panic: sbcut_internal: no next, len NUM
2 views
Skip to first unread message
syzbot
Aug 10, 2023, 7:21:58 PM8/10/23
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 2409231121ba mountd: Fix type of signal variable
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=15d5163ba80000
dashboard link: https://syzkaller.appspot.com/bug?extid=291f6581cecb77097b16
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+291f65...@syzkaller.appspotmail.com
panic: sbcut_internal: no next, len 16316
cpuid = 1
time = 623
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a3f1710
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a3f1870
vpanic() at vpanic+0x271/frame 0xfffffe006a3f1a10
panic() at panic+0xb5/frame 0xfffffe006a3f1ad0
sbcut_internal() at sbcut_internal+0x69a/frame 0xfffffe006a3f1b60
sbrelease_internal() at sbrelease_internal+0x6f/frame 0xfffffe006a3f1bc0
sbrelease() at sbrelease+0x6c/frame 0xfffffe006a3f1bf0
sorflush() at sorflush+0xcb/frame 0xfffffe006a3f1c20
soshutdown() at soshutdown+0x281/frame 0xfffffe006a3f1c70
kern_shutdown() at kern_shutdown+0x13d/frame 0xfffffe006a3f1d30
amd64_syscall() at amd64_syscall+0x423/frame 0xfffffe006a3f1f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe006a3f1f30
--- syscall (198, FreeBSD ELF64, __syscall), rip = 0x2aebea, rsp = 0x825265f08, rbp = 0x825265f80 ---
KDB: enter: panic
[ thread pid 25471 tid 138296 ]
Stopped at kdb_enter+0x6e: movq $0,0x217c377(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe0072200000
rdx 0x3ffff
rbx 0xffffffff826c7940 .str.28
rsp 0xfffffe006a3f1850
rbp 0xfffffe006a3f1870
rsi 0x40001
rdi 0xffffffff815d23e6 printf+0x156
r8 0
r9 0xffffffff
r10 0xc6
r11 0xfffffe00763a1c40
r12 0
r13 0xfffffe00763a1720
r14 0xffffffff826c7940 .str.28
r15 0
rip 0xffffffff815c151e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x217c377(%rip)
db> show proc
Process 25471 (syz-executor.3) at 0xfffffe0076139580:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 787 at 0xfffffe0058d355a0
ABI: FreeBSD ELF64
flag: 0x10000080 flag2: 0
arguments: /root/syz-executor.3 exec
reaper: 0xfffffe0054225040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0076039268
(map 0xfffffe0076039268)
(map.pmap 0xfffffe0076039328)
(pmap 0xfffffe0076039398)
threads: 2
135917 RunQ syz-executor.3
138296 Run CPU 1 syz-executor.3
db> ps
pid ppid pgrp uid state wmesg wchan cmd
25471 787 787 0 R (threaded) syz-executor.3
135917 RunQ syz-executor.3
138296 Run CPU 1 syz-executor.3
25465 771 771 0 S (threaded) syz-executor.1
135445 S nanslp 0xffffffff8371ec81 syz-executor.1
138287 S connec 0xfffffe007774a85a syz-executor.1
138292 S uwait 0xfffffe007599ab00 syz-executor.1
138294 S uwait 0xfffffe0074526d80 syz-executor.1
24593 1 770 0 S uwait 0xfffffe0074526380 syz-executor.0
23387 1 771 0 S uwait 0xfffffe0072b03000 syz-executor.1
23381 1 771 0 S uwait 0xfffffe0074525180 syz-executor.1
22504 1 787 0 S uwait 0xfffffe00748b9880 syz-executor.3
22497 1 787 0 S uwait 0xfffffe006d209b00 syz-executor.3
22495 1 787 0 S uwait 0xfffffe0074528a80 syz-executor.3
13210 1 770 0 S uwait 0xfffffe0074526000 syz-executor.0
13205 1 770 0 S uwait 0xfffffe0074527600 syz-executor.0
13199 1 770 0 S uwait 0xfffffe0072b03e00 syz-executor.0
13190 1 770 0 S uwait 0xfffffe0072b03580 syz-executor.0
12608 1 770 0 S uwait 0xfffffe007599ad80 syz-executor.0
12607 1 787 0 S uwait 0xfffffe0072b00b00 syz-executor.3
12601 1 770 0 S uwait 0xfffffe00748b9900 syz-executor.0
12598 1 787 0 S uwait 0xfffffe00748b8e80 syz-executor.3
12596 1 770 0 S uwait 0xfffffe00748ba700 syz-executor.0
12595 1 787 0 S uwait 0xfffffe0057588380 syz-executor.3
12590 1 770 0 S uwait 0xfffffe006d208680 syz-executor.0
12396 1 787 0 SV uwait 0xfffffe006d207f00 syz-executor.3
12395 1 770 0 SV uwait 0xfffffe007599c680 syz-executor.0
12386 1 787 0 SV uwait 0xfffffe00748bb300 syz-executor.3
12385 1 770 0 SV uwait 0xfffffe0074528700 syz-executor.0
12376 1 787 0 SV uwait 0xfffffe0074526680 syz-executor.3
12375 1 770 0 SV uwait 0xfffffe006d208700 syz-executor.0
12361 1 770 0 SV uwait 0xfffffe00748b8380 syz-executor.0
12162 1 772 0 S uwait 0xfffffe0072b00700 syz-executor.2
12161 1 772 0 S uwait 0xfffffe007599a480 syz-executor.2
11883 1 11883 0 Ss+ ttyin 0xfffffe00576da4b0 getty
11882 1 11882 0 Ss+ ttyin 0xfffffe00576d94b0 getty
11881 1 11881 0 Ss+ ttyin 0xfffffe00543980b0 getty
11880 1 11880 0 Ss+ ttyin 0xfffffe00572328b0 getty
11879 1 11879 0 Ss+ ttyin 0xfffffe00576d9cb0 getty
11878 1 11878 0 Ss+ ttyin 0xfffffe00543990b0 getty
11553 1 11553 0 Ss+ ttyin 0xfffffe00543988b0 getty
11552 1 11552 0 Ss+ ttyin 0xfffffe005439a0b0 getty
11551 1 11551 0 Ss+ ttyin 0xfffffe00543998b0 getty
11244 1 11244 -1 S uwait 0xfffffe00079adc80 syz-executor.0
11241 1 11241 -1 S uwait 0xfffffe0057aed700 syz-executor.0
11238 1 11238 -1 S uwait 0xfffffe0074525700 syz-executor.0
11237 1 11237 -1 S uwait 0xfffffe006d209100 syz-executor.3
11233 1 11233 -1 S uwait 0xfffffe00079ada80 syz-executor.3
11229 1 11229 -1 S uwait 0xfffffe007599a100 syz-executor.3
11227 1 11227 -1 S uwait 0xfffffe0074526d00 syz-executor.3
11127 1 772 0 S uwait 0xfffffe00748bbb00 syz-executor.2
11122 1 772 0 S uwait 0xfffffe00748ba280 syz-executor.2
11113 1 770 0 S uwait 0xfffffe00079adb00 syz-executor.0
11109 1 772 0 S uwait 0xfffffe0074526280 syz-executor.2
11106 1 771 0 S uwait 0xfffffe005758a800 syz-executor.1
11104 1 770 0 S uwait 0xfffffe0074526f00 syz-executor.0
11101 1 772 0 S uwait 0xfffffe00748bac80 syz-executor.2
11099 1 771 0 S uwait 0xfffffe00748b9480 syz-executor.1
11097 1 772 0 S uwait 0xfffffe006d208b00 syz-executor.2
11096 1 770 0 S uwait 0xfffffe005758a480 syz-executor.0
11092 1 771 0 S umtxn 0xfffffe0074526b80 syz-executor.1
11088 1 772 0 S uwait 0xfffffe007599aa80 syz-executor.2
11079 1 772 0 S uwait 0xfffffe00748b8900 syz-executor.2
10860 1 787 0 S uwait 0xfffffe007599cb80 syz-executor.3
10853 1 787 0 S uwait 0xfffffe006d209680 syz-executor.3
10848 1 787 0 S uwait 0xfffffe007599d500 syz-executor.3
10841 1 787 0 S uwait 0xfffffe007599c980 syz-executor.3
10665 1 770 0 S uwait 0xfffffe007599d180 syz-executor.0
10658 1 770 0 S uwait 0xfffffe0074525880 syz-executor.0
10655 1 772 0 S uwait 0xfffffe006d20a600 syz-executor.2
10652 1 787 0 S uwait 0xfffffe0074527100 syz-executor.3
10651 1 772 0 S uwait 0xfffffe0072b03980 syz-executor.2
10649 1 787 0 S uwait 0xfffffe007599a280 syz-executor.3
10647 1 770 0 S uwait 0xfffffe00748bbc80 syz-executor.0
10646 1 772 0 S uwait 0xfffffe006d209700 syz-executor.2
10644 1 787 0 S uwait 0xfffffe0074528d80 syz-executor.3
10638 1 772 0 S uwait 0xfffffe006d20ae00 syz-executor.2
10229 1 10226 0 S uwait 0xfffffe0074528c00 syz-executor.0
10225 1 10222 0 S uwait 0xfffffe00748bb500 syz-executor.0
10221 1 10220 0 S uwait 0xfffffe0074528480 syz-executor.0
10218 1 10217 0 S uwait 0xfffffe0074526c80 syz-executor.0
10153 1 787 0 S uwait 0xfffffe006d207300 syz-executor.3
9874 1 772 0 S uwait 0xfffffe0074528300 syz-executor.2
9872 1 787 0 S uwait 0xfffffe0057587b00 syz-executor.3
9871 1 771 0 S uwait 0xfffffe00748bba00 syz-executor.1
9866 1 772 0 S uwait 0xfffffe0074526400 syz-executor.2
9864 1 771 0 S uwait 0xfffffe00748bac00 syz-executor.1
9862 1 787 0 S uwait 0xfffffe0072b03100 syz-executor.3
9860 1 772 0 S uwait 0xfffffe0072b02b00 syz-executor.2
9851 1 787 0 S uwait 0xfffffe00748b8a00 syz-executor.3
9850 1 771 0 S uwait 0xfffffe00748bb900 syz-executor.1
9843 1 787 0 S uwait 0xfffffe006d207500 syz-executor.3
9776 1 787 0 S uwait 0xfffffe006d209e80 syz-executor.3
9772 1 772 0 S uwait 0xfffffe006d207700 syz-executor.2
9771 1 787 0 S uwait 0xfffffe006d207800 syz-executor.3
9765 1 787 0 S uwait 0xfffffe0074527880 syz-executor.3
9763 1 772 0 S uwait 0xfffffe006d209800 syz-executor.2
9758 1 772 0 S uwait 0xfffffe0072b02300 syz-executor.2
9753 1 772 0 S uwait 0xfffffe00748b9780 syz-executor.2
9430 1 9426 0 SV uwait 0xfffffe006d20a680 syz-executor.2
9094 1 787 0 S uwait 0xfffffe00748bbe00 syz-executor.3
9089 1 787 0 S uwait 0xfffffe0072b00480 syz-executor.3
9088 1 770 0 S uwait 0xfffffe0074525080 syz-executor.0
9084 1 770 0 S uwait 0xfffffe00748b8280 syz-executor.0
9083 1 787 0 S uwait 0xfffffe005758ab80 syz-executor.3
9079 1 770 0 S uwait 0xfffffe0072b01d00 syz-executor.0
9077 1 770 0 S uwait 0xfffffe00748ba500 syz-executor.0
9020 1 771 0 S uwait 0xfffffe0074528500 syz-executor.1
9012 1 770 0 S uwait 0xfffffe00748bb080 syz-executor.0
9011 1 771 0 S uwait 0xfffffe00748ba480 syz-executor.1
9002 1 771 0 S uwait 0xfffffe00748b9e80 syz-executor.1
9000 1 770 0 S uwait 0xfffffe0074526b00 syz-executor.0
8996 1 770 0 S uwait 0xfffffe0074527280 syz-executor.0
8985 1 770 0 S uwait 0xfffffe0074527080 syz-executor.0
8770 1 787 0 S uwait 0xfffffe005758a700 syz-executor.3
8761 1 787 0 S uwait 0xfffffe00748baa00 syz-executor.3
8745 1 787 0 S uwait 0xfffffe005758a600 syz-executor.3
8739 1 787 0 S uwait 0xfffffe00079ade80 syz-executor.3
7817 1 787 0 S uwait 0xfffffe00748b9c80 syz-executor.3
7816 1 772 0 S uwait 0xfffffe006d207380 syz-executor.2
7815 1 770 0 S uwait 0xfffffe0074526900 syz-executor.0
7809 1 787 0 S uwait 0xfffffe0072b03900 syz-executor.3
7808 1 772 0 S uwait 0xfffffe0072b00c00 syz-executor.2
7807 1 770 0 S uwait 0xfffffe0074526780 syz-executor.0
7798 1 787 0 S uwait 0xfffffe0057aef300 syz-executor.3
7797 1 772 0 S uwait 0xfffffe006d20aa00 syz-executor.2
7796 1 770 0 S uwait 0xfffffe0074525100 syz-executor.0
7787 1 770 0 S uwait 0xfffffe006d207600 syz-executor.0
7354 1 787 0 S uwait 0xfffffe006d207d00 syz-executor.3
7347 1 787 0 S uwait 0xfffffe006d209400 syz-executor.3
7340 1 772 0 S uwait 0xfffffe006d207100 syz-executor.2
7337 1 787 0 S uwait 0xfffffe00748b9e00 syz-executor.3
7336 1 771 0 S uwait 0xfffffe0057aed500 syz-executor.1
7333 1 772 0 S uwait 0xfffffe0057aec580 syz-executor.2
7332 1 770 0 S uwait 0xfffffe006d208980 syz-executor.0
7331 1 787 0 S uwait 0xfffffe006d20a080 syz-executor.3
7330 1 771 0 S uwait 0xfffffe0057587400 syz-executor.1
7325 1 771 0 S uwait 0xfffffe00748ba580 syz-executor.1
7324 1 772 0 S uwait 0xfffffe0074528380 syz-executor.2
7323 1 787 0 S uwait 0xfffffe006d209e00 syz-executor.3
7322 1 770 0 S uwait 0xfffffe0072b01b00 syz-executor.0
7317 1 770 0 S uwait 0xfffffe006d209c80 syz-executor.0
7316 1 787 0 S uwait 0xfffffe006d209f00 syz-executor.3
7314 1 772 0 S uwait 0xfffffe0057587c00 syz-executor.2
7310 1 770 0 S uwait 0xfffffe0074528400 syz-executor.0
7308 1 772 0 S uwait 0xfffffe0057aef580 syz-executor.2
7304 1 770 0 S uwait 0xfffffe0074525d80 syz-executor.0
7302 1 772 0 S uwait 0xfffffe006d20ae80 syz-executor.2
7301 1 770 0 S uwait 0xfffffe0057587e00 syz-executor.0
7293 1 770 0 S uwait 0xfffffe005758aa00 syz-executor.0
7167 1 787 60928 S uwait 0xfffffe0057aefb80 syz-executor.3
7107 1 771 0 S uwait 0xfffffe005758a500 syz-executor.1
6506 1 770 0 S uwait 0xfffffe0074528280 syz-executor.0
6505 1 770 0 S uwait 0xfffffe0057aefa80 syz-executor.0
6502 1 772 0 S uwait 0xfffffe006d20ad00 syz-executor.2
6501 1 772 0 S uwait 0xfffffe0072b03200 syz-executor.2
6500 1 787 0 S uwait 0xfffffe0057aef600 syz-executor.3
6499 1 787 0 S uwait 0xfffffe0057aec980 syz-executor.3
6496 1 770 0 S uwait 0xfffffe0057aec780 syz-executor.0
6495 1 770 0 S uwait 0xfffffe0072b00f00 syz-executor.0
6492 1 772 0 S uwait 0xfffffe0072b03300 syz-executor.2
6491 1 772 0 S uwait 0xfffffe0057aef480 syz-executor.2
6490 1 787 0 S uwait 0xfffffe0074527900 syz-executor.3
