Fatal trap NUM: page fault in __mtx_lock_flags (2)
2 views
Skip to first unread message
syzbot
Apr 7, 2022, 5:00:26 AM4/7/22
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 4710aa248bcd Avoid dereferencing a possibly null pointer.
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=13e5cee4f00000
dashboard link: https://syzkaller.appspot.com/bug?extid=ec9279d306a4ff0215f8
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ec9279...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 1; apic id = 01
fault virtual address = 0x18
fault code = supervisor read data, page not present
instruction pointer = 0x20:0xffffffff81656e95
stack pointer = 0x28:0xfffffe00926065a0
frame pointer = 0x28:0xfffffe0092606670
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 19732 (syz-executor.1)
trap number = 12
panic: page fault
cpuid = 1
time = 1649321940
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe0092605db0
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe0092605f10
vpanic() at vpanic+0x2b8/frame 0xfffffe0092605ff0
panic() at panic+0xb5/frame 0xfffffe00926060b0
trap_fatal() at trap_fatal+0x6a4/frame 0xfffffe00926061b0
trap_pfault() at trap_pfault+0x186/frame 0xfffffe00926062f0
trap() at trap+0x5ad/frame 0xfffffe00926064d0
calltrap() at calltrap+0x8/frame 0xfffffe00926064d0
--- trap 0xc, rip = 0xffffffff81656e95, rsp = 0xfffffe00926065a0, rbp = 0xfffffe0092606670 ---
__mtx_lock_flags() at __mtx_lock_flags+0x125/frame 0xfffffe0092606670
sctp_wakeup_the_read_socket() at sctp_wakeup_the_read_socket+0x98/frame 0xfffffe00926066a0
sctp_notify_sender_dry_event() at sctp_notify_sender_dry_event+0x1f9/frame 0xfffffe00926066f0
sctp_setopt() at sctp_setopt+0xdf8b/frame 0xfffffe0092606950
sctp_ctloutput() at sctp_ctloutput+0x3df/frame 0xfffffe0092606a50
sosetopt() at sosetopt+0x20e/frame 0xfffffe0092606bb0
kern_setsockopt() at kern_setsockopt+0x23c/frame 0xfffffe0092606ce0
sys_setsockopt() at sys_setsockopt+0x76/frame 0xfffffe0092606d30
amd64_syscall() at amd64_syscall+0x40c/frame 0xfffffe0092606f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0092606f30
--- syscall (198, FreeBSD ELF64, nosys), rip = 0x28a42a, rsp = 0x833011f08, rbp = 0x833011f70 ---
KDB: enter: panic
[ thread pid 19732 tid 132142 ]
Stopped at kdb_enter+0x6b: movq $0,0x270818a(%rip)
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xf8d5dc88a261229e
rdx 0x1
rbx 0
rsp 0xfffffe0092605ef0
rbp 0xfffffe0092605f10
rsi 0
rdi 0xffffffff8177cafa vprintf+0x35a
r8 0
r9 0xffffffff
r10 0
r11 0xfffffe00998e0510
r12 0xfffffe00998e0000
r13 0xfffffe0092605f01
r14 0xffffffff82bbf280 .str.26
r15 0xffffffff82bbf280 .str.26
rip 0xffffffff8177008b kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x270818a(%rip)
db> show proc
Process 19732 (syz-executor.1) at 0xfffffe0058bb0a90:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 15386 at 0xfffffe0099f89548
ABI: FreeBSD ELF64
flag: 0x10080480 flag2: 0
arguments: /root/syz-executor.1 exec
reaper: 0xfffffe0053ddc000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00924669f8
(map 0xfffffe00924669f8)
(map.pmap 0xfffffe0092466ab8)
(pmap 0xfffffe0092466b20)
threads: 2
132140 s syz-executor.1
132142 Run CPU 1 syz-executor.1
db> ps
pid ppid pgrp uid state wmesg wchan cmd
19733 791 791 0 R (threaded) syz-executor.2
132008 RunQ syz-executor.2
132143 D biowr 0xfffffe0007aab750 syz-executor.2
132144 D ufs 0xfffffe0058df7cb0 syz-executor.2
19732 15386 15386 0 T (threaded) syz-executor.1
132140 s syz-executor.1
132142 Run CPU 1 syz-executor.1
19731 820 820 0 R (threaded) syz-executor.3
129031 RunQ syz-executor.3
132139 S accept 0xfffffe0058be5d10 syz-executor.3
19728 779 779 0 R (threaded) syz-executor.0
131708 RunQ syz-executor.0
132130 S connec 0xfffffe008fe5385a syz-executor.0
132135 S uwait 0xfffffe0057a72900 syz-executor.0
16084 1 16084 0 Ss+ ttyin 0xfffffe0056fe64b0 getty
16083 1 16083 0 Ss+ ttyin 0xfffffe0056fe60b0 getty
16082 1 16082 0 Ss+ ttyin 0xfffffe0056fe5cb0 getty
16081 1 16081 0 Ss+ ttyin 0xfffffe0056fe58b0 getty
16080 1 16080 0 Ss+ ttyin 0xfffffe00081f18b0 getty
16079 1 16079 0 Ss+ ttyin 0xfffffe00081f14b0 getty
16078 1 16078 0 Ss+ ttyin 0xfffffe0056fe54b0 getty
16077 1 16077 0 Ss+ ttyin 0xfffffe00081f10b0 getty
16076 1 16076 0 Rs+ getty
15386 774 15386 0 Rs syz-executor.1
8642 1 779 0 SV uwait 0xfffffe0007975000 syz-executor.0
8633 1 779 0 SV uwait 0xfffffe0058dd5400 syz-executor.0
8622 1 779 0 SV uwait 0xfffffe0057a73580 syz-executor.0
1993 0 0 0 DL aiordy 0xfffffe0092dd6548 [aiod4]
1992 0 0 0 DL aiordy 0xfffffe0099d6d548 [aiod3]
1989 0 0 0 DL aiordy 0xfffffe0099d6e000 [aiod2]
1987 0 0 0 DL aiordy 0xfffffe0099d6da90 [aiod1]
820 774 820 0 Rs syz-executor.3
791 774 791 0 Rs syz-executor.2
779 774 779 0 Rs syz-executor.0
774 1 772 0 R (threaded) syz-fuzzer
100109 S uwait 0xfffffe0057a75080 syz-fuzzer
100114 RunQ syz-fuzzer
100115 S uwait 0xfffffe0058dd5d80 syz-fuzzer
100116 S uwait 0xfffffe0058dd5e80 syz-fuzzer
100117 S uwait 0xfffffe0058dd6000 syz-fuzzer
100118 S uwait 0xfffffe0058dd6100 syz-fuzzer
100119 S uwait 0xfffffe0057a74100 syz-fuzzer
100122 S kqread 0xfffffe0007971d00 syz-fuzzer
100123 RunQ syz-fuzzer
770 688 770 0 Rs sshd
688 1 688 0 Ss select 0xfffffe0053dd1840 sshd
17 0 0 0 DL syncer 0xffffffff83f6b0e0 [syncer]
16 0 0 0 DL vlruwt 0xfffffe005880ca90 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100080 D psleep 0xffffffff83f696e0 [bufdaemon]
100083 D - 0xffffffff83211f80 [bufspacedaemon-0]
100095 D sdflush 0xfffffe0053f67ce8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83f9d1c0 [vmdaemon]
8 0 0 0 RL (threaded) [pagedaemon]
100078 RunQ [dom0]
100081 D launds 0xffffffff83f91084 [laundry: dom0]
100082 D umarcl 0xffffffff81ea99d0 [uma]
7 0 0 0 DL - 0xffffffff83c01688 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84aef530 [pf purge]
5 0 0 0 DL waiting 0xffffffff846d24a0 [sctp_iterator]
4 0 0 0 RL (threaded) [cam]
100045 RunQ [doneq0]
100046 D - 0xffffffff83aa3540 [async]
100077 D - 0xffffffff83aa33c0 [scanner]
14 0 0 0 DL seqstat 0xfffffe0056f18c88 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83f8c880 [crypto]
100042 D crypto_ 0xfffffe0053effd30 [crypto returns 0]
100043 D crypto_ 0xfffffe0053effd80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100036 D - 0xffffffff83e1ae80 [g_event]
100037 D - 0xffffffff83e1aea0 [g_up]
100038 D - 0xffffffff83e1aec0 [g_down]
2 0 0 0 RL (threaded) [clock]
100030 Run CPU 0 [clock (0)]
100031 I [clock (1)]
12 0 0 0 LL (threaded) [intr]
100010 I [swi6: Giant taskq]
100017 I [swi5: fast taskq]
100020 I [swi6: task queue]
100029 L *sctp-tc 0xfffffe0053ecb9c0 [swi1: netisr 0]
100032 I [swi3: busdma]
100033 I [swi1: hpts]
100034 I [swi1: hpts]
100047 I [irq24: virtio_pci0]
100048 I [irq25: virtio_pci0]
100049 I [irq26: virtio_pci0]
100050 I [irq27: virtio_pci0]
100051 I [irq28: virtio_pci1]
100052 I [irq29: virtio_pci1]
100053 I [irq30: virtio_pci1]
100054 I [irq31: virtio_pci1]
100055 I [irq32: virtio_pci1]
100060 I [irq33: virtio_pci2]
100061 I [irq34: virtio_pci2]
100062 I [irq35: virtio_pci2]
100064 I [irq1: atkbd0]
100065 I [irq12: psm0]
100066 I [swi0: uart uart++]
100070 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0053ddc000 [init]
10 0 0 0 DL audit_w 0xffffffff83f8d380 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83e1b8c0 [swapper]
100005 D - 0xfffffe0007973100 [softirq_0]
100006 D - 0xfffffe0007973000 [softirq_1]
100007 D - 0xfffffe0007972e00 [if_io_tqg_0]
100008 D - 0xfffffe0007972d00 [if_io_tqg_1]
100009 D - 0xfffffe0007972c00 [if_config_tqg_0]
100011 D - 0xfffffe0007972a00 [aiod_kick taskq]
100012 D - 0xfffffe0007972900 [inm_free taskq]
100013 D - 0xfffffe0007972800 [linuxkpi_irq_wq]
100014 D - 0xfffffe0007972700 [in6m_free taskq]
100015 D - 0xfffffe0007972600 [deferred_unmount ta]
100016 D - 0xfffffe0007972500 [thread taskq]
100018 D - 0xfffffe0007972300 [pci_hp taskq]
100019 D - 0xfffffe0007972200 [kqueue_ctx taskq]
100021 D - 0xfffffe0007972000 [linuxkpi_short_wq_0]
100022 D - 0xfffffe0007972000 [linuxkpi_short_wq_1]
100023 D - 0xfffffe0007972000 [linuxkpi_short_wq_2]
100024 D - 0xfffffe0007972000 [linuxkpi_short_wq_3]
100025 D - 0xfffffe0007971e00 [linuxkpi_long_wq_0]
100026 D - 0xfffffe0007971e00 [linuxkpi_long_wq_1]
100027 D - 0xfffffe0007971e00 [linuxkpi_long_wq_2]
100028 D - 0xfffffe0007971e00 [linuxkpi_long_wq_3]
100035 D - 0xfffffe0053f21300 [firmware taskq]
100039 D - 0xfffffe0053f21100 [crypto_0]
100040 D - 0xfffffe0053f21100 [crypto_1]
100056 D - 0xfffffe0053f1e000 [vtnet0 rxq 0]
100057 D - 0xfffffe0007974e00 [vtnet0 txq 0]
100058 D - 0xfffffe0007974d00 [vtnet0 rxq 1]
100059 D - 0xfffffe0007974c00 [vtnet0 txq 1]
100063 D vtbslp 0xfffffe005700e800 [virtio_balloon]
100067 D - 0xffffffff82bc5100 [deadlkres]
100071 D - 0xfffffe0007973200 [mca taskq]
100072 D - 0xfffffe00574c1200 [acpi_task_0]
100073 D - 0xfffffe00574c1200 [acpi_task_1]
100074 D - 0xfffffe00574c1200 [acpi_task_2]
100076 D - 0xfffffe0053f20e00 [CAM taskq]
db> show all locks
Process 19733 (syz-executor.2) thread 0xfffffe0092d8a740 (132143)
exclusive lockmgr bufwait (bufwait) r = 0 (0xfffffe0007aab7d0) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_bio.c:1725
exclusive lockmgr ufs (ufs) r = 0 (0xfffffe0058df7cb0) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_vnops.c:1166
Process 19732 (syz-executor.1) thread 0xfffffe00998e0000 (132142)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe0097d15380) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:5145
exclusive sleep mutex sctp-inp (inp) r = 0 (0xfffffe0097cbf420) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:5081
Process 16076 (getty) thread 0xfffffe0058b2c1e0 (100087)
exclusive sleep mutex ttymtx (ttymtx) r = 0 (0xfffffe0056fe7408) locked @ /syzkaller/managers/main/kernel/sys/kern/tty.c:218
Process 12 (intr) thread 0xfffffe0053ec4ac0 (100029)
exclusive sleep mutex sctp-create (inp_create) r = 0 (0xfffffe0097cbf440) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_input.c:4907
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 6 4801K 6
devbuf 4217 4323K 4245
sysctloid 35306 2080K 35377
vtbuf 24 1968K 46
kobj 327 1308K 488
newblk 7 1026K 176738
vfscache 3 1025K 3
pcb 165 701K 30377
inodedep 121 557K 32675
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vmem 3 274K 6
subproc 127 211K 19823
acpica 1674 184K 56014
filedesc 23 181K 37404
vnet_data 1 168K 1
tidhash 3 141K 3
linker 358 134K 386
pagedep 9 130K 18709
tfo_ccache 1 128K 1
DEVFS1 109 109K 129
sem 4 106K 4
bus 991 81K 5140
mtx_pool 2 72K 2
syncache 1 68K 1
sctp_stro 66 66K 2642
module 512 64K 512
acpitask 1 64K 1
ddb_capture 1 64K 1
sctp_atcl 151 57K 19009
umtx 418 53K 418
kdtrace 209 44K 51879
temp 34 33K 2839
DEVFS3 128 32K 139
hostcache 1 32K 1
shm 1 32K 8
msg 4 30K 4
dirrem 112 28K 23740
gtaskqueue 18 26K 18
kbdmux 6 22K 6
ifaddr 71 20K 82
DEVFS_RULE 56 20K 56
routetbl 198 18K 611
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
ithread 100 16K 100
sctp_timw 63 16K 63
bus-sc 34 15K 1651
ifnet 8 15K 8
freefile 112 14K 23733
lltable 44 14K 152
KTRACE 101 13K 2793
ether_multi 152 13K 195
kenv 95 12K 95
eventhandler 134 12K 134
rman 88 11K 431
GEOM 61 11K 490
CAM queue 5 11K 1528
sctp_atky 217 10K 21167
in6_multi 65 9K 81
bmsafemap 3 9K 27331
UART 12 9K 12
devstat 4 9K 4
ksem 1 8K 358
rpc 2 8K 2
shmfd 1 8K 177
pfs_vncache 1 8K 1
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
taskqueue 63 7K 63
sglist 5 7K 5
CAM DEV 3 6K 510
sctp_stri 11 6K 1057
kqueue 47 6K 19773
cred 20 5K 314
ufs_dirhash 24 5K 24
