panic: Memory modified after free ADDR(736) val=ADDR @ ADDR
4 views
Skip to first unread message
syzbot
Oct 1, 2020, 3:10:16 AM10/1/20
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 646e74f7 Avoid a dubious assignment to bio_data in aio_qbi..
git tree: freebsd
console output: https://syzkaller.appspot.com/x/log.txt?x=15d4e2cb900000
dashboard link: https://syzkaller.appspot.com/bug?extid=b4f083a4a3421bf6e8ee
userspace arch: i386
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=12bdc62f900000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+b4f083...@syzkaller.appspotmail.com
panic: Memory modified after free 0xfffffe00266188a0(736) val=deadc0e6 @ 0xfffffe00266189e8
cpuid = 0
time = 1601535980
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x47/frame 0xfffffe000364be10
vpanic() at vpanic+0x1c7/frame 0xfffffe000364be70
panic() at panic+0x43/frame 0xfffffe000364bed0
trash_ctor() at trash_ctor+0xa8/frame 0xfffffe000364bf10
item_ctor() at item_ctor+0x1e2/frame 0xfffffe000364bf70
sctp_add_remote_addr() at sctp_add_remote_addr+0x570/frame 0xfffffe000364bfe0
sctp_handle_asconf() at sctp_handle_asconf+0x14a7/frame 0xfffffe000364c2d0
sctp_process_control() at sctp_process_control+0x169e/frame 0xfffffe000364c750
sctp_common_input_processing() at sctp_common_input_processing+0x7db/frame 0xfffffe000364c8e0
sctp_input_with_port() at sctp_input_with_port+0x308/frame 0xfffffe000364c9d0
sctp_input() at sctp_input+0x1f/frame 0xfffffe000364c9f0
ip_input() at ip_input+0x388/frame 0xfffffe000364ca90
swi_net() at swi_net+0x20d/frame 0xfffffe000364cb10
ithread_loop() at ithread_loop+0x33f/frame 0xfffffe000364cbb0
fork_exit() at fork_exit+0xb3/frame 0xfffffe000364cbf0
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe000364cbf0
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
KDB: enter: panic
[ thread pid 12 tid 100020 ]
Stopped at kdb_enter+0x67: movq $0,0x14813b6(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b ll+0x1a
es 0x3b ll+0x1a
fs 0x13
gs 0x1b
ss 0
rax 0x12
rcx 0x80 ll+0x5f
rdx 0xffffffff818ebdf8
rbx 0
rsp 0xfffffe000364bdf0
rbp 0xfffffe000364be10
rsi 0x1
rdi 0
r8 0
r9 0xffffffff
r10 0xaa0014ac08000500
r11 0x50fd0993
r12 0xffffffff82066ae0 ddb_dbbe
r13 0
r14 0xffffffff8193667c
r15 0xffffffff8193667c
rip 0xffffffff810d0cc7 kdb_enter+0x67
rflags 0x86 ll+0x65
kdb_enter+0x67: movq $0,0x14813b6(%rip)
db> show proc
Process 12 (intr) at 0xfffff80004311520:
state: NORMAL
uid: 0 gids: 0
parent: pid 0 at 0xffffffff82504d10
ABI: null
reaper: 0xffffffff82504d10 reapsubtree: 12
sigparent: 20
vmspace: 0xffffffff82505960
(map 0xffffffff82505960)
(map.pmap 0xffffffff82505a20)
(pmap 0xffffffff82505a80)
threads: 23
100011 I [swi5: fast taskq]
100015 I [swi6: task queue]
100016 I [swi6: Giant taskq]
100020 Run CPU 0 [swi1: netisr 0]
100021 I [swi3: vm]
100022 I [swi4: clock (0)]
100023 I [swi4: clock (1)]
100035 I [irq24: virtio_pci0]
100036 I [irq25: virtio_pci0]
100037 I [irq26: virtio_pci0]
100038 I [irq27: virtio_pci0]
100039 I [irq28: virtio_pci1]
100040 I [irq29: virtio_pci1]
100041 I [irq30: virtio_pci1]
100042 I [irq31: virtio_pci1]
100043 I [irq32: virtio_pci1]
100048 I [irq10: virtio_pci2]
100050 I [irq1: atkbd0]
100051 I [irq12: psm0]
100052 I [swi0: uart uart++]
100060 I [swi1: pf send]
100073 I [swi1: hpts]
100074 I [swi1: hpts]
db> ps
pid ppid pgrp uid state wmesg wchan cmd
2334 2327 2327 0 RV syz-executor.3
2333 2323 424 0 R sh
2327 767 2327 0 Ds ppwait 0xfffff80019b3d4e0 syz-executor.3
2325 2306 2306 0 R (threaded) syz-executor.1
100219 Run CPU 1 syz-executor.1
100296 RunQ syz-executor.1
2323 424 424 0 S piperd 0xfffff80004d23be0 sh
2306 767 2306 0 Rs syz-executor.1
2303 767 2303 0 Rs syz-executor.2
2297 767 2297 0 REs syz-executor.0
767 765 765 0 S (threaded) syz-execprog
100100 S uwait 0xfffff8000453bc00 syz-execprog
100114 S uwait 0xfffff80004a9be00 syz-execprog
100115 S uwait 0xfffff80004a9bf00 syz-execprog
100116 S uwait 0xfffff80004a9e080 syz-execprog
100117 S uwait 0xfffff80004a9e180 syz-execprog
100118 S uwait 0xfffff800194fec80 syz-execprog
100119 S uwait 0xfffff800194fe980 syz-execprog
100120 S uwait 0xfffff8000447a500 syz-execprog
100121 S kqread 0xfffff80004c61500 syz-execprog
100122 S uwait 0xfffff800194fef00 syz-execprog
765 763 765 0 Ss pause 0xfffff80004d0aae8 csh
763 682 763 0 Ss select 0xfffff800194fea40 sshd
742 1 742 0 Ss+ ttyin 0xfffff80004416cb0 getty
741 1 741 0 Ss+ ttyin 0xfffff80004b5f8b0 getty
740 1 740 0 Ss+ ttyin 0xfffff80004b5fcb0 getty
739 1 739 0 Ss+ ttyin 0xfffff80004b620b0 getty
738 1 738 0 Ss+ ttyin 0xfffff80004b624b0 getty
737 1 737 0 Ss+ ttyin 0xfffff80004b628b0 getty
736 1 736 0 Ss+ ttyin 0xfffff80004b62cb0 getty
735 1 735 0 Ss+ ttyin 0xfffff80004b610b0 getty
734 1 734 0 Ss+ ttyin 0xfffff80004b614b0 getty
732 1 24 0 S+ piperd 0xfffff80004d238e8 logger
731 730 24 0 S+ nanslp 0xffffffff82525801 sleep
730 1 24 0 S+ wait 0xfffff80004ea8000 sh
686 1 686 0 Ss nanslp 0xffffffff82525801 cron
682 1 682 0 Ss select 0xfffff80004a9b540 sshd
495 1 495 0 Ss select 0xfffff80004a9b2c0 syslogd
424 1 424 0 Ss wait 0xfffff80004d0b000 devd
423 1 423 65 Ss select 0xfffff8000447aec0 dhclient
338 1 338 0 Ss select 0xfffff80004a9b0c0 dhclient
335 1 335 0 Ss select 0xfffff80004a9d440 dhclient
23 0 0 0 DL syncer 0xffffffff826128e8 [syncer]
22 0 0 0 DL vlruwt 0xfffff800043dca40 [vnlru]
21 0 0 0 DL (threaded) [bufdaemon]
100070 D qsleep 0xffffffff82611c50 [bufdaemon]
100077 D - 0xffffffff8200ae00 [bufspacedaemon-0]
100086 D sdflush 0xfffff80004d97ce8 [/ worker]
20 0 0 0 DL psleep 0xffffffff82638ec8 [vmdaemon]
19 0 0 0 DL (threaded) [pagedaemon]
100068 D psleep 0xffffffff8262d2f8 [dom0]