6489 1 787 0 S uwait 0xfffffe005758ab00 syz-executor.3
6486 1 770 0 S uwait 0xfffffe0057aefc80 syz-executor.0
6485 1 770 0 S uwait 0xfffffe0057aecc00 syz-executor.0
6478 1 787 0 S uwait 0xfffffe006d207200 syz-executor.3
6477 1 772 0 S uwait 0xfffffe006d207000 syz-executor.2
6476 1 787 0 S uwait 0xfffffe0072b02100 syz-executor.3
6475 1 772 0 S uwait 0xfffffe0057587d00 syz-executor.2
6472 1 770 0 S uwait 0xfffffe0072b01e80 syz-executor.0
6471 1 770 0 S uwait 0xfffffe0057aefd80 syz-executor.0
6466 1 770 0 S uwait 0xfffffe0074526e00 syz-executor.0
6465 1 770 0 S uwait 0xfffffe0057588480 syz-executor.0
6460 1 770 0 S uwait 0xfffffe0057aec680 syz-executor.0
6459 1 770 0 S uwait 0xfffffe0072b01980 syz-executor.0
6449 1 770 0 S uwait 0xfffffe0072b00380 syz-executor.0
6448 1 770 0 S uwait 0xfffffe0057588180 syz-executor.0
6290 0 0 0 DL mdwait 0xfffffe0074d20000 [md3]
6286 0 0 0 DL mdwait 0xfffffe0074d17000 [md2]
6280 0 0 0 DL mdwait 0xfffffe0074d12000 [md1]
6276 0 0 0 DL mdwait 0xfffffe0074d13000 [md0]
6221 0 0 0 DL (threaded) [KTLS]
100131 D - 0xfffffe0072b35500 [thr_0]
108393 D - 0xfffffe0072b35580 [thr_1]
108394 D - 0xffffffff83830288 [reclaim_0]
4662 1 770 0 S uwait 0xfffffe0072b01a80 syz-executor.0
4487 1 770 0 S uwait 0xfffffe0057588980 syz-executor.0
4486 1 772 0 S uwait 0xfffffe006d207e00 syz-executor.2
4481 1 770 0 S uwait 0xfffffe0074528180 syz-executor.0
4480 1 772 0 S uwait 0xfffffe0057aedd00 syz-executor.2
4475 1 770 0 S uwait 0xfffffe006d208180 syz-executor.0
4474 1 772 0 S uwait 0xfffffe0057aef980 syz-executor.2
4464 1 772 0 S uwait 0xfffffe0057588680 syz-executor.2
4411 1 772 0 S uwait 0xfffffe0057589880 syz-executor.2
4409 1 772 0 S uwait 0xfffffe0072b00180 syz-executor.2
4407 1 772 0 S uwait 0xfffffe0057587800 syz-executor.2
4405 1 772 0 S uwait 0xfffffe006d207400 syz-executor.2
3015 1 771 0 S uwait 0xfffffe0057589780 syz-executor.1
2042 1 772 0 S uwait 0xfffffe006d208a00 syz-executor.2
2037 1 772 0 S uwait 0xfffffe006d208080 syz-executor.2
2032 1 772 0 S uwait 0xfffffe0072b02800 syz-executor.2
2027 1 772 0 S uwait 0xfffffe00079ada00 syz-executor.2
1786 0 0 0 DL - 0xffffffff8382eac0 [soaiod4]
1785 0 0 0 DL - 0xffffffff8382eac0 [soaiod3]
1784 0 0 0 DL - 0xffffffff8382eac0 [soaiod2]
1783 0 0 0 DL - 0xffffffff8382eac0 [soaiod1]
1773 1 770 0 S uwait 0xfffffe0057aefe80 syz-executor.0
1760 1 770 0 S uwait 0xfffffe0057587500 syz-executor.0
1756 1 771 0 S uwait 0xfffffe006d207a00 syz-executor.1
1751 1 772 0 S uwait 0xfffffe006d207900 syz-executor.2
1749 1 770 0 S uwait 0xfffffe0057aece00 syz-executor.0
1747 1 787 0 S uwait 0xfffffe0057aef880 syz-executor.3
1745 1 771 0 S uwait 0xfffffe0057aec880 syz-executor.1
1743 1 772 0 S uwait 0xfffffe0057aecd00 syz-executor.2
1741 1 770 0 S uwait 0xfffffe006d20a280 syz-executor.0
1739 1 787 0 S uwait 0xfffffe0057aedc00 syz-executor.3
1737 1 771 0 S uwait 0xfffffe006d207c00 syz-executor.1
1735 1 772 0 S uwait 0xfffffe0057aec480 syz-executor.2
1733 1 770 0 S uwait 0xfffffe0057aeef00 syz-executor.0
1727 1 787 0 S uwait 0xfffffe0057587a00 syz-executor.3
1725 1 770 0 S uwait 0xfffffe0057588080 syz-executor.0
1712 1 770 0 S uwait 0xfffffe0057aec180 syz-executor.0
1286 1 787 0 S uwait 0xfffffe0057587900 syz-executor.3
1283 1 787 0 S uwait 0xfffffe0057587f00 syz-executor.3
1281 1 787 0 S uwait 0xfffffe00079ad280 syz-executor.3
1276 1 787 0 S uwait 0xfffffe00079ad480 syz-executor.3
1275 0 0 0 DL aiordy 0xfffffe006d1f0b00 [aiod4]
1274 0 0 0 DL aiordy 0xfffffe00571fd5a0 [aiod3]
1273 0 0 0 DL aiordy 0xfffffe006cd59580 [aiod2]
1272 0 0 0 DL aiordy 0xfffffe0058d36060 [aiod1]
787 768 787 0 Rs syz-executor.3
772 768 772 0 Ss piperd 0xfffffe0058aa8998 syz-executor.2
771 768 771 0 Rs syz-executor.1
770 768 770 0 Ss piperd 0xfffffe0058aa72d8 syz-executor.0
768 1 766 0 S (threaded) syz-fuzzer
100118 S wait 0xfffffe006cd5b060 syz-fuzzer
100119 S uwait 0xfffffe0057aedf00 syz-fuzzer
100120 S uwait 0xfffffe0057aee080 syz-fuzzer
100121 S wait 0xfffffe006cd5b060 syz-fuzzer
100122 S uwait 0xfffffe00079ad680 syz-fuzzer
100123 S uwait 0xfffffe00079ad780 syz-fuzzer
100124 S wait 0xfffffe006cd5b060 syz-fuzzer
100125 S uwait 0xfffffe00079ad980 syz-fuzzer
100128 S wait 0xfffffe006cd5b060 syz-fuzzer
100130 S uwait 0xfffffe00079add00 syz-fuzzer
100141 S kqread 0xfffffe0058756b00 syz-fuzzer
100148 S uwait 0xfffffe00079ad180 syz-fuzzer
106191 S uwait 0xfffffe005758ad00 syz-fuzzer
764 682 764 0 Ss select 0xfffffe0057accac0 sshd
682 1 682 0 Ss select 0xfffffe0058a4b3c0 sshd
17 0 0 0 DL vlruwt 0xfffffe00542265c0 [vnlru]
16 0 0 0 DL syncer 0xffffffff8383c2e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff8383a900 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100093 D sdflush 0xfffffe00589104e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838ad440 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff838952f8 [dom0]
100080 D launds 0xffffffff83895304 [laundry: dom0]
100081 D umarcl 0xffffffff81d45f80 [uma]
7 0 0 0 DL - 0xffffffff834b3c28 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff83f703d0 [pf purge]
5 0 0 0 DL waiting 0xffffffff845a2300 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff8347e340 [doneq0]
100045 D - 0xffffffff8347e2c0 [async]
100076 D - 0xffffffff8347e140 [scanner]
14 0 0 0 DL seqstat 0xfffffe00543f6c88 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83890b60 [crypto]
100041 D crypto_ 0xfffffe00542cca30 [crypto returns 0]
100042 D crypto_ 0xfffffe00542cca80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836c75e0 [g_event]
100036 D - 0xffffffff836c7600 [g_up]
100037 D - 0xffffffff836c7620 [g_down]
2 0 0 0 WL (threaded) [clock]
100030 I [clock (0)]
100031 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100011 I [swi6: Giant taskq]
100017 I [swi5: fast taskq]
100020 I [swi6: task queue]
100029 Run CPU 0 [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0054225040 [init]
10 0 0 0 DL audit_w 0xffffffff838915a0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836c8000 [swapper]
100005 D - 0xfffffe00542cd100 [softirq_0]
100006 D - 0xfffffe00542cd000 [softirq_1]
100007 D - 0xfffffe00542cce00 [if_io_tqg_0]
100008 D - 0xfffffe00542ccd00 [if_io_tqg_1]
100009 D - 0xfffffe00542ccc00 [if_config_tqg_0]
100010 D - 0xfffffe00079a6b00 [linuxkpi_irq_wq]
100012 D - 0xfffffe00079a6900 [inm_free taskq]
100013 D - 0xfffffe00079a6800 [thread taskq]
100014 D - 0xfffffe00079a6700 [aiod_kick taskq]
100015 D - 0xfffffe00079a6600 [in6m_free taskq]
100016 D - 0xfffffe00079a6500 [deferred_unmount ta]
100018 D - 0xfffffe00079a6300 [kqueue_ctx taskq]
100019 D - 0xfffffe00079a6200 [pci_hp taskq]
100021 D - 0xfffffe00079a6000 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00079a6000 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00079a6000 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00079a6000 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00079a5e00 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00079a5e00 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00079a5e00 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00079a5e00 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00079a5b00 [firmware taskq]
100038 D - 0xfffffe00079a5a00 [crypto_0]
100039 D - 0xfffffe00079a5a00 [crypto_1]
100055 D - 0xfffffe00079a5500 [vtnet0 rxq 0]
100056 D - 0xfffffe00079a5400 [vtnet0 txq 0]
100057 D - 0xfffffe00079a5300 [vtnet0 rxq 1]
100058 D - 0xfffffe00079a5200 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe00571c8a80 [virtio_balloon]
100066 D - 0xffffffff826cca80 [deadlkres]
100070 D - 0xfffffe00079a6c00 [mca taskq]
100071 D - 0xfffffe0058760300 [acpi_task_0]
100072 D - 0xfffffe0058760300 [acpi_task_1]
100073 D - 0xfffffe0058760300 [acpi_task_2]
100075 D - 0xfffffe00079a5900 [CAM taskq]
db> show all locks
Process 25471 (syz-executor.3) thread 0xfffffe00763a1720 (138296)
exclusive sleep mutex so_rcv (so_rcv) r = 0 (0xfffffe0077761560) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_sockbuf.c:781
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe0077761540) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4024
Process 12 (intr) thread 0xfffffe00542f03a0 (100029)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe007b614190) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:2138
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4218 4326K 4250
filedesc 409 3275K 47260
pcb 1346 2158K 122197
sysctloid 35607 2098K 35678
vtbuf 24 1968K 46
kobj 326 1304K 524
subproc 512 1088K 25737
newblk 10 1027K 79342
vfscache 3 1025K 3
inodedep 253 607K 26608
linker 374 560K 511
vmem 3 524K 8
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
sctp_stro 432 432K 16082
sctp_atcl 1095 411K 80249
filemon 45 360K 318
acpitask 1 224K 1
acpica 1674 184K 57212
tcp_fsb 76 157K 3692
tidhash 3 141K 3
pagedep 10 131K 23778
tfo_ccache 1 128K 1
IP reass 1 128K 1
DEVFS1 113 113K 130
vnet_data 1 112K 1
sem 4 106K 4
kdtrace 598 104K 63769
gtaskqueue 18 98K 18
umtx 770 97K 770
bus 985 81K 5069
mtx_pool 2 72K 2
NFSD srvcache 3 68K 3
syncache 1 68K 1
module 513 65K 513
ddb_capture 1 64K 1
sctp_atky 1539 63K 100897
dirrem 243 61K 25694
temp 37 53K 27345
shm 11 52K 123
DEVFS3 132 33K 142
hostcache 1 32K 1
freefile 243 31K 25336
msg 4 30K 4
sctp_timw 114 29K 114
kbdmux 6 28K 6
CC Mem 94 24K 9123
ifaddr 70 20K 72
DEVFS_RULE 56 20K 56
kqueue 249 18K 25860
sctp_athm 1095 18K 83628
ufs_mount 4 17K 5
proc 3 17K 3
md_disk 8 17K 8
tty 16 16K 16
md_sectors 4 16K 4
routetbl 130 16K 1154
ithread 97 16K 97
pwddesc 247 16K 26003
GEOM 89 15K 601
bus-sc 34 15K 1648
lltable 45 14K 294
sctp_map 864 14K 32852
eventhandler 157 13K 157
KTRACE 101 13K 13208
ifnet 7 13K 7
ether_multi 152 13K 186
ksem 31 12K 304
kenv 95 12K 95
cred 45 12K 1113
rman 88 11K 431
CAM queue 5 11K 1528
in6_multi 65 9K 65
bmsafemap 2 9K 26859
rpc 4 9K 4
UART 12 9K 12
devstat 4 9K 4
lockf 76 9K 465
pfs_vncache 1 8K 1
shmfd 1 8K 142
audit_evclass 237 8K 297
DEVFSP 107 7K 4781
taskqueue 63 7K 63
ip6opt 44 7K 272
sglist 5 7K 5
CAM DEV 3 6K 510
proc-args 250 6K 27836
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 274 5K 274
pf_ifnet 10 5K 223
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
plimit 16 4K 9001
evdev 4 4K 4
acpisem 28 4K 28
kcovinfo 52 4K 52
inpcbpolicy 99 4K 11114
terminal 11 3K 11
session 22 3K 523
crypto 6 3K 2019
pf_osfp 24 3K 24
uidinfo 4 3K 83
clone 9 3K 9
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
ip6ndp 12 2K 14
osd 99 2K 9044
Unitno 30 2K 49257
sctp_ifa 13 2K 14
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 14
toponodes 6 2K 6
ipsecpolicy 2 2K 2
acpidev 20 2K 20
tun 7 2K 7
freework 5 2K 46222
NFSD session 1 1K 1
softdep 1 1K 1
mkdir 8 1K 47166
freeblks 4 1K 26210
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 1102
CAM periph 4 1K 271
sctp_ifn 6 1K 14
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
pfil 6 1K 6
BPF 6 1K 1216
isadev 6 1K 6
mount 16 1K 181
pci_link 10 1K 10
cryptodev 10 1K 8829
newdirblk 5 1K 23583
encap_export_host 12 1K 12
eventfd 5 1K 110
sctp_stri 1 1K 6822
diradd 4 1K 25733
selfd 8 1K 253013
cdev 2 1K 2
filedesc_to_leader 7 1K 24
chacha20random 1 1K 1
biobuf 1 1K 1
pf_rule 2 1K 301
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
ip_msource 4 1K 7
vnodes 1 1K 18
ktls 1 1K 18
CAM SIM 2 1K 2
select 2 1K 193
feeder 7 1K 7
tcpfunc 3 1K 3
loginclass 3 1K 14
prison 6 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