UMA 272 5K 272
pf_ifnet 10 5K 24
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
plimit 16 4K 1134
evdev 4 4K 4
DEVFSP 58 4K 4506
acpisem 28 4K 28
hhook 15 4K 17
kcovinfo 52 4K 65
pwddesc 45 3K 19737
terminal 11 3K 11
sctp_athm 151 3K 19022
ip6ndp 13 3K 17
uidinfo 2 3K 14
session 17 3K 106
sctp_map 132 3K 5288
lockf 17 3K 100
proc-args 57 3K 21210
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
sctp_ifa 14 2K 17
Unitno 31 2K 6163
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 9
ipsecpolicy 2 2K 2
acpidev 20 2K 20
clone 9 2K 9
tun 7 2K 8
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 90
NFSD session 1 1K 1
CAM periph 4 1K 271
ipsec 3 1K 3
sctp_ifn 6 1K 17
mld 6 1K 7
igmp 6 1K 7
BPF 6 1K 74
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 233
pci_link 10 1K 10
mkdir 5 1K 37374
diradd 5 1K 23781
crypto 4 1K 254
encap_export_host 12 1K 12
CC Mem 9 1K 17432
freework 2 1K 83173
newdirblk 4 1K 18687
pfil 4 1K 4
selfd 8 1K 281144
cdev 2 1K 2
osd 13 1K 17432
inpcbpolicy 13 1K 19326
pf_rule 3 1K 33
chacha20random 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
freeblks 1 1K 28053
vnodes 1 1K 1
CAM SIM 2 1K 2
select 2 1K 74
feeder 7 1K 7
pf_osfp 2 1K 2
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
cryptodev 2 1K 4920
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
iov 2 1K 41140
pmchooks 1 1K 1
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 48
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
sctp_socko 1 1K 11214
soname 1 1K 64914
p1003.1b 1 1K 1
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
pf_table 0 0K 0
pf_altq 0 0K 0
pf_temp 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 4915
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_iter 0 0K 16
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 16
sctp_aadr 0 0K 2
filemon 0 0K 73
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
ixl 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
xen_intr 0 0K 0
NFSD srvcache 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
msdosfs_node 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
DEVFS4 0 0K 0
xenbus 0 0K 0
DEVFS2 0 0K 0
vm_fictitious 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
UMAHash 0 0K 0
vtfont 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 65316
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 42
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 286
allocindir 0 0K 0
indirdep 0 0K 96276
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
ktls_ocf 0 0K 0
AHCI driver 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 56
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 27
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
statfs 0 0K 19505
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 31
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 5178
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
aios 0 0K 11
lio 0 0K 136
acl 0 0K 0
mbuf_tag 0 0K 152
ktls 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
lDevFlags * malloc 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
procdesc 0 0K 18
ioctlops 0 0K 737
eventfd 0 0K 69
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 978
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
filecaps 0 0K 154
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
boottrace 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8339 1059 1749666 0 254 38494208 0
tcp_log 416 152 9253 369717 0 254 3912480 0
mbuf_cluster 2048 1524 0 1524 0 254 3121152 0
RADIX NODE 144 19258 841 612421 0 62 2894256 0
mbuf 256 9002 664 3113476 0 254 2474496 0
pbuf 2624 0 762 0 0 2 1999488 0
BUF TRIE 144 201 11587 187498 0 62 1697472 0
malloc-4096 4096 373 25 20355 0 2 1630208 0
malloc-384 384 4165 35 4165 0 30 1612800 0
malloc-128 128 11634 84 11643 0 126 1499904 0
UMA Slabs 0 112 11476 2 11476 0 126 1285536 0
sctp_asoc 2288 66 444 2642 0 254 1166880 0
vmem btag 56 19894 89 19894 0 254 1119048 0
sctp_ep 1208 74 696 14814 0 254 930160 0
tcpcb 1104 9 754 17421 0 254 842352 0
socket 960 24 740 36238 0 254 733440 0
FFS inode 1160 521 32 24254 0 8 641480 0
VM OBJECT 264 1467 903 448004 0 30 625680 0
256 Bucket 2048 269 21 8627 0 8 593920 0
malloc-8192 8192 2 66 76 0 1 557056 0
tcp_bbr_map 128 8 4053 53405 0 126 519808 0
malloc-2048 2048 82 150 16116 0 8 475136 0
malloc-384 384 120 990 32727 0 30 426240 0
malloc-256 256 402 1158 114747 0 62 399360 0
lkpicurr 168 2 2350 2 0 62 395136 0
lkpimm 168 1 2327 1 0 62 391104 0
mbuf_packet 256 809 715 32253 0 254 390144 0
sctp_raddr 736 67 450 2657 0 254 380512 0
THREAD 1808 163 46 32144 0 8 377872 0
ertt_txseginfo 40 0 9191 146848 0 254 367640 0
MAP ENTRY 96 1572 1956 1058666 0 126 338688 0
malloc-65536 65536 5 0 5 0 1 327680 0
malloc-256 256 284 961 30110 0 62 318720 0
VNODE 448 561 105 24298 0 30 298368 0
malloc-32768 32768 0 8 91680 0 1 262144 0
malloc-16384 16384 12 4 18700 0 1 262144 0
malloc-64 64 3865 230 3973 0 254 262080 0
malloc-16 16 14605 395 14687 0 254 240000 0
DEVCTL 1024 14 206 169 0 0 225280 0
malloc-128 128 1330 313 64646 0 126 210304 0
malloc-65536 65536 3 0 3 0 1 196608 0
UMA Zones 768 244 0 244 0 16 187392 0
FPU_save_area 832 165 60 39577 0 16 187200 0
malloc-32 32 5317 353 5355 0 254 181440 0
FFS2 dinode 256 521 169 24254 0 62 176640 0
malloc-256 256 96 594 177075 0 62 176640 0
128 Bucket 1024 119 44 2265 0 16 166912 0
S VFS Cache 104 1024 497 25761 0 126 158184 0
malloc-384 384 235 155 19440 0 30 149760 0
malloc-128 128 113 1034 24020 0 126 146816 0
VMSPACE 2552 24 30 19711 0 4 137808 0
malloc-65536 65536 0 2 4 0 1 131072 0
malloc-65536 65536 0 2 290 0 1 131072 0
malloc-65536 65536 0 2 144 0 1 131072 0
malloc-1024 1024 120 8 300 0 16 131072 0
unpcb 256 1 509 2052 0 254 130560 0
clpbuf 2624 0 48 48 0 16 125952 0
64 Bucket 512 144 88 83353 0 30 118784 0
sctp_readq 152 4 776 1608 0 254 118560 0
sctp_chunk 152 114 666 2870 0 254 118560 0
ksiginfo 112 71 973 8024 0 126 116928 0
malloc-128 128 738 161 4322 0 126 115072 0
malloc-128 128 653 246 48822 0 126 115072 0
malloc-1024 1024 68 44 2648 0 16 114688 0
PROC 1352 44 37 19733 0 8 109512 0
malloc-64 64 761 814 324198 0 254 100800 0
malloc-4096 4096 2 20 22 0 3 90112 0
filedesc0 1072 45 39 19737 0 8 90048 0
UMA Kegs 384 230 3 230 0 30 89472 0
sctp_stream_msg_out 112 46 746 2482 0 254 88704 0
g_bio 408 4 206 1293590 0 30 85680 0
pipe 744 17 98 1794 0 16 85560 0
malloc-64 64 755 568 29946 0 254 84672 0
32 Bucket 256 161 154 30079 0 62 80640 0
tcp_inpcb 424 9 171 17421 0 30 76320 0
malloc-8192 8192 9 0 9 0 1 73728 0
malloc-8192 8192 7 2 110 0 1 73728 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-16384 16384 4 0 4 0 1 65536 0
malloc-4096 4096 15 1 26 0 2 65536 0
malloc-1024 1024 21 43 547 0 16 65536 0
malloc-256 256 4 251 111227 0 62 65280 0
malloc-256 256 69 186 33334 0 62 65280 0
ripcb 424 0 153 1120 0 30 64872 0
udplite_inpcb 424 0 153 308 0 30 64872 0
udp_inpcb 424 4 149 477 0 30 64872 0
malloc-4096 4096 10 4 554 0 2 57344 0
malloc-64 64 28 791 28685 0 254 52416 0
malloc-64 64 54 765 19748 0 254 52416 0
Files 80 131 519 95819 0 126 52000 0
ttyoutq 256 72 123 848 0 62 49920 0
malloc-256 256 36 159 18785 0 62 49920 0
DIRHASH 1024 34 14 34 0 16 49152 0
NAMEI 1024 0 48 118060 0 16 49152 0
malloc-16384 16384 1 2 161 0 1 49152 0
malloc-1024 1024 19 29 1465 0 16 49152 0
malloc-512 512 11 85 1058 0 30 49152 0
tcp_rack_pcb 896 0 54 4915 0 16 48384 0
tcp_bbr_pcb 832 4 50 6547 0 16 44928 0
syncache 168 0 264 4 0 254 44352 0
pcpu-8 8 4645 475 5193 0 254 40960 0
sctp_laddr 48 18 822 3258 0 254 40320 0
ttyinq 160 135 115 1590 0 62 40000 0
Mountpoints 2752 2 12 2 0 4 38528 0
da_ccb 544 1 69 323515 0 16 38080 0
PWD 32 17 1117 18783 0 254 36288 0
malloc-64 64 26 541 97 0 254 36288 0
malloc-64 64 173 394 220 0 254 36288 0
malloc-64 64 11 556 96 0 254 36288 0
malloc-32 32 519 615 42310 0 254 36288 0
16 Bucket 144 89 163 13217 0 62 36288 0
8 Bucket 80 66 384 5355 0 126 36000 0
malloc-128 128 34 245 9762 0 126 35712 0
malloc-128 128 98 181 662 0 126 35712 0
malloc-128 128 24 255 81 0 126 35712 0
routing nhops 256 28 107 40 0 62 34560 0
malloc-384 384 55 35 88 0 30 34560 0
malloc-256 256 24 111 2887 0 62 34560 0
malloc-256 256 7 128 341 0 62 34560 0
TURNSTILE 136 210 42 210 0 62 34272 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 2 0 17 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-4096 4096 1 7 19512 0 2 32768 0
malloc-2048 2048 0 16 51 0 8 32768 0
malloc-2048 2048 8 8 46 0 8 32768 0
malloc-2048 2048 12 4 14 0 8 32768 0
malloc-2048 2048 1 15 103 0 8 32768 0
malloc-2048 2048 1 15 31 0 8 32768 0
malloc-2048 2048 2 14 419 0 8 32768 0
malloc-1024 1024 2 30 46 0 16 32768 0
malloc-1024 1024 4 28 5 0 16 32768 0
malloc-1024 1024 3 29 12 0 16 32768 0
malloc-1024 1024 1 31 177 0 16 32768 0
malloc-512 512 0 64 118 0 30 32768 0
malloc-512 512 2 62 2 0 30 32768 0
malloc-512 512 3 61 94 0 30 32768 0
malloc-512 512 0 64 14 0 30 32768 0
malloc-512 512 10 54 61 0 30 32768 0
malloc-512 512 0 64 17 0 30 32768 0
malloc-512 512 1 63 35 0 30 32768 0
pcpu-64 64 492 20 492 0 254 32768 0
KNOTE 160 28 172 276481 0 62 32000 0
tcp_rack_map 120 0 264 8061 0 126 31680 0
cpuset 104 8 271 14041 0 126 29016 0
tcp_inpcb ports 32 4 878 10387 0 254 28224 0
ertt 72 9 383 17421 0 126 28224 0
malloc-32 32 19 863 24892 0 254 28224 0
4 Bucket 48 13 575 416 0 254 28224 0
2 Bucket 32 114 768 18066 0 254 28224 0
AIO 208 0 133 61 0 62 27664 0
malloc-8192 8192 0 3 34 0 1 24576 0
malloc-4096 4096 1 5 9 0 2 24576 0
rtentry 176 30 108 40 0 62 24288 0
PGRP 88 17 259 106 0 126 24288 0
rl_entry 40 99 507 99 0 254 24240 0
itimer 352 0 66 7 0 30 23232 0
malloc-384 384 11 49 11 0 30 23040 0
malloc-384 384 43 17 154 0 30 23040 0
domainset 40 0 567 10978 0 254 22680 0
SLEEPQUEUE 88 210 46 210 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udpcb 32 4 626 785 0 254 20160 0
udplite_inpcb ports 32 0 630 13 0 254 20160 0
udp_inpcb ports 32 2 628 40 0 254 20160 0
AIOP 32 4 626 4 0 254 20160 0
malloc-32 32 28 602 1794 0 254 20160 0
malloc-32 32 129 501 14795 0 254 20160 0
malloc-32 32 75 555 127 0 254 20160 0
malloc-32 32 171 459 175 0 254 20160 0
malloc-32 32 7 623 33 0 254 20160 0
cryptop 280 0 70 24 0 30 19600 0
AIOCB 552 0 35 309 0 16 19320 0
AIOLIO 272 0 70 136 0 30 19040 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 0 4 73 0 2 16384 0
malloc-4096 4096 0 4 22 0 2 16384 0
malloc-2048 2048 3 5 10 0 8 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
ipq 56 0 288 1 0 254 16128 0
vtnet_tx_hdr 24 0 668 891427 0 254 16032 0
malloc-16 16 510 490 51878 0 254 16000 0
malloc-16 16 187 813 48559 0 254 16000 0
malloc-16 16 157 843 19030 0 254 16000 0
kenv 258 15 45 1039 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
malloc-16 16 49 701 30944 0 254 12000 0
malloc-16 16 8 742 27 0 254 12000 0
malloc-16 16 40 710 237 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 14 498 14 0 254 8192 0
malloc-16 16 0 500 2 0 254 8000 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 312 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 56 0 0 0 0 254 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 72 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
tcp_log_node 120 0 0 0 0 126 0 0
tcp_log_bucket 176 0 0 0 0 62 0 0
tcpreass 48 0 0 0 0 254 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
TMPFS node 224 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
linu
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following issue on:
HEAD commit: 4710aa248bcd Avoid dereferencing a possibly null pointer.
