Fatal trap NUM: page fault in soclose
2 views
Skip to first unread message
syzbot
Jun 24, 2022, 4:33:25 PM6/24/22
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 235d960aae75 tests/unix_passfd: compile SOCK_STREAM and SO..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=13749160080000
dashboard link: https://syzkaller.appspot.com/bug?extid=4b862074650b91e087b4
userspace arch: i386
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+4b8620...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address = 0x58daf728
fault code = supervisor write data, page not present
instruction pointer = 0x20:0xffffffff817e9824
stack pointer = 0x0:0xfffffe00a5b9c7a0
frame pointer = 0x0:0xfffffe00a5b9c880
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 9148 (syz-executor.2)
trap number = 12
panic: page fault
cpuid = 0
time = 1332
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe00a5b9bf90
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe00a5b9c0f0
vpanic() at vpanic+0x254/frame 0xfffffe00a5b9c1d0
panic() at panic+0xb5/frame 0xfffffe00a5b9c290
trap_fatal() at trap_fatal+0x6bd/frame 0xfffffe00a5b9c3b0
trap_pfault() at trap_pfault+0x182/frame 0xfffffe00a5b9c4f0
trap() at trap+0x5b3/frame 0xfffffe00a5b9c6d0
calltrap() at calltrap+0x8/frame 0xfffffe00a5b9c6d0
--- trap 0xc, rip = 0xffffffff817e9824, rsp = 0xfffffe00a5b9c7a0, rbp = 0xfffffe00a5b9c880 ---
soclose() at soclose+0x584/frame 0xfffffe00a5b9c880
_fdrop() at _fdrop+0x58/frame 0xfffffe00a5b9c8b0
closef() at closef+0x689/frame 0xfffffe00a5b9ca90
fdescfree() at fdescfree+0xa84/frame 0xfffffe00a5b9cc70
exit1() at exit1+0x915/frame 0xfffffe00a5b9cd10
sys_exit() at sys_exit+0x28/frame 0xfffffe00a5b9cd30
ia32_syscall() at ia32_syscall+0x41a/frame 0xfffffe00a5b9cf30
int0x80_syscall_common() at int0x80_syscall_common+0x9c/frame 0xffffd5e0
KDB: enter: panic
[ thread pid 9148 tid 111673 ]
Stopped at kdb_enter+0x6b: movq $0,0x275e2ba(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0
rax 0x12
rcx 0xffffffff8172b8d6 printf+0xf6
rdx 0x1
rbx 0
rsp 0xfffffe00a5b9c0d0
rbp 0xfffffe00a5b9c0f0
rsi 0
rdi 0xffffffff8172b938 printf+0x158
r8 0
r9 0xffffffff
r10 0
r11 0xfffffe009f016fd0
r12 0
r13 0xfffffe009f016ac0
r14 0xffffffff82b62080 .str.26
r15 0xffffffff82b62080 .str.26
rip 0xffffffff8171b45b kdb_enter+0x6b
rflags 0x200046 kernload+0x46
kdb_enter+0x6b: movq $0,0x275e2ba(%rip)
db> show proc
Process 9148 (syz-executor.2) at 0xfffffe00a6d1aa90:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 788 at 0xfffffe0058de1a90
ABI: FreeBSD ELF32
flag: 0x10002000 flag2: 0x40000
arguments: /root/syz-executor.2 exec
reaper: 0xfffffe0053dcc000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00a6d239f8
(map 0xfffffe00a6d239f8)
(map.pmap 0xfffffe00a6d23ab8)
(pmap 0xfffffe00a6d23b20)
threads: 1
111673 Run CPU 0 syz-executor.2
db> ps
pid ppid pgrp uid state wmesg wchan cmd
9148 788 788 0 RE CPU 0 syz-executor.2
9147 780 780 0 R (threaded) syz-executor.3
111422 RunQ syz-executor.3
111739 S connec 0xfffffe0058db40da syz-executor.3
9146 776 776 0 R (threaded) syz-executor.0
110863 RunQ syz-executor.0
111735 S connec 0xfffffe0058daa85a syz-executor.0
111736 S uwait 0xfffffe009e7ae480 syz-executor.0
9145 777 777 0 R (threaded) syz-executor.1
110886 RunQ syz-executor.1
111734 Run CPU 1 syz-executor.1
111737 S connec 0xfffffe0058db4c1a syz-executor.1
111738 S uwait 0xfffffe009ec8bd00 syz-executor.1
8560 1 8557 0 S uwait 0xfffffe009ec89680 syz-executor.2
8556 1 8552 0 S uwait 0xfffffe009ec8ae80 syz-executor.3
8555 1 8549 0 S uwait 0xfffffe00a6149600 syz-executor.2
8551 1 8550 0 S umtxn 0xfffffe009ec8a200 syz-executor.1
8548 1 8542 0 S umtxn 0xfffffe0058b51a00 syz-executor.3
8547 1 8544 0 S uwait 0xfffffe009ec8a880 syz-executor.2
8546 1 8540 0 S uwait 0xfffffe00a6152780 syz-executor.0
8545 1 8543 0 S umtxn 0xfffffe009ec89980 syz-executor.1
8541 1 8536 0 S uwait 0xfffffe00a5d6f480 syz-executor.3
8539 1 8537 0 S uwait 0xfffffe00a6154e00 syz-executor.1
8538 1 8535 0 S uwait 0xfffffe00a6149480 syz-executor.0
8533 1 8530 0 S uwait 0xfffffe009ec89e00 syz-executor.1
8532 1 8531 0 S uwait 0xfffffe0058ad6d00 syz-executor.0
8527 1 8525 0 S uwait 0xfffffe009ec8a100 syz-executor.1
8524 1 8523 0 S umtxn 0xfffffe0058af3880 syz-executor.1
8522 1 8521 0 S uwait 0xfffffe0058b51980 syz-executor.1
8520 1 8519 0 S uwait 0xfffffe00a6152a00 syz-executor.1
8518 1 8517 0 S uwait 0xfffffe009e7ada80 syz-executor.1
8516 1 8515 0 S uwait 0xfffffe00a6154e80 syz-executor.1
8024 1 776 60928 T uwait 0xfffffe00a5d6f180 syz-executor.0
8021 1 776 60928 T uwait 0xfffffe009e7ad600 syz-executor.0
8020 1 777 60928 T uwait 0xfffffe009ec8c180 syz-executor.1
8015 1 776 60928 T uwait 0xfffffe009ec89780 syz-executor.0
8014 1 777 60928 T uwait 0xfffffe009e7ae300 syz-executor.1
8010 1 777 60928 T uwait 0xfffffe00a5d6dc80 syz-executor.1
8003 1 777 60928 T uwait 0xfffffe009ec8c480 syz-executor.1
5573 1 780 0 SV sigwait 0xfffffe00a660fb40 syz-executor.3
5564 1 780 0 SV sigwait 0xfffffe00a6a570b0 syz-executor.3
5555 1 780 0 SV sigwait 0xfffffe00a660d5f8 syz-executor.3
5546 1 780 0 SV sigwait 0xfffffe00a638bb40 syz-executor.3
4415 1 777 0 S uwait 0xfffffe005743a080 syz-executor.1
4413 1 777 0 S umtxn 0xfffffe00a5d6d280 syz-executor.1
4410 1 777 0 S uwait 0xfffffe00a5d6e580 syz-executor.1
4406 1 777 0 S uwait 0xfffffe00a6154580 syz-executor.1
4404 1 777 0 S umtxn 0xfffffe00a6153300 syz-executor.1
4402 1 777 0 S uwait 0xfffffe009ec8ab80 syz-executor.1
4400 1 777 0 S umtxn 0xfffffe009ec8a580 syz-executor.1
4397 1 777 0 S uwait 0xfffffe009ec8a480 syz-executor.1
4393 1 777 0 S uwait 0xfffffe00a5d6ee00 syz-executor.1
4391 1 777 0 S uwait 0xfffffe00a6149c00 syz-executor.1
3666 1 3666 65 Ss select 0xfffffe0056fbc0c0 dhclient
3185 1 780 0 S uwait 0xfffffe009ec89880 syz-executor.3
3178 1 780 0 S uwait 0xfffffe009e7ae380 syz-executor.3
3174 1 780 0 S uwait 0xfffffe00a5d6f080 syz-executor.3
3169 1 780 0 S uwait 0xfffffe009ec8ac80 syz-executor.3
3051 1 3051 0 Ss select 0xfffffe0056fbbcc0 dhclient
3048 1 3048 0 Ss select 0xfffffe0056fbc140 dhclient
3020 1 3020 65 Ss select 0xfffffe0056fbbd40 dhclient
2682 1 777 0 S umtxn 0xfffffe00a5d6ec00 syz-executor.1
2681 1 788 0 S uwait 0xfffffe0057846700 syz-executor.2
2677 1 788 0 S uwait 0xfffffe0058af6680 syz-executor.2
2676 1 776 0 S uwait 0xfffffe009ec8c080 syz-executor.0
2675 1 777 0 S uwait 0xfffffe009ec8be00 syz-executor.1
2670 1 788 0 S uwait 0xfffffe0058af3180 syz-executor.2
2668 1 777 0 S uwait 0xfffffe00a5d6ef00 syz-executor.1
2667 1 776 0 S umtxn 0xfffffe009ec8aa80 syz-executor.0
2665 1 788 0 S uwait 0xfffffe009ec8a980 syz-executor.2
2662 1 788 0 S uwait 0xfffffe009ec89180 syz-executor.2
2661 1 776 0 S uwait 0xfffffe00a5d6f280 syz-executor.0
2656 1 788 0 S uwait 0xfffffe0058ad9c00 syz-executor.2
2653 1 788 0 S uwait 0xfffffe00a5d6eb00 syz-executor.2
2401 1 2401 0 Ss select 0xfffffe0056f9d9c0 dhclient
2394 1 2394 0 Ss select 0xfffffe0056fbc1c0 dhclient
2374 1 2374 65 Ss select 0xfffffe0056f9d1c0 dhclient
1798 1 1798 0 Ss select 0xfffffe0056fbc4c0 dhclient
1793 1 1793 0 Ss select 0xfffffe0057871940 dhclient
1768 1 1768 65 Ss select 0xfffffe0056fbc7c0 dhclient
1353 0 0 0 DL aiordy 0xfffffe0056f65548 [aiod4]
1352 0 0 0 DL aiordy 0xfffffe0053dcca90 [aiod3]
1351 0 0 0 DL aiordy 0xfffffe009f05d000 [aiod2]
1350 0 0 0 DL aiordy 0xfffffe0056f65000 [aiod1]
1112 1 1112 0 Ss select 0xfffffe0056fbc640 dhclient
1109 1 1109 0 Ss select 0xfffffe0056fbc5c0 dhclient
788 774 788 0 Rs syz-executor.2
780 774 780 0 Rs syz-executor.3
777 774 777 0 Rs syz-executor.1
776 774 776 0 Rs syz-executor.0
774 772 772 0 R (threaded) syz-fuzzer
100118 S uwait 0xfffffe0058af6a80 syz-fuzzer
100120 RunQ syz-fuzzer
100121 S uwait 0xfffffe0058af6d80 syz-fuzzer
100122 S uwait 0xfffffe0058af3980 syz-fuzzer
100123 S uwait 0xfffffe0058af3680 syz-fuzzer
100124 S uwait 0xfffffe009ec8c280 syz-fuzzer
100125 S uwait 0xfffffe0058af3580 syz-fuzzer
100127 RunQ syz-fuzzer
100128 S uwait 0xfffffe0058af3380 syz-fuzzer
772 770 772 0 Ss pause 0xfffffe009eff5b40 csh
770 688 770 0 Ss select 0xfffffe0056fbc8c0 sshd
754 1 754 0 Ss+ ttyin 0xfffffe0056f2fcb0 getty
753 1 753 0 Ss+ ttyin 0xfffffe00585d74b0 getty
752 1 752 0 Ss+ ttyin 0xfffffe00585d78b0 getty
751 1 751 0 Ss+ ttyin 0xfffffe00585d7cb0 getty
750 1 750 0 Ss+ ttyin 0xfffffe00585d80b0 getty
749 1 749 0 Ss+ ttyin 0xfffffe0056f2ecb0 getty
748 1 748 0 Ss+ ttyin 0xfffffe00585d84b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00585d88b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00585d8cb0 getty
692 1 692 0 Ss nanslp 0xffffffff83e46dc0 cron
688 1 688 0 Ss select 0xfffffe0057871ac0 sshd
501 1 501 0 Ss select 0xfffffe0056f9cb40 syslogd
430 1 430 0 Ss select 0xfffffe0056f9cbc0 devd
429 1 429 65 Ss select 0xfffffe0056f9d0c0 dhclient
344 1 344 0 Ss select 0xfffffe0056f9cc40 dhclient
341 1 341 0 Ss select 0xfffffe00578719c0 dhclient
17 0 0 0 DL vlruwt 0xfffffe0056f67548 [vnlru]
16 0 0 0 DL syncer 0xffffffff83f6c5e0 [syncer]
15 0 0 0 RL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83f6abe0 [bufdaemon]
100082 RunQ [bufspacedaemon-0]
100094 D sdflush 0xfffffe0053c6e8e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83f9e700 [vmdaemon]
8 0 0 0 RL (threaded) [pagedaemon]
100077 RunQ [dom0]
100083 D launds 0xffffffff83f925c4 [laundry: dom0]
100084 D umarcl 0xffffffff81e53cc0 [uma]
7 0 0 0 RL [rand_harvestq]
6 0 0 0 RL [pf purge]
5 0 0 0 DL waiting 0xffffffff84810420 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83aa6340 [doneq0]
100045 D - 0xffffffff83aa62c0 [async]
100076 D - 0xffffffff83aa6140 [scanner]
14 0 0 0 DL seqstat 0xfffffe0007962888 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83f8dde0 [crypto]
100041 D crypto_ 0xfffffe0053e71d30 [crypto returns 0]
100042 D crypto_ 0xfffffe0053e71d80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff83e1c3c0 [g_event]
100036 D - 0xffffffff83e1c3e0 [g_up]
100037 D - 0xffffffff83e1c400 [g_down]
2 0 0 0 RL (threaded) [clock]
100029 RunQ [clock (0)]
100030 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100015 I [swi5: fast taskq]
