panic: sofree:NUM curvnet is NULL, so=ADDR
2 views
Skip to first unread message
syzbot
May 5, 2025, 5:06:30 PM5/5/25
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 9ab96b38215e tests/unix_seqpacket: re-enable stress test f..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=169b1f74580000
dashboard link: https://syzkaller.appspot.com/bug?extid=7b0b20cf2c672c181d98
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+7b0b20...@syzkaller.appspotmail.com
panic: sofree:1883 curvnet is NULL, so=0xfffffe006bccf800
cpuid = 0
time = 15
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe00577260d0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0057726230
vpanic() at vpanic+0x257/frame 0xfffffe00577263f0
panic() at panic+0xb5/frame 0xfffffe00577264b0
sorele_locked() at sorele_locked+0x43c/frame 0xfffffe00577264f0
uipc_sendfile_wait() at uipc_sendfile_wait+0x4b9/frame 0xfffffe0057726610
vn_sendfile() at vn_sendfile+0xcc8/frame 0xfffffe0057726b70
sendfile() at sendfile+0x332/frame 0xfffffe0057726d10
amd64_syscall() at amd64_syscall+0x4af/frame 0xfffffe0057726f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0057726f30
--- syscall (198, FreeBSD ELF64, __syscall), rip = 0x3a197a, rsp = 0x82617ff08, rbp = 0x82617ff80 ---
KDB: enter: panic
[ thread pid 1168 tid 100518 ]
Stopped at kdb_enter+0x6e: movq $0,0x25be6a7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe006ec00000
rdx 0x7ffff
rbx 0xffffffff827af9c0 .str.27
rsp 0xfffffe0057726210
rbp 0xfffffe0057726230
rsi 0x80001
rdi 0xffffffff81613509 printf+0x149
r8 0
r9 0xffffffff
r10 0
r11 0
r12 0xfffffe0054917000
r13 0xfffffffffffffffe
r14 0xffffffff827af9c0 .str.27
r15 0
rip 0xffffffff815fdaee kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x25be6a7(%rip)
db> show proc
Process 1168 (syz-executor) at 0xfffffe0054937ae0:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 764 at 0xfffffe00548055c0
ABI: FreeBSD ELF64
flag: 0x10000080 flag2: 0
arguments: ./syz-executor exec
reaper: 0xfffffe0008007040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0054940248
(map 0xfffffe0054940248)
(map.pmap 0xfffffe00549402e8)
(pmap 0xfffffe0054940358)
threads: 3
100504 Run CPU 1 syz-executor
100518 Run CPU 0 syz-executor
100523 RunQ syz-executor
db> ps
pid ppid pgrp uid state wmesg wchan cmd
1169 1166 766 0 SV lockf 0xfffffe00780be580 syz-executor
1168 764 764 0 R (threaded) syz-executor
100504 Run CPU 1 syz-executor
100518 Run CPU 0 syz-executor
100523 RunQ syz-executor
1166 766 766 0 R (threaded) syz-executor
100251 RunQ syz-executor
100515 S lockf 0xfffffe0007f83400 syz-executor
100519 S lockf 0xfffffe0007f84080 syz-executor
100521 D ppwait 0xfffffe0054955aa0 syz-executor
1165 765 765 0 R (threaded) syz-executor
100428 RunQ syz-executor
100514 S lockf 0xfffffe0007f83800 syz-executor
100516 S lockf 0xfffffe00780be480 syz-executor
100520 S lockf 0xfffffe0007f83c00 syz-executor
100524 S uwait 0xfffffe0077c6f980 syz-executor
1163 1121 1121 0 S (threaded) syz-executor
100506 S nanslp 0xffffffff83b9d501 syz-executor
100509 S msgrcv 0xfffffe0058d48078 syz-executor
100512 S uwait 0xfffffe0058cf5100 syz-executor
1150 1 764 0 S uwait 0xfffffe006e6e1e80 syz-executor
1139 1 764 0 S uwait 0xfffffe0077e78780 syz-executor
1137 0 0 0 DL mdwait 0xfffffe006bf68000 [md0]
1121 763 1121 0 S nanslp 0xffffffff83b9d501 syz-executor
1119 1 1112 0 S uwait 0xfffffe0058cf3200 syz-executor
1118 1 766 0 S uwait 0xfffffe006e6e3380 syz-executor
1108 1 764 0 S uwait 0xfffffe005859d900 syz-executor
1107 1 764 0 S uwait 0xfffffe0058cf5200 syz-executor
1067 1 766 0 S uwait 0xfffffe006e6e3280 syz-executor
1061 1055 1061 0 Ss select 0xfffffe0058e260c0 dhclient
1058 1 1058 0 Ss select 0xfffffe0058600340 dhclient
1055 1048 424 65 S select 0xfffffe0058e26340 dhclient
1048 424 424 0 S wait 0xfffffe00548e25c0 sh
1035 1 764 0 S uwait 0xfffffe006e6e3680 syz-executor
1006 1 767 0 S uwait 0xfffffe006e6e1680 syz-executor
1004 1 764 0 S uwait 0xfffffe0058cf3300 syz-executor
1003 1 766 0 SV uwait 0xfffffe006e6e1880 syz-executor
968 1 767 0 S uwait 0xfffffe005859d600 syz-executor
965 1 767 0 S uwait 0xfffffe006e6e3580 syz-executor
964 1 765 0 SV uwait 0xfffffe006e6e1580 syz-executor
926 1 766 0 S uwait 0xfffffe006e6e1a80 syz-executor
910 1 765 0 SV lockf 0xfffffe0007f84900 syz-executor
905 1 766 0 S uwait 0xfffffe0058cf3000 syz-executor
893 1 767 60928 S uwait 0xfffffe006e6e1280 syz-executor
890 1 765 0 S uwait 0xfffffe0058cf5000 syz-executor
885 0 0 0 DL (threaded) [so_splice]
100162 D - 0xfffffe0058d98b00 [thr_0]
100163 D - 0xfffffe0058d98b40 [thr_1]
884 0 0 0 DL - 0xffffffff83cad400 [soaiod4]
883 0 0 0 DL - 0xffffffff83cad400 [soaiod3]
882 0 0 0 DL - 0xffffffff83cad400 [soaiod2]
881 0 0 0 DL - 0xffffffff83cad400 [soaiod1]
826 1 765 0 S uwait 0xfffffe006e6e3780 syz-executor
822 0 0 0 DL aiordy 0xfffffe00548e2060 [aiod4]
820 0 0 0 DL aiordy 0xfffffe0054905000 [aiod3]
819 0 0 0 DL aiordy 0xfffffe00548045a0 [aiod2]
818 0 0 0 DL aiordy 0xfffffe0008026040 [aiod1]
766 763 766 0 R syz-executor
765 763 765 0 S nanslp 0xffffffff83b9d500 syz-executor
764 763 764 0 S nanslp 0xffffffff83b9d500 syz-executor
763 761 761 0 S select 0xfffffe0058600840 syz-executor
761 759 761 0 Ss pause 0xfffffe00548c7610 csh
759 682 759 0 Ss select 0xfffffe00586008c0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe0058a7fcb0 getty
747 1 747 0 Ss+ ttyin 0xfffffe0058e40cb0 getty
746 1 746 0 Ss+ ttyin 0xfffffe0058e410b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe0058e414b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe0058e418b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe0058e41cb0 getty
742 1 742 0 Ss+ ttyin 0xfffffe0058e420b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe0058e424b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe0058e428b0 getty
738 1 18 0 S+ piperd 0xfffffe006bc35cc0 logger
737 736 18 0 S+ nanslp 0xffffffff83b9d500 sleep
736 1 18 0 S+ wait 0xfffffe00548c95a0 sh
686 1 686 0 Ss nanslp 0xffffffff83b9d500 cron
682 1 682 0 Ss select 0xfffffe00585e3bc0 sshd
495 1 495 0 Ss select 0xfffffe00585e3c40 syslogd
424 1 424 0 Ss wait 0xfffffe0054804040 devd
423 1 423 65 Ss select 0xfffffe00585e80c0 dhclient
338 1 338 0 Ss select 0xfffffe00585e3d40 dhclient
335 1 335 0 Ss select 0xfffffe0058e26840 dhclient
17 0 0 0 DL syncer 0xffffffff83cbada0 [syncer]
16 0 0 0 DL vlruwt 0xfffffe0008027060 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100080 D psleep 0xffffffff83cb9360 [bufdaemon]
100083 D - 0xffffffff83002140 [bufspacedaemon-0]
100094 D sdflush 0xfffffe0058e3f0e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83d04380 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100078 D psleep 0xffffffff83cea2f8 [dom0]
100081 D launds 0xffffffff83cea304 [laundry: dom0]
100082 D umarcl 0xffffffff81dcda80 [uma]
7 0 0 0 DL - 0xffffffff8391acd0 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff844b1850 [pf purge]
5 0 0 0 DL waiting 0xffffffff8481f6c0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100046 D - 0xffffffff838e5340 [doneq0]
100047 D - 0xffffffff838e52c0 [async]
100076 D - 0xffffffff838e5140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100043 D crypto_ 0xffffffff83ce5b00 [crypto]
100044 D crypto_ 0xfffffe00546e8c30 [crypto returns 0]
100045 D crypto_ 0xfffffe00546e8c80 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe0007f5e888 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100037 D - 0xffffffff83b45f00 [g_event]
100038 D - 0xffffffff83b45f20 [g_up]
100039 D - 0xffffffff83b45f40 [g_down]
2 0 0 0 WL (threaded) [clock]
100031 I [clock (0)]
100032 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100013 I [swi6: task queue]
100014 I [swi6: Giant taskq]
100016 I [swi5: fast taskq]
100033 I [swi1: netisr 0]
100034 I [swi1: hpts]
100035 I [swi1: hpts]
100048 I [irq24: virtio_pci0]
100049 I [irq25: virtio_pci0]
100050 I [irq26: virtio_pci0]
100051 I [irq27: virtio_pci0]
100052 I [irq28: virtio_pci1]
100053 I [irq29: virtio_pci1]
100054 I [irq30: virtio_pci1]
100055 I [irq31: virtio_pci1]
100056 I [irq32: virtio_pci1]
100061 I [irq10: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0008007040 [init]
10 0 0 0 DL audit_w 0xffffffff83ce65a0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D parked 0xffffffff84c2bff0 [swapper]
100005 D - 0xfffffe0008be9a00 [softirq_0]
100006 D - 0xfffffe0008be9900 [softirq_1]
100007 D - 0xfffffe0008be9800 [if_io_tqg_0]
100008 D - 0xfffffe0008be9700 [if_io_tqg_1]
100009 D - 0xfffffe0008be9600 [if_config_tqg_0]
100010 D - 0xfffffe0007fcd000 [kqueue_ctx taskq]
100011 D - 0xfffffe0007fcce00 [jail_remove taskq]
100012 D - 0xfffffe0007fccd00 [bus taskq]
100015 D - 0xfffffe0007fcca00 [thread taskq]
100017 D - 0xfffffe0007fcc800 [aiod_kick taskq]
100018 D - 0xfffffe0007fcc700 [deferred_unmount ta]
100019 D - 0xfffffe0007fcc600 [inm_free taskq]
100020 D - 0xfffffe0007fcc500 [in6m_free taskq]
100021 D - 0xfffffe0007fcc400 [linuxkpi_irq_wq]
100022 D - 0xfffffe0007fcc300 [linuxkpi_short_wq_0]
100023 D - 0xfffffe0007fcc300 [linuxkpi_short_wq_1]
100024 D - 0xfffffe0007fcc300 [linuxkpi_short_wq_2]
100025 D - 0xfffffe0007fcc300 [linuxkpi_short_wq_3]
100026 D - 0xfffffe0007fcc200 [linuxkpi_long_wq_0]
100027 D - 0xfffffe0007fcc200 [linuxkpi_long_wq_1]
100028 D - 0xfffffe0007fcc200 [linuxkpi_long_wq_2]
100029 D - 0xfffffe0007fcc200 [linuxkpi_long_wq_3]
100036 D - 0xfffffe0007fcc100 [firmware taskq]
100041 D - 0xfffffe0008bffe00 [crypto_0]
100042 D - 0xfffffe0008bffe00 [crypto_1]
100057 D - 0xfffffe0008bffc00 [vtnet0 rxq 0]
100058 D - 0xfffffe0008bffb00 [vtnet0 txq 0]
100059 D - 0xfffffe0008bffa00 [vtnet0 rxq 1]
100060 D - 0xfffffe0008bff900 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe00585e8380 [virtio_balloon]
100066 D - 0xffffffff827b4d01 [deadlkres]
100070 D - 0xfffffe0059bfc700 [acpi_task_0]
100071 D - 0xfffffe0059bfc700 [acpi_task_1]