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=13e5cee4f00000
dashboard link: https://syzkaller.appspot.com/bug?extid=ec9279d306a4ff0215f8
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ec9279...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 1; apic id = 01
fault virtual address = 0x18
fault code = supervisor read data, page not present
instruction pointer = 0x20:0xffffffff81656e95
stack pointer = 0x28:0xfffffe00926065a0
frame pointer = 0x28:0xfffffe0092606670
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 19732 (syz-executor.1)
trap number = 12
panic: page fault
cpuid = 1
time = 1649321940
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe0092605db0
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe0092605f10
vpanic() at vpanic+0x2b8/frame 0xfffffe0092605ff0
panic() at panic+0xb5/frame 0xfffffe00926060b0
trap_fatal() at trap_fatal+0x6a4/frame 0xfffffe00926061b0
trap_pfault() at trap_pfault+0x186/frame 0xfffffe00926062f0
trap() at trap+0x5ad/frame 0xfffffe00926064d0
calltrap() at calltrap+0x8/frame 0xfffffe00926064d0
--- trap 0xc, rip = 0xffffffff81656e95, rsp = 0xfffffe00926065a0, rbp = 0xfffffe0092606670 ---
__mtx_lock_flags() at __mtx_lock_flags+0x125/frame 0xfffffe0092606670
sctp_wakeup_the_read_socket() at sctp_wakeup_the_read_socket+0x98/frame 0xfffffe00926066a0
sctp_notify_sender_dry_event() at sctp_notify_sender_dry_event+0x1f9/frame 0xfffffe00926066f0
sctp_setopt() at sctp_setopt+0xdf8b/frame 0xfffffe0092606950
sctp_ctloutput() at sctp_ctloutput+0x3df/frame 0xfffffe0092606a50
sosetopt() at sosetopt+0x20e/frame 0xfffffe0092606bb0
kern_setsockopt() at kern_setsockopt+0x23c/frame 0xfffffe0092606ce0
sys_setsockopt() at sys_setsockopt+0x76/frame 0xfffffe0092606d30
amd64_syscall() at amd64_syscall+0x40c/frame 0xfffffe0092606f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0092606f30
--- syscall (198, FreeBSD ELF64, nosys), rip = 0x28a42a, rsp = 0x833011f08, rbp = 0x833011f70 ---
KDB: enter: panic
[ thread pid 19732 tid 132142 ]
Stopped at kdb_enter+0x6b: movq $0,0x270818a(%rip)
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xf8d5dc88a261229e
rdx 0x1
rbx 0
rsp 0xfffffe0092605ef0
rbp 0xfffffe0092605f10
rsi 0
rdi 0xffffffff8177cafa vprintf+0x35a
r8 0
r9 0xffffffff
r10 0
r11 0xfffffe00998e0510
r12 0xfffffe00998e0000
r13 0xfffffe0092605f01
r14 0xffffffff82bbf280 .str.26
r15 0xffffffff82bbf280 .str.26
rip 0xffffffff8177008b kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x270818a(%rip)
db> show proc
Process 19732 (syz-executor.1) at 0xfffffe0058bb0a90:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 15386 at 0xfffffe0099f89548
ABI: FreeBSD ELF64
flag: 0x10080480 flag2: 0
arguments: /root/syz-executor.1 exec
reaper: 0xfffffe0053ddc000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00924669f8
(map 0xfffffe00924669f8)
(map.pmap 0xfffffe0092466ab8)
(pmap 0xfffffe0092466b20)
threads: 2
132140 s syz-executor.1
132142 Run CPU 1 syz-executor.1
db> ps
pid ppid pgrp uid state wmesg wchan cmd
19733 791 791 0 R (threaded) syz-executor.2
132008 RunQ syz-executor.2
132143 D biowr 0xfffffe0007aab750 syz-executor.2
132144 D ufs 0xfffffe0058df7cb0 syz-executor.2
19732 15386 15386 0 T (threaded) syz-executor.1
132140 s syz-executor.1
132142 Run CPU 1 syz-executor.1
19731 820 820 0 R (threaded) syz-executor.3
129031 RunQ syz-executor.3
132139 S accept 0xfffffe0058be5d10 syz-executor.3
19728 779 779 0 R (threaded) syz-executor.0
131708 RunQ syz-executor.0
132130 S connec 0xfffffe008fe5385a syz-executor.0
132135 S uwait 0xfffffe0057a72900 syz-executor.0
16084 1 16084 0 Ss+ ttyin 0xfffffe0056fe64b0 getty
16083 1 16083 0 Ss+ ttyin 0xfffffe0056fe60b0 getty
16082 1 16082 0 Ss+ ttyin 0xfffffe0056fe5cb0 getty
16081 1 16081 0 Ss+ ttyin 0xfffffe0056fe58b0 getty
16080 1 16080 0 Ss+ ttyin 0xfffffe00081f18b0 getty
16079 1 16079 0 Ss+ ttyin 0xfffffe00081f14b0 getty
16078 1 16078 0 Ss+ ttyin 0xfffffe0056fe54b0 getty
16077 1 16077 0 Ss+ ttyin 0xfffffe00081f10b0 getty
16076 1 16076 0 Rs+ getty
15386 774 15386 0 Rs syz-executor.1
8642 1 779 0 SV uwait 0xfffffe0007975000 syz-executor.0
8633 1 779 0 SV uwait 0xfffffe0058dd5400 syz-executor.0
8622 1 779 0 SV uwait 0xfffffe0057a73580 syz-executor.0
1993 0 0 0 DL aiordy 0xfffffe0092dd6548 [aiod4]
1992 0 0 0 DL aiordy 0xfffffe0099d6d548 [aiod3]
1989 0 0 0 DL aiordy 0xfffffe0099d6e000 [aiod2]
1987 0 0 0 DL aiordy 0xfffffe0099d6da90 [aiod1]
820 774 820 0 Rs syz-executor.3
791 774 791 0 Rs syz-executor.2
779 774 779 0 Rs syz-executor.0
774 1 772 0 R (threaded) syz-fuzzer
100109 S uwait 0xfffffe0057a75080 syz-fuzzer
100114 RunQ syz-fuzzer
100115 S uwait 0xfffffe0058dd5d80 syz-fuzzer
100116 S uwait 0xfffffe0058dd5e80 syz-fuzzer
100117 S uwait 0xfffffe0058dd6000 syz-fuzzer
100118 S uwait 0xfffffe0058dd6100 syz-fuzzer
100119 S uwait 0xfffffe0057a74100 syz-fuzzer
100122 S kqread 0xfffffe0007971d00 syz-fuzzer
100123 RunQ syz-fuzzer
770 688 770 0 Rs sshd
688 1 688 0 Ss select 0xfffffe0053dd1840 sshd
17 0 0 0 DL syncer 0xffffffff83f6b0e0 [syncer]
16 0 0 0 DL vlruwt 0xfffffe005880ca90 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100080 D psleep 0xffffffff83f696e0 [bufdaemon]
100083 D - 0xffffffff83211f80 [bufspacedaemon-0]
100095 D sdflush 0xfffffe0053f67ce8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83f9d1c0 [vmdaemon]
8 0 0 0 RL (threaded) [pagedaemon]
100078 RunQ [dom0]
100081 D launds 0xffffffff83f91084 [laundry: dom0]
100082 D umarcl 0xffffffff81ea99d0 [uma]
7 0 0 0 DL - 0xffffffff83c01688 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84aef530 [pf purge]
5 0 0 0 DL waiting 0xffffffff846d24a0 [sctp_iterator]
4 0 0 0 RL (threaded) [cam]
100045 RunQ [doneq0]
100046 D - 0xffffffff83aa3540 [async]
100077 D - 0xffffffff83aa33c0 [scanner]
14 0 0 0 DL seqstat 0xfffffe0056f18c88 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83f8c880 [crypto]
100042 D crypto_ 0xfffffe0053effd30 [crypto returns 0]
100043 D crypto_ 0xfffffe0053effd80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100036 D - 0xffffffff83e1ae80 [g_event]
100037 D - 0xffffffff83e1aea0 [g_up]
100038 D - 0xffffffff83e1aec0 [g_down]
2 0 0 0 RL (threaded) [clock]
100030 Run CPU 0 [clock (0)]
100031 I [clock (1)]
12 0 0 0 LL (threaded) [intr]
100010 I [swi6: Giant taskq]
100017 I [swi5: fast taskq]
100020 I [swi6: task queue]
100029 L *sctp-tc 0xfffffe0053ecb9c0 [swi1: netisr 0]
100032 I [swi3: busdma]
100033 I [swi1: hpts]
100034 I [swi1: hpts]
100047 I [irq24: virtio_pci0]
100048 I [irq25: virtio_pci0]
100049 I [irq26: virtio_pci0]
100050 I [irq27: virtio_pci0]
100051 I [irq28: virtio_pci1]
100052 I [irq29: virtio_pci1]
100053 I [irq30: virtio_pci1]
100054 I [irq31: virtio_pci1]
100055 I [irq32: virtio_pci1]
100060 I [irq33: virtio_pci2]
100061 I [irq34: virtio_pci2]
100062 I [irq35: virtio_pci2]
100064 I [irq1: atkbd0]
100065 I [irq12: psm0]
100066 I [swi0: uart uart++]
100070 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0053ddc000 [init]
10 0 0 0 DL audit_w 0xffffffff83f8d380 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83e1b8c0 [swapper]
100005 D - 0xfffffe0007973100 [softirq_0]
100006 D - 0xfffffe0007973000 [softirq_1]
100007 D - 0xfffffe0007972e00 [if_io_tqg_0]
100008 D - 0xfffffe0007972d00 [if_io_tqg_1]
100009 D - 0xfffffe0007972c00 [if_config_tqg_0]
100011 D - 0xfffffe0007972a00 [aiod_kick taskq]
100012 D - 0xfffffe0007972900 [inm_free taskq]
100013 D - 0xfffffe0007972800 [linuxkpi_irq_wq]
100014 D - 0xfffffe0007972700 [in6m_free taskq]
100015 D - 0xfffffe0007972600 [deferred_unmount ta]
100016 D - 0xfffffe0007972500 [thread taskq]
100018 D - 0xfffffe0007972300 [pci_hp taskq]
100019 D - 0xfffffe0007972200 [kqueue_ctx taskq]
100021 D - 0xfffffe0007972000 [linuxkpi_short_wq_0]
100022 D - 0xfffffe0007972000 [linuxkpi_short_wq_1]
100023 D - 0xfffffe0007972000 [linuxkpi_short_wq_2]
100024 D - 0xfffffe0007972000 [linuxkpi_short_wq_3]
100025 D - 0xfffffe0007971e00 [linuxkpi_long_wq_0]
100026 D - 0xfffffe0007971e00 [linuxkpi_long_wq_1]
100027 D - 0xfffffe0007971e00 [linuxkpi_long_wq_2]
100028 D - 0xfffffe0007971e00 [linuxkpi_long_wq_3]
100035 D - 0xfffffe0053f21300 [firmware taskq]
100039 D - 0xfffffe0053f21100 [crypto_0]
100040 D - 0xfffffe0053f21100 [crypto_1]
100056 D - 0xfffffe0053f1e000 [vtnet0 rxq 0]
100057 D - 0xfffffe0007974e00 [vtnet0 txq 0]
100058 D - 0xfffffe0007974d00 [vtnet0 rxq 1]
100059 D - 0xfffffe0007974c00 [vtnet0 txq 1]
100063 D vtbslp 0xfffffe005700e800 [virtio_balloon]
100067 D - 0xffffffff82bc5100 [deadlkres]
100071 D - 0xfffffe0007973200 [mca taskq]
100072 D - 0xfffffe00574c1200 [acpi_task_0]
100073 D - 0xfffffe00574c1200 [acpi_task_1]