100018 I [swi6: task queue]
100019 I [swi6: Giant taskq]
100031 I [swi1: netisr 0]
100032 RunQ [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0053dcc000 [init]
10 0 0 0 DL audit_w 0xffffffff83f8e8c0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83e1cdc0 [swapper]
100005 D - 0xfffffe000817de00 [if_config_tqg_0]
100006 D - 0xfffffe000817dd00 [softirq_0]
100007 D - 0xfffffe000817dc00 [softirq_1]
100008 D - 0xfffffe000817db00 [if_io_tqg_0]
100009 D - 0xfffffe000817da00 [if_io_tqg_1]
100010 D - 0xfffffe000817d900 [inm_free taskq]
100011 D - 0xfffffe000817d800 [linuxkpi_irq_wq]
100012 D - 0xfffffe000817d700 [in6m_free taskq]
100013 D - 0xfffffe000817d600 [deferred_unmount ta]
100014 D - 0xfffffe000817d500 [thread taskq]
100016 D - 0xfffffe000817d300 [kqueue_ctx taskq]
100017 D - 0xfffffe000817d200 [pci_hp taskq]
100020 D - 0xfffffe000817ce00 [aiod_kick taskq]
100021 D - 0xfffffe000817cd00 [linuxkpi_short_wq_0]
100022 D - 0xfffffe000817cd00 [linuxkpi_short_wq_1]
100023 D - 0xfffffe000817cd00 [linuxkpi_short_wq_2]
100024 D - 0xfffffe000817cd00 [linuxkpi_short_wq_3]
100025 D - 0xfffffe000817cc00 [linuxkpi_long_wq_0]
100026 D - 0xfffffe000817cc00 [linuxkpi_long_wq_1]
100027 D - 0xfffffe000817cc00 [linuxkpi_long_wq_2]
100028 D - 0xfffffe000817cc00 [linuxkpi_long_wq_3]
100034 D - 0xfffffe000817cb00 [firmware taskq]
100038 D - 0xfffffe000817ca00 [crypto_0]
100039 D - 0xfffffe000817ca00 [crypto_1]
100055 D - 0xfffffe000817c800 [vtnet0 rxq 0]
100056 D - 0xfffffe000817c700 [vtnet0 txq 0]
100057 D - 0xfffffe000817c600 [vtnet0 rxq 1]
100058 D - 0xfffffe000817c500 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0056f9d380 [virtio_balloon]
100066 D - 0xffffffff82b67f01 [deadlkres]
100070 D - 0xfffffe000817e100 [mca taskq]
100071 D - 0xfffffe00585d3300 [acpi_task_0]
100072 D - 0xfffffe00585d3300 [acpi_task_1]
100073 D - 0xfffffe00585d3300 [acpi_task_2]
100075 D - 0xfffffe000817c900 [CAM taskq]
db> show all locks
Process 9148 (syz-executor.2) thread 0xfffffe009f016ac0 (111673)
exclusive sleep mutex socket (socket) r = 0 (0xfffffe0058db0000) locked @ /syzkaller/managers/i386/kernel/sys/kern/uipc_socket.c:1288
Process 9145 (syz-executor.1) thread 0xfffffe00a6c85560 (111734)
exclusive lockmgr ufs (ufs) r = 0 (0xfffffe009f1b7070) locked @ /syzkaller/managers/i386/kernel/sys/kern/link_elf_obj.c:1213
exclusive sx kernel linker (kernel linker) r = 0 (0xffffffff83e20900) locked @ /syzkaller/managers/i386/kernel/sys/kern/kern_linker.c:1082
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
linker 382 9664K 416
tcp_hpts 7 4801K 7
devbuf 4217 4323K 4245
sysctloid 35205 2074K 35276
vtbuf 24 1968K 46
kobj 328 1312K 490
filedesc 132 1051K 16277
newblk 29 1031K 27056
vfscache 3 1025K 3
pcb 263 791K 13858
inodedep 250 606K 9382
subproc 261 526K 9300
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vmem 3 274K 5
filemon 23 184K 206
acpica 1674 184K 57552
vnet_data 1 168K 1
tidhash 3 141K 3
sctp_stro 136 136K 3282
pagedep 29 135K 8332
tfo_ccache 1 128K 1
sctp_atcl 297 112K 10871
DEVFS1 109 109K 126
sem 4 106K 4
BPF 46 88K 85
bus 995 81K 5208
mtx_pool 2 72K 2
syncache 1 68K 1
module 514 65K 514
acpitask 1 64K 1
ddb_capture 1 64K 1
kdtrace 335 62K 20890
umtx 484 61K 484
dirrem 220 55K 8912
temp 38 36K 3450
DEVFS3 128 32K 138
hostcache 1 32K 1
shm 1 32K 52
msg 4 30K 4
gtaskqueue 18 26K 18
freefile 199 25K 8799
kbdmux 6 22K 6
ifaddr 71 21K 73
DEVFS_RULE 56 20K 56
sctp_atky 433 19K 14823
routetbl 143 19K 751
lltable 56 18K 324
ufs_mount 4 17K 5
sctp_stri 33 17K 1131
proc 3 17K 3
tty 16 16K 16
ithread 97 16K 97
bus-sc 34 15K 1681
ether_multi 157 13K 222
KTRACE 100 13K 138
ifnet 7 13K 7
eventhandler 136 12K 136
kenv 95 12K 95
sctp_timw 45 12K 45
rman 88 11K 431
GEOM 61 11K 490
CAM queue 5 11K 1528
kqueue 120 10K 9197
cred 37 10K 377
in6_multi 71 9K 71
bmsafemap 3 9K 9509
UART 12 9K 12
devstat 4 9K 4
ksem 1 8K 320
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
pwddesc 117 8K 9279
session 54 7K 82
taskqueue 63 7K 63
sglist 5 7K 5
CAM DEV 3 6K 510
plimit 24 6K 480
DEVFSP 91 6K 932
ip6opt 34 5K 268
sctp_athm 297 5K 11355
ufs_dirhash 24 5K 24
pf_ifnet 12 5K 104
UMA 271 5K 271
proc-args 149 5K 10493
sctp_map 272 5K 6714
vt 11 5K 11
pf_table 2 4K 81
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
lockf 33 4K 125
acpisem 28 4K 28
selfd 55 4K 111839
hhook 15 4K 17
kcovinfo 52 4K 52
newdirblk 23 3K 8177
terminal 11 3K 11
pf_osfp 21 3K 21
select 19 3K 297
uidinfo 4 3K 53
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
ip6ndp 12 2K 15
sctp_ifa 14 2K 15
Unitno 29 2K 311
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 19
ipsecpolicy 2 2K 2
CC Mem 20 2K 5042
acpidev 20 2K 20
clone 9 2K 9
tun 7 2K 7
inpcbpolicy 33 2K 7987
freework 5 2K 15741
softdep 1 1K 1
mkdir 8 1K 16354
freeblks 4 1K 9140
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 1422
NFSD session 1 1K 1
CAM periph 4 1K 271
ipsec 3 1K 3
sctp_ifn 6 1K 15
diradd 6 1K 8953
mld 6 1K 6
igmp 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
osd 24 1K 5009
crypto 4 1K 190
encap_export_host 12 1K 12
procdesc 5 1K 18
tcp_fsb 12 1K 968
pfil 4 1K 4
cdev 2 1K 2
chacha20random 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
ip_msource 4 1K 28
vnodes 1 1K 71
CAM SIM 2 1K 2
sigio 4 1K 5
filedesc_to_leader 4 1K 8
feeder 7 1K 7
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
lkpikmalloc 5 1K 6
soname 7 1K 15938
aesni_data 2 1K 2
pf_rule 1 1K 65
cryptodev 2 1K 1006
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
aio 4 1K 11
pmchooks 1 1K 1
filecaps 5 1K 120
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 47
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
pf_altq 0 0K 0
pf_temp 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 4791
sctp_iter 0 0K 51
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 50
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 11
sctp_aadr 0 0K 88
mqdata 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
ixl 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
xen_intr 0 0K 0
NFSD V4state 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
xenbus 0 0K 0
DEVFS4 0 0K 0
vm_fictitious 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
UMAHash 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 8368
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 690
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 179
allocindir 0 0K 0
indirdep 0 0K 10459
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
vtfont 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
ktls_ocf 0 0K 0
AHCI driver 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_moptions 0 0K 14
in_mfilter 0 0K 56
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
statfs 0 0K 8391
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 97
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 381
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
lio 0 0K 66
acl 0 0K 0
mbuf_tag 0 0K 233
ktls 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
lDevFlags * malloc 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
iov 0 0K 20319
ioctlops 0 0K 618
eventfd 0 0K 15
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 861
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 20
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
boottrace 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8324 2090 73520 0 254 42655744 0
tcp_log 416 0 13977 435796 0 254 5814432 0
mbuf 256 9101 8947 1981740 0 254 4620288 0
pbuf 2624 0 957 0 0 2 2511168 0
malloc-384 384 4430 70 13975 0 30 1728000 0
BUF TRIE 144 217 11543 17463 0 62 1693440 0
malloc-128 128 12798 191 47914 0 126 1662592 0
mbuf_cluster 2048 762 0 762 0 254 1560576 0
malloc-4096 4096 341 5 517 0 2 1417216 0
UMA Slabs 0 112 12234 0 12234 0 126 1370208 0
RADIX NODE 144 8379 324 236152 0 63 1253232 0
vmem btag 56 22114 101 22114 0 254 1244040 0
sctp_asoc 2256 136 374 3250 0 254 1150560 0
malloc-16384 16384 66 4 8297 0 1 1146880 0
ertt_txseginfo 40 0 22927 837606 0 254 917080 0
256 Bucket 2048 379 21 8330 0 8 819200 0
VM OBJECT 264 2906 94 149644 0 30 792000 0
FFS inode 1160 619 25 9492 0 8 747040 0
tcp_bbr_map 128 0 5673 228555 0 126 726144 0
sctp_ep 1208 128 382 6874 0 254 616080 0
tcpcb 1104 20 491 4998 0 254 564144 0
malloc-4096 4096 122 4 9272 0 2 516096 0
socket 960 64 444 16303 0 254 487680 0
THREAD 1808 216 26 11740 0 8 437536 0
malloc-2048 2048 119 89 7123 0 8 425984 0
MAP ENTRY 96 4138 272 400598 0 126 423360 0
malloc-65536 65536 4 2 312 0 1 393216 0
lkpimm 168 1 2327 1 0 62 391104 0
lkpicurr 168 2 2326 2 0 62 391104 0
sctp_raddr 736 140 377 3679 0 254 380512 0
VNODE 448 660 96 9535 0 30 338688 0
sctp_chunk 152 150 1904 80286 0 254 312208 0
VMSPACE 2552 97 11 9110 0 4 275616 0
malloc-65536 65536 2 2 53 0 1 262144 0
malloc-65536 65536 2 2 138 0 1 262144 0
malloc-32768 32768 1 7 9861 0 1 262144 0
malloc-64 64 3912 183 116441 0 254 262080 0
malloc-8192 8192 26 5 209 0 1 253952 0
malloc-16 16 14574 176 18358 0 254 236000 0
malloc-1024 1024 139 85 3282 0 16 229376 0
DEVCTL 1024 0 220 155 0 0 225280 0
FPU_save_area 832 218 43 14203 0 16 217152 0
mbuf_packet 256 101 661 44808 0 254 195072 0
malloc-128 128 1323 196 27409 0 126 194432 0
FFS2 dinode 256 619 131 9492 0 62 192000 0
malloc-256 256 632 118 22335 0 62 192000 0
malloc-32 32 5339 583 6602 0 254 189504 0
UMA Zones 768 243 1 243 0 16 187392 0
PROC 1352 117 21 9148 0 8 186576 0
malloc-384 384 297 183 10936 0 30 184320 0
malloc-256 256 103 587 29471 0 62 176640 0
128 Bucket 1024 113 50 2882 0 16 166912 0
S VFS Cache 104 1028 493 10192 0 126 158184 0
filedesc0 1072 118 22 9279 0 8 150080 0
malloc-1024 1024 120 24 294 0 16 147456 0
unpcb 256 20 490 1385 0 254 130560 0
malloc-256 256 279 231 16287 0 62 130560 0
clpbuf 2624 0 48 434 0 16 125952 0
ksiginfo 112 124 920 2722 0 126 116928 0
malloc-16384 16384 7 0 22 0 1 114688 0
malloc-4096 4096 22 4 84 0 2 106496 0
malloc-64 64 1082 493 24807 0 254 100800 0
malloc-32768 32768 1 2 121 0 1 98304 0
malloc-8192 8192 12 0 14 0 1 98304 0
