Fatal trap 12: page fault in sctp_process_control
6 views
Skip to first unread message
syzbot
May 11, 2020, 1:07:14 AM5/11/20
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following crash on:
HEAD commit: 12efb4c0 powerpc64: Implement Radix MMU for POWER9 CPUs
git tree: freebsd
console output: https://syzkaller.appspot.com/x/log.txt?x=11c25b14100000
dashboard link: https://syzkaller.appspot.com/bug?extid=a0863e972771f2f0d4b3
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+a0863e...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address = 0x3a9
fault code = supervisor read data, page not present
instruction pointer = 0x20:0xffffffff81309442
stack pointer = 0x28:0xfffffe001a0c7260
frame pointer = 0x28:0xfffffe001a0c76d0
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 12 (swi1: netisr 0)
trap number = 12
panic: page fault
cpuid = 0
time = 1589173610
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x47/frame 0xfffffe001a0c6eb0
vpanic() at vpanic+0x1c7/frame 0xfffffe001a0c6f10
panic() at panic+0x43/frame 0xfffffe001a0c6f70
trap_fatal() at trap_fatal+0x4ca/frame 0xfffffe001a0c6ff0
trap_pfault() at trap_pfault+0xdc/frame 0xfffffe001a0c7070
trap() at trap+0x3f8/frame 0xfffffe001a0c7190
calltrap() at calltrap+0x8/frame 0xfffffe001a0c7190
--- trap 0xc, rip = 0xffffffff81309442, rsp = 0xfffffe001a0c7260, rbp = 0xfffffe001a0c76d0 ---
sctp_process_control() at sctp_process_control+0x35f2/frame 0xfffffe001a0c76d0
sctp_common_input_processing() at sctp_common_input_processing+0x74c/frame 0xfffffe001a0c7860
sctp6_input_with_port() at sctp6_input_with_port+0x300/frame 0xfffffe001a0c7960
sctp6_input() at sctp6_input+0x1f/frame 0xfffffe001a0c7980
ip6_input() at ip6_input+0x1802/frame 0xfffffe001a0c7a90
swi_net() at swi_net+0x20d/frame 0xfffffe001a0c7b10
ithread_loop() at ithread_loop+0x328/frame 0xfffffe001a0c7bb0
fork_exit() at fork_exit+0xb3/frame 0xfffffe001a0c7bf0
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe001a0c7bf0
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
KDB: enter: panic
[ thread pid 12 tid 100022 ]
Stopped at kdb_enter+0x67: movq $0,0x14a9036(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b ll+0x1a
es 0x3b ll+0x1a
fs 0x13
gs 0x1b
ss 0x28 ll+0x7
rax 0x12
rcx 0xffffffff810b94f0 vprintf+0x140
rdx 0x1
rbx 0
rsp 0xfffffe001a0c6e90
rbp 0xfffffe001a0c6eb0
rsi 0
rdi 0xffffffff810b9526 vprintf+0x176
r8 0
r9 0xffffffff
r10 0
r11 0
r12 0xffffffff82068ec0 ddb_dbbe
r13 0
r14 0xffffffff81942f10
r15 0xffffffff81942f10
rip 0xffffffff810ae837 kdb_enter+0x67
rflags 0x86 ll+0x65
kdb_enter+0x67: movq $0,0x14a9036(%rip)
db> show proc
Process 12 (intr) at 0xfffff80003308520:
state: NORMAL
uid: 0 gids: 0
parent: pid 0 at 0xffffffff8250b710
ABI: null
reaper: 0xffffffff8250b710 reapsubtree: 12
sigparent: 20
vmspace: 0xffffffff8250c350
(map 0xffffffff8250c350)
(map.pmap 0xffffffff8250c410)
(pmap 0xffffffff8250c470)
threads: 23
100010 I [swi6: Giant taskq]
100013 I [swi5: fast taskq]
100016 I [swi6: task queue]
100019 I [swi3: vm]
100020 I [swi4: clock (0)]
100021 I [swi4: clock (1)]
100022 Run CPU 0 [swi1: netisr 0]
100034 I [irq24: virtio_pci0]
100035 I [irq25: virtio_pci0]
100036 I [irq26: virtio_pci0]
100037 RunQ [irq27: virtio_pci0]
100038 I [irq28: virtio_pci1]
100039 I [irq29: virtio_pci1]
100040 I [irq30: virtio_pci1]
100041 I [irq31: virtio_pci1]
100042 I [irq32: virtio_pci1]
100047 I [irq10: virtio_pci2]
100049 I [irq1: atkbd0]
100050 I [irq12: psm0]
100051 I [swi0: uart uart++]
100060 I [swi1: pf send]
100072 I [swi1: hpts]
100073 I [swi1: hpts]
db> ps
pid ppid pgrp uid state wmesg wchan cmd
1384 771 771 0 R (threaded) syz-executor.3
100099 RunQ syz-executor.3
100366 S sbwait 0xfffffe00239d4ff4 syz-executor.3
100368 S uwait 0xfffff8000c20e180 syz-executor.3
1383 773 773 0 R (threaded) syz-executor.1
100363 Run CPU 1 syz-executor.1
100365 S sbwait 0xfffffe00239d48e4 syz-executor.1
100367 S sbwait 0xfffffe00239d7a8c syz-executor.1
100369 S sbwait 0xfffffe00239db704 syz-executor.1
1382 772 772 0 R (threaded) syz-executor.2
100096 RunQ syz-executor.2
100364 RunQ syz-executor.2
1380 770 770 0 R (threaded) syz-executor.0
100080 RunQ syz-executor.0
100358 S connec 0xfffffe00239db9a8 syz-executor.0
100359 S uwait 0xfffff8000c20e280 syz-executor.0
100360 S uwait 0xfffff80003c7c080 syz-executor.0
100361 S uwait 0xfffff80003c7d780 syz-executor.0
1029 1023 1029 0 Ss select 0xfffff8000c20e940 dhclient
1026 1 1026 0 Ss select 0xfffff80003c7d3c0 dhclient
1023 1015 424 65 S select 0xfffff80003c790c0 dhclient
1015 424 424 0 S wait 0xfffff80003cb9000 sh
773 768 773 0 Ss nanslp 0xffffffff8252c1e1 syz-executor.1
772 768 772 0 Ss nanslp 0xffffffff8252c1e1 syz-executor.2
771 768 771 0 Ss nanslp 0xffffffff8252c1e1 syz-executor.3
770 768 770 0 Ss nanslp 0xffffffff8252c1e1 syz-executor.0
768 766 766 0 R (threaded) syz-fuzzer
100085 RunQ syz-fuzzer
100109 RunQ syz-fuzzer
100110 S uwait 0xfffff8000c20e680 syz-fuzzer
100111 S uwait 0xfffff8000c20e780 syz-fuzzer
100112 RunQ syz-fuzzer
100113 S uwait 0xfffff80003ba5e80 syz-fuzzer
100114 S uwait 0xfffff8000c20eb00 syz-fuzzer
100115 S uwait 0xfffff8000c20ec00 syz-fuzzer
100116 S uwait 0xfffff8000c20ed00 syz-fuzzer
100117 S uwait 0xfffff8000c20ee00 syz-fuzzer
100118 S uwait 0xfffff80003ba8000 syz-fuzzer
766 764 766 0 Ss pause 0xfffff8000c24d0a8 csh
764 682 764 0 Ss select 0xfffff80003c7b040 sshd
748 1 748 0 Ss+ ttyin 0xfffff8000383ccb0 getty
747 1 747 0 Ss+ ttyin 0xfffff80003b2e4b0 getty
746 1 746 0 Ss+ ttyin 0xfffff80003b2e8b0 getty