100074 D - 0xfffffe00574c1200 [acpi_task_2]
100076 D - 0xfffffe0053f20e00 [CAM taskq]
db> show all locks
Process 19733 (syz-executor.2) thread 0xfffffe0092d8a740 (132143)
exclusive lockmgr bufwait (bufwait) r = 0 (0xfffffe0007aab7d0) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_bio.c:1725
exclusive lockmgr ufs (ufs) r = 0 (0xfffffe0058df7cb0) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_vnops.c:1166
Process 19732 (syz-executor.1) thread 0xfffffe00998e0000 (132142)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe0097d15380) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:5145
exclusive sleep mutex sctp-inp (inp) r = 0 (0xfffffe0097cbf420) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:5081
Process 16076 (getty) thread 0xfffffe0058b2c1e0 (100087)
exclusive sleep mutex ttymtx (ttymtx) r = 0 (0xfffffe0056fe7408) locked @ /syzkaller/managers/main/kernel/sys/kern/tty.c:218
Process 12 (intr) thread 0xfffffe0053ec4ac0 (100029)
exclusive sleep mutex sctp-create (inp_create) r = 0 (0xfffffe0097cbf440) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_input.c:4907
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 6 4801K 6
devbuf 4217 4323K 4245
sysctloid 35306 2080K 35377
vtbuf 24 1968K 46
kobj 327 1308K 488
newblk 7 1026K 176738
vfscache 3 1025K 3
pcb 165 701K 30377
inodedep 121 557K 32675
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vmem 3 274K 6
subproc 127 211K 19823
acpica 1674 184K 56014
filedesc 23 181K 37404
vnet_data 1 168K 1
tidhash 3 141K 3
linker 358 134K 386
pagedep 9 130K 18709
tfo_ccache 1 128K 1
DEVFS1 109 109K 129
sem 4 106K 4
bus 991 81K 5140
mtx_pool 2 72K 2
syncache 1 68K 1
sctp_stro 66 66K 2642
module 512 64K 512
acpitask 1 64K 1
ddb_capture 1 64K 1
sctp_atcl 151 57K 19009
umtx 418 53K 418
kdtrace 209 44K 51879
temp 34 33K 2839
DEVFS3 128 32K 139
hostcache 1 32K 1
shm 1 32K 8
msg 4 30K 4
dirrem 112 28K 23740
gtaskqueue 18 26K 18
kbdmux 6 22K 6
ifaddr 71 20K 82
DEVFS_RULE 56 20K 56
routetbl 198 18K 611
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
ithread 100 16K 100
sctp_timw 63 16K 63
bus-sc 34 15K 1651
ifnet 8 15K 8
freefile 112 14K 23733
lltable 44 14K 152
KTRACE 101 13K 2793
ether_multi 152 13K 195
kenv 95 12K 95
eventhandler 134 12K 134
rman 88 11K 431
GEOM 61 11K 490
CAM queue 5 11K 1528
sctp_atky 217 10K 21167
in6_multi 65 9K 81
bmsafemap 3 9K 27331
UART 12 9K 12
devstat 4 9K 4
ksem 1 8K 358
rpc 2 8K 2
shmfd 1 8K 177
pfs_vncache 1 8K 1
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
taskqueue 63 7K 63
sglist 5 7K 5
CAM DEV 3 6K 510
sctp_stri 11 6K 1057
kqueue 47 6K 19773
cred 20 5K 314
ufs_dirhash 24 5K 24
UMA 272 5K 272
pf_ifnet 10 5K 24
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
plimit 16 4K 1134
evdev 4 4K 4
DEVFSP 58 4K 4506
acpisem 28 4K 28
hhook 15 4K 17
kcovinfo 52 4K 65
pwddesc 45 3K 19737
terminal 11 3K 11
sctp_athm 151 3K 19022
ip6ndp 13 3K 17
uidinfo 2 3K 14
session 17 3K 106
sctp_map 132 3K 5288
lockf 17 3K 100
proc-args 57 3K 21210
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
sctp_ifa 14 2K 17
Unitno 31 2K 6163
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 9
ipsecpolicy 2 2K 2
acpidev 20 2K 20
clone 9 2K 9
tun 7 2K 8
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 90
NFSD session 1 1K 1
CAM periph 4 1K 271
ipsec 3 1K 3
sctp_ifn 6 1K 17
mld 6 1K 7
igmp 6 1K 7
BPF 6 1K 74
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 233
pci_link 10 1K 10
mkdir 5 1K 37374
diradd 5 1K 23781
crypto 4 1K 254
encap_export_host 12 1K 12
CC Mem 9 1K 17432
freework 2 1K 83173
newdirblk 4 1K 18687
pfil 4 1K 4
selfd 8 1K 281144
cdev 2 1K 2
osd 13 1K 17432
inpcbpolicy 13 1K 19326
pf_rule 3 1K 33
chacha20random 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
freeblks 1 1K 28053
vnodes 1 1K 1
CAM SIM 2 1K 2
select 2 1K 74
feeder 7 1K 7
pf_osfp 2 1K 2
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
cryptodev 2 1K 4920
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
iov 2 1K 41140
pmchooks 1 1K 1
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 48
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
sctp_socko 1 1K 11214
soname 1 1K 64914
p1003.1b 1 1K 1
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
pf_table 0 0K 0
pf_altq 0 0K 0
pf_temp 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 4915
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_iter 0 0K 16
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 16
sctp_aadr 0 0K 2
filemon 0 0K 73
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
ixl 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
xen_intr 0 0K 0
NFSD srvcache 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
msdosfs_node 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
DEVFS4 0 0K 0
xenbus 0 0K 0
DEVFS2 0 0K 0
vm_fictitious 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
UMAHash 0 0K 0
vtfont 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 65316
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 42
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 286
allocindir 0 0K 0
indirdep 0 0K 96276
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
ktls_ocf 0 0K 0
AHCI driver 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 56
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 27
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
statfs 0 0K 19505
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 31
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 5178
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
aios 0 0K 11
lio 0 0K 136
acl 0 0K 0
mbuf_tag 0 0K 152
ktls 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
lDevFlags * malloc 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
procdesc 0 0K 18
ioctlops 0 0K 737
eventfd 0 0K 69
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 978
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
filecaps 0 0K 154
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
boottrace 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8339 1059 1749666 0 254 38494208 0
tcp_log 416 152 9253 369717 0 254 3912480 0
mbuf_cluster 2048 1524 0 1524 0 254 3121152 0
RADIX NODE 144 19258 841 612421 0 62 2894256 0
mbuf 256 9002 664 3113476 0 254 2474496 0
pbuf 2624 0 762 0 0 2 1999488 0
BUF TRIE 144 201 11587 187498 0 62 1697472 0
malloc-4096 4096 373 25 20355 0 2 1630208 0
malloc-384 384 4165 35 4165 0 30 1612800 0
malloc-128 128 11634 84 11643 0 126 1499904 0
UMA Slabs 0 112 11476 2 11476 0 126 1285536 0
sctp_asoc 2288 66 444 2642 0 254 1166880 0
vmem btag 56 19894 89 19894 0 254 1119048 0
sctp_ep 1208 74 696 14814 0 254 930160 0
tcpcb 1104 9 754 17421 0 254 842352 0
socket 960 24 740 36238 0 254 733440 0
FFS inode 1160 521 32 24254 0 8 641480 0
VM OBJECT 264 1467 903 448004 0 30 625680 0
256 Bucket 2048 269 21 8627 0 8 593920 0
malloc-8192 8192 2 66 76 0 1 557056 0
tcp_bbr_map 128 8 4053 53405 0 126 519808 0
malloc-2048 2048 82 150 16116 0 8 475136 0
malloc-384 384 120 990 32727 0 30 426240 0
malloc-256 256 402 1158 114747 0 62 399360 0
lkpicurr 168 2 2350 2 0 62 395136 0
lkpimm 168 1 2327 1 0 62 391104 0
mbuf_packet 256 809 715 32253 0 254 390144 0
sctp_raddr 736 67 450 2657 0 254 380512 0
THREAD 1808 163 46 32144 0 8 377872 0
ertt_txseginfo 40 0 9191 146848 0 254 367640 0
MAP ENTRY 96 1572 1956 1058666 0 126 338688 0
malloc-65536 65536 5 0 5 0 1 327680 0
malloc-256 256 284 961 30110 0 62 318720 0
VNODE 448 561 105 24298 0 30 298368 0
malloc-32768 32768 0 8 91680 0 1 262144 0
malloc-16384 16384 12 4 18700 0 1 262144 0
malloc-64 64 3865 230 3973 0 254 262080 0
malloc-16 16 14605 395 14687 0 254 240000 0
DEVCTL 1024 14 206 169 0 0 225280 0
malloc-128 128 1330 313 64646 0 126 210304 0
malloc-65536 65536 3 0 3 0 1 196608 0
UMA Zones 768 244 0 244 0 16 187392 0
FPU_save_area 832 165 60 39577 0 16 187200 0
malloc-32 32 5317 353 5355 0 254 181440 0
FFS2 dinode 256 521 169 24254 0 62 176640 0
malloc-256 256 96 594 177075 0 62 176640 0
128 Bucket 1024 119 44 2265 0 16 166912 0
S VFS Cache 104 1024 497 25761 0 126 158184 0
malloc-384 384 235 155 19440 0 30 149760 0
malloc-128 128 113 1034 24020 0 126 146816 0
VMSPACE 2552 24 30 19711 0 4 137808 0
malloc-65536 65536 0 2 4 0 1 131072 0
malloc-65536 65536 0 2 290 0 1 131072 0
malloc-65536 65536 0 2 144 0 1 131072 0
malloc-1024 1024 120 8 300 0 16 131072 0
unpcb 256 1 509 2052 0 254 130560 0
clpbuf 2624 0 48 48 0 16 125952 0
64 Bucket 512 144 88 83353 0 30 118784 0
sctp_readq 152 4 776 1608 0 254 118560 0
sctp_chunk 152 114 666 2870 0 254 118560 0
ksiginfo 112 71 973 8024 0 126 116928 0
malloc-128 128 738 161 4322 0 126 115072 0
malloc-128 128 653 246 48822 0 126 115072 0