UMA Kegs 384 229 4 229 0 30 89472 0
syncache 168 0 528 36 0 254 88704 0
64 Bucket 512 92 76 10563 0 30 86016 0
g_bio 408 0 210 165402 0 30 85680 0
malloc-128 128 400 251 5127 0 126 83328 0
malloc-16384 16384 0 5 18 0 1 81920 0
malloc-256 256 3 312 17877 0 62 80640 0
sctp_readq 152 1 519 458 0 254 79040 0
malloc-64 64 735 336 11850 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-2048 2048 9 23 516 0 8 65536 0
malloc-2048 2048 15 17 332 0 8 65536 0
32 Bucket 256 97 158 7403 0 62 65280 0
sctp_stream_msg_out 112 7 533 1005 0 254 60480 0
tcp_bbr_pcb 832 13 59 1035 0 16 59904 0
malloc-384 384 140 10 480 0 30 57600 0
malloc-8192 8192 5 2 106 0 1 57344 0
malloc-4096 4096 11 3 562 0 2 57344 0
tcp_inpcb 424 20 106 4998 0 30 53424 0
malloc-64 64 185 634 21731 0 254 52416 0
Files 80 289 361 35614 0 126 52000 0
malloc-128 128 108 295 8784 0 126 51584 0
malloc-256 256 12 183 15963 0 62 49920 0
malloc-256 256 62 133 551 0 62 49920 0
malloc-256 256 51 144 8588 0 62 49920 0
DIRHASH 1024 34 14 34 0 16 49152 0
NAMEI 1024 0 48 52889 0 16 49152 0
malloc-2048 2048 3 21 84 0 8 49152 0
malloc-2048 2048 1 23 548 0 8 49152 0
malloc-1024 1024 4 44 512 0 16 49152 0
malloc-512 512 34 62 1250 0 30 49152 0
tcp_rack_pcb 896 2 52 958 0 16 48384 0
pipe 744 23 42 919 0 16 48360 0
malloc-384 384 83 37 83 0 30 46080 0
pcpu-8 8 4749 883 7224 0 254 45056 0
TURNSTILE 136 243 72 243 0 62 42840 0
malloc-8192 8192 3 2 31 0 1 40960 0
Mountpoints 2752 2 12 2 0 4 38528 0
udplite_inpcb 424 0 90 145 0 30 38160 0
udp_inpcb 424 7 83 2698 0 30 38160 0
ripcb 424 6 84 146 0 30 38160 0
da_ccb 544 0 70 41522 0 16 38080 0
hostcache 64 3 564 3 0 254 36288 0
PWD 32 78 1056 8157 0 254 36288 0
malloc-64 64 108 459 108 0 254 36288 0
malloc-64 64 73 494 158 0 254 36288 0
malloc-64 64 2 565 943 0 254 36288 0
malloc-64 64 4 563 52 0 254 36288 0
16 Bucket 144 75 177 1660 0 62 36288 0
malloc-128 128 34 245 658 0 126 35712 0
malloc-128 128 91 188 129 0 126 35712 0
malloc-128 128 81 198 1185 0 126 35712 0
malloc-128 128 29 250 29 0 126 35712 0
routing nhops 256 27 108 35 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-256 256 82 53 799 0 62 34560 0
SLEEPQUEUE 88 243 141 243 0 126 33792 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-2048 2048 2 14 399 0 8 32768 0
malloc-1024 1024 14 18 1349 0 16 32768 0
malloc-1024 1024 20 12 145 0 16 32768 0
malloc-1024 1024 10 22 14 0 16 32768 0
malloc-1024 1024 2 30 11 0 16 32768 0
malloc-512 512 5 59 1482 0 30 32768 0
malloc-512 512 8 56 9 0 30 32768 0
malloc-512 512 2 62 63 0 30 32768 0
malloc-512 512 11 53 82 0 30 32768 0
pcpu-64 64 493 19 493 0 254 32768 0
KNOTE 160 28 172 79561 0 62 32000 0
ttyinq 160 135 65 300 0 62 32000 0
8 Bucket 80 61 339 2133 0 126 32000 0
tcp_rack_map 120 7 257 1890 0 126 31680 0
tcp_log_id_node 120 0 264 10 0 126 31680 0
cpuset 104 7 272 1499 0 126 29016 0
sctp_asconf_ack 48 0 588 20 0 254 28224 0
sctp_laddr 48 102 486 3128 0 254 28224 0
tcp_inpcb ports 32 5 877 3936 0 254 28224 0
malloc-32 32 408 474 6368 0 254 28224 0
4 Bucket 48 8 580 230 0 254 28224 0
2 Bucket 32 58 824 2434 0 254 28224 0
AIO 208 0 133 155 0 62 27664 0
malloc-4096 4096 0 6 8391 0 2 24576 0
rtentry 176 31 107 35 0 62 24288 0
PGRP 88 54 222 82 0 126 24288 0
rl_entry 40 124 482 124 0 254 24240 0
itimer 352 4 62 8 0 30 23232 0
malloc-384 384 24 36 65 0 30 23040 0
malloc-384 384 8 52 188 0 30 23040 0
malloc-384 384 0 60 45 0 30 23040 0
domainset 40 0 567 1400 0 254 22680 0
udpcb 32 7 623 2843 0 254 20160 0
udplite_inpcb ports 32 0 630 24 0 254 20160 0
udp_inpcb ports 32 3 627 59 0 254 20160 0
ertt 72 20 260 4998 0 126 20160 0
malloc-32 32 275 355 10702 0 254 20160 0
malloc-32 32 77 553 359 0 254 20160 0
malloc-32 32 103 527 11075 0 254 20160 0
malloc-32 32 169 461 8133 0 254 20160 0
malloc-32 32 45 585 688 0 254 20160 0
malloc-32 32 17 613 123 0 254 20160 0
malloc-16 16 623 627 21257 0 254 20000 0
cryptop 280 0 70 46 0 30 19600 0
AIOCB 552 0 35 201 0 16 19320 0
AIOLIO 272 0 70 33 0 30 19040 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-4096 4096 3 1 4 0 2 16384 0
malloc-4096 4096 0 4 5 0 2 16384 0
malloc-2048 2048 1 7 46 0 8 16384 0
malloc-512 512 0 32 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
vtnet_tx_hdr 24 0 668 204395 0 254 16032 0
malloc-16 16 308 692 13412 0 254 16000 0
malloc-16 16 295 705 6550 0 254 16000 0
kenv 258 15 45 1053 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
tcp_log_id_bucket 176 0 69 1 0 62 12144 0
malloc-16 16 50 700 31359 0 254 12000 0
malloc-16 16 11 739 24 0 2
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following issue on:
HEAD commit: 235d960aae75 tests/unix_passfd: compile SOCK_STREAM and SO..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=13749160080000
dashboard link: https://syzkaller.appspot.com/bug?extid=4b862074650b91e087b4
userspace arch: i386
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+4b8620...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address = 0x58daf728
fault code = supervisor write data, page not present
instruction pointer = 0x20:0xffffffff817e9824
stack pointer = 0x0:0xfffffe00a5b9c7a0
frame pointer = 0x0:0xfffffe00a5b9c880
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 9148 (syz-executor.2)
trap number = 12
panic: page fault
cpuid = 0
time = 1332
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe00a5b9bf90
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe00a5b9c0f0
vpanic() at vpanic+0x254/frame 0xfffffe00a5b9c1d0
panic() at panic+0xb5/frame 0xfffffe00a5b9c290
trap_fatal() at trap_fatal+0x6bd/frame 0xfffffe00a5b9c3b0
trap_pfault() at trap_pfault+0x182/frame 0xfffffe00a5b9c4f0
trap() at trap+0x5b3/frame 0xfffffe00a5b9c6d0
calltrap() at calltrap+0x8/frame 0xfffffe00a5b9c6d0
--- trap 0xc, rip = 0xffffffff817e9824, rsp = 0xfffffe00a5b9c7a0, rbp = 0xfffffe00a5b9c880 ---
soclose() at soclose+0x584/frame 0xfffffe00a5b9c880
_fdrop() at _fdrop+0x58/frame 0xfffffe00a5b9c8b0
closef() at closef+0x689/frame 0xfffffe00a5b9ca90
fdescfree() at fdescfree+0xa84/frame 0xfffffe00a5b9cc70
exit1() at exit1+0x915/frame 0xfffffe00a5b9cd10
sys_exit() at sys_exit+0x28/frame 0xfffffe00a5b9cd30
ia32_syscall() at ia32_syscall+0x41a/frame 0xfffffe00a5b9cf30
int0x80_syscall_common() at int0x80_syscall_common+0x9c/frame 0xffffd5e0
KDB: enter: panic
[ thread pid 9148 tid 111673 ]
Stopped at kdb_enter+0x6b: movq $0,0x275e2ba(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0
rax 0x12
rcx 0xffffffff8172b8d6 printf+0xf6
rdx 0x1
rbx 0
rsp 0xfffffe00a5b9c0d0
rbp 0xfffffe00a5b9c0f0
rsi 0
rdi 0xffffffff8172b938 printf+0x158
r8 0
r9 0xffffffff
r10 0
r11 0xfffffe009f016fd0
r12 0
r13 0xfffffe009f016ac0
r14 0xffffffff82b62080 .str.26
r15 0xffffffff82b62080 .str.26
rip 0xffffffff8171b45b kdb_enter+0x6b
rflags 0x200046 kernload+0x46
kdb_enter+0x6b: movq $0,0x275e2ba(%rip)
db> show proc
Process 9148 (syz-executor.2) at 0xfffffe00a6d1aa90:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 788 at 0xfffffe0058de1a90
ABI: FreeBSD ELF32
flag: 0x10002000 flag2: 0x40000
arguments: /root/syz-executor.2 exec
reaper: 0xfffffe0053dcc000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00a6d239f8
(map 0xfffffe00a6d239f8)
(map.pmap 0xfffffe00a6d23ab8)
(pmap 0xfffffe00a6d23b20)
threads: 1
111673 Run CPU 0 syz-executor.2
db> ps
pid ppid pgrp uid state wmesg wchan cmd
9148 788 788 0 RE CPU 0 syz-executor.2
9147 780 780 0 R (threaded) syz-executor.3
111422 RunQ syz-executor.3
111739 S connec 0xfffffe0058db40da syz-executor.3
9146 776 776 0 R (threaded) syz-executor.0
110863 RunQ syz-executor.0
111735 S connec 0xfffffe0058daa85a syz-executor.0
111736 S uwait 0xfffffe009e7ae480 syz-executor.0
9145 777 777 0 R (threaded) syz-executor.1
110886 RunQ syz-executor.1
111734 Run CPU 1 syz-executor.1
111737 S connec 0xfffffe0058db4c1a syz-executor.1
111738 S uwait 0xfffffe009ec8bd00 syz-executor.1
8560 1 8557 0 S uwait 0xfffffe009ec89680 syz-executor.2
8556 1 8552 0 S uwait 0xfffffe009ec8ae80 syz-executor.3
8555 1 8549 0 S uwait 0xfffffe00a6149600 syz-executor.2
8551 1 8550 0 S umtxn 0xfffffe009ec8a200 syz-executor.1
8548 1 8542 0 S umtxn 0xfffffe0058b51a00 syz-executor.3
8547 1 8544 0 S uwait 0xfffffe009ec8a880 syz-executor.2
8546 1 8540 0 S uwait 0xfffffe00a6152780 syz-executor.0
8545 1 8543 0 S umtxn 0xfffffe009ec89980 syz-executor.1
8541 1 8536 0 S uwait 0xfffffe00a5d6f480 syz-executor.3
8539 1 8537 0 S uwait 0xfffffe00a6154e00 syz-executor.1
8538 1 8535 0 S uwait 0xfffffe00a6149480 syz-executor.0
8533 1 8530 0 S uwait 0xfffffe009ec89e00 syz-executor.1
8532 1 8531 0 S uwait 0xfffffe0058ad6d00 syz-executor.0
8527 1 8525 0 S uwait 0xfffffe009ec8a100 syz-executor.1
8524 1 8523 0 S umtxn 0xfffffe0058af3880 syz-executor.1
8522 1 8521 0 S uwait 0xfffffe0058b51980 syz-executor.1
8520 1 8519 0 S uwait 0xfffffe00a6152a00 syz-executor.1
8518 1 8517 0 S uwait 0xfffffe009e7ada80 syz-executor.1
8516 1 8515 0 S uwait 0xfffffe00a6154e80 syz-executor.1
8024 1 776 60928 T uwait 0xfffffe00a5d6f180 syz-executor.0
8021 1 776 60928 T uwait 0xfffffe009e7ad600 syz-executor.0
8020 1 777 60928 T uwait 0xfffffe009ec8c180 syz-executor.1
8015 1 776 60928 T uwait 0xfffffe009ec89780 syz-executor.0
8014 1 777 60928 T uwait 0xfffffe009e7ae300 syz-executor.1
8010 1 777 60928 T uwait 0xfffffe00a5d6dc80 syz-executor.1
8003 1 777 60928 T uwait 0xfffffe009ec8c480 syz-executor.1
5573 1 780 0 SV sigwait 0xfffffe00a660fb40 syz-executor.3
5564 1 780 0 SV sigwait 0xfffffe00a6a570b0 syz-executor.3
5555 1 780 0 SV sigwait 0xfffffe00a660d5f8 syz-executor.3
5546 1 780 0 SV sigwait 0xfffffe00a638bb40 syz-executor.3
4415 1 777 0 S uwait 0xfffffe005743a080 syz-executor.1
4413 1 777 0 S umtxn 0xfffffe00a5d6d280 syz-executor.1
4410 1 777 0 S uwait 0xfffffe00a5d6e580 syz-executor.1
4406 1 777 0 S uwait 0xfffffe00a6154580 syz-executor.1
4404 1 777 0 S umtxn 0xfffffe00a6153300 syz-executor.1
4402 1 777 0 S uwait 0xfffffe009ec8ab80 syz-executor.1
4400 1 777 0 S umtxn 0xfffffe009ec8a580 syz-executor.1
4397 1 777 0 S uwait 0xfffffe009ec8a480 syz-executor.1
4393 1 777 0 S uwait 0xfffffe00a5d6ee00 syz-executor.1