netlink 1 1K 1
ip6_msource 2 1K 7
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
aio 4 1K 36
CAM path 4 1K 1034
pmchooks 1 1K 1
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 43
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
soname 1 1K 75463
Per-cpu 1 1K 1
p1003.1b 1 1K 1
ext2_mount 0 0K 0
ext2_node 0 0K 0
ext2_extents 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 55299
sctp_iter 0 0K 63
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 51
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 12
sctp_aadr 0 0K 250
tcp_do 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
mqdata 0 0K 0
pf_table 0 0K 186
pf_altq 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
raid_data 0 0K 96
geom_flashmap 0 0K 0
ixl 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
xen_intr 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
NFSCL open 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
NFSCL owner 0 0K 0
xenbus 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
vm_fictitious 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
UMAHash 0 0K 0
DEVFS4 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 30892
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 546
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 358
allocindir 0 0K 0
indirdep 0 0K 31083
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
ktls_ocf 0 0K 4
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_moptions 0 0K 15
in6_mfilter 0 0K 12
frag6 0 0K 2
tcplog 0 0K 0
tcp_hwpace 0 0K 0
BACKLIGHT 0 0K 0
LRO 0 0K 0
ip_moptions 0 0K 36
in_mfilter 0 0K 16
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 5
VN POLL 0 0K 2
ath_hal 0 0K 0
statfs 0 0K 326
namei_tracker 0 0K 5
export_host 0 0K 0
cl_savebuf 0 0K 116
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
AHCI driver 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
agp 0 0K 0
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 303
lio 0 0K 4
acl 0 0K 0
midi buffers 0 0K 0
mbuf_tag 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
procdesc 0 0K 18
iov 0 0K 57529
ioctlops 0 0K 2213
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 378
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 1907
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
filecaps 0 0K 122
sigio 0 0K 12
pwd 0 0K 0
tty console 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
boottrace 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 33022 3300 1509158 0 254 148774912 0
mbuf 256 36246 16587 14870144 0 254 13525248 0
tcp_log 416 10000 5246 172137 0 254 6342336 0
UMA Slabs 0 112 39588 6 39588 0 126 4434528 0
malloc-16384 16384 205 6 23627 0 1 3457024 0
vmem btag 56 54045 66 54045 0 254 3030216 0
RADIX NODE 144 20719 248 681651 0 62 3019248 0
mbuf_cluster 2048 762 508 766 0 254 2600960 0
malloc-2048 2048 669 571 63207 0 8 2539520 0
sctp_asoc 2264 432 588 15892 0 254 2309280 0
sctp_ep 1176 662 1118 60817 0 254 2093280 0
BUF TRIE 144 589 11227 58724 0 62 1701504 0
malloc-384 384 4147 53 4150 0 30 1612800 0
malloc-128 128 11801 196 19134 0 126 1535616 0
malloc-4096 4096 329 23 1105 0 2 1441792 0
ertt_txseginfo 40 682 33961 6564626 0 254 1385720 0
sctp_chunk 152 813 8079 628794 0 254 1351584 0
256 Bucket 2048 477 101 58341 0 9 1183744 0
malloc-4096 4096 247 7 25716 0 2 1040384 0
FFS inode 1160 825 36 26186 0 8 998760 0
socket 960 397 619 74498 0 254 975360 0
malloc-1024 1024 440 472 16910 0 16 933888 0
VM OBJECT 264 3222 78 306181 0 30 871200 0
malloc-384 384 1161 1059 80866 0 30 852480 0
sctp_raddr 736 432 591 17727 0 254 752928 0
THREAD 1824 350 35 38296 0 8 702240 0
MAP ENTRY 96 6447 357 871005 0 126 653184 0
tcp_bbr_map 128 131 4302 366710 0 127 567424 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
malloc-8192 8192 52 5 335 0 1 466944 0
malloc-65536 65536 7 0 7 0 1 458752 0
VNODE 448 865 98 26229 0 30 431424 0
malloc-384 384 252 708 26610 0 30 368640 0
PROC 1376 246 18 25471 0 8 363264 0
malloc-256 256 705 660 70655 0 62 349440 0
malloc-64 64 4574 781 59416 0 254 342720 0
FPU_save_area 832 352 53 48160 0 16 336960 0
malloc-65536 65536 2 3 174 0 1 327680 0
malloc-32768 32768 0 9 29449 0 1 294912 0
filedesc0 1072 247 26 26003 0 8 292656 0
malloc-256 256 440 685 25919 0 62 288000 0
malloc-16 16 15821 1679 132869 0 254 280000 0
malloc-32 32 6769 1421 163904 0 254 262080 0
tcp_inpcb 1304 94 92 9031 0 8 242544 0
malloc-128 128 1043 848 51869 0 126 242048 0
FFS2 dinode 256 825 105 26186 0 62 238080 0
malloc-4096 4096 38 20 1850 0 2 237568 0
DEVCTL 1024 8 212 159 0 0 225280 0
malloc-256 256 10 860 110234 0 62 222720 0
malloc-32768 32768 4 2 11 0 1 196608 0
mbuf_packet 256 205 557 104049 0 254 195072 0
malloc-128 128 1308 211 29641 0 126 194432 0
UMA Zones 768 246 3 246 0 16 191232 0
malloc-256 256 466 224 112092 0 62 176640 0
malloc-64 64 613 1970 284112 0 254 165312 0
VMSPACE 616 217 41 25435 0 16 158928 0
malloc-1024 1024 142 2 304 0 16 147456 0
S VFS Cache 104 1036 368 28086 0 126 146016 0
g_bio 408 0 330 453136 0 31 134640 0
128 Bucket 1024 84 47 1514 0 16 134144 0
malloc-65536 65536 0 2 196 0 1 131072 0
malloc-65536 65536 0 2 7 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 0 2 8 0 1 131072 0
unpcb 256 1 509 2504 0 254 130560 0
pipe 728 56 109 1557 0 16 120120 0
ksiginfo 112 255 789 11870 0 126 116928 0
malloc-384 384 265 35 332 0 30 115200 0
malloc-256 256 233 202 41443 0 62 111360 0
Files 80 858 442 133860 0 126 104000 0
64 Bucket 512 134 66 58314 0 30 102400 0
malloc-128 128 661 114 2565 0 126 99200 0
UMA Kegs 384 232 1 232 0 30 89472 0
syncache 168 0 528 9 0 254 88704 0
sctp_stream_msg_out 112 191 601 5940 0 254 88704 0
malloc-64 64 660 663 45654 0 254 84672 0
malloc-128 128 349 302 47833 0 126 83328 0
tcp_rack_pcb 1024 38 42 1846 0 16 81920 0
32 Bucket 256 149 166 8949 0 62 80640 0
sctp_readq 152 1 519 3150 0 254 79040
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the bug is already fixed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to change bug's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the bug is a duplicate of another bug, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: 2409231121ba mountd: Fix type of signal variable
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=15d5163ba80000
dashboard link: https://syzkaller.appspot.com/bug?extid=291f6581cecb77097b16
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+291f65...@syzkaller.appspotmail.com
panic: sbcut_internal: no next, len 16316
cpuid = 1
time = 623
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe006a3f1710
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe006a3f1870
vpanic() at vpanic+0x271/frame 0xfffffe006a3f1a10
panic() at panic+0xb5/frame 0xfffffe006a3f1ad0
sbcut_internal() at sbcut_internal+0x69a/frame 0xfffffe006a3f1b60
sbrelease_internal() at sbrelease_internal+0x6f/frame 0xfffffe006a3f1bc0
sbrelease() at sbrelease+0x6c/frame 0xfffffe006a3f1bf0
sorflush() at sorflush+0xcb/frame 0xfffffe006a3f1c20
soshutdown() at soshutdown+0x281/frame 0xfffffe006a3f1c70
kern_shutdown() at kern_shutdown+0x13d/frame 0xfffffe006a3f1d30
amd64_syscall() at amd64_syscall+0x423/frame 0xfffffe006a3f1f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe006a3f1f30
--- syscall (198, FreeBSD ELF64, __syscall), rip = 0x2aebea, rsp = 0x825265f08, rbp = 0x825265f80 ---
KDB: enter: panic
[ thread pid 25471 tid 138296 ]
Stopped at kdb_enter+0x6e: movq $0,0x217c377(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe0072200000
rdx 0x3ffff
rbx 0xffffffff826c7940 .str.28
rsp 0xfffffe006a3f1850
rbp 0xfffffe006a3f1870
rsi 0x40001
rdi 0xffffffff815d23e6 printf+0x156
r8 0
r9 0xffffffff
r10 0xc6
r11 0xfffffe00763a1c40
r12 0
r13 0xfffffe00763a1720
r14 0xffffffff826c7940 .str.28
r15 0
rip 0xffffffff815c151e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x217c377(%rip)
db> show proc
Process 25471 (syz-executor.3) at 0xfffffe0076139580:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 787 at 0xfffffe0058d355a0
ABI: FreeBSD ELF64
flag: 0x10000080 flag2: 0
arguments: /root/syz-executor.3 exec
reaper: 0xfffffe0054225040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0076039268
(map 0xfffffe0076039268)
(map.pmap 0xfffffe0076039328)
(pmap 0xfffffe0076039398)
threads: 2
135917 RunQ syz-executor.3
138296 Run CPU 1 syz-executor.3
db> ps
pid ppid pgrp uid state wmesg wchan cmd
25471 787 787 0 R (threaded) syz-executor.3
135917 RunQ syz-executor.3
138296 Run CPU 1 syz-executor.3
25465 771 771 0 S (threaded) syz-executor.1
135445 S nanslp 0xffffffff8371ec81 syz-executor.1
138287 S connec 0xfffffe007774a85a syz-executor.1
138292 S uwait 0xfffffe007599ab00 syz-executor.1
138294 S uwait 0xfffffe0074526d80 syz-executor.1
24593 1 770 0 S uwait 0xfffffe0074526380 syz-executor.0
23387 1 771 0 S uwait 0xfffffe0072b03000 syz-executor.1
23381 1 771 0 S uwait 0xfffffe0074525180 syz-executor.1
22504 1 787 0 S uwait 0xfffffe00748b9880 syz-executor.3
22497 1 787 0 S uwait 0xfffffe006d209b00 syz-executor.3
22495 1 787 0 S uwait 0xfffffe0074528a80 syz-executor.3
13210 1 770 0 S uwait 0xfffffe0074526000 syz-executor.0
13205 1 770 0 S uwait 0xfffffe0074527600 syz-executor.0
13199 1 770 0 S uwait 0xfffffe0072b03e00 syz-executor.0
13190 1 770 0 S uwait 0xfffffe0072b03580 syz-executor.0
12608 1 770 0 S uwait 0xfffffe007599ad80 syz-executor.0
12607 1 787 0 S uwait 0xfffffe0072b00b00 syz-executor.3
12601 1 770 0 S uwait 0xfffffe00748b9900 syz-executor.0
12598 1 787 0 S uwait 0xfffffe00748b8e80 syz-executor.3
12596 1 770 0 S uwait 0xfffffe00748ba700 syz-executor.0
12595 1 787 0 S uwait 0xfffffe0057588380 syz-executor.3
12590 1 770 0 S uwait 0xfffffe006d208680 syz-executor.0
12396 1 787 0 SV uwait 0xfffffe006d207f00 syz-executor.3
12395 1 770 0 SV uwait 0xfffffe007599c680 syz-executor.0
12386 1 787 0 SV uwait 0xfffffe00748bb300 syz-executor.3
12385 1 770 0 SV uwait 0xfffffe0074528700 syz-executor.0
12376 1 787 0 SV uwait 0xfffffe0074526680 syz-executor.3
12375 1 770 0 SV uwait 0xfffffe006d208700 syz-executor.0
12361 1 770 0 SV uwait 0xfffffe00748b8380 syz-executor.0
12162 1 772 0 S uwait 0xfffffe0072b00700 syz-executor.2
12161 1 772 0 S uwait 0xfffffe007599a480 syz-executor.2
11883 1 11883 0 Ss+ ttyin 0xfffffe00576da4b0 getty
11882 1 11882 0 Ss+ ttyin 0xfffffe00576d94b0 getty
11881 1 11881 0 Ss+ ttyin 0xfffffe00543980b0 getty
11880 1 11880 0 Ss+ ttyin 0xfffffe00572328b0 getty
11879 1 11879 0 Ss+ ttyin 0xfffffe00576d9cb0 getty
11878 1 11878 0 Ss+ ttyin 0xfffffe00543990b0 getty
11553 1 11553 0 Ss+ ttyin 0xfffffe00543988b0 getty
11552 1 11552 0 Ss+ ttyin 0xfffffe005439a0b0 getty
11551 1 11551 0 Ss+ ttyin 0xfffffe00543998b0 getty
11244 1 11244 -1 S uwait 0xfffffe00079adc80 syz-executor.0
11241 1 11241 -1 S uwait 0xfffffe0057aed700 syz-executor.0
11238 1 11238 -1 S uwait 0xfffffe0074525700 syz-executor.0
11237 1 11237 -1 S uwait 0xfffffe006d209100 syz-executor.3
11233 1 11233 -1 S uwait 0xfffffe00079ada80 syz-executor.3
11229 1 11229 -1 S uwait 0xfffffe007599a100 syz-executor.3
11227 1 11227 -1 S uwait 0xfffffe0074526d00 syz-executor.3
11127 1 772 0 S uwait 0xfffffe00748bbb00 syz-executor.2
11122 1 772 0 S uwait 0xfffffe00748ba280 syz-executor.2
11113 1 770 0 S uwait 0xfffffe00079adb00 syz-executor.0
11109 1 772 0 S uwait 0xfffffe0074526280 syz-executor.2
11106 1 771 0 S uwait 0xfffffe005758a800 syz-executor.1
11104 1 770 0 S uwait 0xfffffe0074526f00 syz-executor.0
