panic: malloc: called with spinlock or critical section held
1 view
Skip to first unread message
syzbot
Aug 28, 2023, 8:33:46 PM8/28/23
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 570688f0a5c2 spibus: Make ofw_spibus probe just a little m..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=12ede760680000
dashboard link: https://syzkaller.appspot.com/bug?extid=78258dbb02eb92157357
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+78258d...@syzkaller.appspotmail.com
panic: malloc: called with spinlock or critical section held
cpuid = 1
time = 1693269158
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0076524db0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0076524f10
vpanic() at vpanic+0x271/frame 0xfffffe00765250b0
panic() at panic+0xb5/frame 0xfffffe0076525180
malloc_dbg() at malloc_dbg+0x212/frame 0xfffffe00765251b0
malloc() at malloc+0x45/frame 0xfffffe00765251f0
aesni_cipher_crypt() at aesni_cipher_crypt+0x123/frame 0xfffffe0076525330
aesni_process() at aesni_process+0x242/frame 0xfffffe0076525370
crypto_invoke() at crypto_invoke+0x261/frame 0xfffffe00765254a0
crypto_dispatch_one() at crypto_dispatch_one+0x18c/frame 0xfffffe00765254d0
ktls_ocf_dispatch() at ktls_ocf_dispatch+0x10c/frame 0xfffffe00765255b0
ktls_ocf_tls_cbc_encrypt() at ktls_ocf_tls_cbc_encrypt+0xdc3/frame 0xfffffe0076525790
ktls_encrypt() at ktls_encrypt+0x1d4/frame 0xfffffe0076525b50
ktls_work_thread() at ktls_work_thread+0x7e2/frame 0xfffffe0076525ef0
fork_exit() at fork_exit+0xc9/frame 0xfffffe0076525f30
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe0076525f30
--- trap 0xc, rip = 0x2aef0a, rsp = 0x8205bf2d8, rbp = 0x8205bf2e0 ---
KDB: enter: panic
[ thread pid 9985 tid 115347 ]
Stopped at kdb_enter+0x6e: movq $0,0x2179507(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xffffffff815d4295 printf+0xf5
rdx 0x1
rbx 0xffffffff826da520 .str.28
rsp 0xfffffe0076524ef0
rbp 0xfffffe0076524f10
rsi 0
rdi 0xffffffff815d42f6 printf+0x156
r8 0
r9 0xffffffff
r10 0x970ac567590a8e94
r11 0
r12 0
r13 0xfffffe007574dac0
r14 0xffffffff826da520 .str.28
r15 0
rip 0xffffffff815c330e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x2179507(%rip)
db> show proc
Process 9985 (KTLS) at 0xfffffe0076614000:
state: NORMAL
uid: 0 gids: 0
parent: pid 0 at 0xffffffff836c6fa0
ABI: null
flag: 0x10000284 flag2: 0
reaper: 0xffffffff836c6fa0 reapsubtree: 9985
sigparent: 20
vmspace: 0xffffffff836c7f40
(map 0xffffffff836c7f40)
(map.pmap 0xffffffff836c8000)
(pmap 0xffffffff836c8070)
threads: 3
115347 Run CPU 1 [thr_0]
115373 D - 0xfffffe0075fdeb80 [thr_1]
115374 D - 0xffffffff8382f288 [reclaim_0]
db> ps
pid ppid pgrp uid state wmesg wchan cmd
9986 844 844 0 R CPU 0 syz-executor.1
9985 0 0 0 RL (threaded) [KTLS]
115347 Run CPU 1 [thr_0]
115373 D - 0xfffffe0075fdeb80 [thr_1]
115374 D - 0xffffffff8382f288 [reclaim_0]
9984 845 845 0 R (threaded) syz-executor.2
115362 RunQ syz-executor.2
115372 RunQ syz-executor.2
9981 843 843 0 R (threaded) syz-executor.0
115012 RunQ syz-executor.0
115370 S uwait 0xfffffe006ec7f180 syz-executor.0
9978 852 852 0 R (threaded) syz-executor.3
112744 RunQ syz-executor.3
115365 S sbwait 0xfffffe0058b4da1c syz-executor.3
115371 S uwait 0xfffffe007620f380 syz-executor.3
9686 1 852 0 S uwait 0xfffffe0075c41000 syz-executor.3
9673 1 852 0 S uwait 0xfffffe0074c47d80 syz-executor.3
9669 1 845 0 S uwait 0xfffffe0074c47780 syz-executor.2
9668 1 843 0 S uwait 0xfffffe006ec7b200 syz-executor.0
9665 1 844 0 S uwait 0xfffffe0074c47480 syz-executor.1
9664 1 852 0 S uwait 0xfffffe006ec7f100 syz-executor.3
9661 1 843 0 S uwait 0xfffffe0074c48800 syz-executor.0
9660 1 844 0 S uwait 0xfffffe0057acb880 syz-executor.1
9659 1 845 0 S uwait 0xfffffe0074c47980 syz-executor.2
9658 1 852 0 S uwait 0xfffffe0074c47880 syz-executor.3
9653 1 852 0 S uwait 0xfffffe0074c47380 syz-executor.3
9652 1 845 0 S uwait 0xfffffe0074c47e80 syz-executor.2
9651 1 844 0 S uwait 0xfffffe0074c4aa00 syz-executor.1
9650 1 843 0 S uwait 0xfffffe007620f480 syz-executor.0
9643 1 852 0 S uwait 0xfffffe0057acbd00 syz-executor.3
9633 1 844 0 S uwait 0xfffffe006ec7eb00 syz-executor.1
9632 1 852 0 S uwait 0xfffffe006ec7f380 syz-executor.3
9625 1 843 0 S uwait 0xfffffe007620ef00 syz-executor.0
9624 1 844 0 S uwait 0xfffffe007620fb00 syz-executor.1
9621 1 843 0 S uwait 0xfffffe0074c48b00 syz-executor.0
9615 1 843 0 S uwait 0xfffffe007620f580 syz-executor.0
9613 1 845 0 S uwait 0xfffffe006ec7f880 syz-executor.2
9611 1 852 0 S uwait 0xfffffe0057ac9900 syz-executor.3
9610 1 845 0 S uwait 0xfffffe0074c48380 syz-executor.2
9609 1 844 0 S uwait 0xfffffe0074c49780 syz-executor.1
9604 1 852 0 S uwait 0xfffffe0074c47180 syz-executor.3
9603 1 845 0 S uwait 0xfffffe006ec7ce80 syz-executor.2
9599 1 852 0 S uwait 0xfffffe0074c48d00 syz-executor.3
9594 1 852 0 S uwait 0xfffffe007620f080 syz-executor.3
9492 0 0 0 DL - 0xffffffff836c8420 [accounting]
8898 1 844 0 S uwait 0xfffffe0074c48c00 syz-executor.1
8892 1 844 0 S uwait 0xfffffe007620fa00 syz-executor.1
8886 1 844 0 S uwait 0xfffffe0074c47a80 syz-executor.1
8881 1 844 0 S uwait 0xfffffe006ec7c380 syz-executor.1
8751 0 0 0 DL mdwait 0xfffffe0075d6f000 [md4]
8553 1 844 0 S uwait 0xfffffe006ec7ed00 syz-executor.1
8543 1 844 0 S uwait 0xfffffe006ec7ea00 syz-executor.1
8533 1 844 0 S uwait 0xfffffe0074c48500 syz-executor.1
8519 1 844 0 S uwait 0xfffffe0074c47b80 syz-executor.1
8015 1 852 0 S uwait 0xfffffe0074c48200 syz-executor.3
8006 1 852 0 S uwait 0xfffffe006ec7f080 syz-executor.3
8001 1 852 0 S uwait 0xfffffe0074c48300 syz-executor.3
7994 1 852 0 S uwait 0xfffffe0074c48100 syz-executor.3
7631 1 852 0 S uwait 0xfffffe006ec7ec00 syz-executor.3
7630 1 845 0 S uwait 0xfffffe006ec7e900 syz-executor.2
7627 1 844 0 S uwait 0xfffffe0074c49580 syz-executor.1
7624 1 852 0 S uwait 0xfffffe0074c49e00 syz-executor.3
7622 1 845 0 S umtxn 0xfffffe006ec7f580 syz-executor.2
7621 1 844 0 S uwait 0xfffffe006ec7b000 syz-executor.1
7620 1 843 0 S uwait 0xfffffe00576b2a00 syz-executor.0
7618 1 852 0 S uwait 0xfffffe006ec7f480 syz-executor.3
7614 1 843 0 S uwait 0xfffffe0057acba00 syz-executor.0
7613 1 845 0 S uwait 0xfffffe0074c48600 syz-executor.2
7612 1 852 0 S uwait 0xfffffe0074c49a00 syz-executor.3
7608 1 844 0 S uwait 0xfffffe006ec7b100 syz-executor.1
7606 1 843 0 S uwait 0xfffffe006ec7f680 syz-executor.0
7605 1 852 0 S uwait 0xfffffe0074c49180 syz-executor.3
7603 1 845 0 S uwait 0xfffffe0074c4a580 syz-executor.2
7600 1 844 0 S uwait 0xfffffe006ec7ce00 syz-executor.1
7598 1 843 0 S uwait 0xfffffe0074c4a080 syz-executor.0
7597 1 852 0 S uwait 0xfffffe006ec81780 syz-executor.3
7596 1 845 0 S uwait 0xfffffe0074c49080 syz-executor.2
7592 1 844 0 S uwait 0xfffffe006ec7c200 syz-executor.1
7590 1 845 0 S uwait 0xfffffe006ec81580 syz-executor.2
7589 1 852 0 S uwait 0xfffffe0057acbc00 syz-executor.3
7588 1 844 0 S uwait 0xfffffe006ec7fa80 syz-executor.1
7587 1 843 0 S uwait 0xfffffe006ec7c180 syz-executor.0
7582 1 852 0 S uwait 0xfffffe0057acba80 syz-executor.3
7581 1 845 0 S uwait 0xfffffe006ec7bf00 syz-executor.2
7580 1 843 0 S uwait 0xfffffe0074c4a480 syz-executor.0
7579 1 844 0 S uwait 0xfffffe006ec81a80 syz-executor.1
7574 1 845 0 S uwait 0xfffffe006ec81b80 syz-executor.2
7573 1 844 0 S uwait 0xfffffe006ec7d280 syz-executor.1
7572 1 852 0 S uwait 0xfffffe0074c49a80 syz-executor.3
7571 1 843 0 S uwait 0xfffffe0074c4a380 syz-executor.0
7566 1 844 0 S uwait 0xfffffe0074c49280 syz-executor.1
7565 1 845 0 S uwait 0xfffffe006ec81f00 syz-executor.2
7564 1 843 0 S uwait 0xfffffe006ec80680 syz-executor.0
7559 1 843 0 S uwait 0xfffffe006ec7b180 syz-executor.0
7555 1 843 0 S uwait 0xfffffe0074c4a900 syz-executor.0
7494 1 7491 0 S uwait 0xfffffe006ec81700 syz-executor.1
7490 1 7487 0 S uwait 0xfffffe006ec81e00 syz-executor.1
7488 1 7486 0 S uwait 0xfffffe0074c49380 syz-executor.0
7485 1 7481 0 S uwait 0xfffffe0074c49480 syz-executor.2
7483 1 7480 0 S uwait 0xfffffe0074c48e00 syz-executor.1
7482 1 7478 0 S uwait 0xfffffe0074c4a600 syz-executor.0
7479 1 7469 0 S uwait 0xfffffe0074c49900 syz-executor.3
7477 1 7474 0 S uwait 0xfffffe0074c48f00 syz-executor.2
7476 1 7475 0 S uwait 0xfffffe006ec81d80 syz-executor.0
7472 1 7468 0 S uwait 0xfffffe006ec7f800 syz-executor.2
7467 1 7464 0 S uwait 0xfffffe006ec7b600 syz-executor.3
7462 1 7461 0 S uwait 0xfffffe0074c49d00 syz-executor.3
7460 1 7459 0 S uwait 0xfffffe006ec80780 syz-executor.3
3699 0 0 0 DL - 0xffffffff8382da40 [soaiod4]
3698 0 0 0 DL - 0xffffffff8382da40 [soaiod3]
3697 0 0 0 DL - 0xffffffff8382da40 [soaiod2]
3696 0 0 0 DL - 0xffffffff8382da40 [soaiod1]
3694 0 0 0 DL aiordy 0xfffffe00756b1060 [aiod4]
3693 0 0 0 DL aiordy 0xfffffe00756afae0 [aiod3]
3692 0 0 0 DL aiordy 0xfffffe0075722020 [aiod2]
3691 0 0 0 DL aiordy 0xfffffe00756aeac0 [aiod1]
3557 1 3557 65 Ss select 0xfffffe0073c2ddc0 dhclient
3061 1 845 0 S uwait 0xfffffe0057ac9f00 syz-executor.2
3060 1 843 0 S uwait 0xfffffe006ec7bd00 syz-executor.0
3055 1 843 0 S uwait 0xfffffe006ec81c80 syz-executor.0
3047 1 845 0 S uwait 0xfffffe006ec80a80 syz-executor.2
3045 1 843 0 S uwait 0xfffffe006ec81900 syz-executor.0
3043 1 845 0 S uwait 0xfffffe006ec7fc80 syz-executor.2
3042 1 844 0 S uwait 0xfffffe006ec7bb00 syz-executor.1
3039 1 852 0 S uwait 0xfffffe006ec7c780 syz-executor.3
3037 1 844 0 S uwait 0xfffffe006ec7bc00 syz-executor.1
3035 1 843 0 S uwait 0xfffffe006ec7be00 syz-executor.0
3033 1 845 0 S uwait 0xfffffe00576b0100 syz-executor.2
3031 1 852 0 S uwait 0xfffffe00576b1c80 syz-executor.3
3029 1 843 0 S uwait 0xfffffe006ec7c680 syz-executor.0
3027 1 844 0 S uwait 0xfffffe006ec7b900 syz-executor.1
3025 1 845 0 S uwait 0xfffffe006ec7cd80 syz-executor.2
3023 1 852 0 S uwait 0xfffffe0057ac8a00 syz-executor.3
3021 1 844 0 S uwait 0xfffffe006ec7dc00 syz-executor.1
3019 1 845 0 S uwait 0xfffffe006ec7cb80 syz-executor.2
3017 1 843 0 S uwait 0xfffffe006ec7fd80 syz-executor.0
3015 1 852 0 S uwait 0xfffffe006ec7cf00 syz-executor.3
3013 1 845 0 S uwait 0xfffffe00576b2b00 syz-executor.2
3011 1 843 0 S uwait 0xfffffe006ec7fb80 syz-executor.0
3009 1 844 0 S uwait 0xfffffe006ec81100 syz-executor.1
3007 1 852 0 S uwait 0xfffffe006ec7da80 syz-executor.3
3005 1 845 0 S uwait 0xfffffe006ec7c980 syz-executor.2
3003 1 844 0 S uwait 0xfffffe006ec80480 syz-executor.1
3001 1 843 0 S uwait 0xfffffe006ec7b800 syz-executor.0
2999 1 852 0 S uwait 0xfffffe006ec82880 syz-executor.3
2996 1 845 0 S uwait 0xfffffe0057ac8780 syz-executor.2
2994 1 843 0 S uwait 0xfffffe0057ac8880 syz-executor.0
2981 1 844 0 S uwait 0xfffffe0057ac8080 syz-executor.1
2976 1 844 0 S uwait 0xfffffe006ec7c580 syz-executor.1
2966 1 844 0 S uwait 0xfffffe006ec80300 syz-executor.1
2956 1 844 0 S uwait 0xfffffe006ec81d00 syz-executor.1
2782 1 2782 0 Ss select 0xfffffe0073c2e4c0 dhclient
2778 1 2778 0 Ss select 0xfffffe0073c2e840 dhclient
2734 1 2734 65 Ss select 0xfffffe0073c2e740 dhclient
2074 0 0 0 DL mdwait 0xfffffe0073c30000 [md3]
2068 0 0 0 DL mdwait 0xfffffe006cc83000 [md2]
2063 0 0 0 DL mdwait 0xfffffe0073c31000 [md1]
2057 0 0 0 DL mdwait 0xfffffe0073c24000 [md0]
2006 1 2006 0 Ss select 0xfffffe0073c2f2c0 dhclient
2001 1 2001 0 Ss select 0xfffffe0058a548c0 dhclient
1979 1 1979 65 Ss select 0xfffffe0073c2f0c0 dhclient
1439 1 1439 0 Ss select 0xfffffe0058a54ac0 dhclient
1436 1 1436 0 Ss select 0xfffffe0058a54a40 dhclient
1409 1 1409 65 Ss select 0xfffffe0058a54940 dhclient
1250 1 852 0 S uwait 0xfffffe006ec80100 syz-executor.3
1245 1 843 0 S uwait 0xfffffe006ec7d980 syz-executor.0
1239 1 852 0 S uwait 0xfffffe006ec7d380 syz-executor.3
1234 1 843 0 S uwait 0xfffffe0057ac9e00 syz-executor.0
1228 1 852 0 S uwait 0xfffffe006ec81000 syz-executor.3