4391 1 777 0 S uwait 0xfffffe00a6149c00 syz-executor.1
3666 1 3666 65 Ss select 0xfffffe0056fbc0c0 dhclient
3185 1 780 0 S uwait 0xfffffe009ec89880 syz-executor.3
3178 1 780 0 S uwait 0xfffffe009e7ae380 syz-executor.3
3174 1 780 0 S uwait 0xfffffe00a5d6f080 syz-executor.3
3169 1 780 0 S uwait 0xfffffe009ec8ac80 syz-executor.3
3051 1 3051 0 Ss select 0xfffffe0056fbbcc0 dhclient
3048 1 3048 0 Ss select 0xfffffe0056fbc140 dhclient
3020 1 3020 65 Ss select 0xfffffe0056fbbd40 dhclient
2682 1 777 0 S umtxn 0xfffffe00a5d6ec00 syz-executor.1
2681 1 788 0 S uwait 0xfffffe0057846700 syz-executor.2
2677 1 788 0 S uwait 0xfffffe0058af6680 syz-executor.2
2676 1 776 0 S uwait 0xfffffe009ec8c080 syz-executor.0
2675 1 777 0 S uwait 0xfffffe009ec8be00 syz-executor.1
2670 1 788 0 S uwait 0xfffffe0058af3180 syz-executor.2
2668 1 777 0 S uwait 0xfffffe00a5d6ef00 syz-executor.1
2667 1 776 0 S umtxn 0xfffffe009ec8aa80 syz-executor.0
2665 1 788 0 S uwait 0xfffffe009ec8a980 syz-executor.2
2662 1 788 0 S uwait 0xfffffe009ec89180 syz-executor.2
2661 1 776 0 S uwait 0xfffffe00a5d6f280 syz-executor.0
2656 1 788 0 S uwait 0xfffffe0058ad9c00 syz-executor.2
2653 1 788 0 S uwait 0xfffffe00a5d6eb00 syz-executor.2
2401 1 2401 0 Ss select 0xfffffe0056f9d9c0 dhclient
2394 1 2394 0 Ss select 0xfffffe0056fbc1c0 dhclient
2374 1 2374 65 Ss select 0xfffffe0056f9d1c0 dhclient
1798 1 1798 0 Ss select 0xfffffe0056fbc4c0 dhclient
1793 1 1793 0 Ss select 0xfffffe0057871940 dhclient
1768 1 1768 65 Ss select 0xfffffe0056fbc7c0 dhclient
1353 0 0 0 DL aiordy 0xfffffe0056f65548 [aiod4]
1352 0 0 0 DL aiordy 0xfffffe0053dcca90 [aiod3]
1351 0 0 0 DL aiordy 0xfffffe009f05d000 [aiod2]
1350 0 0 0 DL aiordy 0xfffffe0056f65000 [aiod1]
1112 1 1112 0 Ss select 0xfffffe0056fbc640 dhclient
1109 1 1109 0 Ss select 0xfffffe0056fbc5c0 dhclient
788 774 788 0 Rs syz-executor.2
780 774 780 0 Rs syz-executor.3
777 774 777 0 Rs syz-executor.1
776 774 776 0 Rs syz-executor.0
774 772 772 0 R (threaded) syz-fuzzer
100118 S uwait 0xfffffe0058af6a80 syz-fuzzer
100120 RunQ syz-fuzzer
100121 S uwait 0xfffffe0058af6d80 syz-fuzzer
100122 S uwait 0xfffffe0058af3980 syz-fuzzer
100123 S uwait 0xfffffe0058af3680 syz-fuzzer
100124 S uwait 0xfffffe009ec8c280 syz-fuzzer
100125 S uwait 0xfffffe0058af3580 syz-fuzzer
100127 RunQ syz-fuzzer
100128 S uwait 0xfffffe0058af3380 syz-fuzzer
772 770 772 0 Ss pause 0xfffffe009eff5b40 csh
770 688 770 0 Ss select 0xfffffe0056fbc8c0 sshd
754 1 754 0 Ss+ ttyin 0xfffffe0056f2fcb0 getty
753 1 753 0 Ss+ ttyin 0xfffffe00585d74b0 getty
752 1 752 0 Ss+ ttyin 0xfffffe00585d78b0 getty
751 1 751 0 Ss+ ttyin 0xfffffe00585d7cb0 getty
750 1 750 0 Ss+ ttyin 0xfffffe00585d80b0 getty
749 1 749 0 Ss+ ttyin 0xfffffe0056f2ecb0 getty
748 1 748 0 Ss+ ttyin 0xfffffe00585d84b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00585d88b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00585d8cb0 getty
692 1 692 0 Ss nanslp 0xffffffff83e46dc0 cron
688 1 688 0 Ss select 0xfffffe0057871ac0 sshd
501 1 501 0 Ss select 0xfffffe0056f9cb40 syslogd
430 1 430 0 Ss select 0xfffffe0056f9cbc0 devd
429 1 429 65 Ss select 0xfffffe0056f9d0c0 dhclient
344 1 344 0 Ss select 0xfffffe0056f9cc40 dhclient
341 1 341 0 Ss select 0xfffffe00578719c0 dhclient
17 0 0 0 DL vlruwt 0xfffffe0056f67548 [vnlru]
16 0 0 0 DL syncer 0xffffffff83f6c5e0 [syncer]
15 0 0 0 RL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83f6abe0 [bufdaemon]
100082 RunQ [bufspacedaemon-0]
100094 D sdflush 0xfffffe0053c6e8e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83f9e700 [vmdaemon]
8 0 0 0 RL (threaded) [pagedaemon]
100077 RunQ [dom0]
100083 D launds 0xffffffff83f925c4 [laundry: dom0]
100084 D umarcl 0xffffffff81e53cc0 [uma]
7 0 0 0 RL [rand_harvestq]
6 0 0 0 RL [pf purge]
5 0 0 0 DL waiting 0xffffffff84810420 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83aa6340 [doneq0]
100045 D - 0xffffffff83aa62c0 [async]
100076 D - 0xffffffff83aa6140 [scanner]
14 0 0 0 DL seqstat 0xfffffe0007962888 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83f8dde0 [crypto]
100041 D crypto_ 0xfffffe0053e71d30 [crypto returns 0]
100042 D crypto_ 0xfffffe0053e71d80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff83e1c3c0 [g_event]
100036 D - 0xffffffff83e1c3e0 [g_up]
100037 D - 0xffffffff83e1c400 [g_down]
2 0 0 0 RL (threaded) [clock]
100029 RunQ [clock (0)]
100030 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100015 I [swi5: fast taskq]
100018 I [swi6: task queue]
100019 I [swi6: Giant taskq]
100031 I [swi1: netisr 0]
100032 RunQ [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0053dcc000 [init]
10 0 0 0 DL audit_w 0xffffffff83f8e8c0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff83e1cdc0 [swapper]
100005 D - 0xfffffe000817de00 [if_config_tqg_0]
100006 D - 0xfffffe000817dd00 [softirq_0]
100007 D - 0xfffffe000817dc00 [softirq_1]
100008 D - 0xfffffe000817db00 [if_io_tqg_0]
100009 D - 0xfffffe000817da00 [if_io_tqg_1]
100010 D - 0xfffffe000817d900 [inm_free taskq]
100011 D - 0xfffffe000817d800 [linuxkpi_irq_wq]
100012 D - 0xfffffe000817d700 [in6m_free taskq]
100013 D - 0xfffffe000817d600 [deferred_unmount ta]
100014 D - 0xfffffe000817d500 [thread taskq]
100016 D - 0xfffffe000817d300 [kqueue_ctx taskq]
100017 D - 0xfffffe000817d200 [pci_hp taskq]
100020 D - 0xfffffe000817ce00 [aiod_kick taskq]
100021 D - 0xfffffe000817cd00 [linuxkpi_short_wq_0]
100022 D - 0xfffffe000817cd00 [linuxkpi_short_wq_1]
100023 D - 0xfffffe000817cd00 [linuxkpi_short_wq_2]
100024 D - 0xfffffe000817cd00 [linuxkpi_short_wq_3]
100025 D - 0xfffffe000817cc00 [linuxkpi_long_wq_0]
100026 D - 0xfffffe000817cc00 [linuxkpi_long_wq_1]
100027 D - 0xfffffe000817cc00 [linuxkpi_long_wq_2]
100028 D - 0xfffffe000817cc00 [linuxkpi_long_wq_3]
100034 D - 0xfffffe000817cb00 [firmware taskq]
100038 D - 0xfffffe000817ca00 [crypto_0]
100039 D - 0xfffffe000817ca00 [crypto_1]
100055 D - 0xfffffe000817c800 [vtnet0 rxq 0]
100056 D - 0xfffffe000817c700 [vtnet0 txq 0]
100057 D - 0xfffffe000817c600 [vtnet0 rxq 1]
100058 D - 0xfffffe000817c500 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0056f9d380 [virtio_balloon]
100066 D - 0xffffffff82b67f01 [deadlkres]
100070 D - 0xfffffe000817e100 [mca taskq]
100071 D - 0xfffffe00585d3300 [acpi_task_0]
100072 D - 0xfffffe00585d3300 [acpi_task_1]
100073 D - 0xfffffe00585d3300 [acpi_task_2]
100075 D - 0xfffffe000817c900 [CAM taskq]
db> show all locks
Process 9148 (syz-executor.2) thread 0xfffffe009f016ac0 (111673)
exclusive sleep mutex socket (socket) r = 0 (0xfffffe0058db0000) locked @ /syzkaller/managers/i386/kernel/sys/kern/uipc_socket.c:1288
Process 9145 (syz-executor.1) thread 0xfffffe00a6c85560 (111734)
exclusive lockmgr ufs (ufs) r = 0 (0xfffffe009f1b7070) locked @ /syzkaller/managers/i386/kernel/sys/kern/link_elf_obj.c:1213
exclusive sx kernel linker (kernel linker) r = 0 (0xffffffff83e20900) locked @ /syzkaller/managers/i386/kernel/sys/kern/kern_linker.c:1082
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
linker 382 9664K 416
tcp_hpts 7 4801K 7
devbuf 4217 4323K 4245
sysctloid 35205 2074K 35276
vtbuf 24 1968K 46
kobj 328 1312K 490
filedesc 132 1051K 16277
newblk 29 1031K 27056
vfscache 3 1025K 3
pcb 263 791K 13858
inodedep 250 606K 9382
subproc 261 526K 9300
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vmem 3 274K 5
filemon 23 184K 206
acpica 1674 184K 57552
vnet_data 1 168K 1
tidhash 3 141K 3
sctp_stro 136 136K 3282
pagedep 29 135K 8332
tfo_ccache 1 128K 1
sctp_atcl 297 112K 10871
DEVFS1 109 109K 126
sem 4 106K 4
BPF 46 88K 85
bus 995 81K 5208
mtx_pool 2 72K 2
syncache 1 68K 1
module 514 65K 514
acpitask 1 64K 1
ddb_capture 1 64K 1
kdtrace 335 62K 20890
umtx 484 61K 484
dirrem 220 55K 8912
temp 38 36K 3450
DEVFS3 128 32K 138
hostcache 1 32K 1
shm 1 32K 52
msg 4 30K 4
gtaskqueue 18 26K 18
freefile 199 25K 8799
kbdmux 6 22K 6
ifaddr 71 21K 73
DEVFS_RULE 56 20K 56
sctp_atky 433 19K 14823
routetbl 143 19K 751
lltable 56 18K 324
ufs_mount 4 17K 5
sctp_stri 33 17K 1131
proc 3 17K 3
tty 16 16K 16
ithread 97 16K 97
bus-sc 34 15K 1681
ether_multi 157 13K 222
KTRACE 100 13K 138
ifnet 7 13K 7
eventhandler 136 12K 136
kenv 95 12K 95
sctp_timw 45 12K 45
rman 88 11K 431
GEOM 61 11K 490
CAM queue 5 11K 1528
kqueue 120 10K 9197
cred 37 10K 377
in6_multi 71 9K 71
bmsafemap 3 9K 9509
UART 12 9K 12
devstat 4 9K 4
ksem 1 8K 320
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
pwddesc 117 8K 9279
session 54 7K 82
taskqueue 63 7K 63
sglist 5 7K 5
CAM DEV 3 6K 510
plimit 24 6K 480
DEVFSP 91 6K 932
ip6opt 34 5K 268
sctp_athm 297 5K 11355
ufs_dirhash 24 5K 24
pf_ifnet 12 5K 104
UMA 271 5K 271
proc-args 149 5K 10493
sctp_map 272 5K 6714
vt 11 5K 11
pf_table 2 4K 81
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
lockf 33 4K 125
acpisem 28 4K 28
selfd 55 4K 111839
hhook 15 4K 17
kcovinfo 52 4K 52
newdirblk 23 3K 8177
terminal 11 3K 11
pf_osfp 21 3K 21
select 19 3K 297
uidinfo 4 3K 53
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
ip6ndp 12 2K 15
sctp_ifa 14 2K 15
Unitno 29 2K 311
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 19
ipsecpolicy 2 2K 2
CC Mem 20 2K 5042
acpidev 20 2K 20
clone 9 2K 9
tun 7 2K 7
inpcbpolicy 33 2K 7987
freework 5 2K 15741
softdep 1 1K 1
mkdir 8 1K 16354
freeblks 4 1K 9140
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 1422
NFSD session 1 1K 1
CAM periph 4 1K 271
ipsec 3 1K 3
sctp_ifn 6 1K 15
diradd 6 1K 8953
mld 6 1K 6
igmp 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
osd 24 1K 5009
crypto 4 1K 190
encap_export_host 12 1K 12
procdesc 5 1K 18
tcp_fsb 12 1K 968
pfil 4 1K 4
cdev 2 1K 2
chacha20random 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
ip_msource 4 1K 28
vnodes 1 1K 71
CAM SIM 2 1K 2
sigio 4 1K 5
filedesc_to_leader 4 1K 8
feeder 7 1K 7
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
lkpikmalloc 5 1K 6
soname 7 1K 15938
aesni_data 2 1K 2
pf_rule 1 1K 65
cryptodev 2 1K 1006
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
aio 4 1K 11
pmchooks 1 1K 1
filecaps 5 1K 120
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 47