malloc-1024 1024 68 44 2648 0 16 114688 0
PROC 1352 44 37 19733 0 8 109512 0
malloc-64 64 761 814 324198 0 254 100800 0
malloc-4096 4096 2 20 22 0 3 90112 0
filedesc0 1072 45 39 19737 0 8 90048 0
UMA Kegs 384 230 3 230 0 30 89472 0
sctp_stream_msg_out 112 46 746 2482 0 254 88704 0
g_bio 408 4 206 1293590 0 30 85680 0
pipe 744 17 98 1794 0 16 85560 0
malloc-64 64 755 568 29946 0 254 84672 0
32 Bucket 256 161 154 30079 0 62 80640 0
tcp_inpcb 424 9 171 17421 0 30 76320 0
malloc-8192 8192 9 0 9 0 1 73728 0
malloc-8192 8192 7 2 110 0 1 73728 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-16384 16384 4 0 4 0 1 65536 0
malloc-4096 4096 15 1 26 0 2 65536 0
malloc-1024 1024 21 43 547 0 16 65536 0
malloc-256 256 4 251 111227 0 62 65280 0
malloc-256 256 69 186 33334 0 62 65280 0
ripcb 424 0 153 1120 0 30 64872 0
udplite_inpcb 424 0 153 308 0 30 64872 0
udp_inpcb 424 4 149 477 0 30 64872 0
malloc-4096 4096 10 4 554 0 2 57344 0
malloc-64 64 28 791 28685 0 254 52416 0
malloc-64 64 54 765 19748 0 254 52416 0
Files 80 131 519 95819 0 126 52000 0
ttyoutq 256 72 123 848 0 62 49920 0
malloc-256 256 36 159 18785 0 62 49920 0
DIRHASH 1024 34 14 34 0 16 49152 0
NAMEI 1024 0 48 118060 0 16 49152 0
malloc-16384 16384 1 2 161 0 1 49152 0
malloc-1024 1024 19 29 1465 0 16 49152 0
malloc-512 512 11 85 1058 0 30 49152 0
tcp_rack_pcb 896 0 54 4915 0 16 48384 0
tcp_bbr_pcb 832 4 50 6547 0 16 44928 0
syncache 168 0 264 4 0 254 44352 0
pcpu-8 8 4645 475 5193 0 254 40960 0
sctp_laddr 48 18 822 3258 0 254 40320 0
ttyinq 160 135 115 1590 0 62 40000 0
Mountpoints 2752 2 12 2 0 4 38528 0
da_ccb 544 1 69 323515 0 16 38080 0
PWD 32 17 1117 18783 0 254 36288 0
malloc-64 64 26 541 97 0 254 36288 0
malloc-64 64 173 394 220 0 254 36288 0
malloc-64 64 11 556 96 0 254 36288 0
malloc-32 32 519 615 42310 0 254 36288 0
16 Bucket 144 89 163 13217 0 62 36288 0
8 Bucket 80 66 384 5355 0 126 36000 0
malloc-128 128 34 245 9762 0 126 35712 0
malloc-128 128 98 181 662 0 126 35712 0
malloc-128 128 24 255 81 0 126 35712 0
routing nhops 256 28 107 40 0 62 34560 0
malloc-384 384 55 35 88 0 30 34560 0
malloc-256 256 24 111 2887 0 62 34560 0
malloc-256 256 7 128 341 0 62 34560 0
TURNSTILE 136 210 42 210 0 62 34272 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 2 0 17 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-4096 4096 1 7 19512 0 2 32768 0
malloc-2048 2048 0 16 51 0 8 32768 0
malloc-2048 2048 8 8 46 0 8 32768 0
malloc-2048 2048 12 4 14 0 8 32768 0
malloc-2048 2048 1 15 103 0 8 32768 0
malloc-2048 2048 1 15 31 0 8 32768 0
malloc-2048 2048 2 14 419 0 8 32768 0
malloc-1024 1024 2 30 46 0 16 32768 0
malloc-1024 1024 4 28 5 0 16 32768 0
malloc-1024 1024 3 29 12 0 16 32768 0
malloc-1024 1024 1 31 177 0 16 32768 0
malloc-512 512 0 64 118 0 30 32768 0
malloc-512 512 2 62 2 0 30 32768 0
malloc-512 512 3 61 94 0 30 32768 0
malloc-512 512 0 64 14 0 30 32768 0
malloc-512 512 10 54 61 0 30 32768 0
malloc-512 512 0 64 17 0 30 32768 0
malloc-512 512 1 63 35 0 30 32768 0
pcpu-64 64 492 20 492 0 254 32768 0
KNOTE 160 28 172 276481 0 62 32000 0
tcp_rack_map 120 0 264 8061 0 126 31680 0
cpuset 104 8 271 14041 0 126 29016 0
tcp_inpcb ports 32 4 878 10387 0 254 28224 0
ertt 72 9 383 17421 0 126 28224 0
malloc-32 32 19 863 24892 0 254 28224 0
4 Bucket 48 13 575 416 0 254 28224 0
2 Bucket 32 114 768 18066 0 254 28224 0
AIO 208 0 133 61 0 62 27664 0
malloc-8192 8192 0 3 34 0 1 24576 0
malloc-4096 4096 1 5 9 0 2 24576 0
rtentry 176 30 108 40 0 62 24288 0
PGRP 88 17 259 106 0 126 24288 0
rl_entry 40 99 507 99 0 254 24240 0
itimer 352 0 66 7 0 30 23232 0
malloc-384 384 11 49 11 0 30 23040 0
malloc-384 384 43 17 154 0 30 23040 0
domainset 40 0 567 10978 0 254 22680 0
SLEEPQUEUE 88 210 46 210 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udpcb 32 4 626 785 0 254 20160 0
udplite_inpcb ports 32 0 630 13 0 254 20160 0
udp_inpcb ports 32 2 628 40 0 254 20160 0
AIOP 32 4 626 4 0 254 20160 0
malloc-32 32 28 602 1794 0 254 20160 0
malloc-32 32 129 501 14795 0 254 20160 0
malloc-32 32 75 555 127 0 254 20160 0
malloc-32 32 171 459 175 0 254 20160 0
malloc-32 32 7 623 33 0 254 20160 0
cryptop 280 0 70 24 0 30 19600 0
AIOCB 552 0 35 309 0 16 19320 0
AIOLIO 272 0 70 136 0 30 19040 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 0 4 73 0 2 16384 0
malloc-4096 4096 0 4 22 0 2 16384 0
malloc-2048 2048 3 5 10 0 8 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
ipq 56 0 288 1 0 254 16128 0
vtnet_tx_hdr 24 0 668 891427 0 254 16032 0
malloc-16 16 510 490 51878 0 254 16000 0
malloc-16 16 187 813 48559 0 254 16000 0
malloc-16 16 157 843 19030 0 254 16000 0
kenv 258 15 45 1039 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
malloc-16 16 49 701 30944 0 254 12000 0
malloc-16 16 8 742 27 0 254 12000 0
malloc-16 16 40 710 237 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 14 498 14 0 254 8192 0
malloc-16 16 0 500 2 0 254 8000 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 312 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 56 0 0 0 0 254 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 72 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
tcp_log_node 120 0 0 0 0 126 0 0
tcp_log_bucket 176 0 0 0 0 62 0 0
tcpreass 48 0 0 0 0 254 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
TMPFS node 224 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
linu
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
Apr 7, 2022, 5:18:18 AM4/7/22
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: 4710aa248bcd Avoid dereferencing a possibly null pointer.
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=13d5742f700000
dashboard link: https://syzkaller.appspot.com/bug?extid=ec9279d306a4ff0215f8
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=10e3e803700000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=13b13f87700000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ec9279...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 1; apic id = 01
fault virtual address = 0x18
fault code = supervisor read data, page not present
instruction pointer = 0x20:0xffffffff81656e95
stack pointer = 0x28:0xfffffe008fdee5a0
frame pointer = 0x28:0xfffffe008fdee670
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe008fdeddb0
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe008fdedf10
vpanic() at vpanic+0x2b8/frame 0xfffffe008fdedff0
panic() at panic+0xb5/frame 0xfffffe008fdee0b0
trap_fatal() at trap_fatal+0x6a4/frame 0xfffffe008fdee1b0
trap_pfault() at trap_pfault+0x186/frame 0xfffffe008fdee2f0
trap() at trap+0x5ad/frame 0xfffffe008fdee4d0
calltrap() at calltrap+0x8/frame 0xfffffe008fdee4d0
--- trap 0xc, rip = 0xffffffff81656e95, rsp = 0xfffffe008fdee5a0, rbp = 0xfffffe008fdee670 ---
__mtx_lock_flags() at __mtx_lock_flags+0x125/frame 0xfffffe008fdee670
sctp_wakeup_the_read_socket() at sctp_wakeup_the_read_socket+0x98/frame 0xfffffe008fdee6a0
sctp_notify_sender_dry_event() at sctp_notify_sender_dry_event+0x1f9/frame 0xfffffe008fdee6f0
sctp_setopt() at sctp_setopt+0xdf8b/frame 0xfffffe008fdee950
sctp_ctloutput() at sctp_ctloutput+0x3df/frame 0xfffffe008fdeea50
sosetopt() at sosetopt+0x20e/frame 0xfffffe008fdeebb0
kern_setsockopt() at kern_setsockopt+0x23c/frame 0xfffffe008fdeece0
sys_setsockopt() at sys_setsockopt+0x76/frame 0xfffffe008fdeed30
amd64_syscall() at amd64_syscall+0x40c/frame 0xfffffe008fdeef30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe008fdeef30
--- syscall (0, FreeBSD ELF64, nosys), rip = 0x2b3e9a, rsp = 0x820f870c8, rbp = 0x820f87110 ---
KDB: enter: panic
[ thread pid 928 tid 100099 ]
rdx 0xdffff7c000000000
rbx 0
rsp 0xfffffe008fdedef0
rbp 0xfffffe008fdedf10
rsi 0x1
rdi 0
r8 0x3
r9 0xffffffff
r10 0
r11 0xfffffe008fe0fc30
r12 0xfffffe008fe0f720
r13 0xfffffe008fdedf01
ABI: FreeBSD ELF64
flag: 0x10000000 flag2: 0
arguments: ./syz-executor725733324
(map 0xfffffe00927df000)
(map.pmap 0xfffffe00927df0c0)
(pmap 0xfffffe00927df128)
threads: 1
100099 Run CPU 1 syz-executor7257333
781 779 779 0 S nanslp 0xffffffff83e458c0 syz-executor7257333
779 777 779 0 Ss pause 0xfffffe0058bff0b0 csh
777 688 777 0 Ss select 0xfffffe0053dd11c0 sshd
754 1 754 0 Ss+ ttyin 0xfffffe0056fe74b0 getty
753 1 753 0 Ss+ ttyin 0xfffffe00081f10b0 getty
752 1 752 0 Ss+ ttyin 0xfffffe0056fe54b0 getty
751 1 751 0 Ss+ ttyin 0xfffffe00081f14b0 getty
750 1 750 0 Ss+ ttyin 0xfffffe00081f18b0 getty
749 1 749 0 Ss+ ttyin 0xfffffe0056fe58b0 getty
748 1 748 0 Ss+ ttyin 0xfffffe0056fe5cb0 getty
747 1 747 0 Ss+ ttyin 0xfffffe0056fe60b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe0056fe64b0 getty
744 1 18 0 S+ piperd 0xfffffe0058b378b8 logger
743 742 18 0 S+ nanslp 0xffffffff83e458c0 sleep