1225 1 844 0 S uwait 0xfffffe00576b2c00 syz-executor.1
1223 1 843 0 S uwait 0xfffffe0057ac8600 syz-executor.0
1221 1 845 0 S uwait 0xfffffe006ec80e80 syz-executor.2
1219 1 852 0 S uwait 0xfffffe00576afe80 syz-executor.3
1217 1 844 0 S uwait 0xfffffe006ec82580 syz-executor.1
1215 1 843 0 S uwait 0xfffffe006ec80000 syz-executor.0
1213 1 845 0 S uwait 0xfffffe006ec80880 syz-executor.2
1211 1 852 0 S uwait 0xfffffe0057ac8c00 syz-executor.3
1209 1 844 0 S uwait 0xfffffe006ec80c80 syz-executor.1
1207 1 843 0 S uwait 0xfffffe006ec7d180 syz-executor.0
1205 1 845 0 S uwait 0xfffffe00576b2800 syz-executor.2
1203 1 852 0 S uwait 0xfffffe006ec80500 syz-executor.3
1201 1 844 0 S uwait 0xfffffe006ec80d80 syz-executor.1
1199 1 843 0 S uwait 0xfffffe006ec80b80 syz-executor.0
1197 1 845 0 S uwait 0xfffffe00542f5f00 syz-executor.2
1195 1 852 0 S uwait 0xfffffe006ec7dd80 syz-executor.3
1193 1 844 0 S uwait 0xfffffe00576af000 syz-executor.1
1191 1 843 0 S uwait 0xfffffe006ec7d680 syz-executor.0
1189 1 845 0 S uwait 0xfffffe00576b0d00 syz-executor.2
1188 1 852 0 S uwait 0xfffffe006ec82380 syz-executor.3
1185 1 844 0 S uwait 0xfffffe00576afd80 syz-executor.1
1183 1 843 0 S uwait 0xfffffe00576b2700 syz-executor.0
1180 1 852 0 S uwait 0xfffffe006ec80980 syz-executor.3
1179 1 845 0 S uwait 0xfffffe00576aff00 syz-executor.2
1176 1 844 0 S uwait 0xfffffe0057ac9500 syz-executor.1
1174 1 843 0 S uwait 0xfffffe00576b2f00 syz-executor.0
1172 1 845 0 S uwait 0xfffffe0057ac8700 syz-executor.2
1170 1 852 0 S uwait 0xfffffe006ec82280 syz-executor.3
1168 1 844 0 S uwait 0xfffffe006ec7dd00 syz-executor.1
1166 1 843 0 S uwait 0xfffffe00576b2900 syz-executor.0
1164 1 845 0 S uwait 0xfffffe0057ac8f00 syz-executor.2
1162 1 852 0 S uwait 0xfffffe006ec7db00 syz-executor.3
1160 1 844 0 S uwait 0xfffffe0057ac8d00 syz-executor.1
1158 1 843 0 S uwait 0xfffffe006ec7d880 syz-executor.0
1156 1 845 0 S uwait 0xfffffe006ec82480 syz-executor.2
1154 1 852 0 S uwait 0xfffffe0057ac9080 syz-executor.3
1152 1 844 0 S uwait 0xfffffe00542f5b00 syz-executor.1
1150 1 843 0 S uwait 0xfffffe00576afc80 syz-executor.0
1148 1 843 0 S uwait 0xfffffe0057ac8180 syz-executor.0
1146 1 845 0 S umtxn 0xfffffe006ec7d580 syz-executor.2
1144 1 844 0 S uwait 0xfffffe00576b2d00 syz-executor.1
1142 1 852 0 S uwait 0xfffffe00576b2e00 syz-executor.3
1140 1 845 0 S uwait 0xfffffe0057ac8b00 syz-executor.2
1138 1 843 0 S uwait 0xfffffe0057ac9180 syz-executor.0
1136 1 844 0 S uwait 0xfffffe00079c0f00 syz-executor.1
1134 1 852 0 S uwait 0xfffffe00576b1780 syz-executor.3
1131 1 845 0 S uwait 0xfffffe00576af780 syz-executor.2
1127 1 843 0 S uwait 0xfffffe0057ac9600 syz-executor.0
1125 1 852 0 S uwait 0xfffffe0057ac9d00 syz-executor.3
1113 1 852 0 S uwait 0xfffffe006ec7d780 syz-executor.3
968 1 968 0 Ss select 0xfffffe000784e140 dhclient
964 1 964 0 Ss select 0xfffffe0058a54b40 dhclient
852 768 852 0 Ss nanslp 0xffffffff8371dc01 syz-executor.3
845 768 845 0 Ss nanslp 0xffffffff8371dc01 syz-executor.2
844 768 844 0 Rs syz-executor.1
843 768 843 0 Ss nanslp 0xffffffff8371dc01 syz-executor.0
768 766 766 0 S (threaded) syz-fuzzer
100112 S uwait 0xfffffe0057ac9800 syz-fuzzer
100113 S uwait 0xfffffe00576b1280 syz-fuzzer
100114 S uwait 0xfffffe00576b1380 syz-fuzzer
100115 S wait 0xfffffe006cd68020 syz-fuzzer
100116 S uwait 0xfffffe00576af880 syz-fuzzer
100117 S uwait 0xfffffe00576af980 syz-fuzzer
100118 S wait 0xfffffe006cd68020 syz-fuzzer
100119 S wait 0xfffffe006cd68020 syz-fuzzer
100127 S wait 0xfffffe006cd68020 syz-fuzzer
100128 S uwait 0xfffffe0057ac9380 syz-fuzzer
100132 S uwait 0xfffffe00576af680 syz-fuzzer
100164 S kqread 0xfffffe00540c3a00 syz-fuzzer
110248 S uwait 0xfffffe0074c4a700 syz-fuzzer
766 764 766 0 Ss pause 0xfffffe006cd68630 csh
764 682 764 0 Ss select 0xfffffe000784e4c0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00572198b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00587f14b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00587f1cb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00587f24b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00587f2cb0 getty
743 1 743 0 Ss+ ttyin 0xfffffe005439e4b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe005439ecb0 getty
741 1 741 0 Ss+ ttyin 0xfffffe005439f4b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe005439fcb0 getty
686 1 686 0 Ss nanslp 0xffffffff8371dc00 cron
682 1 682 0 Ss select 0xfffffe000784e6c0 sshd
495 1 495 0 Ss select 0xfffffe0058a55040 syslogd
424 1 424 0 Ss select 0xfffffe000784e840 devd
423 1 423 65 Ss select 0xfffffe000784e740 dhclient
338 1 338 0 Ss select 0xfffffe0058a55140 dhclient
335 1 335 0 Ss select 0xfffffe0058a550c0 dhclient
17 0 0 0 DL vlruwt 0xfffffe00571deae0 [vnlru]
16 0 0 0 DL syncer 0xffffffff8383b2e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83839900 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100094 D sdflush 0xfffffe00570ca4e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838ac480 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff83894338 [dom0]
100080 D launds 0xffffffff83894344 [laundry: dom0]
100081 D umarcl 0xffffffff81d4c2b0 [uma]
7 0 0 0 DL - 0xffffffff834b2c28 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff83fa23d0 [pf purge]
5 0 0 0 DL waiting 0xffffffff845ab360 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff8347d340 [doneq0]
100045 D - 0xffffffff8347d2c0 [async]
100076 D - 0xffffffff8347d140 [scanner]
14 0 0 0 DL seqstat 0xfffffe00570b1888 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff8388fba0 [crypto]
100041 D crypto_ 0xfffffe00540c0130 [crypto returns 0]
100042 D crypto_ 0xfffffe00540c0180 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836c65e0 [g_event]
100036 D - 0xffffffff836c6600 [g_up]
100037 D - 0xffffffff836c6620 [g_down]
2 0 0 0 WL (threaded) [clock]
100030 I [clock (0)]
100031 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100015 I [swi5: fast taskq]
100017 I [swi6: Giant taskq]
100018 I [swi6: task queue]
100029 I [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0054216040 [init]
10 0 0 0 DL audit_w 0xffffffff838905e0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836c6fa0 [swapper]
100005 D - 0xfffffe00542d0100 [if_config_tqg_0]
100006 D - 0xfffffe00542d0000 [if_io_tqg_0]
100007 D - 0xfffffe00542cfe00 [if_io_tqg_1]
100008 D - 0xfffffe00542cfd00 [softirq_0]
100009 D - 0xfffffe00542cfc00 [softirq_1]
100010 D - 0xfffffe00079d0000 [linuxkpi_irq_wq]
100011 D - 0xfffffe00079cfe00 [in6m_free taskq]
100012 D - 0xfffffe00079cfd00 [inm_free taskq]
100013 D - 0xfffffe00079cfc00 [deferred_unmount ta]
100014 D - 0xfffffe00079cfb00 [aiod_kick taskq]
100016 D - 0xfffffe00079cf900 [thread taskq]
100019 D - 0xfffffe00079cf600 [kqueue_ctx taskq]
100020 D - 0xfffffe00079cf500 [pci_hp taskq]
100021 D - 0xfffffe00079cf400 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00079cf400 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00079cf400 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00079cf400 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00079cf300 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00079cf300 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00079cf300 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00079cf300 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00079cf200 [firmware taskq]
100038 D - 0xfffffe00079cf100 [crypto_0]
100039 D - 0xfffffe00079cf100 [crypto_1]
100055 D - 0xfffffe00079cee00 [vtnet0 rxq 0]
100056 D - 0xfffffe00079ced00 [vtnet0 txq 0]
100057 D - 0xfffffe00079cec00 [vtnet0 rxq 1]
100058 D - 0xfffffe00079ceb00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe00571ad480 [virtio_balloon]
100066 D - 0xffffffff826df661 [deadlkres]
100070 D - 0xfffffe00079d0100 [mca taskq]
100072 D - 0xfffffe0058761300 [acpi_task_0]
100073 D - 0xfffffe0058761300 [acpi_task_1]
100074 D - 0xfffffe0058761300 [acpi_task_2]
100075 D - 0xfffffe00079cf000 [CAM taskq]
db> show all locks
Process 9986 (syz-executor.1) thread 0xfffffe0075b61020 (115222)
shared sx vm map (user) (vm map (user)) r = 0 (0xfffffe00769cc798) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_map.c:5027
Process 9978 (syz-executor.3) thread 0xfffffe00768dee40 (115365)
exclusive sx so_snd_sx (so_snd_sx) r = 0 (0xfffffe0058b4d8c0) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4036
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4191 4324K 4224
filedesc 378 3022K 17843
sysctloid 35256 2078K 35327
vtbuf 24 1968K 46
pcb 829 1571K 32476
kobj 326 1304K 532
subproc 517 1108K 10259
newblk 16 1028K 77607
vfscache 3 1025K 3
inodedep 100 550K 12082
callout 2 512K 2
vfs_hash 1 512K 1
ufs_quota 1 512K 1
intr 4 472K 4
filemon 37 296K 300
vmem 3 268K 7
sctp_stro 254 254K 5624
sctp_atcl 658 247K 22433
acpitask 1 224K 1
acpica 1674 184K 56014
tidhash 3 141K 3
pagedep 10 131K 9017
linker 352 130K 449
IP reass 1 128K 1
tfo_ccache 1 128K 1
DEVFS1 114 114K 134
vnet_data 1 112K 1
sem 4 106K 4
tcp_fsb 50 104K 2944
kdtrace 599 103K 25362
gtaskqueue 18 98K 18
umtx 748 94K 748
BPF 46 88K 612
bus 985 81K 5035
mtx_pool 2 72K 2
NFSD srvcache 3 68K 3
syncache 1 68K 1
ddb_capture 1 64K 1
module 512 64K 512
temp 37 39K 14738
sctp_atky 912 37K 29623
DEVFS3 133 34K 144
shm 1 32K 89
hostcache 1 32K 1
msg 4 30K 4
kbdmux 6 28K 6
dirrem 88 22K 11123
cred 86 22K 442
md_disk 6 21K 52
routetbl 172 20K 731
ifaddr 70 20K 82
DEVFS_RULE 56 20K 56
kqueue 254 18K 10244
ufs_mount 4 17K 5
proc 3 17K 3
sctp_timw 64 16K 64
tty 16 16K 16
pwddesc 252 16K 10145
ithread 97 16K 97
GEOM 96 16K 694
lltable 46 15K 240
bus-sc 34 15K 1639
CC Mem 52 13K 5083
eventhandler 157 13K 157
KTRACE 104 13K 1111
ifnet 7 13K 8
devstat 6 13K 6
ether_multi 152 13K 203
ksem 31 12K 172
kenv 95 12K 95
freefile 85 11K 10763
rman 88 11K 431
sctp_athm 658 11K 23301
CAM queue 5 11K 1528
in6_multi 65 9K 83
bmsafemap 2 9K 12451
rpc 4 9K 4
UART 12 9K 12
pfs_vncache 1 8K 1
shmfd 1 8K 79
sctp_map 508 8K 11422
audit_evclass 238 8K 300
DEVFSP 113 8K 2276
taskqueue 63 7K 114
proc-args 272 7K 11361
lockf 56 7K 424
sglist 5 7K 5
CAM DEV 3 6K 510
session 48 6K 90
plimit 24 6K 496
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
pf_ifnet 12 5K 56
UMA 271 5K 271
vt 11 5K 11
pf_table 2 4K 42
evdev 4 4K 4
md_sectors 1 4K 1
MCA 32 4K 32
memdesc 1 4K 1
acpisem 28 4K 28
selfd 55 4K 129217
kcovinfo 52 4K 65
terminal 11 3K 11
select 19 3K 120
uidinfo 3 3K 19
clone 9 3K 9
pf_rule 17 3K 155
ip6ndp 13 3K 17
crypto 8 3K 563
inpcbpolicy 67 3K 6202
freework 9 3K 37697
ipsec-saq 2 2K 2
freeblks 8 2K 12126
io_apic 1 2K 1
local_apic 1 2K 1
sctp_ifa 13 2K 17
Unitno 27 2K 371
CAM XPT 22 2K 543
sctp_stri 3 2K 1729
toponodes 6 2K 6
in_multi 6 2K 9
msi 12 2K 12
mount 28 2K 466
acpidev 20 2K 20
ipsecpolicy 2 2K 2
osd 57 2K 5061
sctp_aadr 18 2K 96
tun 7 2K 8
NFSD session 1 1K 1
vnodemarker 2 1K 704
nhops 6 1K 8
secasvar 1 1K 1
sahead 1 1K 1
mkdir 8 1K 17694
softdep 1 1K 1
pf_osfp 8 1K 8
CAM periph 4 1K 271
sctp_ifn 6 1K 17
ipsec 3 1K 3
isadev 6 1K 6
pfil 6 1K 6
igmp 6 1K 7
mld 6 1K 7
diradd 6 1K 11165
pci_link 10 1K 10
cryptodev 10 1K 2332
procdesc 5 1K 18
encap_export_host 12 1K 12
newdirblk 5 1K 8847
ip_msource 9 1K 109
cdev 2 1K 2
netlink 2 1K 9
biobuf 1 1K 1
chacha20random 1 1K 1
freefrag 3 1K 119
ktls 3 1K 3
CAM SIM 2 1K 2
DEVFS 9 1K 10
NFSD V4client 1 1K 1
NFSD lckfile 1 1K 1
vnodes 1 1K 1
feeder 7 1K 7
prison 6 1K 6
loginclass 3 1K 6
tcpfunc 3 1K 3
lkpikmalloc 5 1K 6
CAM I/O Scheduler 1 1K 1
CAM dev queue 2 1K 2
CAM path 4 1K 1034
pmchooks 1 1K 1
aio 4 1K 40
ktls_ocf 1 1K 1
atkbddev 2 1K 2
apmdev 1 1K 1
nexusdev 8 1K 8
soname 4 1K 24443
filecaps 5 1K 116
sctp_vrf 1 1K 1
acpiintr 1 1K 1
entropy 2 1K 48
pmc 1 1K 1
vnet 1 1K 1