11101 1 772 0 S uwait 0xfffffe00748bac80 syz-executor.2
11099 1 771 0 S uwait 0xfffffe00748b9480 syz-executor.1
11097 1 772 0 S uwait 0xfffffe006d208b00 syz-executor.2
11096 1 770 0 S uwait 0xfffffe005758a480 syz-executor.0
11092 1 771 0 S umtxn 0xfffffe0074526b80 syz-executor.1
11088 1 772 0 S uwait 0xfffffe007599aa80 syz-executor.2
11079 1 772 0 S uwait 0xfffffe00748b8900 syz-executor.2
10860 1 787 0 S uwait 0xfffffe007599cb80 syz-executor.3
10853 1 787 0 S uwait 0xfffffe006d209680 syz-executor.3
10848 1 787 0 S uwait 0xfffffe007599d500 syz-executor.3
10841 1 787 0 S uwait 0xfffffe007599c980 syz-executor.3
10665 1 770 0 S uwait 0xfffffe007599d180 syz-executor.0
10658 1 770 0 S uwait 0xfffffe0074525880 syz-executor.0
10655 1 772 0 S uwait 0xfffffe006d20a600 syz-executor.2
10652 1 787 0 S uwait 0xfffffe0074527100 syz-executor.3
10651 1 772 0 S uwait 0xfffffe0072b03980 syz-executor.2
10649 1 787 0 S uwait 0xfffffe007599a280 syz-executor.3
10647 1 770 0 S uwait 0xfffffe00748bbc80 syz-executor.0
10646 1 772 0 S uwait 0xfffffe006d209700 syz-executor.2
10644 1 787 0 S uwait 0xfffffe0074528d80 syz-executor.3
10638 1 772 0 S uwait 0xfffffe006d20ae00 syz-executor.2
10229 1 10226 0 S uwait 0xfffffe0074528c00 syz-executor.0
10225 1 10222 0 S uwait 0xfffffe00748bb500 syz-executor.0
10221 1 10220 0 S uwait 0xfffffe0074528480 syz-executor.0
10218 1 10217 0 S uwait 0xfffffe0074526c80 syz-executor.0
10153 1 787 0 S uwait 0xfffffe006d207300 syz-executor.3
9874 1 772 0 S uwait 0xfffffe0074528300 syz-executor.2
9872 1 787 0 S uwait 0xfffffe0057587b00 syz-executor.3
9871 1 771 0 S uwait 0xfffffe00748bba00 syz-executor.1
9866 1 772 0 S uwait 0xfffffe0074526400 syz-executor.2
9864 1 771 0 S uwait 0xfffffe00748bac00 syz-executor.1
9862 1 787 0 S uwait 0xfffffe0072b03100 syz-executor.3
9860 1 772 0 S uwait 0xfffffe0072b02b00 syz-executor.2
9851 1 787 0 S uwait 0xfffffe00748b8a00 syz-executor.3
9850 1 771 0 S uwait 0xfffffe00748bb900 syz-executor.1
9843 1 787 0 S uwait 0xfffffe006d207500 syz-executor.3
9776 1 787 0 S uwait 0xfffffe006d209e80 syz-executor.3
9772 1 772 0 S uwait 0xfffffe006d207700 syz-executor.2
9771 1 787 0 S uwait 0xfffffe006d207800 syz-executor.3
9765 1 787 0 S uwait 0xfffffe0074527880 syz-executor.3
9763 1 772 0 S uwait 0xfffffe006d209800 syz-executor.2
9758 1 772 0 S uwait 0xfffffe0072b02300 syz-executor.2
9753 1 772 0 S uwait 0xfffffe00748b9780 syz-executor.2
9430 1 9426 0 SV uwait 0xfffffe006d20a680 syz-executor.2
9094 1 787 0 S uwait 0xfffffe00748bbe00 syz-executor.3
9089 1 787 0 S uwait 0xfffffe0072b00480 syz-executor.3
9088 1 770 0 S uwait 0xfffffe0074525080 syz-executor.0
9084 1 770 0 S uwait 0xfffffe00748b8280 syz-executor.0
9083 1 787 0 S uwait 0xfffffe005758ab80 syz-executor.3
9079 1 770 0 S uwait 0xfffffe0072b01d00 syz-executor.0
9077 1 770 0 S uwait 0xfffffe00748ba500 syz-executor.0
9020 1 771 0 S uwait 0xfffffe0074528500 syz-executor.1
9012 1 770 0 S uwait 0xfffffe00748bb080 syz-executor.0
9011 1 771 0 S uwait 0xfffffe00748ba480 syz-executor.1
9002 1 771 0 S uwait 0xfffffe00748b9e80 syz-executor.1
9000 1 770 0 S uwait 0xfffffe0074526b00 syz-executor.0
8996 1 770 0 S uwait 0xfffffe0074527280 syz-executor.0
8985 1 770 0 S uwait 0xfffffe0074527080 syz-executor.0
8770 1 787 0 S uwait 0xfffffe005758a700 syz-executor.3
8761 1 787 0 S uwait 0xfffffe00748baa00 syz-executor.3
8745 1 787 0 S uwait 0xfffffe005758a600 syz-executor.3
8739 1 787 0 S uwait 0xfffffe00079ade80 syz-executor.3
7817 1 787 0 S uwait 0xfffffe00748b9c80 syz-executor.3
7816 1 772 0 S uwait 0xfffffe006d207380 syz-executor.2
7815 1 770 0 S uwait 0xfffffe0074526900 syz-executor.0
7809 1 787 0 S uwait 0xfffffe0072b03900 syz-executor.3
7808 1 772 0 S uwait 0xfffffe0072b00c00 syz-executor.2
7807 1 770 0 S uwait 0xfffffe0074526780 syz-executor.0
7798 1 787 0 S uwait 0xfffffe0057aef300 syz-executor.3
7797 1 772 0 S uwait 0xfffffe006d20aa00 syz-executor.2
7796 1 770 0 S uwait 0xfffffe0074525100 syz-executor.0
7787 1 770 0 S uwait 0xfffffe006d207600 syz-executor.0
7354 1 787 0 S uwait 0xfffffe006d207d00 syz-executor.3
7347 1 787 0 S uwait 0xfffffe006d209400 syz-executor.3
7340 1 772 0 S uwait 0xfffffe006d207100 syz-executor.2
7337 1 787 0 S uwait 0xfffffe00748b9e00 syz-executor.3
7336 1 771 0 S uwait 0xfffffe0057aed500 syz-executor.1
7333 1 772 0 S uwait 0xfffffe0057aec580 syz-executor.2
7332 1 770 0 S uwait 0xfffffe006d208980 syz-executor.0
7331 1 787 0 S uwait 0xfffffe006d20a080 syz-executor.3
7330 1 771 0 S uwait 0xfffffe0057587400 syz-executor.1
7325 1 771 0 S uwait 0xfffffe00748ba580 syz-executor.1
7324 1 772 0 S uwait 0xfffffe0074528380 syz-executor.2
7323 1 787 0 S uwait 0xfffffe006d209e00 syz-executor.3
7322 1 770 0 S uwait 0xfffffe0072b01b00 syz-executor.0
7317 1 770 0 S uwait 0xfffffe006d209c80 syz-executor.0
7316 1 787 0 S uwait 0xfffffe006d209f00 syz-executor.3
7314 1 772 0 S uwait 0xfffffe0057587c00 syz-executor.2
7310 1 770 0 S uwait 0xfffffe0074528400 syz-executor.0
7308 1 772 0 S uwait 0xfffffe0057aef580 syz-executor.2
7304 1 770 0 S uwait 0xfffffe0074525d80 syz-executor.0
7302 1 772 0 S uwait 0xfffffe006d20ae80 syz-executor.2
7301 1 770 0 S uwait 0xfffffe0057587e00 syz-executor.0
7293 1 770 0 S uwait 0xfffffe005758aa00 syz-executor.0
7167 1 787 60928 S uwait 0xfffffe0057aefb80 syz-executor.3
7107 1 771 0 S uwait 0xfffffe005758a500 syz-executor.1
6506 1 770 0 S uwait 0xfffffe0074528280 syz-executor.0
6505 1 770 0 S uwait 0xfffffe0057aefa80 syz-executor.0
6502 1 772 0 S uwait 0xfffffe006d20ad00 syz-executor.2
6501 1 772 0 S uwait 0xfffffe0072b03200 syz-executor.2
6500 1 787 0 S uwait 0xfffffe0057aef600 syz-executor.3
6499 1 787 0 S uwait 0xfffffe0057aec980 syz-executor.3
6496 1 770 0 S uwait 0xfffffe0057aec780 syz-executor.0
6495 1 770 0 S uwait 0xfffffe0072b00f00 syz-executor.0
6492 1 772 0 S uwait 0xfffffe0072b03300 syz-executor.2
6491 1 772 0 S uwait 0xfffffe0057aef480 syz-executor.2
6490 1 787 0 S uwait 0xfffffe0074527900 syz-executor.3
6489 1 787 0 S uwait 0xfffffe005758ab00 syz-executor.3
6486 1 770 0 S uwait 0xfffffe0057aefc80 syz-executor.0
6485 1 770 0 S uwait 0xfffffe0057aecc00 syz-executor.0
6478 1 787 0 S uwait 0xfffffe006d207200 syz-executor.3
6477 1 772 0 S uwait 0xfffffe006d207000 syz-executor.2
6476 1 787 0 S uwait 0xfffffe0072b02100 syz-executor.3
6475 1 772 0 S uwait 0xfffffe0057587d00 syz-executor.2
6472 1 770 0 S uwait 0xfffffe0072b01e80 syz-executor.0
6471 1 770 0 S uwait 0xfffffe0057aefd80 syz-executor.0
6466 1 770 0 S uwait 0xfffffe0074526e00 syz-executor.0
6465 1 770 0 S uwait 0xfffffe0057588480 syz-executor.0
6460 1 770 0 S uwait 0xfffffe0057aec680 syz-executor.0
6459 1 770 0 S uwait 0xfffffe0072b01980 syz-executor.0
6449 1 770 0 S uwait 0xfffffe0072b00380 syz-executor.0
6448 1 770 0 S uwait 0xfffffe0057588180 syz-executor.0
6290 0 0 0 DL mdwait 0xfffffe0074d20000 [md3]
6286 0 0 0 DL mdwait 0xfffffe0074d17000 [md2]
6280 0 0 0 DL mdwait 0xfffffe0074d12000 [md1]
6276 0 0 0 DL mdwait 0xfffffe0074d13000 [md0]
6221 0 0 0 DL (threaded) [KTLS]
100131 D - 0xfffffe0072b35500 [thr_0]
108393 D - 0xfffffe0072b35580 [thr_1]
108394 D - 0xffffffff83830288 [reclaim_0]
4662 1 770 0 S uwait 0xfffffe0072b01a80 syz-executor.0
4487 1 770 0 S uwait 0xfffffe0057588980 syz-executor.0
4486 1 772 0 S uwait 0xfffffe006d207e00 syz-executor.2
4481 1 770 0 S uwait 0xfffffe0074528180 syz-executor.0
4480 1 772 0 S uwait 0xfffffe0057aedd00 syz-executor.2
4475 1 770 0 S uwait 0xfffffe006d208180 syz-executor.0
4474 1 772 0 S uwait 0xfffffe0057aef980 syz-executor.2
4464 1 772 0 S uwait 0xfffffe0057588680 syz-executor.2
4411 1 772 0 S uwait 0xfffffe0057589880 syz-executor.2
4409 1 772 0 S uwait 0xfffffe0072b00180 syz-executor.2
4407 1 772 0 S uwait 0xfffffe0057587800 syz-executor.2
4405 1 772 0 S uwait 0xfffffe006d207400 syz-executor.2
3015 1 771 0 S uwait 0xfffffe0057589780 syz-executor.1
2042 1 772 0 S uwait 0xfffffe006d208a00 syz-executor.2
2037 1 772 0 S uwait 0xfffffe006d208080 syz-executor.2
2032 1 772 0 S uwait 0xfffffe0072b02800 syz-executor.2
2027 1 772 0 S uwait 0xfffffe00079ada00 syz-executor.2
1786 0 0 0 DL - 0xffffffff8382eac0 [soaiod4]
1785 0 0 0 DL - 0xffffffff8382eac0 [soaiod3]
1784 0 0 0 DL - 0xffffffff8382eac0 [soaiod2]
1783 0 0 0 DL - 0xffffffff8382eac0 [soaiod1]
1773 1 770 0 S uwait 0xfffffe0057aefe80 syz-executor.0
1760 1 770 0 S uwait 0xfffffe0057587500 syz-executor.0
1756 1 771 0 S uwait 0xfffffe006d207a00 syz-executor.1
1751 1 772 0 S uwait 0xfffffe006d207900 syz-executor.2
1749 1 770 0 S uwait 0xfffffe0057aece00 syz-executor.0
1747 1 787 0 S uwait 0xfffffe0057aef880 syz-executor.3
1745 1 771 0 S uwait 0xfffffe0057aec880 syz-executor.1
1743 1 772 0 S uwait 0xfffffe0057aecd00 syz-executor.2
1741 1 770 0 S uwait 0xfffffe006d20a280 syz-executor.0
1739 1 787 0 S uwait 0xfffffe0057aedc00 syz-executor.3
1737 1 771 0 S uwait 0xfffffe006d207c00 syz-executor.1
1735 1 772 0 S uwait 0xfffffe0057aec480 syz-executor.2
1733 1 770 0 S uwait 0xfffffe0057aeef00 syz-executor.0
1727 1 787 0 S uwait 0xfffffe0057587a00 syz-executor.3
1725 1 770 0 S uwait 0xfffffe0057588080 syz-executor.0
1712 1 770 0 S uwait 0xfffffe0057aec180 syz-executor.0
1286 1 787 0 S uwait 0xfffffe0057587900 syz-executor.3
1283 1 787 0 S uwait 0xfffffe0057587f00 syz-executor.3
1281 1 787 0 S uwait 0xfffffe00079ad280 syz-executor.3
1276 1 787 0 S uwait 0xfffffe00079ad480 syz-executor.3
1275 0 0 0 DL aiordy 0xfffffe006d1f0b00 [aiod4]
1274 0 0 0 DL aiordy 0xfffffe00571fd5a0 [aiod3]
1273 0 0 0 DL aiordy 0xfffffe006cd59580 [aiod2]
1272 0 0 0 DL aiordy 0xfffffe0058d36060 [aiod1]
787 768 787 0 Rs syz-executor.3
772 768 772 0 Ss piperd 0xfffffe0058aa8998 syz-executor.2
771 768 771 0 Rs syz-executor.1
770 768 770 0 Ss piperd 0xfffffe0058aa72d8 syz-executor.0
768 1 766 0 S (threaded) syz-fuzzer
100118 S wait 0xfffffe006cd5b060 syz-fuzzer
100119 S uwait 0xfffffe0057aedf00 syz-fuzzer
100120 S uwait 0xfffffe0057aee080 syz-fuzzer
100121 S wait 0xfffffe006cd5b060 syz-fuzzer
100122 S uwait 0xfffffe00079ad680 syz-fuzzer
100123 S uwait 0xfffffe00079ad780 syz-fuzzer
100124 S wait 0xfffffe006cd5b060 syz-fuzzer
100125 S uwait 0xfffffe00079ad980 syz-fuzzer
100128 S wait 0xfffffe006cd5b060 syz-fuzzer
100130 S uwait 0xfffffe00079add00 syz-fuzzer
100141 S kqread 0xfffffe0058756b00 syz-fuzzer
100148 S uwait 0xfffffe00079ad180 syz-fuzzer
106191 S uwait 0xfffffe005758ad00 syz-fuzzer
764 682 764 0 Ss select 0xfffffe0057accac0 sshd
682 1 682 0 Ss select 0xfffffe0058a4b3c0 sshd
17 0 0 0 DL vlruwt 0xfffffe00542265c0 [vnlru]
16 0 0 0 DL syncer 0xffffffff8383c2e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff8383a900 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100093 D sdflush 0xfffffe00589104e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff838ad440 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff838952f8 [dom0]
100080 D launds 0xffffffff83895304 [laundry: dom0]
100081 D umarcl 0xffffffff81d45f80 [uma]
7 0 0 0 DL - 0xffffffff834b3c28 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff83f703d0 [pf purge]
5 0 0 0 DL waiting 0xffffffff845a2300 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff8347e340 [doneq0]
100045 D - 0xffffffff8347e2c0 [async]
100076 D - 0xffffffff8347e140 [scanner]
14 0 0 0 DL seqstat 0xfffffe00543f6c88 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83890b60 [crypto]
100041 D crypto_ 0xfffffe00542cca30 [crypto returns 0]