745 1 745 0 Ss+ ttyin 0xfffff80003b2ecb0 getty
744 1 744 0 Ss+ ttyin 0xfffff80003b2d0b0 getty
743 1 743 0 Ss+ ttyin 0xfffff80003b2d4b0 getty
742 1 742 0 Ss+ ttyin 0xfffff80003b2d8b0 getty
741 1 741 0 Ss+ ttyin 0xfffff80003b2dcb0 getty
740 1 740 0 Ss+ ttyin 0xfffff80003b300b0 getty
686 1 686 0 Ss nanslp 0xffffffff8252c1e0 cron
682 1 682 0 Ss select 0xfffff80003c37940 sshd
495 1 495 0 Ds biowr 0xfffffe0003e100c0 syslogd
424 1 424 0 Ss wait 0xfffff8000c24da40 devd
423 1 423 65 Ss select 0xfffff80003c7ce40 dhclient
338 1 338 0 Ss select 0xfffff80003c7b0c0 dhclient
335 1 335 0 Ss select 0xfffff8000c1f1b40 dhclient
23 0 0 0 DL vlruwt 0xfffff800033dc520 [vnlru]
22 0 0 0 DL syncer 0xffffffff82618118 [syncer]
21 0 0 0 DL (threaded) [bufdaemon]
100069 D qsleep 0xffffffff82617430 [bufdaemon]
100076 D - 0xffffffff8200aa00 [bufspacedaemon-0]
100088 D sdflush 0xfffff80003c70ce8 [/ worker]
20 0 0 0 DL psleep 0xffffffff8263e308 [vmdaemon]
19 0 0 0 DL (threaded) [pagedaemon]
100067 D psleep 0xffffffff826328d8 [dom0]
100074 D launds 0xffffffff826328e4 [laundry: dom0]
100075 D umarcl 0xffffffff815449d0 [uma]
18 0 0 0 DL - 0xffffffff8235fe20 [rand_harvestq]
17 0 0 0 DL pftm 0xffffffff82c4e3a0 [pf purge]
16 0 0 0 DL waiting 0xffffffff8261a890 [sctp_iterator]
15 0 0 0 DL - 0xffffffff82616a2c [soaiod4]
9 0 0 0 DL - 0xffffffff82616a2c [soaiod3]
8 0 0 0 DL - 0xffffffff82616a2c [soaiod2]
7 0 0 0 DL - 0xffffffff82616a2c [soaiod1]
6 0 0 0 DL (threaded) [cam]
100033 D - 0xffffffff82237b40 [doneq0]
100066 D - 0xffffffff82237a10 [scanner]
5 0 0 0 DL crypto_ 0xfffff80003204e90 [crypto returns 1]
4 0 0 0 DL crypto_ 0xfffff80003204e30 [crypto returns 0]
3 0 0 0 DL crypto_ 0xffffffff826300c0 [crypto]
14 0 0 0 DL seqstat 0xfffff8000335f488 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100024 D - 0xffffffff8250b180 [g_event]
100025 D - 0xffffffff8250b188 [g_up]
100026 D - 0xffffffff8250b190 [g_down]
2 0 0 0 DL (threaded) [KTLS]
100017 D - 0xfffff80003319680 [thr_0]
100018 D - 0xfffff800033196c0 [thr_1]
12 0 0 0 RL (threaded) [intr]
100010 I [swi6: Giant taskq]
100013 I [swi5: fast taskq]
100016 I [swi6: task queue]
100019 I [swi3: vm]
100020 I [swi4: clock (0)]
100021 I [swi4: clock (1)]
100022 Run CPU 0 [swi1: netisr 0]
100034 I [irq24: virtio_pci0]
100035 I [irq25: virtio_pci0]
100036 I [irq26: virtio_pci0]
100037 RunQ [irq27: virtio_pci0]
100038 I [irq28: virtio_pci1]
100039 I [irq29: virtio_pci1]
100040 I [irq30: virtio_pci1]
100041 I [irq31: virtio_pci1]
100042 I [irq32: virtio_pci1]
100047 I [irq10: virtio_pci2]
100049 I [irq1: atkbd0]
100050 I [irq12: psm0]
100051 I [swi0: uart uart++]
100060 I [swi1: pf send]
100072 I [swi1: hpts]
100073 I [swi1: hpts]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffff80003307000 [init]
10 0 0 0 DL audit_w 0xffffffff82630598 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff8250b710 [swapper]
100005 D - 0xfffff8000320fb00 [if_config_tqg_0]
100006 D - 0xfffff8000320f900 [softirq_0]
100007 D - 0xfffff8000320f700 [softirq_1]
100008 D - 0xfffff8000320f500 [if_io_tqg_0]
100009 D - 0xfffff8000320f300 [if_io_tqg_1]
100011 D - 0xfffff800031fcd00 [in6m_free taskq]
100012 D - 0xfffff800031fcc00 [thread taskq]
100014 D - 0xfffff800031fca00 [kqueue_ctx taskq]
100015 D - 0xfffff800031fc900 [aiod_kick taskq]
100023 D - 0xfffff800031fc700 [firmware taskq]
100028 D - 0xfffff800031fc500 [crypto_0]
100029 D - 0xfffff800031fc500 [crypto_1]
100043 D - 0xfffff800031fc200 [vtnet0 rxq 0]
100044 D - 0xfffff800031fc100 [vtnet0 txq 0]
100045 D - 0xfffff800031fc000 [vtnet0 rxq 1]
100046 D - 0xfffff800031fbe00 [vtnet0 txq 1]
100048 D vtbslp 0xfffff800034f0580 [virtio_balloon]
100052 D - 0xfffff800031fbc00 [mca taskq]
100056 D - 0xffffffff81ce66e0 [deadlkres]
100061 D - 0xfffff80003b7e000 [acpi_task_0]
100062 D - 0xfffff80003b7e000 [acpi_task_1]
100063 D - 0xfffff80003b7e000 [acpi_task_2]
100065 D - 0xfffff800031fc300 [CAM taskq]
db> show all locks
Process 1383 (syz-executor.1) thread 0xfffffe002586a800 (100363)
exclusive sleep mutex umtxql (umtxql) r = 0 (0xffffffff8254f1b0) locked @ /syzkaller/managers/main/kernel/sys/kern/kern_umtx.c:512
Process 495 (syslogd) thread 0xfffffe0023be5800 (100091)
exclusive lockmgr bufwait (bufwait) r = 0 (0xfffffe0003e10140) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_bio.c:3878
exclusive lockmgr ufs (ufs) r = 0 (0xfffff8000c15e250) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_syscalls.c:3431
Process 12 (intr) thread 0xfffffe00048b3000 (100022)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe0025954380) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:1342
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
devbuf 4213 4851K 4241
tcp_hpts 5 3201K 5
vtbuf 24 1968K 46
sysctloid 27747 1619K 27811
kobj 332 1328K 491
newblk 6 1026K 4756
vfscache 4 1025K 4
pcb 49 566K 338
inodedep 64 544K 884
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 388K 4
subproc 128 257K 1458
acpica 1674 185K 52709
vnet_data 1 168K 1
filedesc 21 149K 1023
pagedep 10 131K 610
tfo_ccache 1 128K 1
sem 4 106K 4
DEVFS1 105 105K 122
linker 237 95K 278
bus 991 79K 3379
mtx_pool 2 72K 2
syncache 1 68K 1
acpitask 1 64K 1
ddb_capture 1 64K 1
module 499 63K 499
umtx 342 43K 342
kdtrace 184 36K 4110
BPF 22 36K 22
temp 35 33K 2150
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 124 31K 134
msg 4 30K 4
DEVFS_RULE 56 27K 56
vmem 3 26K 5
gtaskqueue 18 26K 18
ifaddr 73 25K 73
kbdmux 6 22K 6
lltable 47 18K 48
ufs_mount 3 17K 4
proc 3 17K 3
tty 16 16K 16
tidhash 1 16K 1
ithread 98 16K 98