Per-cpu 1 1K 1
vnet_data_free 1 1K 1
cpus 2 1K 2
p1003.1b 1 1K 1
sctp_a_it 0 0K 15
sctp_athi 0 0K 0
sctp_stre 0 0K 0
sctp_cmsg 0 0K 0
sctp_cpal 0 0K 131
sctp_mvrf 0 0K 0
sctp_iter 0 0K 116
sctp_socko 0 0K 8731
sctp_mcore 0 0K 0
tcp_do 0 0K 0
ah 0 0K 0
esp 0 0K 0
ipcomp 0 0K 0
mqdata 0 0K 0
pf_temp 0 0K 0
pf_krule_item 0 0K 0
pf_altq 0 0K 0
CAM ccb queue 0 0K 0
CAM CCB 0 0K 523
nvme_da 0 0K 0
scsi_cd 0 0K 0
scsi_ch 0 0K 0
ata_da 0 0K 0
scsi_da 0 0K 69
scsi_pass 0 0K 0
SCSI sa 0 0K 0
SCSI ENC 0 0K 0
nvlist 0 0K 0
XZ_DEC 0 0K 0
zstd 0 0K 0
aacbuf 0 0K 0
aaccam 0 0K 0
aacraid_buf 0 0K 0
aacraidcam 0 0K 0
acpicmbat 0 0K 0
acpi_perf 0 0K 0
acpipwr 0 0K 0
agp 0 0K 0
AHCI driver 0 0K 0
ata_generic 0 0K 0
ata_dma 0 0K 0
ata_pci 0 0K 0
athdev 0 0K 0
ath_hal 0 0K 0
BACKLIGHT 0 0K 0
ciss_data 0 0K 0
ipsbuf 0 0K 0
ix 0 0K 0
ix_sriov 0 0K 0
LED 0 0K 0
malodev 0 0K 0
mfibuf 0 0K 0
mpr 0 0K 0
MPRSAS 0 0K 0
mpr_user 0 0K 0
mps 0 0K 0
MPSSAS 0 0K 0
mps_user 0 0K 0
mpt_user 0 0K 0
mrsasbuf 0 0K 0
MVS driver 0 0K 0
mwldev 0 0K 0
netmap 0 0K 0
nvd 0 0K 0
nvme 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
sr_iov 0 0K 0
ppbusdev 0 0K 0
PUC 0 0K 0
SIIS driver 0 0K 0
hdaa 0 0K 0
hdac 0 0K 0
hdacc 0 0K 0
ac97 0 0K 0
mixer 0 0K 0
midi buffers 0 0K 0
tcp_log_dev 0 0K 412
twsbuf 0 0K 0
USB 0 0K 0
USBdev 0 0K 0
pvscsi 0 0K 0
vtfont 0 0K 0
sysmouse 0 0K 0
Balloon 0 0K 0
xbd 0 0K 0
xbbd 0 0K 0
xen_acpi 0 0K 0
xnb 0 0K 0
xenstore 0 0K 0
evtchn_dev 0 0K 0
privcmd_dev 0 0K 0
gntdev 0 0K 0
DEVFS2 0 0K 0
DEVFS4 0 0K 0
msdosfs_node 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_fat 0 0K 0
NFSD V4state 0 0K 0
NFSD V4lock 0 0K 0
NFSD string 0 0K 0
NFSD usrgroup 0 0K 0
NFS req 0 0K 0
NFS fh 0 0K 0
NFSCL owner 0 0K 0
NFSCL open 0 0K 0
NFSCL deleg 0 0K 0
NFSCL client 0 0K 0
NFSCL lckown 0 0K 0
NFSCL lck 0 0K 0
NEWNFSnode 0 0K 0
NEWdirectio 0 0K 0
NFSCL diroff 0 0K 0
NFSD rollback 0 0K 0
NFSCL layout 0 0K 0
NFSCL flayout 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL session 0 0K 0
NFSCL layrecall 0 0K 0
newnfsclient_req 0 0K 0
newnfsmnt 0 0K 0
NFS FHA 0 0K 0
tmpfs extattr 0 0K 0
tmpfs mount 0 0K 0
tmpfs name 0 0K 0
tmpfs dir 0 0K 0
geom_flashmap 0 0K 0
raid_data 0 0K 102
md_ddf_data 0 0K 0
md_intel_data 0 0K 0
md_jmicron_data 0 0K 0
md_nvidia_data 0 0K 0
md_promise_data 0 0K 0
md_sii_data 0 0K 0
tr_concat_data 0 0K 0
tr_raid0_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid5_data 0 0K 0
isofs_mount 0 0K 0
isofs_node 0 0K 0
boottrace 0 0K 0
tty console 0 0K 0
pwd 0 0K 0
filedesc_to_leader 0 0K 4
sigio 0 0K 38
Fail Points 0 0K 0
prison_racct 0 0K 0
cache 0 0K 0
rctl 0 0K 0
sendfile 0 0K 0
dumper 0 0K 0
ekcd 0 0K 0
sysctl 0 0K 3
sysctltmp 0 0K 1030
SWAP 0 0K 0
compressor 0 0K 0
firmware 0 0K 0
sbuf 0 0K 404
stack 0 0K 0
Witness 0 0K 0
eventfd 0 0K 0
ioctlops 0 0K 1150
iov 0 0K 27237
timerfd 0 0K 0
pts 0 0K 0
accf 0 0K 0
mbuf_tag 0 0K 0
acl 0 0K 0
lio 0 0K 13
cl_savebuf 0 0K 36
export_host 0 0K 0
namei_tracker 0 0K 8
statfs 0 0K 387
VN POLL 0 0K 0
fadvise 0 0K 14
zlib 0 0K 0
ifdescr 0 0K 0
gif 0 0K 0
vlan 0 0K 0
iflib 0 0K 0
80211vap 0 0K 0
80211crypto 0 0K 0
80211dfs 0 0K 0
80211preq 0 0K 0
80211prep 0 0K 0
80211perr 0 0K 0
80211mesh_rt 0 0K 0
80211mesh_gt 0 0K 0
80211node 0 0K 0
80211nodeie 0 0K 0
80211power 0 0K 0
80211ratectl 0 0K 0
80211scan 0 0K 0
ipid 0 0K 0
in_mfilter 0 0K 198
ip_moptions 0 0K 57
LRO 0 0K 0
tcp_hwpace 0 0K 0
tcplog 0 0K 0
frag6 0 0K 6
in6_mfilter 0 0K 0
ip6_moptions 0 0K 0
ip6_msource 0 0K 0
ip6opt 0 0K 128
ipsecrequest 0 0K 0
ipsec-misc 0 0K 0
ipsec-reg 0 0K 0
ipsec-spdcache 0 0K 0
NLM 0 0K 0
lkpi80211 0 0K 0
lkpifw 0 0K 0
lkpimhi 0 0K 0
lkpindev 0 0K 0
idr 0 0K 0
radix 0 0K 0
lkpiskb 0 0K 0
seq_file 0 0K 0
simple_attr 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
audit_cred 0 0K 0
audit_data 0 0K 0
audit_path 0 0K 0
audit_text 0 0K 0
audit_gidset 0 0K 0
audit_bsm 0 0K 0
audit_evname 0 0K 0
audit_pipe 0 0K 0
audit_pipeent 0 0K 0
audit_pipe_presel 0 0K 0
audit_trigger 0 0K 0
mactemp 0 0K 0
ufs_trim 0 0K 0
allocdirect 0 0K 0
indirdep 0 0K 39539
allocindir 0 0K 0
freedep 0 0K 0
jaddref 0 0K 0
jremref 0 0K 0
jmvref 0 0K 0
jnewblk 0 0K 0
jfreeblk 0 0K 0
jfreefrag 0 0K 0
jseg 0 0K 0
jsegdep 0 0K 0
sbdep 0 0K 354
jtrunc 0 0K 0
jfsync 0 0K 0
sentinel 0 0K 0
savedino 0 0K 23996
jblocks 0 0K 0
vm_pgdata 0 0K 0
UMAHash 0 0K 0
vm_fictitious 0 0K 0
xenbus 0 0K 0
aesni_data 0 0K 0
bxe_ilt 0 0K 0
hyperv_socket 0 0K 0
iommu_dmamap 0 0K 0
isci 0 0K 0
dmar_ctx 0 0K 0
dmar_dom 0 0K 0
dmar_idpgtbl 0 0K 0
qpidrv 0 0K 0
busdma 0 0K 0
bounce 0 0K 0
legacydrv 0 0K 0
xen_hvm 0 0K 0
xen_intr 0 0K 0
fpukern_ctx 0 0K 0
axgbe 0 0K 0
iavf 0 0K 0
ice 0 0K 0
ice-osdep 0 0K 0
ice-resmgr 0 0K 0
ixl 0 0K 0
smartpqi 0 0K 0
madt_table 0 0K 2
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8486 912 77284 0 254 38494208 0
mbuf 256 22283 23950 6331813 0 254 11835648 0
tcp_log 416 5529 4893 125074 0 254 4335552 0
malloc-16384 16384 188 4 8926 0 1 3145728 0
malloc-384 384 4876 134 26843 0 30 1923840 0
RADIX NODE 144 12810 401 285567 0 62 1902384 0
ertt_txseginfo 40 32678 13580 4018468 0 254 1850320 0
BUF TRIE 144 552 11264 67493 0 62 1701504 0
mbuf_cluster 2048 762 0 762 0 254 1560576 0
malloc-128 128 11628 90 11745 0 126 1499904 0
malloc-4096 4096 360 6 2520 0 2 1499136 0
sctp_chunk 152 4177 5235 294699 0 254 1430624 0
UMA Slabs 0 112 11823 15 11823 0 126 1325856 0
vmem btag 56 23502 81 23502 0 254 1320648 0
sctp_asoc 2256 254 256 5519 0 254 1150560 0
malloc-4096 4096 252 4 9987 0 2 1048576 0
malloc-65536 65536 5 10 457 0 1 983040 0
256 Bucket 2048 362 112 26911 0 8 970752 0
FFS inode 1160 804 29 11567 0 8 966280 0
VM OBJECT 264 3395 115 125619 0 30 926640 0
sctp_ep 1176 401 369 16039 0 254 905520 0
malloc-2048 2048 406 18 16086 0 8 868352 0
socket 960 249 515 23829 0 254 733440 0
MAP ENTRY 96 6889 293 413707 0 126 689472 0
THREAD 1824 346 28 15374 0 8 682176 0
tcp_bbr_map 128 3541 644 201208 0 126 535680 0
malloc-1024 1024 396 116 6926 0 16 524288 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
VNODE 448 845 91 11611 0 30 419328 0
sctp_raddr 736 261 256 6573 0 254 380512 0
PROC 1376 251 13 9986 0 8 363264 0
malloc-8192 8192 37 7 366 0 1 360448 0
FPU_save_area 832 348 39 15857 0 16 321984 0
filedesc0 1072 252 21 10145 0 8 292656 0
malloc-256 256 36 1029 127433 0 62 272640 0
malloc-256 256 504 561 47227 0 62 272640 0
malloc-32768 32768 0 8 37458 0 1 262144 0
malloc-2048 2048 4 124 518 0 8 262144 0
malloc-64 64 3853 242 3865 0 254 262080 0
malloc-384 384 123 537 12178 0 30 253440 0
malloc-16 16 14639 361 19759 0 254 240000 0
malloc-256 256 342 588 12655 0 62 238080 0
DEVCTL 1024 0 220 175 0 0 225280 0
FFS2 dinode 256 804 66 11567 0 62 222720 0
malloc-128 128 1460 183 19175 0 126 210304 0
mbuf_packet 256 47 715 51663 0 254 195072 0
UMA Zones 768 243 1 243 0 16 187392 0
malloc-32 32 5320 350 5351 0 254 181440 0
malloc-128 128 1180 215 26331 0 126 178560 0
g_bio 408 0 390 553699 0 30 159120 0
VMSPACE 616 220 38 9910 0 16 158928 0
128 Bucket 1024 71 76 1601 0 16 150528 0
S VFS Cache 104 1029 375 12621 0 126 146016 0
malloc-256 256 437 133 16850 0 62 145920 0
malloc-65536 65536 0 2 136 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-32768 32768 4 0 4 0 1 131072 0
unpcb 256 24 486 1512 0 254 130560 0
ksiginfo 112 251 793 1087 0 126 116928 0
malloc-384 384 266 34 266 0 30 115200 0
tcp_inpcb 1304 52 29 5041 0 8 105624 0
64 Bucket 512 123 77 30826 0 30 102400 0
malloc-32768 32768 3 0 3 0 1 98304 0
malloc-4096 4096 23 1 575 0 2 98304 0
UMA Kegs 384 229 4 229 0 30 89472 0
malloc-64 64 562 761 23112 0 254 84672 0
malloc-128 128 101 550 10915 0 126 83328 0
malloc-128 128 399 252 9918 0 126 83328 0
malloc-256 256 137 178 3674 0 62 80640 0
sctp_readq 152 0 520 797 0 254 79040 0
malloc-4096 4096 15 3 30 0 2 73728 0
Files 80 720 180 50270 0 126 72000 0
malloc-64 64 621 450 22659 0 254 68544 0
malloc-64 64 873 198 160053 0 254 68544 0
malloc-128 128 201 326 5966 0 126 67456
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the bug is already fixed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite bug's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the bug is a duplicate of another bug, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: 570688f0a5c2 spibus: Make ofw_spibus probe just a little m..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=12ede760680000
dashboard link: https://syzkaller.appspot.com/bug?extid=78258dbb02eb92157357
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+78258d...@syzkaller.appspotmail.com
panic: malloc: called with spinlock or critical section held
cpuid = 1
time = 1693269158
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0076524db0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0076524f10
vpanic() at vpanic+0x271/frame 0xfffffe00765250b0
panic() at panic+0xb5/frame 0xfffffe0076525180
malloc_dbg() at malloc_dbg+0x212/frame 0xfffffe00765251b0
malloc() at malloc+0x45/frame 0xfffffe00765251f0
aesni_cipher_crypt() at aesni_cipher_crypt+0x123/frame 0xfffffe0076525330
aesni_process() at aesni_process+0x242/frame 0xfffffe0076525370
crypto_invoke() at crypto_invoke+0x261/frame 0xfffffe00765254a0
crypto_dispatch_one() at crypto_dispatch_one+0x18c/frame 0xfffffe00765254d0
ktls_ocf_dispatch() at ktls_ocf_dispatch+0x10c/frame 0xfffffe00765255b0
ktls_ocf_tls_cbc_encrypt() at ktls_ocf_tls_cbc_encrypt+0xdc3/frame 0xfffffe0076525790
ktls_encrypt() at ktls_encrypt+0x1d4/frame 0xfffffe0076525b50
ktls_work_thread() at ktls_work_thread+0x7e2/frame 0xfffffe0076525ef0
fork_exit() at fork_exit+0xc9/frame 0xfffffe0076525f30
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe0076525f30
--- trap 0xc, rip = 0x2aef0a, rsp = 0x8205bf2d8, rbp = 0x8205bf2e0 ---
KDB: enter: panic
[ thread pid 9985 tid 115347 ]
Stopped at kdb_enter+0x6e: movq $0,0x2179507(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xffffffff815d4295 printf+0xf5
rdx 0x1
rbx 0xffffffff826da520 .str.28
rsp 0xfffffe0076524ef0
rbp 0xfffffe0076524f10
rsi 0
rdi 0xffffffff815d42f6 printf+0x156
r8 0
r9 0xffffffff
r10 0x970ac567590a8e94
r11 0
r12 0
r13 0xfffffe007574dac0
r14 0xffffffff826da520 .str.28
r15 0
rip 0xffffffff815c330e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x2179507(%rip)
db> show proc
Process 9985 (KTLS) at 0xfffffe0076614000:
state: NORMAL
uid: 0 gids: 0
parent: pid 0 at 0xffffffff836c6fa0
ABI: null
flag: 0x10000284 flag2: 0
reaper: 0xffffffff836c6fa0 reapsubtree: 9985
sigparent: 20
vmspace: 0xffffffff836c7f40
(map 0xffffffff836c7f40)
(map.pmap 0xffffffff836c8000)
(pmap 0xffffffff836c8070)
threads: 3
115347 Run CPU 1 [thr_0]
115373 D - 0xfffffe0075fdeb80 [thr_1]
115374 D - 0xffffffff8382f288 [reclaim_0]
db> ps
pid ppid pgrp uid state wmesg wchan cmd
9986 844 844 0 R CPU 0 syz-executor.1
9985 0 0 0 RL (threaded) [KTLS]
115347 Run CPU 1 [thr_0]
115373 D - 0xfffffe0075fdeb80 [thr_1]
115374 D - 0xffffffff8382f288 [reclaim_0]
9984 845 845 0 R (threaded) syz-executor.2
115362 RunQ syz-executor.2
115372 RunQ syz-executor.2
9981 843 843 0 R (threaded) syz-executor.0
115012 RunQ syz-executor.0
115370 S uwait 0xfffffe006ec7f180 syz-executor.0
9978 852 852 0 R (threaded) syz-executor.3
112744 RunQ syz-executor.3
115365 S sbwait 0xfffffe0058b4da1c syz-executor.3
115371 S uwait 0xfffffe007620f380 syz-executor.3
9686 1 852 0 S uwait 0xfffffe0075c41000 syz-executor.3
9673 1 852 0 S uwait 0xfffffe0074c47d80 syz-executor.3
9669 1 845 0 S uwait 0xfffffe0074c47780 syz-executor.2
9668 1 843 0 S uwait 0xfffffe006ec7b200 syz-executor.0
9665 1 844 0 S uwait 0xfffffe0074c47480 syz-executor.1
9664 1 852 0 S uwait 0xfffffe006ec7f100 syz-executor.3