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
pf_altq 0 0K 0
pf_temp 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 4791
sctp_iter 0 0K 51
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 50
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 11
sctp_aadr 0 0K 88
mqdata 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
ixl 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
xen_intr 0 0K 0
NFSD V4state 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
xenbus 0 0K 0
DEVFS4 0 0K 0
vm_fictitious 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
UMAHash 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 8368
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 690
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 179
allocindir 0 0K 0
indirdep 0 0K 10459
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
vtfont 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
ktls_ocf 0 0K 0
AHCI driver 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_moptions 0 0K 14
in_mfilter 0 0K 56
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
statfs 0 0K 8391
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 97
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 381
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
lio 0 0K 66
acl 0 0K 0
mbuf_tag 0 0K 233
ktls 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
lDevFlags * malloc 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
iov 0 0K 20319
ioctlops 0 0K 618
eventfd 0 0K 15
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 861
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 20
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
boottrace 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8324 2090 73520 0 254 42655744 0
tcp_log 416 0 13977 435796 0 254 5814432 0
mbuf 256 9101 8947 1981740 0 254 4620288 0
pbuf 2624 0 957 0 0 2 2511168 0
malloc-384 384 4430 70 13975 0 30 1728000 0
BUF TRIE 144 217 11543 17463 0 62 1693440 0
malloc-128 128 12798 191 47914 0 126 1662592 0
mbuf_cluster 2048 762 0 762 0 254 1560576 0
malloc-4096 4096 341 5 517 0 2 1417216 0
UMA Slabs 0 112 12234 0 12234 0 126 1370208 0
RADIX NODE 144 8379 324 236152 0 63 1253232 0
vmem btag 56 22114 101 22114 0 254 1244040 0
sctp_asoc 2256 136 374 3250 0 254 1150560 0
malloc-16384 16384 66 4 8297 0 1 1146880 0
ertt_txseginfo 40 0 22927 837606 0 254 917080 0
256 Bucket 2048 379 21 8330 0 8 819200 0
VM OBJECT 264 2906 94 149644 0 30 792000 0
FFS inode 1160 619 25 9492 0 8 747040 0
tcp_bbr_map 128 0 5673 228555 0 126 726144 0
sctp_ep 1208 128 382 6874 0 254 616080 0
tcpcb 1104 20 491 4998 0 254 564144 0
malloc-4096 4096 122 4 9272 0 2 516096 0
socket 960 64 444 16303 0 254 487680 0
THREAD 1808 216 26 11740 0 8 437536 0
malloc-2048 2048 119 89 7123 0 8 425984 0
MAP ENTRY 96 4138 272 400598 0 126 423360 0
malloc-65536 65536 4 2 312 0 1 393216 0
lkpimm 168 1 2327 1 0 62 391104 0
lkpicurr 168 2 2326 2 0 62 391104 0
sctp_raddr 736 140 377 3679 0 254 380512 0
VNODE 448 660 96 9535 0 30 338688 0
sctp_chunk 152 150 1904 80286 0 254 312208 0
VMSPACE 2552 97 11 9110 0 4 275616 0
malloc-65536 65536 2 2 53 0 1 262144 0
malloc-65536 65536 2 2 138 0 1 262144 0
malloc-32768 32768 1 7 9861 0 1 262144 0
malloc-64 64 3912 183 116441 0 254 262080 0
malloc-8192 8192 26 5 209 0 1 253952 0
malloc-16 16 14574 176 18358 0 254 236000 0
malloc-1024 1024 139 85 3282 0 16 229376 0
DEVCTL 1024 0 220 155 0 0 225280 0
FPU_save_area 832 218 43 14203 0 16 217152 0
mbuf_packet 256 101 661 44808 0 254 195072 0
malloc-128 128 1323 196 27409 0 126 194432 0
FFS2 dinode 256 619 131 9492 0 62 192000 0
malloc-256 256 632 118 22335 0 62 192000 0
malloc-32 32 5339 583 6602 0 254 189504 0
UMA Zones 768 243 1 243 0 16 187392 0
PROC 1352 117 21 9148 0 8 186576 0
malloc-384 384 297 183 10936 0 30 184320 0
malloc-256 256 103 587 29471 0 62 176640 0
128 Bucket 1024 113 50 2882 0 16 166912 0
S VFS Cache 104 1028 493 10192 0 126 158184 0
filedesc0 1072 118 22 9279 0 8 150080 0
malloc-1024 1024 120 24 294 0 16 147456 0
unpcb 256 20 490 1385 0 254 130560 0
malloc-256 256 279 231 16287 0 62 130560 0
clpbuf 2624 0 48 434 0 16 125952 0
ksiginfo 112 124 920 2722 0 126 116928 0
malloc-16384 16384 7 0 22 0 1 114688 0
malloc-4096 4096 22 4 84 0 2 106496 0
malloc-64 64 1082 493 24807 0 254 100800 0
malloc-32768 32768 1 2 121 0 1 98304 0
malloc-8192 8192 12 0 14 0 1 98304 0
UMA Kegs 384 229 4 229 0 30 89472 0
syncache 168 0 528 36 0 254 88704 0
64 Bucket 512 92 76 10563 0 30 86016 0
g_bio 408 0 210 165402 0 30 85680 0
malloc-128 128 400 251 5127 0 126 83328 0
malloc-16384 16384 0 5 18 0 1 81920 0
malloc-256 256 3 312 17877 0 62 80640 0
sctp_readq 152 1 519 458 0 254 79040 0
malloc-64 64 735 336 11850 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-2048 2048 9 23 516 0 8 65536 0
malloc-2048 2048 15 17 332 0 8 65536 0
32 Bucket 256 97 158 7403 0 62 65280 0
sctp_stream_msg_out 112 7 533 1005 0 254 60480 0
tcp_bbr_pcb 832 13 59 1035 0 16 59904 0
malloc-384 384 140 10 480 0 30 57600 0
malloc-8192 8192 5 2 106 0 1 57344 0
malloc-4096 4096 11 3 562 0 2 57344 0
tcp_inpcb 424 20 106 4998 0 30 53424 0
malloc-64 64 185 634 21731 0 254 52416 0
Files 80 289 361 35614 0 126 52000 0
malloc-128 128 108 295 8784 0 126 51584 0
malloc-256 256 12 183 15963 0 62 49920 0
malloc-256 256 62 133 551 0 62 49920 0
malloc-256 256 51 144 8588 0 62 49920 0
DIRHASH 1024 34 14 34 0 16 49152 0
NAMEI 1024 0 48 52889 0 16 49152 0
malloc-2048 2048 3 21 84 0 8 49152 0
malloc-2048 2048 1 23 548 0 8 49152 0
malloc-1024 1024 4 44 512 0 16 49152 0
malloc-512 512 34 62 1250 0 30 49152 0
tcp_rack_pcb 896 2 52 958 0 16 48384 0
pipe 744 23 42 919 0 16 48360 0
malloc-384 384 83 37 83 0 30 46080 0
pcpu-8 8 4749 883 7224 0 254 45056 0
TURNSTILE 136 243 72 243 0 62 42840 0
malloc-8192 8192 3 2 31 0 1 40960 0
Mountpoints 2752 2 12 2 0 4 38528 0
udplite_inpcb 424 0 90 145 0 30 38160 0
udp_inpcb 424 7 83 2698 0 30 38160 0
ripcb 424 6 84 146 0 30 38160 0
da_ccb 544 0 70 41522 0 16 38080 0
hostcache 64 3 564 3 0 254 36288 0
PWD 32 78 1056 8157 0 254 36288 0
malloc-64 64 108 459 108 0 254 36288 0
malloc-64 64 73 494 158 0 254 36288 0
malloc-64 64 2 565 943 0 254 36288 0
malloc-64 64 4 563 52 0 254 36288 0
16 Bucket 144 75 177 1660 0 62 36288 0
malloc-128 128 34 245 658 0 126 35712 0
malloc-128 128 91 188 129 0 126 35712 0
malloc-128 128 81 198 1185 0 126 35712 0
malloc-128 128 29 250 29 0 126 35712 0
routing nhops 256 27 108 35 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-256 256 82 53 799 0 62 34560 0
SLEEPQUEUE 88 243 141 243 0 126 33792 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-2048 2048 2 14 399 0 8 32768 0
malloc-1024 1024 14 18 1349 0 16 32768 0
malloc-1024 1024 20 12 145 0 16 32768 0
malloc-1024 1024 10 22 14 0 16 32768 0
malloc-1024 1024 2 30 11 0 16 32768 0
malloc-512 512 5 59 1482 0 30 32768 0
malloc-512 512 8 56 9 0 30 32768 0
malloc-512 512 2 62 63 0 30 32768 0
malloc-512 512 11 53 82 0 30 32768 0
pcpu-64 64 493 19 493 0 254 32768 0
KNOTE 160 28 172 79561 0 62 32000 0
ttyinq 160 135 65 300 0 62 32000 0
8 Bucket 80 61 339 2133 0 126 32000 0
tcp_rack_map 120 7 257 1890 0 126 31680 0
tcp_log_id_node 120 0 264 10 0 126 31680 0
cpuset 104 7 272 1499 0 126 29016 0
sctp_asconf_ack 48 0 588 20 0 254 28224 0
sctp_laddr 48 102 486 3128 0 254 28224 0
tcp_inpcb ports 32 5 877 3936 0 254 28224 0
malloc-32 32 408 474 6368 0 254 28224 0
4 Bucket 48 8 580 230 0 254 28224 0
2 Bucket 32 58 824 2434 0 254 28224 0
AIO 208 0 133 155 0 62 27664 0
malloc-4096 4096 0 6 8391 0 2 24576 0
rtentry 176 31 107 35 0 62 24288 0
PGRP 88 54 222 82 0 126 24288 0
rl_entry 40 124 482 124 0 254 24240 0
itimer 352 4 62 8 0 30 23232 0
malloc-384 384 24 36 65 0 30 23040 0
malloc-384 384 8 52 188 0 30 23040 0
malloc-384 384 0 60 45 0 30 23040 0
domainset 40 0 567 1400 0 254 22680 0
udpcb 32 7 623 2843 0 254 20160 0
udplite_inpcb ports 32 0 630 24 0 254 20160 0
udp_inpcb ports 32 3 627 59 0 254 20160 0
ertt 72 20 260 4998 0 126 20160 0
malloc-32 32 275 355 10702 0 254 20160 0
malloc-32 32 77 553 359 0 254 20160 0
malloc-32 32 103 527 11075 0 254 20160 0
malloc-32 32 169 461 8133 0 254 20160 0
malloc-32 32 45 585 688 0 254 20160 0
malloc-32 32 17 613 123 0 254 20160 0
malloc-16 16 623 627 21257 0 254 20000 0
cryptop 280 0 70 46 0 30 19600 0
AIOCB 552 0 35 201 0 16 19320 0
AIOLIO 272 0 70 33 0 30 19040 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-4096 4096 3 1 4 0 2 16384 0
malloc-4096 4096 0 4 5 0 2 16384 0
malloc-2048 2048 1 7 46 0 8 16384 0
malloc-512 512 0 32 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
vtnet_tx_hdr 24 0 668 204395 0 254 16032 0
malloc-16 16 308 692 13412 0 254 16000 0
malloc-16 16 295 705 6550 0 254 16000 0
kenv 258 15 45 1053 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
tcp_log_id_bucket 176 0 69 1 0 62 12144 0
malloc-16 16 50 700 31359 0 254 12000 0
malloc-16 16 11 739 24 0 2
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
Jun 24, 2022, 7:30:24 PM6/24/22
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: 235d960aae75 tests/unix_passfd: compile SOCK_STREAM and SO..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=128608c0080000
dashboard link: https://syzkaller.appspot.com/bug?extid=4b862074650b91e087b4
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=138af9c4080000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=119c3764080000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+4b8620...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address = 0x58be6ea8
frame pointer = 0x28:0xfffffe0054029880
code segment =
FreeBSD/amd64base 0x0, limit 0xfffff, type 0x1b
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe0054028f90
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe00540290f0
vpanic() at vpanic+0x254/frame 0xfffffe00540291d0
panic() at panic+0xb5/frame 0xfffffe0054029290
trap_fatal() at trap_fatal+0x6bd/frame 0xfffffe00540293b0
trap_pfault() at trap_pfault+0x182/frame 0xfffffe00540294f0
trap() at trap+0x5b3/frame 0xfffffe00540296d0