dirrem 55 14K 614
ether_multi 172 14K 177
sctp_atcl 27 14K 143
bus-sc 30 14K 1431
sctp_stro 13 13K 43
KTRACE 100 13K 100
ifnet 7 13K 7
kenv 95 12K 99
eventhandler 132 12K 132
in6_multi 89 11K 89
pfs_nodes 20 10K 20
GEOM 60 10K 487
rman 82 10K 423
bmsafemap 3 9K 787
UART 12 9K 12
devstat 4 9K 4
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 233 8K 291
freefile 51 7K 601
select 49 7K 49
CAM DEV 3 6K 510
kqueue 57 6K 1391
vt 11 6K 11
sctp_timw 22 6K 22
plimit 21 6K 443
cred 21 6K 204
sglist 5 6K 5
CAM queue 5 6K 1528
taskqueue 45 5K 45
ufs_dirhash 24 5K 24
DEVFSP 72 5K 76
pf_ifnet 10 5K 19
memdesc 1 4K 1
MCA 32 4K 32
lockf 36 4K 549
evdev 4 4K 4
kcovinfo 64 4K 68
UMA 247 4K 247
routetbl 23 4K 235
hhook 13 4K 13
session 25 4K 38
pgrp 25 4K 38
acpisem 22 3K 22
terminal 11 3K 11
proc-args 44 3K 572
uidinfo 3 3K 7
sctp_ifa 17 3K 17
local_apic 1 2K 1
io_apic 1 2K 1
CAM CCB 1 2K 13489
ipsec-saq 2 2K 2
ip6ndp 12 2K 21
Unitno 32 2K 531
sctp_atky 40 2K 199
CAM XPT 22 2K 543
in_multi 6 2K 7
acpidev 20 2K 20
msi 9 2K 9
tun 7 2K 7
freework 5 2K 1243
softdep 1 1K 1
mkdir 8 1K 994
freeblks 4 1K 594
ipsecpolicy 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
clone 8 1K 8
vnodemarker 2 1K 388
NFSD session 1 1K 1
CAM periph 4 1K 271
mld 6 1K 6
sctp_ifn 6 1K 6
igmp 6 1K 6
nhops 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 86
pci_link 10 1K 10
newdirblk 5 1K 497
inpcbpolicy 20 1K 1297
crypto 3 1K 3
diradd 4 1K 647
sctp_stri 1 1K 26
pfil 4 1K 4
chacha20random 1 1K 1
CAM SIM 2 1K 2
epoch 4 1K 4
cdev 2 1K 2
encap_export_host 8 1K 8
sctp_athm 27 1K 156
sctp_map 26 1K 86
osd 3 1K 9
vnodes 1 1K 8
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
feeder 7 1K 7
loginclass 3 1K 6
soname 6 1K 5930
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
apmdev 1 1K 1
atkbddev 2 1K 2
CAM path 4 1K 1034
tcpfunc 2 1K 2
ktls 1 1K 1
pmchooks 1 1K 1
prison 4 1K 4
nexusdev 5 1K 5
entropy 2 1K 38
sctp_vrf 1 1K 1
vnet 1 1K 1
iov 1 1K 14897
acpiintr 1 1K 1
pmc 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
filecaps 2 1K 90
p1003.1b 1 1K 1
pf_table 0 0K 53
pf_rule 0 0K 54
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_temp 0 0K 0
ath_hal 0 0K 0
madt_table 0 0K 2
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
amr 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
pvscsi 0 0K 0
smartpqi 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
iavf 0 0K 0
ixl 0 0K 0
nvme_da 0 0K 0
acpipwr 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
twa_commands 0 0K 0
tcp_log_dev 0 0K 0
midi buffers 0 0K 0
fpukern_ctx 0 0K 0
mixer 0 0K 0
xen_intr 0 0K 0
ac97 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
qpidrv 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
dmar_dmamap 0 0K 0
hdaa 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
isci 0 0K 0
bxe_ilt 0 0K 0
xenbus 0 0K 0
SIIS driver 0 0K 0
vm_fictitious 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
UMAHash 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 576
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 193
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 30
allocindir 0 0K 0
indirdep 0 0K 944
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
xform 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 29
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
lDevFlags * malloc 0 0K 0
LRO 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 43
sctp_iter 0 0K 12
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 5
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 7
sctp_aadr 0 0K 0
newreno data 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
statfs 0 0K 673
export_host 0 0K 0
cl_savebuf 0 0K 5
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
biobuf 0 0K 0
aios 0 0K 0
lio 0 0K 0
acl 0 0K 0
MPSSAS 0 0K 0
mbuf_tag 0 0K 112
accf 0 0K 0
pts 0 0K 0
ioctlops 0 0K 246
Witness 0 0K 0
stack 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
sbuf 0 0K 288
md_disk 0 0K 0
compressor 0 0K 0
malodev 0 0K 0
SWAP 0 0K 0
LED 0 0K 0
sysctltmp 0 0K 593
sysctl 0 0K 1
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
ix_sriov 0 0K 0
aacraidcam 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
iirbuf 0 0K 0
cache 0 0K 0
aacraid_buf 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroffdiroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
db> show ktr
No such command; use "help" to list available commands
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following crash on:
HEAD commit: 12efb4c0 powerpc64: Implement Radix MMU for POWER9 CPUs
git tree: freebsd
console output: https://syzkaller.appspot.com/x/log.txt?x=11c25b14100000
dashboard link: https://syzkaller.appspot.com/bug?extid=a0863e972771f2f0d4b3
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+a0863e...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address = 0x3a9
fault code = supervisor read data, page not present
instruction pointer = 0x20:0xffffffff81309442
stack pointer = 0x28:0xfffffe001a0c7260
frame pointer = 0x28:0xfffffe001a0c76d0
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 12 (swi1: netisr 0)
trap number = 12
panic: page fault
cpuid = 0
time = 1589173610
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x47/frame 0xfffffe001a0c6eb0
vpanic() at vpanic+0x1c7/frame 0xfffffe001a0c6f10
panic() at panic+0x43/frame 0xfffffe001a0c6f70
trap_fatal() at trap_fatal+0x4ca/frame 0xfffffe001a0c6ff0
trap_pfault() at trap_pfault+0xdc/frame 0xfffffe001a0c7070
trap() at trap+0x3f8/frame 0xfffffe001a0c7190