9661 1 843 0 S uwait 0xfffffe0074c48800 syz-executor.0
9660 1 844 0 S uwait 0xfffffe0057acb880 syz-executor.1
9659 1 845 0 S uwait 0xfffffe0074c47980 syz-executor.2
9658 1 852 0 S uwait 0xfffffe0074c47880 syz-executor.3
9653 1 852 0 S uwait 0xfffffe0074c47380 syz-executor.3
9652 1 845 0 S uwait 0xfffffe0074c47e80 syz-executor.2
9651 1 844 0 S uwait 0xfffffe0074c4aa00 syz-executor.1
9650 1 843 0 S uwait 0xfffffe007620f480 syz-executor.0
9643 1 852 0 S uwait 0xfffffe0057acbd00 syz-executor.3
9633 1 844 0 S uwait 0xfffffe006ec7eb00 syz-executor.1
9632 1 852 0 S uwait 0xfffffe006ec7f380 syz-executor.3
9625 1 843 0 S uwait 0xfffffe007620ef00 syz-executor.0
9624 1 844 0 S uwait 0xfffffe007620fb00 syz-executor.1
9621 1 843 0 S uwait 0xfffffe0074c48b00 syz-executor.0
9615 1 843 0 S uwait 0xfffffe007620f580 syz-executor.0
9613 1 845 0 S uwait 0xfffffe006ec7f880 syz-executor.2
9611 1 852 0 S uwait 0xfffffe0057ac9900 syz-executor.3
9610 1 845 0 S uwait 0xfffffe0074c48380 syz-executor.2
9609 1 844 0 S uwait 0xfffffe0074c49780 syz-executor.1
9604 1 852 0 S uwait 0xfffffe0074c47180 syz-executor.3
9603 1 845 0 S uwait 0xfffffe006ec7ce80 syz-executor.2
9599 1 852 0 S uwait 0xfffffe0074c48d00 syz-executor.3
9594 1 852 0 S uwait 0xfffffe007620f080 syz-executor.3
9492 0 0 0 DL - 0xffffffff836c8420 [accounting]
8898 1 844 0 S uwait 0xfffffe0074c48c00 syz-executor.1
8892 1 844 0 S uwait 0xfffffe007620fa00 syz-executor.1
8886 1 844 0 S uwait 0xfffffe0074c47a80 syz-executor.1
8881 1 844 0 S uwait 0xfffffe006ec7c380 syz-executor.1
8751 0 0 0 DL mdwait 0xfffffe0075d6f000 [md4]
8553 1 844 0 S uwait 0xfffffe006ec7ed00 syz-executor.1
8543 1 844 0 S uwait 0xfffffe006ec7ea00 syz-executor.1
8533 1 844 0 S uwait 0xfffffe0074c48500 syz-executor.1
8519 1 844 0 S uwait 0xfffffe0074c47b80 syz-executor.1
8015 1 852 0 S uwait 0xfffffe0074c48200 syz-executor.3
8006 1 852 0 S uwait 0xfffffe006ec7f080 syz-executor.3
8001 1 852 0 S uwait 0xfffffe0074c48300 syz-executor.3
7994 1 852 0 S uwait 0xfffffe0074c48100 syz-executor.3
7631 1 852 0 S uwait 0xfffffe006ec7ec00 syz-executor.3
7630 1 845 0 S uwait 0xfffffe006ec7e900 syz-executor.2
7627 1 844 0 S uwait 0xfffffe0074c49580 syz-executor.1
7624 1 852 0 S uwait 0xfffffe0074c49e00 syz-executor.3
7622 1 845 0 S umtxn 0xfffffe006ec7f580 syz-executor.2
7621 1 844 0 S uwait 0xfffffe006ec7b000 syz-executor.1
7620 1 843 0 S uwait 0xfffffe00576b2a00 syz-executor.0
7618 1 852 0 S uwait 0xfffffe006ec7f480 syz-executor.3
7614 1 843 0 S uwait 0xfffffe0057acba00 syz-executor.0
7613 1 845 0 S uwait 0xfffffe0074c48600 syz-executor.2
7612 1 852 0 S uwait 0xfffffe0074c49a00 syz-executor.3
7608 1 844 0 S uwait 0xfffffe006ec7b100 syz-executor.1
7606 1 843 0 S uwait 0xfffffe006ec7f680 syz-executor.0
7605 1 852 0 S uwait 0xfffffe0074c49180 syz-executor.3
7603 1 845 0 S uwait 0xfffffe0074c4a580 syz-executor.2
7600 1 844 0 S uwait 0xfffffe006ec7ce00 syz-executor.1
7598 1 843 0 S uwait 0xfffffe0074c4a080 syz-executor.0
7597 1 852 0 S uwait 0xfffffe006ec81780 syz-executor.3
7596 1 845 0 S uwait 0xfffffe0074c49080 syz-executor.2
7592 1 844 0 S uwait 0xfffffe006ec7c200 syz-executor.1
7590 1 845 0 S uwait 0xfffffe006ec81580 syz-executor.2
7589 1 852 0 S uwait 0xfffffe0057acbc00 syz-executor.3
7588 1 844 0 S uwait 0xfffffe006ec7fa80 syz-executor.1
7587 1 843 0 S uwait 0xfffffe006ec7c180 syz-executor.0
7582 1 852 0 S uwait 0xfffffe0057acba80 syz-executor.3
7581 1 845 0 S uwait 0xfffffe006ec7bf00 syz-executor.2
7580 1 843 0 S uwait 0xfffffe0074c4a480 syz-executor.0
7579 1 844 0 S uwait 0xfffffe006ec81a80 syz-executor.1
7574 1 845 0 S uwait 0xfffffe006ec81b80 syz-executor.2
7573 1 844 0 S uwait 0xfffffe006ec7d280 syz-executor.1
7572 1 852 0 S uwait 0xfffffe0074c49a80 syz-executor.3
7571 1 843 0 S uwait 0xfffffe0074c4a380 syz-executor.0
7566 1 844 0 S uwait 0xfffffe0074c49280 syz-executor.1
7565 1 845 0 S uwait 0xfffffe006ec81f00 syz-executor.2
7564 1 843 0 S uwait 0xfffffe006ec80680 syz-executor.0
7559 1 843 0 S uwait 0xfffffe006ec7b180 syz-executor.0
7555 1 843 0 S uwait 0xfffffe0074c4a900 syz-executor.0
7494 1 7491 0 S uwait 0xfffffe006ec81700 syz-executor.1
7490 1 7487 0 S uwait 0xfffffe006ec81e00 syz-executor.1
7488 1 7486 0 S uwait 0xfffffe0074c49380 syz-executor.0
7485 1 7481 0 S uwait 0xfffffe0074c49480 syz-executor.2
7483 1 7480 0 S uwait 0xfffffe0074c48e00 syz-executor.1
7482 1 7478 0 S uwait 0xfffffe0074c4a600 syz-executor.0
7479 1 7469 0 S uwait 0xfffffe0074c49900 syz-executor.3
7477 1 7474 0 S uwait 0xfffffe0074c48f00 syz-executor.2
7476 1 7475 0 S uwait 0xfffffe006ec81d80 syz-executor.0
7472 1 7468 0 S uwait 0xfffffe006ec7f800 syz-executor.2
7467 1 7464 0 S uwait 0xfffffe006ec7b600 syz-executor.3
7462 1 7461 0 S uwait 0xfffffe0074c49d00 syz-executor.3
7460 1 7459 0 S uwait 0xfffffe006ec80780 syz-executor.3
3699 0 0 0 DL - 0xffffffff8382da40 [soaiod4]
3698 0 0 0 DL - 0xffffffff8382da40 [soaiod3]
3697 0 0 0 DL - 0xffffffff8382da40 [soaiod2]
3696 0 0 0 DL - 0xffffffff8382da40 [soaiod1]
3694 0 0 0 DL aiordy 0xfffffe00756b1060 [aiod4]
3693 0 0 0 DL aiordy 0xfffffe00756afae0 [aiod3]
3692 0 0 0 DL aiordy 0xfffffe0075722020 [aiod2]
3691 0 0 0 DL aiordy 0xfffffe00756aeac0 [aiod1]
3557 1 3557 65 Ss select 0xfffffe0073c2ddc0 dhclient
3061 1 845 0 S uwait 0xfffffe0057ac9f00 syz-executor.2
3060 1 843 0 S uwait 0xfffffe006ec7bd00 syz-executor.0
3055 1 843 0 S uwait 0xfffffe006ec81c80 syz-executor.0
3047 1 845 0 S uwait 0xfffffe006ec80a80 syz-executor.2
3045 1 843 0 S uwait 0xfffffe006ec81900 syz-executor.0
3043 1 845 0 S uwait 0xfffffe006ec7fc80 syz-executor.2
3042 1 844 0 S uwait 0xfffffe006ec7bb00 syz-executor.1
3039 1 852 0 S uwait 0xfffffe006ec7c780 syz-executor.3
3037 1 844 0 S uwait 0xfffffe006ec7bc00 syz-executor.1
3035 1 843 0 S uwait 0xfffffe006ec7be00 syz-executor.0
3033 1 845 0 S uwait 0xfffffe00576b0100 syz-executor.2
3031 1 852 0 S uwait 0xfffffe00576b1c80 syz-executor.3
3029 1 843 0 S uwait 0xfffffe006ec7c680 syz-executor.0
3027 1 844 0 S uwait 0xfffffe006ec7b900 syz-executor.1
3025 1 845 0 S uwait 0xfffffe006ec7cd80 syz-executor.2
3023 1 852 0 S uwait 0xfffffe0057ac8a00 syz-executor.3
3021 1 844 0 S uwait 0xfffffe006ec7dc00 syz-executor.1
3019 1 845 0 S uwait 0xfffffe006ec7cb80 syz-executor.2
3017 1 843 0 S uwait 0xfffffe006ec7fd80 syz-executor.0
3015 1 852 0 S uwait 0xfffffe006ec7cf00 syz-executor.3
3013 1 845 0 S uwait 0xfffffe00576b2b00 syz-executor.2
3011 1 843 0 S uwait 0xfffffe006ec7fb80 syz-executor.0
3009 1 844 0 S uwait 0xfffffe006ec81100 syz-executor.1
3007 1 852 0 S uwait 0xfffffe006ec7da80 syz-executor.3
3005 1 845 0 S uwait 0xfffffe006ec7c980 syz-executor.2
3003 1 844 0 S uwait 0xfffffe006ec80480 syz-executor.1
3001 1 843 0 S uwait 0xfffffe006ec7b800 syz-executor.0
2999 1 852 0 S uwait 0xfffffe006ec82880 syz-executor.3
2996 1 845 0 S uwait 0xfffffe0057ac8780 syz-executor.2
2994 1 843 0 S uwait 0xfffffe0057ac8880 syz-executor.0
2981 1 844 0 S uwait 0xfffffe0057ac8080 syz-executor.1
2976 1 844 0 S uwait 0xfffffe006ec7c580 syz-executor.1
2966 1 844 0 S uwait 0xfffffe006ec80300 syz-executor.1
2956 1 844 0 S uwait 0xfffffe006ec81d00 syz-executor.1
2782 1 2782 0 Ss select 0xfffffe0073c2e4c0 dhclient
2778 1 2778 0 Ss select 0xfffffe0073c2e840 dhclient
2734 1 2734 65 Ss select 0xfffffe0073c2e740 dhclient
2074 0 0 0 DL mdwait 0xfffffe0073c30000 [md3]
2068 0 0 0 DL mdwait 0xfffffe006cc83000 [md2]
2063 0 0 0 DL mdwait 0xfffffe0073c31000 [md1]
2057 0 0 0 DL mdwait 0xfffffe0073c24000 [md0]
2006 1 2006 0 Ss select 0xfffffe0073c2f2c0 dhclient
2001 1 2001 0 Ss select 0xfffffe0058a548c0 dhclient
1979 1 1979 65 Ss select 0xfffffe0073c2f0c0 dhclient
1439 1 1439 0 Ss select 0xfffffe0058a54ac0 dhclient
1436 1 1436 0 Ss select 0xfffffe0058a54a40 dhclient
1409 1 1409 65 Ss select 0xfffffe0058a54940 dhclient
1250 1 852 0 S uwait 0xfffffe006ec80100 syz-executor.3
1245 1 843 0 S uwait 0xfffffe006ec7d980 syz-executor.0
1239 1 852 0 S uwait 0xfffffe006ec7d380 syz-executor.3
1234 1 843 0 S uwait 0xfffffe0057ac9e00 syz-executor.0
1228 1 852 0 S uwait 0xfffffe006ec81000 syz-executor.3
1225 1 844 0 S uwait 0xfffffe00576b2c00 syz-executor.1
1223 1 843 0 S uwait 0xfffffe0057ac8600 syz-executor.0
1221 1 845 0 S uwait 0xfffffe006ec80e80 syz-executor.2
1219 1 852 0 S uwait 0xfffffe00576afe80 syz-executor.3
1217 1 844 0 S uwait 0xfffffe006ec82580 syz-executor.1
1215 1 843 0 S uwait 0xfffffe006ec80000 syz-executor.0
1213 1 845 0 S uwait 0xfffffe006ec80880 syz-executor.2
1211 1 852 0 S uwait 0xfffffe0057ac8c00 syz-executor.3
1209 1 844 0 S uwait 0xfffffe006ec80c80 syz-executor.1
1207 1 843 0 S uwait 0xfffffe006ec7d180 syz-executor.0
1205 1 845 0 S uwait 0xfffffe00576b2800 syz-executor.2
1203 1 852 0 S uwait 0xfffffe006ec80500 syz-executor.3
1201 1 844 0 S uwait 0xfffffe006ec80d80 syz-executor.1
1199 1 843 0 S uwait 0xfffffe006ec80b80 syz-executor.0
1197 1 845 0 S uwait 0xfffffe00542f5f00 syz-executor.2
1195 1 852 0 S uwait 0xfffffe006ec7dd80 syz-executor.3
1193 1 844 0 S uwait 0xfffffe00576af000 syz-executor.1
1191 1 843 0 S uwait 0xfffffe006ec7d680 syz-executor.0
1189 1 845 0 S uwait 0xfffffe00576b0d00 syz-executor.2
1188 1 852 0 S uwait 0xfffffe006ec82380 syz-executor.3
1185 1 844 0 S uwait 0xfffffe00576afd80 syz-executor.1
1183 1 843 0 S uwait 0xfffffe00576b2700 syz-executor.0
1180 1 852 0 S uwait 0xfffffe006ec80980 syz-executor.3
1179 1 845 0 S uwait 0xfffffe00576aff00 syz-executor.2
1176 1 844 0 S uwait 0xfffffe0057ac9500 syz-executor.1
1174 1 843 0 S uwait 0xfffffe00576b2f00 syz-executor.0
1172 1 845 0 S uwait 0xfffffe0057ac8700 syz-executor.2
1170 1 852 0 S uwait 0xfffffe006ec82280 syz-executor.3
1168 1 844 0 S uwait 0xfffffe006ec7dd00 syz-executor.1
1166 1 843 0 S uwait 0xfffffe00576b2900 syz-executor.0
1164 1 845 0 S uwait 0xfffffe0057ac8f00 syz-executor.2
1162 1 852 0 S uwait 0xfffffe006ec7db00 syz-executor.3
1160 1 844 0 S uwait 0xfffffe0057ac8d00 syz-executor.1
1158 1 843 0 S uwait 0xfffffe006ec7d880 syz-executor.0
1156 1 845 0 S uwait 0xfffffe006ec82480 syz-executor.2
1154 1 852 0 S uwait 0xfffffe0057ac9080 syz-executor.3
1152 1 844 0 S uwait 0xfffffe00542f5b00 syz-executor.1
1150 1 843 0 S uwait 0xfffffe00576afc80 syz-executor.0
1148 1 843 0 S uwait 0xfffffe0057ac8180 syz-executor.0
1146 1 845 0 S umtxn 0xfffffe006ec7d580 syz-executor.2
1144 1 844 0 S uwait 0xfffffe00576b2d00 syz-executor.1
1142 1 852 0 S uwait 0xfffffe00576b2e00 syz-executor.3
1140 1 845 0 S uwait 0xfffffe0057ac8b00 syz-executor.2
1138 1 843 0 S uwait 0xfffffe0057ac9180 syz-executor.0
1136 1 844 0 S uwait 0xfffffe00079c0f00 syz-executor.1
1134 1 852 0 S uwait 0xfffffe00576b1780 syz-executor.3
1131 1 845 0 S uwait 0xfffffe00576af780 syz-executor.2
1127 1 843 0 S uwait 0xfffffe0057ac9600 syz-executor.0
1125 1 852 0 S uwait 0xfffffe0057ac9d00 syz-executor.3
1113 1 852 0 S uwait 0xfffffe006ec7d780 syz-executor.3
968 1 968 0 Ss select 0xfffffe000784e140 dhclient
964 1 964 0 Ss select 0xfffffe0058a54b40 dhclient
852 768 852 0 Ss nanslp 0xffffffff8371dc01 syz-executor.3
845 768 845 0 Ss nanslp 0xffffffff8371dc01 syz-executor.2
844 768 844 0 Rs syz-executor.1
843 768 843 0 Ss nanslp 0xffffffff8371dc01 syz-executor.0
768 766 766 0 S (threaded) syz-fuzzer
100112 S uwait 0xfffffe0057ac9800 syz-fuzzer
100113 S uwait 0xfffffe00576b1280 syz-fuzzer
100114 S uwait 0xfffffe00576b1380 syz-fuzzer
100115 S wait 0xfffffe006cd68020 syz-fuzzer
100116 S uwait 0xfffffe00576af880 syz-fuzzer
100117 S uwait 0xfffffe00576af980 syz-fuzzer
100118 S wait 0xfffffe006cd68020 syz-fuzzer
100119 S wait 0xfffffe006cd68020 syz-fuzzer
100127 S wait 0xfffffe006cd68020 syz-fuzzer
100128 S uwait 0xfffffe0057ac9380 syz-fuzzer
100132 S uwait 0xfffffe00576af680 syz-fuzzer