742 1 18 0 S+ wait 0xfffffe0092733548 sh
692 1 692 0 Ss nanslp 0xffffffff83e458c0 cron
688 1 688 0 Ss select 0xfffffe0053dd2740 sshd
501 1 501 0 Ss select 0xfffffe0053dd25c0 syslogd
430 1 430 0 Ss select 0xfffffe0053dd2440 devd
429 1 429 65 Ss select 0xfffffe0053dd1f40 dhclient
344 1 344 0 Ss select 0xfffffe0053dd1cc0 dhclient
341 1 341 0 Ss select 0xfffffe0053dd2540 dhclient
100078 D psleep 0xffffffff83f91078 [dom0]
5 0 0 0 DL waiting 0xffffffff849a64a0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100045 D - 0xffffffff83aa35c0 [doneq0]
100006 D - 0xfffffe0007978000 [softirq_1]
100007 D - 0xfffffe0007977e00 [if_io_tqg_0]
100008 D - 0xfffffe0007977d00 [if_io_tqg_1]
100009 D - 0xfffffe0007977c00 [if_config_tqg_0]
100011 D - 0xfffffe0007977a00 [aiod_kick taskq]
100012 D - 0xfffffe0007977900 [inm_free taskq]
100013 D - 0xfffffe0007977800 [linuxkpi_irq_wq]
100014 D - 0xfffffe0007977700 [in6m_free taskq]
100015 D - 0xfffffe0007977600 [deferred_unmount ta]
100016 D - 0xfffffe0007977500 [thread taskq]
100018 D - 0xfffffe0007977300 [pci_hp taskq]
100019 D - 0xfffffe0007977200 [kqueue_ctx taskq]
100021 D - 0xfffffe0007977000 [linuxkpi_short_wq_0]
100022 D - 0xfffffe0007977000 [linuxkpi_short_wq_1]
100023 D - 0xfffffe0007977000 [linuxkpi_short_wq_2]
100024 D - 0xfffffe0007977000 [linuxkpi_short_wq_3]
100025 D - 0xfffffe0007976e00 [linuxkpi_long_wq_0]
100026 D - 0xfffffe0007976e00 [linuxkpi_long_wq_1]
100027 D - 0xfffffe0007976e00 [linuxkpi_long_wq_2]
100028 D - 0xfffffe0007976e00 [linuxkpi_long_wq_3]
100058 D - 0xfffffe0007979d00 [vtnet0 rxq 1]
100059 D - 0xfffffe0007979c00 [vtnet0 txq 1]
100071 D - 0xfffffe0007978200 [mca taskq]
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe0092e531a0) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:5145
exclusive sleep mutex sctp-inp (inp) r = 0 (0xfffffe0092f1ebb8) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:5081
vfscache 3 1025K 3
pcb 34 554K 628
inodedep 26 522K 71
acpica 1674 184K 56014
linker 358 134K 386
pagedep 8 130K 18
tfo_ccache 1 128K 1
sem 4 106K 4
DEVFS1 105 105K 114
kdtrace 160 33K 1048
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 124 31K 134
umtx 242 31K 242
msg 4 30K 4
BPF 10 18K 10
KTRACE 100 13K 100
ksem 1 8K 1
cred 30 8K 244
vt 11 5K 11
ifnet 3 5K 3
sctp_stro 4 4K 148
evdev 4 4K 4
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
kqueue 41 3K 931
pwddesc 41 3K 929
session 20 3K 32
uidinfo 3 3K 9
proc-args 63 3K 1875
lockf 16 2K 26
freefile 13 2K 22
Unitno 27 2K 39
softdep 1 1K 1
dirrem 4 1K 28
sctp_atky 18 1K 737
ipsec 3 1K 3
indirdep 3 1K 3
nhops 6 1K 6
pci_link 10 1K 10
sctp_ifa 5 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
pfil 4 1K 4
cdev 2 1K 2
chacha20random 1 1K 1
osd 7 1K 18
inpcbpolicy 10 1K 139
sctp_ifn 2 1K 6
DEVFS 9 1K 10
freework 1 1K 26
mld 2 1K 2
igmp 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
CC Mem 3 1K 7
loginclass 3 1K 7
cryptodev 2 1K 49
pmchooks 1 1K 1
soname 4 1K 3767
filecaps 4 1K 66
tun 3 1K 3
p1003.1b 1 1K 1
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_temp 0 0K 0
sctp_mcore 0 0K 0
sctp_iter 0 0K 4
sctp_aadr 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 0
mqdata 0 0K 0
filemon 0 0K 0
savedino 0 0K 17
freefrag 0 0K 1
allocindir 0 0K 0
ip6opt 0 0K 3
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 27
iov 0 0K 13645
ioctlops 0 0K 86
eventfd 0 0K 0
mbuf_jumbo_page 4096 8320 1078 14668 0 254 38494208 0
mbuf 256 8584 1078 19627 0 254 2473472 0
pbuf 2624 0 778 0 0 2 2041472 0
BUF TRIE 144 179 11609 539 0 62 1697472 0
malloc-384 384 4165 5 4165 0 30 1601280 0
malloc-4096 4096 369 3 1501 0 2 1523712 0
malloc-128 128 11630 243 11636 0 126 1519744 0
UMA Slabs 0 112 10578 0 10578 0 126 1184736 0
sctp_asoc 2288 4 506 148 0 254 1166880 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 16533 66 16533 0 254 929544 0
sctp_ep 1208 8 502 295 0 254 616080 0
FFS inode 1160 489 36 512 0 8 609000 0
tcpcb 1104 3 508 7 0 254 564144 0
RADIX NODE 144 3355 196 21705 0 62 511344 0
socket 960 21 487 1631 0 254 487680 0
VM OBJECT 264 1420 110 25686 0 30 403920 0
malloc-64 64 3865 230 3867 0 254 262080 0
VNODE 448 519 57 544 0 30 258048 0
malloc-16 16 14605 145 14665 0 254 236000 0
DEVCTL 1024 0 220 126 0 0 225280 0
THREAD 1808 118 3 118 0 8 218768 0
malloc-256 256 732 78 852 0 62 207360 0
MAP ENTRY 96 1581 435 87424 0 126 193536 0
FFS2 dinode 256 489 81 511 0 62 145920 0
malloc-65536 65536 0 2 46 0 1 131072 0
malloc-1024 1024 116 12 278 0 16 131072 0
unpcb 256 7 503 1180 0 254 130560 0
mbuf_packet 256 2 506 806 0 254 130048 0
S VFS Cache 104 969 201 1009 0 126 121680 0
FPU_save_area 832 120 24 134 0 16 119808 0
ksiginfo 112 40 1004 56 0 126 116928 0
malloc-256 256 296 139 1227 0 62 111360 0
malloc-128 128 563 212 3871 0 126 99200 0
malloc-128 128 607 168 1165 0 126 99200 0
malloc-2048 2048 17 31 1577 0 8 98304 0
VMSPACE 2552 24 9 913 0 4 84216 0
clpbuf 2624 0 32 24 0 16 83968 0
malloc-8192 8192 7 3 110 0 1 81920 0
sctp_chunk 152 5 515 293 0 254 79040 0
PROC 1352 40 17 928 0 8 77064 0
filedesc0 1072 41 29 929 0 8 75040 0
malloc-64 64 770 301 15325 0 254 68544 0
malloc-64 64 574 497 2860 0 254 68544 0
malloc-256 256 140 115 809 0 62 65280 0
sctp_stream_msg_out 112 0 540 147 0 254 60480 0
malloc-384 384 74 76 989 0 30 57600 0
64 Bucket 512 63 41 1823 0 30 53248 0
32 Bucket 256 66 129 5037 0 62 49920 0
malloc-4096 4096 10 2 553 0 2 49152 0
malloc-1024 1024 19 29 891 0 16 49152 0
malloc-1024 1024 6 42 154 0 16 49152 0
syncache 168 0 264 5 0 254 44352 0
sctp_readq 152 1 259 1 0 254 39520 0
da_ccb 544 0 70 1299 0 16 38080 0
pcpu-8 8 4221 387 4249 0 254 36864 0
malloc-64 64 32 535 13619 0 254 36288 0
malloc-64 64 26 541 42 0 254 36288 0
malloc-64 64 116 451 141 0 254 36288 0
malloc-64 64 10 557 42 0 254 36288 0
malloc-64 64 49 518 937 0 254 36288 0
malloc-128 128 29 250 160 0 126 35712 0
malloc-128 128 14 265 24 0 126 35712 0
malloc-128 128 95 184 492 0 126 35712 0
malloc-128 128 20 259 25 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 54 36 64 0 30 34560 0
malloc-384 384 25 65 89 0 30 34560 0
malloc-256 256 23 112 447 0 62 34560 0
malloc-256 256 2 133 52 0 62 34560 0
malloc-256 256 6 129 288 0 62 34560 0
malloc-256 256 69 66 492 0 62 34560 0
malloc-256 256 29 106 40 0 62 34560 0
malloc-2048 2048 11 5 12 0 8 32768 0
malloc-2048 2048 1 15 25 0 8 32768 0
malloc-2048 2048 2 14 11 0 8 32768 0
malloc-1024 1024 2 30 45 0 16 32768 0
malloc-512 512 0 64 9 0 30 32768 0
malloc-512 512 10 54 60 0 30 32768 0
malloc-512 512 2 62 147 0 30 32768 0
cpuset 104 7 272 7 0 126 29016 0
malloc-32 32 388 494 4866 0 254 28224 0
16 Bucket 144 50 146 249 0 62 28224 0
4 Bucket 48 6 582 70 0 254 28224 0
tcp_inpcb 424 3 60 7 0 30 26712 0
pipe 744 7 28 286 0 16 26040 0
TURNSTILE 136 122 67 122 0 62 25704 0
malloc-8192 8192 0 3 28 0 1 24576 0
malloc-8192 8192 3 0 3 0 1 24576 0
malloc-4096 4096 6 0 6 0 2 24576 0
rtentry 176 13 125 17 0 62 24288 0
PGRP 88 20 256 32 0 126 24288 0
ertt_txseginfo 40 0 606 392 0 254 24240 0
rl_entry 40 33 573 33 0 254 24240 0
Files 80 73 227 6900 0 126 24000 0
8 Bucket 80 38 262 253 0 126 24000 0
SLEEPQUEUE 88 122 134 122 0 126 22528 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
PWD 32 10 620 102 0 254 20160 0
malloc-32 32 35 595 345 0 254 20160 0
malloc-32 32 7 623 60 0 254 20160 0
malloc-32 32 132 498 1645 0 254 20160 0
malloc-32 32 31 599 56 0 254 20160 0
malloc-32 32 29 601 31 0 254 20160 0
malloc-32 32 7 623 10 0 254 20160 0
2 Bucket 32 45 585 293 0 254 20160 0
malloc-2048 2048 0 8 12 0 8 16384 0
malloc-2048 2048 2 6 2 0 8 16384 0
malloc-2048 2048 3 5 3 0 8 16384 0
malloc-1024 1024 1 15 1 0 16 16384 0
malloc-512 512 3 29 3 0 30 16384 0
malloc-16 16 510 490 3466 0 254 16000 0
kenv 258 15 45 1023 0 30 15480 0
ripcb 424 1 35 4 0 30 15264 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 47 703 1507 0 254 12000 0
malloc-16 16 9 741 14 0 254 12000 0
malloc-16 16 15 735 64 0 254 12000 0
malloc-16 16 57 693 26014 0 254 12000 0
malloc-16 16 20 730 597 0 254 12000 0
malloc-4096 4096 0 2 1 0 2 8192 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 896 0 0 0 0 16 0 0
tcp_rack_map 120 0 0 0 0 126 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIOP 32 0 0 0 0 254 0 0
AIO 208 0 0 0 0 62 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 120 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 64 0 0
mdpbuf 2624 0 0 0 0 3 0 0
nfspbuf 2624 0 0 0 0 16 0 0
swwbuf 2624 0 0 0 0 8 0 0
swrbuf 2624 0 0 0 0 16 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-4096 4096 0 0 0 0 2 0 0
malloc-512 512 0 0 0 0 30 0
HEAD commit: 4710aa248bcd Avoid dereferencing a possibly null pointer.