calltrap() at calltrap+0x8/frame 0xfffffe001a0c7190
--- trap 0xc, rip = 0xffffffff81309442, rsp = 0xfffffe001a0c7260, rbp = 0xfffffe001a0c76d0 ---
sctp_process_control() at sctp_process_control+0x35f2/frame 0xfffffe001a0c76d0
sctp_common_input_processing() at sctp_common_input_processing+0x74c/frame 0xfffffe001a0c7860
sctp6_input_with_port() at sctp6_input_with_port+0x300/frame 0xfffffe001a0c7960
sctp6_input() at sctp6_input+0x1f/frame 0xfffffe001a0c7980
ip6_input() at ip6_input+0x1802/frame 0xfffffe001a0c7a90
swi_net() at swi_net+0x20d/frame 0xfffffe001a0c7b10
ithread_loop() at ithread_loop+0x328/frame 0xfffffe001a0c7bb0
fork_exit() at fork_exit+0xb3/frame 0xfffffe001a0c7bf0
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe001a0c7bf0
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
KDB: enter: panic
[ thread pid 12 tid 100022 ]
Stopped at kdb_enter+0x67: movq $0,0x14a9036(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b ll+0x1a
es 0x3b ll+0x1a
fs 0x13
gs 0x1b
ss 0x28 ll+0x7
rax 0x12
rcx 0xffffffff810b94f0 vprintf+0x140
rdx 0x1
rbx 0
rsp 0xfffffe001a0c6e90
rbp 0xfffffe001a0c6eb0
rsi 0
rdi 0xffffffff810b9526 vprintf+0x176
r8 0
r9 0xffffffff
r10 0
r11 0
r12 0xffffffff82068ec0 ddb_dbbe
r13 0
r14 0xffffffff81942f10
r15 0xffffffff81942f10
rip 0xffffffff810ae837 kdb_enter+0x67
rflags 0x86 ll+0x65
kdb_enter+0x67: movq $0,0x14a9036(%rip)
db> show proc
Process 12 (intr) at 0xfffff80003308520:
state: NORMAL
uid: 0 gids: 0
parent: pid 0 at 0xffffffff8250b710
ABI: null
reaper: 0xffffffff8250b710 reapsubtree: 12
sigparent: 20
vmspace: 0xffffffff8250c350
(map 0xffffffff8250c350)
(map.pmap 0xffffffff8250c410)
(pmap 0xffffffff8250c470)
threads: 23
100010 I [swi6: Giant taskq]
100013 I [swi5: fast taskq]
100016 I [swi6: task queue]
100019 I [swi3: vm]
100020 I [swi4: clock (0)]
100021 I [swi4: clock (1)]
100022 Run CPU 0 [swi1: netisr 0]
100034 I [irq24: virtio_pci0]
100035 I [irq25: virtio_pci0]
100036 I [irq26: virtio_pci0]
100037 RunQ [irq27: virtio_pci0]
100038 I [irq28: virtio_pci1]
100039 I [irq29: virtio_pci1]
100040 I [irq30: virtio_pci1]
100041 I [irq31: virtio_pci1]
100042 I [irq32: virtio_pci1]
100047 I [irq10: virtio_pci2]
100049 I [irq1: atkbd0]
100050 I [irq12: psm0]
100051 I [swi0: uart uart++]
100060 I [swi1: pf send]
100072 I [swi1: hpts]
100073 I [swi1: hpts]
db> ps
pid ppid pgrp uid state wmesg wchan cmd
1384 771 771 0 R (threaded) syz-executor.3
100099 RunQ syz-executor.3
100366 S sbwait 0xfffffe00239d4ff4 syz-executor.3
100368 S uwait 0xfffff8000c20e180 syz-executor.3
1383 773 773 0 R (threaded) syz-executor.1
100363 Run CPU 1 syz-executor.1
100365 S sbwait 0xfffffe00239d48e4 syz-executor.1
100367 S sbwait 0xfffffe00239d7a8c syz-executor.1
100369 S sbwait 0xfffffe00239db704 syz-executor.1
1382 772 772 0 R (threaded) syz-executor.2
100096 RunQ syz-executor.2
100364 RunQ syz-executor.2
1380 770 770 0 R (threaded) syz-executor.0
100080 RunQ syz-executor.0
100358 S connec 0xfffffe00239db9a8 syz-executor.0
100359 S uwait 0xfffff8000c20e280 syz-executor.0
100360 S uwait 0xfffff80003c7c080 syz-executor.0
100361 S uwait 0xfffff80003c7d780 syz-executor.0
1029 1023 1029 0 Ss select 0xfffff8000c20e940 dhclient
1026 1 1026 0 Ss select 0xfffff80003c7d3c0 dhclient
1023 1015 424 65 S select 0xfffff80003c790c0 dhclient
1015 424 424 0 S wait 0xfffff80003cb9000 sh
773 768 773 0 Ss nanslp 0xffffffff8252c1e1 syz-executor.1
772 768 772 0 Ss nanslp 0xffffffff8252c1e1 syz-executor.2
771 768 771 0 Ss nanslp 0xffffffff8252c1e1 syz-executor.3
770 768 770 0 Ss nanslp 0xffffffff8252c1e1 syz-executor.0
768 766 766 0 R (threaded) syz-fuzzer
100085 RunQ syz-fuzzer
100109 RunQ syz-fuzzer
100110 S uwait 0xfffff8000c20e680 syz-fuzzer
100111 S uwait 0xfffff8000c20e780 syz-fuzzer
100112 RunQ syz-fuzzer
100113 S uwait 0xfffff80003ba5e80 syz-fuzzer
100114 S uwait 0xfffff8000c20eb00 syz-fuzzer
100115 S uwait 0xfffff8000c20ec00 syz-fuzzer
100116 S uwait 0xfffff8000c20ed00 syz-fuzzer
100117 S uwait 0xfffff8000c20ee00 syz-fuzzer
100118 S uwait 0xfffff80003ba8000 syz-fuzzer
766 764 766 0 Ss pause 0xfffff8000c24d0a8 csh
764 682 764 0 Ss select 0xfffff80003c7b040 sshd
748 1 748 0 Ss+ ttyin 0xfffff8000383ccb0 getty
747 1 747 0 Ss+ ttyin 0xfffff80003b2e4b0 getty
746 1 746 0 Ss+ ttyin 0xfffff80003b2e8b0 getty
745 1 745 0 Ss+ ttyin 0xfffff80003b2ecb0 getty
744 1 744 0 Ss+ ttyin 0xfffff80003b2d0b0 getty
743 1 743 0 Ss+ ttyin 0xfffff80003b2d4b0 getty
742 1 742 0 Ss+ ttyin 0xfffff80003b2d8b0 getty
741 1 741 0 Ss+ ttyin 0xfffff80003b2dcb0 getty
740 1 740 0 Ss+ ttyin 0xfffff80003b300b0 getty
686 1 686 0 Ss nanslp 0xffffffff8252c1e0 cron
682 1 682 0 Ss select 0xfffff80003c37940 sshd
495 1 495 0 Ds biowr 0xfffffe0003e100c0 syslogd
424 1 424 0 Ss wait 0xfffff8000c24da40 devd
423 1 423 65 Ss select 0xfffff80003c7ce40 dhclient
338 1 338 0 Ss select 0xfffff80003c7b0c0 dhclient
335 1 335 0 Ss select 0xfffff8000c1f1b40 dhclient
23 0 0 0 DL vlruwt 0xfffff800033dc520 [vnlru]
22 0 0 0 DL syncer 0xffffffff82618118 [syncer]
21 0 0 0 DL (threaded) [bufdaemon]
100069 D qsleep 0xffffffff82617430 [bufdaemon]
100076 D - 0xffffffff8200aa00 [bufspacedaemon-0]
100088 D sdflush 0xfffff80003c70ce8 [/ worker]
20 0 0 0 DL psleep 0xffffffff8263e308 [vmdaemon]
19 0 0 0 DL (threaded) [pagedaemon]
100067 D psleep 0xffffffff826328d8 [dom0]
100074 D launds 0xffffffff826328e4 [laundry: dom0]
100075 D umarcl 0xffffffff815449d0 [uma]
18 0 0 0 DL - 0xffffffff8235fe20 [rand_harvestq]
17 0 0 0 DL pftm 0xffffffff82c4e3a0 [pf purge]
16 0 0 0 DL waiting 0xffffffff8261a890 [sctp_iterator]