100164 S kqread 0xfffffe00540c3a00 syz-fuzzer
110248 S uwait 0xfffffe0074c4a700 syz-fuzzer
766 764 766 0 Ss pause 0xfffffe006cd68630 csh
764 682 764 0 Ss select 0xfffffe000784e4c0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00572198b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00587f14b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00587f1cb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00587f24b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00587f2cb0 getty
743 1 743 0 Ss+ ttyin 0xfffffe005439e4b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe005439ecb0 getty
741 1 741 0 Ss+ ttyin 0xfffffe005439f4b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe005439fcb0 getty
686 1 686 0 Ss nanslp 0xffffffff8371dc00 cron
682 1 682 0 Ss select 0xfffffe000784e6c0 sshd
495 1 495 0 Ss select 0xfffffe0058a55040 syslogd
424 1 424 0 Ss select 0xfffffe000784e840 devd
423 1 423 65 Ss select 0xfffffe000784e740 dhclient
338 1 338 0 Ss select 0xfffffe0058a55140 dhclient
335 1 335 0 Ss select 0xfffffe0058a550c0 dhclient
17 0 0 0 DL vlruwt 0xfffffe00571deae0 [vnlru]
16 0 0 0 DL syncer 0xffffffff8383b2e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83839900 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100094 D sdflush 0xfffffe00570ca4e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838ac480 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff83894338 [dom0]
100080 D launds 0xffffffff83894344 [laundry: dom0]
100081 D umarcl 0xffffffff81d4c2b0 [uma]
7 0 0 0 DL - 0xffffffff834b2c28 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff83fa23d0 [pf purge]
5 0 0 0 DL waiting 0xffffffff845ab360 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff8347d340 [doneq0]
100045 D - 0xffffffff8347d2c0 [async]
100076 D - 0xffffffff8347d140 [scanner]
14 0 0 0 DL seqstat 0xfffffe00570b1888 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff8388fba0 [crypto]
100041 D crypto_ 0xfffffe00540c0130 [crypto returns 0]
100042 D crypto_ 0xfffffe00540c0180 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836c65e0 [g_event]
100036 D - 0xffffffff836c6600 [g_up]
100037 D - 0xffffffff836c6620 [g_down]
2 0 0 0 WL (threaded) [clock]
100030 I [clock (0)]
100031 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100015 I [swi5: fast taskq]
100017 I [swi6: Giant taskq]
100018 I [swi6: task queue]
100029 I [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0054216040 [init]
10 0 0 0 DL audit_w 0xffffffff838905e0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836c6fa0 [swapper]
100005 D - 0xfffffe00542d0100 [if_config_tqg_0]
100006 D - 0xfffffe00542d0000 [if_io_tqg_0]
100007 D - 0xfffffe00542cfe00 [if_io_tqg_1]
100008 D - 0xfffffe00542cfd00 [softirq_0]
100009 D - 0xfffffe00542cfc00 [softirq_1]
100010 D - 0xfffffe00079d0000 [linuxkpi_irq_wq]
100011 D - 0xfffffe00079cfe00 [in6m_free taskq]
100012 D - 0xfffffe00079cfd00 [inm_free taskq]
100013 D - 0xfffffe00079cfc00 [deferred_unmount ta]
100014 D - 0xfffffe00079cfb00 [aiod_kick taskq]
100016 D - 0xfffffe00079cf900 [thread taskq]
100019 D - 0xfffffe00079cf600 [kqueue_ctx taskq]
100020 D - 0xfffffe00079cf500 [pci_hp taskq]
100021 D - 0xfffffe00079cf400 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00079cf400 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00079cf400 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00079cf400 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00079cf300 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00079cf300 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00079cf300 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00079cf300 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00079cf200 [firmware taskq]
100038 D - 0xfffffe00079cf100 [crypto_0]
100039 D - 0xfffffe00079cf100 [crypto_1]
100055 D - 0xfffffe00079cee00 [vtnet0 rxq 0]
100056 D - 0xfffffe00079ced00 [vtnet0 txq 0]
100057 D - 0xfffffe00079cec00 [vtnet0 rxq 1]
100058 D - 0xfffffe00079ceb00 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe00571ad480 [virtio_balloon]
100066 D - 0xffffffff826df661 [deadlkres]
100070 D - 0xfffffe00079d0100 [mca taskq]
100072 D - 0xfffffe0058761300 [acpi_task_0]
100073 D - 0xfffffe0058761300 [acpi_task_1]
100074 D - 0xfffffe0058761300 [acpi_task_2]
100075 D - 0xfffffe00079cf000 [CAM taskq]
db> show all locks
Process 9986 (syz-executor.1) thread 0xfffffe0075b61020 (115222)
shared sx vm map (user) (vm map (user)) r = 0 (0xfffffe00769cc798) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_map.c:5027
Process 9978 (syz-executor.3) thread 0xfffffe00768dee40 (115365)
exclusive sx so_snd_sx (so_snd_sx) r = 0 (0xfffffe0058b4d8c0) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4036
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4191 4324K 4224
filedesc 378 3022K 17843
sysctloid 35256 2078K 35327
vtbuf 24 1968K 46
pcb 829 1571K 32476
kobj 326 1304K 532
subproc 517 1108K 10259
newblk 16 1028K 77607
vfscache 3 1025K 3
inodedep 100 550K 12082
callout 2 512K 2
vfs_hash 1 512K 1
ufs_quota 1 512K 1
intr 4 472K 4
filemon 37 296K 300
vmem 3 268K 7
sctp_stro 254 254K 5624
sctp_atcl 658 247K 22433
acpitask 1 224K 1
acpica 1674 184K 56014
tidhash 3 141K 3
pagedep 10 131K 9017
linker 352 130K 449
IP reass 1 128K 1
tfo_ccache 1 128K 1
DEVFS1 114 114K 134
vnet_data 1 112K 1
sem 4 106K 4
tcp_fsb 50 104K 2944
kdtrace 599 103K 25362
gtaskqueue 18 98K 18
umtx 748 94K 748
BPF 46 88K 612
bus 985 81K 5035
mtx_pool 2 72K 2
NFSD srvcache 3 68K 3
syncache 1 68K 1
ddb_capture 1 64K 1
module 512 64K 512
temp 37 39K 14738
sctp_atky 912 37K 29623
DEVFS3 133 34K 144
shm 1 32K 89
hostcache 1 32K 1
msg 4 30K 4
kbdmux 6 28K 6
dirrem 88 22K 11123
cred 86 22K 442
md_disk 6 21K 52
routetbl 172 20K 731
ifaddr 70 20K 82
DEVFS_RULE 56 20K 56
kqueue 254 18K 10244
ufs_mount 4 17K 5
proc 3 17K 3
sctp_timw 64 16K 64
tty 16 16K 16
pwddesc 252 16K 10145
ithread 97 16K 97
GEOM 96 16K 694
lltable 46 15K 240
bus-sc 34 15K 1639
CC Mem 52 13K 5083
eventhandler 157 13K 157
KTRACE 104 13K 1111
ifnet 7 13K 8
devstat 6 13K 6
ether_multi 152 13K 203
ksem 31 12K 172
kenv 95 12K 95
freefile 85 11K 10763
rman 88 11K 431
sctp_athm 658 11K 23301
CAM queue 5 11K 1528
in6_multi 65 9K 83
bmsafemap 2 9K 12451
rpc 4 9K 4
UART 12 9K 12
pfs_vncache 1 8K 1
shmfd 1 8K 79
sctp_map 508 8K 11422
audit_evclass 238 8K 300
DEVFSP 113 8K 2276
taskqueue 63 7K 114
proc-args 272 7K 11361
lockf 56 7K 424
sglist 5 7K 5
CAM DEV 3 6K 510
session 48 6K 90
plimit 24 6K 496
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
pf_ifnet 12 5K 56
UMA 271 5K 271
vt 11 5K 11
pf_table 2 4K 42
evdev 4 4K 4
md_sectors 1 4K 1
MCA 32 4K 32
memdesc 1 4K 1
acpisem 28 4K 28
selfd 55 4K 129217
kcovinfo 52 4K 65
terminal 11 3K 11
select 19 3K 120
uidinfo 3 3K 19
clone 9 3K 9
pf_rule 17 3K 155
ip6ndp 13 3K 17
crypto 8 3K 563
inpcbpolicy 67 3K 6202
freework 9 3K 37697
ipsec-saq 2 2K 2
freeblks 8 2K 12126
io_apic 1 2K 1
local_apic 1 2K 1
sctp_ifa 13 2K 17
Unitno 27 2K 371
CAM XPT 22 2K 543
sctp_stri 3 2K 1729
toponodes 6 2K 6
in_multi 6 2K 9
msi 12 2K 12
mount 28 2K 466
acpidev 20 2K 20
ipsecpolicy 2 2K 2
osd 57 2K 5061
sctp_aadr 18 2K 96
tun 7 2K 8
NFSD session 1 1K 1
vnodemarker 2 1K 704
nhops 6 1K 8
secasvar 1 1K 1
sahead 1 1K 1
mkdir 8 1K 17694
softdep 1 1K 1
pf_osfp 8 1K 8
CAM periph 4 1K 271
sctp_ifn 6 1K 17
ipsec 3 1K 3
isadev 6 1K 6
pfil 6 1K 6
igmp 6 1K 7
mld 6 1K 7
diradd 6 1K 11165
pci_link 10 1K 10
cryptodev 10 1K 2332
procdesc 5 1K 18
encap_export_host 12 1K 12
newdirblk 5 1K 8847
ip_msource 9 1K 109
cdev 2 1K 2
netlink 2 1K 9
biobuf 1 1K 1
chacha20random 1 1K 1
freefrag 3 1K 119
ktls 3 1K 3
CAM SIM 2 1K 2
DEVFS 9 1K 10
NFSD V4client 1 1K 1
NFSD lckfile 1 1K 1
vnodes 1 1K 1
feeder 7 1K 7
prison 6 1K 6
loginclass 3 1K 6
tcpfunc 3 1K 3
lkpikmalloc 5 1K 6
CAM I/O Scheduler 1 1K 1
CAM dev queue 2 1K 2
CAM path 4 1K 1034
pmchooks 1 1K 1
aio 4 1K 40
ktls_ocf 1 1K 1
atkbddev 2 1K 2
apmdev 1 1K 1
nexusdev 8 1K 8
soname 4 1K 24443
filecaps 5 1K 116
sctp_vrf 1 1K 1
acpiintr 1 1K 1
entropy 2 1K 48
pmc 1 1K 1
vnet 1 1K 1
Per-cpu 1 1K 1
vnet_data_free 1 1K 1
cpus 2 1K 2
p1003.1b 1 1K 1
sctp_a_it 0 0K 15
sctp_athi 0 0K 0
sctp_stre 0 0K 0
sctp_cmsg 0 0K 0
sctp_cpal 0 0K 131
sctp_mvrf 0 0K 0
sctp_iter 0 0K 116
sctp_socko 0 0K 8731
sctp_mcore 0 0K 0
tcp_do 0 0K 0
ah 0 0K 0
esp 0 0K 0
ipcomp 0 0K 0
mqdata 0 0K 0
pf_temp 0 0K 0
pf_krule_item 0 0K 0
pf_altq 0 0K 0
CAM ccb queue 0 0K 0
CAM CCB 0 0K 523
nvme_da 0 0K 0
scsi_cd 0 0K 0
scsi_ch 0 0K 0
ata_da 0 0K 0
scsi_da 0 0K 69
scsi_pass 0 0K 0
SCSI sa 0 0K 0
SCSI ENC 0 0K 0
nvlist 0 0K 0
XZ_DEC 0 0K 0
zstd 0 0K 0
aacbuf 0 0K 0
aaccam 0 0K 0
aacraid_buf 0 0K 0
aacraidcam 0 0K 0
acpicmbat 0 0K 0
acpi_perf 0 0K 0
acpipwr 0 0K 0
agp 0 0K 0
AHCI driver 0 0K 0
ata_generic 0 0K 0
ata_dma 0 0K 0
ata_pci 0 0K 0
athdev 0 0K 0
ath_hal 0 0K 0
BACKLIGHT 0 0K 0
ciss_data 0 0K 0
ipsbuf 0 0K 0
ix 0 0K 0
ix_sriov 0 0K 0
LED 0 0K 0
malodev 0 0K 0
mfibuf 0 0K 0
mpr 0 0K 0
MPRSAS 0 0K 0
mpr_user 0 0K 0
mps 0 0K 0
MPSSAS 0 0K 0
mps_user 0 0K 0
mpt_user 0 0K 0
mrsasbuf 0 0K 0
MVS driver 0 0K 0
mwldev 0 0K 0
netmap 0 0K 0
nvd 0 0K 0
nvme 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
sr_iov 0 0K 0
ppbusdev 0 0K 0
PUC 0 0K 0
SIIS driver 0 0K 0
hdaa 0 0K 0
hdac 0 0K 0
hdacc 0 0K 0
ac97 0 0K 0
mixer 0 0K 0
midi buffers 0 0K 0
tcp_log_dev 0 0K 412
twsbuf 0 0K 0
USB 0 0K 0
USBdev 0 0K 0
pvscsi 0 0K 0
vtfont 0 0K 0
sysmouse 0 0K 0
Balloon 0 0K 0
xbd 0 0K 0
xbbd 0 0K 0
xen_acpi 0 0K 0
xnb 0 0K 0
xenstore 0 0K 0
evtchn_dev 0 0K 0
privcmd_dev 0 0K 0
gntdev 0 0K 0
DEVFS2 0 0K 0
DEVFS4 0 0K 0
msdosfs_node 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_fat 0 0K 0
NFSD V4state 0 0K 0
NFSD V4lock 0 0K 0
NFSD string 0 0K 0
NFSD usrgroup 0 0K 0
NFS req 0 0K 0
NFS fh 0 0K 0
NFSCL owner 0 0K 0
NFSCL open 0 0K 0
NFSCL deleg 0 0K 0
NFSCL client 0 0K 0
NFSCL lckown 0 0K 0
NFSCL lck 0 0K 0
NEWNFSnode 0 0K 0
NEWdirectio 0 0K 0
NFSCL diroff 0 0K 0
NFSD rollback 0 0K 0
NFSCL layout 0 0K 0
NFSCL flayout 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL session 0 0K 0
NFSCL layrecall 0 0K 0
newnfsclient_req 0 0K 0
newnfsmnt 0 0K 0
NFS FHA 0 0K 0
tmpfs extattr 0 0K 0
tmpfs mount 0 0K 0
tmpfs name 0 0K 0
tmpfs dir 0 0K 0
geom_flashmap 0 0K 0
raid_data 0 0K 102
md_ddf_data 0 0K 0
md_intel_data 0 0K 0
md_jmicron_data 0 0K 0
md_nvidia_data 0 0K 0
md_promise_data 0 0K 0
md_sii_data 0 0K 0
tr_concat_data 0 0K 0
tr_raid0_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid5_data 0 0K 0
isofs_mount 0 0K 0
isofs_node 0 0K 0
boottrace 0 0K 0
tty console 0 0K 0
pwd 0 0K 0
filedesc_to_leader 0 0K 4
sigio 0 0K 38
Fail Points 0 0K 0
prison_racct 0 0K 0
cache 0 0K 0
rctl 0 0K 0
sendfile 0 0K 0
dumper 0 0K 0
ekcd 0 0K 0
sysctl 0 0K 3
sysctltmp 0 0K 1030
SWAP 0 0K 0
compressor 0 0K 0
firmware 0 0K 0
sbuf 0 0K 404
stack 0 0K 0
Witness 0 0K 0
eventfd 0 0K 0
ioctlops 0 0K 1150
iov 0 0K 27237
timerfd 0 0K 0
pts 0 0K 0
accf 0 0K 0
mbuf_tag 0 0K 0
acl 0 0K 0
lio 0 0K 13
cl_savebuf 0 0K 36
export_host 0 0K 0
namei_tracker 0 0K 8
statfs 0 0K 387
VN POLL 0 0K 0
fadvise 0 0K 14
zlib 0 0K 0
ifdescr 0 0K 0
gif 0 0K 0
vlan 0 0K 0
iflib 0 0K 0
80211vap 0 0K 0
80211crypto 0 0K 0
80211dfs 0 0K 0
80211preq 0 0K 0
80211prep 0 0K 0
80211perr 0 0K 0
80211mesh_rt 0 0K 0
80211mesh_gt 0 0K 0
80211node 0 0K 0
80211nodeie 0 0K 0
80211power 0 0K 0
80211ratectl 0 0K 0
80211scan 0 0K 0
ipid 0 0K 0
in_mfilter 0 0K 198
ip_moptions 0 0K 57
LRO 0 0K 0
tcp_hwpace 0 0K 0
tcplog 0 0K 0
frag6 0 0K 6
in6_mfilter 0 0K 0
ip6_moptions 0 0K 0
ip6_msource 0 0K 0
ip6opt 0 0K 128
ipsecrequest 0 0K 0
ipsec-misc 0 0K 0
ipsec-reg 0 0K 0
ipsec-spdcache 0 0K 0
NLM 0 0K 0
