 0xfffffe0058a9ad38)
threads: 2
100130 RunQ syz-executor.0
100189 Run CPU 1 syz-executor.0
db> ps
pid ppid pgrp uid state wmesg wchan cmd
899 772 772 0 R (threaded) syz-executor.1
100119 RunQ syz-executor.1
100191 S uwait 0xfffffe006ce0f180 syz-executor.1
897 771 771 0 R (threaded) syz-executor.0
100130 RunQ syz-executor.0
100189 Run CPU 1 syz-executor.0
896 811 811 0 S (threaded) syz-executor.3
100137 S nanslp 0xffffffff83724c81 syz-executor.3
100186 S select 0xfffffe0057b04ac0 syz-executor.3
100188 S uwait 0xfffffe006d26a400 syz-executor.3
895 781 781 0 R (threaded) syz-executor.2
100173 RunQ syz-executor.2
100185 S connec 0xfffffe0058dadc1a syz-executor.2
100187 S connec 0xfffffe0058dac0da syz-executor.2
100192 S uwait 0xfffffe006d269e00 syz-executor.2
855 1 855 0 Ss select 0xfffffe0057b042c0 rtsol
853 1 853 0 Ss select 0xfffffe005724a5c0 rtsol
852 1 852 0 Ss select 0xfffffe0057235940 rtsol
849 783 424 0 S kqread 0xfffffe00576c3e00 rtsol
811 768 811 0 Rs syz-executor.3
783 775 424 0 S wait 0xfffffe0007c21580 sh
781 768 781 0 Ss nanslp 0xffffffff83724c81 syz-executor.2
775 424 424 0 S wait 0xfffffe0007c20ac0 sh
772 768 772 0 Rs CPU 0 syz-executor.1
771 768 771 0 Rs syz-executor.0
768 766 766 0 S (threaded) syz-fuzzer
100112 S uwait 0xfffffe0057ae8580 syz-fuzzer
100113 S uwait 0xfffffe0057147480 syz-fuzzer
100114 S wait 0xfffffe0007c22040 syz-fuzzer
100115 S uwait 0xfffffe0057147680 syz-fuzzer
100116 S uwait 0xfffffe0057ae7780 syz-fuzzer
100118 S uwait 0xfffffe0057ae8680 syz-fuzzer
100117 S kqread 0xfffffe00576c2200 syz-fuzzer
100120 S wait 0xfffffe0007c22040 syz-fuzzer
100123 S wait 0xfffffe0007c22040 syz-fuzzer
100124 S wait 0xfffffe0007c22040 syz-fuzzer
100131 S uwait 0xfffffe0057147f00 syz-fuzzer
100146 S uwait 0xfffffe006d269f00 syz-fuzzer
766 764 766 0 Ss pause 0xfffffe0007c23110 csh
764 682 764 0 Ss select 0xfffffe005724a840 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00540d18b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00540cf8b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00540cfcb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00540d00b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00540d04b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe00540d08b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe0007c3c4b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe0007c3c8b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe0007c3ccb0 getty
686 1 686 0 Ss nanslp 0xffffffff83724c80 cron
682 1 682 0 Ss select 0xfffffe0057234b40 sshd
495 1 495 0 Ss select 0xfffffe0057b047c0 syslogd
424 1 424 0 Ss wait 0xfffffe0058b7b000 devd
423 1 423 65 Ss select 0xfffffe0057234ec0 dhclient
338 1 338 0 Ss select 0xfffffe0057234cc0 dhclient
335 1 335 0 Ss select 0xfffffe0057b04740 dhclient
17 0 0 0 DL syncer 0xffffffff838423a0 [syncer]
16 0 0 0 DL vlruwt 0xfffffe00571fd040 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83840980 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100096 D sdflush 0xfffffe00570ccce8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838b35c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff8389b438 [dom0]
100080 D launds 0xffffffff8389b444 [laundry: dom0]
100081 D umarcl 0xffffffff81d59130 [uma]
7 0 0 0 DL - 0xffffffff834b9c30 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff83f7ea30 [pf purge]
5 0 0 0 DL waiting 0xffffffff845cb4e0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83484340 [doneq0]
100045 D - 0xffffffff834842c0 [async]
100076 D - 0xffffffff83484140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83896c60 [crypto]
100042 D crypto_ 0xfffffe00540ed230 [crypto returns 0]
100043 D crypto_ 0xfffffe00540ed280 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe00079bec88 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836cd600 [g_event]
100036 D - 0xffffffff836cd620 [g_up]
100037 D - 0xffffffff836cd640 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100031 I [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0054234040 [init]
10 0 0 0 DL audit_w 0xffffffff838976c0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836cdfe0 [swapper]
100005 D - 0xfffffe00540ded00 [softirq_0]
100006 D - 0xfffffe00540dec00 [softirq_1]
100007 D - 0xfffffe00540deb00 [if_io_tqg_0]
100008 D - 0xfffffe00540dea00 [if_io_tqg_1]
100009 D - 0xfffffe00540de900 [if_config_tqg_0]
100010 D - 0xfffffe00085ebe00 [pci_hp taskq]
100011 D - 0xfffffe00085ebd00 [kqueue_ctx taskq]
100014 D - 0xfffffe00085eba00 [thread taskq]
100016 D - 0xfffffe00085eb800 [aiod_kick taskq]
100017 D - 0xfffffe00085eb700 [deferred_unmount ta]
100018 D - 0xfffffe00085eb600 [inm_free taskq]
100019 D - 0xfffffe00085eb500 [in6m_free taskq]
100020 D - 0xfffffe00085eb400 [linuxkpi_irq_wq]
100021 D - 0xfffffe00085eb300 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00085eb300 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00085eb300 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00085eb300 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00085eb200 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00085eb200 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00085eb200 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00085eb200 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00085eb100 [firmware taskq]
100039 D - 0xfffffe00085eb000 [crypto_0]
100040 D - 0xfffffe00085eb000 [crypto_1]
100055 D - 0xfffffe00085ead00 [vtnet0 rxq 0]
100056 D - 0xfffffe00085eac00 [vtnet0 txq 0]
100057 D - 0xfffffe00085eab00 [vtnet0 rxq 1]
100058 D - 0xfffffe00085eaa00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0057235300 [virtio_balloon]
100066 D - 0xffffffff826f1460 [deadlkres]
100070 D - 0xfffffe0057bae200 [acpi_task_0]
100071 D - 0xfffffe0057bae200 [acpi_task_1]
100072 D - 0xfffffe0057bae200 [acpi_task_2]
100074 D - 0xfffffe00085ec100 [mca taskq]
100075 D - 0xfffffe00085eae00 [CAM taskq]
db> show all locks
Process 897 (syz-executor.0) thread 0xfffffe006d2a3000 (100189)
exclusive sleep mutex vtnet0-tx1 (vtnet0-tx1) r = 0 (0xfffffe0057582900) locked @ /syzkaller/managers/i386/kernel/sys/dev/virtio/network/if_vtnet.c:2747