100072 D - 0xfffffe0059bfc700 [acpi_task_2]
100074 D - 0xfffffe0007fcd100 [mca taskq]
100075 D - 0xfffffe0008bffd00 [CAM taskq]
100077 D - 0xfffffe0008bff700 [ipsec_offload]
db> show all locks
Process 1168 (syz-executor) thread 0xfffffe0054917000 (100518)
exclusive sx so_snd_sx (so_snd_sx) r = 0 (0xfffffe006bf18d80) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4838
db> show malloc
Type InUse MemUse Requests
pf_hash 6 12804K 6
linker 400 5458K 530
tcp_hpts 7 4801K 7
devbuf 4188 4324K 4215
sysctloid 34971 2060K 35046
vtbuf 24 1968K 46
kobj 331 1324K 513
newblk 13 1027K 3150
vfscache 3 1025K 3
pcb 42 685K 151
inodedep 18 519K 620
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
filedesc 58 457K 584
subproc 186 370K 1276
vnet_data 2 224K 2
acpitask 1 224K 1
KTRACE 102 201K 14392
acpica 1674 184K 54426
vmem 5 144K 6
tidhash 3 141K 3
pagedep 16 132K 306
tfo_ccache 1 128K 1
IP reass 1 128K 1
DEVFS1 111 111K 131
sem 4 106K 4
gtaskqueue 18 98K 18
bus 997 82K 5063
mtx_pool 3 74K 3
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 522 66K 522
ddb_capture 1 64K 1
kdtrace 250 47K 1698
umtx 368 46K 368
temp 40 38K 2077
BPF 23 36K 36
DEVFS3 130 33K 141
hostcache 1 32K 1
shm 1 32K 7
msg 4 30K 4
kbdmux 6 28K 6
LRO 22 23K 22
ifaddr 76 21K 78
DEVFS_RULE 56 20K 56
routetbl 160 19K 484
ufs_mount 4 17K 5
proc 3 17K 3
lltable 52 16K 53
tty 16 16K 16
ithread 90 15K 90
ether_multi 180 15K 190
bus-sc 34 15K 1647
ifnet 8 15K 8
eventhandler 163 14K 163
kenv 95 12K 95
GEOM 68 12K 555
shmfd 7 11K 11
CAM queue 5 11K 1528
in6_multi 75 10K 75
rman 82 10K 437
plimit 25 10K 346
rpc 8 9K 8
bmsafemap 2 9K 549
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 4
pfs_vncache 1 8K 1
audit_evclass 239 8K 301
lockf 83 8K 337
taskqueue 69 8K 72
cred 27 7K 217
sglist 6 7K 6
CAM DEV 3 6K 510
pfs_nodes 22 6K 22
kqueue 86 6K 1292
pwddesc 83 6K 1197
ufs_dirhash 24 5K 48
pf_ifnet 11 5K 22
UMA 267 5K 267
sctp_atcl 11 5K 54
tcp_fsb_rack 2 5K 6
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
md_disk 1 4K 3
evdev 4 4K 4
DEVFSP 56 4K 82
acpisem 28 4K 28
selfd 48 3K 42844
proc-args 104 3K 2293
kcovinfo 45 3K 45
terminal 11 3K 11
session 22 3K 40
uidinfo 5 3K 13
acpidev 20 3K 20
hhook 8 3K 10
clone 9 3K 9
ip6ndp 14 3K 16
sctp_stro 2 2K 10
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
sctp_ifa 15 2K 16
tun 5 2K 5
sctp_timw 7 2K 7
in_multi 7 2K 9
Unitno 26 2K 58
CAM XPT 22 2K 543
pfil 14 2K 14
toponodes 6 2K 6
ipsecpolicy 2 2K 2
select 11 2K 55
newdirblk 10 2K 277
msi 9 2K 9
diradd 9 2K 525
netlink 2 2K 85
ip6opt 6 2K 15
sctp_stri 2 1K 8
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 24
NFSD session 1 1K 1
sctp_ifn 7 1K 16
mkdir 7 1K 554
mld 7 1K 7
igmp 7 1K 7
CAM periph 4 1K 271
ipsec 3 1K 3
CC Mem 6 1K 86
isadev 6 1K 6
mount 16 1K 476
pci_link 10 1K 10
crypto 4 1K 12
encap_export_host 12 1K 12
osd 11 1K 102
sctp_atky 13 1K 68
inpcbpolicy 16 1K 313
cdev 2 1K 2
lkpikmalloc 8 1K 9
chacha20random 1 1K 1
biobuf 1 1K 1
ip_msource 5 1K 32
tcp_pcm_rack 1 1K 3
dirrem 1 1K 504
freefrag 2 1K 122
vnodes 1 1K 5
procdesc 2 1K 12
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
pf_osfp 2 1K 2
frag6 2 1K 2
tcpfunc 3 1K 3
loginclass 3 1K 5
prison 6 1K 6
sctp_athm 11 1K 58
cryptodev 2 1K 66
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
aio 4 1K 5
pmchooks 1 1K 1
filecaps 5 1K 92
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
soname 4 1K 3426
sctp_vrf 1 1K 1
sctp_map 4 1K 20
vnet 1 1K 1
sendfile 1 1K 327
pmc 1 1K 1
entropy 2 1K 35
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
freework 1 1K 1090
p1003.1b 1 1K 1
ext2_mount 0 0K 0
ext2_node 0 0K 0
ext2_extents 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 11
sctp_iter 0 0K 13
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 13
sctp_aadr 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
mqdata 0 0K 0
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 12
tcp_do_rack 0 0K 0
filemon 0 0K 2
madt_table 0 0K 2
smartpqi 0 0K 0
ixl 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
fpukern_ctx 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
NMI handlers 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
amdiommu_dom 0 0K 0
amdiommu_ctx 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
aesni_data 0 0K 0
xenbus 0 0K 0
vm_fictitious 0 0K 0
UMAHash 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 900
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 11
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefile 0 0K 422
freeblks 0 0K 377
allocindir 0 0K 0
indirdep 0 0K 770
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ktls_ocf 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_moptions 0 0K 8
in_mfilter 0 0K 42
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 20
fadvise 0 0K 0
VN POLL 0 0K 11
statfs 0 0K 190
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 75
lio 0 0K 3
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 15563
ioctlops 0 0K 116
eventfd 0 0K 2
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 348
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 651
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 84
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
pvscsi 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 0
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
SIIS driver 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
mpi3mrbuf 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
ciss_data 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
aacraidcam 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
scsi_pass 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
nvme_da 0 0K 0
CAM CCB 0 0K 523
CAM ccb queue 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8336 1062 16916 0 254 38494208 0
mbuf 256 8821 841 32144 0 254 2473472 0
BUF TRIE 152 319 11485 3197 0 62 1794208 0
malloc-384 384 4153 47 4169 0 30 1612800 0
malloc-128 128 11496 98 11525 0 126 1484032 0
RADIX NODE 152 8952 481 47252 0 62 1433816 0
malloc-4096 4096 334 6 688 0 2 1392640 0
UMA Slabs 0 112 11044 2 11044 0 126 1237152 0
sctp_asoc 2256 2 508 10 0 254 1150560 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
malloc-65536 65536 15 0 18 0 1 983040 0
vmem btag 56 16538 61 16538 0 254 929544 0
FFS inode 1168 547 27 975 0 8 670432 0
malloc-64 64 679 8771 50320 0 254 604800 0
sctp_ep 1152 7 504 40 0 254 588672 0
socket 1024 36 472 1601 0 254 520192 0
lkpicurr 168 2 3094 2 0 62 520128 0
malloc-16384 16384 28 2 289 0 1 491520 0
pbuf 2624 0 182 0 0 2 477568 0
malloc-4096 4096 93 5 1181 0 2 401408 0
sctp_raddr 736 2 515 10 0 254 380512 0
256 Bucket 2048 169 15 1162 0 8 376832 0
VM OBJECT 264 1351 59 17647 0 30 372240 0
THREAD 1824 166 18 524 0 8 335616 0
VNODE 440 587 79 1017 0 30 293040 0
malloc-64 64 3846 501 4545 0 254 278208 0
malloc-32768 32768 2 6 642 0 1 262144 0
malloc-2048 2048 114 6 401 0 8 245760 0
malloc-16 16 14427 73 14495 0 254 232000 0
DEVCTL 1024 33 187 160 0 0 225280 0
MAP ENTRY 96 1846 296 56561 0 126 205632 0
UMA Zones 768 239 0 239 0 16 183552 0
malloc-32 32 5328 342 5781 0 254 181440 0
malloc-128 128 1230 165 25760 0 126 178560 0
lkpimm 56 1 3095 1 0 254 173376 0
unpcb 320 13 503 1216 0 254 165120 0
FPU_save_area 832 168 30 761 0 16 164736 0
malloc-32768 32768 0 5 22 0 1 163840 0
FFS2 dinode 256 547 83 975 0 62 161280 0
malloc-256 256 50 580 3279 0 62 161280 0
malloc-1024 1024 126 18 362 0 16 147456 0
S VFS Cache 104 1009 395 1448 0 126 146016 0
PROC 1376 82 17 1172 0 8 136224 0
malloc-65536 65536 0 2 71 0 1 131072 0
malloc-65536 65536 0 2 111 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-32768 32768 4 0 4 0 1 131072 0
malloc-2048 2048 6 58 1044 0 8 131072 0
malloc-128 128 784 239 4940 0 126 130944 0
mbuf_packet 256 11 497 1676 0 254 130048 0
ksiginfo 112 77 967 160 0 126 116928 0
malloc-128 128 634 265 1875 0 126 115072 0
malloc-16384 16384 6 0 7 0 1 98304 0
filedesc0 1072 83 8 1197 0 8 97552 0
malloc-256 256 199 176 1881 0 62 96000 0
malloc-8192 8192 9 2 12 0 1 90112 0
malloc-4096 4096 16 6 223 0 2 90112 0
UMA Kegs 384 225 8 225 0 30 89472 0
syncache 168 0 528 7 0 254 88704 0
128 Bucket 1024 56 27 272 0 16 84992 0
malloc-64 64 836 487 2302 0 254 84672 0
malloc-8192 8192 8 2 91 0 1 81920 0
g_bio 408 0 180 17715 0 30 73440 0
64 Bucket 512 101 35 2654 0 30 69632 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 0 1 1 0 1 65536 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-32768 32768 1 1 13 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-4096 4096 13 3 497 0 2 65536 0
malloc-256 256 60 195 1526 0 62 65280 0
malloc-256 256 214 41 654 0 62 65280 0
32 Bucket 256 86 169 922 0 62 65280 0
sctp_stream_msg_out 112 1 539 5 0 254 60480 0
malloc-384 384 66 84 1019 0 30 57600 0
malloc-128 128 34 369 309 0 126 51584 0
malloc-256 256 94 101 1524 0 62 49920 0
malloc-256 256 64 131 979 0 62 49920 0
DIRHASH 1024 34 14 50 0 16 49152 0
NAMEI 1024 0 48 15379 0 16 49152 0
malloc-16384 16384 1 2 191 0 1 49152 0
malloc-1024 1024 27 21 36 0 16 49152 0
malloc-1024 1024 18 30 1103 0 16 49152 0
malloc-1024 1024 3 45 533 0 16 49152 0
VMSPACE 584 55 29 1143 0 16 49056 0
malloc-384 384 75 45 81 0 30 46080 0
malloc-384 384 106 14 106 0 30 46080 0
tcp_inpcb 1304 7 26 86 0 8 43032 0
vnpbuf 2624 0 16 4 0 16 41984 0
pcpu-8 8 4832 288 5076 0 254 40960 0
pipe 736 21 34 365 0 16 40480 0
sctp_chunk 152 50 210 52 0 254 39520 0
da_ccb 544 0 70 4563 0 16 38080 0
udp_inpcb 408 6 84 187 0 30 36720 0
hostcache 64 3 564 3 0 254 36288 0
malloc-64 64 8 559 14921 0 254 36288 0
malloc-64 64 31 536 63 0 254 36288 0
malloc-64 64 286 281 1566 0 254 36288 0
malloc-64 64 110 457 1589 0 254 36288 0
malloc-64 64 7 560 8 0 254 36288 0
tcp_rack_map 128 3 276 520 0 126 35712 0
malloc-128 128 23 256 96 0 126 35712 0
malloc-128 128 8 271 556 0 126 35712 0
malloc-128 128 118 161 703 0 126 35712 0