100075 D launds 0xffffffff8262d304 [laundry: dom0]
100076 D umarcl 0xffffffff814d5340 [uma]
18 0 0 0 DL - 0xffffffff82359388 [rand_harvestq]
17 0 0 0 RL [sctp_iterator]
16 0 0 0 DL pftm 0xffffffff82bcb390 [pf purge]
15 0 0 0 DL - 0xffffffff8261122c [soaiod4]
9 0 0 0 DL - 0xffffffff8261122c [soaiod3]
8 0 0 0 DL - 0xffffffff8261122c [soaiod2]
7 0 0 0 DL - 0xffffffff8261122c [soaiod1]
6 0 0 0 DL (threaded) [cam]
100034 D - 0xffffffff822310c0 [doneq0]
100067 D - 0xffffffff82230f90 [scanner]
5 0 0 0 DL crypto_ 0xfffff8000420ad90 [crypto returns 1]
4 0 0 0 DL crypto_ 0xfffff8000420ad30 [crypto returns 0]
3 0 0 0 DL crypto_ 0xffffffff8262a7e0 [crypto]
14 0 0 0 DL seqstat 0xfffff8000435b888 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100025 D - 0xffffffff82504770 [g_event]
100026 D - 0xffffffff82504778 [g_up]
100027 D - 0xffffffff82504780 [g_down]
2 0 0 0 DL (threaded) [KTLS]
100018 D - 0xfffff80004219000 [thr_0]
100019 D - 0xfffff80004219080 [thr_1]
12 0 0 0 RL (threaded) [intr]
100011 I [swi5: fast taskq]
100015 I [swi6: task queue]
100016 I [swi6: Giant taskq]
100020 Run CPU 0 [swi1: netisr 0]
100021 I [swi3: vm]
100022 I [swi4: clock (0)]
100023 I [swi4: clock (1)]
100035 I [irq24: virtio_pci0]
100036 I [irq25: virtio_pci0]
100037 I [irq26: virtio_pci0]
100038 I [irq27: virtio_pci0]
100039 I [irq28: virtio_pci1]
100040 I [irq29: virtio_pci1]
100041 I [irq30: virtio_pci1]
100042 I [irq31: virtio_pci1]
100043 I [irq32: virtio_pci1]
100048 I [irq10: virtio_pci2]
100050 I [irq1: atkbd0]
100051 I [irq12: psm0]
100052 I [swi0: uart uart++]
100060 I [swi1: pf send]
100073 I [swi1: hpts]
100074 I [swi1: hpts]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffff80004314000 [init]
10 0 0 0 DL audit_w 0xffffffff8262ad00 [audit]
0 0 0 0 RLs (threaded) [kernel]
100000 D swapin 0xffffffff82504d10 [swapper]
100005 D - 0xfffff8000433c100 [if_io_tqg_0]
100006 D - 0xfffff8000433c000 [if_io_tqg_1]
100007 D - 0xfffff80004339e00 [if_config_tqg_0]
100008 D - 0xfffff80004339d00 [softirq_0]
100009 D - 0xfffff80004339c00 [softirq_1]
100010 D - 0xfffff800040e8600 [thread taskq]
100012 D - 0xfffff800040e8300 [inm_free taskq]
100013 D - 0xfffff800040e8200 [kqueue_ctx taskq]
100014 D - 0xfffff800040e8100 [aiod_kick taskq]
100017 RunQ [in6m_free taskq]
100024 D - 0xfffff800040e7500 [firmware taskq]
100029 D - 0xfffff800040e7400 [crypto_0]
100030 D - 0xfffff800040e7400 [crypto_1]
100044 D - 0xfffff800040e6c00 [vtnet0 rxq 0]
100045 D - 0xfffff800040e6b00 [vtnet0 txq 0]
100046 D - 0xfffff800040e6a00 [vtnet0 rxq 1]
100047 D - 0xfffff800040e6900 [vtnet0 txq 1]
100049 D vtbslp 0xfffff800045ca800 [virtio_balloon]
100053 D - 0xfffff800040e6200 [mca taskq]
100057 D - 0xffffffff81cdc2a1 [deadlkres]
100062 D - 0xfffff80004b9e200 [acpi_task_0]
100063 D - 0xfffff80004b9e200 [acpi_task_1]
100064 D - 0xfffff80004b9e200 [acpi_task_2]
100066 D - 0xfffff800040e7300 [CAM taskq]
db> show all locks
Process 2325 (syz-executor.1) thread 0xfffffe002662a300 (100219)
exclusive sleep mutex umtxql (umtxql) r = 0 (0xffffffff825459c0) locked @ /syzkaller/managers/i386/kernel/sys/kern/kern_umtx.c:512
Process 17 (sctp_iterator) thread 0xfffffe001a06ca00 (100061)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe00265a78b0) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:1515
exclusive sleep mutex sctp-inp (inp) r = 0 (0xfffff80019b29e68) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:1475
exclusive sleep mutex sctp-it (iterator) r = 0 (0xffffffff82e0f178) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:1452
shared rw sctp-info (sctp-info) r = 0 (0xfffffe00049411e0) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:1451
Process 12 (intr) thread 0xfffffe00049cee00 (100020)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe00265a8a90) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb.c:1161
Process 0 (kernel) thread 0xfffffe00049d0300 (100017)
exclusive sleep mutex if_addr_lock (if_addr_lock) r = 0 (0xfffff80004ae11a8) locked @ /syzkaller/managers/i386/kernel/sys/net/if.c:3699
exclusive sx in6_multi_sx (in6_multi_sx) r = 0 (0xffffffff82628cb8) locked @ /syzkaller/managers/i386/kernel/sys/netinet6/in6_mcast.c:615
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
devbuf 4214 4854K 4239
tcp_hpts 5 3201K 5
vtbuf 24 1968K 46
sysctloid 28170 1644K 28234
kobj 335 1340K 494
newblk 847 1236K 929
vfscache 4 1025K 4
inodedep 703 863K 760
pcb 26 542K 1374
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
subproc 127 253K 2408
pagedep 498 253K 506
acpica 1674 185K 52414
vnet_data 1 168K 1
tfo_ccache 1 128K 1
filedesc 18 121K 2745
mkdir 919 115K 984
sem 4 106K 4
ifaddr 236 106K 549
DEVFS1 105 105K 122
linker 254 99K 768
diradd 681 86K 700
bus 975 79K 3020
mtx_pool 2 72K 2
syncache 1 68K 1
acpitask 1 64K 1
ddb_capture 1 64K 1
module 505 64K 505
newdirblk 489 62K 493
umtx 324 41K 324
kdtrace 173 34K 4894
temp 35 33K 9431
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 124 31K 134
msg 4 30K 4
vmem 3 28K 5
DEVFS_RULE 56 27K 56
gtaskqueue 18 26K 18
kbdmux 6 22K 6
BPF 14 19K 46
ufs_mount 5 17K 6
proc 3 17K 3
tty 16 16K 16
tidhash 1 16K 1
ithread 99 16K 99
lltable 40 14K 677
bus-sc 30 14K 1405
KTRACE 100 13K 100
ifnet 7 13K 7
ether_multi 149 12K 3466
kenv 92 12K 92
eventhandler 132 12K 132
pfs_nodes 20 10K 20
GEOM 60 10K 489
rman 82 10K 423
in6_multi 71 9K 2226
sctp_timw 34 9K 34
bmsafemap 3 9K 717
UART 12 9K 12
devstat 4 9K 4
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 233 8K 291
CAM DEV 3 6K 510
kqueue 56 6K 2343
sctp_ifa 44 6K 492
vt 11 6K 11
plimit 21 6K 1516
cred 21 6K 263
ufs_dirhash 27 6K 30
sglist 5 6K 5