100042 D crypto_ 0xfffffe00542cca80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836c75e0 [g_event]
100036 D - 0xffffffff836c7600 [g_up]
100037 D - 0xffffffff836c7620 [g_down]
2 0 0 0 WL (threaded) [clock]
100030 I [clock (0)]
100031 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100011 I [swi6: Giant taskq]
100017 I [swi5: fast taskq]
100020 I [swi6: task queue]
100029 Run CPU 0 [swi1: netisr 0]
100032 I [swi1: hpts]
100033 I [swi1: hpts]
100046 I [irq24: virtio_pci0]
100047 I [irq25: virtio_pci0]
100048 I [irq26: virtio_pci0]
100049 I [irq27: virtio_pci0]
100050 I [irq28: virtio_pci1]
100051 I [irq29: virtio_pci1]
100052 I [irq30: virtio_pci1]
100053 I [irq31: virtio_pci1]
100054 I [irq32: virtio_pci1]
100059 I [irq33: virtio_pci2]
100060 I [irq34: virtio_pci2]
100061 I [irq35: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0054225040 [init]
10 0 0 0 DL audit_w 0xffffffff838915a0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff836c8000 [swapper]
100005 D - 0xfffffe00542cd100 [softirq_0]
100006 D - 0xfffffe00542cd000 [softirq_1]
100007 D - 0xfffffe00542cce00 [if_io_tqg_0]
100008 D - 0xfffffe00542ccd00 [if_io_tqg_1]
100009 D - 0xfffffe00542ccc00 [if_config_tqg_0]
100010 D - 0xfffffe00079a6b00 [linuxkpi_irq_wq]
100012 D - 0xfffffe00079a6900 [inm_free taskq]
100013 D - 0xfffffe00079a6800 [thread taskq]
100014 D - 0xfffffe00079a6700 [aiod_kick taskq]
100015 D - 0xfffffe00079a6600 [in6m_free taskq]
100016 D - 0xfffffe00079a6500 [deferred_unmount ta]
100018 D - 0xfffffe00079a6300 [kqueue_ctx taskq]
100019 D - 0xfffffe00079a6200 [pci_hp taskq]
100021 D - 0xfffffe00079a6000 [linuxkpi_short_wq_0]
100022 D - 0xfffffe00079a6000 [linuxkpi_short_wq_1]
100023 D - 0xfffffe00079a6000 [linuxkpi_short_wq_2]
100024 D - 0xfffffe00079a6000 [linuxkpi_short_wq_3]
100025 D - 0xfffffe00079a5e00 [linuxkpi_long_wq_0]
100026 D - 0xfffffe00079a5e00 [linuxkpi_long_wq_1]
100027 D - 0xfffffe00079a5e00 [linuxkpi_long_wq_2]
100028 D - 0xfffffe00079a5e00 [linuxkpi_long_wq_3]
100034 D - 0xfffffe00079a5b00 [firmware taskq]
100038 D - 0xfffffe00079a5a00 [crypto_0]
100039 D - 0xfffffe00079a5a00 [crypto_1]
100055 D - 0xfffffe00079a5500 [vtnet0 rxq 0]
100056 D - 0xfffffe00079a5400 [vtnet0 txq 0]
100057 D - 0xfffffe00079a5300 [vtnet0 rxq 1]
100058 D - 0xfffffe00079a5200 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe00571c8a80 [virtio_balloon]
100066 D - 0xffffffff826cca80 [deadlkres]
100070 D - 0xfffffe00079a6c00 [mca taskq]
100071 D - 0xfffffe0058760300 [acpi_task_0]
100072 D - 0xfffffe0058760300 [acpi_task_1]
100073 D - 0xfffffe0058760300 [acpi_task_2]
100075 D - 0xfffffe00079a5900 [CAM taskq]
db> show all locks
Process 25471 (syz-executor.3) thread 0xfffffe00763a1720 (138296)
exclusive sleep mutex so_rcv (so_rcv) r = 0 (0xfffffe0077761560) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_sockbuf.c:781
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe0077761540) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4024
Process 12 (intr) thread 0xfffffe00542f03a0 (100029)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe007b614190) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:2138
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4218 4326K 4250
filedesc 409 3275K 47260
pcb 1346 2158K 122197
sysctloid 35607 2098K 35678
vtbuf 24 1968K 46
kobj 326 1304K 524
subproc 512 1088K 25737
newblk 10 1027K 79342
vfscache 3 1025K 3
inodedep 253 607K 26608
linker 374 560K 511
vmem 3 524K 8
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
sctp_stro 432 432K 16082
sctp_atcl 1095 411K 80249
filemon 45 360K 318
acpitask 1 224K 1
acpica 1674 184K 57212
tcp_fsb 76 157K 3692
tidhash 3 141K 3
pagedep 10 131K 23778
tfo_ccache 1 128K 1
IP reass 1 128K 1
DEVFS1 113 113K 130
vnet_data 1 112K 1
sem 4 106K 4
kdtrace 598 104K 63769
gtaskqueue 18 98K 18
umtx 770 97K 770
bus 985 81K 5069
mtx_pool 2 72K 2
NFSD srvcache 3 68K 3
syncache 1 68K 1
module 513 65K 513
ddb_capture 1 64K 1
sctp_atky 1539 63K 100897
dirrem 243 61K 25694
temp 37 53K 27345
shm 11 52K 123
DEVFS3 132 33K 142
hostcache 1 32K 1
freefile 243 31K 25336
msg 4 30K 4
sctp_timw 114 29K 114
kbdmux 6 28K 6
CC Mem 94 24K 9123
ifaddr 70 20K 72
DEVFS_RULE 56 20K 56
kqueue 249 18K 25860
sctp_athm 1095 18K 83628
ufs_mount 4 17K 5
proc 3 17K 3
md_disk 8 17K 8
tty 16 16K 16
md_sectors 4 16K 4
routetbl 130 16K 1154
ithread 97 16K 97
pwddesc 247 16K 26003
GEOM 89 15K 601
bus-sc 34 15K 1648
lltable 45 14K 294
sctp_map 864 14K 32852
eventhandler 157 13K 157
KTRACE 101 13K 13208
ifnet 7 13K 7
ether_multi 152 13K 186
ksem 31 12K 304
kenv 95 12K 95
cred 45 12K 1113
rman 88 11K 431
CAM queue 5 11K 1528
in6_multi 65 9K 65
bmsafemap 2 9K 26859
rpc 4 9K 4
UART 12 9K 12
devstat 4 9K 4
lockf 76 9K 465
pfs_vncache 1 8K 1
shmfd 1 8K 142
audit_evclass 237 8K 297
DEVFSP 107 7K 4781
taskqueue 63 7K 63
ip6opt 44 7K 272
sglist 5 7K 5
CAM DEV 3 6K 510
proc-args 250 6K 27836
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 274 5K 274
pf_ifnet 10 5K 223
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
plimit 16 4K 9001
evdev 4 4K 4
acpisem 28 4K 28
kcovinfo 52 4K 52
inpcbpolicy 99 4K 11114
terminal 11 3K 11
session 22 3K 523
crypto 6 3K 2019
pf_osfp 24 3K 24
uidinfo 4 3K 83
clone 9 3K 9
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
ip6ndp 12 2K 14
osd 99 2K 9044
Unitno 30 2K 49257
sctp_ifa 13 2K 14
CAM XPT 22 2K 543
msi 12 2K 12
in_multi 6 2K 14
toponodes 6 2K 6
ipsecpolicy 2 2K 2
acpidev 20 2K 20
tun 7 2K 7
freework 5 2K 46222
NFSD session 1 1K 1
softdep 1 1K 1
mkdir 8 1K 47166
freeblks 4 1K 26210
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 1102
CAM periph 4 1K 271
sctp_ifn 6 1K 14
ipsec 3 1K 3
mld 6 1K 6
igmp 6 1K 6
pfil 6 1K 6
BPF 6 1K 1216
isadev 6 1K 6
mount 16 1K 181
pci_link 10 1K 10
cryptodev 10 1K 8829
newdirblk 5 1K 23583
encap_export_host 12 1K 12
eventfd 5 1K 110
sctp_stri 1 1K 6822
diradd 4 1K 25733
selfd 8 1K 253013
cdev 2 1K 2
filedesc_to_leader 7 1K 24
chacha20random 1 1K 1
biobuf 1 1K 1
pf_rule 2 1K 301
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
ip_msource 4 1K 7
vnodes 1 1K 18
ktls 1 1K 18
CAM SIM 2 1K 2
select 2 1K 193
feeder 7 1K 7
tcpfunc 3 1K 3
loginclass 3 1K 14
prison 6 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
netlink 1 1K 1
ip6_msource 2 1K 7
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
aio 4 1K 36
CAM path 4 1K 1034
pmchooks 1 1K 1
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 43
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
soname 1 1K 75463
Per-cpu 1 1K 1
p1003.1b 1 1K 1
ext2_mount 0 0K 0
ext2_node 0 0K 0
ext2_extents 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 55299
sctp_iter 0 0K 63
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 51
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 12
sctp_aadr 0 0K 250
tcp_do 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
mqdata 0 0K 0
pf_table 0 0K 186
pf_altq 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
raid_data 0 0K 96
geom_flashmap 0 0K 0
ixl 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
xen_intr 0 0K 0
NFSCL diroff 0 0K 0
NEWdirectio 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
NFSCL open 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
NFSCL owner 0 0K 0
xenbus 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
vm_fictitious 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
UMAHash 0 0K 0
DEVFS4 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 30892
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 546
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 358
allocindir 0 0K 0
indirdep 0 0K 31083
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
ktls_ocf 0 0K 4
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_moptions 0 0K 15
in6_mfilter 0 0K 12
frag6 0 0K 2
tcplog 0 0K 0
tcp_hwpace 0 0K 0
BACKLIGHT 0 0K 0
LRO 0 0K 0
ip_moptions 0 0K 36
in_mfilter 0 0K 16
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 5
VN POLL 0 0K 2
ath_hal 0 0K 0
statfs 0 0K 326
namei_tracker 0 0K 5
export_host 0 0K 0
cl_savebuf 0 0K 116
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
AHCI driver 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
agp 0 0K 0
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 303
lio 0 0K 4
acl 0 0K 0
midi buffers 0 0K 0
mbuf_tag 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
procdesc 0 0K 18
iov 0 0K 57529
ioctlops 0 0K 2213
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 378
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 1907
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
filecaps 0 0K 122
sigio 0 0K 12
pwd 0 0K 0
tty console 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
boottrace 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 33022 3300 1509158 0 254 148774912 0
mbuf 256 36246 16587 14870144 0 254 13525248 0
tcp_log 416 10000 5246 172137 0 254 6342336 0
UMA Slabs 0 112 39588 6 39588 0 126 4434528 0
malloc-16384 16384 205 6 23627 0 1 3457024 0
vmem btag 56 54045 66 54045 0 254 3030216 0
RADIX NODE 144 20719 248 681651 0 62 3019248 0
mbuf_cluster 2048 762 508 766 0 254 2600960 0
malloc-2048 2048 669 571 63207 0 8 2539520 0
sctp_asoc 2264 432 588 15892 0 254 2309280 0
sctp_ep 1176 662 1118 60817 0 254 2093280 0
BUF TRIE 144 589 11227 58724 0 62 1701504 0
malloc-384 384 4147 53 4150 0 30 1612800 0
malloc-128 128 11801 196 19134 0 126 1535616 0
malloc-4096 4096 329 23 1105 0 2 1441792 0
ertt_txseginfo 40 682 33961 6564626 0 254 1385720 0
sctp_chunk 152 813 8079 628794 0 254 1351584 0
256 Bucket 2048 477 101 58341 0 9 1183744 0
malloc-4096 4096 247 7 25716 0 2 1040384 0
FFS inode 1160 825 36 26186 0 8 998760 0
socket 960 397 619 74498 0 254 975360 0
malloc-1024 1024 440 472 16910 0 16 933888 0
VM OBJECT 264 3222 78 306181 0 30 871200 0
malloc-384 384 1161 1059 80866 0 30 852480 0
sctp_raddr 736 432 591 17727 0 254 752928 0
THREAD 1824 350 35 38296 0 8 702240 0
MAP ENTRY 96 6447 357 871005 0 126 653184 0
tcp_bbr_map 128 131 4302 366710 0 127 567424 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
malloc-8192 8192 52 5 335 0 1 466944 0
malloc-65536 65536 7 0 7 0 1 458752 0
VNODE 448 865 98 26229 0 30 431424 0
malloc-384 384 252 708 26610 0 30 368640 0
PROC 1376 246 18 25471 0 8 363264 0
malloc-256 256 705 660 70655 0 62 349440 0
malloc-64 64 4574 781 59416 0 254 342720 0
FPU_save_area 832 352 53 48160 0 16 336960 0
malloc-65536 65536 2 3 174 0 1 327680 0
malloc-32768 32768 0 9 29449 0 1 294912 0
filedesc0 1072 247 26 26003 0 8 292656 0
malloc-256 256 440 685 25919 0 62 288000 0
malloc-16 16 15821 1679 132869 0 254 280000 0
malloc-32 32 6769 1421 163904 0 254 262080 0
tcp_inpcb 1304 94 92 9031 0 8 242544 0
malloc-128 128 1043 848 51869 0 126 242048 0
FFS2 dinode 256 825 105 26186 0 62 238080 0
malloc-4096 4096 38 20 1850 0 2 237568 0
DEVCTL 1024 8 212 159 0 0 225280 0
malloc-256 256 10 860 110234 0 62 222720 0
malloc-32768 32768 4 2 11 0 1 196608 0
mbuf_packet 256 205 557 104049 0 254 195072 0
malloc-128 128 1308 211 29641 0 126 194432 0
UMA Zones 768 246 3 246 0 16 191232 0
malloc-256 256 466 224 112092 0 62 176640 0
malloc-64 64 613 1970 284112 0 254 165312 0
VMSPACE 616 217 41 25435 0 16 158928 0
malloc-1024 1024 142 2 304 0 16 147456 0
S VFS Cache 104 1036 368 28086 0 126 146016 0
g_bio 408 0 330 453136 0 31 134640 0
128 Bucket 1024 84 47 1514 0 16 134144 0
malloc-65536 65536 0 2 196 0 1 131072 0