routing nhops 256 31 104 38 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-256 256 36 99 699 0 62 34560 0
malloc-256 256 23 112 296 0 62 34560 0
TURNSTILE 136 185 67 185 0 62 34272 0
SLEEPQUEUE 88 185 199 185 0 126 33792 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 0 2 2 0 1 32768 0
malloc-8192 8192 3 1 4 0 1 32768 0
malloc-2048 2048 0 16 13 0 8 32768 0
malloc-2048 2048 2 14 4 0 8 32768 0
malloc-2048 2048 10 6 46 0 8 32768 0
malloc-2048 2048 2 14 53 0 8 32768 0
malloc-2048 2048 11 5 37 0 8 32768 0
malloc-2048 2048 9 7 11 0 8 32768 0
malloc-1024 1024 2 30 51 0 16 32768 0
malloc-1024 1024 2 30 6 0 16 32768 0
malloc-1024 1024 4 28 4 0 16 32768 0
malloc-512 512 8 56 140 0 30 32768 0
malloc-512 512 5 59 43 0 30 32768 0
malloc-512 512 2 62 52 0 30 32768 0
malloc-512 512 4 60 99 0 30 32768 0
malloc-512 512 2 62 27 0 30 32768 0
malloc-512 512 0 64 7 0 30 32768 0
malloc-512 512 5 59 14 0 30 32768 0
pcpu-64 64 499 13 499 0 254 32768 0
tcp_bbr_pcb 896 0 36 4 0 16 32256 0
ttyinq 160 135 65 300 0 62 32000 0
Files 80 196 204 8384 0 126 32000 0
tcp_log_id_node 120 1 263 2 0 126 31680 0
PGRP 120 28 236 47 0 126 31680 0
clpbuf 2624 0 12 221 0 4 31488 0
L VFS Cache 320 0 96 49 0 30 30720 0
sctp_laddr 48 1 587 21 0 254 28224 0
rl_entry 48 16 572 23 0 254 28224 0
16 Bucket 144 68 128 587 0 62 28224 0
4 Bucket 48 7 581 24 0 254 28224 0
AIO 208 0 133 37 0 62 27664 0
mqnode 416 4 59 4 0 30 26208 0
udplite_inpcb 408 0 63 10 0 30 25704 0
cpuset 200 8 120 48 0 62 25600 0
malloc-8192 8192 1 2 43 0 1 24576 0
malloc-4096 4096 0 6 28 0 2 24576 0
malloc-4096 4096 4 2 53 0 2 24576 0
tcp_log_id_bucket 176 1 137 2 0 62 24288 0
ertt_txseginfo 40 0 606 3089 0 254 24240 0
PWD 40 37 569 328 0 254 24240 0
rtentry 168 34 110 38 0 62 24192 0
8 Bucket 80 54 246 400 0 126 24000 0
itimer 352 0 66 12 0 30 23232 0
splice 184 0 126 4 0 62 23184 0
malloc-384 384 0 60 13 0 30 23040 0
malloc-384 384 12 48 12 0 30 23040 0
malloc-384 384 13 47 434 0 30 23040 0
tcp_rack_pcb 1088 1 20 3 0 8 22848 0
domainset 40 0 567 41 0 254 22680 0
ripcb 376 4 56 30 0 30 22560 0
Mountpoints 2816 2 6 6 0 4 22528 0
tfo_ccache_entries 80 2 254 2 0 126 20480 0
ertt 72 6 274 86 0 126 20160 0
malloc-32 32 73 557 413 0 254 20160 0
malloc-32 32 131 499 958 0 254 20160 0
malloc-32 32 252 378 330 0 254 20160 0
malloc-32 32 141 489 8250 0 254 20160 0
malloc-32 32 185 445 350 0 254 20160 0
malloc-32 32 17 613 26 0 254 20160 0
2 Bucket 32 74 556 565 0 254 20160 0
KNOTE 160 0 125 50 0 62 20000 0
tcp_bbr_map 128 0 155 12 0 126 19840 0
cryptop 280 0 70 4 0 30 19600 0
AIOCB 552 0 35 34 0 16 19320 0
AIOLIO 272 0 70 3 0 30 19040 0
vmem 1856 2 7 2 0 8 16704 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 0 2 20 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 2 2 9 0 2 16384 0
malloc-4096 4096 1 3 4 0 2 16384 0
malloc-1024 1024 0 16 1 0 16 16384 0
malloc-512 512 2 30 2 0 30 16384 0
SMR CPU 32 8 503 8 0 254 16352 0
malloc-16 16 490 510 3579 0 254 16000 0
mqueue 248 1 63 1 0 62 15872 0
kenv 258 17 43 1070 0 30 15480 0
SMR SHARED 24 8 503 8 0 254 12264 0
malloc-32 32 19 359 38 0 254 12096 0
malloc-16 16 25 725 152 0 254 12000 0
malloc-16 16 11 739 17 0 254 12000 0
malloc-16 16 46 704 126 0 254 12000 0
malloc-16 16 60 690 29725 0 254 12000 0
malloc-16 16 67 683 1745 0 254 12000 0
malloc-16 16 11 739 15 0 254 12000 0
malloc-384 384 1 29 2 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
vtnet_tx_hdr 24 0 334 2418 0 254 8016 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 15 24 19 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 152 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 256 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf UDP mappings 104 0 0 0 0 126 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 384 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: 9ab96b38215e tests/unix_seqpacket: re-enable stress test f..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=169b1f74580000
dashboard link: https://syzkaller.appspot.com/bug?extid=7b0b20cf2c672c181d98
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+7b0b20...@syzkaller.appspotmail.com
panic: sofree:1883 curvnet is NULL, so=0xfffffe006bccf800
cpuid = 0
time = 15
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe00577260d0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0057726230
vpanic() at vpanic+0x257/frame 0xfffffe00577263f0
panic() at panic+0xb5/frame 0xfffffe00577264b0
sorele_locked() at sorele_locked+0x43c/frame 0xfffffe00577264f0
uipc_sendfile_wait() at uipc_sendfile_wait+0x4b9/frame 0xfffffe0057726610
vn_sendfile() at vn_sendfile+0xcc8/frame 0xfffffe0057726b70
sendfile() at sendfile+0x332/frame 0xfffffe0057726d10
amd64_syscall() at amd64_syscall+0x4af/frame 0xfffffe0057726f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe0057726f30
--- syscall (198, FreeBSD ELF64, __syscall), rip = 0x3a197a, rsp = 0x82617ff08, rbp = 0x82617ff80 ---
KDB: enter: panic
[ thread pid 1168 tid 100518 ]
Stopped at kdb_enter+0x6e: movq $0,0x25be6a7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe006ec00000
rdx 0x7ffff
rbx 0xffffffff827af9c0 .str.27
rsp 0xfffffe0057726210
rbp 0xfffffe0057726230
rsi 0x80001
rdi 0xffffffff81613509 printf+0x149
r8 0
r9 0xffffffff
r10 0
r11 0
r12 0xfffffe0054917000
r13 0xfffffffffffffffe
r14 0xffffffff827af9c0 .str.27
r15 0
rip 0xffffffff815fdaee kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x25be6a7(%rip)
db> show proc
Process 1168 (syz-executor) at 0xfffffe0054937ae0:
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 764 at 0xfffffe00548055c0
ABI: FreeBSD ELF64
flag: 0x10000080 flag2: 0
arguments: ./syz-executor exec
reaper: 0xfffffe0008007040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe0054940248
(map 0xfffffe0054940248)
(map.pmap 0xfffffe00549402e8)
(pmap 0xfffffe0054940358)
threads: 3
100504 Run CPU 1 syz-executor
100518 Run CPU 0 syz-executor
100523 RunQ syz-executor
db> ps
pid ppid pgrp uid state wmesg wchan cmd
1169 1166 766 0 SV lockf 0xfffffe00780be580 syz-executor
1168 764 764 0 R (threaded) syz-executor
100504 Run CPU 1 syz-executor
100518 Run CPU 0 syz-executor
100523 RunQ syz-executor
1166 766 766 0 R (threaded) syz-executor
100251 RunQ syz-executor
100515 S lockf 0xfffffe0007f83400 syz-executor
100519 S lockf 0xfffffe0007f84080 syz-executor
100521 D ppwait 0xfffffe0054955aa0 syz-executor
1165 765 765 0 R (threaded) syz-executor
100428 RunQ syz-executor
100514 S lockf 0xfffffe0007f83800 syz-executor
100516 S lockf 0xfffffe00780be480 syz-executor
100520 S lockf 0xfffffe0007f83c00 syz-executor
100524 S uwait 0xfffffe0077c6f980 syz-executor
1163 1121 1121 0 S (threaded) syz-executor
100506 S nanslp 0xffffffff83b9d501 syz-executor
100509 S msgrcv 0xfffffe0058d48078 syz-executor
100512 S uwait 0xfffffe0058cf5100 syz-executor
1150 1 764 0 S uwait 0xfffffe006e6e1e80 syz-executor
1139 1 764 0 S uwait 0xfffffe0077e78780 syz-executor
1137 0 0 0 DL mdwait 0xfffffe006bf68000 [md0]
1121 763 1121 0 S nanslp 0xffffffff83b9d501 syz-executor
1119 1 1112 0 S uwait 0xfffffe0058cf3200 syz-executor
1118 1 766 0 S uwait 0xfffffe006e6e3380 syz-executor
1108 1 764 0 S uwait 0xfffffe005859d900 syz-executor
1107 1 764 0 S uwait 0xfffffe0058cf5200 syz-executor
1067 1 766 0 S uwait 0xfffffe006e6e3280 syz-executor
1061 1055 1061 0 Ss select 0xfffffe0058e260c0 dhclient
1058 1 1058 0 Ss select 0xfffffe0058600340 dhclient
1055 1048 424 65 S select 0xfffffe0058e26340 dhclient
1048 424 424 0 S wait 0xfffffe00548e25c0 sh
1035 1 764 0 S uwait 0xfffffe006e6e3680 syz-executor
1006 1 767 0 S uwait 0xfffffe006e6e1680 syz-executor
1004 1 764 0 S uwait 0xfffffe0058cf3300 syz-executor
1003 1 766 0 SV uwait 0xfffffe006e6e1880 syz-executor
968 1 767 0 S uwait 0xfffffe005859d600 syz-executor
965 1 767 0 S uwait 0xfffffe006e6e3580 syz-executor
964 1 765 0 SV uwait 0xfffffe006e6e1580 syz-executor
926 1 766 0 S uwait 0xfffffe006e6e1a80 syz-executor
910 1 765 0 SV lockf 0xfffffe0007f84900 syz-executor
905 1 766 0 S uwait 0xfffffe0058cf3000 syz-executor
893 1 767 60928 S uwait 0xfffffe006e6e1280 syz-executor
890 1 765 0 S uwait 0xfffffe0058cf5000 syz-executor
885 0 0 0 DL (threaded) [so_splice]
100162 D - 0xfffffe0058d98b00 [thr_0]
100163 D - 0xfffffe0058d98b40 [thr_1]
884 0 0 0 DL - 0xffffffff83cad400 [soaiod4]
883 0 0 0 DL - 0xffffffff83cad400 [soaiod3]
882 0 0 0 DL - 0xffffffff83cad400 [soaiod2]
881 0 0 0 DL - 0xffffffff83cad400 [soaiod1]
826 1 765 0 S uwait 0xfffffe006e6e3780 syz-executor
822 0 0 0 DL aiordy 0xfffffe00548e2060 [aiod4]
820 0 0 0 DL aiordy 0xfffffe0054905000 [aiod3]
819 0 0 0 DL aiordy 0xfffffe00548045a0 [aiod2]
818 0 0 0 DL aiordy 0xfffffe0008026040 [aiod1]
766 763 766 0 R syz-executor
765 763 765 0 S nanslp 0xffffffff83b9d500 syz-executor
764 763 764 0 S nanslp 0xffffffff83b9d500 syz-executor
763 761 761 0 S select 0xfffffe0058600840 syz-executor
761 759 761 0 Ss pause 0xfffffe00548c7610 csh
759 682 759 0 Ss select 0xfffffe00586008c0 sshd
748 1 748 0 Ss+ ttyin 0xfffffe0058a7fcb0 getty
747 1 747 0 Ss+ ttyin 0xfffffe0058e40cb0 getty
746 1 746 0 Ss+ ttyin 0xfffffe0058e410b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe0058e414b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe0058e418b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe0058e41cb0 getty
742 1 742 0 Ss+ ttyin 0xfffffe0058e420b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe0058e424b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe0058e428b0 getty
738 1 18 0 S+ piperd 0xfffffe006bc35cc0 logger
737 736 18 0 S+ nanslp 0xffffffff83b9d500 sleep
736 1 18 0 S+ wait 0xfffffe00548c95a0 sh
686 1 686 0 Ss nanslp 0xffffffff83b9d500 cron
682 1 682 0 Ss select 0xfffffe00585e3bc0 sshd
495 1 495 0 Ss select 0xfffffe00585e3c40 syslogd
424 1 424 0 Ss wait 0xfffffe0054804040 devd
423 1 423 65 Ss select 0xfffffe00585e80c0 dhclient
338 1 338 0 Ss select 0xfffffe00585e3d40 dhclient
335 1 335 0 Ss select 0xfffffe0058e26840 dhclient