calltrap() at calltrap+0x8/frame 0xfffffe00540296d0
--- trap 0xc, rip = 0xffffffff817e9824, rsp = 0xfffffe00540297a0, rbp = 0xfffffe0054029880 ---
soclose() at soclose+0x584/frame 0xfffffe0054029880
_fdrop() at _fdrop+0x58/frame 0xfffffe00540298b0
closef() at closef+0x689/frame 0xfffffe0054029a90
fdescfree() at fdescfree+0xa84/frame 0xfffffe0054029c70
exit1() at exit1+0x915/frame 0xfffffe0054029d10
sys_exit() at sys_exit+0x28/frame 0xfffffe0054029d30
amd64_syscall() at amd64_syscall+0x410/frame 0xfffffe0054029f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0054029f30
--- syscall (1, FreeBSD ELF64, sys_exit), rip = 0x290ffa, rsp = 0x820e616c8, rbp = 0x820e616e0 ---
KDB: enter: panic
[ thread pid 779 tid 100092 ]
rax 0x12
rcx 0xfffffe00033eee30
rdx 0xdffff7c000000000
rbx 0
rsp 0xfffffe00540290d0
rbp 0xfffffe00540290f0
rsi 0x1
rdi 0
r8 0x3
r9 0xffffffff
r10 0
r11 0xfffffe0058bfc350
r12 0
r13 0xfffffe0058bfbe40
ABI: FreeBSD ELF64
flag: 0x10006000 flag2: 0x40000
arguments: ./syz-executor398203368
(map 0xfffffe0092730000)
(map.pmap 0xfffffe00927300c0)
(pmap 0xfffffe0092730128)
threads: 1
100092 Run CPU 0 syz-executor3982033
777 775 777 0 Ss pause 0xfffffe0092b075f8 csh
775 688 775 0 Ss select 0xfffffe0056fbc9c0 sshd
754 1 754 0 Ss+ ttyin 0xfffffe0056f2acb0 getty
753 1 753 0 Ss+ ttyin 0xfffffe00585d78b0 getty
752 1 752 0 Ss+ ttyin 0xfffffe0056f298b0 getty
749 1 749 0 Ss+ ttyin 0xfffffe00585d80b0 getty
743 742 18 0 S+ nanslp 0xffffffff83e46dc0 sleep
742 1 18 0 S+ wait 0xfffffe0092698000 sh
692 1 692 0 Ss nanslp 0xffffffff83e46dc1 cron
688 1 688 0 Ss select 0xfffffe0057871940 sshd
501 1 501 0 Ds bo_wwai 0xfffffe009259c168 syslogd
430 1 430 0 Ss select 0xfffffe0056f9d0c0 devd
429 1 429 65 Ss select 0xfffffe0057871ac0 dhclient
344 1 344 0 Ss select 0xfffffe0056f9d1c0 dhclient
341 1 341 0 Ss select 0xfffffe0056f9ce40 dhclient
100095 D sdflush 0xfffffe0053c6e8e8 [/ worker]
100077 D psleep 0xffffffff83f925b8 [dom0]
100080 D launds 0xffffffff83f925c4 [laundry: dom0]
100081 D umarcl 0xffffffff81e53cc0 [uma]
7 0 0 0 DL - 0xffffffff83c033a8 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84590550 [pf purge]
5 0 0 0 DL waiting 0xffffffff84a5c420 [sctp_iterator]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
Process 779 (syz-executor3982033) thread 0xfffffe0058bfbe40 (100092)
exclusive sleep mutex socket (socket) r = 0 (0xfffffe0058be6780) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:1288
Process 501 (syslogd) thread 0xfffffe0058bfdac0 (100104)
exclusive lockmgr ufs (ufs) r = 0 (0xfffffe009259c070) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_syscalls.c:3561
devbuf 4217 4323K 4242
vfscache 3 1025K 3
pcb 22 539K 44
inodedep 49 530K 72
subproc 98 182K 838
vnet_data 1 168K 1
vmem 3 145K 4
tidhash 3 141K 3
linker 358 134K 386
pagedep 14 132K 18
tfo_ccache 1 128K 1
sem 4 106K 4
DEVFS1 105 105K 114
temp 17 33K 1606
hostcache 1 32K 1
shm 1 32K 1
kdtrace 157 32K 897
DEVFS3 124 31K 134
DEVFS_RULE 56 20K 56
BPF 10 18K 10
ufs_mount 4 17K 5
bmsafemap 3 9K 39
UMA 271 5K 271
dirrem 17 5K 28
plimit 17 5K 322
vt 11 5K 11
ifnet 3 5K 3
evdev 4 4K 4
acpisem 28 4K 28
hhook 15 4K 17
ether_multi 40 4K 50
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
kqueue 40 3K 782
pwddesc 39 3K 780
sctp_atcl 6 3K 8
uidinfo 3 3K 8
proc-args 62 3K 1720
sctp_stro 2 2K 2
msi 12 2K 12
selfd 22 2K 9145
ipsecpolicy 2 2K 2
softdep 1 1K 1
ipsec 3 1K 3
indirdep 3 1K 3
nhops 6 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
chacha20random 1 1K 1
osd 7 1K 18
inpcbpolicy 10 1K 139
sctp_ifn 2 1K 6
DEVFS 9 1K 10
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
loginclass 3 1K 7
cryptodev 2 1K 49
pmchooks 1 1K 1
soname 4 1K 3473
filecaps 4 1K 66
sctp_athm 6 1K 8
tun 3 1K 3
sctp_vrf 1 1K 1
sctp_map 4 1K 4
vnet 1 1K 1
entropy 2 1K 35
p1003.1b 1 1K 1
tcp_do 0 0K 0
tcp_fsb 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_cpal 0 0K 0
sctp_aadr 0 0K 0
mqdata 0 0K 0
filemon 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_temp 0 0K 0
savedino 0 0K 16
freeblks 0 0K 25
allocindir 0 0K 0
ip6opt 0 0K 3
ip_moptions 0 0K 0
in_mfilter 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 27
iov 0 0K 13559
ioctlops 0 0K 86
eventfd 0 0K 0
filedesc_to_leader 0 0K 0
mbuf_jumbo_page 4096 8320 1078 13379 0 254 38494208 0
mbuf 256 8577 1084 15617 0 254 2473216 0
pbuf 2624 0 778 0 0 2 2041472 0
BUF TRIE 144 173 11587 423 0 62 1693440 0
malloc-384 384 4196 34 4220 0 30 1624320 0
malloc-128 128 12390 103 12684 0 126 1599104 0
malloc-4096 4096 340 2 513 0 2 1400832 0
UMA Slabs 0 112 10422 12 10422 0 126 1168608 0
sctp_asoc 2256 2 508 2 0 254 1150560 0
vmem btag 56 16316 67 16316 0 254 917448 0
sctp_ep 1208 2 508 3 0 254 616080 0
FFS inode 1160 499 26 508 0 8 609000 0
tcpcb 1104 3 508 7 0 254 564144 0
mbuf_cluster 2048 254 0 254 0 254 520192 0
RADIX NODE 144 3255 184 20122 0 62 495216 0
socket 960 21 487 1338 0 254 487680 0
VM OBJECT 264 1410 90 24463 0 30 396000 0
malloc-65536 65536 4 2 50 0 1 393216 0
malloc-65536 65536 2 3 138 0 1 327680 0
256 Bucket 2048 129 15 995 0 8 294912 0
malloc-64 64 3863 232 13000 0 254 262080 0
VNODE 448 529 47 540 0 30 258048 0
THREAD 1808 116 16 116 0 8 238656 0
malloc-16 16 14570 180 14642 0 254 236000 0
DEVCTL 1024 0 220 126 0 0 225280 0
malloc-65536 65536 2 1 10 0 1 196608 0
malloc-128 128 1293 226 27041 0 126 194432 0
MAP ENTRY 96 1560 456 84339 0 126 193536 0
malloc-4096 4096 43 3 866 0 2 188416 0
malloc-256 256 636 54 1538 0 62 176640 0
FFS2 dinode 256 499 71 508 0 62 145920 0
malloc-1024 1024 116 12 282 0 16 131072 0
unpcb 256 7 503 1179 0 254 130560 0
S VFS Cache 104 966 204 1008 0 126 121680 0
FPU_save_area 832 118 26 130 0 16 119808 0
ksiginfo 112 39 1005 54 0 126 116928 0
malloc-8192 8192 10 2 13 0 1 98304 0
malloc-64 64 897 426 2879 0 254 84672 0
clpbuf 2624 0 32 18 0 16 83968 0
malloc-128 128 393 258 4411 0 126 83328 0
malloc-256 256 279 36 814 0 62 80640 0
PROC 1352 39 18 779 0 8 77064 0
VMSPACE 2552 23 7 764 0 4 76560 0
g_bio 408 4 176 4471 0 30 73440 0
malloc-64 64 566 505 2400 0 254 68544 0
malloc-8192 8192 5 3 106 0 1 65536 0
mbuf_packet 256 0 254 86 0 254 65024 0
64 Bucket 512 64 40 1677 0 30 53248 0
filedesc0 1072 40 9 780 0 8 52528 0
malloc-256 256 141 54 289 0 62 49920 0
malloc-256 256 55 140 393 0 62 49920 0
32 Bucket 256 61 134 13816 0 62 49920 0
malloc-8192 8192 3 3 31 0 1 49152 0
malloc-4096 4096 9 3 552 0 2 49152 0
malloc-2048 2048 5 19 512 0 8 49152 0
malloc-2048 2048 11 13 36 0 8 49152 0
malloc-2048 2048 2 22 534 0 8 49152 0
sctp_chunk 152 2 258 2 0 254 39520 0
pipe 744 7 43 284 0 16 37200 0
pcpu-8 8 4220 388 4248 0 254 36864 0
malloc-64 64 12 555 13203 0 254 36288 0
malloc-64 64 56 511 56 0 254 36288 0
malloc-64 64 26 541 58 0 254 36288 0
malloc-64 64 0 567 16 0 254 36288 0
malloc-128 128 35 244 111 0 126 35712 0
malloc-128 128 44 235 60 0 126 35712 0
malloc-128 128 30 249 81 0 126 35712 0
malloc-128 128 90 189 437 0 126 35712 0
malloc-128 128 4 275 4 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
malloc-256 256 35 100 554 0 62 34560 0
malloc-256 256 3 132 55 0 62 34560 0
malloc-256 256 3 132 55 0 62 34560 0
malloc-256 256 15 120 82 0 62 34560 0
malloc-2048 2048 9 7 252 0 8 32768 0
malloc-1024 1024 5 27 45 0 16 32768 0
malloc-1024 1024 14 18 886 0 16 32768 0
malloc-1024 1024 20 12 36 0 16 32768 0
malloc-512 512 3 61 121 0 30 32768 0
malloc-512 512 4 60 19 0 30 32768 0
malloc-512 512 3 61 3 0 30 32768 0
sctp_laddr 48 2 586 6 0 254 28224 0
malloc-32 32 380 502 1310 0 254 28224 0
16 Bucket 144 46 150 229 0 62 28224 0
4 Bucket 48 6 582 49 0 254 28224 0
tcp_inpcb 424 3 60 7 0 30 26712 0
ripcb 424 1 62 4 0 30 26712 0
da_ccb 544 1 48 1227 0 16 26656 0
TURNSTILE 136 133 56 133 0 62 25704 0
malloc-8192 8192 3 0 3 0 1 24576 0
malloc-4096 4096 6 0 6 0 2 24576 0
rtentry 176 13 125 17 0 62 24288 0
PGRP 88 20 256 31 0 126 24288 0
ertt_txseginfo 40 0 606 211 0 254 24240 0
rl_entry 40 32 574 32 0 254 24240 0
Files 80 73 227 6582 0 126 24000 0
8 Bucket 80 36 264 232 0 126 24000 0
malloc-384 384 6 54 9 0 30 23040 0
malloc-384 384 7 53 9 0 30 23040 0
malloc-384 384 3 57 13 0 30 23040 0
malloc-384 384 0 60 19 0 30 23040 0
SLEEPQUEUE 88 133 123 133 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udpcb 32 6 624 128 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
PWD 32 10 620 100 0 254 20160 0
malloc-64 64 2 313 525 0 254 20160 0
malloc-32 32 75 555 87 0 254 20160 0
malloc-32 32 33 597 2867 0 254 20160 0
malloc-32 32 46 584 175 0 254 20160 0
malloc-32 32 41 589 622 0 254 20160 0
malloc-32 32 3 627 47 0 254 20160 0
2 Bucket 32 46 584 298 0 254 20160 0
malloc-2048 2048 2 6 2 0 8 16384 0
kenv 258 15 45 1037 0 30 15480 0
malloc-32 32 15 363 49 0 254 12096 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 17 733 82 0 254 12000 0
malloc-16 16 33 717 26364 0 254 12000 0
malloc-16 16 7 743 9 0 254 12000 0
malloc-16 16 27 723 32 0 254 12000 0
malloc-16 16 1 749 6 0 254 12000 0
malloc-4096 4096 0 2 2 0 2 8192 0
malloc-4096 4096 0 2 3 0 2 8192 0
pcpu-16 16 14 498 14 0 254 8192 0
vtnet_tx_hdr 24 0 334 1351 0 254 8016 0
malloc-16 16 23 477 24 0 254 8000 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
pcpu-4 4 1 511 1 0 254 2048 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 312 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_pcb 896 0 0 0 0 16 0 0
tcp_rack_map 120 0 0 0 0 126 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
ipq 56 0 0 0 0 254 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 72 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
TMPFS node 224 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 120 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 64 0 0
mdpbuf 2624 0 0 0 0 3 0 0
nfspbuf 2624 0 0 0 0 16 0 0
swwbuf 2624 0 0 0 0 8 0 0
swrbuf 2624 0 0 0 0 16 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-2048 2048 0 0 0 0 8 0 0
malloc-1024 1024 0 0 0 0 16 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-384 384 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
HEAD commit: 235d960aae75 tests/unix_passfd: compile SOCK_STREAM and SO..