malloc-65536 65536 0 2 7 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 0 2 8 0 1 131072 0
unpcb 256 1 509 2504 0 254 130560 0
pipe 728 56 109 1557 0 16 120120 0
ksiginfo 112 255 789 11870 0 126 116928 0
malloc-384 384 265 35 332 0 30 115200 0
malloc-256 256 233 202 41443 0 62 111360 0
Files 80 858 442 133860 0 126 104000 0
64 Bucket 512 134 66 58314 0 30 102400 0
malloc-128 128 661 114 2565 0 126 99200 0
UMA Kegs 384 232 1 232 0 30 89472 0
syncache 168 0 528 9 0 254 88704 0
sctp_stream_msg_out 112 191 601 5940 0 254 88704 0
malloc-64 64 660 663 45654 0 254 84672 0
malloc-128 128 349 302 47833 0 126 83328 0
tcp_rack_pcb 1024 38 42 1846 0 16 81920 0
32 Bucket 256 149 166 8949 0 62 80640 0
sctp_readq 152 1 519 3150 0 254 79040
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the bug is already fixed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to change bug's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the bug is a duplicate of another bug, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot
Aug 10, 2023, 9:03:55 PM8/10/23
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: 2409231121ba mountd: Fix type of signal variable
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=1674fd8ba80000
dashboard link: https://syzkaller.appspot.com/bug?extid=291f6581cecb77097b16
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=12988173a80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=17d78daba80000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+291f65...@syzkaller.appspotmail.com
panic: sbcut_internal: no next, len 16316
cpuid = 0
time = 1691715650
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0007b1a710
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0007b1a870
vpanic() at vpanic+0x271/frame 0xfffffe0007b1aa10
panic() at panic+0xb5/frame 0xfffffe0007b1aad0
sbcut_internal() at sbcut_internal+0x69a/frame 0xfffffe0007b1ab60
sbrelease_internal() at sbrelease_internal+0x6f/frame 0xfffffe0007b1abc0
sbrelease() at sbrelease+0x6c/frame 0xfffffe0007b1abf0
sorflush() at sorflush+0xcb/frame 0xfffffe0007b1ac20
soshutdown() at soshutdown+0x281/frame 0xfffffe0007b1ac70
kern_shutdown() at kern_shutdown+0x13d/frame 0xfffffe0007b1ad30
amd64_syscall() at amd64_syscall+0x423/frame 0xfffffe0007b1af30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0007b1af30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x23420a, rsp = 0x82083b268, rbp = 0x82083b2c0 ---
KDB: enter: panic
[ thread pid 1877 tid 100094 ]
rdx 0xdffff7c000000000
rbx 0xffffffff826c7940 .str.28
rsp 0xfffffe0007b1a850
rbp 0xfffffe0007b1a870
rsi 0x1
rdi 0
r12 0
r13 0xfffffe0058b00e40
ABI: FreeBSD ELF64
flag: 0x10000000 flag2: 0
arguments: ./syz-executor2591854985
(map 0xfffffe0058a8cc08)
(map.pmap 0xfffffe0058a8ccc8)
(pmap 0xfffffe0058a8cd38)
threads: 1
100094 Run CPU 0 syz-executor2591854
1885 775 771 0 S connec 0xfffffe0058b3ec1a syz-executor2591854
1883 774 771 0 S connec 0xfffffe0058b3e85a syz-executor2591854
1877 778 771 0 R CPU 0 syz-executor2591854
780 773 771 0 S nanslp 0xffffffff8371ec80 syz-executor2591854
778 773 771 0 S nanslp 0xffffffff8371ec80 syz-executor2591854
775 773 771 0 S nanslp 0xffffffff8371ec80 syz-executor2591854
774 773 771 0 S nanslp 0xffffffff8371ec80 syz-executor2591854
773 771 771 0 S nanslp 0xffffffff8371ec81 syz-executor2591854
771 769 771 0 Ss pause 0xfffffe006cdd4630 csh
769 682 769 0 Ss select 0xfffffe006ca3f0c0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00572328b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00587f38b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00587f40b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00587f48b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00543980b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe00543988b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe00543990b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe00543998b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe005439a0b0 getty
738 1 18 0 S+ piperd 0xfffffe0058a8a888 logger
737 736 18 0 S+ nanslp 0xffffffff8371ec80 sleep
736 1 18 0 S+ wait 0xfffffe0054225b00 sh
686 1 686 0 Ss nanslp 0xffffffff8371ec80 cron
682 1 682 0 Ss select 0xfffffe006ca40340 sshd
495 1 495 0 Ss select 0xfffffe006ca3fe40 syslogd
424 1 424 0 Ss select 0xfffffe006ca3f9c0 devd
423 1 423 65 Ss select 0xfffffe006ca3fac0 dhclient
338 1 338 0 Ss select 0xfffffe006ca3fbc0 dhclient
335 1 335 0 Ss select 0xfffffe006ca40440 dhclient
17 0 0 0 DL vlruwt 0xfffffe00571fcae0 [vnlru]
5 0 0 0 DL waiting 0xffffffff8455e300 [sctp_iterator]
Process 1877 (syz-executor2591854) thread 0xfffffe0058b00e40 (100094)
exclusive sleep mutex so_rcv (so_rcv) r = 0 (0xfffffe0058b3f560) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_sockbuf.c:781
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe0058b3f540) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4024
sysctloid 34926 2058K 34997
vtbuf 24 1968K 46
kobj 326 1304K 488
newblk 849 1236K 861
vfscache 3 1025K 3
pcb 37 684K 2260
inodedep 49 530K 71
subproc 115 218K 1954
acpica 1674 184K 57212
tidhash 3 141K 3
vmem 3 134K 4
pagedep 14 132K 18
linker 352 130K 385
gtaskqueue 18 98K 18
ddb_capture 1 64K 1
temp 19 53K 1581
umtx 286 36K 286
kdtrace 172 34K 2011
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 124 31K 134
msg 4 30K 4
kbdmux 6 28K 6
sctp_timw 88 22K 88
DEVFS_RULE 56 20K 56
BPF 10 18K 10
ithread 97 16K 97
bus-sc 34 15K 1648
eventhandler 157 13K 157
KTRACE 100 13K 100
kenv 95 12K 95
ifaddr 30 12K 32
rman 88 11K 431
GEOM 61 11K 481
routetbl 50 11K 176
taskqueue 63 7K 63
sglist 5 7K 5
sctp_atcl 16 6K 2386
sctp_stro 6 6K 1109
dirrem 17 5K 28
plimit 17 5K 322
vt 11 5K 11
ifnet 3 5K 3
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
kqueue 48 3K 1889
pwddesc 48 3K 1887
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
proc-args 70 3K 2809
clone 9 3K 9
uidinfo 3 3K 8
Unitno 27 2K 41
sctp_stri 3 2K 336
msi 12 2K 12
sctp_atky 22 1K 3663
ipsec 3 1K 3
indirdep 3 1K 3
CC Mem 3 1K 7
nhops 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
cdev 2 1K 2
osd 8 1K 20
sctp_ifn 2 1K 6
sctp_athm 16 1K 2554
DEVFS 9 1K 10
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
soname 7 1K 5621
sctp_map 12 1K 2218
tcpfunc 3 1K 3
loginclass 3 1K 7
pmchooks 1 1K 1
filecaps 4 1K 66
tun 3 1K 3
freework 1 1K 26
p1003.1b 1 1K 1
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 1106
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_aadr 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 0
savedino 0 0K 15
freeblks 0 0K 25
freefrag 0 0K 1
allocindir 0 0K 0
ktls_ocf 0 0K 0
ip6opt 0 0K 3
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
VN POLL 0 0K 0
ath_hal 0 0K 0
statfs 0 0K 195
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 3
aio 0 0K 0
lio 0 0K 0
ioctlops 0 0K 86
eventfd 0 0K 0
sysctl 0 0K 3
md_sectors 0 0K 0
filedesc_to_leader 0 0K 0
mbuf_jumbo_page 4096 9685 1237 92834 0 254 44736512 0
mbuf 256 12039 1688 218913 0 254 3514112 0
BUF TRIE 144 193 11623 547 0 62 1701504 0
malloc-384 384 4144 56 4145 0 30 1612800 0
malloc-128 128 11578 140 14850 0 126 1499904 0
malloc-4096 4096 332 2 1047 0 2 1368064 0
UMA Slabs 0 112 12098 28 12098 0 126 1358112 0
sctp_asoc 2264 6 504 1109 0 254 1154640 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 17547 60 17547 0 254 985992 0
FFS inode 1160 499 26 509 0 8 609000 0
sctp_ep 1176 7 503 1109 0 254 599760 0
RADIX NODE 144 3486 261 31377 0 62 539568 0
malloc-65536 65536 6 0 6 0 1 393216 0
sctp_raddr 736 6 511 1109 0 254 380512 0
256 Bucket 2048 146 22 1520 0 8 344064 0
malloc-64 64 3867 480 7663 0 254 278208 0
VM OBJECT 264 977 73 23003 0 30 277200 0
THREAD 1824 123 20 123 0 8 260832 0
VNODE 448 529 47 541 0 30 258048 0
malloc-16 16 14448 302 17230 0 254 236000 0
DEVCTL 1024 0 220 123 0 0 225280 0
malloc-256 256 849 21 876 0 62 222720 0
malloc-4096 4096 48 4 1887 0 2 212992 0
malloc-128 128 1307 212 27147 0 126 194432 0
malloc-32 32 5308 614 10411 0 254 189504 0
UMA Zones 768 240 4 240 0 16 187392 0
malloc-1024 1024 133 27 146 0 16 163840 0
FFS2 dinode 256 499 71 508 0 62 145920 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-65536 65536 0 2 46 0 1 131072 0
unpcb 256 7 503 1158 0 254 130560 0
mbuf_packet 256 5 503 2066 0 254 130048 0
S VFS Cache 104 966 204 1005 0 126 121680 0
MAP ENTRY 96 989 271 53638 0 126 120960 0
FPU_save_area 832 125 19 137 0 16 119808 0
ksiginfo 112 46 998 61 0 126 116928 0
malloc-2048 2048 14 42 2148 0 8 114688 0
malloc-128 128 578 197 1221 0 126 99200 0
PROC 1376 47 19 1886 0 8 90816 0
UMA Kegs 384 227 6 227 0 30 89472 0
malloc-256 256 236 79 482 0 62 80640 0
sctp_readq 152 3 517 150 0 254 79040 0
sctp_chunk 152 83 437 4049 0 254 79040 0
filedesc0 1072 48 22 1887 0 8 75040 0
g_bio 408 0 180 4516 0 30 73440 0
128 Bucket 1024 42 25 251 0 16 68608 0
malloc-64 64 648 423 14986 0 254 68544 0
malloc-128 128 335 192 357 0 126 67456 0
malloc-128 128 337 190 473 0 126 67456 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-16384 16384 3 1 17 0 1 65536 0
malloc-256 256 195 60 224 0 62 65280 0
sctp_stream_msg_out 112 3 537 168 0 254 60480 0
malloc-384 384 82 68 2452 0 30 57600 0
malloc-8192 8192 6 1 8 0 1 57344 0
malloc-4096 4096 13 1 24 0 2 57344 0
malloc-64 64 329 490 29898 0 254 52416 0
malloc-64 64 507 312 2592 0 254 52416 0
32 Bucket 256 59 136 3898 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 12073 0 16 49152 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-1024 1024 12 36 1638 0 16 49152 0
malloc-384 384 67 53 86 0 30 46080 0
syncache 168 0 264 5 0 254 44352 0
malloc-8192 8192 4 1 30 0 1 40960 0
malloc-8192 8192 5 0 5 0 1 40960 0
VMSPACE 616 31 35 1871 0 16 40656 0
udp_inpcb 424 6 84 128 0 30 38160 0
pcpu-8 8 4291 317 4319 0 254 36864 0
64 Bucket 512 64 8 1247 0 30 36864 0
malloc-64 64 8 559 20 0 254 36288 0
malloc-64 64 18 549 24 0 254 36288 0
malloc-64 64 41 526 76 0 254 36288 0
malloc-64 64 26 541 274 0 254 36288 0
malloc-128 128 20 259 70 0 126 35712 0
malloc-128 128 30 249 44 0 126 35712 0
malloc-128 128 9 270 330 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 48 42 71 0 30 34560 0
malloc-256 256 23 112 140 0 62 34560 0
malloc-256 256 56 79 356 0 62 34560 0
malloc-256 256 103 32 760 0 62 34560 0
malloc-256 256 36 99 368 0 62 34560 0
malloc-256 256 50 85 2043 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-8192 8192 2 2 103 0 1 32768 0
malloc-4096 4096 8 0 8 0 2 32768 0
malloc-4096 4096 5 3 200 0 2 32768 0
malloc-2048 2048 3 13 27 0 8 32768 0
malloc-2048 2048 9 7 9 0 8 32768 0
malloc-2048 2048 5 11 6 0 8 32768 0
malloc-2048 2048 2 14 61 0 8 32768 0
malloc-2048 2048 4 12 195 0 8 32768 0
malloc-1024 1024 2 30 42 0 16 32768 0
malloc-1024 1024 2 30 855 0 16 32768 0
malloc-1024 1024 12 20 163 0 16 32768 0
malloc-1024 1024 9 23 13 0 16 32768 0
malloc-512 512 9 55 127 0 30 32768 0
malloc-512 512 1 63 10 0 30 32768 0
malloc-512 512 3 61 336 0 30 32768 0
malloc-512 512 5 59 64 0 30 32768 0
pcpu-64 64 486 26 486 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 20 244 31 0 126 31680 0
clpbuf 2624 0 12 28 0 4 31488 0
sctp_laddr 48 5 583 173 0 254 28224 0
16 Bucket 144 47 149 257 0 62 28224 0
4 Bucket 48 6 582 9 0 254 28224 0
da_ccb 544 0 49 1264 0 16 26656 0
TURNSTILE 136 144 45 144 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
ripcb 392 1 62 4 0 30 24696 0
malloc-4096 4096 3 3 6 0 2 24576 0