CAM queue 5 6K 1528
taskqueue 48 6K 48
pf_ifnet 10 5K 19
dirrem 17 5K 32
UMA 251 5K 251
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
routetbl 19 4K 182
sctp_atcl 7 4K 1280
select 27 4K 27
hhook 13 4K 13
ip6ndp 17 4K 336
session 24 3K 207
pgrp 24 3K 207
acpisem 22 3K 22
terminal 11 3K 11
indirdep 10 3K 10
proc-args 44 3K 2743
uidinfo 3 3K 8
lockf 19 3K 54
sctp_stro 2 2K 320
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
Unitno 28 2K 46
CAM XPT 22 2K 543
ipsecpolicy 2 2K 2
in_multi 5 2K 166
acpidev 20 2K 20
msi 9 2K 9
clone 9 2K 9
tun 7 2K 7
sctp_stri 2 1K 320
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 126
vnodemarker 2 1K 10
NFSD session 1 1K 1
sctp_atky 13 1K 1500
CAM periph 4 1K 271
sctp_ifn 6 1K 492
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
encap_export_host 12 1K 12
crypto 3 1K 3
pfil 4 1K 4
chacha20random 1 1K 1
CAM SIM 2 1K 2
cdev 2 1K 2
freework 2 1K 30
DEVFSP 6 1K 172
osd 3 1K 9
sctp_iter 1 1K 392
freeblks 1 1K 29
freefrag 2 1K 24
vnodes 1 1K 1
ktls 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
feeder 7 1K 7
inpcbpolicy 6 1K 1338
loginclass 3 1K 7
prison 6 1K 6
sctp_aadr 2 1K 82
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
apmdev 1 1K 1
atkbddev 2 1K 2
CAM path 4 1K 1034
freefile 1 1K 13
tcpfunc 2 1K 2
pmchooks 1 1K 1
sctp_athm 7 1K 1280
soname 4 1K 3496
filecaps 4 1K 123
nexusdev 5 1K 5
sctp_vrf 1 1K 1
sctp_map 4 1K 640
entropy 2 1K 203
vnet 1 1K 1
acpiintr 1 1K 1
pmc 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
sctp_a_it 1 1K 392
p1003.1b 1 1K 1
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_temp 0 0K 0
vtfont 0 0K 0
madt_table 0 0K 2
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
amr 0 0K 0
scsi_da 0 0K 69
pvscsi 0 0K 0
smartpqi 0 0K 0
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
iavf 0 0K 0
ixl 0 0K 0
nvme_da 0 0K 0
acpipwr 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
twa_commands 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
fpukern_ctx 0 0K 0
tcp_log_dev 0 0K 0
xen_intr 0 0K 0
midi buffers 0 0K 0
mixer 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
qpidrv 0 0K 0
ac97 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
acpi_perf 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
xenbus 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
vm_fictitious 0 0K 0
CAM CCB 0 0K 2099
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
UMAHash 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 18
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 3
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
allocindir 0 0K 0
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
xform 0 0K 0
lDevFlags * malloc 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 3
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
LRO 0 0K 0
newreno data 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
ag_portal_data_t malloc 0 0K 0
statfs 0 0K 367
export_host 0 0K 0
cl_savebuf 0 0K 4
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
biobuf 0 0K 0
aios 0 0K 0
lio 0 0K 0
acl 0 0K 0
MPSSAS 0 0K 0
mbuf_tag 0 0K 4438
accf 0 0K 0
pts 0 0K 0
iov 0 0K 25198
ioctlops 0 0K 427
Witness 0 0K 0
stack 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
sbuf 0 0K 288
md_disk 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
malodev 0 0K 0
SWAP 0 0K 0
LED 0 0K 0
sysctltmp 0 0K 716
sysctl 0 0K 1
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
ix_sriov 0 0K 0
aacraidcam 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
iirbuf 0 0K 0
cache 0 0K 0
aacraid_buf 0 0K 0
kcovinfo 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroffdiroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_cluster 2048 9526 126 9526 0 254 19767296 0
65536 65536 4 107 609 0 1 7274496 0
32768 32768 0 112 112 0 1 3670016 0
mbuf_packet 256 8193 1205 23637 0 254 2405888 0
16384 16384 11 127 1435 0 1 2260992 0
512 512 4174 130 4775 0 30 2203648 0
BUF TRIE 144 169 13299 556 0 62 1939392 0
4096 4096 335 1 494 0 2 1376256 0
128 128 10238 116 10312 0 126 1325312 0
sctp_asoc 2288 2 508 320 0 254 1166880 0
mbuf_jumbo_page 4096 0 254 10 0 254 1040384 0
UMA Slabs 0 112 7229 1 7229 0 126 809760 0
pbuf 832 0 969 0 0 2 806208 0
8192 8192 11 77 120 0 1 720896 0
sctp_ep 1280 3 507 480 0 254 652800 0
VNODE 496 1191 73 1206 0 30 626944 0
tcpcb 1040 3 514 7 0 254 537680 0
socket 960 18 490 3937 0 254 487680 0
VM OBJECT 264 1624 116 45124 0 30 459360 0
RADIX NODE 144 2493 500 88166 0 63 430992 0
DEVCTL 1024 314 102 441 0 0 425984 0
512 512 730 54 1424 0 30 401408 0
sctp_raddr 736 11 506 1504 0 254 380512 0
256 Bucket 2048 153 7 406 0 8 327680 0
FFS2 dinode 256 1156 89 1169 0 62 318720 0
256 256 1089 51 2354 0 62 291840 0
THREAD 1792 137 25 296 0 8 290304 0
4096 4096 11 56 623 0 2 274432 0
mbuf 256 406 621 30474 0 254 262912 0
4096 4096 55 9 2336 0 2 262144 0
ripcb 488 1 511 12 0 254 249856 0
tcp_inpcb 488 3 509 7 0 254 249856 0
udp_inpcb 488 2 510 1319 0 254 249856 0
1024 1024 116 84 5991 0 16 204800 0
FFS inode 160 1156 94 1169 0 62 200000 0
64 64 2712 375 2718 0 254 197568 0
16 16 11833 167 11883 0 254 192000 0
128 128 1216 179 24897 0 126 178560 0
128 128 1288 107 2263 0 126 178560 0
UMA Zones 768 226 1 226 0 16 174336 0
vmem btag 56 2777 163 2777 0 254 164640 0
32 32 4440 474 9054 0 254 157248 0
256 256 512 58 843 0 62 145920 0
MAP ENTRY 96 1002 510 158705 0 126 145152 0
65536 65536 2 0 2 0 1 131072 0
65536 65536 2 0 2 0 1 131072 0
unpcb 256 8 502 1767 0 254 130560 0
512 512 209 31 522 0 30 122880 0
S VFS Cache 104 814 356 2627 0 126 121680 0
ksiginfo 112 57 987 421 0 126 116928 0
128 128 613 286 5125 0 126 115072 0
2048 2048 8 48 3539 0 8 114688 0