git tree: freebsd-src
dashboard link: https://syzkaller.appspot.com/bug?extid=ec9279d306a4ff0215f8
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=10e3e803700000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=13b13f87700000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ec9279...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 1; apic id = 01
fault virtual address = 0x18
fault code = supervisor read data, page not present
instruction pointer = 0x20:0xffffffff81656e95
frame pointer = 0x28:0xfffffe008fdee670
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 928 (syz-executor7257333)
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
trap number = 12
panic: page fault
cpuid = 1
time = 1649322928
panic: page fault
cpuid = 1
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe008fdeddb0
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe008fdedf10
vpanic() at vpanic+0x2b8/frame 0xfffffe008fdedff0
panic() at panic+0xb5/frame 0xfffffe008fdee0b0
trap_fatal() at trap_fatal+0x6a4/frame 0xfffffe008fdee1b0
trap_pfault() at trap_pfault+0x186/frame 0xfffffe008fdee2f0
trap() at trap+0x5ad/frame 0xfffffe008fdee4d0
calltrap() at calltrap+0x8/frame 0xfffffe008fdee4d0
--- trap 0xc, rip = 0xffffffff81656e95, rsp = 0xfffffe008fdee5a0, rbp = 0xfffffe008fdee670 ---
__mtx_lock_flags() at __mtx_lock_flags+0x125/frame 0xfffffe008fdee670
sctp_wakeup_the_read_socket() at sctp_wakeup_the_read_socket+0x98/frame 0xfffffe008fdee6a0
sctp_notify_sender_dry_event() at sctp_notify_sender_dry_event+0x1f9/frame 0xfffffe008fdee6f0
sctp_setopt() at sctp_setopt+0xdf8b/frame 0xfffffe008fdee950
sctp_ctloutput() at sctp_ctloutput+0x3df/frame 0xfffffe008fdeea50
sosetopt() at sosetopt+0x20e/frame 0xfffffe008fdeebb0
kern_setsockopt() at kern_setsockopt+0x23c/frame 0xfffffe008fdeece0
sys_setsockopt() at sys_setsockopt+0x76/frame 0xfffffe008fdeed30
amd64_syscall() at amd64_syscall+0x40c/frame 0xfffffe008fdeef30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe008fdeef30
--- syscall (0, FreeBSD ELF64, nosys), rip = 0x2b3e9a, rsp = 0x820f870c8, rbp = 0x820f87110 ---
KDB: enter: panic
[ thread pid 928 tid 100099 ]
Stopped at kdb_enter+0x6b: movq $0,0x270818a(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xb5b366385e9a1446
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rdx 0xdffff7c000000000
rbx 0
rsp 0xfffffe008fdedef0
rbp 0xfffffe008fdedf10
rsi 0x1
rdi 0
r8 0x3
r9 0xffffffff
r10 0
r11 0xfffffe008fe0fc30
r12 0xfffffe008fe0f720
r13 0xfffffe008fdedf01
r14 0xffffffff82bbf280 .str.26
r15 0xffffffff82bbf280 .str.26
rip 0xffffffff8177008b kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x270818a(%rip)
db> show proc
Process 928 (syz-executor7257333) at 0xfffffe0058bfe000:
r15 0xffffffff82bbf280 .str.26
rip 0xffffffff8177008b kdb_enter+0x6b
rflags 0x46
kdb_enter+0x6b: movq $0,0x270818a(%rip)
db> show proc
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 781 at 0xfffffe00924dd000
uid: 0 gids: 0, 0, 5
ABI: FreeBSD ELF64
flag: 0x10000000 flag2: 0
arguments: ./syz-executor725733324
reaper: 0xfffffe0053ddc000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00927df000
sigparent: 20
(map 0xfffffe00927df000)
(map.pmap 0xfffffe00927df0c0)
(pmap 0xfffffe00927df128)
threads: 1
100099 Run CPU 1 syz-executor7257333
db> ps
pid ppid pgrp uid state wmesg wchan cmd
928 781 779 0 R CPU 1 syz-executor7257333
pid ppid pgrp uid state wmesg wchan cmd
781 779 779 0 S nanslp 0xffffffff83e458c0 syz-executor7257333
779 777 779 0 Ss pause 0xfffffe0058bff0b0 csh
777 688 777 0 Ss select 0xfffffe0053dd11c0 sshd
754 1 754 0 Ss+ ttyin 0xfffffe0056fe74b0 getty
753 1 753 0 Ss+ ttyin 0xfffffe00081f10b0 getty
752 1 752 0 Ss+ ttyin 0xfffffe0056fe54b0 getty
751 1 751 0 Ss+ ttyin 0xfffffe00081f14b0 getty
750 1 750 0 Ss+ ttyin 0xfffffe00081f18b0 getty
749 1 749 0 Ss+ ttyin 0xfffffe0056fe58b0 getty
748 1 748 0 Ss+ ttyin 0xfffffe0056fe5cb0 getty
747 1 747 0 Ss+ ttyin 0xfffffe0056fe60b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe0056fe64b0 getty
744 1 18 0 S+ piperd 0xfffffe0058b378b8 logger
743 742 18 0 S+ nanslp 0xffffffff83e458c0 sleep
742 1 18 0 S+ wait 0xfffffe0092733548 sh
692 1 692 0 Ss nanslp 0xffffffff83e458c0 cron
688 1 688 0 Ss select 0xfffffe0053dd2740 sshd
501 1 501 0 Ss select 0xfffffe0053dd25c0 syslogd
430 1 430 0 Ss select 0xfffffe0053dd2440 devd
429 1 429 65 Ss select 0xfffffe0053dd1f40 dhclient
344 1 344 0 Ss select 0xfffffe0053dd1cc0 dhclient
341 1 341 0 Ss select 0xfffffe0053dd2540 dhclient
17 0 0 0 DL syncer 0xffffffff83f6b0e0 [syncer]
16 0 0 0 DL vlruwt 0xfffffe005880ca90 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100080 D psleep 0xffffffff83f696e0 [bufdaemon]
100083 D - 0xffffffff83211f80 [bufspacedaemon-0]
100092 D sdflush 0xfffffe0053f67ce8 [/ worker]
16 0 0 0 DL vlruwt 0xfffffe005880ca90 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100080 D psleep 0xffffffff83f696e0 [bufdaemon]
100083 D - 0xffffffff83211f80 [bufspacedaemon-0]
9 0 0 0 DL psleep 0xffffffff83f9d1c0 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100078 D psleep 0xffffffff83f91078 [dom0]
100081 D launds 0xffffffff83f91084 [laundry: dom0]
100082 D umarcl 0xffffffff81ea99d0 [uma]
7 0 0 0 DL - 0xffffffff83c01688 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84b6b530 [pf purge]
100082 D umarcl 0xffffffff81ea99d0 [uma]
7 0 0 0 DL - 0xffffffff83c01688 [rand_harvestq]
5 0 0 0 DL waiting 0xffffffff849a64a0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100045 D - 0xffffffff83aa35c0 [doneq0]
100046 D - 0xffffffff83aa3540 [async]
100077 D - 0xffffffff83aa33c0 [scanner]
14 0 0 0 DL seqstat 0xfffffe0056f18c88 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83f8c880 [crypto]
100042 D crypto_ 0xfffffe0053effd30 [crypto returns 0]
100043 D crypto_ 0xfffffe0053effd80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100036 D - 0xffffffff83e1ae80 [g_event]
100037 D - 0xffffffff83e1aea0 [g_up]
100038 D - 0xffffffff83e1aec0 [g_down]
2 0 0 0 RL (threaded) [clock]
100030 RunQ [clock (0)]
100077 D - 0xffffffff83aa33c0 [scanner]
14 0 0 0 DL seqstat 0xfffffe0056f18c88 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff83f8c880 [crypto]
100042 D crypto_ 0xfffffe0053effd30 [crypto returns 0]
100043 D crypto_ 0xfffffe0053effd80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100036 D - 0xffffffff83e1ae80 [g_event]
100037 D - 0xffffffff83e1aea0 [g_up]
100038 D - 0xffffffff83e1aec0 [g_down]
2 0 0 0 RL (threaded) [clock]
100031 I [clock (1)]
12 0 0 0 LL (threaded) [intr]
100010 I [swi6: Giant taskq]
100017 I [swi5: fast taskq]
100020 I [swi6: task queue]
100029 L *sctp-tc 0xfffffe0053ecd900 [swi1: netisr 0]
12 0 0 0 LL (threaded) [intr]
100010 I [swi6: Giant taskq]
100017 I [swi5: fast taskq]
100020 I [swi6: task queue]
100032 I [swi3: busdma]
100033 I [swi1: hpts]
100034 I [swi1: hpts]
100047 I [irq24: virtio_pci0]
100048 I [irq25: virtio_pci0]
100049 I [irq26: virtio_pci0]
100050 I [irq27: virtio_pci0]
100051 I [irq28: virtio_pci1]
100052 I [irq29: virtio_pci1]
100053 I [irq30: virtio_pci1]
100054 I [irq31: virtio_pci1]
100055 I [irq32: virtio_pci1]
100060 I [irq33: virtio_pci2]
100061 I [irq34: virtio_pci2]
100062 I [irq35: virtio_pci2]
100064 I [irq1: atkbd0]
100065 I [irq12: psm0]
100066 I [swi0: uart uart++]
100070 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 Run CPU 0 [idle: cpu0]
100033 I [swi1: hpts]
100034 I [swi1: hpts]
100047 I [irq24: virtio_pci0]
100048 I [irq25: virtio_pci0]
100049 I [irq26: virtio_pci0]
100050 I [irq27: virtio_pci0]
100051 I [irq28: virtio_pci1]
100052 I [irq29: virtio_pci1]
100053 I [irq30: virtio_pci1]
100054 I [irq31: virtio_pci1]
100055 I [irq32: virtio_pci1]
100060 I [irq33: virtio_pci2]
100061 I [irq34: virtio_pci2]
100062 I [irq35: virtio_pci2]
100064 I [irq1: atkbd0]
100065 I [irq12: psm0]
100066 I [swi0: uart uart++]
100070 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0053ddc000 [init]
10 0 0 0 DL audit_w 0xffffffff83f8d380 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83e1b8c0 [swapper]
100005 D - 0xfffffe0007978100 [softirq_0]
1 0 1 0 SLs wait 0xfffffe0053ddc000 [init]
10 0 0 0 DL audit_w 0xffffffff83f8d380 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83e1b8c0 [swapper]
100006 D - 0xfffffe0007978000 [softirq_1]
100007 D - 0xfffffe0007977e00 [if_io_tqg_0]
100008 D - 0xfffffe0007977d00 [if_io_tqg_1]
100009 D - 0xfffffe0007977c00 [if_config_tqg_0]
100011 D - 0xfffffe0007977a00 [aiod_kick taskq]
100012 D - 0xfffffe0007977900 [inm_free taskq]
100013 D - 0xfffffe0007977800 [linuxkpi_irq_wq]
100014 D - 0xfffffe0007977700 [in6m_free taskq]
100015 D - 0xfffffe0007977600 [deferred_unmount ta]
100016 D - 0xfffffe0007977500 [thread taskq]
100018 D - 0xfffffe0007977300 [pci_hp taskq]
100019 D - 0xfffffe0007977200 [kqueue_ctx taskq]
100021 D - 0xfffffe0007977000 [linuxkpi_short_wq_0]
100022 D - 0xfffffe0007977000 [linuxkpi_short_wq_1]
100023 D - 0xfffffe0007977000 [linuxkpi_short_wq_2]
100024 D - 0xfffffe0007977000 [linuxkpi_short_wq_3]
100025 D - 0xfffffe0007976e00 [linuxkpi_long_wq_0]
100026 D - 0xfffffe0007976e00 [linuxkpi_long_wq_1]
100027 D - 0xfffffe0007976e00 [linuxkpi_long_wq_2]
100028 D - 0xfffffe0007976e00 [linuxkpi_long_wq_3]
100035 D - 0xfffffe0053f21300 [firmware taskq]
100039 D - 0xfffffe0053f21100 [crypto_0]
100040 D - 0xfffffe0053f21100 [crypto_1]
100056 D - 0xfffffe0053f1e000 [vtnet0 rxq 0]
100057 D - 0xfffffe0007979e00 [vtnet0 txq 0]
100039 D - 0xfffffe0053f21100 [crypto_0]
100040 D - 0xfffffe0053f21100 [crypto_1]
100056 D - 0xfffffe0053f1e000 [vtnet0 rxq 0]
100058 D - 0xfffffe0007979d00 [vtnet0 rxq 1]
100059 D - 0xfffffe0007979c00 [vtnet0 txq 1]
100063 D vtbslp 0xfffffe005700e800 [virtio_balloon]
100067 D - 0xffffffff82bc5101 [deadlkres]
100071 D - 0xfffffe0007978200 [mca taskq]
100072 D - 0xfffffe00574c1200 [acpi_task_0]
100073 D - 0xfffffe00574c1200 [acpi_task_1]
100074 D - 0xfffffe00574c1200 [acpi_task_2]
100076 D - 0xfffffe0053f20e00 [CAM taskq]
db> show all locks
Process 928 (syz-executor7257333) thread 0xfffffe008fe0f720 (100099)
100073 D - 0xfffffe00574c1200 [acpi_task_1]
100074 D - 0xfffffe00574c1200 [acpi_task_2]
100076 D - 0xfffffe0053f20e00 [CAM taskq]
db> show all locks
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe0092e531a0) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:5145
exclusive sleep mutex sctp-inp (inp) r = 0 (0xfffffe0092f1ebb8) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:5081
Process 12 (intr) thread 0xfffffe0053ec4ac0 (100029)
exclusive sleep mutex sctp-create (inp_create) r = 0 (0xfffffe0092f1ebd8) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_input.c:4907
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 6 4801K 6
devbuf 4217 4323K 4242
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 6 4801K 6
sysctloid 35306 2080K 35377
vtbuf 24 1968K 46
kobj 327 1308K 488
newblk 692 1197K 719
vtbuf 24 1968K 46
kobj 327 1308K 488
vfscache 3 1025K 3
pcb 34 554K 628
inodedep 26 522K 71
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
subproc 99 186K 987
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
acpica 1674 184K 56014
vnet_data 1 168K 1
tidhash 3 141K 3
vmem 3 138K 4
tidhash 3 141K 3
linker 358 134K 386
pagedep 8 130K 18
tfo_ccache 1 128K 1
sem 4 106K 4
DEVFS1 105 105K 114
bus 991 81K 5140
mtx_pool 2 72K 2
syncache 1 68K 1
mtx_pool 2 72K 2
syncache 1 68K 1
module 512 64K 512
acpitask 1 64K 1
ddb_capture 1 64K 1
temp 17 33K 1612
acpitask 1 64K 1
ddb_capture 1 64K 1
kdtrace 160 33K 1048
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 124 31K 134
umtx 242 31K 242
msg 4 30K 4
gtaskqueue 18 26K 18
kbdmux 6 22K 6
DEVFS_RULE 56 20K 56
kbdmux 6 22K 6
BPF 10 18K 10