exclusive rw udpinp (udpinp) r = 0 (0xfffffe0058db2560) locked @ /syzkaller/managers/i386/kernel/sys/netinet/udp_usrreq.c:1105
Process 772 (syz-executor.1) thread 0xfffffe0058b67740 (100094)
exclusive sx proctree (proctree) r = 0 (0xffffffff82c09c40) locked @ /syzkaller/managers/i386/kernel/sys/kern/kern_exit.c:1321
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4220
sysctloid 34934 2059K 35005
vtbuf 24 1968K 46
kobj 326 1304K 488
newblk 620 1179K 709
vfscache 3 1025K 3
pcb 33 676K 74
inodedep 62 535K 125
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
subproc 118 230K 967
vnet_data 2 224K 2
acpitask 1 224K 1
acpica 1674 184K 60830
tidhash 3 141K 3
filedesc 18 137K 135
vmem 3 134K 4
pagedep 15 132K 63
linker 352 130K 410
tfo_ccache 1 128K 1
IP reass 1 128K 1
DEVFS1 109 109K 126
sem 4 106K 4
gtaskqueue 18 98K 18
bus 985 81K 5155
mtx_pool 2 72K 2
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 512 64K 512
ddb_capture 1 64K 1
kdtrace 195 40K 1093
umtx 304 38K 304
temp 35 37K 1889
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 128 32K 138
msg 4 30K 4
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
ifaddr 67 19K 69
BPF 15 19K 16
ufs_mount 4 17K 5
proc 3 17K 3
LRO 16 17K 16
tty 16 16K 16
routetbl 130 16K 413
ithread 97 16K 97
bus-sc 34 15K 1687
lltable 44 14K 44
eventhandler 161 14K 161
ether_multi 157 13K 167
KTRACE 100 13K 100
ifnet 7 13K 7
kenv 95 12K 95
GEOM 61 11K 481
rman 86 11K 429
CAM queue 5 11K 1528
in6_multi 71 9K 71
dirrem 33 9K 61
bmsafemap 2 9K 93
rpc 4 9K 4
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
shmfd 1 8K 1
pfs_vncache 1 8K 1
kqueue 55 8K 906
audit_evclass 238 8K 300
taskqueue 63 7K 63
sglist 6 7K 6
CAM DEV 3 6K 510
cred 23 6K 228
plimit 20 5K 334
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 268 5K 268
pf_ifnet 10 5K 19
freefile 33 5K 59
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
DEVFSP 61 4K 66
diradd 30 4K 92
acpisem 28 4K 28
session 26 4K 36
kcovinfo 52 4K 52
pwddesc 51 4K 900
proc-args 80 4K 1961
mkdir 24 3K 106
terminal 11 3K 11
indirdep 10 3K 10
clone 9 3K 9
uidinfo 3 3K 7
selfd 35 3K 24607
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
ip6ndp 12 2K 15
sctp_ifa 14 2K 15
CC Mem 7 2K 25
Unitno 27 2K 49
tun 7 2K 7
CAM XPT 22 2K 543
lockf 15 2K 22
msi 12 2K 12
newdirblk 12 2K 53
in_multi 6 2K 8
select 12 2K 38
toponodes 6 2K 6
ipsecpolicy 2 2K 2
acpidev 20 2K 20
sctp_atcl 3 2K 14
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 14
NFSD session 1 1K 1
CAM periph 4 1K 271
sctp_timw 3 1K 3
sctp_ifn 6 1K 15
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 4
encap_export_host 12 1K 12
inpcbpolicy 19 1K 211
procdesc 4 1K 10
cdev 2 1K 2
osd 12 1K 38
netlink 2 1K 2
chacha20random 1 1K 1
biobuf 1 1K 1
vnodes 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
soname 7 1K 3658
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
lkpikmalloc 5 1K 6
cryptodev 2 1K 42
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
pmchooks 1 1K 1
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
sctp_atky 3 1K 18
sctp_vrf 1 1K 1
freework 1 1K 59
vnet 1 1K 1
pmc 1 1K 1
entropy 2 1K 38
acpiintr 1 1K 1
sctp_athm 3 1K 15
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
filecaps 1 1K 78
sctp_mcore 0 0K 0
sctp_socko 0 0K 1
sctp_iter 0 0K 12
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 12
sctp_aadr 0 0K 0
sctp_stro 0 0K 3
sctp_stri 0 0K 2
sctp_map 0 0K 8
tcp_do 0 0K 0
tcp_fsb 0 0K 0
mqdata 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
filemon 0 0K 0
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
ixl 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
fpukern_ctx 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
aesni_data 0 0K 0
xenbus 0 0K 0
vm_fictitious 0 0K 0
UMAHash 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 17
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 4
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freeblks 0 0K 58
freefrag 0 0K 2
allocindir 0 0K 0
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ktls_ocf 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 4
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 196
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 2
aio 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 13915
ioctlops 0 0K 98
eventfd 0 0K 3
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 646
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
pvscsi 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 0
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
SIIS driver 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
md_disk 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
ciss_data 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
aacraidcam 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
scsi_pass 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
nvme_da 0 0K 0
CAM CCB 0 0K 523
CAM ccb queue 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8320 1078 943582 0 254 38494208 0
mbuf 256 8636 7881 1431939 0 254 4228352 0
BUF TRIE 144 183 11633 535 0 62 1701504 0
malloc-384 384 4212 18 4277 0 30 1624320 0
RADIX NODE 144 11015 96 51760 0 62 1599984 0
malloc-128 128 11449 145 11467 0 126 1484032 0
malloc-4096 4096 327 3 568 0 2 1351680 0
UMA Slabs 0 112 10657 29 10657 0 126 1196832 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 16402 53 16402 0 254 921480 0
FFS inode 1160 503 22 562 0 8 609000 0
sctp_asoc 2256 0 255 3 0 254 575280 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
socket 960 39 469 1435 0 254 487680 0
256 Bucket 2048 185 23 3938 0 8 425984 0
malloc-65536 65536 4 1 12 0 1 327680 0
VM OBJECT 264 1157 43 16129 0 30 316800 0
sctp_ep 1176 3 257 10 0 254 305760 0
VNODE 448 540 90 601 0 30 282240 0
THREAD 1824 143 9 192 0 8 277248 0
sctp_chunk 152 0 1794 1344 0 254 272688 0
malloc-64 64 3856 239 4378 0 254 262080 0
malloc-2048 2048 14 106 1070 0 8 245760 0
malloc-16 16 14435 315 14495 0 254 236000 0
malloc-16384 16384 10 4 67 0 1 229376 0
DEVCTL 1024 23 197 148 0 0 225280 0
malloc-256 256 811 59 1085 0 62 222720 0
malloc-4096 4096 51 3 900 0 2 221184 0
malloc-65536 65536 1 2 65 0 1 196608 0
malloc-128 128 1321 198 28759 0 126 194432 0