VMSPACE 2536 30 15 2475 0 4 114120 0
128 128 737 100 4809 0 126 107136 0
PROC 1312 53 19 2334 0 8 94464 0
filedesc0 1080 54 30 2335 0 8 90720 0
syncache 168 0 528 5 0 254 88704 0
g_bio 408 0 210 6047 0 30 85680 0
UMA Kegs 384 212 4 212 0 30 82944 0
2048 2048 4 36 50 0 8 81920 0
256 256 133 182 3086 0 62 80640 0
sctp_chunk 152 10 510 1447 0 254 79040 0
128 Bucket 1024 50 17 744 0 16 68608 0
64 64 534 537 2598 0 254 68544 0
64 64 575 496 3980 0 254 68544 0
65536 65536 1 0 1 0 1 65536 0
65536 65536 0 1 8 0 1 65536 0
4096 4096 12 4 26 0 2 65536 0
512 512 75 45 76 0 30 61440 0
4096 4096 6 8 22 0 2 57344 0
64 Bucket 512 68 36 817 0 30 53248 0
64 64 265 554 2617 0 254 52416 0
256 256 51 144 3608 0 62 49920 0
256 256 92 103 384 0 62 49920 0
32 Bucket 256 57 138 1198 0 62 49920 0
pipe 760 20 45 1065 0 16 49400 0
DIRHASH 1024 37 11 39 0 16 49152 0
NAMEI 1024 0 48 47259 0 16 49152 0
512 512 9 87 1796 0 30 49152 0
64 pcpu 8 4779 341 6572 0 254 40960 0
clpbuf 832 0 48 89 0 16 39936 0
selfd 64 54 513 13805 0 254 36288 0
64 64 59 508 24359 0 254 36288 0
64 64 126 441 126 0 254 36288 0
64 64 1 566 22 0 254 36288 0
64 64 14 553 14 0 254 36288 0
128 128 66 213 66 0 126 35712 0
128 128 2 277 164 0 126 35712 0
128 128 8 271 12 0 126 35712 0
routing nhops 256 21 114 673 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
256 256 37 98 760 0 62 34560 0
256 256 64 71 2437 0 62 34560 0
256 256 23 112 267 0 62 34560 0
32768 32768 1 0 1 0 1 32768 0
32768 32768 1 0 1 0 1 32768 0
32768 32768 1 0 1 0 1 32768 0
8192 8192 4 0 4 0 1 32768 0
4096 4096 7 1 7 0 2 32768 0
2048 2048 8 8 8 0 8 32768 0
2048 2048 6 10 9 0 8 32768 0
2048 2048 3 13 3 0 8 32768 0
1024 1024 3 29 331 0 16 32768 0
1024 1024 2 30 2 0 16 32768 0
1024 1024 22 10 38 0 16 32768 0
1024 1024 9 23 9 0 16 32768 0
1024 1024 14 18 14 0 16 32768 0
512 512 23 41 533 0 30 32768 0
512 512 3 61 11 0 30 32768 0
mt_stats_zone 64 445 67 445 0 254 32768 0
KNOTE 160 28 172 9975 0 62 32000 0
ttyinq 160 135 65 300 0 62 32000 0
cpuset 104 7 272 7 0 126 29016 0
sctp_asconf_ack 48 1 587 32 0 254 28224 0
sctp_laddr 48 5 583 1025 0 254 28224 0
hostcache 96 1 293 1 0 254 28224 0
PWD 32 15 867 587 0 254 28224 0
32 32 300 582 2208 0 254 28224 0
4 Bucket 48 7 581 6561 0 254 28224 0
TURNSTILE 136 163 26 163 0 62 25704 0
8192 8192 2 1 4 0 1 24576 0
4096 4096 2 4 369 0 2 24576 0
rtentry 176 25 113 673 0 62 24288 0
rl_entry 40 55 551 55 0 254 24240 0
Files 80 113 187 27050 0 126 24000 0
8 Bucket 80 53 247 11211 0 126 24000 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 163 93 163 0 126 22528 0
udpcb 32 2 628 1319 0 254 20160 0
32 32 42 588 1421 0 254 20160 0
32 32 11 619 29 0 254 20160 0
32 32 221 409 3950 0 254 20160 0
32 32 38 592 3038 0 254 20160 0
32 32 6 624 19 0 254 20160 0
32 32 11 619 1346 0 254 20160 0
16 Bucket 144 43 97 7321 0 62 20160 0
2 Bucket 32 287 343 9252 0 254 20160 0
procdesc 136 1 144 22 0 62 19720 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
16384 16384 1 0 1 0 1 16384 0
16384 16384 1 0 1 0 1 16384 0
16384 16384 1 0 1 0 1 16384 0
8192 8192 2 0 2 0 1 16384 0
2048 2048 2 6 2 0 8 16384 0
2048 2048 2 6 2 0 8 16384 0
1024 1024 1 15 1 0 16 16384 0
1024 1024 1 15 1 0 16 16384 0
512 512 2 30 2 0 30 16384 0
vtnet_tx_hdr 24 0 668 1146 0 254 16032 0
mt_zone 24 445 223 445 0 254 16032 0
16 16 497 503 2303 0 254 16000 0
KMAP ENTRY 96 12 153 12 0 126 15840 0
kenv 258 3 57 1018 0 30 15480 0
FPU_save_area 832 1 17 1 0 16 14976 0
vmem 1856 1 7 1 0 8 14848 0
16 16 14 736 2520 0 254 12000 0
16 16 14 736 15 0 254 12000 0
16 16 18 732 23668 0 254 12000 0
16 16 1 749 114 0 254 12000 0
16 16 44 706 812 0 254 12000 0
16 16 3 747 3 0 254 12000 0
8192 8192 1 0 1 0 1 8192 0
8192 8192 1 0 1 0 1 8192 0
4096 4096 1 1 1 0 2 8192 0
SMR CPU 32 2 253 2 0 254 8160 0
SMR SHARED 24 2 253 2 0 254 6120 0
UMA Slabs 1 176 10 12 10 0 62 3872 0
int pcpu 4 34 478 34 0 254 2048 0
FFS1 dinode 128 0 0 0 0 126 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 62 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 296 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 48 0 0 0 0 254 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
udplite_inpcb 488 0 0 0 0 254 0 0
tcp_log_node 120 0 0 0 0 126 0 0
tcp_log_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 88 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 280 0 0 0 0 30 0 0
AIOCB 752 0 0 0 0 16 0 0
AIOP 32 0 0 0 0 254 0 0
AIO 208 0 0 0 0 62 0 0
TMPFS node 232 0 0 0 0 62 0 0
TMPFS dirent 64 0 0 0 0 254 0 0
NCLNODE 592 0 0 0 0 16 0 0
rentr 24 0 0 0 0 254 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
VNODEPOLL 120 0 0 0 0 126 0 0
crypto_session 72 0 0 0 0 126 0 0
cryptop 280 0 0 0 0 30 0 0
nvme_request 128 0 0 0 0 126 0 0
IOMMU_MAP_ENTRY 120 0 0 0 0 126 0 0
ktls_session 192 0 0 0 0 62 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 832 0 0 0 0 62 0 0
mdpbuf 832 0 0 0 0 4 0 0
nfspbuf 832 0 0 0 0 16 0 0
swwbuf 832 0 0 0 0 8 0 0
swrbuf 832 0 0 0 0 16 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
65536 65536 0 0 0 0 1 0 0
65536 65536 0 0 0 0 1 0 0
65536 65536 0 0 0 0 1 0 0
32768 32768 0 0 0 0 1 0 0
32768 32768 0 0 0 0 1 0 0
32768 32768 0 0 0 0 1 0 0
32768 32768 0 0 0 0 1 0 0
16384 16384 0 0 0 0 1 0 0
16384 16384 0 0 0 0 1 0 0
16384 16384 0 0 0 0 1 0 0
16384 16384 0 0 0 0 1 0 0
8192 8192 0 0 0 0 1 0 0
8192 8192 0 0 0 0 1 0 0
2048 2048 0 0 0 0 8 0 0
fakepg 104 0 0
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot can test patches for this issue, for details see:
https://goo.gl/tpsmEJ#testing-patches
syzbot found the following issue on:
HEAD commit: 646e74f7 Avoid a dubious assignment to bio_data in aio_qbi..
