panic: Assertion !(tp->t_flags2 & TF2_HPTS_CPU_SET) failed at /syzkaller/managers/main/kernel/sys/netinet/tcp_hpts.c:LIN
0 views
Skip to first unread message
syzbot
Dec 5, 2023, 12:57:23 AM12/5/23
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 62d47a4db457 vmstat: fix column names broken in c168508655..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=13f7eb54e80000
dashboard link: https://syzkaller.appspot.com/bug?extid=ca5f2aa0fda15dcfe6d7
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ca5f2a...@syzkaller.appspotmail.com
panic: Assertion !(tp->t_flags2 & TF2_HPTS_CPU_SET) failed at /syzkaller/managers/main/kernel/sys/netinet/tcp_hpts.c:553
cpuid = 0
time = 1701755763
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a3d1f90
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a3d20f0
vpanic() at vpanic+0x271/frame 0xfffffe006a3d2290
panic() at panic+0xb5/frame 0xfffffe006a3d2350
tcp_hpts_init() at tcp_hpts_init+0xc5/frame 0xfffffe006a3d2370
rack_init() at rack_init+0x11a/frame 0xfffffe006a3d27b0
tcp_ctloutput_set() at tcp_ctloutput_set+0x66b/frame 0xfffffe006a3d2930
tcp_ctloutput() at tcp_ctloutput+0x137/frame 0xfffffe006a3d2a30
sosetopt() at sosetopt+0x227/frame 0xfffffe006a3d2b90
kern_setsockopt() at kern_setsockopt+0x257/frame 0xfffffe006a3d2cc0
sys_setsockopt() at sys_setsockopt+0x77/frame 0xfffffe006a3d2d10
amd64_syscall() at amd64_syscall+0x47a/frame 0xfffffe006a3d2f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe006a3d2f30
--- syscall (198, FreeBSD ELF64, __syscall), rip = 0x2aeb2a, rsp = 0x82477df08, rbp = 0x82477df80 ---
KDB: enter: panic
[ thread pid 1302 tid 100841 ]
Stopped at kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe0070200000
rdx 0x3ffff
rbx 0xffffffff826edae0 .str.28
rsp 0xfffffe006a3d20d0
rbp 0xfffffe006a3d20f0
rsi 0x40001
rdi 0xffffffff815d8986 printf+0x156
r8 0
r9 0xffffffff
r10 0x33ff96b1
r11 0xb9a772e3
r12 0
r13 0xfffffe006d29c000
r14 0xffffffff826edae0 .str.28
r15 0
rip 0xffffffff815c796e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db> show proc
Process 1302 (syz-executor.2) at 0xfffffe006d283ac0:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 773 at 0xfffffe005720c560
ABI: FreeBSD ELF64
flag: 0x10000080 flag2: 0
arguments: /root/syz-executor.2 exec
reaper: 0xfffffe0054250040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0073efd000
(map 0xfffffe0073efd000)
(map.pmap 0xfffffe0073efd0c0)
(pmap 0xfffffe0073efd130)
threads: 3
100789 RunQ syz-executor.2
100837 RunQ syz-executor.2
100841 Run CPU 0 syz-executor.2
db> ps
pid ppid pgrp uid state wmesg wchan cmd
1306 770 770 0 R (threaded) syz-executor.0
100348 RunQ syz-executor.0
100839 S uwait 0xfffffe0058ba1380 syz-executor.0
1305 771 771 0 R (threaded) syz-executor.1
100128 Run CPU 1 syz-executor.1
100840 S uwait 0xfffffe0058ba1680 syz-executor.1
1302 773 773 0 R (threaded) syz-executor.2
100789 RunQ syz-executor.2
100837 RunQ syz-executor.2
100841 Run CPU 0 syz-executor.2
1298 0 0 0 DL aiordy 0xfffffe006d283000 [aiod4]
1297 0 0 0 DL aiordy 0xfffffe006cd0a5a0 [aiod3]
1296 0 0 0 DL aiordy 0xfffffe006cd0a040 [aiod2]
1295 0 0 0 DL aiordy 0xfffffe0057a52060 [aiod1]
987 981 987 0 Ss select 0xfffffe0007876140 dhclient
984 1 984 0 Ss select 0xfffffe0007877840 dhclient
981 974 424 65 S select 0xfffffe0057920ac0 dhclient
974 424 424 0 S wait 0xfffffe006cbb35a0 sh
776 768 776 0 Rs syz-executor.3
773 768 773 0 Ss nanslp 0xffffffff8373c3c0 syz-executor.2
771 768 771 0 Rs syz-executor.1
770 768 770 0 Rs syz-executor.0
768 766 766 0 S (threaded) syz-fuzzer
100109 S uwait 0xfffffe0058ba1d80 syz-fuzzer
100113 S uwait 0xfffffe0057907580 syz-fuzzer
100114 S wait 0xfffffe006cbb1000 syz-fuzzer
100115 S wait 0xfffffe006cbb1000 syz-fuzzer
100116 S uwait 0xfffffe0058ba1e80 syz-fuzzer
100117 S uwait 0xfffffe006a580000 syz-fuzzer
100118 S wait 0xfffffe006cbb1000 syz-fuzzer
100119 S wait 0xfffffe006cbb1000 syz-fuzzer
100120 S uwait 0xfffffe006a580300 syz-fuzzer
100123 S uwait 0xfffffe006a580400 syz-fuzzer
100133 S kqread 0xfffffe00589fbc00 syz-fuzzer
100182 S uwait 0xfffffe0057905080 syz-fuzzer
766 764 766 0 Ss pause 0xfffffe006cbb4670 csh
764 682 764 0 Ss select 0xfffffe0007876ac0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00574f48b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00543970b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe005750bcb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00543978b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00543980b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe005750c4b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe005750ccb0 getty
741 1 741 0 Ss+ ttyin 0xfffffe00543988b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe00543990b0 getty
738 1 18 0 S+ piperd 0xfffffe0058a67998 logger
737 736 18 0 S+ nanslp 0xffffffff8373c3c0 sleep
736 1 18 0 S+ wait 0xfffffe005720dae0 sh
686 1 686 0 Ss nanslp 0xffffffff8373c3c0 cron
682 1 682 0 Ss select 0xfffffe0057921040 sshd
495 1 495 0 Ss select 0xfffffe0007877040 syslogd
424 1 424 0 Ss wait 0xfffffe006cbb3040 devd
423 1 423 65 Ss select 0xfffffe0007877640 dhclient
338 1 338 0 Ss select 0xfffffe0007877740 dhclient
335 1 335 0 Ss select 0xfffffe00078779c0 dhclient
17 0 0 0 DL syncer 0xffffffff83859b20 [syncer]
16 0 0 0 DL vlruwt 0xfffffe005720e5a0 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83858100 [bufdaemon]
100084 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100093 D sdflush 0xfffffe0058b44ce8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838cad40 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff838b2bb8 [dom0]
100080 D launds 0xffffffff838b2bc4 [laundry: dom0]
100081 D umarcl 0xffffffff81d5a950 [uma]
7 0 0 0 DL - 0xffffffff834b9c10 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84575a30 [pf purge]
5 0 0 0 DL waiting 0xffffffff843b74e0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83484340 [doneq0]
100045 D - 0xffffffff834842c0 [async]
100076 D - 0xffffffff83484140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff838ae3e0 [crypto]
100042 D crypto_ 0xfffffe00571b2030 [crypto returns 0]
100043 D crypto_ 0xfffffe00571b2080 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe00085f4488 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836e4d20 [g_event]
100036 D - 0xffffffff836e4d40 [g_up]
100037 D - 0xffffffff836e4d60 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100031 I [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0054250040 [init]
10 0 0 0 DL audit_w 0xffffffff838aee40 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836e5700 [swapper]
100005 D - 0xfffffe0054270000 [softirq_0]
100006 D - 0xfffffe005426fe00 [softirq_1]
100007 D - 0xfffffe005426fd00 [if_io_tqg_0]
100008 D - 0xfffffe005426fc00 [if_io_tqg_1]
100009 D - 0xfffffe005426fb00 [if_config_tqg_0]
100010 D - 0xfffffe00085fa000 [pci_hp taskq]
100011 D - 0xfffffe00085f9e00 [kqueue_ctx taskq]
100014 D - 0xfffffe00085f9b00 [thread taskq]
100016 D - 0xfffffe00085f9900 [aiod_kick taskq]
100017 D - 0xfffffe00085f9800 [deferred_unmount ta]
100018 D - 0xfffffe00085f9700 [inm_free taskq]
100019 D - 0xfffffe00085f9600 [in6m_free taskq]
100020 D - 0xfffffe00085f9500 [linuxkpi_irq_wq]
100021 D - 0xfffffe00085f9400 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00085f9400 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00085f9400 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00085f9400 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00085f9300 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00085f9300 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00085f9300 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00085f9300 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00085f9100 [firmware taskq]
100039 D - 0xfffffe00085f8e00 [crypto_0]
100040 D - 0xfffffe00085f8e00 [crypto_1]
100055 D - 0xfffffe0057293e00 [vtnet0 rxq 0]
100056 D - 0xfffffe0057293d00 [vtnet0 txq 0]
100057 D - 0xfffffe0057293c00 [vtnet0 rxq 1]
100058 D - 0xfffffe0057293b00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0007dd7e00 [virtio_balloon]