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
ithread 100 16K 100
bus-sc 34 15K 1651
proc 3 17K 3
tty 16 16K 16
ithread 100 16K 100
KTRACE 100 13K 100
kenv 95 12K 95
eventhandler 134 12K 134
ifaddr 30 12K 32
eventhandler 134 12K 134
rman 88 11K 431
GEOM 61 11K 490
routetbl 50 11K 176
GEOM 61 11K 490
CAM queue 5 11K 1528
bmsafemap 3 9K 41
UART 12 9K 12
devstat 4 9K 4
sctp_timw 32 8K 32
devstat 4 9K 4
ksem 1 8K 1
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
shmfd 1 8K 1
cred 30 8K 244
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
taskqueue 63 7K 63
sglist 5 7K 5
CAM DEV 3 6K 510
sctp_atcl 14 6K 589
audit_evclass 237 8K 296
taskqueue 63 7K 63
sglist 5 7K 5
CAM DEV 3 6K 510
ufs_dirhash 24 5K 24
UMA 272 5K 272
plimit 17 5K 337
UMA 272 5K 272
vt 11 5K 11
ifnet 3 5K 3
sctp_stro 4 4K 148
memdesc 1 4K 1
MCA 32 4K 32
filedesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
acpisem 28 4K 28
hhook 15 4K 17
ether_multi 40 4K 50
hhook 15 4K 17
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
kqueue 41 3K 931
pwddesc 41 3K 929
session 20 3K 32
uidinfo 3 3K 9
proc-args 63 3K 1875
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
selfd 27 2K 12911
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
lockf 16 2K 26
freefile 13 2K 22
Unitno 27 2K 39
CAM XPT 22 2K 543
msi 12 2K 12
msi 12 2K 12
ipsecpolicy 2 2K 2
acpidev 20 2K 20
clone 9 2K 9
sctp_stri 2 1K 146
acpidev 20 2K 20
clone 9 2K 9
softdep 1 1K 1
dirrem 4 1K 28
sahead 1 1K 1
secasvar 1 1K 1
vnodemarker 2 1K 10
secasvar 1 1K 1
NFSD session 1 1K 1
diradd 7 1K 36
CAM periph 4 1K 271
select 7 1K 29
sctp_atky 18 1K 737
ipsec 3 1K 3
indirdep 3 1K 3
nhops 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 89
isadev 6 1K 6
pci_link 10 1K 10
sctp_ifa 5 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
pfil 4 1K 4
cdev 2 1K 2
chacha20random 1 1K 1
osd 7 1K 18
inpcbpolicy 10 1K 139
sctp_ifn 2 1K 6
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFSP 4 1K 9
NFSD V4client 1 1K 1
DEVFS 9 1K 10
freework 1 1K 26
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
CAM SIM 2 1K 2
sctp_athm 14 1K 589
CAM SIM 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
CC Mem 3 1K 7
loginclass 3 1K 7
prison 6 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
sctp_map 8 1K 296
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
cryptodev 2 1K 49
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
procdesc 1 1K 6
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
pmchooks 1 1K 1
soname 4 1K 3767
filecaps 4 1K 66
tun 3 1K 3
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 35
vnet 1 1K 1
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
sctp_socko 1 1K 147
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_temp 0 0K 0
sctp_mcore 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 4
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_aadr 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 0
mqdata 0 0K 0
filemon 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
esp 0 0K 0
ah 0 0K 0
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 3
jfsync 0 0K 0
jtrunc 0 0K 0
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freeblks 0 0K 25
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 1
allocindir 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_msource 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
statfs 0 0K 197
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 3
export_host 0 0K 0
cl_savebuf 0 0K 3
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
aios 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 27
ioctlops 0 0K 86
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 659
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
kcovinfo 0 0K 0
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
Fail Points 0 0K 0
mbuf 256 8584 1078 19627 0 254 2473472 0
pbuf 2624 0 778 0 0 2 2041472 0
BUF TRIE 144 179 11609 539 0 62 1697472 0
malloc-384 384 4165 5 4165 0 30 1601280 0
malloc-4096 4096 369 3 1501 0 2 1523712 0
malloc-128 128 11630 243 11636 0 126 1519744 0
UMA Slabs 0 112 10578 0 10578 0 126 1184736 0
sctp_asoc 2288 4 506 148 0 254 1166880 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 16533 66 16533 0 254 929544 0
sctp_ep 1208 8 502 295 0 254 616080 0
FFS inode 1160 489 36 512 0 8 609000 0
tcpcb 1104 3 508 7 0 254 564144 0
RADIX NODE 144 3355 196 21705 0 62 511344 0
socket 960 21 487 1631 0 254 487680 0
VM OBJECT 264 1420 110 25686 0 30 403920 0
lkpicurr 168 2 2350 2 0 62 395136 0
lkpimm 168 1 2327 1 0 62 391104 0
sctp_raddr 736 4 513 148 0 254 380512 0
lkpimm 168 1 2327 1 0 62 391104 0
malloc-65536 65536 5 0 5 0 1 327680 0
256 Bucket 2048 147 7 1031 0 8 315392 0
malloc-64 64 3865 230 3867 0 254 262080 0
VNODE 448 519 57 544 0 30 258048 0
malloc-16 16 14605 145 14665 0 254 236000 0
DEVCTL 1024 0 220 126 0 0 225280 0
THREAD 1808 118 3 118 0 8 218768 0
malloc-256 256 732 78 852 0 62 207360 0
malloc-65536 65536 3 0 3 0 1 196608 0
malloc-128 128 1324 195 26749 0 126 194432 0
MAP ENTRY 96 1581 435 87424 0 126 193536 0
UMA Zones 768 244 0 244 0 16 187392 0
malloc-32 32 5317 353 5326 0 254 181440 0
FFS2 dinode 256 489 81 511 0 62 145920 0
malloc-65536 65536 0 2 46 0 1 131072 0
malloc-65536 65536 0 2 144 0 1 131072 0
malloc-32768 32768 0 4 120 0 1 131072 0
malloc-1024 1024 116 12 278 0 16 131072 0
unpcb 256 7 503 1180 0 254 130560 0
mbuf_packet 256 2 506 806 0 254 130048 0
S VFS Cache 104 969 201 1009 0 126 121680 0
FPU_save_area 832 120 24 134 0 16 119808 0
ksiginfo 112 40 1004 56 0 126 116928 0
malloc-256 256 296 139 1227 0 62 111360 0
malloc-128 128 563 212 3871 0 126 99200 0
malloc-128 128 607 168 1165 0 126 99200 0
malloc-2048 2048 17 31 1577 0 8 98304 0
UMA Kegs 384 230 3 230 0 30 89472 0
128 Bucket 1024 44 39 490 0 16 84992 0
VMSPACE 2552 24 9 913 0 4 84216 0
clpbuf 2624 0 32 24 0 16 83968 0
malloc-8192 8192 7 3 110 0 1 81920 0
sctp_chunk 152 5 515 293 0 254 79040 0
PROC 1352 40 17 928 0 8 77064 0
filedesc0 1072 41 29 929 0 8 75040 0
malloc-8192 8192 9 0 9 0 1 73728 0
g_bio 408 0 180 4693 0 30 73440 0
malloc-64 64 770 301 15325 0 254 68544 0
malloc-64 64 574 497 2860 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-16384 16384 4 0 4 0 1 65536 0
malloc-4096 4096 15 1 26 0 2 65536 0
malloc-1024 1024 21 43 546 0 16 65536 0
malloc-16384 16384 4 0 4 0 1 65536 0
malloc-4096 4096 15 1 26 0 2 65536 0
malloc-256 256 140 115 809 0 62 65280 0
sctp_stream_msg_out 112 0 540 147 0 254 60480 0
malloc-384 384 74 76 989 0 30 57600 0
64 Bucket 512 63 41 1823 0 30 53248 0
32 Bucket 256 66 129 5037 0 62 49920 0
DIRHASH 1024 34 14 34 0 16 49152 0
NAMEI 1024 0 48 12268 0 16 49152 0
malloc-4096 4096 10 2 553 0 2 49152 0
malloc-1024 1024 19 29 891 0 16 49152 0
malloc-1024 1024 6 42 154 0 16 49152 0
syncache 168 0 264 5 0 254 44352 0
sctp_readq 152 1 259 1 0 254 39520 0
Mountpoints 2752 2 12 2 0 4 38528 0
udp_inpcb 424 6 84 128 0 30 38160 0
da_ccb 544 0 70 1299 0 16 38080 0
pcpu-8 8 4221 387 4249 0 254 36864 0
malloc-64 64 32 535 13619 0 254 36288 0
malloc-64 64 26 541 42 0 254 36288 0
malloc-64 64 116 451 141 0 254 36288 0
malloc-64 64 10 557 42 0 254 36288 0
malloc-64 64 49 518 937 0 254 36288 0
malloc-128 128 29 250 160 0 126 35712 0
malloc-128 128 14 265 24 0 126 35712 0
malloc-128 128 95 184 492 0 126 35712 0
malloc-128 128 20 259 25 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 54 36 64 0 30 34560 0
malloc-384 384 25 65 89 0 30 34560 0
malloc-256 256 23 112 447 0 62 34560 0
malloc-256 256 2 133 52 0 62 34560 0
malloc-256 256 6 129 288 0 62 34560 0
malloc-256 256 69 66 492 0 62 34560 0
malloc-256 256 29 106 40 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 2 0 17 0 1 32768 0
malloc-16384 16384 1 1 161 0 1 32768 0
malloc-16384 16384 2 0 17 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-2048 2048 3 13 3 0 8 32768 0
malloc-2048 2048 11 5 12 0 8 32768 0
malloc-2048 2048 1 15 25 0 8 32768 0
malloc-2048 2048 2 14 11 0 8 32768 0
malloc-1024 1024 2 30 45 0 16 32768 0
malloc-1024 1024 4 28 5 0 16 32768 0
malloc-1024 1024 3 29 7 0 16 32768 0
malloc-512 512 0 64 118 0 30 32768 0
malloc-512 512 2 62 2 0 30 32768 0
malloc-512 512 3 61 11 0 30 32768 0
malloc-512 512 2 62 2 0 30 32768 0
malloc-512 512 0 64 9 0 30 32768 0
malloc-512 512 10 54 60 0 30 32768 0
malloc-512 512 2 62 147 0 30 32768 0
pcpu-64 64 492 20 492 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
cpuset 104 7 272 7 0 126 29016 0
malloc-32 32 388 494 4866 0 254 28224 0
16 Bucket 144 50 146 249 0 62 28224 0
4 Bucket 48 6 582 70 0 254 28224 0
tcp_inpcb 424 3 60 7 0 30 26712 0
pipe 744 7 28 286 0 16 26040 0
TURNSTILE 136 122 67 122 0 62 25704 0
malloc-8192 8192 0 3 28 0 1 24576 0
malloc-8192 8192 3 0 3 0 1 24576 0
malloc-4096 4096 6 0 6 0 2 24576 0
rtentry 176 13 125 17 0 62 24288 0
PGRP 88 20 256 32 0 126 24288 0
ertt_txseginfo 40 0 606 392 0 254 24240 0
rl_entry 40 33 573 33 0 254 24240 0
Files 80 73 227 6900 0 126 24000 0
8 Bucket 80 38 262 253 0 126 24000 0
malloc-384 384 11 49 11 0 30 23040 0
malloc-384 384 10 50 13 0 30 23040 0
SLEEPQUEUE 88 122 134 122 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udpcb 32 6 624 128 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
PWD 32 10 620 102 0 254 20160 0
malloc-32 32 35 595 345 0 254 20160 0
malloc-32 32 7 623 60 0 254 20160 0
malloc-32 32 132 498 1645 0 254 20160 0
malloc-32 32 31 599 56 0 254 20160 0
malloc-32 32 29 601 31 0 254 20160 0
malloc-32 32 7 623 10 0 254 20160 0
2 Bucket 32 45 585 293 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 1 3 199 0 2 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-2048 2048 0 8 12 0 8 16384 0
malloc-2048 2048 2 6 2 0 8 16384 0
malloc-2048 2048 3 5 3 0 8 16384 0
malloc-1024 1024 1 15 1 0 16 16384 0
malloc-512 512 3 29 3 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
sctp_laddr 48 2 334 6 0 254 16128 0
malloc-16 16 510 490 3466 0 254 16000 0
kenv 258 15 45 1023 0 30 15480 0
ripcb 424 1 35 4 0 30 15264 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 47 703 1507 0 254 12000 0
malloc-16 16 9 741 14 0 254 12000 0
malloc-16 16 15 735 64 0 254 12000 0
malloc-16 16 57 693 26014 0 254 12000 0
malloc-16 16 20 730 597 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 0 2 2 0 2 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 0 2 1 0 2 8192 0
pcpu-16 16 14 498 14 0 254 8192 0
vtnet_tx_hdr 24 0 334 2299 0 254 8016 0
malloc-16 16 0 500 2 0 254 8000 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 312 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 56 0 0 0 0 254 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 312 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 56 0 0 0 0 254 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 896 0 0 0 0 16 0 0
tcp_rack_map 120 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 72 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 72 0 0 0 0 254 0 0
tcp_log_node 120 0 0 0 0 126 0 0
tcp_log_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcp_log_bucket 176 0 0 0 0 62 0 0
tcpreass 48 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
ripcb ports 32 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIOP 32 0 0 0 0 254 0 0
AIO 208 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 224 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 224 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 120 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 64 0 0
mdpbuf 2624 0 0 0 0 3 0 0
nfspbuf 2624 0 0 0 0 16 0 0
swwbuf 2624 0 0 0 0 8 0 0
swrbuf 2624 0 0 0 0 16 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-4096 4096 0 0 0 0 2 0 0
malloc-512 512 0 0 0 0 30 0
Reply all
Reply to author
Forward
0 new messages