17 0 0 0 DL syncer 0xffffffff83cbada0 [syncer]
16 0 0 0 DL vlruwt 0xfffffe0008027060 [vnlru]
15 0 0 0 DL (threaded) [bufdaemon]
100080 D psleep 0xffffffff83cb9360 [bufdaemon]
100083 D - 0xffffffff83002140 [bufspacedaemon-0]
100094 D sdflush 0xfffffe0058e3f0e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83d04380 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100078 D psleep 0xffffffff83cea2f8 [dom0]
100081 D launds 0xffffffff83cea304 [laundry: dom0]
100082 D umarcl 0xffffffff81dcda80 [uma]
7 0 0 0 DL - 0xffffffff8391acd0 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff844b1850 [pf purge]
5 0 0 0 DL waiting 0xffffffff8481f6c0 [sctp_iterator]
4 0 0 0 DL (threaded) [cam]
100046 D - 0xffffffff838e5340 [doneq0]
100047 D - 0xffffffff838e52c0 [async]
100076 D - 0xffffffff838e5140 [scanner]
3 0 0 0 DL (threaded) [crypto]
100043 D crypto_ 0xffffffff83ce5b00 [crypto]
100044 D crypto_ 0xfffffe00546e8c30 [crypto returns 0]
100045 D crypto_ 0xfffffe00546e8c80 [crypto returns 1]
14 0 0 0 DL seqstat 0xfffffe0007f5e888 [sequencer 00]
13 0 0 0 DL (threaded) [geom]
100037 D - 0xffffffff83b45f00 [g_event]
100038 D - 0xffffffff83b45f20 [g_up]
100039 D - 0xffffffff83b45f40 [g_down]
2 0 0 0 WL (threaded) [clock]
100031 I [clock (0)]
100032 I [clock (1)]
12 0 0 0 WL (threaded) [intr]
100013 I [swi6: task queue]
100014 I [swi6: Giant taskq]
100016 I [swi5: fast taskq]
100033 I [swi1: netisr 0]
100034 I [swi1: hpts]
100035 I [swi1: hpts]
100048 I [irq24: virtio_pci0]
100049 I [irq25: virtio_pci0]
100050 I [irq26: virtio_pci0]
100051 I [irq27: virtio_pci0]
100052 I [irq28: virtio_pci1]
100053 I [irq29: virtio_pci1]
100054 I [irq30: virtio_pci1]
100055 I [irq31: virtio_pci1]
100056 I [irq32: virtio_pci1]
100061 I [irq10: virtio_pci2]
100063 I [irq1: atkbd0]
100064 I [irq12: psm0]
100065 I [swi0: uart uart++]
100069 I [swi1: pf send]
11 0 0 0 RL (threaded) [idle]
100003 CanRun [idle: cpu0]
100004 CanRun [idle: cpu1]
1 0 1 0 SLs wait 0xfffffe0008007040 [init]
10 0 0 0 DL audit_w 0xffffffff83ce65a0 [audit]
0 0 0 0 DLs (threaded) [kernel]
100000 D parked 0xffffffff84c2bff0 [swapper]
100005 D - 0xfffffe0008be9a00 [softirq_0]
100006 D - 0xfffffe0008be9900 [softirq_1]
100007 D - 0xfffffe0008be9800 [if_io_tqg_0]
100008 D - 0xfffffe0008be9700 [if_io_tqg_1]
100009 D - 0xfffffe0008be9600 [if_config_tqg_0]
100010 D - 0xfffffe0007fcd000 [kqueue_ctx taskq]
100011 D - 0xfffffe0007fcce00 [jail_remove taskq]
100012 D - 0xfffffe0007fccd00 [bus taskq]
100015 D - 0xfffffe0007fcca00 [thread taskq]
100017 D - 0xfffffe0007fcc800 [aiod_kick taskq]
100018 D - 0xfffffe0007fcc700 [deferred_unmount ta]
100019 D - 0xfffffe0007fcc600 [inm_free taskq]
100020 D - 0xfffffe0007fcc500 [in6m_free taskq]
100021 D - 0xfffffe0007fcc400 [linuxkpi_irq_wq]
100022 D - 0xfffffe0007fcc300 [linuxkpi_short_wq_0]
100023 D - 0xfffffe0007fcc300 [linuxkpi_short_wq_1]
100024 D - 0xfffffe0007fcc300 [linuxkpi_short_wq_2]
100025 D - 0xfffffe0007fcc300 [linuxkpi_short_wq_3]
100026 D - 0xfffffe0007fcc200 [linuxkpi_long_wq_0]
100027 D - 0xfffffe0007fcc200 [linuxkpi_long_wq_1]
100028 D - 0xfffffe0007fcc200 [linuxkpi_long_wq_2]
100029 D - 0xfffffe0007fcc200 [linuxkpi_long_wq_3]
100036 D - 0xfffffe0007fcc100 [firmware taskq]
100041 D - 0xfffffe0008bffe00 [crypto_0]
100042 D - 0xfffffe0008bffe00 [crypto_1]
100057 D - 0xfffffe0008bffc00 [vtnet0 rxq 0]
100058 D - 0xfffffe0008bffb00 [vtnet0 txq 0]
100059 D - 0xfffffe0008bffa00 [vtnet0 rxq 1]
100060 D - 0xfffffe0008bff900 [vtnet0 txq 1]
100062 D vtbslp 0xfffffe00585e8380 [virtio_balloon]
100066 D - 0xffffffff827b4d01 [deadlkres]
100070 D - 0xfffffe0059bfc700 [acpi_task_0]
100071 D - 0xfffffe0059bfc700 [acpi_task_1]
100072 D - 0xfffffe0059bfc700 [acpi_task_2]
100074 D - 0xfffffe0007fcd100 [mca taskq]
100075 D - 0xfffffe0008bffd00 [CAM taskq]
100077 D - 0xfffffe0008bff700 [ipsec_offload]
db> show all locks
Process 1168 (syz-executor) thread 0xfffffe0054917000 (100518)
exclusive sx so_snd_sx (so_snd_sx) r = 0 (0xfffffe006bf18d80) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4838
db> show malloc
Type InUse MemUse Requests
pf_hash 6 12804K 6
linker 400 5458K 530
tcp_hpts 7 4801K 7
devbuf 4188 4324K 4215
sysctloid 34971 2060K 35046
vtbuf 24 1968K 46
kobj 331 1324K 513
newblk 13 1027K 3150
vfscache 3 1025K 3
pcb 42 685K 151
inodedep 18 519K 620
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
filedesc 58 457K 584
subproc 186 370K 1276
vnet_data 2 224K 2
acpitask 1 224K 1
KTRACE 102 201K 14392
acpica 1674 184K 54426
vmem 5 144K 6
tidhash 3 141K 3
pagedep 16 132K 306
tfo_ccache 1 128K 1
IP reass 1 128K 1
DEVFS1 111 111K 131
sem 4 106K 4
gtaskqueue 18 98K 18
bus 997 82K 5063
mtx_pool 3 74K 3
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 522 66K 522
ddb_capture 1 64K 1
kdtrace 250 47K 1698
umtx 368 46K 368
temp 40 38K 2077
BPF 23 36K 36
DEVFS3 130 33K 141
hostcache 1 32K 1
shm 1 32K 7
msg 4 30K 4
kbdmux 6 28K 6
LRO 22 23K 22
ifaddr 76 21K 78
DEVFS_RULE 56 20K 56
routetbl 160 19K 484
ufs_mount 4 17K 5
proc 3 17K 3
lltable 52 16K 53
tty 16 16K 16
ithread 90 15K 90
ether_multi 180 15K 190
bus-sc 34 15K 1647
ifnet 8 15K 8
eventhandler 163 14K 163
kenv 95 12K 95
GEOM 68 12K 555
shmfd 7 11K 11
CAM queue 5 11K 1528
in6_multi 75 10K 75
rman 82 10K 437
plimit 25 10K 346
rpc 8 9K 8
bmsafemap 2 9K 549
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 4
pfs_vncache 1 8K 1
audit_evclass 239 8K 301
lockf 83 8K 337
taskqueue 69 8K 72
cred 27 7K 217
sglist 6 7K 6
CAM DEV 3 6K 510
pfs_nodes 22 6K 22
kqueue 86 6K 1292
pwddesc 83 6K 1197
ufs_dirhash 24 5K 48
pf_ifnet 11 5K 22
UMA 267 5K 267
sctp_atcl 11 5K 54
tcp_fsb_rack 2 5K 6
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
md_disk 1 4K 3
evdev 4 4K 4
DEVFSP 56 4K 82
acpisem 28 4K 28
selfd 48 3K 42844
proc-args 104 3K 2293
kcovinfo 45 3K 45
terminal 11 3K 11
session 22 3K 40
uidinfo 5 3K 13
acpidev 20 3K 20
hhook 8 3K 10
clone 9 3K 9
ip6ndp 14 3K 16
sctp_stro 2 2K 10
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
sctp_ifa 15 2K 16
tun 5 2K 5
sctp_timw 7 2K 7
in_multi 7 2K 9
Unitno 26 2K 58
CAM XPT 22 2K 543
pfil 14 2K 14
toponodes 6 2K 6
ipsecpolicy 2 2K 2
select 11 2K 55
newdirblk 10 2K 277
msi 9 2K 9
diradd 9 2K 525
netlink 2 2K 85
ip6opt 6 2K 15
sctp_stri 2 1K 8
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
nhops 6 1K 8
vnodemarker 2 1K 24
NFSD session 1 1K 1
sctp_ifn 7 1K 16
mkdir 7 1K 554
mld 7 1K 7
igmp 7 1K 7
CAM periph 4 1K 271
ipsec 3 1K 3
CC Mem 6 1K 86
isadev 6 1K 6
mount 16 1K 476
pci_link 10 1K 10
crypto 4 1K 12
encap_export_host 12 1K 12
osd 11 1K 102
sctp_atky 13 1K 68
inpcbpolicy 16 1K 313
cdev 2 1K 2
lkpikmalloc 8 1K 9
chacha20random 1 1K 1
biobuf 1 1K 1
ip_msource 5 1K 32
tcp_pcm_rack 1 1K 3
dirrem 1 1K 504
freefrag 2 1K 122
vnodes 1 1K 5
procdesc 2 1K 12
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
pf_osfp 2 1K 2
frag6 2 1K 2
tcpfunc 3 1K 3
loginclass 3 1K 5
prison 6 1K 6
sctp_athm 11 1K 58
cryptodev 2 1K 66
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
aio 4 1K 5
pmchooks 1 1K 1
filecaps 5 1K 92
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
soname 4 1K 3426
sctp_vrf 1 1K 1
sctp_map 4 1K 20
vnet 1 1K 1
sendfile 1 1K 327
pmc 1 1K 1
entropy 2 1K 35
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
freework 1 1K 1090
p1003.1b 1 1K 1
ext2_mount 0 0K 0
ext2_node 0 0K 0
ext2_extents 0 0K 0
sctp_mcore 0 0K 0
sctp_socko 0 0K 11
sctp_iter 0 0K 13
sctp_mvrf 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_a_it 0 0K 13
sctp_aadr 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
mqdata 0 0K 0
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 12
tcp_do_rack 0 0K 0
filemon 0 0K 2
madt_table 0 0K 2
smartpqi 0 0K 0
ixl 0 0K 0
ice-resmgr 0 0K 0
ice-osdep 0 0K 0
ice 0 0K 0
iavf 0 0K 0
axgbe 0 0K 0
fpukern_ctx 0 0K 0
xen_intr 0 0K 0
xen_hvm 0 0K 0
legacydrv 0 0K 0
NMI handlers 0 0K 0
bounce 0 0K 0
busdma 0 0K 0
qpidrv 0 0K 0
dmar_idpgtbl 0 0K 0
dmar_dom 0 0K 0
dmar_ctx 0 0K 0
amdiommu_dom 0 0K 0
amdiommu_ctx 0 0K 0
isci 0 0K 0
iommu_dmamap 0 0K 0
hyperv_socket 0 0K 0
bxe_ilt 0 0K 0
aesni_data 0 0K 0
xenbus 0 0K 0
vm_fictitious 0 0K 0
UMAHash 0 0K 0
vm_pgdata 0 0K 0
jblocks 0 0K 0
savedino 0 0K 900
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 11
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefile 0 0K 422
freeblks 0 0K 377
allocindir 0 0K 0
indirdep 0 0K 770
allocdirect 0 0K 0
ufs_trim 0 0K 0
mactemp 0 0K 0
audit_trigger 0 0K 0
audit_pipe_presel 0 0K 0
audit_pipeent 0 0K 0
audit_pipe 0 0K 0
audit_evname 0 0K 0
audit_bsm 0 0K 0
audit_gidset 0 0K 0
audit_text 0 0K 0
audit_path 0 0K 0
audit_data 0 0K 0
audit_cred 0 0K 0
ktls_ocf 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS_RX 0 0K 0
MLX5EEPROM 0 0K 0
MLX5E_TLS 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EN 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5DUMP 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
MLX5EEPROM 0 0K 0
simple_attr 0 0K 0
seq_file 0 0K 0
lkpiskb 0 0K 0
radix 0 0K 0
idr 0 0K 0
lkpindev 0 0K 0
lkpimhi 0 0K 0
lkpifw 0 0K 0
lkpi80211 0 0K 0
NLM 0 0K 0
ipsec-spdcache 0 0K 0
ipsec-reg 0 0K 0
ipsec-misc 0 0K 0
ipsecrequest 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
ip_moptions 0 0K 8
in_mfilter 0 0K 42
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 20
fadvise 0 0K 0
VN POLL 0 0K 11
statfs 0 0K 190
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 75
lio 0 0K 3
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 15563
ioctlops 0 0K 116
eventfd 0 0K 2
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 348
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 651
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 84
geom_flashmap 0 0K 0
tmpfs dir 0 0K 0
tmpfs name 0 0K 0
tmpfs mount 0 0K 0
tmpfs extattr 0 0K 0
NFS FHA 0 0K 0
newnfsmnt 0 0K 0
newnfsclient_req 0 0K 0
NFSCL layrecall 0 0K 0