100066 D - 0xffffffff826f2d41 [deadlkres]
100070 D - 0xfffffe005798ec00 [acpi_task_0]
100071 D - 0xfffffe005798ec00 [acpi_task_1]
100072 D - 0xfffffe005798ec00 [acpi_task_2]
100074 D - 0xfffffe00085fa100 [mca taskq]
100075 D - 0xfffffe00085f8c00 [CAM taskq]
db> show all locks
Process 1302 (syz-executor.2) thread 0xfffffe0073cd9000 (100837)
exclusive sx so_snd_sx (so_snd_sx) r = 0 (0xfffffe0058b12140) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4077
Process 1302 (syz-executor.2) thread 0xfffffe006d29c000 (100841)
exclusive rw tcpinp (tcpinp) r = 0 (0xfffffe006cdc6aa0) locked @ /syzkaller/managers/main/kernel/sys/netinet/tcp_usrreq.c:1702
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4217
sysctloid 34934 2059K 35005
vtbuf 24 1968K 46
kobj 326 1304K 488
newblk 711 1202K 1155
vfscache 3 1025K 3
pcb 38 684K 2639
inodedep 261 610K 490
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vmem 3 266K 6
subproc 122 246K 1378
vnet_data 2 224K 2
acpitask 1 224K 1
acpica 1674 184K 60830
tidhash 3 141K 3
pagedep 20 133K 427
linker 352 130K 386
tfo_ccache 1 128K 1
IP reass 1 128K 1
filedesc 16 121K 861
DEVFS1 109 109K 126
sem 4 106K 4
gtaskqueue 18 98K 18
bus 985 81K 5155
mtx_pool 2 72K 2
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 512 64K 512
ddb_capture 1 64K 1
dirrem 219 55K 424
umtx 336 42K 336
kdtrace 200 40K 2149
temp 35 37K 2038
BPF 22 36K 72
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 128 32K 138
msg 4 30K 4
freefile 228 29K 418
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
ifaddr 67 19K 69
LRO 18 19K 18
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
routetbl 130 16K 410
ithread 97 16K 97
bus-sc 34 15K 1687
lltable 45 14K 46
eventhandler 161 14K 161
KTRACE 100 13K 100
ifnet 7 13K 7
ether_multi 152 13K 162
kenv 95 12K 95
GEOM 61 11K 481
rman 86 11K 429
CAM queue 5 11K 1528
in6_multi 65 9K 65
sctp_timw 34 9K 34
bmsafemap 2 9K 458
rpc 4 9K 4
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 238 8K 300
taskqueue 63 7K 63
sglist 6 7K 6
sctp_stro 6 6K 383
cred 24 6K 236
CAM DEV 3 6K 510
kqueue 57 6K 1313
plimit 22 6K 348
pfs_nodes 20 5K 20
hhook 15 5K 17
sctp_atcl 13 5K 1757
ufs_dirhash 24 5K 24
UMA 268 5K 268
pf_ifnet 10 5K 19
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
DEVFSP 62 4K 127
diradd 30 4K 457
acpisem 28 4K 28
pwddesc 55 4K 1307
session 26 4K 38
kcovinfo 52 4K 52
proc-args 81 4K 2427
terminal 11 3K 11
mkdir 20 3K 832
indirdep 10 3K 10
clone 9 3K 9
uidinfo 3 3K 7
local_apic 1 2K 1
io_apic 1 2K 1
newdirblk 16 2K 416
ipsec-saq 2 2K 2
lockf 19 2K 29
selfd 31 2K 16828
ip6ndp 12 2K 14
Unitno 30 2K 49
sctp_ifa 13 2K 14
tun 7 2K 7
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 8
toponodes 6 2K 6
ipsecpolicy 2 2K 2
CC Mem 5 2K 320
select 10 2K 37
acpidev 20 2K 20
freework 5 2K 422
softdep 1 1K 1
freeblks 4 1K 421
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 10
NFSD session 1 1K 1
CAM periph 4 1K 271
sctp_atky 19 1K 2226
sctp_ifn 6 1K 14
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 4
encap_export_host 12 1K 12
cdev 2 1K 2
osd 10 1K 333
inpcbpolicy 13 1K 498
netlink 2 1K 2
chacha20random 1 1K 1
biobuf 1 1K 1
vnodes 1 1K 1
procdesc 2 1K 12
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
sctp_athm 13 1K 1888
sctp_map 12 1K 808
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
lkpikmalloc 5 1K 6
cryptodev 2 1K 60
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
aio 4 1K 4
pmchooks 1 1K 1
filecaps 5 1K 90
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
soname 4 1K 4538
sctp_vrf 1 1K 1
vnet 1 1K 1
pmc 1 1K 1
entropy 2 1K 39
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 677
sctp_iter 0 0K 10
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 10
sctp_aadr 0 0K 0
sctp_stri 0 0K 262
tcp_do 0 0K 0
tcp_fsb 0 0K 26
mqdata 0 0K 0
filemon 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
ixl 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
fpukern_ctx 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
aesni_data 0 0K 0
xenbus 0 0K 0
vm_fictitious 0 0K 0
UMAHash 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 202
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 3
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 2
allocindir 0 0K 0
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ktls_ocf 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 6
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 195
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 2
lio 0 0K 4
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 14795
ioctlops 0 0K 202
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 662
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
pvscsi 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 25
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
SIIS driver 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
md_disk 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
ciss_data 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
aacraidcam 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
scsi_pass 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
nvme_da 0 0K 0
CAM CCB 0 0K 523
CAM ccb queue 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8320 1078 24929 0 254 38494208 0
mbuf 256 9305 14323 805875 0 254 6048768 0
tcp_log 416 0 5337 20415 0 254 2220192 0
BUF TRIE 144 195 11621 571 0 62 1701504 0
malloc-384 384 4122 48 4123 0 30 1601280 0
mbuf_cluster 2048 762 0 762 0 254 1560576 0
malloc-128 128 11755 242 11849 0 126 1535616 0
malloc-4096 4096 327 5 502 0 2 1359872 0
UMA Slabs 0 112 10954 20 10954 0 126 1229088 0
sctp_asoc 2256 6 504 334 0 254 1150560 0
vmem btag 56 18351 120 18351 0 254 1034376 0
ertt_txseginfo 40 1 22926 415937 0 254 917080 0
RADIX NODE 144 5930 225 42197 0 62 886320 0
256 Bucket 2048 326 10 4534 0 8 688128 0
FFS inode 1168 508 38 927 0 8 637728 0
sctp_ep 1176 7 503 1292 0 254 599760 0
sctp_chunk 152 193 3629 52618 0 254 580944 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
socket 960 28 480 3010 0 254 487680 0
malloc-65536 65536 6 0 6 0 1 393216 0
sctp_raddr 736 6 511 341 0 254 380512 0
VM OBJECT 264 1144 116 21080 0 30 332640 0
THREAD 1824 144 24 841 0 8 306432 0
VNODE 448 545 121 966 0 30 298368 0
malloc-64 64 4294 305 21301 0 254 294336 0
malloc-256 256 954 111 2769 0 62 272640 0
malloc-4096 4096 55 5 1307 0 2 245760 0
malloc-16 16 14620 380 18082 0 254 240000 0
DEVCTL 1024 21 199 148 0 0 225280 0
malloc-16384 16384 8 5 429 0 1 212992 0
mbuf_packet 256 70 692 3657 0 254 195072 0
malloc-128 128 1451 68 28852 0 126 194432 0
UMA Zones 768 240 4 240 0 16 187392 0
malloc-32 32 5331 339 6172 0 254 181440 0
tcp_bbr_map 128 2 1393 14317 0 126 178560 0
FPU_save_area 832 146 52 1147 0 16 164736 0
MAP ENTRY 96 1255 383 64442 0 126 157248 0
malloc-2048 2048 6 66 1038 0 8 147456 0
malloc-1024 1024 133 11 150 0 16 147456 0
malloc-128 128 1073 74 6114 0 126 146816 0
S VFS Cache 104 1003 401 1492 0 126 146016 0
FFS2 dinode 256 508 62 926 0 62 145920 0
malloc-65536 65536 0 2 66 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 0 2 8 0 1 131072 0
unpcb 256 11 499 1193 0 254 130560 0
malloc-384 384 285 45 2259 0 30 126720 0
ksiginfo 112 52 992 367 0 126 116928 0
malloc-256 256 250 185 2447 0 62 111360 0
malloc-32768 32768 1 2 121 0 1 98304 0
malloc-32768 32768 3 0 3 0 1 98304 0
malloc-4096 4096 22 2 33 0 2 98304 0
malloc-2048 2048 14 34 1299 0 8 98304 0
malloc-256 256 271 104 1626 0 62 96000 0
PROC 1376 54 12 1306 0 8 90816 0
UMA Kegs 384 227 6 227 0 30 89472 0
128 Bucket 1024 63 20 340 0 16 84992 0
filedesc0 1072 55 22 1307 0 8 82544 0
malloc-8192 8192 8 2 10 0 1 81920 0
sctp_readq 152 0 520 315 0 254 79040 0
g_bio 408 0 180 4905 0 30 73440 0
malloc-64 64 534 537 1705 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-8192 8192 6 2 107 0 1 65536 0
malloc-256 256 33 222 318 0 62 65280 0
sctp_stream_msg_out 112 0 540 328 0 254 60480 0
tcp_inpcb 1312 5 37 320 0 8 55104 0
udp_inpcb 424 6 120 170 0 30 53424 0
64 Bucket 512 78 26 1809 0 30 53248 0