lkpi80211 0 0K 0
lkpifw 0 0K 0
lkpimhi 0 0K 0
lkpindev 0 0K 0
idr 0 0K 0
radix 0 0K 0
lkpiskb 0 0K 0
seq_file 0 0K 0
simple_attr 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
audit_cred 0 0K 0
audit_data 0 0K 0
audit_path 0 0K 0
audit_text 0 0K 0
audit_gidset 0 0K 0
audit_bsm 0 0K 0
audit_evname 0 0K 0
audit_pipe 0 0K 0
audit_pipeent 0 0K 0
audit_pipe_presel 0 0K 0
audit_trigger 0 0K 0
mactemp 0 0K 0
ufs_trim 0 0K 0
allocdirect 0 0K 0
indirdep 0 0K 39539
allocindir 0 0K 0
freedep 0 0K 0
jaddref 0 0K 0
jremref 0 0K 0
jmvref 0 0K 0
jnewblk 0 0K 0
jfreeblk 0 0K 0
jfreefrag 0 0K 0
jseg 0 0K 0
jsegdep 0 0K 0
sbdep 0 0K 354
jtrunc 0 0K 0
jfsync 0 0K 0
sentinel 0 0K 0
savedino 0 0K 23996
jblocks 0 0K 0
vm_pgdata 0 0K 0
UMAHash 0 0K 0
vm_fictitious 0 0K 0
xenbus 0 0K 0
aesni_data 0 0K 0
bxe_ilt 0 0K 0
hyperv_socket 0 0K 0
iommu_dmamap 0 0K 0
isci 0 0K 0
dmar_ctx 0 0K 0
dmar_dom 0 0K 0
dmar_idpgtbl 0 0K 0
qpidrv 0 0K 0
busdma 0 0K 0
bounce 0 0K 0
legacydrv 0 0K 0
xen_hvm 0 0K 0
xen_intr 0 0K 0
fpukern_ctx 0 0K 0
axgbe 0 0K 0
iavf 0 0K 0
ice 0 0K 0
ice-osdep 0 0K 0
ice-resmgr 0 0K 0
ixl 0 0K 0
smartpqi 0 0K 0
madt_table 0 0K 2
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8486 912 77284 0 254 38494208 0
mbuf 256 22283 23950 6331813 0 254 11835648 0
tcp_log 416 5529 4893 125074 0 254 4335552 0
malloc-16384 16384 188 4 8926 0 1 3145728 0
malloc-384 384 4876 134 26843 0 30 1923840 0
RADIX NODE 144 12810 401 285567 0 62 1902384 0
ertt_txseginfo 40 32678 13580 4018468 0 254 1850320 0
BUF TRIE 144 552 11264 67493 0 62 1701504 0
mbuf_cluster 2048 762 0 762 0 254 1560576 0
malloc-128 128 11628 90 11745 0 126 1499904 0
malloc-4096 4096 360 6 2520 0 2 1499136 0
sctp_chunk 152 4177 5235 294699 0 254 1430624 0
UMA Slabs 0 112 11823 15 11823 0 126 1325856 0
vmem btag 56 23502 81 23502 0 254 1320648 0
sctp_asoc 2256 254 256 5519 0 254 1150560 0
malloc-4096 4096 252 4 9987 0 2 1048576 0
malloc-65536 65536 5 10 457 0 1 983040 0
256 Bucket 2048 362 112 26911 0 8 970752 0
FFS inode 1160 804 29 11567 0 8 966280 0
VM OBJECT 264 3395 115 125619 0 30 926640 0
sctp_ep 1176 401 369 16039 0 254 905520 0
malloc-2048 2048 406 18 16086 0 8 868352 0
socket 960 249 515 23829 0 254 733440 0
MAP ENTRY 96 6889 293 413707 0 126 689472 0
THREAD 1824 346 28 15374 0 8 682176 0
tcp_bbr_map 128 3541 644 201208 0 126 535680 0
malloc-1024 1024 396 116 6926 0 16 524288 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
VNODE 448 845 91 11611 0 30 419328 0
sctp_raddr 736 261 256 6573 0 254 380512 0
PROC 1376 251 13 9986 0 8 363264 0
malloc-8192 8192 37 7 366 0 1 360448 0
FPU_save_area 832 348 39 15857 0 16 321984 0
filedesc0 1072 252 21 10145 0 8 292656 0
malloc-256 256 36 1029 127433 0 62 272640 0
malloc-256 256 504 561 47227 0 62 272640 0
malloc-32768 32768 0 8 37458 0 1 262144 0
malloc-2048 2048 4 124 518 0 8 262144 0
malloc-64 64 3853 242 3865 0 254 262080 0
malloc-384 384 123 537 12178 0 30 253440 0
malloc-16 16 14639 361 19759 0 254 240000 0
malloc-256 256 342 588 12655 0 62 238080 0
DEVCTL 1024 0 220 175 0 0 225280 0
FFS2 dinode 256 804 66 11567 0 62 222720 0
malloc-128 128 1460 183 19175 0 126 210304 0
mbuf_packet 256 47 715 51663 0 254 195072 0
UMA Zones 768 243 1 243 0 16 187392 0
malloc-32 32 5320 350 5351 0 254 181440 0
malloc-128 128 1180 215 26331 0 126 178560 0
g_bio 408 0 390 553699 0 30 159120 0
VMSPACE 616 220 38 9910 0 16 158928 0
128 Bucket 1024 71 76 1601 0 16 150528 0
S VFS Cache 104 1029 375 12621 0 126 146016 0
malloc-256 256 437 133 16850 0 62 145920 0
malloc-65536 65536 0 2 136 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-32768 32768 4 0 4 0 1 131072 0
unpcb 256 24 486 1512 0 254 130560 0
ksiginfo 112 251 793 1087 0 126 116928 0
malloc-384 384 266 34 266 0 30 115200 0
tcp_inpcb 1304 52 29 5041 0 8 105624 0
64 Bucket 512 123 77 30826 0 30 102400 0
malloc-32768 32768 3 0 3 0 1 98304 0
malloc-4096 4096 23 1 575 0 2 98304 0
UMA Kegs 384 229 4 229 0 30 89472 0
malloc-64 64 562 761 23112 0 254 84672 0
malloc-128 128 101 550 10915 0 126 83328 0
malloc-128 128 399 252 9918 0 126 83328 0
malloc-256 256 137 178 3674 0 62 80640 0
sctp_readq 152 0 520 797 0 254 79040 0
malloc-4096 4096 15 3 30 0 2 73728 0
Files 80 720 180 50270 0 126 72000 0
malloc-64 64 621 450 22659 0 254 68544 0
malloc-64 64 873 198 160053 0 254 68544 0
malloc-128 128 201 326 5966 0 126 67456
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the bug is already fixed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite bug's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the bug is a duplicate of another bug, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot
Aug 28, 2023, 10:12:49 PM8/28/23
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: 570688f0a5c2 spibus: Make ofw_spibus probe just a little m..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=115eadb7a80000
dashboard link: https://syzkaller.appspot.com/bug?extid=78258dbb02eb92157357
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=13f40cdba80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=11c4a688680000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+78258d...@syzkaller.appspotmail.com
panic: malloc: called with spinlock or critical section held
cpuid = 0
time = 1693274711
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a469db0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a469f10
vpanic() at vpanic+0x271/frame 0xfffffe006a46a0b0
panic() at panic+0xb5/frame 0xfffffe006a46a180
malloc_dbg() at malloc_dbg+0x212/frame 0xfffffe006a46a1b0
malloc() at malloc+0x45/frame 0xfffffe006a46a1f0
aesni_cipher_crypt() at aesni_cipher_crypt+0x123/frame 0xfffffe006a46a330
aesni_process() at aesni_process+0x242/frame 0xfffffe006a46a370
crypto_invoke() at crypto_invoke+0x261/frame 0xfffffe006a46a4a0
crypto_dispatch_one() at crypto_dispatch_one+0x18c/frame 0xfffffe006a46a4d0
ktls_ocf_dispatch() at ktls_ocf_dispatch+0x10c/frame 0xfffffe006a46a5b0
ktls_ocf_tls_cbc_encrypt() at ktls_ocf_tls_cbc_encrypt+0xdc3/frame 0xfffffe006a46a790
ktls_encrypt() at ktls_encrypt+0x1d4/frame 0xfffffe006a46ab50
ktls_work_thread() at ktls_work_thread+0x7e2/frame 0xfffffe006a46aef0
fork_exit() at fork_exit+0xc9/frame 0xfffffe006a46af30
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe006a46af30
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
KDB: enter: panic
[ thread pid 776 tid 100112 ]
rdx 0xdffff7c000000000
rbx 0xffffffff826da520 .str.28
rsp 0xfffffe006a469ef0
rbp 0xfffffe006a469f10
rsi 0x1
rdi 0
r8 0
r9 0xffffffff
r10 0x2782281068802aa1
r11 0
r12 0
r13 0xfffffe006cb85ac0
100113 D - 0xfffffe006ce5fa80 [thr_1]
100114 D - 0xffffffff8382f288 [reclaim_0]
100112 Run CPU 0 [thr_0]
100113 D - 0xfffffe006ce5fa80 [thr_1]
100114 D - 0xffffffff8382f288 [reclaim_0]
775 773 773 0 RE CPU 1 syz-executor1006021
773 771 773 0 Ss pause 0xfffffe00571dd610 csh
771 682 771 0 Ss select 0xfffffe000784e3c0 sshd
746 1 746 0 Ss+ ttyin 0xfffffe00576b7cb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00587f8cb0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00576b84b0 getty
737 736 18 0 S+ nanslp 0xffffffff8371dc00 sleep
736 1 18 0 S+ wait 0xfffffe0054217060 sh
495 1 495 0 Ss select 0xfffffe0058a2e040 syslogd
424 1 424 0 Ss select 0xfffffe0058a2e140 devd
423 1 423 65 Ss select 0xfffffe0058a2e0c0 dhclient
338 1 338 0 Ss select 0xfffffe000784e5c0 dhclient
335 1 335 0 Ss select 0xfffffe000784e740 dhclient
5 0 0 0 DL waiting 0xffffffff842db360 [sctp_iterator]
100066 D - 0xffffffff826df660 [deadlkres]
sysctloid 35139 2071K 35210
vtbuf 24 1968K 46
kobj 326 1304K 487
newblk 849 1236K 861
vfscache 3 1025K 3
pcb 23 669K 42
inodedep 49 530K 71
subproc 97 185K 833
pagedep 14 132K 18
linker 352 130K 385
gtaskqueue 18 98K 18
shm 1 32K 1
hostcache 1 32K 1
kdtrace 156 32K 892
DEVFS3 124 31K 134
umtx 242 31K 242
BPF 10 18K 10
ithread 97 16K 97
bus-sc 34 15K 1639
eventhandler 157 13K 157
KTRACE 100 13K 100
kenv 95 12K 95
ifaddr 30 12K 32
rman 88 11K 431
GEOM 61 11K 480
routetbl 50 11K 176
ksem 1 8K 1
pfs_vncache 1 8K 1
shmfd 1 8K 1
audit_evclass 238 8K 300
taskqueue 63 7K 63
plimit 17 5K 337
dirrem 17 5K 28
vt 11 5K 11
ifnet 3 5K 3
evdev 4 4K 4
filedesc 1 4K 1
lltable 11 4K 11
diradd 25 4K 36
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
kqueue 41 3K 779
pwddesc 40 3K 777
session 20 3K 32
uidinfo 3 3K 9
clone 9 3K 9
crypto 8 3K 8
proc-args 62 3K 1703
ipsec-saq 2 2K 2
selfd 27 2K 13196
Unitno 27 2K 41
msi 12 2K 12
CC Mem 4 1K 8
indirdep 3 1K 3
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
encap_export_host 12 1K 12
ip6ndp 4 1K 5
cdev 2 1K 2
in_multi 2 1K 4
mkdir 4 1K 16
newdirblk 4 1K 8
osd 9 1K 21
ktls 3 1K 3
sctp_ifn 2 1K 6
mld 2 1K 2
netlink 1 1K 1
soname 4 1K 3406
tun 3 1K 3
pf_altq 0 0K 0
pf_rule 0 0K 0
pf_table 0 0K 0
sctp_map 0 0K 0
sctp_stri 0 0K 0
sctp_stro 0 0K 0
sctp_aadr 0 0K 0
sctp_a_it 0 0K 4
sctp_atcl 0 0K 0
sctp_atky 0 0K 0
sctp_athm 0 0K 0
sctp_timw 0 0K 0
sctp_mvrf 0 0K 0
sctp_iter 0 0K 4
sctp_socko 0 0K 0
sctp_mcore 0 0K 0
tcp_do 0 0K 0
filemon 0 0K 0
md_disk 0 0K 0
md_sectors 0 0K 0
tcp_log_dev 0 0K 0
raid_data 0 0K 72
sigio 0 0K 1
iov 0 0K 13591
aio 0 0K 0
cl_savebuf 0 0K 4
export_host 0 0K 0
namei_tracker 0 0K 0
statfs 0 0K 197
ip_moptions 0 0K 0
ip_msource 0 0K 0
allocindir 0 0K 0
freefrag 0 0K 1
freeblks 0 0K 25
freefile 0 0K 9
mbuf_jumbo_page 4096 8320 1078 15880 0 254 38494208 0
mbuf 256 8579 1083 19556 0 254 2473472 0
BUF TRIE 144 191 11625 584 0 62 1701504 0
malloc-384 384 4199 31 4201 0 30 1624320 0
malloc-128 128 11551 167 11618 0 126 1499904 0
malloc-4096 4096 330 2 690 0 2 1359872 0
UMA Slabs 0 112 10604 10 10604 0 126 1188768 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 15414 105 15414 0 254 869064 0
FFS inode 1160 502 23 512 0 8 609000 0
socket 960 19 489 1316 0 254 487680 0
malloc-65536 65536 5 2 51 0 1 458752 0
256 Bucket 2048 118 20 832 0 8 282624 0
malloc-64 64 3840 255 3852 0 254 262080 0
VM OBJECT 264 927 63 14172 0 30 261360 0
VNODE 448 532 44 544 0 30 258048 0
malloc-256 256 851 79 913 0 62 238080 0
malloc-16 16 14531 219 14626 0 254 236000 0
DEVCTL 1024 0 220 123 0 0 225280 0
THREAD 1824 114 7 114 0 8 220704 0
malloc-2048 2048 4 100 511 0 8 212992 0
UMA Zones 768 242 2 242 0 16 187392 0
malloc-32 32 5305 365 5336 0 254 181440 0
malloc-4096 4096 41 3 777 0 2 180224 0
malloc-128 128 1176 219 26100 0 126 178560 0
malloc-1024 1024 133 11 1014 0 16 147456 0
FFS2 dinode 256 502 68 511 0 62 145920 0
unpcb 256 7 503 1159 0 254 130560 0
mbuf_packet 256 0 508 118 0 254 130048 0
MAP ENTRY 96 893 367 40409 0 126 120960 0
ksiginfo 112 35 1009 50 0 126 116928 0
FPU_save_area 832 116 19 129 0 16 112320 0
S VFS Cache 104 969 45 1008 0 126 105456 0
g_bio 408 0 210 4524 0 30 85680 0
128 Bucket 1024 43 40 237 0 16 84992 0
malloc-256 256 222 93 947 0 62 80640 0
PROC 1376 40 15 776 0 8 75680 0
malloc-64 64 473 598 930 0 254 68544 0
malloc-64 64 523 548 14874 0 254 68544 0
malloc-128 128 387 140 902 0 126 67456 0
DIRHASH 1024 35 29 35 0 16 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-16384 16384 4 0 4 0 1 65536 0
malloc-4096 4096 14 2 25 0 2 65536 0
malloc-2048 2048 7 25 531 0 8 65536 0
malloc-1024 1024 15 49 526 0 16 65536 0
malloc-256 256 160 95 702 0 62 65280 0
filedesc0 1072 41 15 777 0 8 60032 0
udp_inpcb 424 6 120 128 0 30 53424 0
malloc-256 256 66 129 220 0 62 49920 0
32 Bucket 256 54 141 2679 0 62 49920 0
NAMEI 1024 0 48 12114 0 16 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
da_ccb 544 0 84 1268 0 16 45696 0
syncache 168 0 264 5 0 254 44352 0
malloc-8192 8192 4 1 6 0 1 40960 0
malloc-4096 4096 8 2 8 0 2 40960 0
pipe 728 7 48 284 0 16 40040 0
pcpu-8 8 4284 324 4312 0 254 36864 0