NFSCL session 0 0K 0
NFSCL sockreq 0 0K 0
NFSCL devinfo 0 0K 0
NFSCL flayout 0 0K 0
NFSCL layout 0 0K 0
NFSD rollback 0 0K 0
NFSCL diroff 0 0K 0
NEWNFSnode 0 0K 0
NFSCL lck 0 0K 0
NFSCL lckown 0 0K 0
NFSCL client 0 0K 0
NFSCL deleg 0 0K 0
NFSCL open 0 0K 0
NFSCL owner 0 0K 0
NFS fh 0 0K 0
NFS req 0 0K 0
NFSD usrgroup 0 0K 0
NFSD string 0 0K 0
NFSD V4lock 0 0K 0
NFSD V4state 0 0K 0
msdosfs_fat 0 0K 0
msdosfs_mount 0 0K 0
msdosfs_node 0 0K 0
DEVFS4 0 0K 0
DEVFS2 0 0K 0
gntdev 0 0K 0
privcmd_dev 0 0K 0
evtchn_dev 0 0K 0
xenstore 0 0K 0
xnb 0 0K 0
xen_acpi 0 0K 0
xbbd 0 0K 0
xbd 0 0K 0
Balloon 0 0K 0
sysmouse 0 0K 0
vtfont 0 0K 0
pvscsi 0 0K 0
USBdev 0 0K 0
USB 0 0K 0
twsbuf 0 0K 0
tcp_log_dev 0 0K 0
midi buffers 0 0K 0
mixer 0 0K 0
ac97 0 0K 0
hdacc 0 0K 0
hdac 0 0K 0
hdaa 0 0K 0
SIIS driver 0 0K 0
PUC 0 0K 0
ppbusdev 0 0K 0
sr_iov 0 0K 0
OCS 0 0K 0
OCS 0 0K 0
nvme 0 0K 0
nvd 0 0K 0
netmap 0 0K 0
mwldev 0 0K 0
MVS driver 0 0K 0
mpi3mrbuf 0 0K 0
mrsasbuf 0 0K 0
mpt_user 0 0K 0
mps_user 0 0K 0
MPSSAS 0 0K 0
mps 0 0K 0
mpr_user 0 0K 0
MPRSAS 0 0K 0
mpr 0 0K 0
mfibuf 0 0K 0
md_sectors 0 0K 0
malodev 0 0K 0
LED 0 0K 0
ix_sriov 0 0K 0
ix 0 0K 0
ipsbuf 0 0K 0
ciss_data 0 0K 0
BACKLIGHT 0 0K 0
ath_hal 0 0K 0
athdev 0 0K 0
ata_pci 0 0K 0
ata_dma 0 0K 0
ata_generic 0 0K 0
AHCI driver 0 0K 0
agp 0 0K 0
acpipwr 0 0K 0
acpi_perf 0 0K 0
acpicmbat 0 0K 0
aacraidcam 0 0K 0
aacraid_buf 0 0K 0
aaccam 0 0K 0
aacbuf 0 0K 0
zstd 0 0K 0
XZ_DEC 0 0K 0
nvlist 0 0K 0
SCSI ENC 0 0K 0
SCSI sa 0 0K 0
scsi_pass 0 0K 0
scsi_da 0 0K 69
ata_da 0 0K 0
scsi_ch 0 0K 0
scsi_cd 0 0K 0
nvme_da 0 0K 0
CAM CCB 0 0K 523
CAM ccb queue 0 0K 0
db> show uma
Zone Size Used Free Requests Sleeps Bucket Total Mem XFree
mbuf_jumbo_page 4096 8336 1062 16916 0 254 38494208 0
mbuf 256 8821 841 32144 0 254 2473472 0
BUF TRIE 152 319 11485 3197 0 62 1794208 0
malloc-384 384 4153 47 4169 0 30 1612800 0
malloc-128 128 11496 98 11525 0 126 1484032 0
RADIX NODE 152 8952 481 47252 0 62 1433816 0
malloc-4096 4096 334 6 688 0 2 1392640 0
UMA Slabs 0 112 11044 2 11044 0 126 1237152 0
sctp_asoc 2256 2 508 10 0 254 1150560 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
malloc-65536 65536 15 0 18 0 1 983040 0
vmem btag 56 16538 61 16538 0 254 929544 0
FFS inode 1168 547 27 975 0 8 670432 0
malloc-64 64 679 8771 50320 0 254 604800 0
sctp_ep 1152 7 504 40 0 254 588672 0
socket 1024 36 472 1601 0 254 520192 0
lkpicurr 168 2 3094 2 0 62 520128 0
malloc-16384 16384 28 2 289 0 1 491520 0
pbuf 2624 0 182 0 0 2 477568 0
malloc-4096 4096 93 5 1181 0 2 401408 0
sctp_raddr 736 2 515 10 0 254 380512 0
256 Bucket 2048 169 15 1162 0 8 376832 0
VM OBJECT 264 1351 59 17647 0 30 372240 0
THREAD 1824 166 18 524 0 8 335616 0
VNODE 440 587 79 1017 0 30 293040 0
malloc-64 64 3846 501 4545 0 254 278208 0
malloc-32768 32768 2 6 642 0 1 262144 0
malloc-2048 2048 114 6 401 0 8 245760 0
malloc-16 16 14427 73 14495 0 254 232000 0
DEVCTL 1024 33 187 160 0 0 225280 0
MAP ENTRY 96 1846 296 56561 0 126 205632 0
UMA Zones 768 239 0 239 0 16 183552 0
malloc-32 32 5328 342 5781 0 254 181440 0
malloc-128 128 1230 165 25760 0 126 178560 0
lkpimm 56 1 3095 1 0 254 173376 0
unpcb 320 13 503 1216 0 254 165120 0
FPU_save_area 832 168 30 761 0 16 164736 0
malloc-32768 32768 0 5 22 0 1 163840 0
FFS2 dinode 256 547 83 975 0 62 161280 0
malloc-256 256 50 580 3279 0 62 161280 0
malloc-1024 1024 126 18 362 0 16 147456 0
S VFS Cache 104 1009 395 1448 0 126 146016 0
PROC 1376 82 17 1172 0 8 136224 0
malloc-65536 65536 0 2 71 0 1 131072 0
malloc-65536 65536 0 2 111 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-32768 32768 4 0 4 0 1 131072 0
malloc-2048 2048 6 58 1044 0 8 131072 0
malloc-128 128 784 239 4940 0 126 130944 0
mbuf_packet 256 11 497 1676 0 254 130048 0
ksiginfo 112 77 967 160 0 126 116928 0
malloc-128 128 634 265 1875 0 126 115072 0
malloc-16384 16384 6 0 7 0 1 98304 0
filedesc0 1072 83 8 1197 0 8 97552 0
malloc-256 256 199 176 1881 0 62 96000 0
malloc-8192 8192 9 2 12 0 1 90112 0
malloc-4096 4096 16 6 223 0 2 90112 0
UMA Kegs 384 225 8 225 0 30 89472 0
syncache 168 0 528 7 0 254 88704 0
128 Bucket 1024 56 27 272 0 16 84992 0
malloc-64 64 836 487 2302 0 254 84672 0
malloc-8192 8192 8 2 91 0 1 81920 0
g_bio 408 0 180 17715 0 30 73440 0
64 Bucket 512 101 35 2654 0 30 69632 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 0 1 1 0 1 65536 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-32768 32768 1 1 13 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-4096 4096 13 3 497 0 2 65536 0
malloc-256 256 60 195 1526 0 62 65280 0
malloc-256 256 214 41 654 0 62 65280 0
32 Bucket 256 86 169 922 0 62 65280 0
sctp_stream_msg_out 112 1 539 5 0 254 60480 0
malloc-384 384 66 84 1019 0 30 57600 0
malloc-128 128 34 369 309 0 126 51584 0
malloc-256 256 94 101 1524 0 62 49920 0
malloc-256 256 64 131 979 0 62 49920 0
DIRHASH 1024 34 14 50 0 16 49152 0
NAMEI 1024 0 48 15379 0 16 49152 0
malloc-16384 16384 1 2 191 0 1 49152 0
malloc-1024 1024 27 21 36 0 16 49152 0
malloc-1024 1024 18 30 1103 0 16 49152 0
malloc-1024 1024 3 45 533 0 16 49152 0
VMSPACE 584 55 29 1143 0 16 49056 0
malloc-384 384 75 45 81 0 30 46080 0
malloc-384 384 106 14 106 0 30 46080 0
tcp_inpcb 1304 7 26 86 0 8 43032 0
vnpbuf 2624 0 16 4 0 16 41984 0
pcpu-8 8 4832 288 5076 0 254 40960 0
pipe 736 21 34 365 0 16 40480 0
sctp_chunk 152 50 210 52 0 254 39520 0
da_ccb 544 0 70 4563 0 16 38080 0
udp_inpcb 408 6 84 187 0 30 36720 0
hostcache 64 3 564 3 0 254 36288 0
malloc-64 64 8 559 14921 0 254 36288 0
malloc-64 64 31 536 63 0 254 36288 0
malloc-64 64 286 281 1566 0 254 36288 0
malloc-64 64 110 457 1589 0 254 36288 0
malloc-64 64 7 560 8 0 254 36288 0
tcp_rack_map 128 3 276 520 0 126 35712 0
malloc-128 128 23 256 96 0 126 35712 0
malloc-128 128 8 271 556 0 126 35712 0
malloc-128 128 118 161 703 0 126 35712 0
routing nhops 256 31 104 38 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-256 256 36 99 699 0 62 34560 0
malloc-256 256 23 112 296 0 62 34560 0
TURNSTILE 136 185 67 185 0 62 34272 0
SLEEPQUEUE 88 185 199 185 0 126 33792 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-16384 16384 0 2 2 0 1 32768 0
malloc-8192 8192 3 1 4 0 1 32768 0
malloc-2048 2048 0 16 13 0 8 32768 0
malloc-2048 2048 2 14 4 0 8 32768 0
malloc-2048 2048 10 6 46 0 8 32768 0
malloc-2048 2048 2 14 53 0 8 32768 0
malloc-2048 2048 11 5 37 0 8 32768 0
malloc-2048 2048 9 7 11 0 8 32768 0
malloc-1024 1024 2 30 51 0 16 32768 0
malloc-1024 1024 2 30 6 0 16 32768 0
malloc-1024 1024 4 28 4 0 16 32768 0
malloc-512 512 8 56 140 0 30 32768 0
malloc-512 512 5 59 43 0 30 32768 0
malloc-512 512 2 62 52 0 30 32768 0
malloc-512 512 4 60 99 0 30 32768 0
malloc-512 512 2 62 27 0 30 32768 0
malloc-512 512 0 64 7 0 30 32768 0
malloc-512 512 5 59 14 0 30 32768 0
pcpu-64 64 499 13 499 0 254 32768 0
tcp_bbr_pcb 896 0 36 4 0 16 32256 0
ttyinq 160 135 65 300 0 62 32000 0
Files 80 196 204 8384 0 126 32000 0
tcp_log_id_node 120 1 263 2 0 126 31680 0
PGRP 120 28 236 47 0 126 31680 0
clpbuf 2624 0 12 221 0 4 31488 0
L VFS Cache 320 0 96 49 0 30 30720 0
sctp_laddr 48 1 587 21 0 254 28224 0
rl_entry 48 16 572 23 0 254 28224 0
16 Bucket 144 68 128 587 0 62 28224 0
4 Bucket 48 7 581 24 0 254 28224 0
AIO 208 0 133 37 0 62 27664 0
mqnode 416 4 59 4 0 30 26208 0
udplite_inpcb 408 0 63 10 0 30 25704 0
cpuset 200 8 120 48 0 62 25600 0
malloc-8192 8192 1 2 43 0 1 24576 0
malloc-4096 4096 0 6 28 0 2 24576 0
malloc-4096 4096 4 2 53 0 2 24576 0
tcp_log_id_bucket 176 1 137 2 0 62 24288 0
ertt_txseginfo 40 0 606 3089 0 254 24240 0
PWD 40 37 569 328 0 254 24240 0
rtentry 168 34 110 38 0 62 24192 0
8 Bucket 80 54 246 400 0 126 24000 0
itimer 352 0 66 12 0 30 23232 0
splice 184 0 126 4 0 62 23184 0
malloc-384 384 0 60 13 0 30 23040 0
malloc-384 384 12 48 12 0 30 23040 0
malloc-384 384 13 47 434 0 30 23040 0
tcp_rack_pcb 1088 1 20 3 0 8 22848 0
domainset 40 0 567 41 0 254 22680 0
ripcb 376 4 56 30 0 30 22560 0
Mountpoints 2816 2 6 6 0 4 22528 0
tfo_ccache_entries 80 2 254 2 0 126 20480 0
ertt 72 6 274 86 0 126 20160 0
malloc-32 32 73 557 413 0 254 20160 0
malloc-32 32 131 499 958 0 254 20160 0
malloc-32 32 252 378 330 0 254 20160 0
malloc-32 32 141 489 8250 0 254 20160 0
malloc-32 32 185 445 350 0 254 20160 0
malloc-32 32 17 613 26 0 254 20160 0
2 Bucket 32 74 556 565 0 254 20160 0
KNOTE 160 0 125 50 0 62 20000 0
tcp_bbr_map 128 0 155 12 0 126 19840 0
cryptop 280 0 70 4 0 30 19600 0
AIOCB 552 0 35 34 0 16 19320 0
AIOLIO 272 0 70 3 0 30 19040 0
vmem 1856 2 7 2 0 8 16704 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 0 2 20 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-4096 4096 2 2 9 0 2 16384 0
malloc-4096 4096 1 3 4 0 2 16384 0
malloc-1024 1024 0 16 1 0 16 16384 0
malloc-512 512 2 30 2 0 30 16384 0
SMR CPU 32 8 503 8 0 254 16352 0
malloc-16 16 490 510 3579 0 254 16000 0
mqueue 248 1 63 1 0 62 15872 0
kenv 258 17 43 1070 0 30 15480 0
SMR SHARED 24 8 503 8 0 254 12264 0
malloc-32 32 19 359 38 0 254 12096 0
malloc-16 16 25 725 152 0 254 12000 0
malloc-16 16 11 739 17 0 254 12000 0
malloc-16 16 46 704 126 0 254 12000 0
malloc-16 16 60 690 29725 0 254 12000 0
malloc-16 16 67 683 1745 0 254 12000 0
malloc-16 16 11 739 15 0 254 12000 0
malloc-384 384 1 29 2 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
vtnet_tx_hdr 24 0 334 2418 0 254 8016 0
UMA Slabs 1 176 9 13 9 0 62 3872 0
KMAP ENTRY 96 15 24 19 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 152 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 256 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf UDP mappings 104 0 0 0 0 126 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 384 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot
May 5, 2025, 6:25:26 PM5/5/25
to syzkaller-f...@googlegroups.com
syzbot has found a reproducer for the following issue on:
HEAD commit: 9ab96b38215e tests/unix_seqpacket: re-enable stress test f..