VMSPACE 616 34 50 1287 0 16 51744 0
32 Bucket 256 70 125 1625 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 15398 0 16 49152 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-8192 8192 5 1 31 0 1 49152 0
malloc-1024 1024 8 40 1604 0 16 49152 0
malloc-384 384 81 39 81 0 30 46080 0
syncache 168 0 264 4 0 254 44352 0
Files 80 183 367 9917 0 126 44000 0
malloc-4096 4096 5 5 9 0 2 40960 0
malloc-4096 4096 7 3 12 0 2 40960 0
pcpu-8 8 4712 408 5218 0 254 40960 0
pipe 728 21 34 351 0 16 40040 0
da_ccb 544 0 70 1353 0 16 38080 0
malloc-64 64 52 515 332 0 254 36288 0
malloc-64 64 66 501 14316 0 254 36288 0
malloc-64 64 75 492 2094 0 254 36288 0
malloc-64 64 132 435 2042 0 254 36288 0
malloc-64 64 286 281 1582 0 254 36288 0
malloc-64 64 178 389 243 0 254 36288 0
tcp_rack_map 128 0 279 64 0 126 35712 0
malloc-128 128 23 256 522 0 126 35712 0
malloc-128 128 32 247 95 0 126 35712 0
malloc-128 128 138 141 720 0 126 35712 0
malloc-128 128 58 221 202 0 126 35712 0
malloc-128 128 59 220 313 0 126 35712 0
routing nhops 256 27 108 34 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 52 38 79 0 30 34560 0
malloc-384 384 47 43 50 0 30 34560 0
malloc-256 256 8 127 509 0 62 34560 0
malloc-256 256 58 77 364 0 62 34560 0
malloc-256 256 85 50 895 0 62 34560 0
malloc-256 256 17 118 278 0 62 34560 0
tcp_rack_pcb 1024 0 32 13 0 16 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-2048 2048 11 5 113 0 8 32768 0
malloc-2048 2048 3 13 3 0 8 32768 0
malloc-2048 2048 3 13 111 0 8 32768 0
malloc-2048 2048 4 12 28 0 8 32768 0
malloc-2048 2048 0 16 50 0 8 32768 0
malloc-2048 2048 9 7 200 0 8 32768 0
malloc-1024 1024 0 32 6 0 16 32768 0
malloc-1024 1024 10 22 11 0 16 32768 0
malloc-1024 1024 10 22 391 0 16 32768 0
malloc-1024 1024 5 27 176 0 16 32768 0
malloc-1024 1024 10 22 10 0 16 32768 0
malloc-1024 1024 3 29 3 0 16 32768 0
malloc-512 512 15 49 73 0 30 32768 0
malloc-512 512 0 64 132 0 30 32768 0
malloc-512 512 2 62 285 0 30 32768 0
malloc-512 512 4 60 53 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
PWD 40 18 790 504 0 254 32320 0
KNOTE 160 28 172 4225 0 62 32000 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 26 238 38 0 126 31680 0
clpbuf 2624 0 12 28 0 4 31488 0
tcp_bbr_pcb 832 1 35 274 0 16 29952 0
sctp_laddr 48 1 587 347 0 254 28224 0
malloc-32 32 283 599 4425 0 254 28224 0
16 Bucket 144 63 133 291 0 62 28224 0
4 Bucket 48 6 582 8 0 254 28224 0
TURNSTILE 136 169 20 169 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
ripcb 392 2 61 8 0 30 24696 0
malloc-4096 4096 2 4 5 0 2 24576 0
malloc-4096 4096 4 2 754 0 2 24576 0
rl_entry 40 40 566 40 0 254 24240 0
rtentry 168 30 114 34 0 62 24192 0
8 Bucket 80 61 239 662 0 126 24000 0
itimer 352 0 66 4 0 30 23232 0
malloc-384 384 1 59 346 0 30 23040 0
malloc-384 384 22 38 23 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 169 87 169 0 126 22528 0
hostcache 64 2 313 2 0 254 20160 0
udp_inpcb ports 32 3 627 33 0 254 20160 0
tcp_inpcb ports 32 3 627 271 0 254 20160 0
ertt 72 5 275 320 0 126 20160 0
malloc-32 32 34 596 195 0 254 20160 0
malloc-32 32 76 554 618 0 254 20160 0
malloc-32 32 96 534 1813 0 254 20160 0
malloc-32 32 144 486 1770 0 254 20160 0
malloc-32 32 79 551 144 0 254 20160 0
malloc-32 32 16 614 17 0 254 20160 0
2 Bucket 32 58 572 362 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-512 512 2 30 2 0 30 16384 0
malloc-512 512 0 32 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
AIO 208 0 76 4 0 62 15808 0
kenv 258 17 43 1076 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
vtnet_tx_hdr 24 0 501 8749 0 254 12024 0
malloc-16 16 43 707 1868 0 254 12000 0
malloc-16 16 15 735 170 0 254 12000 0
malloc-16 16 70 680 1394 0 254 12000 0
malloc-16 16 42 708 2249 0 254 12000 0
malloc-16 16 35 715 163 0 254 12000 0
malloc-16 16 285 465 28032 0 254 12000 0
malloc-16 16 7 743 9 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
AIOLIO 272 0 42 4 0 30 11424 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
AIOCB 552 0 0 0 0 16 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 232 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: 62d47a4db457 vmstat: fix column names broken in c168508655..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=13f7eb54e80000
dashboard link: https://syzkaller.appspot.com/bug?extid=ca5f2aa0fda15dcfe6d7
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ca5f2a...@syzkaller.appspotmail.com
panic: Assertion !(tp->t_flags2 & TF2_HPTS_CPU_SET) failed at /syzkaller/managers/main/kernel/sys/netinet/tcp_hpts.c:553
cpuid = 0
time = 1701755763
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a3d1f90
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a3d20f0
vpanic() at vpanic+0x271/frame 0xfffffe006a3d2290
panic() at panic+0xb5/frame 0xfffffe006a3d2350
tcp_hpts_init() at tcp_hpts_init+0xc5/frame 0xfffffe006a3d2370
rack_init() at rack_init+0x11a/frame 0xfffffe006a3d27b0
tcp_ctloutput_set() at tcp_ctloutput_set+0x66b/frame 0xfffffe006a3d2930
tcp_ctloutput() at tcp_ctloutput+0x137/frame 0xfffffe006a3d2a30
sosetopt() at sosetopt+0x227/frame 0xfffffe006a3d2b90
kern_setsockopt() at kern_setsockopt+0x257/frame 0xfffffe006a3d2cc0
sys_setsockopt() at sys_setsockopt+0x77/frame 0xfffffe006a3d2d10
amd64_syscall() at amd64_syscall+0x47a/frame 0xfffffe006a3d2f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe006a3d2f30
--- syscall (198, FreeBSD ELF64, __syscall), rip = 0x2aeb2a, rsp = 0x82477df08, rbp = 0x82477df80 ---
KDB: enter: panic
[ thread pid 1302 tid 100841 ]
Stopped at kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe0070200000
rdx 0x3ffff
rbx 0xffffffff826edae0 .str.28
rsp 0xfffffe006a3d20d0
rbp 0xfffffe006a3d20f0
rsi 0x40001
rdi 0xffffffff815d8986 printf+0x156
r8 0
r9 0xffffffff
r10 0x33ff96b1
r11 0xb9a772e3
r12 0
r13 0xfffffe006d29c000
r14 0xffffffff826edae0 .str.28
r15 0
rip 0xffffffff815c796e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db> show proc
Process 1302 (syz-executor.2) at 0xfffffe006d283ac0:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 773 at 0xfffffe005720c560
ABI: FreeBSD ELF64
flag: 0x10000080 flag2: 0
arguments: /root/syz-executor.2 exec
reaper: 0xfffffe0054250040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0073efd000
(map 0xfffffe0073efd000)
(map.pmap 0xfffffe0073efd0c0)
(pmap 0xfffffe0073efd130)
threads: 3
100789 RunQ syz-executor.2
100837 RunQ syz-executor.2
100841 Run CPU 0 syz-executor.2
db> ps
pid ppid pgrp uid state wmesg wchan cmd
1306 770 770 0 R (threaded) syz-executor.0
100348 RunQ syz-executor.0
100839 S uwait 0xfffffe0058ba1380 syz-executor.0
1305 771 771 0 R (threaded) syz-executor.1
100128 Run CPU 1 syz-executor.1
100840 S uwait 0xfffffe0058ba1680 syz-executor.1
1302 773 773 0 R (threaded) syz-executor.2
100789 RunQ syz-executor.2
100837 RunQ syz-executor.2
100841 Run CPU 0 syz-executor.2
1298 0 0 0 DL aiordy 0xfffffe006d283000 [aiod4]
1297 0 0 0 DL aiordy 0xfffffe006cd0a5a0 [aiod3]
1296 0 0 0 DL aiordy 0xfffffe006cd0a040 [aiod2]
1295 0 0 0 DL aiordy 0xfffffe0057a52060 [aiod1]
987 981 987 0 Ss select 0xfffffe0007876140 dhclient
984 1 984 0 Ss select 0xfffffe0007877840 dhclient
981 974 424 65 S select 0xfffffe0057920ac0 dhclient
974 424 424 0 S wait 0xfffffe006cbb35a0 sh
776 768 776 0 Rs syz-executor.3
773 768 773 0 Ss nanslp 0xffffffff8373c3c0 syz-executor.2
771 768 771 0 Rs syz-executor.1
770 768 770 0 Rs syz-executor.0
768 766 766 0 S (threaded) syz-fuzzer
100109 S uwait 0xfffffe0058ba1d80 syz-fuzzer
100113 S uwait 0xfffffe0057907580 syz-fuzzer
100114 S wait 0xfffffe006cbb1000 syz-fuzzer
100115 S wait 0xfffffe006cbb1000 syz-fuzzer
100116 S uwait 0xfffffe0058ba1e80 syz-fuzzer
100117 S uwait 0xfffffe006a580000 syz-fuzzer
100118 S wait 0xfffffe006cbb1000 syz-fuzzer
100119 S wait 0xfffffe006cbb1000 syz-fuzzer
100120 S uwait 0xfffffe006a580300 syz-fuzzer
100123 S uwait 0xfffffe006a580400 syz-fuzzer
100133 S kqread 0xfffffe00589fbc00 syz-fuzzer
100182 S uwait 0xfffffe0057905080 syz-fuzzer
766 764 766 0 Ss pause 0xfffffe006cbb4670 csh