64 Bucket 512 64 8 1142 0 30 36864 0
malloc-64 64 4 563 20 0 254 36288 0
malloc-64 64 169 398 704 0 254 36288 0
malloc-64 64 239 328 287 0 254 36288 0
malloc-64 64 159 408 15562 0 254 36288 0
malloc-64 64 3 564 21 0 254 36288 0
malloc-128 128 9 270 25 0 126 35712 0
malloc-128 128 60 219 580 0 126 35712 0
malloc-128 128 122 157 3525 0 126 35712 0
malloc-128 128 21 258 280 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 57 33 57 0 30 34560 0
malloc-384 384 56 34 100 0 30 34560 0
malloc-256 256 28 107 145 0 62 34560 0
malloc-256 256 39 96 83 0 62 34560 0
malloc-256 256 59 76 464 0 62 34560 0
malloc-256 256 23 112 599 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-4096 4096 6 2 556 0 2 32768 0
malloc-2048 2048 0 16 12 0 8 32768 0
malloc-2048 2048 2 14 2 0 8 32768 0
malloc-2048 2048 7 9 31 0 8 32768 0
malloc-2048 2048 2 14 61 0 8 32768 0
malloc-2048 2048 5 11 196 0 8 32768 0
malloc-2048 2048 3 13 5 0 8 32768 0
malloc-1024 1024 2 30 42 0 16 32768 0
malloc-1024 1024 7 25 7 0 16 32768 0
malloc-1024 1024 4 28 153 0 16 32768 0
malloc-1024 1024 0 32 4 0 16 32768 0
malloc-512 512 2 62 11 0 30 32768 0
malloc-512 512 7 57 73 0 30 32768 0
malloc-512 512 9 55 10 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 20 244 32 0 126 31680 0
clpbuf 2624 0 12 28 0 4 31488 0
VMSPACE 616 23 25 760 0 16 29568 0
malloc-32 32 320 562 1435 0 254 28224 0
16 Bucket 144 47 149 252 0 62 28224 0
4 Bucket 48 6 582 8 0 254 28224 0
TURNSTILE 136 122 67 122 0 62 25704 0
cpuset 200 8 120 8 0 62 25600 0
ripcb 392 1 62 4 0 30 24696 0
malloc-8192 8192 1 2 102 0 1 24576 0
ertt_txseginfo 40 1 605 295 0 254 24240 0
rl_entry 40 27 579 27 0 254 24240 0
PWD 40 10 596 101 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
Files 80 72 228 6540 0 126 24000 0
8 Bucket 80 52 248 551 0 126 24000 0
tcp_inpcb 1304 4 14 8 0 8 23472 0
malloc-384 384 11 49 11 0 30 23040 0
malloc-384 384 2 58 336 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 122 134 122 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
tcp_inpcb ports 32 1 629 2 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 4 276 8 0 126 20160 0
malloc-32 32 52 578 573 0 254 20160 0
malloc-32 32 78 552 310 0 254 20160 0
malloc-32 32 87 543 921 0 254 20160 0
malloc-32 32 48 582 2728 0 254 20160 0
malloc-32 32 31 599 63 0 254 20160 0
2 Bucket 32 48 582 289 0 254 20160 0
ktls_session 256 1 74 1 0 62 19200 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 1 3 3 0 2 16384 0
malloc-4096 4096 3 1 3 0 2 16384 0
malloc-4096 4096 0 4 3 0 2 16384 0
malloc-1024 1024 1 15 2 0 16 16384 0
malloc-1024 1024 8 8 8 0 16 16384 0
malloc-512 512 0 32 118 0 30 16384 0
malloc-512 512 1 31 1 0 30 16384 0
malloc-512 512 1 31 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
sctp_laddr 48 0 336 4 0 254 16128 0
kenv 258 16 44 1009 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
malloc-32 32 10 368 51 0 254 12096 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 10 740 15 0 254 12000 0
malloc-16 16 291 459 335 0 254 12000 0
malloc-16 16 56 694 141 0 254 12000 0
malloc-16 16 16 734 294 0 254 12000 0
malloc-16 16 205 545 4269 0 254 12000 0
malloc-16 16 14 736 25534 0 254 12000 0
malloc-16 16 18 732 20 0 254 12000 0
malloc-384 384 1 29 1 0 30 11520 0
malloc-384 384 13 17 13 0 30 11520 0
malloc-8192 8192 0 1 26 0 1 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
vtnet_tx_hdr 24 0 334 2707 0 254 8016 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
ipq 56 0 0 0 0 254 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1176 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
ripcb ports 32 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
TMPFS node 232 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-384 384 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
HEAD commit: 570688f0a5c2 spibus: Make ofw_spibus probe just a little m..
git tree: freebsd-src
dashboard link: https://syzkaller.appspot.com/bug?extid=78258dbb02eb92157357
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=13f40cdba80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=11c4a688680000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+78258d...@syzkaller.appspotmail.com
panic: malloc: called with spinlock or critical section held
time = 1693274711
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a469db0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a469f10
vpanic() at vpanic+0x271/frame 0xfffffe006a46a0b0
panic() at panic+0xb5/frame 0xfffffe006a46a180
malloc_dbg() at malloc_dbg+0x212/frame 0xfffffe006a46a1b0
malloc() at malloc+0x45/frame 0xfffffe006a46a1f0
aesni_cipher_crypt() at aesni_cipher_crypt+0x123/frame 0xfffffe006a46a330
aesni_process() at aesni_process+0x242/frame 0xfffffe006a46a370
crypto_invoke() at crypto_invoke+0x261/frame 0xfffffe006a46a4a0
crypto_dispatch_one() at crypto_dispatch_one+0x18c/frame 0xfffffe006a46a4d0
ktls_ocf_dispatch() at ktls_ocf_dispatch+0x10c/frame 0xfffffe006a46a5b0
ktls_ocf_tls_cbc_encrypt() at ktls_ocf_tls_cbc_encrypt+0xdc3/frame 0xfffffe006a46a790
ktls_encrypt() at ktls_encrypt+0x1d4/frame 0xfffffe006a46ab50
ktls_work_thread() at ktls_work_thread+0x7e2/frame 0xfffffe006a46aef0
fork_exit() at fork_exit+0xc9/frame 0xfffffe006a46af30
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe006a46af30
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
KDB: enter: panic
[ thread pid 776 tid 100112 ]
Stopped at kdb_enter+0x6e: movq $0,0x2179507(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe00033eee30
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rdx 0xdffff7c000000000
rbx 0xffffffff826da520 .str.28
rsp 0xfffffe006a469ef0
rbp 0xfffffe006a469f10
rsi 0x1
rdi 0
r8 0
r9 0xffffffff
r10 0x2782281068802aa1
r11 0
r12 0
r13 0xfffffe006cb85ac0
r14 0xffffffff826da520 .str.28
r15 0
rip 0xffffffff815c330e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x2179507(%rip)
db> show proc
Process 776 (KTLS) at 0xfffffe006cd6c000:
r15 0
rip 0xffffffff815c330e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x2179507(%rip)
db> show proc
state: NORMAL
uid: 0 gids: 0
parent: pid 0 at 0xffffffff836c6fa0
ABI: null
flag: 0x10000284 flag2: 0
reaper: 0xffffffff836c6fa0 reapsubtree: 776
uid: 0 gids: 0
parent: pid 0 at 0xffffffff836c6fa0
ABI: null
flag: 0x10000284 flag2: 0
sigparent: 20
vmspace: 0xffffffff836c7f40
(map 0xffffffff836c7f40)
(map.pmap 0xffffffff836c8000)
(pmap 0xffffffff836c8070)
threads: 3
100112 Run CPU 0 [thr_0]
vmspace: 0xffffffff836c7f40
(map 0xffffffff836c7f40)
(map.pmap 0xffffffff836c8000)
(pmap 0xffffffff836c8070)
threads: 3
100113 D - 0xfffffe006ce5fa80 [thr_1]
100114 D - 0xffffffff8382f288 [reclaim_0]
db> ps
pid ppid pgrp uid state wmesg wchan cmd
776 0 0 0 RL (threaded) [KTLS]
pid ppid pgrp uid state wmesg wchan cmd
100112 Run CPU 0 [thr_0]
100113 D - 0xfffffe006ce5fa80 [thr_1]
100114 D - 0xffffffff8382f288 [reclaim_0]
775 773 773 0 RE CPU 1 syz-executor1006021
773 771 773 0 Ss pause 0xfffffe00571dd610 csh
771 682 771 0 Ss select 0xfffffe000784e3c0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00572198b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00576b74b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00576b7cb0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00587f8cb0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00576b84b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe005439e4b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe005439ecb0 getty
741 1 741 0 Ss+ ttyin 0xfffffe005439f4b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe005439fcb0 getty
738 1 18 0 S+ piperd 0xfffffe006cc933e8 logger
742 1 742 0 Ss+ ttyin 0xfffffe005439ecb0 getty
741 1 741 0 Ss+ ttyin 0xfffffe005439f4b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe005439fcb0 getty
737 736 18 0 S+ nanslp 0xffffffff8371dc00 sleep
736 1 18 0 S+ wait 0xfffffe0054217060 sh
686 1 686 0 Ss nanslp 0xffffffff8371dc00 cron
682 1 682 0 Ss select 0xfffffe000784e640 sshd
495 1 495 0 Ss select 0xfffffe0058a2e040 syslogd
424 1 424 0 Ss select 0xfffffe0058a2e140 devd
423 1 423 65 Ss select 0xfffffe0058a2e0c0 dhclient
338 1 338 0 Ss select 0xfffffe000784e5c0 dhclient
335 1 335 0 Ss select 0xfffffe000784e740 dhclient
17 0 0 0 DL vlruwt 0xfffffe00571deae0 [vnlru]
16 0 0 0 DL syncer 0xffffffff8383b2e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83839900 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100095 D sdflush 0xfffffe00570ca4e8 [/ worker]
16 0 0 0 DL syncer 0xffffffff8383b2e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff83839900 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
9 0 0 0 DL psleep 0xffffffff838ac480 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff83894338 [dom0]
100080 D launds 0xffffffff83894344 [laundry: dom0]
100081 D umarcl 0xffffffff81d4c2b0 [uma]
7 0 0 0 DL - 0xffffffff834b2c28 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff844963d0 [pf purge]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff83894338 [dom0]
100080 D launds 0xffffffff83894344 [laundry: dom0]
100081 D umarcl 0xffffffff81d4c2b0 [uma]
7 0 0 0 DL - 0xffffffff834b2c28 [rand_harvestq]
5 0 0 0 DL waiting 0xffffffff842db360 [sctp_iterator]
100070 D - 0xfffffe00079d0100 [mca taskq]
100072 D - 0xfffffe0058761300 [acpi_task_0]
100073 D - 0xfffffe0058761300 [acpi_task_1]
100074 D - 0xfffffe0058761300 [acpi_task_2]
100075 D - 0xfffffe00079cf000 [CAM taskq]
db> show all locks
100072 D - 0xfffffe0058761300 [acpi_task_0]
100073 D - 0xfffffe0058761300 [acpi_task_1]
100074 D - 0xfffffe0058761300 [acpi_task_2]
100075 D - 0xfffffe00079cf000 [CAM taskq]
db> show all locks
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4191 4324K 4216
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
sysctloid 35139 2071K 35210
vtbuf 24 1968K 46
kobj 326 1304K 487
newblk 849 1236K 861
vfscache 3 1025K 3
pcb 23 669K 42
inodedep 49 530K 71
callout 2 512K 2
vfs_hash 1 512K 1
ufs_quota 1 512K 1
intr 4 472K 4
acpitask 1 224K 1
vfs_hash 1 512K 1
ufs_quota 1 512K 1
intr 4 472K 4
subproc 97 185K 833
acpica 1674 184K 56014
tidhash 3 141K 3
vmem 3 134K 4
tidhash 3 141K 3
pagedep 14 132K 18
linker 352 130K 385
IP reass 1 128K 1
tfo_ccache 1 128K 1
tfo_ccache 1 128K 1
vnet_data 1 112K 1
sem 4 106K 4
DEVFS1 105 105K 114
sem 4 106K 4
gtaskqueue 18 98K 18
bus 985 81K 5035
mtx_pool 2 72K 2
NFSD srvcache 3 68K 3
syncache 1 68K 1
ddb_capture 1 64K 1
module 512 64K 512
temp 18 37K 1572
mtx_pool 2 72K 2
NFSD srvcache 3 68K 3
syncache 1 68K 1
ddb_capture 1 64K 1
module 512 64K 512
shm 1 32K 1
hostcache 1 32K 1
kdtrace 156 32K 892
DEVFS3 124 31K 134
umtx 242 31K 242
msg 4 30K 4
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
kbdmux 6 28K 6
BPF 10 18K 10
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
proc 3 17K 3
ithread 97 16K 97
bus-sc 34 15K 1639
eventhandler 157 13K 157
KTRACE 100 13K 100
kenv 95 12K 95
ifaddr 30 12K 32
rman 88 11K 431
GEOM 61 11K 480
routetbl 50 11K 176
CAM queue 5 11K 1528
bmsafemap 4 9K 39
rpc 4 9K 4
UART 12 9K 12
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
pfs_vncache 1 8K 1
shmfd 1 8K 1
audit_evclass 238 8K 300
taskqueue 63 7K 63
sglist 5 7K 5
CAM DEV 3 6K 510
cred 23 6K 284
CAM DEV 3 6K 510
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 270 5K 270
hhook 15 5K 17
ufs_dirhash 24 5K 24
plimit 17 5K 337
dirrem 17 5K 28
vt 11 5K 11
ifnet 3 5K 3
evdev 4 4K 4
filedesc 1 4K 1
MCA 32 4K 32
memdesc 1 4K 1
acpisem 28 4K 28
ether_multi 40 4K 50
memdesc 1 4K 1
acpisem 28 4K 28
lltable 11 4K 11
diradd 25 4K 36
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
kqueue 41 3K 779
pwddesc 40 3K 777
session 20 3K 32
uidinfo 3 3K 9
clone 9 3K 9
crypto 8 3K 8