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=1715539b980000
dashboard link: https://syzkaller.appspot.com/bug?extid=7b0b20cf2c672c181d98
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=13271f74580000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=1095539b980000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+7b0b20...@syzkaller.appspotmail.com
panic: sofree:1883 curvnet is NULL, so=0xfffffe006bce5c00
cpuid = 0
time = 1746483879
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe00575f20d0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe00575f2230
vpanic() at vpanic+0x257/frame 0xfffffe00575f23f0
panic() at panic+0xb5/frame 0xfffffe00575f24b0
sorele_locked() at sorele_locked+0x43c/frame 0xfffffe00575f24f0
uipc_sendfile_wait() at uipc_sendfile_wait+0x4b9/frame 0xfffffe00575f2610
vn_sendfile() at vn_sendfile+0xcc8/frame 0xfffffe00575f2b70
sendfile() at sendfile+0x332/frame 0xfffffe00575f2d10
amd64_syscall() at amd64_syscall+0x4af/frame 0xfffffe00575f2f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe00575f2f30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x23435a, rsp = 0x82241ff78, rbp = 0x82241ffc0 ---
KDB: enter: panic
[ thread pid 773 tid 100116 ]
rdx 0xdffff7c000000000
rbx 0xffffffff827af9c0 .str.27
rsp 0xfffffe00575f2210
rbp 0xfffffe00575f2230
rsi 0
rdi 0xffffffff830004c0 panicstr
r12 0xfffffe0054909740
ABI: FreeBSD ELF64
flag: 0x10004080 flag2: 0
arguments: ./syz-executor1826383537
(map 0xfffffe00548b6db0)
(map.pmap 0xfffffe00548b6e50)
(pmap 0xfffffe00548b6ec0)
threads: 3
100102 Run CPU 1 syz-executor1826383
100116 Run CPU 0 syz-executor1826383
100117 RunQ syz-executor1826383
100102 Run CPU 1 syz-executor1826383
100116 Run CPU 0 syz-executor1826383
100117 RunQ syz-executor1826383
771 769 771 0 Ss pause 0xfffffe0008008110 csh
769 682 769 0 Ss select 0xfffffe00585e3940 sshd
686 1 686 0 Ss nanslp 0xffffffff83b9d501 cron
682 1 682 0 Ss select 0xfffffe0058e266c0 sshd
495 1 495 0 Ss select 0xfffffe0058e26740 syslogd
424 1 424 0 Ss select 0xfffffe00585e80c0 devd
423 1 423 65 Ss select 0xfffffe00585e3d40 dhclient
338 1 338 0 Ss select 0xfffffe00585e3e40 dhclient
100095 D sdflush 0xfffffe0058e3f8e8 [/ worker]
5 0 0 0 DL waiting 0xffffffff845a16c0 [sctp_iterator]
Process 773 (syz-executor1826383) thread 0xfffffe0054909740 (100116)
exclusive sx so_snd_sx (so_snd_sx) r = 0 (0xfffffe006bce8580) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4838
tcp_hpts 7 4801K 7
devbuf 4188 4324K 4213
sysctloid 34854 2053K 34929
vtbuf 24 1968K 46
newblk 1940 1509K 1974
kobj 331 1324K 495
vfscache 3 1025K 3
pcb 23 669K 42
inodedep 51 531K 72
acpica 1674 184K 54426
subproc 96 181K 830
DEVFS1 105 105K 114
ddb_capture 1 64K 1
temp 18 37K 1566
hostcache 1 32K 1
shm 1 32K 1
umtx 256 32K 256
kdtrace 157 32K 892
DEVFS3 124 31K 134
BPF 10 18K 10
GEOM 61 11K 477
routetbl 50 11K 176
rpc 8 9K 8
bmsafemap 2 9K 40
shmfd 1 8K 1
plimit 17 7K 322
pfs_nodes 22 6K 22
ufs_dirhash 24 5K 24
UMA 266 5K 266
dirrem 17 5K 28
ifnet 3 5K 3
evdev 4 4K 4
acpisem 28 4K 28
diradd 26 4K 37
ether_multi 40 4K 50
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
kqueue 40 3K 776
pwddesc 40 3K 774
proc-args 62 3K 1696
Unitno 28 2K 42
netlink 2 2K 30
nhops 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
osd 8 1K 23
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
sctp_ifn 2 1K 6
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
loginclass 3 1K 7
prison 6 1K 6
cryptodev 2 1K 49
pmchooks 1 1K 1
filecaps 4 1K 66
sctp_vrf 1 1K 1
vnet 1 1K 1
sendfile 1 1K 2
p1003.1b 1 1K 1
pf_krule_item 0 0K 0
pf_temp 0 0K 0
tcp_pcm_rack 0 0K 0
tcp_do_rack 0 0K 0
tcp_fsb_rack 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_atky 0 0K 0
sctp_atcl 0 0K 0
sctp_a_it 0 0K 4
sctp_aadr 0 0K 0
sctp_stro 0 0K 0
sctp_stri 0 0K 0
sctp_map 0 0K 0
mqdata 0 0K 0
filemon 0 0K 0
savedino 0 0K 15
freeblks 0 0K 25
freefrag 0 0K 21
allocindir 0 0K 0
ip6opt 0 0K 3
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 195
aio 0 0K 0
lio 0 0K 0
ioctlops 0 0K 86
eventfd 0 0K 0
md_disk 0 0K 0
mbuf_jumbo_page 4096 8320 1078 25774 0 254 38494208 0
mbuf 256 8579 1083 33889 0 254 2473472 0
BUF TRIE 152 300 11504 1032 0 62 1794208 0
malloc-384 384 4145 55 4156 0 30 1612800 0
malloc-128 128 11450 144 11474 0 126 1484032 0
malloc-4096 4096 334 2 577 0 2 1376256 0
UMA Slabs 0 112 10861 5 10861 0 126 1216992 0
vmem btag 56 15582 81 15582 0 254 877128 0
RADIX NODE 152 3964 139 23147 0 62 623656 0
FFS inode 1168 516 16 525 0 8 621376 0
socket 1024 20 488 1317 0 254 520192 0
malloc-256 256 1961 34 2050 0 62 510720 0
malloc-64 64 3828 519 4498 0 254 278208 0
VNODE 440 546 57 557 0 30 265320 0
256 Bucket 2048 111 17 1015 0 8 262144 0
VM OBJECT 264 921 69 12696 0 30 261360 0
malloc-2048 2048 107 13 348 0 8 245760 0
THREAD 1824 116 12 117 0 8 233472 0
malloc-16 16 14377 123 14440 0 254 232000 0
DEVCTL 1024 0 220 123 0 0 225280 0
malloc-4096 4096 46 4 780 0 2 204800 0
UMA Zones 768 238 1 238 0 16 183552 0
malloc-32 32 5309 361 5719 0 254 181440 0
malloc-128 128 1209 186 25592 0 126 178560 0
FFS2 dinode 256 516 54 525 0 62 145920 0
malloc-65536 65536 0 2 46 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
mbuf_packet 256 0 508 117 0 254 130048 0
S VFS Cache 104 983 187 1022 0 126 121680 0
MAP ENTRY 96 877 383 39333 0 126 120960 0
FPU_save_area 832 118 26 131 0 16 119808 0
ksiginfo 112 37 1007 52 0 126 116928 0
malloc-2048 2048 6 50 1038 0 8 114688 0
malloc-128 128 603 172 3857 0 126 99200 0
malloc-128 128 622 153 1137 0 126 99200 0
UMA Kegs 384 224 9 224 0 30 89472 0
128 Bucket 1024 43 40 240 0 16 84992 0
malloc-16384 16384 5 0 6 0 1 81920 0
malloc-4096 4096 14 4 221 0 2 73728 0
g_bio 408 0 180 5028 0 30 73440 0
malloc-64 64 734 337 1724 0 254 68544 0
malloc-64 64 555 516 30970 0 254 68544 0
malloc-8192 8192 8 0 9 0 1 65536 0
malloc-256 256 171 84 822 0 62 65280 0
malloc-256 256 161 94 203 0 62 65280 0
filedesc0 1072 40 16 774 0 8 60032 0
malloc-4096 4096 11 3 494 0 2 57344 0
64 Bucket 512 62 42 1224 0 30 53248 0
malloc-128 128 23 380 282 0 126 51584 0
malloc-256 256 106 89 171 0 62 49920 0
32 Bucket 256 61 134 869 0 62 49920 0
DIRHASH 1024 34 14 34 0 16 49152 0
NAMEI 1024 0 48 12096 0 16 49152 0
malloc-1024 1024 3 45 530 0 16 49152 0
syncache 168 0 264 5 0 254 44352 0
da_ccb 544 0 70 1487 0 16 38080 0
pcpu-8 8 4284 324 4312 0 254 36864 0
udp_inpcb 408 6 84 128 0 30 36720 0
malloc-64 64 7 560 14430 0 254 36288 0
malloc-64 64 30 537 46 0 254 36288 0
malloc-64 64 182 385 939 0 254 36288 0
malloc-64 64 63 504 1076 0 254 36288 0
malloc-128 128 20 259 79 0 126 35712 0
malloc-128 128 6 273 36 0 126 35712 0
malloc-128 128 117 162 577 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
malloc-384 384 70 20 415 0 30 34560 0
malloc-384 384 62 28 62 0 30 34560 0
malloc-256 256 33 102 437 0 62 34560 0
malloc-256 256 33 102 83 0 62 34560 0
malloc-256 256 42 93 811 0 62 34560 0
malloc-256 256 11 124 267 0 62 34560 0
malloc-2048 2048 9 7 26 0 8 32768 0
malloc-2048 2048 2 14 26 0 8 32768 0
malloc-2048 2048 2 14 11 0 8 32768 0
malloc-2048 2048 4 12 4 0 8 32768 0
malloc-1024 1024 2 30 42 0 16 32768 0
malloc-1024 1024 18 14 870 0 16 32768 0
malloc-512 512 2 62 2 0 30 32768 0
malloc-512 512 2 62 17 0 30 32768 0
malloc-512 512 2 62 49 0 30 32768 0
malloc-512 512 1 63 11 0 30 32768 0
malloc-512 512 3 61 4 0 30 32768 0
pcpu-64 64 496 16 496 0 254 32768 0
clpbuf 2624 0 12 73 0 4 31488 0
VMSPACE 584 23 26 758 0 16 28616 0
sctp_laddr 48 0 588 4 0 254 28224 0
16 Bucket 144 45 151 350 0 62 28224 0
4 Bucket 48 7 581 12 0 254 28224 0
TURNSTILE 136 129 60 129 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
malloc-8192 8192 3 0 3 0 1 24576 0
malloc-4096 4096 3 3 19 0 2 24576 0
pipe 736 7 26 282 0 16 24288 0
ertt_txseginfo 40 0 606 614 0 254 24240 0
PWD 40 10 596 99 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
Files 80 74 226 6520 0 126 24000 0
8 Bucket 80 42 258 297 0 126 24000 0
tcp_inpcb 1304 3 15 7 0 8 23472 0
ripcb 376 1 59 4 0 30 22560 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 129 127 129 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
malloc-64 64 3 312 3 0 254 20160 0
malloc-32 32 22 608 77 0 254 20160 0
malloc-32 32 104 526 803 0 254 20160 0
malloc-32 32 247 383 322 0 254 20160 0
malloc-32 32 121 509 4014 0 254 20160 0
malloc-32 32 76 554 251 0 254 20160 0
malloc-32 32 16 614 20 0 254 20160 0
2 Bucket 32 50 580 308 0 254 20160 0
kenv 258 17 43 1063 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
udplite_inpcb 408 0 36 1 0 30 14688 0
malloc-16 16 23 727 79 0 254 12000 0
malloc-16 16 10 740 15 0 254 12000 0
malloc-16 16 21 729 69 0 254 12000 0
malloc-16 16 42 708 25056 0 254 12000 0
malloc-16 16 22 728 1235 0 254 12000 0
malloc-16 16 7 743 9 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-4096 4096 0 2 3 0 2 8192 0
malloc-4096 4096 1 1 1 0 2 8192 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
tcp_rack_map 128 0 0 0 0 126 0 0
tcp_bbr_pcb 896 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1152 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 240 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 152 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 112 0 0 0 0 126 0 0
skbuff 1808 0 0 0 0 8 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 152 0 0 0 0 62 0 0
rl_entry 48 0 0 0 0 254 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-512 512 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
HEAD commit: 9ab96b38215e tests/unix_seqpacket: re-enable stress test f..