764 682 764 0 Ss select 0xfffffe0007876ac0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00574f48b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00543970b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe005750bcb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00543978b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00543980b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe005750c4b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe005750ccb0 getty
741 1 741 0 Ss+ ttyin 0xfffffe00543988b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe00543990b0 getty
738 1 18 0 S+ piperd 0xfffffe0058a67998 logger
737 736 18 0 S+ nanslp 0xffffffff8373c3c0 sleep
736 1 18 0 S+ wait 0xfffffe005720dae0 sh
686 1 686 0 Ss nanslp 0xffffffff8373c3c0 cron
682 1 682 0 Ss select 0xfffffe0057921040 sshd
495 1 495 0 Ss select 0xfffffe0007877040 syslogd
424 1 424 0 Ss wait 0xfffffe006cbb3040 devd
423 1 423 65 Ss select 0xfffffe0007877640 dhclient
338 1 338 0 Ss select 0xfffffe0007877740 dhclient
335 1 335 0 Ss select 0xfffffe00078779c0 dhclient
17 0 0 0 DL syncer 0xffffffff83859b20 [syncer]
16 0 0 0 DL vlruwt 0xfffffe005720e5a0 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83858100 [bufdaemon]
100084 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100093 D sdflush 0xfffffe0058b44ce8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838cad40 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff838b2bb8 [dom0]
100080 D launds 0xffffffff838b2bc4 [laundry: dom0]
100081 D umarcl 0xffffffff81d5a950 [uma]
7 0 0 0 DL - 0xffffffff834b9c10 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff84575a30 [pf purge]
5 0 0 0 DL waiting 0xffffffff843b74e0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83484340 [doneq0]
100045 D - 0xffffffff834842c0 [async]
100076 D - 0xffffffff83484140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff838ae3e0 [crypto]
100042 D crypto_ 0xfffffe00571b2030 [crypto returns 0]
100043 D crypto_ 0xfffffe00571b2080 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe00085f4488 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836e4d20 [g_event]
100036 D - 0xffffffff836e4d40 [g_up]
100037 D - 0xffffffff836e4d60 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100031 I [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0054250040 [init]
10 0 0 0 DL audit_w 0xffffffff838aee40 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836e5700 [swapper]
100005 D - 0xfffffe0054270000 [softirq_0]
100006 D - 0xfffffe005426fe00 [softirq_1]
100007 D - 0xfffffe005426fd00 [if_io_tqg_0]
100008 D - 0xfffffe005426fc00 [if_io_tqg_1]
100009 D - 0xfffffe005426fb00 [if_config_tqg_0]
100010 D - 0xfffffe00085fa000 [pci_hp taskq]
100011 D - 0xfffffe00085f9e00 [kqueue_ctx taskq]
100014 D - 0xfffffe00085f9b00 [thread taskq]
100016 D - 0xfffffe00085f9900 [aiod_kick taskq]
100017 D - 0xfffffe00085f9800 [deferred_unmount ta]
100018 D - 0xfffffe00085f9700 [inm_free taskq]
100019 D - 0xfffffe00085f9600 [in6m_free taskq]
100020 D - 0xfffffe00085f9500 [linuxkpi_irq_wq]
100021 D - 0xfffffe00085f9400 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00085f9400 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00085f9400 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00085f9400 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00085f9300 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00085f9300 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00085f9300 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00085f9300 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00085f9100 [firmware taskq]
100039 D - 0xfffffe00085f8e00 [crypto_0]
100040 D - 0xfffffe00085f8e00 [crypto_1]
100055 D - 0xfffffe0057293e00 [vtnet0 rxq 0]
100056 D - 0xfffffe0057293d00 [vtnet0 txq 0]
100057 D - 0xfffffe0057293c00 [vtnet0 rxq 1]
100058 D - 0xfffffe0057293b00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe0007dd7e00 [virtio_balloon]
100066 D - 0xffffffff826f2d41 [deadlkres]
100070 D - 0xfffffe005798ec00 [acpi_task_0]
100071 D - 0xfffffe005798ec00 [acpi_task_1]
100072 D - 0xfffffe005798ec00 [acpi_task_2]
100074 D - 0xfffffe00085fa100 [mca taskq]
100075 D - 0xfffffe00085f8c00 [CAM taskq]
db> show all locks
Process 1302 (syz-executor.2) thread 0xfffffe0073cd9000 (100837)
exclusive sx so_snd_sx (so_snd_sx) r = 0 (0xfffffe0058b12140) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4077
Process 1302 (syz-executor.2) thread 0xfffffe006d29c000 (100841)
exclusive rw tcpinp (tcpinp) r = 0 (0xfffffe006cdc6aa0) locked @ /syzkaller/managers/main/kernel/sys/netinet/tcp_usrreq.c:1702
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4217
sysctloid 34934 2059K 35005
vtbuf 24 1968K 46
kobj 326 1304K 488
newblk 711 1202K 1155
vfscache 3 1025K 3
pcb 38 684K 2639
inodedep 261 610K 490
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vmem 3 266K 6
subproc 122 246K 1378
vnet_data 2 224K 2
acpitask 1 224K 1
acpica 1674 184K 60830
tidhash 3 141K 3
pagedep 20 133K 427
linker 352 130K 386
tfo_ccache 1 128K 1
IP reass 1 128K 1
filedesc 16 121K 861
DEVFS1 109 109K 126
sem 4 106K 4
gtaskqueue 18 98K 18
bus 985 81K 5155
mtx_pool 2 72K 2
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 512 64K 512
ddb_capture 1 64K 1
dirrem 219 55K 424
umtx 336 42K 336
kdtrace 200 40K 2149
temp 35 37K 2038
BPF 22 36K 72
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 128 32K 138
msg 4 30K 4
freefile 228 29K 418
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
ifaddr 67 19K 69
LRO 18 19K 18
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
routetbl 130 16K 410
ithread 97 16K 97
bus-sc 34 15K 1687
lltable 45 14K 46
eventhandler 161 14K 161
KTRACE 100 13K 100
ifnet 7 13K 7
ether_multi 152 13K 162
kenv 95 12K 95
GEOM 61 11K 481
rman 86 11K 429
CAM queue 5 11K 1528
in6_multi 65 9K 65
sctp_timw 34 9K 34
bmsafemap 2 9K 458
rpc 4 9K 4
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 238 8K 300
taskqueue 63 7K 63
sglist 6 7K 6
sctp_stro 6 6K 383
cred 24 6K 236
CAM DEV 3 6K 510
kqueue 57 6K 1313
plimit 22 6K 348
pfs_nodes 20 5K 20
hhook 15 5K 17
sctp_atcl 13 5K 1757
ufs_dirhash 24 5K 24
UMA 268 5K 268
pf_ifnet 10 5K 19
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
DEVFSP 62 4K 127
diradd 30 4K 457
acpisem 28 4K 28
pwddesc 55 4K 1307
session 26 4K 38
kcovinfo 52 4K 52
proc-args 81 4K 2427
terminal 11 3K 11
mkdir 20 3K 832
indirdep 10 3K 10
clone 9 3K 9
uidinfo 3 3K 7
local_apic 1 2K 1
io_apic 1 2K 1
newdirblk 16 2K 416
ipsec-saq 2 2K 2
lockf 19 2K 29
selfd 31 2K 16828
ip6ndp 12 2K 14
Unitno 30 2K 49
sctp_ifa 13 2K 14
tun 7 2K 7
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 8
toponodes 6 2K 6
ipsecpolicy 2 2K 2
CC Mem 5 2K 320
select 10 2K 37
acpidev 20 2K 20
freework 5 2K 422
softdep 1 1K 1
freeblks 4 1K 421
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 10
NFSD session 1 1K 1
CAM periph 4 1K 271
sctp_atky 19 1K 2226
sctp_ifn 6 1K 14
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 4
encap_export_host 12 1K 12
cdev 2 1K 2
osd 10 1K 333
inpcbpolicy 13 1K 498
netlink 2 1K 2
chacha20random 1 1K 1
biobuf 1 1K 1
vnodes 1 1K 1
procdesc 2 1K 12
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
sctp_athm 13 1K 1888
sctp_map 12 1K 808
tcpfunc 3 1K 3
loginclass 3 1K 6
prison 6 1K 6
lkpikmalloc 5 1K 6
cryptodev 2 1K 60
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
aio 4 1K 4
pmchooks 1 1K 1
filecaps 5 1K 90
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
soname 4 1K 4538
sctp_vrf 1 1K 1
vnet 1 1K 1
pmc 1 1K 1
entropy 2 1K 39
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 677
sctp_iter 0 0K 10
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 10
sctp_aadr 0 0K 0
sctp_stri 0 0K 262
tcp_do 0 0K 0
tcp_fsb 0 0K 26
mqdata 0 0K 0
filemon 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
ixl 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
fpukern_ctx 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
aesni_data 0 0K 0
xenbus 0 0K 0
vm_fictitious 0 0K 0
UMAHash 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 202
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 3