git tree: freebsd-src
dashboard link: https://syzkaller.appspot.com/bug?extid=4b862074650b91e087b4
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=138af9c4080000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=119c3764080000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+4b8620...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault code = supervisor write data, page not present
instruction pointer = 0x20:0xffffffff817e9824
stack pointer = 0x28:0xfffffe00540297a0
instruction pointer = 0x20:0xffffffff817e9824
frame pointer = 0x28:0xfffffe0054029880
code segment =
FreeBSD/amd64base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 779 (syz-executor3982033)
processor eflags = interrupt enabled, resume, IOPL = 0
trap number = 12
panic: page fault
cpuid = 0
time = 1656113272
panic: page fault
cpuid = 0
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc7/frame 0xfffffe0054028f90
kdb_backtrace() at kdb_backtrace+0xd3/frame 0xfffffe00540290f0
vpanic() at vpanic+0x254/frame 0xfffffe00540291d0
panic() at panic+0xb5/frame 0xfffffe0054029290
trap_fatal() at trap_fatal+0x6bd/frame 0xfffffe00540293b0
trap_pfault() at trap_pfault+0x182/frame 0xfffffe00540294f0
trap() at trap+0x5b3/frame 0xfffffe00540296d0
calltrap() at calltrap+0x8/frame 0xfffffe00540296d0
--- trap 0xc, rip = 0xffffffff817e9824, rsp = 0xfffffe00540297a0, rbp = 0xfffffe0054029880 ---
soclose() at soclose+0x584/frame 0xfffffe0054029880
_fdrop() at _fdrop+0x58/frame 0xfffffe00540298b0
closef() at closef+0x689/frame 0xfffffe0054029a90
fdescfree() at fdescfree+0xa84/frame 0xfffffe0054029c70
exit1() at exit1+0x915/frame 0xfffffe0054029d10
sys_exit() at sys_exit+0x28/frame 0xfffffe0054029d30
amd64_syscall() at amd64_syscall+0x410/frame 0xfffffe0054029f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0054029f30
--- syscall (1, FreeBSD ELF64, sys_exit), rip = 0x290ffa, rsp = 0x820e616c8, rbp = 0x820e616e0 ---
KDB: enter: panic
[ thread pid 779 tid 100092 ]
Stopped at kdb_enter+0x6b: movq $0,0x275e2ba(%rip)
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
rax 0x12
rcx 0xfffffe00033eee30
rdx 0xdffff7c000000000
rbx 0
rsp 0xfffffe00540290d0
rbp 0xfffffe00540290f0
rsi 0x1
rdi 0
r8 0x3
r9 0xffffffff
r10 0
r11 0xfffffe0058bfc350
r12 0
r13 0xfffffe0058bfbe40
r14 0xffffffff82b62080 .str.26
r15 0xffffffff82b62080 .str.26
rip 0xffffffff8171b45b kdb_enter+0x6b
rflags 0x46
r15 0xffffffff82b62080 .str.26
rip 0xffffffff8171b45b kdb_enter+0x6b
kdb_enter+0x6b: movq $0,0x275e2ba(%rip)
db> show proc
Process 779 (syz-executor3982033) at 0xfffffe0053dcca90:
db> show proc
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 777 at 0xfffffe0092b07548
uid: 0 gids: 0, 0, 5
ABI: FreeBSD ELF64
flag: 0x10006000 flag2: 0x40000
arguments: ./syz-executor398203368
reaper: 0xfffffe0053dcc000 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0092730000
sigparent: 20
(map 0xfffffe0092730000)
(map.pmap 0xfffffe00927300c0)
(pmap 0xfffffe0092730128)
threads: 1
100092 Run CPU 0 syz-executor3982033
db> ps
pid ppid pgrp uid state wmesg wchan cmd
779 777 777 0 RE CPU 0 syz-executor3982033
pid ppid pgrp uid state wmesg wchan cmd
777 775 777 0 Ss pause 0xfffffe0092b075f8 csh
775 688 775 0 Ss select 0xfffffe0056fbc9c0 sshd
754 1 754 0 Ss+ ttyin 0xfffffe0056f2acb0 getty
753 1 753 0 Ss+ ttyin 0xfffffe00585d78b0 getty
752 1 752 0 Ss+ ttyin 0xfffffe0056f298b0 getty
751 1 751 0 Ss+ ttyin 0xfffffe00585d7cb0 getty
750 1 750 0 Ss+ ttyin 0xfffffe0056f29cb0 getty
749 1 749 0 Ss+ ttyin 0xfffffe00585d80b0 getty
748 1 748 0 Ss+ ttyin 0xfffffe00585d84b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00585d88b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00585d8cb0 getty
744 1 18 0 S+ piperd 0xfffffe0058b2aba0 logger
747 1 747 0 Ss+ ttyin 0xfffffe00585d88b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00585d8cb0 getty
743 742 18 0 S+ nanslp 0xffffffff83e46dc0 sleep
742 1 18 0 S+ wait 0xfffffe0092698000 sh
692 1 692 0 Ss nanslp 0xffffffff83e46dc1 cron
688 1 688 0 Ss select 0xfffffe0057871940 sshd
501 1 501 0 Ds bo_wwai 0xfffffe009259c168 syslogd
430 1 430 0 Ss select 0xfffffe0056f9d0c0 devd
429 1 429 65 Ss select 0xfffffe0057871ac0 dhclient
344 1 344 0 Ss select 0xfffffe0056f9d1c0 dhclient
341 1 341 0 Ss select 0xfffffe0056f9ce40 dhclient
17 0 0 0 DL vlruwt 0xfffffe0056f67548 [vnlru]
16 0 0 0 DL syncer 0xffffffff83f6c5e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
16 0 0 0 DL syncer 0xffffffff83f6c5e0 [syncer]
100079 D psleep 0xffffffff83f6abe0 [bufdaemon]
100082 D - 0xffffffff83211f80 [bufspacedaemon-0]
100095 D sdflush 0xfffffe0053c6e8e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83f9e700 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff83f925b8 [dom0]
100080 D launds 0xffffffff83f925c4 [laundry: dom0]
100081 D umarcl 0xffffffff81e53cc0 [uma]
7 0 0 0 DL - 0xffffffff83c033a8 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84590550 [pf purge]
5 0 0 0 DL waiting 0xffffffff84a5c420 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83aa6340 [doneq0]
100045 D - 0xffffffff83aa62c0 [async]
100076 D - 0xffffffff83aa6140 [scanner]
14 0 0 0 DL seqstat 0xfffffe0007962888 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83f8dde0 [crypto]
100041 D crypto_ 0xfffffe0053e71d30 [crypto returns 0]
100042 D crypto_ 0xfffffe0053e71d80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff83e1c3c0 [g_event]
100036 D - 0xffffffff83e1c3e0 [g_up]
100037 D - 0xffffffff83e1c400 [g_down]
2 0 0 0 WL (threaded) [clock]
100044 D - 0xffffffff83aa6340 [doneq0]
100045 D - 0xffffffff83aa62c0 [async]
100076 D - 0xffffffff83aa6140 [scanner]
14 0 0 0 DL seqstat 0xfffffe0007962888 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83f8dde0 [crypto]
100041 D crypto_ 0xfffffe0053e71d30 [crypto returns 0]
100042 D crypto_ 0xfffffe0053e71d80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff83e1c3c0 [g_event]
100036 D - 0xffffffff83e1c3e0 [g_up]
100037 D - 0xffffffff83e1c400 [g_down]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100015 I [swi5: fast taskq]
100018 I [swi6: task queue]
100019 I [swi6: Giant taskq]
100031 I [swi1: netisr 0]
100032 I [swi1: hpts]
100018 I [swi6: task queue]
100019 I [swi6: Giant taskq]
100031 I [swi1: netisr 0]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 Run CPU 1 [idle: cpu1]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
exclusive sleep mutex socket (socket) r = 0 (0xfffffe0058be6780) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:1288
Process 501 (syslogd) thread 0xfffffe0058bfdac0 (100104)
exclusive lockmgr ufs (ufs) r = 0 (0xfffffe009259c070) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_syscalls.c:3561
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
Type InUse MemUse Requests
pf_hash 5 11524K 5
devbuf 4217 4323K 4242
sysctloid 35205 2074K 35276
vtbuf 24 1968K 46
kobj 328 1312K 490
newblk 578 1169K 591
vtbuf 24 1968K 46
kobj 328 1312K 490
vfscache 3 1025K 3
pcb 22 539K 44
inodedep 49 530K 72
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
acpica 1674 184K 57552
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
subproc 98 182K 838
vnet_data 1 168K 1
vmem 3 145K 4
tidhash 3 141K 3
linker 358 134K 386
pagedep 14 132K 18
tfo_ccache 1 128K 1
sem 4 106K 4
DEVFS1 105 105K 114
bus 995 81K 5208
mtx_pool 2 72K 2
syncache 1 68K 1
module 514 65K 514
acpitask 1 64K 1
ddb_capture 1 64K 1
umtx 264 33K 264
mtx_pool 2 72K 2
syncache 1 68K 1
module 514 65K 514
acpitask 1 64K 1
ddb_capture 1 64K 1
temp 17 33K 1606
hostcache 1 32K 1
shm 1 32K 1
kdtrace 157 32K 897
DEVFS3 124 31K 134
msg 4 30K 4
gtaskqueue 18 26K 18
kbdmux 6 22K 6
gtaskqueue 18 26K 18
DEVFS_RULE 56 20K 56
BPF 10 18K 10
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
ithread 97 16K 97
bus-sc 34 15K 1681
KTRACE 100 13K 100
tty 16 16K 16
ithread 97 16K 97
bus-sc 34 15K 1681
eventhandler 136 12K 136
kenv 95 12K 95
ifaddr 30 12K 32
kenv 95 12K 95
rman 88 11K 431
GEOM 61 11K 490
routetbl 50 11K 176
GEOM 61 11K 490
CAM queue 5 11K 1528
cred 36 9K 234
bmsafemap 3 9K 39
UART 12 9K 12
devstat 4 9K 4
ksem 1 8K 1
devstat 4 9K 4
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
shmfd 1 8K 1
pfs_vncache 1 8K 1
pfs_nodes 20 8K 20
audit_evclass 237 8K 296
taskqueue 63 7K 63
sglist 5 7K 5
CAM DEV 3 6K 510
ufs_dirhash 24 5K 24
sglist 5 7K 5
CAM DEV 3 6K 510
UMA 271 5K 271
dirrem 17 5K 28
plimit 17 5K 322
vt 11 5K 11
ifnet 3 5K 3
memdesc 1 4K 1
MCA 32 4K 32
filedesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
acpisem 28 4K 28
hhook 15 4K 17
ether_multi 40 4K 50
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
kqueue 40 3K 782
pwddesc 39 3K 780
sctp_atcl 6 3K 8
uidinfo 3 3K 8
proc-args 62 3K 1720
sctp_stro 2 2K 2
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
Unitno 27 2K 39
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
CAM XPT 22 2K 543
lockf 15 2K 22
msi 12 2K 12
selfd 22 2K 9145
ipsecpolicy 2 2K 2
acpidev 20 2K 20
clone 9 2K 9
sctp_stri 2 1K 2
clone 9 2K 9
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
vnodemarker 2 1K 8
secasvar 1 1K 1
NFSD session 1 1K 1
CAM periph 4 1K 271
select 7 1K 29
CAM periph 4 1K 271
ipsec 3 1K 3
indirdep 3 1K 3
nhops 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
pfil 4 1K 4
cdev 2 1K 2
sctp_atky 8 1K 9
cdev 2 1K 2
chacha20random 1 1K 1
osd 7 1K 18
inpcbpolicy 10 1K 139
sctp_ifn 2 1K 6
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFSP 4 1K 9
NFSD V4client 1 1K 1
DEVFS 9 1K 10