git tree: freebsd-src
dashboard link: https://syzkaller.appspot.com/bug?extid=7b0b20cf2c672c181d98
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=13271f74580000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=1095539b980000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+7b0b20...@syzkaller.appspotmail.com
cpuid = 0
time = 1746483879
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe00575f20d0
kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe00575f2230
vpanic() at vpanic+0x257/frame 0xfffffe00575f23f0
panic() at panic+0xb5/frame 0xfffffe00575f24b0
sorele_locked() at sorele_locked+0x43c/frame 0xfffffe00575f24f0
uipc_sendfile_wait() at uipc_sendfile_wait+0x4b9/frame 0xfffffe00575f2610
vn_sendfile() at vn_sendfile+0xcc8/frame 0xfffffe00575f2b70
sendfile() at sendfile+0x332/frame 0xfffffe00575f2d10
amd64_syscall() at amd64_syscall+0x4af/frame 0xfffffe00575f2f30
fast_syscall_common() at fast_syscall_common+0xf8/frame 0xfffffe00575f2f30
--- syscall (0, FreeBSD ELF64, syscall), rip = 0x23435a, rsp = 0x82241ff78, rbp = 0x82241ffc0 ---
KDB: enter: panic
[ thread pid 773 tid 100116 ]
Stopped at kdb_enter+0x6e: movq $0,0x25be6a7(%rip)
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rcx 0xfffffe00033eee30
db>
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs 0x20
ds 0x3b
es 0x3b
fs 0x13
gs 0x1b
ss 0x28
rax 0x12
rdx 0xdffff7c000000000
rbx 0xffffffff827af9c0 .str.27
rsp 0xfffffe00575f2210
rbp 0xfffffe00575f2230
rsi 0
rdi 0xffffffff830004c0 panicstr
r8 0
r9 0xffffffff
r10 0
r11 0xfffffe005489fc60
r9 0xffffffff
r10 0
r12 0xfffffe0054909740
r13 0xfffffffffffffffe
r14 0xffffffff827af9c0 .str.27
r15 0
rip 0xffffffff815fdaee kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x25be6a7(%rip)
db> show proc
Process 773 (syz-executor1826383) at 0xfffffe00548d8040:
r14 0xffffffff827af9c0 .str.27
r15 0
rip 0xffffffff815fdaee kdb_enter+0x6e
rflags 0x46
kdb_enter+0x6e: movq $0,0x25be6a7(%rip)
db> show proc
state: NORMAL
uid: 0 gids: 0, 0, 5
parent: pid 771 at 0xfffffe0008008060
uid: 0 gids: 0, 0, 5
ABI: FreeBSD ELF64
flag: 0x10004080 flag2: 0
arguments: ./syz-executor1826383537
reaper: 0xfffffe0008007040 reapsubtree: 1
sigparent: 20
vmspace: 0xfffffe00548b6db0
sigparent: 20
(map 0xfffffe00548b6db0)
(map.pmap 0xfffffe00548b6e50)
(pmap 0xfffffe00548b6ec0)
threads: 3
100102 Run CPU 1 syz-executor1826383
100116 Run CPU 0 syz-executor1826383
100117 RunQ syz-executor1826383
db> ps
pid ppid pgrp uid state wmesg wchan cmd
773 771 771 0 R (threaded) syz-executor1826383
pid ppid pgrp uid state wmesg wchan cmd
100102 Run CPU 1 syz-executor1826383
100116 Run CPU 0 syz-executor1826383
100117 RunQ syz-executor1826383
771 769 771 0 Ss pause 0xfffffe0008008110 csh
769 682 769 0 Ss select 0xfffffe00585e3940 sshd
748 1 748 0 Ss+ ttyin 0xfffffe0058a7fcb0 getty
747 1 747 0 Ss+ ttyin 0xfffffe0058e40cb0 getty
746 1 746 0 Ss+ ttyin 0xfffffe0058e410b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe0058e414b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe0058e418b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe0058e41cb0 getty
742 1 742 0 Ss+ ttyin 0xfffffe0058e420b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe0058e424b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe0058e428b0 getty
738 1 18 0 S+ piperd 0xfffffe006bc4a8a0 logger
747 1 747 0 Ss+ ttyin 0xfffffe0058e40cb0 getty
746 1 746 0 Ss+ ttyin 0xfffffe0058e410b0 getty
745 1 745 0 Ss+ ttyin 0xfffffe0058e414b0 getty
744 1 744 0 Ss+ ttyin 0xfffffe0058e418b0 getty
743 1 743 0 Ss+ ttyin 0xfffffe0058e41cb0 getty
742 1 742 0 Ss+ ttyin 0xfffffe0058e420b0 getty
741 1 741 0 Ss+ ttyin 0xfffffe0058e424b0 getty
740 1 740 0 Ss+ ttyin 0xfffffe0058e428b0 getty
737 736 18 0 S+ nanslp 0xffffffff83b9d500 sleep
736 1 18 0 S+ wait 0xfffffe0008024000 sh
686 1 686 0 Ss nanslp 0xffffffff83b9d501 cron
682 1 682 0 Ss select 0xfffffe0058e266c0 sshd
495 1 495 0 Ss select 0xfffffe0058e26740 syslogd
424 1 424 0 Ss select 0xfffffe00585e80c0 devd
423 1 423 65 Ss select 0xfffffe00585e3d40 dhclient
338 1 338 0 Ss select 0xfffffe00585e3e40 dhclient
335 1 335 0 Ss select 0xfffffe0058e26840 dhclient
17 0 0 0 DL syncer 0xffffffff83cbada0 [syncer]
16 0 0 0 DL vlruwt 0xfffffe0008026040 [vnlru]
17 0 0 0 DL syncer 0xffffffff83cbada0 [syncer]
15 0 0 0 DL (threaded) [bufdaemon]
100080 D psleep 0xffffffff83cb9360 [bufdaemon]
100085 D - 0xffffffff83002140 [bufspacedaemon-0]
100080 D psleep 0xffffffff83cb9360 [bufdaemon]
100095 D sdflush 0xfffffe0058e3f8e8 [/ worker]
9 0 0 0 DL psleep 0xffffffff83d04380 [vmdaemon]
8 0 0 0 DL (threaded) [pagedaemon]
100078 D psleep 0xffffffff83cea2f8 [dom0]
100081 D launds 0xffffffff83cea304 [laundry: dom0]
100082 D umarcl 0xffffffff81dcda80 [uma]
7 0 0 0 DL - 0xffffffff8391acd0 [rand_harvestq]
6 0 0 0 DL pftm 0xffffffff8485c850 [pf purge]
8 0 0 0 DL (threaded) [pagedaemon]
100078 D psleep 0xffffffff83cea2f8 [dom0]
100081 D launds 0xffffffff83cea304 [laundry: dom0]
100082 D umarcl 0xffffffff81dcda80 [uma]
7 0 0 0 DL - 0xffffffff8391acd0 [rand_harvestq]
5 0 0 0 DL waiting 0xffffffff845a16c0 [sctp_iterator]
exclusive sx so_snd_sx (so_snd_sx) r = 0 (0xfffffe006bce8580) locked @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c:4838
db> show malloc
Type InUse MemUse Requests
pf_hash 6 12804K 6
linker 376 5063K 486
Type InUse MemUse Requests
pf_hash 6 12804K 6
tcp_hpts 7 4801K 7
devbuf 4188 4324K 4213
sysctloid 34854 2053K 34929
vtbuf 24 1968K 46
newblk 1940 1509K 1974
kobj 331 1324K 495
vfscache 3 1025K 3
pcb 23 669K 42
inodedep 51 531K 72
ufs_quota 1 512K 1
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vfs_hash 1 512K 1
callout 2 512K 2
intr 4 472K 4
vnet_data 2 224K 2
acpitask 1 224K 1
KTRACE 100 200K 100
acpitask 1 224K 1
acpica 1674 184K 54426
subproc 96 181K 830
vmem 5 144K 6
tidhash 3 141K 3
pagedep 14 132K 18
tidhash 3 141K 3
tfo_ccache 1 128K 1
IP reass 1 128K 1
sem 4 106K 4
IP reass 1 128K 1
DEVFS1 105 105K 114
gtaskqueue 18 98K 18
bus 997 82K 5063
mtx_pool 3 74K 3
syncache 1 68K 1
NFSD srvcache 3 68K 3
module 521 66K 521
bus 997 82K 5063
mtx_pool 3 74K 3
syncache 1 68K 1
NFSD srvcache 3 68K 3
ddb_capture 1 64K 1
temp 18 37K 1566
hostcache 1 32K 1
shm 1 32K 1
umtx 256 32K 256
kdtrace 157 32K 892
DEVFS3 124 31K 134
msg 4 30K 4
kbdmux 6 28K 6
DEVFS_RULE 56 20K 56
kbdmux 6 28K 6
BPF 10 18K 10
ufs_mount 4 17K 5
proc 3 17K 3
proc 3 17K 3
tty 16 16K 16
ithread 90 15K 90
bus-sc 34 15K 1647
ithread 90 15K 90
eventhandler 163 14K 163
kenv 95 12K 95
ifaddr 30 12K 32
kenv 95 12K 95
GEOM 61 11K 477
routetbl 50 11K 176
CAM queue 5 11K 1528
rman 82 10K 437
rpc 8 9K 8
bmsafemap 2 9K 40
devstat 4 9K 4
UART 12 9K 12
ksem 1 8K 1
UART 12 9K 12
shmfd 1 8K 1
pfs_vncache 1 8K 1
audit_evclass 239 8K 301
taskqueue 69 8K 69
audit_evclass 239 8K 301
plimit 17 7K 322
sglist 6 7K 6
CAM DEV 3 6K 510
cred 23 6K 274
CAM DEV 3 6K 510
pfs_nodes 22 6K 22
ufs_dirhash 24 5K 24
UMA 266 5K 266
dirrem 17 5K 28
ifnet 3 5K 3
vt 11 5K 11
memdesc 1 4K 1
MCA 32 4K 32
filedesc 1 4K 1
memdesc 1 4K 1
MCA 32 4K 32
evdev 4 4K 4
acpisem 28 4K 28
diradd 26 4K 37
ether_multi 40 4K 50
lltable 11 4K 11
pf_ifnet 5 3K 6
in6_multi 25 3K 25
terminal 11 3K 11
session 20 3K 31
kqueue 40 3K 776
pwddesc 40 3K 774
acpidev 20 3K 20
hhook 8 3K 10
clone 9 3K 9
uidinfo 3 3K 8
hhook 8 3K 10
clone 9 3K 9
proc-args 62 3K 1696
local_apic 1 2K 1
io_apic 1 2K 1
ipsec-saq 2 2K 2
selfd 27 2K 29383
io_apic 1 2K 1
ipsec-saq 2 2K 2
Unitno 28 2K 42
CAM XPT 22 2K 543
lockf 15 2K 22
toponodes 6 2K 6
ipsecpolicy 2 2K 2
msi 9 2K 9
ipsecpolicy 2 2K 2
netlink 2 2K 30
softdep 1 1K 1
sahead 1 1K 1
secasvar 1 1K 1
vnodemarker 2 1K 8
sahead 1 1K 1
secasvar 1 1K 1
NFSD session 1 1K 1
select 7 1K 29
CAM periph 4 1K 271
ipsec 3 1K 3
indirdep 3 1K 3
ipsec 3 1K 3
nhops 6 1K 6
pfil 6 1K 6
isadev 6 1K 6
mount 16 1K 89
pci_link 10 1K 10
sctp_ifa 5 1K 6
crypto 4 1K 4
ip6ndp 4 1K 5
encap_export_host 12 1K 12
osd 8 1K 23
newdirblk 4 1K 8
mkdir 4 1K 16
in_multi 2 1K 4
cdev 2 1K 2
lkpikmalloc 8 1K 9
CC Mem 3 1K 7
lkpikmalloc 8 1K 9
chacha20random 1 1K 1
biobuf 1 1K 1
inpcbpolicy 10 1K 140
biobuf 1 1K 1
sctp_ifn 2 1K 6
mld 2 1K 2
igmp 2 1K 2
vnodes 1 1K 1
NFSD lckfile 1 1K 1
NFSD V4client 1 1K 1
DEVFSP 4 1K 9
NFSD V4client 1 1K 1
DEVFS 9 1K 10
CAM SIM 2 1K 2
feeder 7 1K 7
tcpfunc 3 1K 3
CAM SIM 2 1K 2
feeder 7 1K 7
loginclass 3 1K 7
prison 6 1K 6
cryptodev 2 1K 49
nexusdev 8 1K 8
apmdev 1 1K 1
atkbddev 2 1K 2
procdesc 1 1K 6
apmdev 1 1K 1
atkbddev 2 1K 2
pmchooks 1 1K 1
CAM path 4 1K 1034
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
soname 4 1K 3328
CAM dev queue 2 1K 2
CAM I/O Scheduler 1 1K 1
filecaps 4 1K 66
sctp_vrf 1 1K 1
vnet 1 1K 1
sendfile 1 1K 2
pmc 1 1K 1
entropy 2 1K 35
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
freework 1 1K 26
entropy 2 1K 35
acpiintr 1 1K 1
cpus 2 1K 2
vnet_data_free 1 1K 1
Per-cpu 1 1K 1
p1003.1b 1 1K 1
pf_table 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_osfp 0 0K 0
pf_rule 0 0K 0
pf_altq 0 0K 0
pf_krule_item 0 0K 0
pf_temp 0 0K 0
tcp_pcm_rack 0 0K 0
tcp_do_rack 0 0K 0
tcp_fsb_rack 0 0K 0
ipcomp 0 0K 0
esp 0 0K 0
ah 0 0K 0
sctp_mcore 0 0K 0
esp 0 0K 0
ah 0 0K 0
sctp_socko 0 0K 0
sctp_iter 0 0K 4
sctp_mvrf 0 0K 0
sctp_timw 0 0K 0
sctp_cpal 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_athm 0 0K 0
sctp_cmsg 0 0K 0
sctp_stre 0 0K 0
sctp_athi 0 0K 0
sctp_atky 0 0K 0
sctp_atcl 0 0K 0
sctp_a_it 0 0K 4
sctp_aadr 0 0K 0
sctp_stro 0 0K 0
sctp_stri 0 0K 0
sctp_map 0 0K 0
mqdata 0 0K 0
filemon 0 0K 0
sentinel 0 0K 0
jfsync 0 0K 0
jtrunc 0 0K 0
sbdep 0 0K 2
jfsync 0 0K 0
jtrunc 0 0K 0
jsegdep 0 0K 0
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freefile 0 0K 9
jseg 0 0K 0
jfreefrag 0 0K 0
jfreeblk 0 0K 0
jnewblk 0 0K 0
jmvref 0 0K 0
jremref 0 0K 0
jaddref 0 0K 0
freedep 0 0K 0
freeblks 0 0K 25
freefrag 0 0K 21
allocindir 0 0K 0
ip6_msource 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
frag6 0 0K 0
ip6_moptions 0 0K 0
in6_mfilter 0 0K 0
tcplog 0 0K 0
tcp_hwpace 0 0K 0
LRO 0 0K 0
tcp_hwpace 0 0K 0
ip_msource 0 0K 0
ip_moptions 0 0K 0
in_mfilter 0 0K 0