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 2
allocindir 0 0K 0
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ktls_ocf 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 6
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 195
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 2
lio 0 0K 4
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 14795
ioctlops 0 0K 202
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 662
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
pvscsi 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 25
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
SIIS driver 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
md_disk 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
ciss_data 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
aacraidcam 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
scsi_pass 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
nvme_da 0 0K 0
CAM CCB 0 0K 523
CAM ccb queue 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8320 1078 24929 0 254 38494208 0
mbuf 256 9305 14323 805875 0 254 6048768 0
tcp_log 416 0 5337 20415 0 254 2220192 0
BUF TRIE 144 195 11621 571 0 62 1701504 0
malloc-384 384 4122 48 4123 0 30 1601280 0
mbuf_cluster 2048 762 0 762 0 254 1560576 0
malloc-128 128 11755 242 11849 0 126 1535616 0
malloc-4096 4096 327 5 502 0 2 1359872 0
UMA Slabs 0 112 10954 20 10954 0 126 1229088 0
sctp_asoc 2256 6 504 334 0 254 1150560 0
vmem btag 56 18351 120 18351 0 254 1034376 0
ertt_txseginfo 40 1 22926 415937 0 254 917080 0
RADIX NODE 144 5930 225 42197 0 62 886320 0
256 Bucket 2048 326 10 4534 0 8 688128 0
FFS inode 1168 508 38 927 0 8 637728 0
sctp_ep 1176 7 503 1292 0 254 599760 0
sctp_chunk 152 193 3629 52618 0 254 580944 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
socket 960 28 480 3010 0 254 487680 0
malloc-65536 65536 6 0 6 0 1 393216 0
sctp_raddr 736 6 511 341 0 254 380512 0
VM OBJECT 264 1144 116 21080 0 30 332640 0
THREAD 1824 144 24 841 0 8 306432 0
VNODE 448 545 121 966 0 30 298368 0
malloc-64 64 4294 305 21301 0 254 294336 0
malloc-256 256 954 111 2769 0 62 272640 0
malloc-4096 4096 55 5 1307 0 2 245760 0
malloc-16 16 14620 380 18082 0 254 240000 0
DEVCTL 1024 21 199 148 0 0 225280 0
malloc-16384 16384 8 5 429 0 1 212992 0
mbuf_packet 256 70 692 3657 0 254 195072 0
malloc-128 128 1451 68 28852 0 126 194432 0
UMA Zones 768 240 4 240 0 16 187392 0
malloc-32 32 5331 339 6172 0 254 181440 0
tcp_bbr_map 128 2 1393 14317 0 126 178560 0
FPU_save_area 832 146 52 1147 0 16 164736 0
MAP ENTRY 96 1255 383 64442 0 126 157248 0
malloc-2048 2048 6 66 1038 0 8 147456 0
malloc-1024 1024 133 11 150 0 16 147456 0
malloc-128 128 1073 74 6114 0 126 146816 0
S VFS Cache 104 1003 401 1492 0 126 146016 0
FFS2 dinode 256 508 62 926 0 62 145920 0
malloc-65536 65536 0 2 66 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 0 2 8 0 1 131072 0
unpcb 256 11 499 1193 0 254 130560 0
malloc-384 384 285 45 2259 0 30 126720 0
ksiginfo 112 52 992 367 0 126 116928 0
malloc-256 256 250 185 2447 0 62 111360 0
malloc-32768 32768 1 2 121 0 1 98304 0
malloc-32768 32768 3 0 3 0 1 98304 0
malloc-4096 4096 22 2 33 0 2 98304 0
malloc-2048 2048 14 34 1299 0 8 98304 0
malloc-256 256 271 104 1626 0 62 96000 0
PROC 1376 54 12 1306 0 8 90816 0
UMA Kegs 384 227 6 227 0 30 89472 0
128 Bucket 1024 63 20 340 0 16 84992 0
filedesc0 1072 55 22 1307 0 8 82544 0
malloc-8192 8192 8 2 10 0 1 81920 0
sctp_readq 152 0 520 315 0 254 79040 0
g_bio 408 0 180 4905 0 30 73440 0
malloc-64 64 534 537 1705 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-8192 8192 6 2 107 0 1 65536 0
malloc-256 256 33 222 318 0 62 65280 0
sctp_stream_msg_out 112 0 540 328 0 254 60480 0
tcp_inpcb 1312 5 37 320 0 8 55104 0
udp_inpcb 424 6 120 170 0 30 53424 0
64 Bucket 512 78 26 1809 0 30 53248 0
VMSPACE 616 34 50 1287 0 16 51744 0
32 Bucket 256 70 125 1625 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 15398 0 16 49152 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-8192 8192 5 1 31 0 1 49152 0
malloc-1024 1024 8 40 1604 0 16 49152 0
malloc-384 384 81 39 81 0 30 46080 0
syncache 168 0 264 4 0 254 44352 0
Files 80 183 367 9917 0 126 44000 0
malloc-4096 4096 5 5 9 0 2 40960 0
malloc-4096 4096 7 3 12 0 2 40960 0
pcpu-8 8 4712 408 5218 0 254 40960 0
pipe 728 21 34 351 0 16 40040 0
da_ccb 544 0 70 1353 0 16 38080 0
malloc-64 64 52 515 332 0 254 36288 0
malloc-64 64 66 501 14316 0 254 36288 0
malloc-64 64 75 492 2094 0 254 36288 0
malloc-64 64 132 435 2042 0 254 36288 0
malloc-64 64 286 281 1582 0 254 36288 0
malloc-64 64 178 389 243 0 254 36288 0
tcp_rack_map 128 0 279 64 0 126 35712 0
malloc-128 128 23 256 522 0 126 35712 0
malloc-128 128 32 247 95 0 126 35712 0
malloc-128 128 138 141 720 0 126 35712 0
malloc-128 128 58 221 202 0 126 35712 0
malloc-128 128 59 220 313 0 126 35712 0
routing nhops 256 27 108 34 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 52 38 79 0 30 34560 0
malloc-384 384 47 43 50 0 30 34560 0
malloc-256 256 8 127 509 0 62 34560 0
malloc-256 256 58 77 364 0 62 34560 0
malloc-256 256 85 50 895 0 62 34560 0
malloc-256 256 17 118 278 0 62 34560 0
tcp_rack_pcb 1024 0 32 13 0 16 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-2048 2048 11 5 113 0 8 32768 0
malloc-2048 2048 3 13 3 0 8 32768 0
malloc-2048 2048 3 13 111 0 8 32768 0
malloc-2048 2048 4 12 28 0 8 32768 0
malloc-2048 2048 0 16 50 0 8 32768 0
malloc-2048 2048 9 7 200 0 8 32768 0
malloc-1024 1024 0 32 6 0 16 32768 0
malloc-1024 1024 10 22 11 0 16 32768 0
malloc-1024 1024 10 22 391 0 16 32768 0
malloc-1024 1024 5 27 176 0 16 32768 0
malloc-1024 1024 10 22 10 0 16 32768 0
malloc-1024 1024 3 29 3 0 16 32768 0
malloc-512 512 15 49 73 0 30 32768 0
malloc-512 512 0 64 132 0 30 32768 0
malloc-512 512 2 62 285 0 30 32768 0
malloc-512 512 4 60 53 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
PWD 40 18 790 504 0 254 32320 0
KNOTE 160 28 172 4225 0 62 32000 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 26 238 38 0 126 31680 0
clpbuf 2624 0 12 28 0 4 31488 0
tcp_bbr_pcb 832 1 35 274 0 16 29952 0
sctp_laddr 48 1 587 347 0 254 28224 0
malloc-32 32 283 599 4425 0 254 28224 0
16 Bucket 144 63 133 291 0 62 28224 0
4 Bucket 48 6 582 8 0 254 28224 0
TURNSTILE 136 169 20 169 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
ripcb 392 2 61 8 0 30 24696 0
malloc-4096 4096 2 4 5 0 2 24576 0
malloc-4096 4096 4 2 754 0 2 24576 0
rl_entry 40 40 566 40 0 254 24240 0
rtentry 168 30 114 34 0 62 24192 0
8 Bucket 80 61 239 662 0 126 24000 0
itimer 352 0 66 4 0 30 23232 0
malloc-384 384 1 59 346 0 30 23040 0
malloc-384 384 22 38 23 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 169 87 169 0 126 22528 0
hostcache 64 2 313 2 0 254 20160 0
udp_inpcb ports 32 3 627 33 0 254 20160 0
tcp_inpcb ports 32 3 627 271 0 254 20160 0
ertt 72 5 275 320 0 126 20160 0
malloc-32 32 34 596 195 0 254 20160 0
malloc-32 32 76 554 618 0 254 20160 0
malloc-32 32 96 534 1813 0 254 20160 0
malloc-32 32 144 486 1770 0 254 20160 0
malloc-32 32 79 551 144 0 254 20160 0
malloc-32 32 16 614 17 0 254 20160 0
2 Bucket 32 58 572 362 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-512 512 2 30 2 0 30 16384 0
malloc-512 512 0 32 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
AIO 208 0 76 4 0 62 15808 0
kenv 258 17 43 1076 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
vtnet_tx_hdr 24 0 501 8749 0 254 12024 0
malloc-16 16 43 707 1868 0 254 12000 0
malloc-16 16 15 735 170 0 254 12000 0
malloc-16 16 70 680 1394 0 254 12000 0
malloc-16 16 42 708 2249 0 254 12000 0
malloc-16 16 35 715 163 0 254 12000 0
malloc-16 16 285 465 28032 0 254 12000 0
malloc-16 16 7 743 9 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
AIOLIO 272 0 42 4 0 30 11424 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
AIOCB 552 0 0 0 0 16 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 232 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot
Dec 5, 2023, 4:41:25 AM12/5/23
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: 62d47a4db457 vmstat: fix column names broken in c168508655..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=17ad579ae80000