15 0 0 0 DL - 0xffffffff82616a2c [soaiod4]
9 0 0 0 DL - 0xffffffff82616a2c [soaiod3]
8 0 0 0 DL - 0xffffffff82616a2c [soaiod2]
7 0 0 0 DL - 0xffffffff82616a2c [soaiod1]
6 0 0 0 DL (threaded) [cam]
100033 D - 0xffffffff82237b40 [doneq0]
100066 D - 0xffffffff82237a10 [scanner]
5 0 0 0 DL crypto_ 0xfffff80003204e90 [crypto returns 1]
4 0 0 0 DL crypto_ 0xfffff80003204e30 [crypto returns 0]
3 0 0 0 DL crypto_ 0xffffffff826300c0 [crypto]
14 0 0 0 DL seqstat 0xfffff8000335f488 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100024 D - 0xffffffff8250b180 [g_event]
100025 D - 0xffffffff8250b188 [g_up]
100026 D - 0xffffffff8250b190 [g_down]
2 0 0 0 DL (threaded) [KTLS]
100017 D - 0xfffff80003319680 [thr_0]
100018 D - 0xfffff800033196c0 [thr_1]
12 0 0 0 RL (threaded) [intr]
100010 I [swi6: Giant taskq]
100013 I [swi5: fast taskq]
100016 I [swi6: task queue]
100019 I [swi3: vm]
100020 I [swi4: clock (0)]
100021 I [swi4: clock (1)]
100022 Run CPU 0 [swi1: netisr 0]
100034 I [irq24: virtio_pci0]
100035 I [irq25: virtio_pci0]
100036 I [irq26: virtio_pci0]
100037 RunQ [irq27: virtio_pci0]
100038 I [irq28: virtio_pci1]
100039 I [irq29: virtio_pci1]
100040 I [irq30: virtio_pci1]
100041 I [irq31: virtio_pci1]
100042 I [irq32: virtio_pci1]
100047 I [irq10: virtio_pci2]
100049 I [irq1: atkbd0]
100050 I [irq12: psm0]
100051 I [swi0: uart uart++]
100060 I [swi1: pf send]
100072 I [swi1: hpts]
100073 I [swi1: hpts]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffff80003307000 [init]
10 0 0 0 DL audit_w 0xffffffff82630598 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D swapin 0xffffffff8250b710 [swapper]
100005 D - 0xfffff8000320fb00 [if_config_tqg_0]
100006 D - 0xfffff8000320f900 [softirq_0]
100007 D - 0xfffff8000320f700 [softirq_1]
100008 D - 0xfffff8000320f500 [if_io_tqg_0]
100009 D - 0xfffff8000320f300 [if_io_tqg_1]
100011 D - 0xfffff800031fcd00 [in6m_free taskq]
100012 D - 0xfffff800031fcc00 [thread taskq]
100014 D - 0xfffff800031fca00 [kqueue_ctx taskq]
100015 D - 0xfffff800031fc900 [aiod_kick taskq]
100023 D - 0xfffff800031fc700 [firmware taskq]
100028 D - 0xfffff800031fc500 [crypto_0]
100029 D - 0xfffff800031fc500 [crypto_1]
100043 D - 0xfffff800031fc200 [vtnet0 rxq 0]
100044 D - 0xfffff800031fc100 [vtnet0 txq 0]
100045 D - 0xfffff800031fc000 [vtnet0 rxq 1]
100046 D - 0xfffff800031fbe00 [vtnet0 txq 1]
100048 D vtbslp 0xfffff800034f0580 [virtio_balloon]
100052 D - 0xfffff800031fbc00 [mca taskq]
100056 D - 0xffffffff81ce66e0 [deadlkres]
100061 D - 0xfffff80003b7e000 [acpi_task_0]
100062 D - 0xfffff80003b7e000 [acpi_task_1]
100063 D - 0xfffff80003b7e000 [acpi_task_2]
100065 D - 0xfffff800031fc300 [CAM taskq]
db> show all locks
Process 1383 (syz-executor.1) thread 0xfffffe002586a800 (100363)
exclusive sleep mutex umtxql (umtxql) r = 0 (0xffffffff8254f1b0) locked @ /syzkaller/managers/main/kernel/sys/kern/kern_umtx.c:512
Process 495 (syslogd) thread 0xfffffe0023be5800 (100091)
exclusive lockmgr bufwait (bufwait) r = 0 (0xfffffe0003e10140) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_bio.c:3878
exclusive lockmgr ufs (ufs) r = 0 (0xfffff8000c15e250) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_syscalls.c:3431
Process 12 (intr) thread 0xfffffe00048b3000 (100022)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe0025954380) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:1342
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
devbuf 4213 4851K 4241
tcp_hpts 5 3201K 5
vtbuf 24 1968K 46
sysctloid 27747 1619K 27811
kobj 332 1328K 491
newblk 6 1026K 4756
vfscache 4 1025K 4
pcb 49 566K 338
inodedep 64 544K 884
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 388K 4
subproc 128 257K 1458
acpica 1674 185K 52709
vnet_data 1 168K 1
filedesc 21 149K 1023
pagedep 10 131K 610
tfo_ccache 1 128K 1
sem 4 106K 4
DEVFS1 105 105K 122
linker 237 95K 278
bus 991 79K 3379
mtx_pool 2 72K 2
syncache 1 68K 1
acpitask 1 64K 1
ddb_capture 1 64K 1
module 499 63K 499
umtx 342 43K 342
kdtrace 184 36K 4110
BPF 22 36K 22
temp 35 33K 2150
hostcache 1 32K 1
shm 1 32K 1
DEVFS3 124 31K 134
msg 4 30K 4
DEVFS_RULE 56 27K 56
vmem 3 26K 5
gtaskqueue 18 26K 18
ifaddr 73 25K 73
kbdmux 6 22K 6
lltable 47 18K 48
ufs_mount 3 17K 4
proc 3 17K 3
tty 16 16K 16
tidhash 1 16K 1
ithread 98 16K 98
dirrem 55 14K 614
ether_multi 172 14K 177
sctp_atcl 27 14K 143
bus-sc 30 14K 1431
sctp_stro 13 13K 43
KTRACE 100 13K 100
ifnet 7 13K 7
kenv 95 12K 99
eventhandler 132 12K 132
in6_multi 89 11K 89
pfs_nodes 20 10K 20
GEOM 60 10K 487
rman 82 10K 423
bmsafemap 3 9K 787
UART 12 9K 12
devstat 4 9K 4
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 233 8K 291
freefile 51 7K 601
select 49 7K 49
CAM DEV 3 6K 510
kqueue 57 6K 1391
vt 11 6K 11
sctp_timw 22 6K 22
plimit 21 6K 443
cred 21 6K 204
sglist 5 6K 5
CAM queue 5 6K 1528
taskqueue 45 5K 45
ufs_dirhash 24 5K 24
DEVFSP 72 5K 76
pf_ifnet 10 5K 19
memdesc 1 4K 1
MCA 32 4K 32
lockf 36 4K 549
evdev 4 4K 4
kcovinfo 64 4K 68
UMA 247 4K 247
routetbl 23 4K 235
hhook 13 4K 13
session 25 4K 38
pgrp 25 4K 38
acpisem 22 3K 22
terminal 11 3K 11
proc-args 44 3K 572
uidinfo 3 3K 7
sctp_ifa 17 3K 17
local_apic 1 2K 1
io_apic 1 2K 1
CAM CCB 1 2K 13489
ipsec-saq 2 2K 2
ip6ndp 12 2K 21
Unitno 32 2K 531
sctp_atky 40 2K 199
CAM XPT 22 2K 543
in_multi 6 2K 7
acpidev 20 2K 20
msi 9 2K 9
tun 7 2K 7
freework 5 2K 1243
softdep 1 1K 1
mkdir 8 1K 994
freeblks 4 1K 594
ipsecpolicy 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
clone 8 1K 8
vnodemarker 2 1K 388
NFSD session 1 1K 1