sctp_raddr 736 0 264 3 0 254 194304 0
ertt_txseginfo 40 294 4554 8272 0 254 193920 0
UMA Zones 768 240 4 240 0 16 187392 0
malloc-32 32 5315 355 6028 0 254 181440 0
malloc-32768 32768 3 2 123 0 1 163840 0
FPU_save_area 832 145 35 2080 0 16 149760 0
FFS2 dinode 256 503 67 562 0 62 145920 0
MAP ENTRY 96 1286 226 46417 0 126 145152 0
S VFS Cache 104 1013 274 1092 0 126 133848 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-1024 1024 120 8 295 0 16 131072 0
unpcb 256 15 495 1188 0 254 130560 0
mbuf_packet 256 0 508 174 0 254 130048 0
ksiginfo 112 48 996 1943 0 126 116928 0
malloc-128 128 713 186 4358 0 126 115072 0
malloc-128 128 622 153 1269 0 126 99200 0
malloc-32768 32768 3 0 3 0 1 98304 0
PROC 1376 50 16 899 0 8 90816 0
UMA Kegs 384 227 6 227 0 30 89472 0
g_bio 408 0 210 4923 0 30 85680 0
filedesc0 1072 51 19 900 0 8 75040 0
malloc-8192 8192 7 2 110 0 1 73728 0
malloc-4096 4096 15 3 223 0 2 73728 0
64 Bucket 512 71 65 2009 0 30 69632 0
128 Bucket 1024 50 17 262 0 16 68608 0
malloc-64 64 788 283 1908 0 254 68544 0
malloc-64 64 586 485 1766 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-16384 16384 4 0 4 0 1 65536 0
malloc-4096 4096 12 4 492 0 2 65536 0
malloc-256 256 180 75 556 0 62 65280 0
malloc-256 256 139 56 595 0 62 49920 0
32 Bucket 256 66 129 439 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 13284 0 16 49152 0
malloc-16384 16384 1 2 161 0 1 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-2048 2048 10 14 258 0 8 49152 0
malloc-1024 1024 22 26 27 0 16 49152 0
malloc-1024 1024 4 44 527 0 16 49152 0
syncache 168 0 264 4 0 254 44352 0
pcpu-8 8 4687 433 4850 0 254 40960 0
sctp_readq 152 0 260 1 0 254 39520 0
udp_inpcb 424 8 82 173 0 30 38160 0
da_ccb 544 0 70 1350 0 16 38080 0
malloc-64 64 15 552 13545 0 254 36288 0
malloc-64 64 34 533 39 0 254 36288 0
malloc-64 64 279 288 26639 0 254 36288 0
malloc-64 64 23 544 287 0 254 36288 0
malloc-64 64 23 544 27 0 254 36288 0
tcp_bbr_map 128 85 194 170 0 126 35712 0
malloc-128 128 39 240 141 0 126 35712 0
malloc-128 128 43 236 76 0 126 35712 0
malloc-128 128 103 176 611 0 126 35712 0
malloc-128 128 74 205 83 0 126 35712 0
routing nhops 256 26 109 34 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 69 21 425 0 30 34560 0
malloc-384 384 67 23 67 0 30 34560 0
malloc-256 256 42 93 564 0 62 34560 0
malloc-256 256 60 75 69 0 62 34560 0
malloc-256 256 12 123 87 0 62 34560 0
malloc-256 256 55 80 1039 0 62 34560 0
malloc-256 256 51 84 306 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-4096 4096 4 4 10 0 2 32768 0
malloc-4096 4096 6 2 6 0 2 32768 0
malloc-2048 2048 3 13 15 0 8 32768 0
malloc-2048 2048 2 14 2 0 8 32768 0
malloc-2048 2048 9 7 54 0 8 32768 0
malloc-2048 2048 8 8 8 0 8 32768 0
malloc-1024 1024 2 30 42 0 16 32768 0
malloc-1024 1024 17 15 1015 0 16 32768 0
malloc-512 512 0 64 118 0 30 32768 0
malloc-512 512 3 61 15 0 30 32768 0
malloc-512 512 12 52 34 0 30 32768 0
malloc-512 512 0 64 14 0 30 32768 0
malloc-512 512 2 62 53 0 30 32768 0
malloc-512 512 4 60 5 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
sctp_stream_msg_out 112 0 288 1 0 254 32256 0
KNOTE 160 31 169 29466 0 62 32000 0
ttyinq 160 135 65 300 0 62 32000 0
Files 80 190 210 7382 0 126 32000 0
PGRP 120 26 238 36 0 126 31680 0
tcp_inpcb 1312 7 17 25 0 8 31488 0
clpbuf 2624 0 12 22 0 4 31488 0
tcp_bbr_pcb 832 2 34 4 0 16 29952 0
VMSPACE 616 34 14 889 0 16 29568 0
sctp_laddr 48 0 588 14 0 254 28224 0
malloc-32 32 358 524 3558 0 254 28224 0
16 Bucket 144 52 144 244 0 62 28224 0
4 Bucket 48 6 582 8 0 254 28224 0
udplite_inpcb 424 0 63 3 0 30 26712 0
TURNSTILE 136 153 36 153 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
ripcb 392 4 59 10 0 30 24696 0
malloc-8192 8192 3 0 3 0 1 24576 0
rl_entry 40 37 569 37 0 254 24240 0
PWD 40 18 588 140 0 254 24240 0
rtentry 168 30 114 34 0 62 24192 0
pipe 728 19 14 339 0 16 24024 0
8 Bucket 80 51 249 633 0 126 24000 0
malloc-384 384 11 49 11 0 30 23040 0
malloc-384 384 40 20 77 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 153 103 153 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udp_inpcb ports 32 4 626 34 0 254 20160 0
tcp_inpcb ports 32 4 626 6 0 254 20160 0
ertt 72 7 273 25 0 126 20160 0
malloc-32 32 45 585 67 0 254 20160 0
malloc-32 32 251 379 1027 0 254 20160 0
malloc-32 32 18 612 102 0 254 20160 0
malloc-32 32 31 599 190 0 254 20160 0
malloc-32 32 26 604 1062 0 254 20160 0
2 Bucket 32 51 579 317 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-8192 8192 0 2 26 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-1024 1024 5 11 6 0 16 16384 0
malloc-1024 1024 3 13 3 0 16 16384 0
malloc-512 512 1 31 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
vtnet_tx_hdr 24 1 667 468664 0 254 16032 0
malloc-16 16 483 517 3698 0 254 16000 0
kenv 258 17 43 1071 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
malloc-32 32 13 365 36 0 254 12096 0
malloc-16 16 11 739 99 0 254 12000 0
malloc-16 16 48 702 142 0 254 12000 0
malloc-16 16 72 678 28087 0 254 12000 0
malloc-16 16 42 708 1440 0 254 12000 0
malloc-16 16 4 746 5 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-384 384 1 29 1 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 0 2 1 0 2 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 232 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot
Dec 4, 2023, 12:45:32 PM12/4/23
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: 01e286b54190 pci_vendors: update to 2023-11-11
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=1614eb4ae80000
dashboard link: https://syzkaller.appspot.com/bug?extid=618d4f014f60c0bd06b4
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=12587db4e80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=1343718ce80000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+618d4f...@syzkaller.appspotmail.com
panic: vtnet_txq_offload_ctx: mbuf 0xfffffe006b13a700 start 14 offset 14 proto -1
cpuid = 1
time = 1701711765
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0007b4d8b0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0007b4da10
vpanic() at vpanic+0x271/frame 0xfffffe0007b4dbb0
panic() at panic+0xb5/frame 0xfffffe0007b4dc70