dashboard link: https://syzkaller.appspot.com/bug?extid=ca5f2aa0fda15dcfe6d7
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=15c94c6ae80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=13886c22e80000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ca5f2a...@syzkaller.appspotmail.com
panic: Assertion !(tp->t_flags2 & TF2_HPTS_CPU_SET) failed at /syzkaller/managers/main/kernel/sys/netinet/tcp_hpts.c:553
cpuid = 0
time = 1701769118
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a6e3f90
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a6e40f0
vpanic() at vpanic+0x271/frame 0xfffffe006a6e4290
panic() at panic+0xb5/frame 0xfffffe006a6e4350
tcp_hpts_init() at tcp_hpts_init+0xc5/frame 0xfffffe006a6e4370
rack_init() at rack_init+0x11a/frame 0xfffffe006a6e47b0
tcp_ctloutput_set() at tcp_ctloutput_set+0x66b/frame 0xfffffe006a6e4930
tcp_ctloutput() at tcp_ctloutput+0x137/frame 0xfffffe006a6e4a30
sosetopt() at sosetopt+0x227/frame 0xfffffe006a6e4b90
kern_setsockopt() at kern_setsockopt+0x257/frame 0xfffffe006a6e4cc0
sys_setsockopt() at sys_setsockopt+0x77/frame 0xfffffe006a6e4d10
amd64_syscall() at amd64_syscall+0x47a/frame 0xfffffe006a6e4f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe006a6e4f30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x23413a, rsp = 0x8210bd8f8, rbp = 0x8210bd950 ---
KDB: enter: panic
[ thread pid 774 tid 100118 ]
rdx 0xdffff7c000000000
rbx 0xffffffff826edae0 .str.28
rsp 0xfffffe006a6e40d0
rbp 0xfffffe006a6e40f0
rsi 0x1
rdi 0
r8 0
r9 0xffffffff
r10 0xa0d433cc
r11 0xe02e8738
r12 0
r13 0xfffffe006d2a6000
ABI: FreeBSD ELF64
flag: 0x10000000 flag2: 0
arguments: ./syz-executor141545856
(map 0xfffffe0058b2b9a0)
(map.pmap 0xfffffe0058b2ba60)
(pmap 0xfffffe0058b2bad0)
threads: 1
100118 Run CPU 0 syz-executor1415458
773 771 771 0 S nanslp 0xffffffff8373c3c1 syz-executor1415458
771 769 771 0 Ss pause 0xfffffe006d29f0b0 csh
769 682 769 0 Ss select 0xfffffe0007876940 sshd
746 1 746 0 Ss+ ttyin 0xfffffe00543978b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe005750bcb0 getty
744 1 744 0 Ss+ ttyin 0xfffffe005750c4b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe005750ccb0 getty
742 1 742 0 Ss+ ttyin 0xfffffe00543980b0 getty
423 1 423 65 Ss select 0xfffffe0057921a40 dhclient
338 1 338 0 Ss select 0xfffffe0057921ec0 dhclient
335 1 335 0 Ss select 0xfffffe00579218c0 dhclient
100094 D sdflush 0xfffffe0058c05ce8 [/ worker]
5 0 0 0 DL waiting 0xffffffff8440a4e0 [sctp_iterator]
100032 I [swi1: hpts]
100033 L *tcpinp 0xfffffe0007885a80 [swi1: hpts]
100066 D - 0xffffffff826f2d40 [deadlkres]
exclusive rw tcpinp (tcpinp) r = 0 (0xfffffe006ce5a020) locked @ /syzkaller/managers/main/kernel/sys/netinet/tcp_usrreq.c:1702
vfscache 3 1025K 3
pcb 23 669K 42
inodedep 49 530K 71
pagedep 14 132K 18
DEVFS1 105 105K 114
kdtrace 160 33K 894
DEVFS3 124 31K 134
msg 4 30K 4
ifaddr 30 12K 32
GEOM 61 11K 481
routetbl 50 11K 176
plimit 17 5K 322
ifnet 3 5K 3
evdev 4 4K 4
acpisem 28 4K 28
ether_multi 40 4K 50
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
kqueue 41 3K 777
pwddesc 41 3K 775
session 20 3K 31
clone 9 3K 9
uidinfo 3 3K 8
proc-args 63 3K 1697
selfd 27 2K 12996
Unitno 27 2K 41
msi 12 2K 12
softdep 1 1K 1
vnodemarker 2 1K 8
indirdep 3 1K 3
nhops 6 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
cdev 2 1K 2
osd 9 1K 21
sctp_ifn 2 1K 6
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
loginclass 3 1K 7
pmchooks 1 1K 1
filecaps 4 1K 66
tun 3 1K 3
sctp_vrf 1 1K 1
freework 1 1K 26
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_atky 0 0K 0
sctp_atcl 0 0K 0
sctp_a_it 0 0K 4
sctp_aadr 0 0K 0
sctp_stro 0 0K 0
sctp_stri 0 0K 0
sctp_map 0 0K 0
tcp_fsb 0 0K 0
savedino 0 0K 15
freeblks 0 0K 25
freefrag 0 0K 1
ip6opt 0 0K 3
cl_savebuf 0 0K 3
aio 0 0K 0
lio 0 0K 0
ioctlops 0 0K 86
tcp_log_dev 0 0K 0
mbuf_jumbo_page 4096 8336 1062 15656 0 254 38494208 0
mbuf 256 8618 1044 19107 0 254 2473472 0
BUF TRIE 144 192 11624 539 0 62 1701504 0
malloc-384 384 4118 52 4119 0 30 1601280 0
malloc-128 128 11749 248 11841 0 126 1535616 0
malloc-4096 4096 327 3 489 0 2 1351680 0
UMA Slabs 0 112 10755 3 10755 0 126 1204896 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 15583 80 15583 0 254 877128 0
FFS inode 1168 499 19 508 0 8 605024 0
malloc-2048 2048 6 266 1038 0 8 557056 0
socket 960 19 489 1315 0 254 487680 0
malloc-256 256 1070 55 1861 0 62 288000 0
256 Bucket 2048 119 17 976 0 8 278528 0
VM OBJECT 264 931 59 14134 0 30 261360 0
VNODE 448 529 11 540 0 30 241920 0
malloc-16 16 14620 130 17611 0 254 236000 0
THREAD 1824 118 10 118 0 8 233472 0
DEVCTL 1024 0 220 123 0 0 225280 0
malloc-4096 4096 41 3 775 0 2 180224 0
malloc-128 128 1211 184 28428 0 126 178560 0
malloc-1024 1024 129 15 138 0 16 147456 0
malloc-128 128 976 171 5117 0 126 146816 0
FFS2 dinode 256 499 71 508 0 62 145920 0
MAP ENTRY 96 905 481 40290 0 126 133056 0
malloc-65536 65536 0 2 46 0 1 131072 0
mbuf_packet 256 0 508 117 0 254 130048 0
S VFS Cache 104 966 204 1005 0 126 121680 0
FPU_save_area 832 120 24 132 0 16 119808 0
ksiginfo 112 41 1003 56 0 126 116928 0
128 Bucket 1024 46 37 254 0 16 84992 0
malloc-64 64 534 537 1679 0 254 68544 0
malloc-8192 8192 6 1 107 0 1 57344 0
filedesc0 1072 41 8 775 0 8 52528 0
32 Bucket 256 58 137 2110 0 62 49920 0
malloc-1024 1024 8 40 1412 0 16 49152 0
udp_inpcb 424 6 84 128 0 30 38160 0
da_ccb 544 0 70 1255 0 16 38080 0
pcpu-8 8 4271 337 4299 0 254 36864 0
64 Bucket 512 66 6 946 0 30 36864 0
malloc-64 64 47 520 275 0 254 36288 0
malloc-64 64 14 553 13248 0 254 36288 0
malloc-64 64 60 507 1409 0 254 36288 0
malloc-64 64 66 501 838 0 254 36288 0
malloc-64 64 264 303 1038 0 254 36288 0
malloc-64 64 116 451 121 0 254 36288 0
tcp_bbr_map 128 8 271 10 0 126 35712 0
malloc-128 128 7 272 71 0 126 35712 0
malloc-128 128 29 250 39 0 126 35712 0
malloc-128 128 76 203 166 0 126 35712 0
malloc-128 128 58 221 200 0 126 35712 0
malloc-384 384 60 30 83 0 30 34560 0
malloc-384 384 34 56 37 0 30 34560 0
malloc-256 256 2 133 103 0 62 34560 0
malloc-256 256 30 105 321 0 62 34560 0
malloc-256 256 61 74 500 0 62 34560 0
malloc-256 256 30 105 393 0 62 34560 0
malloc-256 256 17 118 115 0 62 34560 0
malloc-256 256 13 122 269 0 62 34560 0
malloc-2048 2048 2 14 2 0 8 32768 0
malloc-2048 2048 5 11 14 0 8 32768 0
malloc-2048 2048 5 11 196 0 8 32768 0
malloc-1024 1024 0 32 4 0 16 32768 0
malloc-1024 1024 5 27 175 0 16 32768 0
malloc-512 512 0 64 127 0 30 32768 0
malloc-512 512 1 63 11 0 30 32768 0
clpbuf 2624 0 12 26 0 4 31488 0
VMSPACE 616 24 24 759 0 16 29568 0
malloc-32 32 283 599 4423 0 254 28224 0
16 Bucket 144 50 146 256 0 62 28224 0
4 Bucket 48 6 582 10 0 254 28224 0
TURNSTILE 136 129 60 129 0 62 25704 0
ertt_txseginfo 40 8 598 303 0 254 24240 0
rl_entry 40 33 573 33 0 254 24240 0
PWD 40 10 596 99 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
Files 80 72 228 6514 0 126 24000 0
8 Bucket 80 71 229 299 0 126 24000 0
tcp_inpcb 1312 4 14 8 0 8 23616 0
hostcache 64 1 314 1 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
tcp_inpcb ports 32 2 628 2 0 254 20160 0
ertt 72 4 276 8 0 126 20160 0
malloc-32 32 28 602 177 0 254 20160 0
malloc-32 32 54 576 197 0 254 20160 0
malloc-32 32 37 593 43 0 254 20160 0
malloc-32 32 74 556 129 0 254 20160 0
kenv 258 17 43 1069 0 30 15480 0
tcp_bbr_pcb 832 1 17 1 0 16 14976 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 22 728 1220 0 254 12000 0
malloc-16 16 15 735 47 0 254 12000 0
malloc-16 16 42 708 249 0 254 12000 0
malloc-16 16 24 726 39 0 254 12000 0
malloc-16 16 31 719 158 0 254 12000 0
malloc-16 16 284 466 28025 0 254 12000 0
malloc-16 16 7 493 9 0 254 8000 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
tcp_rack_map 128 0 0 0 0 126 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1176 0 0 0 0 254 0 0
AIOLIO 272 0 0 0 0 30 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-4096 4096 0 0 0 0 2 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
HEAD commit: 62d47a4db457 vmstat: fix column names broken in c168508655..