proc-args 62 3K 1703
ipsec-saq 2 2K 2
io_apic 1 2K 1
local_apic 1 2K 1
lockf 16 2K 26
local_apic 1 2K 1
selfd 27 2K 13196
Unitno 27 2K 41
CAM XPT 22 2K 543
toponodes 6 2K 6
msi 12 2K 12
acpidev 20 2K 20
ipsecpolicy 2 2K 2
ipsecpolicy 2 2K 2
NFSD session 1 1K 1
vnodemarker 2 1K 8
CC Mem 4 1K 8
secasvar 1 1K 1
sahead 1 1K 1
softdep 1 1K 1
sahead 1 1K 1
CAM periph 4 1K 271
select 7 1K 29
ipsec 3 1K 3
isadev 6 1K 6
pfil 6 1K 6
nhops 6 1K 6
isadev 6 1K 6
pfil 6 1K 6
indirdep 3 1K 3
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
encap_export_host 12 1K 12
ip6ndp 4 1K 5
cdev 2 1K 2
in_multi 2 1K 4
mkdir 4 1K 16
newdirblk 4 1K 8
osd 9 1K 21
biobuf 1 1K 1
chacha20random 1 1K 1
inpcbpolicy 11 1K 140
chacha20random 1 1K 1
ktls 3 1K 3
sctp_ifn 2 1K 6
CAM SIM 2 1K 2
DEVFS 9 1K 10
DEVFSP 4 1K 9
DEVFS 9 1K 10
NFSD V4client 1 1K 1
NFSD lckfile 1 1K 1
vnodes 1 1K 1
igmp 2 1K 2
NFSD lckfile 1 1K 1
vnodes 1 1K 1
mld 2 1K 2
feeder 7 1K 7
prison 6 1K 6
loginclass 3 1K 7
prison 6 1K 6
tcpfunc 3 1K 3
lkpikmalloc 5 1K 6
cryptodev 2 1K 49
lkpikmalloc 5 1K 6
CAM I/O Scheduler 1 1K 1
CAM dev queue 2 1K 2
CAM path 4 1K 1034
pmchooks 1 1K 1
procdesc 1 1K 6
CAM dev queue 2 1K 2
CAM path 4 1K 1034
pmchooks 1 1K 1
netlink 1 1K 1
ktls_ocf 1 1K 1
atkbddev 2 1K 2
apmdev 1 1K 1
nexusdev 8 1K 8
filecaps 4 1K 66
atkbddev 2 1K 2
apmdev 1 1K 1
nexusdev 8 1K 8
soname 4 1K 3406
tun 3 1K 3
sctp_vrf 1 1K 1
acpiintr 1 1K 1
entropy 2 1K 35
acpiintr 1 1K 1
pmc 1 1K 1
vnet 1 1K 1
Per-cpu 1 1K 1
vnet_data_free 1 1K 1
cpus 2 1K 2
p1003.1b 1 1K 1
freework 1 1K 26
vnet 1 1K 1
Per-cpu 1 1K 1
vnet_data_free 1 1K 1
cpus 2 1K 2
p1003.1b 1 1K 1
pf_temp 0 0K 0
pf_krule_item 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_altq 0 0K 0
pf_rule 0 0K 0
pf_table 0 0K 0
sctp_map 0 0K 0
sctp_stri 0 0K 0
sctp_stro 0 0K 0
sctp_aadr 0 0K 0
sctp_a_it 0 0K 4
sctp_atcl 0 0K 0
sctp_atky 0 0K 0
sctp_athm 0 0K 0
sctp_athi 0 0K 0
sctp_stre 0 0K 0
sctp_cmsg 0 0K 0
sctp_cpal 0 0K 0
sctp_stre 0 0K 0
sctp_cmsg 0 0K 0
sctp_timw 0 0K 0
sctp_mvrf 0 0K 0
sctp_iter 0 0K 4
sctp_socko 0 0K 0
sctp_mcore 0 0K 0
mqdata 0 0K 0
ah 0 0K 0
esp 0 0K 0
ipcomp 0 0K 0
tcp_fsb 0 0K 0
ah 0 0K 0
esp 0 0K 0
ipcomp 0 0K 0
tcp_do 0 0K 0
filemon 0 0K 0
md_sectors 0 0K 0
md_ddf_data 0 0K 0
md_intel_data 0 0K 0
md_jmicron_data 0 0K 0
md_nvidia_data 0 0K 0
md_promise_data 0 0K 0
md_sii_data 0 0K 0
tr_concat_data 0 0K 0
tr_raid0_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid5_data 0 0K 0
isofs_mount 0 0K 0
isofs_node 0 0K 0
boottrace 0 0K 0
tty console 0 0K 0
pwd 0 0K 0
filedesc_to_leader 0 0K 0
md_intel_data 0 0K 0
md_jmicron_data 0 0K 0
md_nvidia_data 0 0K 0
md_promise_data 0 0K 0
md_sii_data 0 0K 0
tr_concat_data 0 0K 0
tr_raid0_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid5_data 0 0K 0
isofs_mount 0 0K 0
isofs_node 0 0K 0
boottrace 0 0K 0
tty console 0 0K 0
pwd 0 0K 0
sigio 0 0K 1
Fail Points 0 0K 0
prison_racct 0 0K 0
kcovinfo 0 0K 0
prison_racct 0 0K 0
cache 0 0K 0
rctl 0 0K 0
sendfile 0 0K 0
dumper 0 0K 0
ekcd 0 0K 0
sysctl 0 0K 3
sysctltmp 0 0K 650
rctl 0 0K 0
sendfile 0 0K 0
dumper 0 0K 0
ekcd 0 0K 0
sysctl 0 0K 3
SWAP 0 0K 0
compressor 0 0K 0
firmware 0 0K 0
sbuf 0 0K 288
compressor 0 0K 0
firmware 0 0K 0
stack 0 0K 0
Witness 0 0K 0
eventfd 0 0K 0
ioctlops 0 0K 86
Witness 0 0K 0
eventfd 0 0K 0
iov 0 0K 13591
timerfd 0 0K 0
pts 0 0K 0
accf 0 0K 0
mbuf_tag 0 0K 0
acl 0 0K 0
lio 0 0K 0
pts 0 0K 0
accf 0 0K 0
mbuf_tag 0 0K 0
acl 0 0K 0
aio 0 0K 0
cl_savebuf 0 0K 4
export_host 0 0K 0
namei_tracker 0 0K 0
statfs 0 0K 197
VN POLL 0 0K 0
fadvise 0 0K 0
zlib 0 0K 0
ifdescr 0 0K 0
gif 0 0K 0
vlan 0 0K 0
iflib 0 0K 0
80211vap 0 0K 0
80211crypto 0 0K 0
80211dfs 0 0K 0
80211preq 0 0K 0
80211prep 0 0K 0
80211perr 0 0K 0
80211mesh_rt 0 0K 0
80211mesh_gt 0 0K 0
80211node 0 0K 0
80211nodeie 0 0K 0
80211power 0 0K 0
80211ratectl 0 0K 0
80211scan 0 0K 0
ipid 0 0K 0
in_mfilter 0 0K 0
ifdescr 0 0K 0
gif 0 0K 0
vlan 0 0K 0
iflib 0 0K 0
80211vap 0 0K 0
80211crypto 0 0K 0
80211dfs 0 0K 0
80211preq 0 0K 0
80211prep 0 0K 0
80211perr 0 0K 0
80211mesh_rt 0 0K 0
80211mesh_gt 0 0K 0
80211node 0 0K 0
80211nodeie 0 0K 0
80211power 0 0K 0
80211ratectl 0 0K 0
80211scan 0 0K 0
ipid 0 0K 0
ip_moptions 0 0K 0
ip_msource 0 0K 0
LRO 0 0K 0
tcp_hwpace 0 0K 0
tcplog 0 0K 0
frag6 0 0K 0
tcp_hwpace 0 0K 0
tcplog 0 0K 0
in6_mfilter 0 0K 0
ip6_moptions 0 0K 0
ip6_msource 0 0K 0
ip6opt 0 0K 3
ip6_moptions 0 0K 0
ip6_msource 0 0K 0
freefrag 0 0K 1
freeblks 0 0K 25
freefile 0 0K 9
freedep 0 0K 0
jaddref 0 0K 0
jremref 0 0K 0
jmvref 0 0K 0
jnewblk 0 0K 0
jfreeblk 0 0K 0
jfreefrag 0 0K 0
jseg 0 0K 0
jsegdep 0 0K 0
sbdep 0 0K 2
jaddref 0 0K 0
jremref 0 0K 0
jmvref 0 0K 0
jnewblk 0 0K 0
jfreeblk 0 0K 0
jfreefrag 0 0K 0
jseg 0 0K 0
jsegdep 0 0K 0
jtrunc 0 0K 0
jfsync 0 0K 0
sentinel 0 0K 0
savedino 0 0K 15
jfsync 0 0K 0
sentinel 0 0K 0
mbuf 256 8579 1083 19556 0 254 2473472 0
BUF TRIE 144 191 11625 584 0 62 1701504 0
malloc-384 384 4199 31 4201 0 30 1624320 0
malloc-128 128 11551 167 11618 0 126 1499904 0
malloc-4096 4096 330 2 690 0 2 1359872 0
UMA Slabs 0 112 10604 10 10604 0 126 1188768 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 15414 105 15414 0 254 869064 0
FFS inode 1160 502 23 512 0 8 609000 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
RADIX NODE 144 3267 228 23818 0 62 503280 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
socket 960 19 489 1316 0 254 487680 0
malloc-65536 65536 5 2 51 0 1 458752 0
256 Bucket 2048 118 20 832 0 8 282624 0
malloc-64 64 3840 255 3852 0 254 262080 0
VM OBJECT 264 927 63 14172 0 30 261360 0
VNODE 448 532 44 544 0 30 258048 0
malloc-256 256 851 79 913 0 62 238080 0
malloc-16 16 14531 219 14626 0 254 236000 0
DEVCTL 1024 0 220 123 0 0 225280 0
THREAD 1824 114 7 114 0 8 220704 0
malloc-2048 2048 4 100 511 0 8 212992 0
UMA Zones 768 242 2 242 0 16 187392 0
malloc-32 32 5305 365 5336 0 254 181440 0
malloc-4096 4096 41 3 777 0 2 180224 0
malloc-128 128 1176 219 26100 0 126 178560 0
malloc-1024 1024 133 11 1014 0 16 147456 0
FFS2 dinode 256 502 68 511 0 62 145920 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-32768 32768 4 0 4 0 1 131072 0
malloc-128 128 898 125 915 0 126 130944 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-32768 32768 4 0 4 0 1 131072 0
unpcb 256 7 503 1159 0 254 130560 0
mbuf_packet 256 0 508 118 0 254 130048 0
MAP ENTRY 96 893 367 40409 0 126 120960 0
ksiginfo 112 35 1009 50 0 126 116928 0
FPU_save_area 832 116 19 129 0 16 112320 0
S VFS Cache 104 969 45 1008 0 126 105456 0
malloc-32768 32768 3 0 3 0 1 98304 0
UMA Kegs 384 228 5 228 0 30 89472 0
g_bio 408 0 210 4524 0 30 85680 0
128 Bucket 1024 43 40 237 0 16 84992 0
malloc-256 256 222 93 947 0 62 80640 0
PROC 1376 40 15 776 0 8 75680 0
malloc-64 64 473 598 930 0 254 68544 0
malloc-64 64 523 548 14874 0 254 68544 0
malloc-128 128 387 140 902 0 126 67456 0
DIRHASH 1024 35 29 35 0 16 65536 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-16384 16384 4 0 4 0 1 65536 0
malloc-4096 4096 14 2 25 0 2 65536 0
malloc-2048 2048 7 25 531 0 8 65536 0
malloc-1024 1024 15 49 526 0 16 65536 0
malloc-256 256 160 95 702 0 62 65280 0
filedesc0 1072 41 15 777 0 8 60032 0
udp_inpcb 424 6 120 128 0 30 53424 0
malloc-256 256 66 129 220 0 62 49920 0
32 Bucket 256 54 141 2679 0 62 49920 0
NAMEI 1024 0 48 12114 0 16 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
malloc-8192 8192 6 0 6 0 1 49152 0
da_ccb 544 0 84 1268 0 16 45696 0
syncache 168 0 264 5 0 254 44352 0
malloc-8192 8192 4 1 6 0 1 40960 0
malloc-4096 4096 8 2 8 0 2 40960 0
pipe 728 7 48 284 0 16 40040 0
pcpu-8 8 4284 324 4312 0 254 36864 0
64 Bucket 512 64 8 1142 0 30 36864 0
malloc-64 64 4 563 20 0 254 36288 0
malloc-64 64 169 398 704 0 254 36288 0
malloc-64 64 239 328 287 0 254 36288 0
malloc-64 64 159 408 15562 0 254 36288 0
malloc-64 64 3 564 21 0 254 36288 0
malloc-128 128 9 270 25 0 126 35712 0
malloc-128 128 60 219 580 0 126 35712 0
malloc-128 128 122 157 3525 0 126 35712 0
malloc-128 128 21 258 280 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 57 33 57 0 30 34560 0
malloc-384 384 56 34 100 0 30 34560 0
malloc-256 256 28 107 145 0 62 34560 0
malloc-256 256 39 96 83 0 62 34560 0
malloc-256 256 59 76 464 0 62 34560 0
malloc-256 256 23 112 599 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 2 0 2 0 1 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-8192 8192 4 0 4 0 1 32768 0
malloc-4096 4096 6 2 556 0 2 32768 0
malloc-2048 2048 0 16 12 0 8 32768 0
malloc-2048 2048 2 14 2 0 8 32768 0
malloc-2048 2048 7 9 31 0 8 32768 0
malloc-2048 2048 2 14 61 0 8 32768 0
malloc-2048 2048 5 11 196 0 8 32768 0
malloc-2048 2048 3 13 5 0 8 32768 0
malloc-1024 1024 2 30 42 0 16 32768 0
malloc-1024 1024 7 25 7 0 16 32768 0
malloc-1024 1024 4 28 153 0 16 32768 0
malloc-1024 1024 0 32 4 0 16 32768 0
malloc-512 512 2 62 11 0 30 32768 0
malloc-512 512 7 57 73 0 30 32768 0
malloc-512 512 9 55 10 0 30 32768 0
pcpu-64 64 487 25 487 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 20 244 32 0 126 31680 0
clpbuf 2624 0 12 28 0 4 31488 0
VMSPACE 616 23 25 760 0 16 29568 0
malloc-32 32 320 562 1435 0 254 28224 0
16 Bucket 144 47 149 252 0 62 28224 0
4 Bucket 48 6 582 8 0 254 28224 0
TURNSTILE 136 122 67 122 0 62 25704 0
cpuset 200 8 120 8 0 62 25600 0
ripcb 392 1 62 4 0 30 24696 0
malloc-8192 8192 1 2 102 0 1 24576 0
ertt_txseginfo 40 1 605 295 0 254 24240 0
rl_entry 40 27 579 27 0 254 24240 0
PWD 40 10 596 101 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
Files 80 72 228 6540 0 126 24000 0
8 Bucket 80 52 248 551 0 126 24000 0
tcp_inpcb 1304 4 14 8 0 8 23472 0
malloc-384 384 11 49 11 0 30 23040 0
malloc-384 384 2 58 336 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 122 134 122 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
tcp_inpcb ports 32 1 629 2 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 4 276 8 0 126 20160 0
malloc-32 32 52 578 573 0 254 20160 0
malloc-32 32 78 552 310 0 254 20160 0
malloc-32 32 87 543 921 0 254 20160 0
malloc-32 32 48 582 2728 0 254 20160 0
malloc-32 32 31 599 63 0 254 20160 0
2 Bucket 32 48 582 289 0 254 20160 0
ktls_session 256 1 74 1 0 62 19200 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 1 3 3 0 2 16384 0
malloc-4096 4096 3 1 3 0 2 16384 0
malloc-4096 4096 0 4 3 0 2 16384 0
malloc-1024 1024 1 15 2 0 16 16384 0
malloc-1024 1024 8 8 8 0 16 16384 0
malloc-512 512 0 32 118 0 30 16384 0
malloc-512 512 1 31 1 0 30 16384 0
malloc-512 512 1 31 1 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
sctp_laddr 48 0 336 4 0 254 16128 0
kenv 258 16 44 1009 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
malloc-32 32 10 368 51 0 254 12096 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 10 740 15 0 254 12000 0
malloc-16 16 291 459 335 0 254 12000 0
malloc-16 16 56 694 141 0 254 12000 0
malloc-16 16 16 734 294 0 254 12000 0
malloc-16 16 205 545 4269 0 254 12000 0
malloc-16 16 14 736 25534 0 254 12000 0
malloc-16 16 18 732 20 0 254 12000 0
malloc-384 384 1 29 1 0 30 11520 0
malloc-384 384 13 17 13 0 30 11520 0
malloc-8192 8192 0 1 26 0 1 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
vtnet_tx_hdr 24 0 334 2707 0 254 8016 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
ipq 56 0 0 0 0 254 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1176 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
ripcb ports 32 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
TMPFS node 232 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-8192 8192 0 0 0 0 1 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-384 384 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
Reply all
Reply to author
Forward
0 new messages