vtnet_txq_encap() at vtnet_txq_encap+0xa93/frame 0xfffffe0007b4ddf0
vtnet_txq_mq_start_locked() at vtnet_txq_mq_start_locked+0x2e0/frame 0xfffffe0007b4def0
vtnet_txq_mq_start() at vtnet_txq_mq_start+0xd9/frame 0xfffffe0007b4df30
ether_output_frame() at ether_output_frame+0x37d/frame 0xfffffe0007b4e010
ether_output() at ether_output+0x1234/frame 0xfffffe0007b4e180
ip_output_send() at ip_output_send+0x301/frame 0xfffffe0007b4e1f0
ip_output() at ip_output+0x2ba9/frame 0xfffffe0007b4e3f0
udp_send() at udp_send+0x1a0b/frame 0xfffffe0007b4e630
udp6_send() at udp6_send+0x613/frame 0xfffffe0007b4e920
sosend_dgram() at sosend_dgram+0x68b/frame 0xfffffe0007b4e9a0
sousrsend() at sousrsend+0x116/frame 0xfffffe0007b4ea30
kern_sendit() at kern_sendit+0x5a2/frame 0xfffffe0007b4eba0
sendit() at sendit+0x157/frame 0xfffffe0007b4ebf0
sys_sendto() at sys_sendto+0x181/frame 0xfffffe0007b4ed10
amd64_syscall() at amd64_syscall+0x47a/frame 0xfffffe0007b4ef30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0007b4ef30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x233e7a, rsp = 0x8209ddb28, rbp = 0x8209ddb40 ---
KDB: enter: panic
[ thread pid 773 tid 100090 ]
Stopped at kdb_enter+0x6e: movq $0,0x21936a7(%rip)
rax 0x12
rcx 0xfffffe00033eee30
rdx 0xdffff7c000000000
rbx 0xffffffff826edac0 .str.28
rsp 0xfffffe0007b4d9f0
rbp 0xfffffe0007b4da10
rsi 0x1
rdi 0
r14 0xffffffff826edac0 .str.28
r15 0
rip 0xffffffff815c796e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db> show proc
Process 773 (syz-executor3888236) at 0xfffffe00542515c0:
ABI: FreeBSD ELF64
flag: 0x10004000 flag2: 0
arguments: ./syz-executor3888236081
reaper: 0xfffffe0054250040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0054256c08
(map 0xfffffe0054256c08)
(map.pmap 0xfffffe0054256cc8)
(pmap 0xfffffe0054256d38)
threads: 1
100090 Run CPU 1 syz-executor3888236
771 769 771 0 Ss pause 0xfffffe0058d56610 csh
769 682 769 0 Ss select 0xfffffe0007876bc0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00574f48b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00543970b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe005750bcb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe005750c4b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe005750ccb0 getty
743 1 743 0 Ss+ ttyin 0xfffffe00543978b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe00543980b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe00543988b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe00543990b0 getty
738 1 18 0 S+ piperd 0xfffffe0058adc6c0 logger
737 736 18 0 S+ nanslp 0xffffffff8373c3c0 sleep
736 1 18 0 S+ wait 0xfffffe0054250b00 sh
686 1 686 0 Ss nanslp 0xffffffff8373c3c1 cron
682 1 682 0 Ss select 0xfffffe0007877840 sshd
495 1 495 0 Ss select 0xfffffe00078773c0 syslogd
424 1 424 0 Ss select 0xfffffe00579220c0 devd
423 1 423 65 Ss select 0xfffffe0057921840 dhclient
338 1 338 0 Ss select 0xfffffe0007877940 dhclient
335 1 335 0 Ss select 0xfffffe0007877ec0 dhclient
17 0 0 0 DL syncer 0xffffffff83859b20 [syncer]
16 0 0 0 DL vlruwt 0xfffffe005720e040 [vnlru]
9 0 0 0 DL psleep 0xffffffff838cad40 [vmdaemon]
100080 D launds 0xffffffff838b2bc4 [laundry: dom0]
100081 D umarcl 0xffffffff81d5a6d0 [uma]
7 0 0 0 DL - 0xffffffff834b9c10 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84575a30 [pf purge]
5 0 0 0 DL waiting 0xffffffff842484e0 [sctp_iterator]
100042 D crypto_ 0xfffffe00571b2030 [crypto returns 0]
100043 D crypto_ 0xfffffe00571b2080 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe00085f4488 [sequencer 00]
100036 D - 0xffffffff836e4d40 [g_up]
100037 D - 0xffffffff836e4d60 [g_down]
10 0 0 0 DL audit_w 0xffffffff838aee40 [audit]
100005 D - 0xfffffe0054270000 [softirq_0]
100006 D - 0xfffffe005426fe00 [softirq_1]
100007 D - 0xfffffe005426fd00 [if_io_tqg_0]
100008 D - 0xfffffe005426fc00 [if_io_tqg_1]
100009 D - 0xfffffe005426fb00 [if_config_tqg_0]
100010 D - 0xfffffe00085fa000 [pci_hp taskq]
100011 D - 0xfffffe00085f9e00 [kqueue_ctx taskq]
100014 D - 0xfffffe00085f9b00 [thread taskq]
100016 D - 0xfffffe00085f9900 [aiod_kick taskq]
100017 D - 0xfffffe00085f9800 [deferred_unmount ta]
100018 D - 0xfffffe00085f9700 [inm_free taskq]
100019 D - 0xfffffe00085f9600 [in6m_free taskq]
100020 D - 0xfffffe00085f9500 [linuxkpi_irq_wq]
100021 D - 0xfffffe00085f9400 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00085f9400 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00085f9400 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00085f9400 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00085f9300 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00085f9300 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00085f9300 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00085f9300 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00085f9100 [firmware taskq]
100039 D - 0xfffffe00085f8e00 [crypto_0]
100040 D - 0xfffffe00085f8e00 [crypto_1]
100055 D - 0xfffffe0057293e00 [vtnet0 rxq 0]
100056 D - 0xfffffe0057293d00 [vtnet0 txq 0]
100057 D - 0xfffffe0057293c00 [vtnet0 rxq 1]
100058 D - 0xfffffe0057293b00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0007dd7e00 [virtio_balloon]
100066 D - 0xffffffff826f2d21 [deadlkres]
100070 D - 0xfffffe005798ec00 [acpi_task_0]
100071 D - 0xfffffe005798ec00 [acpi_task_1]
100072 D - 0xfffffe005798ec00 [acpi_task_2]
100074 D - 0xfffffe00085fa100 [mca taskq]
100075 D - 0xfffffe00085f8c00 [CAM taskq]
db> show all locks
Process 773 (syz-executor3888236) thread 0xfffffe00574fa000 (100090)
exclusive sleep mutex vtnet0-tx1 (vtnet0-tx1) r = 0 (0xfffffe0007db4b00) locked @ /syzkaller/managers/main/kernel/sys/dev/virtio/network/if_vtnet.c:2746
exclusive rw udpinp (udpinp) r = 0 (0xfffffe0058b888e0) locked @ /syzkaller/managers/main/kernel/sys/netinet/udp_usrreq.c:1103
Process 12 (intr) thread 0xfffffe0054316740 (100031)
shared rm in6_ifaddr_lock (in6_ifaddr_lock) r = 0 (0xffffffff8387fe00) locked @ /syzkaller/managers/main/kernel/sys/netinet6/in6.c:1616
vfscache 3 1025K 3
pcb 23 669K 42
inodedep 49 530K 71
pagedep 14 132K 18
linker 352 130K 386
DEVFS1 105 105K 114
kdtrace 161 33K 895
DEVFS3 124 31K 134
KTRACE 100 13K 100
kenv 95 12K 95
ifaddr 30 12K 32