git tree: freebsd-src
dashboard link: https://syzkaller.appspot.com/bug?extid=ca5f2aa0fda15dcfe6d7
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=15c94c6ae80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=13886c22e80000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+ca5f2a...@syzkaller.appspotmail.com
panic: Assertion !(tp->t_flags2 & TF2_HPTS_CPU_SET) failed at /syzkaller/managers/main/kernel/sys/netinet/tcp_hpts.c:553
cpuid = 0
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a6e3f90
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a6e40f0
vpanic() at vpanic+0x271/frame 0xfffffe006a6e4290
panic() at panic+0xb5/frame 0xfffffe006a6e4350
tcp_hpts_init() at tcp_hpts_init+0xc5/frame 0xfffffe006a6e4370
rack_init() at rack_init+0x11a/frame 0xfffffe006a6e47b0
tcp_ctloutput_set() at tcp_ctloutput_set+0x66b/frame 0xfffffe006a6e4930
tcp_ctloutput() at tcp_ctloutput+0x137/frame 0xfffffe006a6e4a30
sosetopt() at sosetopt+0x227/frame 0xfffffe006a6e4b90
kern_setsockopt() at kern_setsockopt+0x257/frame 0xfffffe006a6e4cc0
sys_setsockopt() at sys_setsockopt+0x77/frame 0xfffffe006a6e4d10
amd64_syscall() at amd64_syscall+0x47a/frame 0xfffffe006a6e4f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe006a6e4f30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x23413a, rsp = 0x8210bd8f8, rbp = 0x8210bd950 ---
KDB: enter: panic
[ thread pid 774 tid 100118 ]
Stopped at kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe00033eee30
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rdx 0xdffff7c000000000
rbx 0xffffffff826edae0 .str.28
rsp 0xfffffe006a6e40d0
rbp 0xfffffe006a6e40f0
rsi 0x1
rdi 0
r8 0
r9 0xffffffff
r10 0xa0d433cc
r11 0xe02e8738
r12 0
r13 0xfffffe006d2a6000
r14 0xffffffff826edae0 .str.28
r15 0
rip 0xffffffff815c796e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db> show proc
Process 774 (syz-executor1415458) at 0xfffffe006cdea5c0:
r15 0
rip 0xffffffff815c796e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x21936a7(%rip)
db> show proc
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 773 at 0xfffffe0058e3a000
uid: 0 gids: 0, 0, 5
ABI: FreeBSD ELF64
flag: 0x10000000 flag2: 0
arguments: ./syz-executor141545856
reaper: 0xfffffe0054250040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0058b2b9a0
sigparent: 20
(map 0xfffffe0058b2b9a0)
(map.pmap 0xfffffe0058b2ba60)
(pmap 0xfffffe0058b2bad0)
threads: 1
100118 Run CPU 0 syz-executor1415458
db> ps
pid ppid pgrp uid state wmesg wchan cmd
774 773 771 0 R CPU 0 syz-executor1415458
pid ppid pgrp uid state wmesg wchan cmd
773 771 771 0 S nanslp 0xffffffff8373c3c1 syz-executor1415458
771 769 771 0 Ss pause 0xfffffe006d29f0b0 csh
769 682 769 0 Ss select 0xfffffe0007876940 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00574f48b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe005750b4b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00543978b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe005750bcb0 getty
744 1 744 0 Ss+ ttyin 0xfffffe005750c4b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe005750ccb0 getty
742 1 742 0 Ss+ ttyin 0xfffffe00543980b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe00543988b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe00543990b0 getty
738 1 18 0 S+ piperd 0xfffffe0058b276c0 logger
740 1 740 0 Ss+ ttyin 0xfffffe00543990b0 getty
737 736 18 0 S+ nanslp 0xffffffff8373c3c0 sleep
736 1 18 0 S+ wait 0xfffffe0057a52060 sh
686 1 686 0 Ss nanslp 0xffffffff8373c3c0 cron
682 1 682 0 Ss select 0xfffffe0007876a40 sshd
495 1 495 0 Ss select 0xfffffe0007877040 syslogd
424 1 424 0 Ss select 0xfffffe00078772c0 devd
423 1 423 65 Ss select 0xfffffe0057921a40 dhclient
338 1 338 0 Ss select 0xfffffe0057921ec0 dhclient
335 1 335 0 Ss select 0xfffffe00579218c0 dhclient
17 0 0 0 DL syncer 0xffffffff83859b20 [syncer]
16 0 0 0 DL vlruwt 0xfffffe005720e040 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83858100 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100079 D psleep 0xffffffff83858100 [bufdaemon]
100094 D sdflush 0xfffffe0058c05ce8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838cad40 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff838b2bb8 [dom0]
100080 D launds 0xffffffff838b2bc4 [laundry: dom0]
100081 D umarcl 0xffffffff81d5a950 [uma]
7 0 0 0 DL - 0xffffffff834b9c10 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff840a7a30 [pf purge]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff838b2bb8 [dom0]
100080 D launds 0xffffffff838b2bc4 [laundry: dom0]
100081 D umarcl 0xffffffff81d5a950 [uma]
7 0 0 0 DL - 0xffffffff834b9c10 [rand_harvestq]
5 0 0 0 DL waiting 0xffffffff8440a4e0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff83484340 [doneq0]
100045 D - 0xffffffff834842c0 [async]
100076 D - 0xffffffff83484140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff838ae3e0 [crypto]
100042 D crypto_ 0xfffffe00571b2030 [crypto returns 0]
100043 D crypto_ 0xfffffe00571b2080 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe00085f4488 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836e4d20 [g_event]
100036 D - 0xffffffff836e4d40 [g_up]
100037 D - 0xffffffff836e4d60 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
12 0 0 0 LL (threaded) [intr]
100044 D - 0xffffffff83484340 [doneq0]
100045 D - 0xffffffff834842c0 [async]
100076 D - 0xffffffff83484140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100041 D crypto_ 0xffffffff838ae3e0 [crypto]
100042 D crypto_ 0xfffffe00571b2030 [crypto returns 0]
100043 D crypto_ 0xfffffe00571b2080 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe00085f4488 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836e4d20 [g_event]
100036 D - 0xffffffff836e4d40 [g_up]
100037 D - 0xffffffff836e4d60 [g_down]
2 0 0 0 WL (threaded) [clock]
100029 I [clock (0)]
100030 I [clock (1)]
100012 I [swi6: task queue]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100031 L *tcpinp 0xfffffe0007885a80 [swi1: netisr 0]
100013 I [swi6: Giant taskq]
100015 I [swi5: fast taskq]
100032 I [swi1: hpts]
100033 L *tcpinp 0xfffffe0007885a80 [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 Run CPU 1 [idle: cpu1]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100070 D - 0xfffffe005798ec00 [acpi_task_0]
100071 D - 0xfffffe005798ec00 [acpi_task_1]
100072 D - 0xfffffe005798ec00 [acpi_task_2]
100074 D - 0xfffffe00085fa100 [mca taskq]
100075 D - 0xfffffe00085f8c00 [CAM taskq]
db> show all locks
Process 774 (syz-executor1415458) thread 0xfffffe006d2a6000 (100118)
100071 D - 0xfffffe005798ec00 [acpi_task_1]
100072 D - 0xfffffe005798ec00 [acpi_task_2]
100074 D - 0xfffffe00085fa100 [mca taskq]
100075 D - 0xfffffe00085f8c00 [CAM taskq]
db> show all locks
exclusive rw tcpinp (tcpinp) r = 0 (0xfffffe006ce5a020) locked @ /syzkaller/managers/main/kernel/sys/netinet/tcp_usrreq.c:1702
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4217
sysctloid 34934 2059K 35005
vtbuf 24 1968K 46
kobj 326 1304K 488
newblk 829 1231K 841
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4192 4324K 4217
sysctloid 34934 2059K 35005
vtbuf 24 1968K 46
kobj 326 1304K 488
vfscache 3 1025K 3
pcb 23 669K 42
inodedep 49 530K 71
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vnet_data 2 224K 2
acpitask 1 224K 1
subproc 108 190K 842
acpitask 1 224K 1
acpica 1674 184K 60830
tidhash 3 141K 3
vmem 3 134K 4
tidhash 3 141K 3
pagedep 14 132K 18
linker 352 130K 386
tfo_ccache 1 128K 1
IP reass 1 128K 1
sem 4 106K 4
tfo_ccache 1 128K 1
IP reass 1 128K 1
DEVFS1 105 105K 114
gtaskqueue 18 98K 18
bus 985 81K 5155
mtx_pool 2 72K 2
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 512 64K 512
ddb_capture 1 64K 1
temp 18 37K 1566
bus 985 81K 5155
mtx_pool 2 72K 2
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 512 64K 512
ddb_capture 1 64K 1
kdtrace 160 33K 894
hostcache 1 32K 1
shm 1 32K 1
umtx 256 32K 256
shm 1 32K 1
DEVFS3 124 31K 134
msg 4 30K 4
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
BPF 10 18K 10
DEVFS_RULE 56 20K 56
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
proc 3 17K 3
tty 16 16K 16
ithread 97 16K 97
bus-sc 34 15K 1687
bus-sc 34 15K 1687
eventhandler 161 14K 161
KTRACE 100 13K 100
kenv 95 12K 95
KTRACE 100 13K 100
ifaddr 30 12K 32
GEOM 61 11K 481
routetbl 50 11K 176
rman 86 11K 429
CAM queue 5 11K 1528
bmsafemap 4 9K 40
CAM queue 5 11K 1528
rpc 4 9K 4
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 238 8K 300
taskqueue 63 7K 63
sglist 6 7K 6
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 238 8K 300
taskqueue 63 7K 63
sglist 6 7K 6
CAM DEV 3 6K 510
cred 23 6K 274
pfs_nodes 20 5K 20
hhook 15 5K 17
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 268 5K 268
dirrem 17 5K 28
UMA 268 5K 268
plimit 17 5K 322
ifnet 3 5K 3
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
filedesc 1 4K 1
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
acpisem 28 4K 28
ether_multi 40 4K 50
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
kqueue 41 3K 777
pwddesc 41 3K 775
session 20 3K 31
clone 9 3K 9
uidinfo 3 3K 8
proc-args 63 3K 1697
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
io_apic 1 2K 1
selfd 27 2K 12996