ertt_txseginfo 40 0 606 1399 0 254 24240 0
rl_entry 40 37 569 37 0 254 24240 0
PWD 40 10 596 99 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
pipe 728 7 26 282 0 16 24024 0
Files 80 75 225 7622 0 126 24000 0
8 Bucket 80 41 259 539 0 126 24000 0
tcp_inpcb 1304 3 15 7 0 8 23472 0
malloc-384 384 12 48 12 0 30 23040 0
malloc-384 384 2 58 345 0 30 23040 0
malloc-384 384 11 49 14 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 144 112 144 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
malloc-32 32 318 312 378 0 254 20160 0
malloc-32 32 27 603 67 0 254 20160 0
malloc-32 32 80 550 1137 0 254 20160 0
malloc-32 32 79 551 825 0 254 20160 0
malloc-32 32 46 584 2823 0 254 20160 0
malloc-32 32 61 569 1364 0 254 20160 0
2 Bucket 32 49 581 294 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-2048 2048 0 8 12 0 8 16384 0
malloc-1024 1024 4 12 4 0 16 16384 0
malloc-1024 1024 3 13 3 0 16 16384 0
malloc-512 512 4 28 10 0 30 16384 0
malloc-512 512 1 31 2 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
vtnet_tx_hdr 24 1 667 2962 0 254 16032 0
kenv 258 16 44 1033 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
sackhole 32 0 378 1 0 254 12096 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
malloc-32 32 9 369 31 0 254 12096 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 23 727 1166 0 254 12000 0
malloc-16 16 277 473 438 0 254 12000 0
malloc-16 16 62 688 119 0 254 12000 0
malloc-16 16 188 562 3054 0 254 12000 0
malloc-16 16 31 719 28302 0 254 12000 0
malloc-16 16 28 722 1232 0 254 12000 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 0 2 1 0 2 8192 0
malloc-4096 4096 1 1 1 0 2 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
malloc-16 16 15 485 15 0 254 8000 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
ripcb ports 32 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
TMPFS node 232 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-2048 2048 0 0 0 0 8 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-384 384 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
HEAD commit: 2409231121ba mountd: Fix type of signal variable
git tree: freebsd-src
dashboard link: https://syzkaller.appspot.com/bug?extid=291f6581cecb77097b16
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=12988173a80000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=17d78daba80000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+291f65...@syzkaller.appspotmail.com
panic: sbcut_internal: no next, len 16316
time = 1691715650
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0007b1a710
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0007b1a870
vpanic() at vpanic+0x271/frame 0xfffffe0007b1aa10
panic() at panic+0xb5/frame 0xfffffe0007b1aad0
sbcut_internal() at sbcut_internal+0x69a/frame 0xfffffe0007b1ab60
sbrelease_internal() at sbrelease_internal+0x6f/frame 0xfffffe0007b1abc0
sbrelease() at sbrelease+0x6c/frame 0xfffffe0007b1abf0
sorflush() at sorflush+0xcb/frame 0xfffffe0007b1ac20
soshutdown() at soshutdown+0x281/frame 0xfffffe0007b1ac70
kern_shutdown() at kern_shutdown+0x13d/frame 0xfffffe0007b1ad30
amd64_syscall() at amd64_syscall+0x423/frame 0xfffffe0007b1af30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0007b1af30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x23420a, rsp = 0x82083b268, rbp = 0x82083b2c0 ---
KDB: enter: panic
[ thread pid 1877 tid 100094 ]
Stopped at kdb_enter+0x6e: movq $0,0x217c377(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe00033eee30
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rdx 0xdffff7c000000000
rbx 0xffffffff826c7940 .str.28
rsp 0xfffffe0007b1a850
rbp 0xfffffe0007b1a870
rsi 0x1
rdi 0
r8 0
r9 0xffffffff
r10 0
r11 0xfffffe0058b01360
r9 0xffffffff
r10 0
r12 0
r13 0xfffffe0058b00e40
r14 0xffffffff826c7940 .str.28
r15 0
rip 0xffffffff815c151e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x217c377(%rip)
db> show proc
Process 1877 (syz-executor2591854) at 0xfffffe0007c14b00:
r15 0
rip 0xffffffff815c151e kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x217c377(%rip)
db> show proc
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 778 at 0xfffffe006a3f0ae0
uid: 0 gids: 0, 0, 5
ABI: FreeBSD ELF64
flag: 0x10000000 flag2: 0
arguments: ./syz-executor2591854985
reaper: 0xfffffe0054225040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0058a8cc08
sigparent: 20
(map 0xfffffe0058a8cc08)
(map.pmap 0xfffffe0058a8ccc8)
(pmap 0xfffffe0058a8cd38)
threads: 1
100094 Run CPU 0 syz-executor2591854
db> ps
pid ppid pgrp uid state wmesg wchan cmd
1886 780 771 0 S connec 0xfffffe0058b4049a syz-executor2591854
pid ppid pgrp uid state wmesg wchan cmd
1885 775 771 0 S connec 0xfffffe0058b3ec1a syz-executor2591854
1883 774 771 0 S connec 0xfffffe0058b3e85a syz-executor2591854
1877 778 771 0 R CPU 0 syz-executor2591854
780 773 771 0 S nanslp 0xffffffff8371ec80 syz-executor2591854
778 773 771 0 S nanslp 0xffffffff8371ec80 syz-executor2591854
775 773 771 0 S nanslp 0xffffffff8371ec80 syz-executor2591854
774 773 771 0 S nanslp 0xffffffff8371ec80 syz-executor2591854
773 771 771 0 S nanslp 0xffffffff8371ec81 syz-executor2591854
771 769 771 0 Ss pause 0xfffffe006cdd4630 csh
769 682 769 0 Ss select 0xfffffe006ca3f0c0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe00572328b0 getty
747 1 747 0 Ss+ ttyin 0xfffffe00587f38b0 getty
746 1 746 0 Ss+ ttyin 0xfffffe00587f40b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe00587f48b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe00543980b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe00543988b0 getty
742 1 742 0 Ss+ ttyin 0xfffffe00543990b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe00543998b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe005439a0b0 getty
738 1 18 0 S+ piperd 0xfffffe0058a8a888 logger
737 736 18 0 S+ nanslp 0xffffffff8371ec80 sleep
736 1 18 0 S+ wait 0xfffffe0054225b00 sh
686 1 686 0 Ss nanslp 0xffffffff8371ec80 cron
682 1 682 0 Ss select 0xfffffe006ca40340 sshd
495 1 495 0 Ss select 0xfffffe006ca3fe40 syslogd
424 1 424 0 Ss select 0xfffffe006ca3f9c0 devd
423 1 423 65 Ss select 0xfffffe006ca3fac0 dhclient
338 1 338 0 Ss select 0xfffffe006ca3fbc0 dhclient
335 1 335 0 Ss select 0xfffffe006ca40440 dhclient
17 0 0 0 DL vlruwt 0xfffffe00571fcae0 [vnlru]
16 0 0 0 DL syncer 0xffffffff8383c2e0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff8383a900 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
100092 D sdflush 0xfffffe0058a1b4e8 [/ worker]
15 0 0 0 DL (threaded) [bufdaemon]
100079 D psleep 0xffffffff8383a900 [bufdaemon]
100082 D - 0xffffffff82c0a140 [bufspacedaemon-0]
9 0 0 0 DL psleep 0xffffffff838ad440 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff838952f8 [dom0]
100080 D launds 0xffffffff83895304 [laundry: dom0]
100081 D umarcl 0xffffffff81d45f80 [uma]
7 0 0 0 DL - 0xffffffff834b3c28 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff841af3d0 [pf purge]
8 0 0 0 DL (threaded) [pagedaemon]
100077 D psleep 0xffffffff838952f8 [dom0]
100080 D launds 0xffffffff83895304 [laundry: dom0]
100081 D umarcl 0xffffffff81d45f80 [uma]
7 0 0 0 DL - 0xffffffff834b3c28 [rand_harvestq]
5 0 0 0 DL waiting 0xffffffff8455e300 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100044 D - 0xffffffff8347e340 [doneq0]
100045 D - 0xffffffff8347e2c0 [async]
100076 D - 0xffffffff8347e140 [scanner]
14 0 0 0 DL seqstat 0xfffffe00543f6c88 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83890b60 [crypto]
100041 D crypto_ 0xfffffe00542cca30 [crypto returns 0]
100042 D crypto_ 0xfffffe00542cca80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836c75e0 [g_event]
100036 D - 0xffffffff836c7600 [g_up]
100037 D - 0xffffffff836c7620 [g_down]
2 0 0 0 WL (threaded) [clock]
100030 I [clock (0)]
100031 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100011 I [swi6: Giant taskq]
100017 I [swi5: fast taskq]
100020 I [swi6: task queue]
100029 Run CPU 1 [swi1: netisr 0]
100044 D - 0xffffffff8347e340 [doneq0]
100045 D - 0xffffffff8347e2c0 [async]
100076 D - 0xffffffff8347e140 [scanner]
14 0 0 0 DL seqstat 0xfffffe00543f6c88 [sequencer 00]
3 0 0 0 DL (threaded) [crypto]
100040 D crypto_ 0xffffffff83890b60 [crypto]
100041 D crypto_ 0xfffffe00542cca30 [crypto returns 0]
100042 D crypto_ 0xfffffe00542cca80 [crypto returns 1]
13 0 0 0 DL (threaded) [geom]
100035 D - 0xffffffff836c75e0 [g_event]
100036 D - 0xffffffff836c7600 [g_up]
100037 D - 0xffffffff836c7620 [g_down]
2 0 0 0 WL (threaded) [clock]
100030 I [clock (0)]
100031 I [clock (1)]
12 0 0 0 RL (threaded) [intr]
100011 I [swi6: Giant taskq]
100017 I [swi5: fast taskq]
100020 I [swi6: task queue]
exclusive sleep mutex so_rcv (so_rcv) r = 0 (0xfffffe0058b3f560) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_sockbuf.c:781
exclusive sx so_rcv_sx (so_rcv_sx) r = 0 (0xfffffe0058b3f540) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4024
Process 12 (intr) thread 0xfffffe00542f03a0 (100029)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe006d2c1190) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:2138
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
devbuf 4218 4326K 4243
Type InUse MemUse Requests
pf_hash 5 11524K 5
tcp_hpts 7 4801K 7
sysctloid 34926 2058K 34997
vtbuf 24 1968K 46
kobj 326 1304K 488
newblk 849 1236K 861
vfscache 3 1025K 3
pcb 37 684K 2260
inodedep 49 530K 71
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
acpitask 1 224K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
subproc 115 218K 1954
acpica 1674 184K 57212
tidhash 3 141K 3
vmem 3 134K 4
pagedep 14 132K 18
linker 352 130K 385
tfo_ccache 1 128K 1
IP reass 1 128K 1
IP reass 1 128K 1
vnet_data 1 112K 1
sem 4 106K 4
DEVFS1 105 105K 114
sem 4 106K 4
gtaskqueue 18 98K 18
bus 985 81K 5069
mtx_pool 2 72K 2
NFSD srvcache 3 68K 3
syncache 1 68K 1
module 512 64K 512
mtx_pool 2 72K 2
NFSD srvcache 3 68K 3
syncache 1 68K 1
ddb_capture 1 64K 1
temp 19 53K 1581
umtx 286 36K 286
kdtrace 172 34K 2011
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 124 31K 134
msg 4 30K 4
kbdmux 6 28K 6
sctp_timw 88 22K 88
DEVFS_RULE 56 20K 56
BPF 10 18K 10
ufs_mount 4 17K 5
proc 3 17K 3
tty 16 16K 16
proc 3 17K 3
ithread 97 16K 97
bus-sc 34 15K 1648
eventhandler 157 13K 157
KTRACE 100 13K 100
kenv 95 12K 95
ifaddr 30 12K 32
rman 88 11K 431
GEOM 61 11K 481
routetbl 50 11K 176
CAM queue 5 11K 1528
bmsafemap 3 9K 39
rpc 4 9K 4
UART 12 9K 12
devstat 4 9K 4
ksem 1 8K 1
UART 12 9K 12
devstat 4 9K 4
pfs_vncache 1 8K 1
shmfd 1 8K 1
audit_evclass 237 8K 297
shmfd 1 8K 1
taskqueue 63 7K 63
sglist 5 7K 5
sctp_atcl 16 6K 2386
sctp_stro 6 6K 1109
CAM DEV 3 6K 510
cred 23 6K 274
pfs_nodes 20 5K 20
hhook 15 5K 17
ufs_dirhash 24 5K 24
UMA 268 5K 268
hhook 15 5K 17
ufs_dirhash 24 5K 24
dirrem 17 5K 28
plimit 17 5K 322
vt 11 5K 11
ifnet 3 5K 3
memdesc 1 4K 1
MCA 32 4K 32
filedesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
acpisem 28 4K 28
ether_multi 40 4K 50
acpisem 28 4K 28
diradd 25 4K 36
lltable 11 4K 11
pf_ifnet 5 3K 6
kqueue 48 3K 1889
pwddesc 48 3K 1887
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
proc-args 70 3K 2809
clone 9 3K 9
uidinfo 3 3K 8
local_apic 1 2K 1
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
selfd 27 2K 27718
io_apic 1 2K 1
fpukern_ctx 2 2K 2
ipsec-saq 2 2K 2
Unitno 27 2K 41
CAM XPT 22 2K 543
lockf 15 2K 22
sctp_stri 3 2K 336
msi 12 2K 12
toponodes 6 2K 6
ipsecpolicy 2 2K 2
acpidev 20 2K 20