GEOM 61 11K 481
routetbl 50 11K 176
plimit 17 5K 322
ifnet 3 5K 3
evdev 4 4K 4
acpisem 28 4K 28
ether_multi 40 4K 50
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
kqueue 40 3K 776
pwddesc 40 3K 774
clone 9 3K 9
uidinfo 3 3K 8
proc-args 62 3K 1696
Unitno 27 2K 41
indirdep 3 1K 3
CC Mem 3 1K 7
nhops 6 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
cdev 2 1K 2
osd 8 1K 20
sctp_ifn 2 1K 6
mld 2 1K 2
igmp 2 1K 2
loginclass 3 1K 7
cryptodev 2 1K 49
tun 3 1K 3
sctp_vrf 1 1K 1
freework 1 1K 26
acpiintr 1 1K 1
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_atky 0 0K 0
sctp_atcl 0 0K 0
sctp_a_it 0 0K 4
sctp_aadr 0 0K 0
sctp_stro 0 0K 0
sctp_stri 0 0K 0
sctp_map 0 0K 0
savedino 0 0K 15
freeblks 0 0K 25
freefrag 0 0K 1
ip6opt 0 0K 3
ioctlops 0 0K 86
eventfd 0 0K 0
mbuf_jumbo_page 4096 8320 1078 15468 0 254 38494208 0
mbuf 256 8583 1079 18624 0 254 2473472 0
BUF TRIE 144 192 11624 546 0 62 1701504 0
malloc-384 384 4118 52 4119 0 30 1601280 0
malloc-128 128 11749 124 11841 0 126 1519744 0
malloc-4096 4096 327 3 489 0 2 1351680 0
UMA Slabs 0 112 10684 2 10684 0 126 1196832 0
FFS inode 1168 499 19 508 0 8 605024 0
socket 960 19 489 1315 0 254 487680 0
malloc-65536 65536 6 0 6 0 1 393216 0
256 Bucket 2048 120 24 851 0 8 294912 0
malloc-64 64 4290 309 17197 0 254 294336 0
malloc-256 256 1070 55 1861 0 62 288000 0
malloc-2048 2048 6 122 1038 0 8 262144 0
VM OBJECT 264 924 66 14116 0 30 261360 0
VNODE 448 529 47 540 0 30 258048 0
malloc-16 16 14620 380 17611 0 254 240000 0
THREAD 1824 120 8 120 0 8 233472 0
DEVCTL 1024 0 220 123 0 0 225280 0
malloc-4096 4096 40 4 774 0 2 180224 0
malloc-128 128 1211 184 28428 0 126 178560 0
malloc-1024 1024 129 15 138 0 16 147456 0
malloc-128 128 976 171 5117 0 126 146816 0
FFS2 dinode 256 499 71 508 0 62 145920 0
malloc-65536 65536 0 2 46 0 1 131072 0
unpcb 256 7 503 1158 0 254 130560 0
mbuf_packet 256 0 508 117 0 254 130048 0
MAP ENTRY 96 893 367 40283 0 126 120960 0
FPU_save_area 832 122 22 134 0 16 119808 0
ksiginfo 112 43 1001 58 0 126 116928 0
S VFS Cache 104 966 48 1005 0 126 105456 0
malloc-32768 32768 1 2 121 0 1 98304 0
malloc-256 256 210 105 464 0 62 80640 0
malloc-8192 8192 8 1 10 0 1 73728 0
malloc-4096 4096 18 0 29 0 2 73728 0
g_bio 408 0 180 4502 0 30 73440 0
malloc-64 64 534 537 1679 0 254 68544 0
filedesc0 1072 40 16 774 0 8 60032 0
malloc-8192 8192 6 1 107 0 1 57344 0
64 Bucket 512 67 37 955 0 30 53248 0
malloc-64 64 263 556 1037 0 254 52416 0
32 Bucket 256 59 136 412 0 62 49920 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-1024 1024 8 40 1412 0 16 49152 0
syncache 168 0 264 5 0 254 44352 0
malloc-8192 8192 4 1 30 0 1 40960 0
pipe 728 7 48 282 0 16 40040 0
udp_inpcb 424 7 83 129 0 30 38160 0
pcpu-8 8 4267 341 4295 0 254 36864 0
malloc-64 64 47 520 275 0 254 36288 0
malloc-64 64 14 553 13248 0 254 36288 0
malloc-64 64 59 508 1356 0 254 36288 0
malloc-64 64 65 502 837 0 254 36288 0
malloc-64 64 116 451 121 0 254 36288 0
malloc-128 128 7 272 71 0 126 35712 0
malloc-128 128 29 250 40 0 126 35712 0
malloc-128 128 76 203 166 0 126 35712 0
malloc-128 128 58 221 200 0 126 35712 0
malloc-128 128 59 220 313 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
malloc-384 384 60 30 83 0 30 34560 0
malloc-384 384 81 9 81 0 30 34560 0
malloc-256 256 2 133 103 0 62 34560 0
malloc-256 256 30 105 321 0 62 34560 0
malloc-256 256 60 75 499 0 62 34560 0
malloc-256 256 30 105 393 0 62 34560 0
malloc-256 256 17 118 115 0 62 34560 0
malloc-256 256 13 122 269 0 62 34560 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-4096 4096 4 4 754 0 2 32768 0
malloc-4096 4096 7 1 12 0 2 32768 0
malloc-2048 2048 2 14 39 0 8 32768 0
malloc-2048 2048 5 11 14 0 8 32768 0
malloc-2048 2048 0 16 50 0 8 32768 0
malloc-2048 2048 7 9 7 0 8 32768 0
malloc-2048 2048 5 11 196 0 8 32768 0
malloc-1024 1024 0 32 4 0 16 32768 0
malloc-1024 1024 10 22 11 0 16 32768 0
malloc-1024 1024 4 28 8 0 16 32768 0
malloc-1024 1024 5 27 175 0 16 32768 0
malloc-1024 1024 10 22 10 0 16 32768 0
malloc-1024 1024 3 29 3 0 16 32768 0
malloc-512 512 13 51 19 0 30 32768 0
malloc-512 512 0 64 127 0 30 32768 0
malloc-512 512 1 63 11 0 30 32768 0
malloc-512 512 4 60 53 0 30 32768 0
clpbuf 2624 0 12 27 0 4 31488 0
VMSPACE 616 23 25 758 0 16 29568 0
malloc-32 32 283 599 4423 0 254 28224 0
16 Bucket 144 48 148 254 0 62 28224 0
4 Bucket 48 6 582 10 0 254 28224 0
da_ccb 544 0 49 1259 0 16 26656 0
TURNSTILE 136 129 60 129 0 62 25704 0
malloc-4096 4096 5 1 5 0 2 24576 0
rl_entry 40 35 571 35 0 254 24240 0
PWD 40 10 596 99 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
Files 80 72 228 6514 0 126 24000 0
8 Bucket 80 54 246 526 0 126 24000 0
tcp_inpcb 1312 3 15 7 0 8 23616 0
malloc-384 384 1 59 346 0 30 23040 0
malloc-384 384 34 26 37 0 30 23040 0
malloc-384 384 4 56 4 0 30 23040 0
ertt 72 3 277 7 0 126 20160 0
malloc-32 32 27 603 176 0 254 20160 0
malloc-32 32 54 576 197 0 254 20160 0
malloc-32 32 37 593 43 0 254 20160 0
malloc-32 32 74 556 129 0 254 20160 0
malloc-32 32 16 614 17 0 254 20160 0
2 Bucket 32 47 583 287 0 254 20160 0
KNOTE 160 0 125 8 0 62 20000 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-512 512 0 32 1 0 30 16384 0
kenv 258 17 43 1069 0 30 15480 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
malloc-32 32 90 288 636 0 254 12096 0
malloc-16 16 22 728 1220 0 254 12000 0
malloc-16 16 15 735 47 0 254 12000 0
malloc-16 16 42 708 249 0 254 12000 0
malloc-16 16 23 727 38 0 254 12000 0
malloc-16 16 31 719 158 0 254 12000 0
malloc-16 16 284 466 28025 0 254 12000 0
malloc-16 16 7 493 9 0 254 8000 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
tcp_bbr_map 128 0 0 0 0 126 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1176 0 0 0 0 254 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-4096 4096 0 0 0 0 2 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
HEAD commit: 01e286b54190 pci_vendors: update to 2023-11-11
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=1614eb4ae80000
dashboard link: https://syzkaller.appspot.com/bug?extid=618d4f014f60c0bd06b4
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=12587db4e80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=1343718ce80000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+618d4f...@syzkaller.appspotmail.com