Unitno 27 2K 41
CAM XPT 22 2K 543
lockf 15 2K 22
msi 12 2K 12
toponodes 6 2K 6
ipsecpolicy 2 2K 2
acpidev 20 2K 20
ipsecpolicy 2 2K 2
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
CC Mem 4 1K 8
secasvar 1 1K 1
vnodemarker 2 1K 8
NFSD session 1 1K 1
select 7 1K 29
CAM periph 4 1K 271
ipsec 3 1K 3
indirdep 3 1K 3
nhops 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
cdev 2 1K 2
osd 9 1K 21
netlink 2 1K 2
chacha20random 1 1K 1
biobuf 1 1K 1
inpcbpolicy 11 1K 140
chacha20random 1 1K 1
biobuf 1 1K 1
sctp_ifn 2 1K 6
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFSP 4 1K 9
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
CAM SIM 2 1K 2
feeder 7 1K 7
loginclass 3 1K 7
prison 6 1K 6
lkpikmalloc 5 1K 6
cryptodev 2 1K 49
lkpikmalloc 5 1K 6
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
procdesc 1 1K 6
apmdev 1 1K 1
atkbddev 2 1K 2
pmchooks 1 1K 1
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
soname 4 1K 3330
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
filecaps 4 1K 66
tun 3 1K 3
sctp_vrf 1 1K 1
freework 1 1K 26
vnet 1 1K 1
pmc 1 1K 1
entropy 2 1K 35
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
filemon 0 0K 0
esp 0 0K 0
ah 0 0K 0
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_athm 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_atky 0 0K 0
sctp_atcl 0 0K 0
sctp_a_it 0 0K 4
sctp_aadr 0 0K 0
sctp_stro 0 0K 0
sctp_stri 0 0K 0
sctp_map 0 0K 0
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
tcp_do 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
tcp_fsb 0 0K 0
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 2
jfsync 0 0K 0
jtrunc 0 0K 0
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefile 0 0K 9
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freeblks 0 0K 25
freefrag 0 0K 1
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
LRO 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
aio 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 13554
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
ioctlops 0 0K 86
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 649
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
kcovinfo 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
cache 0 0K 0
mbuf 256 8618 1044 19107 0 254 2473472 0
BUF TRIE 144 192 11624 539 0 62 1701504 0
malloc-384 384 4118 52 4119 0 30 1601280 0
malloc-128 128 11749 248 11841 0 126 1535616 0
malloc-4096 4096 327 3 489 0 2 1351680 0
UMA Slabs 0 112 10755 3 10755 0 126 1204896 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 15583 80 15583 0 254 877128 0
FFS inode 1168 499 19 508 0 8 605024 0
malloc-2048 2048 6 266 1038 0 8 557056 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
RADIX NODE 144 3298 197 23651 0 62 503280 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
socket 960 19 489 1315 0 254 487680 0
malloc-65536 65536 6 0 6 0 1 393216 0
malloc-64 64 4290 561 17470 0 254 310464 0
malloc-256 256 1070 55 1861 0 62 288000 0
256 Bucket 2048 119 17 976 0 8 278528 0
VM OBJECT 264 931 59 14134 0 30 261360 0
VNODE 448 529 11 540 0 30 241920 0
malloc-16 16 14620 130 17611 0 254 236000 0
THREAD 1824 118 10 118 0 8 233472 0
DEVCTL 1024 0 220 123 0 0 225280 0
UMA Zones 768 240 4 240 0 16 187392 0
malloc-32 32 5331 339 6101 0 254 181440 0
malloc-4096 4096 41 3 775 0 2 180224 0
malloc-128 128 1211 184 28428 0 126 178560 0
malloc-1024 1024 129 15 138 0 16 147456 0
malloc-128 128 976 171 5117 0 126 146816 0
FFS2 dinode 256 499 71 508 0 62 145920 0
MAP ENTRY 96 905 481 40290 0 126 133056 0
malloc-65536 65536 0 2 46 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 0 2 8 0 1 131072 0
unpcb 256 7 503 1158 0 254 130560 0
malloc-65536 65536 0 2 8 0 1 131072 0
mbuf_packet 256 0 508 117 0 254 130048 0
S VFS Cache 104 966 204 1005 0 126 121680 0
FPU_save_area 832 120 24 132 0 16 119808 0
ksiginfo 112 41 1003 56 0 126 116928 0
malloc-32768 32768 1 2 121 0 1 98304 0
malloc-32768 32768 3 0 3 0 1 98304 0
PROC 1376 40 26 774 0 8 90816 0
malloc-32768 32768 3 0 3 0 1 98304 0
UMA Kegs 384 227 6 227 0 30 89472 0
g_bio 408 0 210 4489 0 30 85680 0
128 Bucket 1024 46 37 254 0 16 84992 0
malloc-8192 8192 8 2 10 0 1 81920 0
malloc-4096 4096 18 0 29 0 2 73728 0
malloc-64 64 534 537 1679 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-256 256 208 47 462 0 62 65280 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-8192 8192 6 1 107 0 1 57344 0
filedesc0 1072 41 8 775 0 8 52528 0
32 Bucket 256 58 137 2110 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 12073 0 16 49152 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-8192 8192 4 2 30 0 1 49152 0
malloc-1024 1024 8 40 1412 0 16 49152 0
malloc-384 384 81 39 81 0 30 46080 0
syncache 168 0 264 5 0 254 44352 0
malloc-4096 4096 7 3 12 0 2 40960 0
pipe 728 7 48 282 0 16 40040 0
udp_inpcb 424 6 84 128 0 30 38160 0
da_ccb 544 0 70 1255 0 16 38080 0
pcpu-8 8 4271 337 4299 0 254 36864 0
64 Bucket 512 66 6 946 0 30 36864 0
malloc-64 64 47 520 275 0 254 36288 0
malloc-64 64 14 553 13248 0 254 36288 0
malloc-64 64 60 507 1409 0 254 36288 0
malloc-64 64 66 501 838 0 254 36288 0
malloc-64 64 264 303 1038 0 254 36288 0
malloc-64 64 116 451 121 0 254 36288 0
tcp_bbr_map 128 8 271 10 0 126 35712 0
malloc-128 128 7 272 71 0 126 35712 0
malloc-128 128 29 250 39 0 126 35712 0
malloc-128 128 76 203 166 0 126 35712 0
malloc-128 128 58 221 200 0 126 35712 0
malloc-128 128 59 220 313 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 52 38 71 0 30 34560 0
malloc-384 384 60 30 83 0 30 34560 0
malloc-384 384 34 56 37 0 30 34560 0
malloc-256 256 2 133 103 0 62 34560 0
malloc-256 256 30 105 321 0 62 34560 0
malloc-256 256 61 74 500 0 62 34560 0
malloc-256 256 30 105 393 0 62 34560 0
malloc-256 256 17 118 115 0 62 34560 0
malloc-256 256 13 122 269 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-4096 4096 4 4 754 0 2 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-2048 2048 2 14 2 0 8 32768 0
malloc-2048 2048 3 13 3 0 8 32768 0
malloc-2048 2048 2 14 39 0 8 32768 0
malloc-2048 2048 5 11 14 0 8 32768 0
malloc-2048 2048 0 16 50 0 8 32768 0
malloc-2048 2048 7 9 7 0 8 32768 0
malloc-2048 2048 5 11 196 0 8 32768 0
malloc-1024 1024 0 32 4 0 16 32768 0
malloc-1024 1024 10 22 11 0 16 32768 0
malloc-1024 1024 4 28 8 0 16 32768 0
malloc-1024 1024 5 27 175 0 16 32768 0
malloc-1024 1024 10 22 10 0 16 32768 0
malloc-1024 1024 3 29 3 0 16 32768 0
malloc-512 512 13 51 19 0 30 32768 0
malloc-1024 1024 3 29 3 0 16 32768 0
malloc-512 512 0 64 127 0 30 32768 0
malloc-512 512 1 63 11 0 30 32768 0
malloc-512 512 4 60 53 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 20 244 31 0 126 31680 0
clpbuf 2624 0 12 26 0 4 31488 0
VMSPACE 616 24 24 759 0 16 29568 0
malloc-32 32 283 599 4423 0 254 28224 0
16 Bucket 144 50 146 256 0 62 28224 0
4 Bucket 48 6 582 10 0 254 28224 0
TURNSTILE 136 129 60 129 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
malloc-4096 4096 5 1 5 0 2 24576 0
ertt_txseginfo 40 8 598 303 0 254 24240 0
rl_entry 40 33 573 33 0 254 24240 0
PWD 40 10 596 99 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
Files 80 72 228 6514 0 126 24000 0
8 Bucket 80 71 229 299 0 126 24000 0
tcp_inpcb 1312 4 14 8 0 8 23616 0
malloc-384 384 1 59 346 0 30 23040 0
malloc-384 384 4 56 4 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 129 127 129 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
tcp_inpcb ports 32 2 628 2 0 254 20160 0
ertt 72 4 276 8 0 126 20160 0
malloc-32 32 28 602 177 0 254 20160 0
malloc-32 32 54 576 197 0 254 20160 0
malloc-32 32 37 593 43 0 254 20160 0
malloc-32 32 74 556 129 0 254 20160 0
malloc-32 32 16 614 17 0 254 20160 0
2 Bucket 32 48 582 290 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-512 512 2 30 2 0 30 16384 0
malloc-512 512 0 32 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
sctp_laddr 48 0 336 4 0 254 16128 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-512 512 2 30 2 0 30 16384 0
malloc-512 512 0 32 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
kenv 258 17 43 1069 0 30 15480 0
tcp_bbr_pcb 832 1 17 1 0 16 14976 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
ripcb 392 1 35 4 0 30 14112 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
malloc-32 32 89 289 584 0 254 12096 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 22 728 1220 0 254 12000 0
malloc-16 16 15 735 47 0 254 12000 0
malloc-16 16 42 708 249 0 254 12000 0
malloc-16 16 24 726 39 0 254 12000 0
malloc-16 16 31 719 158 0 254 12000 0
malloc-16 16 284 466 28025 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 1 1 2 0 2 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
vtnet_tx_hdr 24 0 334 2454 0 254 8016 0
malloc-16 16 7 493 9 0 254 8000 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1176 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcpreass 48 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
itimer 352 0 0 0 0 30 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
ripcb ports 32 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-4096 4096 0 0 0 0 2 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
Reply all
Reply to author
Forward
0 new messages