ipsecpolicy 2 2K 2
acpidev 20 2K 20
NFSD session 1 1K 1
softdep 1 1K 1
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
vnodemarker 2 1K 8
secasvar 1 1K 1
sctp_atky 22 1K 3663
CAM periph 4 1K 271
select 7 1K 29
ipsec 3 1K 3
indirdep 3 1K 3
CC Mem 3 1K 7
nhops 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
cdev 2 1K 2
osd 8 1K 20
chacha20random 1 1K 1
biobuf 1 1K 1
inpcbpolicy 10 1K 139
biobuf 1 1K 1
sctp_ifn 2 1K 6
sctp_athm 16 1K 2554
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFSP 4 1K 9
NFSD V4client 1 1K 1
DEVFS 9 1K 10
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
CAM SIM 2 1K 2
feeder 7 1K 7
soname 7 1K 5621
sctp_map 12 1K 2218
tcpfunc 3 1K 3
loginclass 3 1K 7
prison 6 1K 6
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
cryptodev 2 1K 49
lkpikmalloc 5 1K 6
aesni_data 2 1K 2
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
netlink 1 1K 1
apmdev 1 1K 1
atkbddev 2 1K 2
netlink 1 1K 1
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
CAM I/O Scheduler 1 1K 1
CAM path 4 1K 1034
procdesc 1 1K 6
pmchooks 1 1K 1
filecaps 4 1K 66
tun 3 1K 3
sctp_vrf 1 1K 1
vnet 1 1K 1
entropy 2 1K 35
vnet 1 1K 1
pmc 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
freework 1 1K 26
p1003.1b 1 1K 1
mqdata 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 1106
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 4
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_aadr 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
pf_table 0 0K 0
esp 0 0K 0
ah 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
filemon 0 0K 0
pf_temp 0 0K 0
tcp_do 0 0K 0
tcp_fsb 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
raid_data 0 0K 72
md_ddf_data 0 0K 0
madt_table 0 0K 2
smartpqi 0 0K 0
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 2
jfsync 0 0K 0
jtrunc 0 0K 0
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefile 0 0K 9
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freeblks 0 0K 25
freefrag 0 0K 1
allocindir 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
BACKLIGHT 0 0K 0
LRO 0 0K 0
ip_msource 0 0K 0
tcp_hwpace 0 0K 0
BACKLIGHT 0 0K 0
LRO 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
VN POLL 0 0K 0
ath_hal 0 0K 0
statfs 0 0K 195
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 3
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
AHCI driver 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
agp 0 0K 0
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
pvscsi 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
AHCI driver 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
agp 0 0K 0
nvme_da 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
twsbuf 0 0K 0
aio 0 0K 0
lio 0 0K 0
acl 0 0K 0
midi buffers 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
midi buffers 0 0K 0
mbuf_tag 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
iov 0 0K 13580
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
acpicmbat 0 0K 0
SIIS driver 0 0K 0
CAM CCB 0 0K 523
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
accf 0 0K 0
pts 0 0K 0
ioctlops 0 0K 86
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
sbuf 0 0K 288
stack 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctltmp 0 0K 649
firmware 0 0K 0
compressor 0 0K 0
MPRSAS 0 0K 0
SWAP 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
sysctl 0 0K 3
md_sectors 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
md_disk 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
kcovinfo 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
cache 0 0K 0
aacraidcam 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
Fail Points 0 0K 0
filedesc_to_leader 0 0K 0
mbuf 256 12039 1688 218913 0 254 3514112 0
BUF TRIE 144 193 11623 547 0 62 1701504 0
malloc-384 384 4144 56 4145 0 30 1612800 0
malloc-128 128 11578 140 14850 0 126 1499904 0
malloc-4096 4096 332 2 1047 0 2 1368064 0
UMA Slabs 0 112 12098 28 12098 0 126 1358112 0
sctp_asoc 2264 6 504 1109 0 254 1154640 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
vmem btag 56 17547 60 17547 0 254 985992 0
FFS inode 1160 499 26 509 0 8 609000 0
sctp_ep 1176 7 503 1109 0 254 599760 0
RADIX NODE 144 3486 261 31377 0 62 539568 0
lkpimm 168 1 3095 1 0 62 520128 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
socket 960 22 486 2423 0 254 487680 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
malloc-65536 65536 6 0 6 0 1 393216 0
sctp_raddr 736 6 511 1109 0 254 380512 0
256 Bucket 2048 146 22 1520 0 8 344064 0
malloc-64 64 3867 480 7663 0 254 278208 0
VM OBJECT 264 977 73 23003 0 30 277200 0
THREAD 1824 123 20 123 0 8 260832 0
VNODE 448 529 47 541 0 30 258048 0
malloc-16 16 14448 302 17230 0 254 236000 0
DEVCTL 1024 0 220 123 0 0 225280 0
malloc-256 256 849 21 876 0 62 222720 0
malloc-4096 4096 48 4 1887 0 2 212992 0
malloc-128 128 1307 212 27147 0 126 194432 0
malloc-32 32 5308 614 10411 0 254 189504 0
UMA Zones 768 240 4 240 0 16 187392 0
malloc-1024 1024 133 27 146 0 16 163840 0
FFS2 dinode 256 499 71 508 0 62 145920 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-65536 65536 0 2 46 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-32768 32768 4 0 4 0 1 131072 0
unpcb 256 7 503 1158 0 254 130560 0
mbuf_packet 256 5 503 2066 0 254 130048 0
S VFS Cache 104 966 204 1005 0 126 121680 0
MAP ENTRY 96 989 271 53638 0 126 120960 0
FPU_save_area 832 125 19 137 0 16 119808 0
ksiginfo 112 46 998 61 0 126 116928 0
malloc-2048 2048 14 42 2148 0 8 114688 0
malloc-128 128 578 197 1221 0 126 99200 0
PROC 1376 47 19 1886 0 8 90816 0
UMA Kegs 384 227 6 227 0 30 89472 0
malloc-256 256 236 79 482 0 62 80640 0
sctp_readq 152 3 517 150 0 254 79040 0
sctp_chunk 152 83 437 4049 0 254 79040 0
filedesc0 1072 48 22 1887 0 8 75040 0
g_bio 408 0 180 4516 0 30 73440 0
128 Bucket 1024 42 25 251 0 16 68608 0
malloc-64 64 648 423 14986 0 254 68544 0
malloc-128 128 335 192 357 0 126 67456 0
malloc-128 128 337 190 473 0 126 67456 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-16384 16384 3 1 17 0 1 65536 0
malloc-256 256 195 60 224 0 62 65280 0
sctp_stream_msg_out 112 3 537 168 0 254 60480 0
malloc-384 384 82 68 2452 0 30 57600 0
malloc-8192 8192 6 1 8 0 1 57344 0
malloc-4096 4096 13 1 24 0 2 57344 0
malloc-64 64 329 490 29898 0 254 52416 0
malloc-64 64 507 312 2592 0 254 52416 0
32 Bucket 256 59 136 3898 0 62 49920 0
DIRHASH 1024 35 13 35 0 16 49152 0
NAMEI 1024 0 48 12073 0 16 49152 0
malloc-16384 16384 3 0 3 0 1 49152 0
malloc-1024 1024 12 36 1638 0 16 49152 0
malloc-384 384 67 53 86 0 30 46080 0
syncache 168 0 264 5 0 254 44352 0
malloc-8192 8192 4 1 30 0 1 40960 0
malloc-8192 8192 5 0 5 0 1 40960 0
VMSPACE 616 31 35 1871 0 16 40656 0
udp_inpcb 424 6 84 128 0 30 38160 0
pcpu-8 8 4291 317 4319 0 254 36864 0
64 Bucket 512 64 8 1247 0 30 36864 0
malloc-64 64 8 559 20 0 254 36288 0
malloc-64 64 18 549 24 0 254 36288 0
malloc-64 64 41 526 76 0 254 36288 0
malloc-64 64 26 541 274 0 254 36288 0
malloc-128 128 20 259 70 0 126 35712 0
malloc-128 128 30 249 44 0 126 35712 0
malloc-128 128 9 270 330 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 48 42 71 0 30 34560 0
malloc-256 256 23 112 140 0 62 34560 0
malloc-256 256 56 79 356 0 62 34560 0
malloc-256 256 103 32 760 0 62 34560 0
malloc-256 256 36 99 368 0 62 34560 0
malloc-256 256 50 85 2043 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 0 2 160 0 1 32768 0
malloc-8192 8192 2 2 103 0 1 32768 0
malloc-4096 4096 8 0 8 0 2 32768 0
malloc-4096 4096 5 3 200 0 2 32768 0
malloc-2048 2048 3 13 27 0 8 32768 0
malloc-2048 2048 9 7 9 0 8 32768 0
malloc-2048 2048 5 11 6 0 8 32768 0
malloc-2048 2048 2 14 61 0 8 32768 0
malloc-2048 2048 4 12 195 0 8 32768 0
malloc-1024 1024 2 30 42 0 16 32768 0
malloc-1024 1024 2 30 855 0 16 32768 0
malloc-1024 1024 12 20 163 0 16 32768 0
malloc-1024 1024 9 23 13 0 16 32768 0
malloc-512 512 9 55 127 0 30 32768 0
malloc-512 512 1 63 10 0 30 32768 0
malloc-512 512 3 61 336 0 30 32768 0
malloc-512 512 5 59 64 0 30 32768 0
pcpu-64 64 486 26 486 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 20 244 31 0 126 31680 0
clpbuf 2624 0 12 28 0 4 31488 0
sctp_laddr 48 5 583 173 0 254 28224 0
16 Bucket 144 47 149 257 0 62 28224 0
4 Bucket 48 6 582 9 0 254 28224 0
da_ccb 544 0 49 1264 0 16 26656 0
TURNSTILE 136 144 45 144 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
ripcb 392 1 62 4 0 30 24696 0
malloc-4096 4096 3 3 6 0 2 24576 0
ertt_txseginfo 40 0 606 1399 0 254 24240 0
rl_entry 40 37 569 37 0 254 24240 0
PWD 40 10 596 99 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
pipe 728 7 26 282 0 16 24024 0
Files 80 75 225 7622 0 126 24000 0
8 Bucket 80 41 259 539 0 126 24000 0
tcp_inpcb 1304 3 15 7 0 8 23472 0
malloc-384 384 12 48 12 0 30 23040 0
malloc-384 384 2 58 345 0 30 23040 0
malloc-384 384 11 49 14 0 30 23040 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 144 112 144 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
udp_inpcb ports 32 3 627 40 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
malloc-32 32 318 312 378 0 254 20160 0
malloc-32 32 27 603 67 0 254 20160 0
malloc-32 32 80 550 1137 0 254 20160 0
malloc-32 32 79 551 825 0 254 20160 0
malloc-32 32 46 584 2823 0 254 20160 0
malloc-32 32 61 569 1364 0 254 20160 0
2 Bucket 32 49 581 294 0 254 20160 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-2048 2048 0 8 12 0 8 16384 0
malloc-1024 1024 4 12 4 0 16 16384 0
malloc-1024 1024 3 13 3 0 16 16384 0
malloc-512 512 4 28 10 0 30 16384 0
malloc-512 512 1 31 2 0 30 16384 0
SMR CPU 32 7 504 7 0 254 16352 0
vtnet_tx_hdr 24 1 667 2962 0 254 16032 0
kenv 258 16 44 1033 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
vmem 1856 1 7 1 0 8 14848 0
SMR SHARED 24 7 504 7 0 254 12264 0
sackhole 32 0 378 1 0 254 12096 0
tcp_inpcb ports 32 1 377 1 0 254 12096 0
malloc-32 32 9 369 31 0 254 12096 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-16 16 23 727 1166 0 254 12000 0
malloc-16 16 277 473 438 0 254 12000 0
malloc-16 16 62 688 119 0 254 12000 0
malloc-16 16 188 562 3054 0 254 12000 0
malloc-16 16 31 719 28302 0 254 12000 0
malloc-16 16 28 722 1232 0 254 12000 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 0 2 1 0 2 8192 0
malloc-4096 4096 1 1 1 0 2 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
malloc-16 16 15 485 15 0 254 8000 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 144 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 248 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 352 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_bbr_pcb 832 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tcp_rack_pcb 1024 0 0 0 0 16 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
ripcb ports 32 0 0 0 0 254 0 0
udplite_inpcb ports 32 0 0 0 0 254 0 0
udplite_inpcb 424 0 0 0 0 30 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
netlink 2048 0 0 0 0 8 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
TMPFS node 232 0 0 0 0 62 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 144 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 104 0 0 0 0 126 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 144 0 0 0 0 62 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-2048 2048 0 0 0 0 8 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-512 512 0 0 0 0 30 0 0
malloc-384 384 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
Reply all
Reply to author
Forward
0 new messages