CAM periph 4 1K 271
mld 6 1K 6
sctp_ifn 6 1K 6
igmp 6 1K 6
nhops 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 86
pci_link 10 1K 10
newdirblk 5 1K 497
inpcbpolicy 20 1K 1297
crypto 3 1K 3
diradd 4 1K 647
sctp_stri 1 1K 26
pfil 4 1K 4
chacha20random 1 1K 1
CAM SIM 2 1K 2
epoch 4 1K 4
cdev 2 1K 2
encap_export_host 8 1K 8
sctp_athm 27 1K 156
sctp_map 26 1K 86
osd 3 1K 9
vnodes 1 1K 8
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
feeder 7 1K 7
loginclass 3 1K 6
soname 6 1K 5930
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
apmdev 1 1K 1
atkbddev 2 1K 2
CAM path 4 1K 1034
tcpfunc 2 1K 2
ktls 1 1K 1
pmchooks 1 1K 1
prison 4 1K 4
nexusdev 5 1K 5
entropy 2 1K 38
sctp_vrf 1 1K 1
vnet 1 1K 1
iov 1 1K 14897
acpiintr 1 1K 1
pmc 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
filecaps 2 1K 90
p1003.1b 1 1K 1
pf_table 0 0K 53
pf_rule 0 0K 54
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_temp 0 0K 0
ath_hal 0 0K 0
madt_table 0 0K 2
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
amr 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
pvscsi 0 0K 0
smartpqi 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
iavf 0 0K 0
ixl 0 0K 0
nvme_da 0 0K 0
acpipwr 0 0K 0
twsbuf 0 0K 0
twe_commands 0 0K 0
twa_commands 0 0K 0
tcp_log_dev 0 0K 0
midi buffers 0 0K 0
fpukern_ctx 0 0K 0
mixer 0 0K 0
xen_intr 0 0K 0
ac97 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
qpidrv 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
dmar_dmamap 0 0K 0
hdaa 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
isci 0 0K 0
bxe_ilt 0 0K 0
xenbus 0 0K 0
SIIS driver 0 0K 0
vm_fictitious 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
UMAHash 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 576
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 193
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefrag 0 0K 30
allocindir 0 0K 0
indirdep 0 0K 944
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
xform 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 29
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
lDevFlags * malloc 0 0K 0
LRO 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 43
sctp_iter 0 0K 12
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 5
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 7
sctp_aadr 0 0K 0
newreno data 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 0
fadvise 0 0K 0
tiDeviceHandle_t * malloc 0 0K 0
statfs 0 0K 673
export_host 0 0K 0
cl_savebuf 0 0K 5
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
biobuf 0 0K 0
aios 0 0K 0
lio 0 0K 0
acl 0 0K 0
MPSSAS 0 0K 0
mbuf_tag 0 0K 112
accf 0 0K 0
pts 0 0K 0
ioctlops 0 0K 246
Witness 0 0K 0
stack 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
sbuf 0 0K 288
md_disk 0 0K 0
compressor 0 0K 0
malodev 0 0K 0
SWAP 0 0K 0
LED 0 0K 0
sysctltmp 0 0K 593
sysctl 0 0K 1
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
ix_sriov 0 0K 0
aacraidcam 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
iirbuf 0 0K 0
cache 0 0K 0
aacraid_buf 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
geom_flashmap 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroffdiroff 0 0K 0
NEWdirectio 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
NFSD srvcache 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
scsi_pass 0 0K 0
ciss_data 0 0K 0
xnb 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
db> show ktr
No such command; use "help" to list available commands
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot
May 11, 2020, 2:28:14 AM5/11/20
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following crash on:
HEAD commit: 12efb4c0 powerpc64: Implement Radix MMU for POWER9 CPUs
git tree: freebsd
console output: https://syzkaller.appspot.com/x/log.txt?x=14d923a2100000
dashboard link: https://syzkaller.appspot.com/bug?extid=a0863e972771f2f0d4b3
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1424fb14100000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=176ae5ec100000
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+a0863e...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address = 0x3aa
rcx 0x80 ll+0x5f
rdx 0xffffffff818a2f56
rdi 0
100037 I [irq27: virtio_pci0]
776 774 774 0 R syz-executor7089683
774 772 774 0 Ss pause 0xfffff80003cd6ae8 csh
772 682 772 0 Ss select 0xfffff8000c33df40 sshd
748 1 748 0 Rs+ CPU 1 getty
495 1 495 0 Ss select 0xfffff80003c6b4c0 syslogd
424 1 424 0 Ss select 0xfffff8000c33c440 devd
423 1 423 65 Ss select 0xfffff80003c6b340 dhclient
338 1 338 0 Ss select 0xfffff80003c6b440 dhclient
335 1 335 0 Ss select 0xfffff80003ca6440 dhclient
100069 RunQ [bufdaemon]
100037 I [irq27: virtio_pci0]
Process 802 (syz-executor7089683) thread 0xfffffe0023bef500 (100087)
exclusive sleep mutex sctp-inp (inp) r = 0 (0xfffff8000c8e7e68) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:695
Process 748 (getty) thread 0xfffffe0025855e00 (100109)
exclusive sleep mutex ttymtx (ttymtx) r = 0 (0xfffff8000383cc08) locked @ /syzkaller/managers/main/kernel/sys/kern/tty.c:216
vfscache 4 1025K 4
pcb 23 539K 127
inodedep 9 516K 71
linker 237 95K 266
bus 967 78K 3347
msg 4 30K 4
DEVFS3 120 30K 130
kdtrace 142 28K 1660
DEVFS_RULE 56 27K 56
gtaskqueue 18 26K 18
vmem 3 22K 4
kbdmux 6 22K 6
BPF 10 18K 10
ifaddr 32 13K 32
KTRACE 100 13K 100
ifnet 3 5K 3
evdev 4 4K 4
filedesc 1 4K 1
UMA 247 4K 247
lltable 11 4K 11
routetbl 14 4K 14
hhook 13 4K 13
ether_multi 40 4K 45
pf_ifnet 5 3K 6
in6_multi 25 3K 25
session 19 3K 32
pgrp 19 3K 32