git tree: freebsd
console output: https://syzkaller.appspot.com/x/log.txt?x=15d4e2cb900000
dashboard link: https://syzkaller.appspot.com/bug?extid=b4f083a4a3421bf6e8ee
userspace arch: i386
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=12bdc62f900000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+b4f083...@syzkaller.appspotmail.com
panic: Memory modified after free 0xfffffe00266188a0(736) val=deadc0e6 @ 0xfffffe00266189e8
cpuid = 0
time = 1601535980
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x47/frame 0xfffffe000364be10
vpanic() at vpanic+0x1c7/frame 0xfffffe000364be70
panic() at panic+0x43/frame 0xfffffe000364bed0
trash_ctor() at trash_ctor+0xa8/frame 0xfffffe000364bf10
item_ctor() at item_ctor+0x1e2/frame 0xfffffe000364bf70
sctp_add_remote_addr() at sctp_add_remote_addr+0x570/frame 0xfffffe000364bfe0
sctp_handle_asconf() at sctp_handle_asconf+0x14a7/frame 0xfffffe000364c2d0
sctp_process_control() at sctp_process_control+0x169e/frame 0xfffffe000364c750
sctp_common_input_processing() at sctp_common_input_processing+0x7db/frame 0xfffffe000364c8e0
sctp_input_with_port() at sctp_input_with_port+0x308/frame 0xfffffe000364c9d0
sctp_input() at sctp_input+0x1f/frame 0xfffffe000364c9f0
ip_input() at ip_input+0x388/frame 0xfffffe000364ca90
swi_net() at swi_net+0x20d/frame 0xfffffe000364cb10
ithread_loop() at ithread_loop+0x33f/frame 0xfffffe000364cbb0
fork_exit() at fork_exit+0xb3/frame 0xfffffe000364cbf0
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe000364cbf0
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
KDB: enter: panic
[ thread pid 12 tid 100020 ]
Stopped at kdb_enter+0x67: movq $0,0x14813b6(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b ll+0x1a
es 0x3b ll+0x1a
fs 0x13
gs 0x1b
ss 0
rax 0x12
rcx 0x80 ll+0x5f
rdx 0xffffffff818ebdf8
rbx 0
rsp 0xfffffe000364bdf0
rbp 0xfffffe000364be10
rsi 0x1
rdi 0
r8 0
r9 0xffffffff
r10 0xaa0014ac08000500
r11 0x50fd0993
r12 0xffffffff82066ae0 ddb_dbbe
r13 0
r14 0xffffffff8193667c
r15 0xffffffff8193667c
rip 0xffffffff810d0cc7 kdb_enter+0x67
rflags 0x86 ll+0x65
kdb_enter+0x67: movq $0,0x14813b6(%rip)
db> show proc
Process 12 (intr) at 0xfffff80004311520:
state: NORMAL
uid: 0 gids: 0
parent: pid 0 at 0xffffffff82504d10
ABI: null
reaper: 0xffffffff82504d10 reapsubtree: 12
sigparent: 20
vmspace: 0xffffffff82505960
(map 0xffffffff82505960)
(map.pmap 0xffffffff82505a20)
(pmap 0xffffffff82505a80)
threads: 23
100011 I [swi5: fast taskq]
100015 I [swi6: task queue]
100016 I [swi6: Giant taskq]
100020 Run CPU 0 [swi1: netisr 0]
100021 I [swi3: vm]
100022 I [swi4: clock (0)]
100023 I [swi4: clock (1)]
100035 I [irq24: virtio_pci0]
100036 I [irq25: virtio_pci0]
100037 I [irq26: virtio_pci0]
100038 I [irq27: virtio_pci0]
100039 I [irq28: virtio_pci1]
100040 I [irq29: virtio_pci1]
100041 I [irq30: virtio_pci1]
100042 I [irq31: virtio_pci1]
100043 I [irq32: virtio_pci1]
100048 I [irq10: virtio_pci2]
100050 I [irq1: atkbd0]
100051 I [irq12: psm0]
100052 I [swi0: uart uart++]
100060 I [swi1: pf send]
100073 I [swi1: hpts]
100074 I [swi1: hpts]
db> ps
pid ppid pgrp uid state wmesg wchan cmd
2334 2327 2327 0 RV syz-executor.3
2333 2323 424 0 R sh
2327 767 2327 0 Ds ppwait 0xfffff80019b3d4e0 syz-executor.3
2325 2306 2306 0 R (threaded) syz-executor.1
100219 Run CPU 1 syz-executor.1
100296 RunQ syz-executor.1
2323 424 424 0 S piperd 0xfffff80004d23be0 sh
2306 767 2306 0 Rs syz-executor.1
2303 767 2303 0 Rs syz-executor.2
2297 767 2297 0 REs syz-executor.0
767 765 765 0 S (threaded) syz-execprog
100100 S uwait 0xfffff8000453bc00 syz-execprog
100114 S uwait 0xfffff80004a9be00 syz-execprog
100115 S uwait 0xfffff80004a9bf00 syz-execprog
100116 S uwait 0xfffff80004a9e080 syz-execprog
100117 S uwait 0xfffff80004a9e180 syz-execprog
100118 S uwait 0xfffff800194fec80 syz-execprog
100119 S uwait 0xfffff800194fe980 syz-execprog
100120 S uwait 0xfffff8000447a500 syz-execprog
100121 S kqread 0xfffff80004c61500 syz-execprog
100122 S uwait 0xfffff800194fef00 syz-execprog
765 763 765 0 Ss pause 0xfffff80004d0aae8 csh
763 682 763 0 Ss select 0xfffff800194fea40 sshd
742 1 742 0 Ss+ ttyin 0xfffff80004416cb0 getty
741 1 741 0 Ss+ ttyin 0xfffff80004b5f8b0 getty
740 1 740 0 Ss+ ttyin 0xfffff80004b5fcb0 getty
739 1 739 0 Ss+ ttyin 0xfffff80004b620b0 getty
738 1 738 0 Ss+ ttyin 0xfffff80004b624b0 getty
737 1 737 0 Ss+ ttyin 0xfffff80004b628b0 getty
736 1 736 0 Ss+ ttyin 0xfffff80004b62cb0 getty
735 1 735 0 Ss+ ttyin 0xfffff80004b610b0 getty
734 1 734 0 Ss+ ttyin 0xfffff80004b614b0 getty
732 1 24 0 S+ piperd 0xfffff80004d238e8 logger
731 730 24 0 S+ nanslp 0xffffffff82525801 sleep
730 1 24 0 S+ wait 0xfffff80004ea8000 sh
686 1 686 0 Ss nanslp 0xffffffff82525801 cron
682 1 682 0 Ss select 0xfffff80004a9b540 sshd
495 1 495 0 Ss select 0xfffff80004a9b2c0 syslogd
424 1 424 0 Ss wait 0xfffff80004d0b000 devd
423 1 423 65 Ss select 0xfffff8000447aec0 dhclient
338 1 338 0 Ss select 0xfffff80004a9b0c0 dhclient
335 1 335 0 Ss select 0xfffff80004a9d440 dhclient
23 0 0 0 DL syncer 0xffffffff826128e8 [syncer]
22 0 0 0 DL vlruwt 0xfffff800043dca40 [vnlru]
21 0 0 0 DL (threaded) [bufdaemon]
100070 D qsleep 0xffffffff82611c50 [bufdaemon]
100077 D - 0xffffffff8200ae00 [bufspacedaemon-0]
100086 D sdflush 0xfffff80004d97ce8 [/ worker]
20 0 0 0 DL psleep 0xffffffff82638ec8 [vmdaemon]
19 0 0 0 DL (threaded) [pagedaemon]
100068 D psleep 0xffffffff8262d2f8 [dom0]
100075 D launds 0xffffffff8262d304 [laundry: dom0]
100076 D umarcl 0xffffffff814d5340 [uma]
18 0 0 0 DL - 0xffffffff82359388 [rand_harvestq]
17 0 0 0 RL [sctp_iterator]