cpuid = 1
time = 1701711765
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0007b4d8b0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0007b4da10
vpanic() at vpanic+0x271/frame 0xfffffe0007b4dbb0
panic() at panic+0xb5/frame 0xfffffe0007b4dc70
vtnet_txq_encap() at vtnet_txq_encap+0xa93/frame 0xfffffe0007b4ddf0
vtnet_txq_mq_start_locked() at vtnet_txq_mq_start_locked+0x2e0/frame 0xfffffe0007b4def0
vtnet_txq_mq_start() at vtnet_txq_mq_start+0xd9/frame 0xfffffe0007b4df30
ether_output_frame() at ether_output_frame+0x37d/frame 0xfffffe0007b4e010
ether_output() at ether_output+0x1234/frame 0xfffffe0007b4e180
ip_output_send() at ip_output_send+0x301/frame 0xfffffe0007b4e1f0
ip_output() at ip_output+0x2ba9/frame 0xfffffe0007b4e3f0
udp_send() at udp_send+0x1a0b/frame 0xfffffe0007b4e630
udp6_send() at udp6_send+0x613/frame 0xfffffe0007b4e920
sosend_dgram() at sosend_dgram+0x68b/frame 0xfffffe0007b4e9a0
sousrsend() at sousrsend+0x116/frame 0xfffffe0007b4ea30
kern_sendit() at kern_sendit+0x5a2/frame 0xfffffe0007b4eba0
sendit() at sendit+0x157/frame 0xfffffe0007b4ebf0
sys_sendto() at sys_sendto+0x181/frame 0xfffffe0007b4ed10
amd64_syscall() at amd64_syscall+0x47a/frame 0xfffffe0007b4ef30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0007b4ef30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x233e7a, rsp = 0x8209ddb28, rbp = 0x8209ddb40 ---
KDB: enter: panic
[ thread pid 773 tid 100090 ]
Stopped at kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
rax 0x12
rcx 0xfffffe00033eee30
rdx 0xdffff7c000000000
rbx 0xffffffff826edac0 .str.28
rsp 0xfffffe0007b4d9f0
rbp 0xfffffe0007b4da10
rsi 0x1
rdi 0
r8 0
r9 0xffffffff
r10 0x1
r11 0
r12 0
r13 0xfffffe00574fa000
r9 0xffffffff
r10 0x1
r11 0
r12 0
r14 0xffffffff826edac0 .str.28
r15 0
rip 0xffffffff815c796e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db> show proc
Process 773 (syz-executor3888236) at 0xfffffe00542515c0:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 771 at 0xfffffe0058d56560
uid: 0 gids: 0, 0, 5
ABI: FreeBSD ELF64
flag: 0x10004000 flag2: 0
arguments: ./syz-executor3888236081
reaper: 0xfffffe0054250040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0054256c08
(map 0xfffffe0054256c08)
(map.pmap 0xfffffe0054256cc8)
(pmap 0xfffffe0054256d38)
threads: 1
100090 Run CPU 1 syz-executor3888236
db> ps
pid ppid pgrp uid state wmesg wchan cmd
773 771 771 0 R CPU 1 syz-executor3888236
pid ppid pgrp uid state wmesg wchan cmd
771 769 771 0 Ss pause 0xfffffe0058d56610 csh
769 682 769 0 Ss select 0xfffffe0007876bc0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00574f48b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00543970b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe005750bcb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe005750c4b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe005750ccb0 getty
743 1 743 0 Ss+ ttyin 0xfffffe00543978b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe00543980b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe00543988b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe00543990b0 getty
738 1 18 0 S+ piperd 0xfffffe0058adc6c0 logger
737 736 18 0 S+ nanslp 0xffffffff8373c3c0 sleep
736 1 18 0 S+ wait 0xfffffe0054250b00 sh
686 1 686 0 Ss nanslp 0xffffffff8373c3c1 cron
682 1 682 0 Ss select 0xfffffe0007877840 sshd
495 1 495 0 Ss select 0xfffffe00078773c0 syslogd
424 1 424 0 Ss select 0xfffffe00579220c0 devd
423 1 423 65 Ss select 0xfffffe0057921840 dhclient
338 1 338 0 Ss select 0xfffffe0007877940 dhclient
335 1 335 0 Ss select 0xfffffe0007877ec0 dhclient
17 0 0 0 DL syncer 0xffffffff83859b20 [syncer]
16 0 0 0 DL vlruwt 0xfffffe005720e040 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83858100 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100093 D sdflush 0xfffffe0058ba8ce8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838cad40 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff838b2bb8 [dom0]
100080 D launds 0xffffffff838b2bc4 [laundry: dom0]
100081 D umarcl 0xffffffff81d5a6d0 [uma]
7 0 0 0 DL - 0xffffffff834b9c10 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84575a30 [pf purge]
5 0 0 0 DL waiting 0xffffffff842484e0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83484340 [doneq0]
100045 D - 0xffffffff834842c0 [async]
100076 D - 0xffffffff83484140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff838ae3e0 [crypto]
100044 D - 0xffffffff83484340 [doneq0]
100045 D - 0xffffffff834842c0 [async]
100076 D - 0xffffffff83484140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100042 D crypto_ 0xfffffe00571b2030 [crypto returns 0]
100043 D crypto_ 0xfffffe00571b2080 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe00085f4488 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836e4d20 [g_event]
100036 D - 0xffffffff836e4d40 [g_up]
100037 D - 0xffffffff836e4d60 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100029 I [clock (0)]
100030 I [clock (1)]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100031 Run CPU 0 [swi1: netisr 0]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0054250040 [init]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
10 0 0 0 DL audit_w 0xffffffff838aee40 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836e5700 [swapper]
100005 D - 0xfffffe0054270000 [softirq_0]
100006 D - 0xfffffe005426fe00 [softirq_1]
100007 D - 0xfffffe005426fd00 [if_io_tqg_0]
100008 D - 0xfffffe005426fc00 [if_io_tqg_1]
100009 D - 0xfffffe005426fb00 [if_config_tqg_0]
100010 D - 0xfffffe00085fa000 [pci_hp taskq]
100011 D - 0xfffffe00085f9e00 [kqueue_ctx taskq]
100014 D - 0xfffffe00085f9b00 [thread taskq]
100016 D - 0xfffffe00085f9900 [aiod_kick taskq]
100017 D - 0xfffffe00085f9800 [deferred_unmount ta]
100018 D - 0xfffffe00085f9700 [inm_free taskq]
100019 D - 0xfffffe00085f9600 [in6m_free taskq]
100020 D - 0xfffffe00085f9500 [linuxkpi_irq_wq]