uidinfo 3 3K 9
lockf 16 2K 26
select 13 2K 13
sctp_atcl 3 2K 78
Unitno 25 2K 37
clone 8 1K 8
vnodemarker 2 1K 12
ip6ndp 4 1K 5
sctp_ifa 5 1K 5
crypto 3 1K 3
sctp_stri 1 1K 52
in_multi 2 1K 3
mld 2 1K 2
sctp_ifn 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
sctp_atky 4 1K 130
loginclass 3 1K 7
soname 4 1K 5843
tun 3 1K 3
nexusdev 5 1K 5
entropy 2 1K 35
freework 1 1K 26
cpus 2 1K 2
sctp_map 2 1K 52
filecaps 1 1K 66
pf_table 0 0K 0
pf_rule 0 0K 0
CAM CCB 0 0K 1857
dirrem 0 0K 28
mkdir 0 0K 16
freefile 0 0K 26
freeblks 0 0K 25
freefrag 0 0K 7
allocindir 0 0K 0
sctp_iter 0 0K 3
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
statfs 0 0K 198
export_host 0 0K 0
cl_savebuf 0 0K 3
ioctlops 0 0K 85
HEAD commit: 12efb4c0 powerpc64: Implement Radix MMU for POWER9 CPUs
git tree: freebsd
dashboard link: https://syzkaller.appspot.com/bug?extid=a0863e972771f2f0d4b3
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1424fb14100000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=176ae5ec100000
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+a0863e...@syzkaller.appspotmail.com
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault code = supervisor read data, page not present
instruction pointer = 0x20:0xffffffff81309442
stack pointer = 0x28:0xfffffe001a0c7260
frame pointer = 0x28:0xfffffe001a0c76d0
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, re
sume, IOPL = 0
current process = 12 (swi1: netisr 0)
trap number = 12
panic: page fault
cpuid = 0
time = 1589178327
instruction pointer = 0x20:0xffffffff81309442
stack pointer = 0x28:0xfffffe001a0c7260
frame pointer = 0x28:0xfffffe001a0c76d0
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, re
sume, IOPL = 0
current process = 12 (swi1: netisr 0)
trap number = 12
panic: page fault
cpuid = 0
rdx 0xffffffff818a2f56
rbx 0
rsp 0xfffffe001a0c6e90
rbp 0xfffffe001a0c6eb0
rsi 0x1
rsp 0xfffffe001a0c6e90
rbp 0xfffffe001a0c6eb0
rdi 0
100038 I [irq28: virtio_pci1]
100039 I [irq29: virtio_pci1]
100040 I [irq30: virtio_pci1]
100041 I [irq31: virtio_pci1]
100042 I [irq32: virtio_pci1]
100047 I [irq10: virtio_pci2]
100049 I [irq1: atkbd0]
100050 I [irq12: psm0]
100051 I [swi0: uart uart++]
100060 I [swi1: pf send]
100072 I [swi1: hpts]
100073 I [swi1: hpts]
db> ps
pid ppid pgrp uid state wmesg wchan cmd
802 776 774 0 LE *sctp-tc 0xfffff8000382a300 syz-executor7089683
100039 I [irq29: virtio_pci1]
100040 I [irq30: virtio_pci1]
100041 I [irq31: virtio_pci1]
100042 I [irq32: virtio_pci1]
100047 I [irq10: virtio_pci2]
100049 I [irq1: atkbd0]
100050 I [irq12: psm0]
100051 I [swi0: uart uart++]
100060 I [swi1: pf send]
100072 I [swi1: hpts]
100073 I [swi1: hpts]
db> ps
pid ppid pgrp uid state wmesg wchan cmd
776 774 774 0 R syz-executor7089683
774 772 774 0 Ss pause 0xfffff80003cd6ae8 csh
772 682 772 0 Ss select 0xfffff8000c33df40 sshd
748 1 748 0 Rs+ CPU 1 getty
747 1 747 0 Ss+ ttyin 0xfffff80003b2e4b0 getty
746 1 746 0 Ss+ ttyin 0xfffff80003b2e8b0 getty
745 1 745 0 Ss+ ttyin 0xfffff80003b2ecb0 getty
744 1 744 0 Ss+ ttyin 0xfffff80003b2d0b0 getty
743 1 743 0 Ss+ ttyin 0xfffff80003b2d4b0 getty
742 1 742 0 Ss+ ttyin 0xfffff80003b2d8b0 getty
741 1 741 0 Ss+ ttyin 0xfffff80003b2dcb0 getty
740 1 740 0 Ss+ ttyin 0xfffff80003b300b0 getty
686 1 686 0 Ss nanslp 0xffffffff8252c1e0 cron
682 1 682 0 Ss select 0xfffff8000c33c340 sshd
746 1 746 0 Ss+ ttyin 0xfffff80003b2e8b0 getty
745 1 745 0 Ss+ ttyin 0xfffff80003b2ecb0 getty
744 1 744 0 Ss+ ttyin 0xfffff80003b2d0b0 getty
743 1 743 0 Ss+ ttyin 0xfffff80003b2d4b0 getty
742 1 742 0 Ss+ ttyin 0xfffff80003b2d8b0 getty
741 1 741 0 Ss+ ttyin 0xfffff80003b2dcb0 getty
740 1 740 0 Ss+ ttyin 0xfffff80003b300b0 getty
686 1 686 0 Ss nanslp 0xffffffff8252c1e0 cron
495 1 495 0 Ss select 0xfffff80003c6b4c0 syslogd
424 1 424 0 Ss select 0xfffff8000c33c440 devd
423 1 423 65 Ss select 0xfffff80003c6b340 dhclient
338 1 338 0 Ss select 0xfffff80003c6b440 dhclient
335 1 335 0 Ss select 0xfffff80003ca6440 dhclient
23 0 0 0 DL vlruwt 0xfffff800033dc520 [vnlru]
22 0 0 0 DL syncer 0xffffffff82618118 [syncer]
21 0 0 0 RL (threaded) [bufdaemon]
22 0 0 0 DL syncer 0xffffffff82618118 [syncer]
100069 RunQ [bufdaemon]
100076 D - 0xffffffff8200aa00 [bufspacedaemon-0]
100086 D sdflush 0xfffff80003c61ce8 [/ worker]
exclusive sleep mutex sctp-inp (inp) r = 0 (0xfffff8000c8e7e68) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_usrreq.c:695
Process 748 (getty) thread 0xfffffe0025855e00 (100109)
exclusive sleep mutex ttymtx (ttymtx) r = 0 (0xfffff8000383cc08) locked @ /syzkaller/managers/main/kernel/sys/kern/tty.c:216
Process 12 (intr) thread 0xfffffe00048b3000 (100022)
exclusive sleep mutex sctp-tcb (tcb) r = 0 (0xfffffe00258e8380) locked @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:1342
db> show malloc
Type InUse MemUse Requests
pf_hash 5 11524K 5
devbuf 4213 4851K 4241
tcp_hpts 5 3201K 5
vtbuf 24 1968K 46
sysctloid 27747 1619K 27811
kobj 332 1328K 491
newblk 448 1136K 509
Type InUse MemUse Requests
pf_hash 5 11524K 5
devbuf 4213 4851K 4241
tcp_hpts 5 3201K 5
vtbuf 24 1968K 46
sysctloid 27747 1619K 27811
kobj 332 1328K 491
vfscache 4 1025K 4
pcb 23 539K 127
inodedep 9 516K 71
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 388K 4
subproc 111 210K 870
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 388K 4
acpica 1674 185K 52709
vnet_data 1 168K 1
pagedep 3 129K 19
vnet_data 1 168K 1
tfo_ccache 1 128K 1
sem 4 106K 4
DEVFS1 101 101K 110
sem 4 106K 4
linker 237 95K 266
bus 967 78K 3347
mtx_pool 2 72K 2
syncache 1 68K 1