16 0 0 0 DL pftm 0xffffffff82bcb390 [pf purge]
15 0 0 0 DL - 0xffffffff8261122c [soaiod4]
9 0 0 0 DL - 0xffffffff8261122c [soaiod3]
8 0 0 0 DL - 0xffffffff8261122c [soaiod2]
7 0 0 0 DL - 0xffffffff8261122c [soaiod1]
6 0 0 0 DL (threaded) [cam]
100034 D - 0xffffffff822310c0 [doneq0]
100067 D - 0xffffffff82230f90 [scanner]
5 0 0 0 DL crypto_ 0xfffff8000420ad90 [crypto returns 1]
4 0 0 0 DL crypto_ 0xfffff8000420ad30 [crypto returns 0]
3 0 0 0 DL crypto_ 0xffffffff8262a7e0 [crypto]
14 0 0 0 DL seqstat 0xfffff8000435b888 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100025 D - 0xffffffff82504770 [g_event]
100026 D - 0xffffffff82504778 [g_up]
100027 D - 0xffffffff82504780 [g_down]
2 0 0 0 DL (threaded) [KTLS]
100018 D - 0xfffff80004219000 [thr_0]
100019 D - 0xfffff80004219080 [thr_1]
12 0 0 0 RL (threaded) [intr]
100011 I [swi5: fast taskq]
100015 I [swi6: task queue]
100016 I [swi6: Giant taskq]
100020 Run CPU 0 [swi1: netisr 0]
100021 I [swi3: vm]
100022 I [swi4: clock (0)]
100023 I [swi4: clock (1)]
100035 I [irq24: virtio_pci0]
100036 I [irq25: virtio_pci0]
100037 I [irq26: virtio_pci0]
100038 I [irq27: virtio_pci0]
100039 I [irq28: virtio_pci1]
100040 I [irq29: virtio_pci1]
100041 I [irq30: virtio_pci1]
100042 I [irq31: virtio_pci1]
100043 I [irq32: virtio_pci1]
100048 I [irq10: virtio_pci2]
100050 I [irq1: atkbd0]
100051 I [irq12: psm0]
100052 I [swi0: uart uart++]
100060 I [swi1: pf send]
100073 I [swi1: hpts]
100074 I [swi1: hpts]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffff80004314000 [init]
10 0 0 0 DL audit_w 0xffffffff8262ad00 [audit]
0 0 0 0 RLs (threaded) [kernel]
100000 D swapin 0xffffffff82504d10 [swapper]
100005 D - 0xfffff8000433c100 [if_io_tqg_0]
100006 D - 0xfffff8000433c000 [if_io_tqg_1]
100007 D - 0xfffff80004339e00 [if_config_tqg_0]
100008 D - 0xfffff80004339d00 [softirq_0]
100009 D - 0xfffff80004339c00 [softirq_1]
100010 D - 0xfffff800040e8600 [thread taskq]
100012 D - 0xfffff800040e8300 [inm_free taskq]
100013 D - 0xfffff800040e8200 [kqueue_ctx taskq]
100014 D - 0xfffff800040e8100 [aiod_kick taskq]
100017 RunQ [in6m_free taskq]
100024 D - 0xfffff800040e7500 [firmware taskq]
100029 D - 0xfffff800040e7400 [crypto_0]
100030 D - 0xfffff800040e7400 [crypto_1]
100044 D - 0xfffff800040e6c00 [vtnet0 rxq 0]
100045 D - 0xfffff800040e6b00 [vtnet0 txq 0]
100046 D - 0xfffff800040e6a00 [vtnet0 rxq 1]
100047 D - 0xfffff800040e6900 [vtnet0 txq 1]
100049 D vtbslp 0xfffff800045ca800 [virtio_balloon]
100053 D - 0xfffff800040e6200 [mca taskq]
100057 D - 0xffffffff81cdc2a1 [deadlkres]
100062 D - 0xfffff80004b9e200 [acpi_task_0]
100063 D - 0xfffff80004b9e200 [acpi_task_1]
100064 D - 0xfffff80004b9e200 [acpi_task_2]
100066 D - 0xfffff800040e7300 [CAM taskq]
db> show all locks
Process 2325 (syz-executor.1) thread 0xfffffe002662a300 (100219)
exclusive sleep mutex umtxql (umtxql) r = 0 (0xffffffff825459c0) locked @ /syzkaller/managers/i386/kernel/sys/kern/kern_umtx.c:512
Process 17 (sctp_iterator) thread 0xfffffe001a06ca00 (100061)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe00265a78b0) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:1515
exclusive sleep mutex sctp-inp (inp) r = 0 (0xfffff80019b29e68) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:1475
exclusive sleep mutex sctp-it (iterator) r = 0 (0xffffffff82e0f178) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:1452
shared rw sctp-info (sctp-info) r = 0 (0xfffffe00049411e0) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:1451
Process 12 (intr) thread 0xfffffe00049cee00 (100020)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe00265a8a90) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb.c:1161
Process 0 (kernel) thread 0xfffffe00049d0300 (100017)
exclusive sleep mutex if_addr_lock (if_addr_lock) r = 0 (0xfffff80004ae11a8) locked @ /syzkaller/managers/i386/kernel/sys/net/if.c:3699
exclusive sx in6_multi_sx (in6_multi_sx) r = 0 (0xffffffff82628cb8) locked @ /syzkaller/managers/i386/kernel/sys/netinet6/in6_mcast.c:615
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
devbuf 4214 4854K 4239
tcp_hpts 5 3201K 5
vtbuf 24 1968K 46
sysctloid 28170 1644K 28234
kobj 335 1340K 494
newblk 847 1236K 929
vfscache 4 1025K 4
inodedep 703 863K 760
pcb 26 542K 1374
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
subproc 127 253K 2408
pagedep 498 253K 506
acpica 1674 185K 52414
vnet_data 1 168K 1
tfo_ccache 1 128K 1
filedesc 18 121K 2745
mkdir 919 115K 984
sem 4 106K 4
ifaddr 236 106K 549
DEVFS1 105 105K 122
linker 254 99K 768
diradd 681 86K 700
bus 975 79K 3020
mtx_pool 2 72K 2
syncache 1 68K 1
acpitask 1 64K 1
ddb_capture 1 64K 1
module 505 64K 505
newdirblk 489 62K 493
umtx 324 41K 324
kdtrace 173 34K 4894
temp 35 33K 9431
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 124 31K 134
msg 4 30K 4
vmem 3 28K 5
DEVFS_RULE 56 27K 56
gtaskqueue 18 26K 18
kbdmux 6 22K 6
BPF 14 19K 46
ufs_mount 5 17K 6
proc 3 17K 3
tty 16 16K 16
tidhash 1 16K 1
ithread 99 16K 99
lltable 40 14K 677
bus-sc 30 14K 1405
KTRACE 100 13K 100
ifnet 7 13K 7
ether_multi 149 12K 3466
kenv 92 12K 92
eventhandler 132 12K 132
pfs_nodes 20 10K 20
GEOM 60 10K 489
rman 82 10K 423
in6_multi 71 9K 2226
sctp_timw 34 9K 34
bmsafemap 3 9K 717
UART 12 9K 12
devstat 4 9K 4
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 233 8K 291
CAM DEV 3 6K 510
kqueue 56 6K 2343
sctp_ifa 44 6K 492
vt 11 6K 11
plimit 21 6K 1516
cred 21 6K 263
ufs_dirhash 27 6K 30
sglist 5 6K 5
CAM queue 5 6K 1528
taskqueue 48 6K 48
pf_ifnet 10 5K 19
dirrem 17 5K 32
UMA 251 5K 251
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