100021 D - 0xfffffe00085f9400 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00085f9400 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00085f9400 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00085f9400 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00085f9300 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00085f9300 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00085f9300 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00085f9300 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00085f9100 [firmware taskq]
100039 D - 0xfffffe00085f8e00 [crypto_0]
100040 D - 0xfffffe00085f8e00 [crypto_1]
100055 D - 0xfffffe0057293e00 [vtnet0 rxq 0]
100056 D - 0xfffffe0057293d00 [vtnet0 txq 0]
100057 D - 0xfffffe0057293c00 [vtnet0 rxq 1]
100058 D - 0xfffffe0057293b00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0007dd7e00 [virtio_balloon]
100066 D - 0xffffffff826f2d21 [deadlkres]
100070 D - 0xfffffe005798ec00 [acpi_task_0]
100071 D - 0xfffffe005798ec00 [acpi_task_1]
100072 D - 0xfffffe005798ec00 [acpi_task_2]
100074 D - 0xfffffe00085fa100 [mca taskq]
100075 D - 0xfffffe00085f8c00 [CAM taskq]
db> show all locks
Process 773 (syz-executor3888236) thread 0xfffffe00574fa000 (100090)
exclusive sleep mutex vtnet0-tx1 (vtnet0-tx1) r = 0 (0xfffffe0007db4b00) locked @ /syzkaller/managers/main/kernel/sys/dev/virtio/network/if_vtnet.c:2746
exclusive rw udpinp (udpinp) r = 0 (0xfffffe0058b888e0) locked @ /syzkaller/managers/main/kernel/sys/netinet/udp_usrreq.c:1103
Process 12 (intr) thread 0xfffffe0054316740 (100031)
shared rm in6_ifaddr_lock (in6_ifaddr_lock) r = 0 (0xffffffff8387fe00) locked @ /syzkaller/managers/main/kernel/sys/netinet6/in6.c:1616
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4217
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
sysctloid 34934 2059K 35005
vtbuf 24 1968K 46
kobj 326 1304K 488
newblk 829 1231K 841
vtbuf 24 1968K 46
kobj 326 1304K 488
vfscache 3 1025K 3
pcb 23 669K 42
inodedep 49 530K 71
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vnet_data 2 224K 2
acpitask 1 224K 1
subproc 107 186K 841
acpitask 1 224K 1
acpica 1674 184K 60830
tidhash 3 141K 3
vmem 3 134K 4
tidhash 3 141K 3
pagedep 14 132K 18
linker 352 130K 386
tfo_ccache 1 128K 1
IP reass 1 128K 1
sem 4 106K 4
IP reass 1 128K 1
DEVFS1 105 105K 114
gtaskqueue 18 98K 18
bus 985 81K 5155
mtx_pool 2 72K 2
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 512 64K 512
ddb_capture 1 64K 1
temp 18 37K 1566
bus 985 81K 5155
mtx_pool 2 72K 2
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 512 64K 512
ddb_capture 1 64K 1
kdtrace 161 33K 895
hostcache 1 32K 1
shm 1 32K 1
umtx 256 32K 256
shm 1 32K 1
DEVFS3 124 31K 134
msg 4 30K 4
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
BPF 10 18K 10
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
proc 3 17K 3
ithread 97 16K 97
bus-sc 34 15K 1687
eventhandler 161 14K 161
bus-sc 34 15K 1687
KTRACE 100 13K 100
kenv 95 12K 95
ifaddr 30 12K 32
GEOM 61 11K 481
routetbl 50 11K 176
rman 86 11K 429
CAM queue 5 11K 1528
bmsafemap 4 9K 40
CAM queue 5 11K 1528
rpc 4 9K 4
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
shmfd 1 8K 1
pfs_vncache 1 8K 1
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 238 8K 300
taskqueue 63 7K 63
sglist 6 7K 6
CAM DEV 3 6K 510
cred 23 6K 274
taskqueue 63 7K 63
sglist 6 7K 6
CAM DEV 3 6K 510
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 268 5K 268
dirrem 17 5K 28
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 268 5K 268
plimit 17 5K 322
ifnet 3 5K 3
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
filedesc 1 4K 1
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
acpisem 28 4K 28
ether_multi 40 4K 50
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
kqueue 40 3K 776
pwddesc 40 3K 774
clone 9 3K 9
uidinfo 3 3K 8
proc-args 62 3K 1696
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
selfd 27 2K 12723
io_apic 1 2K 1
ipsec-saq 2 2K 2
Unitno 27 2K 41
CAM XPT 22 2K 543
lockf 15 2K 22
msi 12 2K 12
lockf 15 2K 22
msi 12 2K 12
toponodes 6 2K 6
ipsecpolicy 2 2K 2
acpidev 20 2K 20
ipsecpolicy 2 2K 2
acpidev 20 2K 20
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
vnodemarker 2 1K 8
sahead 1 1K 1
secasvar 1 1K 1
NFSD session 1 1K 1
select 7 1K 29
CAM periph 4 1K 271
ipsec 3 1K 3
indirdep 3 1K 3
CC Mem 3 1K 7
nhops 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
cdev 2 1K 2
osd 8 1K 20
netlink 2 1K 2
chacha20random 1 1K 1
biobuf 1 1K 1
inpcbpolicy 11 1K 140
chacha20random 1 1K 1
biobuf 1 1K 1
sctp_ifn 2 1K 6
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFSP 4 1K 9
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
CAM SIM 2 1K 2
feeder 7 1K 7
loginclass 3 1K 7
prison 6 1K 6
lkpikmalloc 5 1K 6
soname 5 1K 3330
lkpikmalloc 5 1K 6
cryptodev 2 1K 49
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
procdesc 1 1K 6
apmdev 1 1K 1
atkbddev 2 1K 2
pmchooks 1 1K 1
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
filecaps 4 1K 66
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
tun 3 1K 3
sctp_vrf 1 1K 1
freework 1 1K 26
vnet 1 1K 1
pmc 1 1K 1
entropy 2 1K 35
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 0
filemon 0 0K 0
tcp_fsb 0 0K 0
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_athm 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_atky 0 0K 0
sctp_atcl 0 0K 0
sctp_a_it 0 0K 4
sctp_aadr 0 0K 0
sctp_stro 0 0K 0
sctp_stri 0 0K 0
sctp_map 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
esp 0 0K 0
ah 0 0K 0
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 2
jfsync 0 0K 0
jtrunc 0 0K 0
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefile 0 0K 9
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freeblks 0 0K 25
freefrag 0 0K 1
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
LRO 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 195
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 4
export_host 0 0K 0
aio 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 13554
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
ioctlops 0 0K 86
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 649
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
kcovinfo 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
mbuf 256 8583 1079 18624 0 254 2473472 0
BUF TRIE 144 192 11624 546 0 62 1701504 0