acpitask 1 64K 1
ddb_capture 1 64K 1
module 499 63K 499
temp 18 33K 1550
syncache 1 68K 1
acpitask 1 64K 1
ddb_capture 1 64K 1
module 499 63K 499
hostcache 1 32K 1
shm 1 32K 1
umtx 252 32K 252
shm 1 32K 1
msg 4 30K 4
DEVFS3 120 30K 130
kdtrace 142 28K 1660
DEVFS_RULE 56 27K 56
gtaskqueue 18 26K 18
vmem 3 22K 4
kbdmux 6 22K 6
BPF 10 18K 10
ufs_mount 3 17K 4
proc 3 17K 3
tty 16 16K 16
tidhash 1 16K 1
ithread 98 16K 98
bus-sc 30 14K 1431
proc 3 17K 3
tty 16 16K 16
tidhash 1 16K 1
ithread 98 16K 98
ifaddr 32 13K 32
KTRACE 100 13K 100
kenv 95 12K 99
eventhandler 132 12K 132
eventhandler 132 12K 132
pfs_nodes 20 10K 20
GEOM 60 10K 487
rman 82 10K 423
bmsafemap 2 9K 40
GEOM 60 10K 487
rman 82 10K 423
UART 12 9K 12
devstat 4 9K 4
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 233 8K 291
devstat 4 9K 4
rpc 2 8K 2
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 233 8K 291
CAM DEV 3 6K 510
vt 11 6K 11
sglist 5 6K 5
CAM queue 5 6K 1528
cred 20 5K 244
CAM queue 5 6K 1528
taskqueue 45 5K 45
ufs_dirhash 24 5K 24
sctp_timw 18 5K 18
ufs_dirhash 24 5K 24
ifnet 3 5K 3
memdesc 1 4K 1
MCA 32 4K 32
plimit 16 4K 338
MCA 32 4K 32
evdev 4 4K 4
filedesc 1 4K 1
UMA 247 4K 247
lltable 11 4K 11
routetbl 14 4K 14
hhook 13 4K 13
ether_multi 40 4K 45
pf_ifnet 5 3K 6
in6_multi 25 3K 25
acpisem 22 3K 22
terminal 11 3K 11
kqueue 44 3K 805
terminal 11 3K 11
session 19 3K 32
pgrp 19 3K 32
uidinfo 3 3K 9
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
io_apic 1 2K 1
lockf 16 2K 26
select 13 2K 13
CAM XPT 22 2K 543
proc-args 36 2K 478
sctp_atcl 3 2K 78
Unitno 25 2K 37
acpidev 20 2K 20
msi 9 2K 9
softdep 1 1K 1
msi 9 2K 9
ipsecpolicy 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
sctp_stro 1 1K 26
sahead 1 1K 1
secasvar 1 1K 1
clone 8 1K 8
vnodemarker 2 1K 12
NFSD session 1 1K 1
CAM periph 4 1K 271
indirdep 3 1K 3
CAM periph 4 1K 271
nhops 6 1K 6
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 86
pci_link 10 1K 10
diradd 5 1K 36
toponodes 6 1K 6
isadev 6 1K 6
mount 16 1K 86
pci_link 10 1K 10
ip6ndp 4 1K 5
sctp_ifa 5 1K 5
crypto 3 1K 3
sctp_stri 1 1K 52
in_multi 2 1K 3
pfil 4 1K 4
chacha20random 1 1K 1
CAM SIM 2 1K 2
epoch 4 1K 4
cdev 2 1K 2
encap_export_host 8 1K 8
osd 3 1K 9
chacha20random 1 1K 1
CAM SIM 2 1K 2
epoch 4 1K 4
cdev 2 1K 2
encap_export_host 8 1K 8
mld 2 1K 2
sctp_ifn 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
feeder 7 1K 7
inpcbpolicy 6 1K 129
NFSD V4client 1 1K 1
DEVFS 9 1K 10
feeder 7 1K 7
sctp_atky 4 1K 130
loginclass 3 1K 7
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
apmdev 1 1K 1
atkbddev 2 1K 2
CAM path 4 1K 1034
tcpfunc 2 1K 2
ktls 1 1K 1
pmchooks 1 1K 1
prison 4 1K 4
DEVFSP 2 1K 2
CAM I/O Scheduler 1 1K 1
apmdev 1 1K 1
atkbddev 2 1K 2
CAM path 4 1K 1034
tcpfunc 2 1K 2
ktls 1 1K 1
pmchooks 1 1K 1
prison 4 1K 4
soname 4 1K 5843
tun 3 1K 3
nexusdev 5 1K 5
entropy 2 1K 35
freework 1 1K 26
sctp_vrf 1 1K 1
vnet 1 1K 1
vnet 1 1K 1
acpiintr 1 1K 1
pmc 1 1K 1
sctp_athm 3 1K 104
pmc 1 1K 1
cpus 2 1K 2
sctp_map 2 1K 52
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
Per-cpu 1 1K 1
filecaps 1 1K 66
pf_table 0 0K 0
pf_rule 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
UMAHash 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 12
ppbusdev 0 0K 0
agtiapi_MemAlloc malloc 0 0K 0
osti_cacheable 0 0K 0
tempbuff 0 0K 0
tempbuff 0 0K 0
UMAHash 0 0K 0
ag_tgt_map_t malloc 0 0K 0
ag_slr_map_t malloc 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 5
jfsync 0 0K 0
jtrunc 0 0K 0
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
newdirblk 0 0K 8
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
dirrem 0 0K 28
mkdir 0 0K 16
freefile 0 0K 26
freeblks 0 0K 25
freefrag 0 0K 7
allocindir 0 0K 0
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
xform 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6opt 0 0K 3
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
xform 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
lDevFlags * malloc 0 0K 0
LRO 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
tcplog 0 0K 0
lDevFlags * malloc 0 0K 0
LRO 0 0K 0
sctp_mcore 0 0K 0
sctp_iter 0 0K 3
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 3
sctp_stre 0 0K 0
sctp_athi 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 3
ag_portal_data_t malloc 0 0K 0
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
biobuf 0 0K 0
aios 0 0K 0
lio 0 0K 0
acl 0 0K 0
MPSSAS 0 0K 0
mbuf_tag 0 0K 25
ag_device_t malloc 0 0K 0
STLock malloc 0 0K 0
CCB List 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
CAM ccb queue 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
biobuf 0 0K 0
aios 0 0K 0
lio 0 0K 0
acl 0 0K 0
MPSSAS 0 0K 0
accf 0 0K 0
pts 0 0K 0
iov 0 0K 12995
pts 0 0K 0
ioctlops 0 0K 85
Witness 0 0K 0
stack 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
sbuf 0 0K 288
md_disk 0 0K 0
compressor 0 0K 0
malodev 0 0K 0
SWAP 0 0K 0
LED 0 0K 0
sysctltmp 0 0K 575
stack 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
sbuf 0 0K 288
md_disk 0 0K 0
compressor 0 0K 0
malodev 0 0K 0
SWAP 0 0K 0
LED 0 0K 0
sysctl 0 0K 1
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
ix_sriov 0 0K 0
aacraidcam 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
iirbuf 0 0K 0
cache 0 0K 0
aacraid_buf 0 0K 0
kcovinfo 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
sendfile 0 0K 0
rctl 0 0K 0
ix_sriov 0 0K 0
aacraidcam 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
iirbuf 0 0K 0
cache 0 0K 0
aacraid_buf 0 0K 0
Reply all
Reply to author
Forward
0 new messages