routetbl 19 4K 182
sctp_atcl 7 4K 1280
select 27 4K 27
hhook 13 4K 13
ip6ndp 17 4K 336
session 24 3K 207
pgrp 24 3K 207
acpisem 22 3K 22
terminal 11 3K 11
indirdep 10 3K 10
proc-args 44 3K 2743
uidinfo 3 3K 8
lockf 19 3K 54
sctp_stro 2 2K 320
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
Unitno 28 2K 46
CAM XPT 22 2K 543
ipsecpolicy 2 2K 2
in_multi 5 2K 166
acpidev 20 2K 20
msi 9 2K 9
clone 9 2K 9
tun 7 2K 7
sctp_stri 2 1K 320
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 126
vnodemarker 2 1K 10
NFSD session 1 1K 1
sctp_atky 13 1K 1500
CAM periph 4 1K 271
sctp_ifn 6 1K 492
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
encap_export_host 12 1K 12
crypto 3 1K 3
pfil 4 1K 4
chacha20random 1 1K 1
CAM SIM 2 1K 2
cdev 2 1K 2
freework 2 1K 30
DEVFSP 6 1K 172
osd 3 1K 9
sctp_iter 1 1K 392
freeblks 1 1K 29
freefrag 2 1K 24
vnodes 1 1K 1
ktls 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
feeder 7 1K 7
inpcbpolicy 6 1K 1338
loginclass 3 1K 7
prison 6 1K 6
sctp_aadr 2 1K 82
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
apmdev 1 1K 1
atkbddev 2 1K 2
CAM path 4 1K 1034
freefile 1 1K 13
tcpfunc 2 1K 2
pmchooks 1 1K 1
sctp_athm 7 1K 1280
soname 4 1K 3496
filecaps 4 1K 123
nexusdev 5 1K 5
sctp_vrf 1 1K 1
sctp_map 4 1K 640
entropy 2 1K 203
vnet 1 1K 1
acpiintr 1 1K 1
pmc 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
sctp_a_it 1 1K 392
p1003.1b 1 1K 1
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_temp 0 0K 0
vtfont 0 0K 0
madt_table 0 0K 2
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
amr 0 0K 0
scsi_da 0 0K 69
pvscsi 0 0K 0
smartpqi 0 0K 0
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
iavf 0 0K 0
ixl 0 0K 0
nvme_da 0 0K 0
acpipwr 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
twa_commands 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
fpukern_ctx 0 0K 0
tcp_log_dev 0 0K 0
xen_intr 0 0K 0
midi buffers 0 0K 0
mixer 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
qpidrv 0 0K 0
ac97 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
acpi_perf 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
xenbus 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
vm_fictitious 0 0K 0
CAM CCB 0 0K 2099
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
UMAHash 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 18
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 3
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
allocindir 0 0K 0
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
xform 0 0K 0
lDevFlags * malloc 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 3
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
LRO 0 0K 0
newreno data 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
ag_portal_data_t malloc 0 0K 0
statfs 0 0K 367
export_host 0 0K 0
cl_savebuf 0 0K 4
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
biobuf 0 0K 0
aios 0 0K 0
lio 0 0K 0
acl 0 0K 0
MPSSAS 0 0K 0
mbuf_tag 0 0K 4438
accf 0 0K 0
pts 0 0K 0
iov 0 0K 25198
ioctlops 0 0K 427
Witness 0 0K 0
stack 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
sbuf 0 0K 288
md_disk 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
malodev 0 0K 0
SWAP 0 0K 0
LED 0 0K 0
sysctltmp 0 0K 716
sysctl 0 0K 1
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
ix_sriov 0 0K 0
aacraidcam 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
iirbuf 0 0K 0
cache 0 0K 0
aacraid_buf 0 0K 0
kcovinfo 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroffdiroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_cluster 2048 9526 126 9526 0 254 19767296 0
65536 65536 4 107 609 0 1 7274496 0
32768 32768 0 112 112 0 1 3670016 0
mbuf_packet 256 8193 1205 23637 0 254 2405888 0
16384 16384 11 127 1435 0 1 2260992 0
512 512 4174 130 4775 0 30 2203648 0
BUF TRIE 144 169 13299 556 0 62 1939392 0
4096 4096 335 1 494 0 2 1376256 0
128 128 10238 116 10312 0 126 1325312 0
sctp_asoc 2288 2 508 320 0 254 1166880 0
mbuf_jumbo_page 4096 0 254 10 0 254 1040384 0
UMA Slabs 0 112 7229 1 7229 0 126 809760 0
pbuf 832 0 969 0 0 2 806208 0
8192 8192 11 77 120 0 1 720896 0
sctp_ep 1280 3 507 480 0 254 652800 0
VNODE 496 1191 73 1206 0 30 626944 0
tcpcb 1040 3 514 7 0 254 537680 0
socket 960 18 490 3937 0 254 487680 0
VM OBJECT 264 1624 116 45124 0 30 459360 0
RADIX NODE 144 2493 500 88166 0 63 430992 0
DEVCTL 1024 314 102 441 0 0 425984 0
512 512 730 54 1424 0 30 401408 0
sctp_raddr 736 11 506 1504 0 254 380512 0
256 Bucket 2048 153 7 406 0 8 327680 0
FFS2 dinode 256 1156 89 1169 0 62 318720 0
256 256 1089 51 2354 0 62 291840 0
THREAD 1792 137 25 296 0 8 290304 0
4096 4096 11 56 623 0 2 274432 0
mbuf 256 406 621 30474 0 254 262912 0
4096 4096 55 9 2336 0 2 262144 0
ripcb 488 1 511 12 0 254 249856 0
tcp_inpcb 488 3 509 7 0 254 249856 0
udp_inpcb 488 2 510 1319 0 254 249856 0
1024 1024 116 84 5991 0 16 204800 0
FFS inode 160 1156 94 1169 0 62 200000 0
64 64 2712 375 2718 0 254 197568 0
16 16 11833 167 11883 0 254 192000 0
128 128 1216 179 24897 0 126 178560 0
128 128 1288 107 2263 0 126 178560 0
UMA Zones 768 226 1 226 0 16 174336 0
vmem btag 56 2777 163 2777 0 254 164640 0
32 32 4440 474 9054 0 254 157248 0
256 256 512 58 843 0 62 145920 0
MAP ENTRY 96 1002 510 158705 0 126 145152 0
65536 65536 2 0 2 0 1 131072 0
65536 65536 2 0 2 0 1 131072 0
unpcb 256 8 502 1767 0 254 130560 0
512 512 209 31 522 0 30 122880 0
S VFS Cache 104 814 356 2627 0 126 121680 0
ksiginfo 112 57 987 421 0 126 116928 0
128 128 613 286 5125 0 126 115072 0
2048 2048 8 48 3539 0 8 114688 0
VMSPACE 2536 30 15 2475 0 4 114120 0
128 128 737 100 4809 0 126 107136 0