malloc-384 384 4118 52 4119 0 30 1601280 0
malloc-128 128 11749 124 11841 0 126 1519744 0
malloc-4096 4096 327 3 489 0 2 1351680 0
UMA Slabs 0 112 10684 2 10684 0 126 1196832 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 15488 103 15488 0 254 873096 0
FFS inode 1168 499 19 508 0 8 605024 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
RADIX NODE 144 3281 214 23831 0 62 503280 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
socket 960 19 489 1315 0 254 487680 0
malloc-65536 65536 6 0 6 0 1 393216 0
256 Bucket 2048 120 24 851 0 8 294912 0
malloc-64 64 4290 309 17197 0 254 294336 0
malloc-256 256 1070 55 1861 0 62 288000 0
malloc-2048 2048 6 122 1038 0 8 262144 0
VM OBJECT 264 924 66 14116 0 30 261360 0
VNODE 448 529 47 540 0 30 258048 0
malloc-16 16 14620 380 17611 0 254 240000 0
THREAD 1824 120 8 120 0 8 233472 0
DEVCTL 1024 0 220 123 0 0 225280 0
UMA Zones 768 240 4 240 0 16 187392 0
malloc-32 32 5331 339 6101 0 254 181440 0
malloc-4096 4096 40 4 774 0 2 180224 0
malloc-128 128 1211 184 28428 0 126 178560 0
malloc-1024 1024 129 15 138 0 16 147456 0
malloc-128 128 976 171 5117 0 126 146816 0
FFS2 dinode 256 499 71 508 0 62 145920 0
malloc-65536 65536 0 2 46 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 0 2 8 0 1 131072 0
unpcb 256 7 503 1158 0 254 130560 0
mbuf_packet 256 0 508 117 0 254 130048 0
MAP ENTRY 96 893 367 40283 0 126 120960 0
FPU_save_area 832 122 22 134 0 16 119808 0
ksiginfo 112 43 1001 58 0 126 116928 0
S VFS Cache 104 966 48 1005 0 126 105456 0
malloc-32768 32768 1 2 121 0 1 98304 0
malloc-32768 32768 3 0 3 0 1 98304 0
PROC 1376 39 27 773 0 8 90816 0
UMA Kegs 384 227 6 227 0 30 89472 0
128 Bucket 1024 41 42 236 0 16 84992 0
malloc-256 256 210 105 464 0 62 80640 0
malloc-8192 8192 8 1 10 0 1 73728 0
malloc-4096 4096 18 0 29 0 2 73728 0
g_bio 408 0 180 4502 0 30 73440 0
malloc-64 64 534 537 1679 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
filedesc0 1072 40 16 774 0 8 60032 0
malloc-8192 8192 6 1 107 0 1 57344 0
64 Bucket 512 67 37 955 0 30 53248 0
malloc-64 64 263 556 1037 0 254 52416 0
32 Bucket 256 59 136 412 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 12073 0 16 49152 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-1024 1024 8 40 1412 0 16 49152 0
syncache 168 0 264 5 0 254 44352 0
malloc-8192 8192 4 1 30 0 1 40960 0
pipe 728 7 48 282 0 16 40040 0
udp_inpcb 424 7 83 129 0 30 38160 0
pcpu-8 8 4267 341 4295 0 254 36864 0
malloc-64 64 47 520 275 0 254 36288 0
malloc-64 64 14 553 13248 0 254 36288 0
malloc-64 64 59 508 1356 0 254 36288 0
malloc-64 64 65 502 837 0 254 36288 0
malloc-64 64 116 451 121 0 254 36288 0
malloc-128 128 7 272 71 0 126 35712 0
malloc-128 128 29 250 40 0 126 35712 0
malloc-128 128 76 203 166 0 126 35712 0
malloc-128 128 58 221 200 0 126 35712 0
malloc-128 128 59 220 313 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 52 38 71 0 30 34560 0
malloc-384 384 60 30 83 0 30 34560 0
malloc-384 384 81 9 81 0 30 34560 0
malloc-256 256 2 133 103 0 62 34560 0
malloc-256 256 30 105 321 0 62 34560 0
malloc-256 256 60 75 499 0 62 34560 0
malloc-256 256 30 105 393 0 62 34560 0
malloc-256 256 17 118 115 0 62 34560 0
malloc-256 256 13 122 269 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-4096 4096 4 4 754 0 2 32768 0
malloc-4096 4096 7 1 12 0 2 32768 0
malloc-2048 2048 2 14 2 0 8 32768 0
malloc-2048 2048 3 13 3 0 8 32768 0
malloc-2048 2048 2 14 39 0 8 32768 0
malloc-2048 2048 5 11 14 0 8 32768 0
malloc-2048 2048 0 16 50 0 8 32768 0
malloc-2048 2048 7 9 7 0 8 32768 0
malloc-2048 2048 5 11 196 0 8 32768 0
malloc-1024 1024 0 32 4 0 16 32768 0
malloc-1024 1024 10 22 11 0 16 32768 0
malloc-1024 1024 4 28 8 0 16 32768 0
malloc-1024 1024 5 27 175 0 16 32768 0
malloc-1024 1024 10 22 10 0 16 32768 0
malloc-1024 1024 3 29 3 0 16 32768 0
malloc-512 512 13 51 19 0 30 32768 0
malloc-512 512 0 64 127 0 30 32768 0
malloc-512 512 1 63 11 0 30 32768 0
malloc-512 512 4 60 53 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 20 244 31 0 126 31680 0
clpbuf 2624 0 12 27 0 4 31488 0
VMSPACE 616 23 25 758 0 16 29568 0
malloc-32 32 283 599 4423 0 254 28224 0
16 Bucket 144 48 148 254 0 62 28224 0
4 Bucket 48 6 582 10 0 254 28224 0
da_ccb 544 0 49 1259 0 16 26656 0
TURNSTILE 136 129 60 129 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
ripcb 392 1 62 4 0 30 24696 0
malloc-4096 4096 5 1 5 0 2 24576 0
rl_entry 40 35 571 35 0 254 24240 0
PWD 40 10 596 99 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
Files 80 72 228 6514 0 126 24000 0
8 Bucket 80 54 246 526 0 126 24000 0
tcp_inpcb 1312 3 15 7 0 8 23616 0
malloc-384 384 1 59 346 0 30 23040 0
malloc-384 384 34 26 37 0 30 23040 0
malloc-384 384 4 56 4 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 129 127 129 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udp_inpcb ports 32 4 626 41 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
malloc-32 32 27 603 176 0 254 20160 0
malloc-32 32 54 576 197 0 254 20160 0
malloc-32 32 37 593 43 0 254 20160 0
malloc-32 32 74 556 129 0 254 20160 0
malloc-32 32 16 614 17 0 254 20160 0
2 Bucket 32 47 583 287 0 254 20160 0
KNOTE 160 0 125 8 0 62 20000 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-512 512 2 30 2 0 30 16384 0
malloc-512 512 0 32 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
sctp_laddr 48 0 336 4 0 254 16128 0
kenv 258 17 43 1069 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
ertt_txseginfo 40 1 302 284 0 254 12120 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
malloc-32 32 90 288 636 0 254 12096 0
malloc-16 16 22 728 1220 0 254 12000 0
malloc-16 16 15 735 47 0 254 12000 0
malloc-16 16 42 708 249 0 254 12000 0
malloc-16 16 23 727 38 0 254 12000 0
malloc-16 16 31 719 158 0 254 12000 0
malloc-16 16 284 466 28025 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 1 1 2 0 2 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
vtnet_tx_hdr 24 2 332 2200 0 254 8016 0
malloc-16 16 7 493 9 0 254 8000 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1176 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-4096 4096 0 0 0 0 2 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
Reply all
Reply to author
Forward
0 new messages