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
CAM SIM 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
CC Mem 3 1K 7
tcpfunc 3 1K 3
loginclass 3 1K 7
prison 6 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
lkpikmalloc 5 1K 6
cryptodev 2 1K 49
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
freefrag 1 1K 2
apmdev 1 1K 1
atkbddev 2 1K 2
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
procdesc 1 1K 6
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
pmchooks 1 1K 1
soname 4 1K 3473
filecaps 4 1K 66
sctp_athm 6 1K 8
tun 3 1K 3
sctp_vrf 1 1K 1
sctp_map 4 1K 4
vnet 1 1K 1
entropy 2 1K 35
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
freework 1 1K 26
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
tcp_do 0 0K 0
tcp_fsb 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 4
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_aadr 0 0K 0
mqdata 0 0K 0
filemon 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
pf_table 0 0K 0
esp 0 0K 0
ah 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_temp 0 0K 0
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 2
jfsync 0 0K 0
jtrunc 0 0K 0
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefile 0 0K 9
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freeblks 0 0K 25
allocindir 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
LRO 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
statfs 0 0K 195
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
agp 0 0K 0
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 3
export_host 0 0K 0
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
tcp_log_dev 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
aio 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
biobuf 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 27
ioctlops 0 0K 86
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 658
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 0
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
kcovinfo 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
Fail Points 0 0K 0
filedesc_to_leader 0 0K 0
mbuf 256 8577 1084 15617 0 254 2473216 0
pbuf 2624 0 778 0 0 2 2041472 0
BUF TRIE 144 173 11587 423 0 62 1693440 0
malloc-384 384 4196 34 4220 0 30 1624320 0
malloc-128 128 12390 103 12684 0 126 1599104 0
malloc-4096 4096 340 2 513 0 2 1400832 0
UMA Slabs 0 112 10422 12 10422 0 126 1168608 0
sctp_asoc 2256 2 508 2 0 254 1150560 0
vmem btag 56 16316 67 16316 0 254 917448 0
sctp_ep 1208 2 508 3 0 254 616080 0
FFS inode 1160 499 26 508 0 8 609000 0
tcpcb 1104 3 508 7 0 254 564144 0
mbuf_cluster 2048 254 0 254 0 254 520192 0
RADIX NODE 144 3255 184 20122 0 62 495216 0
socket 960 21 487 1338 0 254 487680 0
VM OBJECT 264 1410 90 24463 0 30 396000 0
malloc-65536 65536 4 2 50 0 1 393216 0
lkpimm 168 1 2327 1 0 62 391104 0
lkpicurr 168 2 2326 2 0 62 391104 0
sctp_raddr 736 2 515 2 0 254 380512 0
lkpicurr 168 2 2326 2 0 62 391104 0
malloc-65536 65536 2 3 138 0 1 327680 0
256 Bucket 2048 129 15 995 0 8 294912 0
malloc-64 64 3863 232 13000 0 254 262080 0
VNODE 448 529 47 540 0 30 258048 0
THREAD 1808 116 16 116 0 8 238656 0
malloc-16 16 14570 180 14642 0 254 236000 0
DEVCTL 1024 0 220 126 0 0 225280 0
malloc-65536 65536 2 1 10 0 1 196608 0
malloc-128 128 1293 226 27041 0 126 194432 0
MAP ENTRY 96 1560 456 84339 0 126 193536 0
malloc-4096 4096 43 3 866 0 2 188416 0
UMA Zones 768 243 1 243 0 16 187392 0
malloc-32 32 5335 335 6407 0 254 181440 0
malloc-256 256 636 54 1538 0 62 176640 0
FFS2 dinode 256 499 71 508 0 62 145920 0
malloc-1024 1024 116 12 282 0 16 131072 0
unpcb 256 7 503 1179 0 254 130560 0
S VFS Cache 104 966 204 1008 0 126 121680 0
FPU_save_area 832 118 26 130 0 16 119808 0
ksiginfo 112 39 1005 54 0 126 116928 0
malloc-32768 32768 1 2 121 0 1 98304 0
malloc-16384 16384 6 0 21 0 1 98304 0
malloc-8192 8192 10 2 13 0 1 98304 0
UMA Kegs 384 229 4 229 0 30 89472 0
128 Bucket 1024 45 38 475 0 16 84992 0
malloc-64 64 897 426 2879 0 254 84672 0
clpbuf 2624 0 32 18 0 16 83968 0
malloc-128 128 393 258 4411 0 126 83328 0
malloc-256 256 279 36 814 0 62 80640 0
PROC 1352 39 18 779 0 8 77064 0
VMSPACE 2552 23 7 764 0 4 76560 0
g_bio 408 4 176 4471 0 30 73440 0
malloc-64 64 566 505 2400 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-16384 16384 1 3 161 0 1 65536 0
malloc-8192 8192 5 3 106 0 1 65536 0
mbuf_packet 256 0 254 86 0 254 65024 0
64 Bucket 512 64 40 1677 0 30 53248 0
filedesc0 1072 40 9 780 0 8 52528 0
malloc-256 256 141 54 289 0 62 49920 0
malloc-256 256 55 140 393 0 62 49920 0
32 Bucket 256 61 134 13816 0 62 49920 0
DIRHASH 1024 34 14 34 0 16 49152 0
NAMEI 1024 0 48 12227 0 16 49152 0
malloc-8192 8192 3 3 31 0 1 49152 0
malloc-4096 4096 9 3 552 0 2 49152 0
malloc-2048 2048 5 19 512 0 8 49152 0
malloc-2048 2048 11 13 36 0 8 49152 0
malloc-2048 2048 2 22 534 0 8 49152 0
malloc-1024 1024 4 44 512 0 16 49152 0
malloc-384 384 83 37 83 0 30 46080 0
syncache 168 0 264 5 0 254 44352 0
sctp_chunk 152 2 258 2 0 254 39520 0
Mountpoints 2752 2 12 2 0 4 38528 0
udp_inpcb 424 6 84 128 0 30 38160 0
pipe 744 7 43 284 0 16 37200 0
pcpu-8 8 4220 388 4248 0 254 36864 0
malloc-64 64 12 555 13203 0 254 36288 0
malloc-64 64 56 511 56 0 254 36288 0
malloc-64 64 26 541 58 0 254 36288 0
malloc-64 64 0 567 16 0 254 36288 0
malloc-128 128 35 244 111 0 126 35712 0
malloc-128 128 44 235 60 0 126 35712 0
malloc-128 128 30 249 81 0 126 35712 0
malloc-128 128 90 189 437 0 126 35712 0
malloc-128 128 4 275 4 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 59 31 399 0 30 34560 0
malloc-256 256 35 100 554 0 62 34560 0
malloc-256 256 3 132 55 0 62 34560 0
malloc-256 256 3 132 55 0 62 34560 0
malloc-256 256 15 120 82 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-2048 2048 1 15 3 0 8 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-2048 2048 9 7 252 0 8 32768 0
malloc-1024 1024 5 27 45 0 16 32768 0
malloc-1024 1024 14 18 886 0 16 32768 0
malloc-1024 1024 20 12 36 0 16 32768 0
malloc-1024 1024 10 22 14 0 16 32768 0
malloc-1024 1024 2 30 6 0 16 32768 0
malloc-512 512 3 61 121 0 30 32768 0
malloc-512 512 4 60 19 0 30 32768 0
malloc-512 512 8 56 9 0 30 32768 0
malloc-512 512 2 62 51 0 30 32768 0
malloc-512 512 3 61 3 0 30 32768 0
pcpu-64 64 493 19 493 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
cpuset 104 7 272 7 0 126 29016 0
sctp_laddr 48 2 586 6 0 254 28224 0
malloc-32 32 380 502 1310 0 254 28224 0
16 Bucket 144 46 150 229 0 62 28224 0
4 Bucket 48 6 582 49 0 254 28224 0
tcp_inpcb 424 3 60 7 0 30 26712 0
ripcb 424 1 62 4 0 30 26712 0
da_ccb 544 1 48 1227 0 16 26656 0
TURNSTILE 136 133 56 133 0 62 25704 0
malloc-8192 8192 3 0 3 0 1 24576 0
malloc-4096 4096 6 0 6 0 2 24576 0
rtentry 176 13 125 17 0 62 24288 0
PGRP 88 20 256 31 0 126 24288 0
ertt_txseginfo 40 0 606 211 0 254 24240 0
rl_entry 40 32 574 32 0 254 24240 0
Files 80 73 227 6582 0 126 24000 0
8 Bucket 80 36 264 232 0 126 24000 0
malloc-384 384 6 54 9 0 30 23040 0
malloc-384 384 7 53 9 0 30 23040 0
malloc-384 384 3 57 13 0 30 23040 0
malloc-384 384 0 60 19 0 30 23040 0
SLEEPQUEUE 88 133 123 133 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udpcb 32 6 624 128 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
PWD 32 10 620 100 0 254 20160 0
malloc-64 64 2 313 525 0 254 20160 0
malloc-32 32 75 555 87 0 254 20160 0
malloc-32 32 33 597 2867 0 254 20160 0
malloc-32 32 46 584 175 0 254 20160 0
malloc-32 32 41 589 622 0 254 20160 0
malloc-32 32 3 627 47 0 254 20160 0
2 Bucket 32 46 584 298 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-4096 4096 0 4 195 0 2 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-4096 4096 3 1 4 0 2 16384 0
malloc-2048 2048 1 7 13 0 8 16384 0
malloc-2048 2048 2 6 2 0 8 16384 0
malloc-512 512 0 32 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
malloc-16 16 526 474 4913 0 254 16000 0
SMR CPU 32 7 504 7 0 254 16352 0
kenv 258 15 45 1037 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
malloc-32 32 15 363 49 0 254 12096 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 17 733 82 0 254 12000 0
malloc-16 16 33 717 26364 0 254 12000 0
malloc-16 16 7 743 9 0 254 12000 0
malloc-16 16 27 723 32 0 254 12000 0
malloc-16 16 1 749 6 0 254 12000 0
malloc-4096 4096 0 2 2 0 2 8192 0
malloc-4096 4096 0 2 3 0 2 8192 0
pcpu-16 16 14 498 14 0 254 8192 0
vtnet_tx_hdr 24 0 334 1351 0 254 8016 0
malloc-16 16 23 477 24 0 254 8000 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
pcpu-4 4 1 511 1 0 254 2048 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 136 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 312 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_pcb 896 0 0 0 0 16 0 0
tcp_rack_map 120 0 0 0 0 126 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
ipq 56 0 0 0 0 254 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
tcptw 72 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
TMPFS node 224 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 120 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 64 0 0
mdpbuf 2624 0 0 0 0 3 0 0
nfspbuf 2624 0 0 0 0 16 0 0
swwbuf 2624 0 0 0 0 8 0 0
swrbuf 2624 0 0 0 0 16 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-2048 2048 0 0 0 0 8 0 0
malloc-1024 1024 0 0 0 0 16 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-384 384 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
Mark Johnston
Jun 27, 2022, 1:04:25 PM6/27/22
to syzbot, syzkaller-f...@googlegroups.com
Reply all
Reply to author
Forward
0 new messages