PROC 1312 53 19 2334 0 8 94464 0
filedesc0 1080 54 30 2335 0 8 90720 0
syncache 168 0 528 5 0 254 88704 0
g_bio 408 0 210 6047 0 30 85680 0
UMA Kegs 384 212 4 212 0 30 82944 0
2048 2048 4 36 50 0 8 81920 0
256 256 133 182 3086 0 62 80640 0
sctp_chunk 152 10 510 1447 0 254 79040 0
128 Bucket 1024 50 17 744 0 16 68608 0
64 64 534 537 2598 0 254 68544 0
64 64 575 496 3980 0 254 68544 0
65536 65536 1 0 1 0 1 65536 0
65536 65536 0 1 8 0 1 65536 0
4096 4096 12 4 26 0 2 65536 0
512 512 75 45 76 0 30 61440 0
4096 4096 6 8 22 0 2 57344 0
64 Bucket 512 68 36 817 0 30 53248 0
64 64 265 554 2617 0 254 52416 0
256 256 51 144 3608 0 62 49920 0
256 256 92 103 384 0 62 49920 0
32 Bucket 256 57 138 1198 0 62 49920 0
pipe 760 20 45 1065 0 16 49400 0
DIRHASH 1024 37 11 39 0 16 49152 0
NAMEI 1024 0 48 47259 0 16 49152 0
512 512 9 87 1796 0 30 49152 0
64 pcpu 8 4779 341 6572 0 254 40960 0
clpbuf 832 0 48 89 0 16 39936 0
selfd 64 54 513 13805 0 254 36288 0
64 64 59 508 24359 0 254 36288 0
64 64 126 441 126 0 254 36288 0
64 64 1 566 22 0 254 36288 0
64 64 14 553 14 0 254 36288 0
128 128 66 213 66 0 126 35712 0
128 128 2 277 164 0 126 35712 0
128 128 8 271 12 0 126 35712 0
routing nhops 256 21 114 673 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
256 256 37 98 760 0 62 34560 0
256 256 64 71 2437 0 62 34560 0
256 256 23 112 267 0 62 34560 0
32768 32768 1 0 1 0 1 32768 0
32768 32768 1 0 1 0 1 32768 0
32768 32768 1 0 1 0 1 32768 0
8192 8192 4 0 4 0 1 32768 0
4096 4096 7 1 7 0 2 32768 0
2048 2048 8 8 8 0 8 32768 0
2048 2048 6 10 9 0 8 32768 0
2048 2048 3 13 3 0 8 32768 0
1024 1024 3 29 331 0 16 32768 0
1024 1024 2 30 2 0 16 32768 0
1024 1024 22 10 38 0 16 32768 0
1024 1024 9 23 9 0 16 32768 0
1024 1024 14 18 14 0 16 32768 0
512 512 23 41 533 0 30 32768 0
512 512 3 61 11 0 30 32768 0
mt_stats_zone 64 445 67 445 0 254 32768 0
KNOTE 160 28 172 9975 0 62 32000 0
ttyinq 160 135 65 300 0 62 32000 0
cpuset 104 7 272 7 0 126 29016 0
sctp_asconf_ack 48 1 587 32 0 254 28224 0
sctp_laddr 48 5 583 1025 0 254 28224 0
hostcache 96 1 293 1 0 254 28224 0
PWD 32 15 867 587 0 254 28224 0
32 32 300 582 2208 0 254 28224 0
4 Bucket 48 7 581 6561 0 254 28224 0
TURNSTILE 136 163 26 163 0 62 25704 0
8192 8192 2 1 4 0 1 24576 0
4096 4096 2 4 369 0 2 24576 0
rtentry 176 25 113 673 0 62 24288 0
rl_entry 40 55 551 55 0 254 24240 0
Files 80 113 187 27050 0 126 24000 0
8 Bucket 80 53 247 11211 0 126 24000 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 163 93 163 0 126 22528 0
udpcb 32 2 628 1319 0 254 20160 0
32 32 42 588 1421 0 254 20160 0
32 32 11 619 29 0 254 20160 0
32 32 221 409 3950 0 254 20160 0
32 32 38 592 3038 0 254 20160 0
32 32 6 624 19 0 254 20160 0
32 32 11 619 1346 0 254 20160 0
16 Bucket 144 43 97 7321 0 62 20160 0
2 Bucket 32 287 343 9252 0 254 20160 0
procdesc 136 1 144 22 0 62 19720 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
16384 16384 1 0 1 0 1 16384 0
16384 16384 1 0 1 0 1 16384 0
16384 16384 1 0 1 0 1 16384 0
8192 8192 2 0 2 0 1 16384 0
2048 2048 2 6 2 0 8 16384 0
2048 2048 2 6 2 0 8 16384 0
1024 1024 1 15 1 0 16 16384 0
1024 1024 1 15 1 0 16 16384 0
512 512 2 30 2 0 30 16384 0
vtnet_tx_hdr 24 0 668 1146 0 254 16032 0
mt_zone 24 445 223 445 0 254 16032 0
16 16 497 503 2303 0 254 16000 0
KMAP ENTRY 96 12 153 12 0 126 15840 0
kenv 258 3 57 1018 0 30 15480 0
FPU_save_area 832 1 17 1 0 16 14976 0
vmem 1856 1 7 1 0 8 14848 0
16 16 14 736 2520 0 254 12000 0
16 16 14 736 15 0 254 12000 0
16 16 18 732 23668 0 254 12000 0
16 16 1 749 114 0 254 12000 0
16 16 44 706 812 0 254 12000 0
16 16 3 747 3 0 254 12000 0
8192 8192 1 0 1 0 1 8192 0
8192 8192 1 0 1 0 1 8192 0
4096 4096 1 1 1 0 2 8192 0
SMR CPU 32 2 253 2 0 254 8160 0
SMR SHARED 24 2 253 2 0 254 6120 0
UMA Slabs 1 176 10 12 10 0 62 3872 0
int pcpu 4 34 478 34 0 254 2048 0
FFS1 dinode 128 0 0 0 0 126 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 62 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 296 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 48 0 0 0 0 254 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
udplite_inpcb 488 0 0 0 0 254 0 0
tcp_log_node 120 0 0 0 0 126 0 0
tcp_log_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 88 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 280 0 0 0 0 30 0 0
AIOCB 752 0 0 0 0 16 0 0
AIOP 32 0 0 0 0 254 0 0
AIO 208 0 0 0 0 62 0 0
TMPFS node 232 0 0 0 0 62 0 0
TMPFS dirent 64 0 0 0 0 254 0 0
NCLNODE 592 0 0 0 0 16 0 0
rentr 24 0 0 0 0 254 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
VNODEPOLL 120 0 0 0 0 126 0 0
crypto_session 72 0 0 0 0 126 0 0
cryptop 280 0 0 0 0 30 0 0
nvme_request 128 0 0 0 0 126 0 0
IOMMU_MAP_ENTRY 120 0 0 0 0 126 0 0
ktls_session 192 0 0 0 0 62 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 832 0 0 0 0 62 0 0
mdpbuf 832 0 0 0 0 4 0 0
nfspbuf 832 0 0 0 0 16 0 0
swwbuf 832 0 0 0 0 8 0 0
swrbuf 832 0 0 0 0 16 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
65536 65536 0 0 0 0 1 0 0
65536 65536 0 0 0 0 1 0 0
65536 65536 0 0 0 0 1 0 0
32768 32768 0 0 0 0 1 0 0
32768 32768 0 0 0 0 1 0 0
32768 32768 0 0 0 0 1 0 0
32768 32768 0 0 0 0 1 0 0
16384 16384 0 0 0 0 1 0 0
16384 16384 0 0 0 0 1 0 0
16384 16384 0 0 0 0 1 0 0
16384 16384 0 0 0 0 1 0 0
8192 8192 0 0 0 0 1 0 0
8192 8192 0 0 0 0 1 0 0
2048 2048 0 0 0 0 8 0 0
fakepg 104 0 0
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot can test patches for this issue, for details see:
https://goo.gl/tpsmEJ#testing-patches
Mark Johnston
Sep 8, 2021, 4:34:27 PM9/8/21
to syzbot, syzkaller-f...@googlegroups.com
Reply all
Reply to author
Forward
0 new messages