ipid 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
tun 0 0K 0
80211scan 0 0K 0
80211ratectl 0 0K 0
80211power 0 0K 0
80211nodeie 0 0K 0
80211node 0 0K 0
80211mesh_gt 0 0K 0
80211mesh_rt 0 0K 0
80211perr 0 0K 0
80211prep 0 0K 0
80211preq 0 0K 0
80211dfs 0 0K 0
80211crypto 0 0K 0
80211vap 0 0K 0
iflib 0 0K 0
vlan 0 0K 0
gif 0 0K 0
ifdescr 0 0K 0
zlib 0 0K 19
ifdescr 0 0K 0
fadvise 0 0K 0
VN POLL 0 0K 0
statfs 0 0K 195
namei_tracker 0 0K 0
export_host 0 0K 0
cl_savebuf 0 0K 28
export_host 0 0K 0
aio 0 0K 0
lio 0 0K 0
acl 0 0K 0
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
iov 0 0K 14738
mbuf_tag 0 0K 0
ktls 0 0K 0
accf 0 0K 0
pts 0 0K 0
timerfd 0 0K 0
ioctlops 0 0K 86
eventfd 0 0K 0
Witness 0 0K 0
stack 0 0K 0
sbuf 0 0K 288
stack 0 0K 0
firmware 0 0K 0
compressor 0 0K 0
SWAP 0 0K 0
sysctltmp 0 0K 649
compressor 0 0K 0
SWAP 0 0K 0
sysctl 0 0K 3
ekcd 0 0K 0
dumper 0 0K 0
rctl 0 0K 0
cache 0 0K 0
kcovinfo 0 0K 0
ekcd 0 0K 0
dumper 0 0K 0
rctl 0 0K 0
cache 0 0K 0
prison_racct 0 0K 0
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
raid_data 0 0K 72
Fail Points 0 0K 0
sigio 0 0K 1
filedesc_to_leader 0 0K 0
pwd 0 0K 0
tty console 0 0K 0
boottrace 0 0K 0
isofs_node 0 0K 0
isofs_mount 0 0K 0
tr_raid5_data 0 0K 0
tr_raid1e_data 0 0K 0
tr_raid1_data 0 0K 0
tr_raid0_data 0 0K 0
tr_concat_data 0 0K 0
md_sii_data 0 0K 0
md_promise_data 0 0K 0
md_nvidia_data 0 0K 0
md_jmicron_data 0 0K 0
md_intel_data 0 0K 0
md_ddf_data 0 0K 0
mbuf 256 8579 1083 33889 0 254 2473472 0
BUF TRIE 152 300 11504 1032 0 62 1794208 0
malloc-384 384 4145 55 4156 0 30 1612800 0
malloc-128 128 11450 144 11474 0 126 1484032 0
malloc-4096 4096 334 2 577 0 2 1376256 0
UMA Slabs 0 112 10861 5 10861 0 126 1216992 0
mbuf_cluster 2048 508 0 508 0 254 1040384 0
malloc-65536 65536 14 1 17 0 1 983040 0
vmem btag 56 15582 81 15582 0 254 877128 0
RADIX NODE 152 3964 139 23147 0 62 623656 0
FFS inode 1168 516 16 525 0 8 621376 0
socket 1024 20 488 1317 0 254 520192 0
lkpicurr 168 2 3094 2 0 62 520128 0
pbuf 2624 0 198 0 0 2 519552 0
malloc-256 256 1961 34 2050 0 62 510720 0
malloc-64 64 3828 519 4498 0 254 278208 0
VNODE 440 546 57 557 0 30 265320 0
256 Bucket 2048 111 17 1015 0 8 262144 0
VM OBJECT 264 921 69 12696 0 30 261360 0
malloc-2048 2048 107 13 348 0 8 245760 0
THREAD 1824 116 12 117 0 8 233472 0
malloc-16 16 14377 123 14440 0 254 232000 0
DEVCTL 1024 0 220 123 0 0 225280 0
malloc-4096 4096 46 4 780 0 2 204800 0
UMA Zones 768 238 1 238 0 16 183552 0
malloc-32 32 5309 361 5719 0 254 181440 0
malloc-128 128 1209 186 25592 0 126 178560 0
lkpimm 56 1 3095 1 0 254 173376 0
unpcb 320 9 507 1160 0 254 165120 0
FFS2 dinode 256 516 54 525 0 62 145920 0
malloc-65536 65536 0 2 46 0 1 131072 0
malloc-65536 65536 0 2 110 0 1 131072 0
malloc-65536 65536 2 0 2 0 1 131072 0
malloc-32768 32768 4 0 4 0 1 131072 0
malloc-1024 1024 116 12 282 0 16 131072 0
malloc-32768 32768 4 0 4 0 1 131072 0
mbuf_packet 256 0 508 117 0 254 130048 0
S VFS Cache 104 983 187 1022 0 126 121680 0
MAP ENTRY 96 877 383 39333 0 126 120960 0
FPU_save_area 832 118 26 131 0 16 119808 0
ksiginfo 112 37 1007 52 0 126 116928 0
malloc-2048 2048 6 50 1038 0 8 114688 0
malloc-128 128 603 172 3857 0 126 99200 0
malloc-128 128 622 153 1137 0 126 99200 0
UMA Kegs 384 224 9 224 0 30 89472 0
128 Bucket 1024 43 40 240 0 16 84992 0
malloc-16384 16384 5 0 6 0 1 81920 0
malloc-8192 8192 8 2 91 0 1 81920 0
PROC 1376 39 16 773 0 8 75680 0
malloc-4096 4096 14 4 221 0 2 73728 0
g_bio 408 0 180 5028 0 30 73440 0
malloc-64 64 734 337 1724 0 254 68544 0
malloc-64 64 555 516 30970 0 254 68544 0
malloc-65536 65536 1 0 1 0 1 65536 0
malloc-65536 65536 0 1 8 0 1 65536 0
malloc-32768 32768 0 2 11 0 1 65536 0
malloc-32768 32768 0 2 120 0 1 65536 0
malloc-32768 32768 2 0 2 0 1 65536 0
malloc-8192 8192 8 0 9 0 1 65536 0
malloc-256 256 171 84 822 0 62 65280 0
malloc-256 256 161 94 203 0 62 65280 0
filedesc0 1072 40 16 774 0 8 60032 0
malloc-4096 4096 11 3 494 0 2 57344 0
64 Bucket 512 62 42 1224 0 30 53248 0
malloc-128 128 23 380 282 0 126 51584 0
malloc-256 256 106 89 171 0 62 49920 0
32 Bucket 256 61 134 869 0 62 49920 0
DIRHASH 1024 34 14 34 0 16 49152 0
NAMEI 1024 0 48 12096 0 16 49152 0
malloc-16384 16384 1 2 191 0 1 49152 0
malloc-1024 1024 26 22 34 0 16 49152 0
malloc-1024 1024 3 45 530 0 16 49152 0
syncache 168 0 264 5 0 254 44352 0
da_ccb 544 0 70 1487 0 16 38080 0
pcpu-8 8 4284 324 4312 0 254 36864 0
udp_inpcb 408 6 84 128 0 30 36720 0
malloc-64 64 7 560 14430 0 254 36288 0
malloc-64 64 30 537 46 0 254 36288 0
malloc-64 64 182 385 939 0 254 36288 0
malloc-64 64 63 504 1076 0 254 36288 0
malloc-128 128 20 259 79 0 126 35712 0
malloc-128 128 6 273 36 0 126 35712 0
malloc-128 128 117 162 577 0 126 35712 0
routing nhops 256 10 125 17 0 62 34560 0
ttyoutq 256 72 63 160 0 62 34560 0
malloc-384 384 59 31 62 0 30 34560 0
malloc-384 384 70 20 415 0 30 34560 0
malloc-384 384 62 28 62 0 30 34560 0
malloc-256 256 33 102 437 0 62 34560 0
malloc-256 256 33 102 83 0 62 34560 0
malloc-256 256 42 93 811 0 62 34560 0
malloc-256 256 11 124 267 0 62 34560 0
malloc-32768 32768 1 0 1 0 1 32768 0
malloc-2048 2048 0 16 12 0 8 32768 0
malloc-2048 2048 9 7 26 0 8 32768 0
malloc-2048 2048 2 14 26 0 8 32768 0
malloc-2048 2048 2 14 11 0 8 32768 0
malloc-2048 2048 4 12 4 0 8 32768 0
malloc-1024 1024 2 30 42 0 16 32768 0
malloc-1024 1024 18 14 870 0 16 32768 0
malloc-1024 1024 2 30 6 0 16 32768 0
malloc-1024 1024 4 28 4 0 16 32768 0
malloc-512 512 8 56 118 0 30 32768 0
malloc-1024 1024 4 28 4 0 16 32768 0
malloc-512 512 2 62 2 0 30 32768 0
malloc-512 512 2 62 17 0 30 32768 0
malloc-512 512 2 62 49 0 30 32768 0
malloc-512 512 1 63 11 0 30 32768 0
malloc-512 512 3 61 4 0 30 32768 0
pcpu-64 64 496 16 496 0 254 32768 0
ttyinq 160 135 65 300 0 62 32000 0
PGRP 120 20 244 31 0 126 31680 0
clpbuf 2624 0 12 73 0 4 31488 0
VMSPACE 584 23 26 758 0 16 28616 0
sctp_laddr 48 0 588 4 0 254 28224 0
16 Bucket 144 45 151 350 0 62 28224 0
4 Bucket 48 7 581 12 0 254 28224 0
TURNSTILE 136 129 60 129 0 62 25704 0
cpuset 200 7 121 7 0 62 25600 0
malloc-8192 8192 3 0 3 0 1 24576 0
malloc-4096 4096 3 3 19 0 2 24576 0
pipe 736 7 26 282 0 16 24288 0
ertt_txseginfo 40 0 606 614 0 254 24240 0
PWD 40 10 596 99 0 254 24240 0
rtentry 168 13 131 17 0 62 24192 0
Files 80 74 226 6520 0 126 24000 0
8 Bucket 80 42 258 297 0 126 24000 0
tcp_inpcb 1304 3 15 7 0 8 23472 0
malloc-384 384 12 48 12 0 30 23040 0
malloc-384 384 2 58 346 0 30 23040 0
ripcb 376 1 59 4 0 30 22560 0
Mountpoints 2816 2 6 2 0 4 22528 0
SLEEPQUEUE 88 129 127 129 0 126 22528 0
hostcache 64 1 314 1 0 254 20160 0
ertt 72 3 277 7 0 126 20160 0
malloc-64 64 3 312 3 0 254 20160 0
malloc-32 32 22 608 77 0 254 20160 0
malloc-32 32 104 526 803 0 254 20160 0
malloc-32 32 247 383 322 0 254 20160 0
malloc-32 32 121 509 4014 0 254 20160 0
malloc-32 32 76 554 251 0 254 20160 0
malloc-32 32 16 614 20 0 254 20160 0
2 Bucket 32 50 580 308 0 254 20160 0
vmem 1856 2 7 2 0 8 16704 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 1 1 27 0 1 16384 0
epoch_record pcpu 256 4 60 4 0 62 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-16384 16384 1 0 1 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-8192 8192 0 2 19 0 1 16384 0
malloc-8192 8192 2 0 2 0 1 16384 0
malloc-2048 2048 2 6 2 0 8 16384 0
malloc-1024 1024 0 16 1 0 16 16384 0
malloc-512 512 3 29 8 0 30 16384 0
SMR CPU 32 8 503 8 0 254 16352 0
malloc-16 16 482 518 3352 0 254 16000 0
kenv 258 17 43 1063 0 30 15480 0
mqnode 416 3 33 3 0 30 14976 0
udplite_inpcb 408 0 36 1 0 30 14688 0
SMR SHARED 24 8 503 8 0 254 12264 0
malloc-32 32 19 359 38 0 254 12096 0
KNOTE 160 0 75 8 0 62 12000 0
malloc-32 32 19 359 38 0 254 12096 0
malloc-16 16 23 727 79 0 254 12000 0
malloc-16 16 10 740 15 0 254 12000 0
malloc-16 16 21 729 69 0 254 12000 0
malloc-16 16 42 708 25056 0 254 12000 0
malloc-16 16 22 728 1235 0 254 12000 0
malloc-16 16 7 743 9 0 254 12000 0
malloc-384 384 0 30 1 0 30 11520 0
malloc-384 384 1 29 2 0 30 11520 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 0 2 4 0 2 8192 0
malloc-8192 8192 1 0 1 0 1 8192 0
malloc-4096 4096 0 2 3 0 2 8192 0
malloc-4096 4096 1 1 1 0 2 8192 0
pcpu-16 16 8 504 8 0 254 8192 0
vtnet_tx_hdr 24 0 334 6836 0 254 8016 0
UMA Slabs 1 176 8 14 8 0 62 3872 0
KMAP ENTRY 96 12 27 14 0 0 3744 0
FFS1 dinode 128 0 0 0 0 126 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 152 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 256 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf UDP mappings 104 0 0 0 0 126 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 384 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_pcb 1088 0 0 0 0 8 0 0
ada_ccb 272 0 0 0 0 30 0 0
swblk 136 0 0 0 0 62 0 0
swpctrie 152 0 0 0 0 62 0 0
cdg_qdiffsample 16 0 0 0 0 254 0 0
pf state scrubs 40 0 0 0 0 254 0 0
pf frag entries 40 0 0 0 0 254 0 0
pf frags 256 0 0 0 0 62 0 0
pf table entries 160 0 0 0 0 254 0 0
pf table entry counters 64 0 0 0 0 254 0 0
pf UDP mappings 104 0 0 0 0 126 0 0
pf source nodes 152 0 0 0 0 254 0 0
pf state keys 88 0 0 0 0 126 0 0
pf states 384 0 0 0 0 254 0 0
pf tags 104 0 0 0 0 126 0 0
pf mtags 184 0 0 0 0 62 0 0
tcp_rack_map 128 0 0 0 0 126 0 0
tcp_bbr_pcb 896 0 0 0 0 16 0 0
tcp_bbr_map 128 0 0 0 0 126 0 0
tfo_ccache_entries 80 0 0 0 0 126 0 0
tfo 4 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
ipq 56 0 0 0 0 254 0 0
sackhole 32 0 0 0 0 254 0 0
sctp_asconf_ack 48 0 0 0 0 254 0 0
sctp_asconf 40 0 0 0 0 254 0 0
sctp_stream_msg_out 112 0 0 0 0 254 0 0
sctp_readq 152 0 0 0 0 254 0 0
sctp_chunk 152 0 0 0 0 254 0 0
sctp_raddr 736 0 0 0 0 254 0 0
sctp_asoc 2256 0 0 0 0 254 0 0
sctp_ep 1152 0 0 0 0 254 0 0
tcp_log_id_node 120 0 0 0 0 126 0 0
tcp_log_id_bucket 176 0 0 0 0 62 0 0
tcp_log 416 0 0 0 0 254 0 0
tcpreass 48 0 0 0 0 254 0 0
IPsec SA lft_c 16 0 0 0 0 254 0 0
itimer 352 0 0 0 0 30 0 0
AIOLIO 272 0 0 0 0 30 0 0
AIOCB 552 0 0 0 0 16 0 0
AIO 208 0 0 0 0 62 0 0
mqnotifier 216 0 0 0 0 62 0 0
mvdata 64 0 0 0 0 254 0 0
mqueue 248 0 0 0 0 62 0 0
TMPFS node 240 0 0 0 0 62 0 0
NCLNODE 608 0 0 0 0 16 0 0
LTS VFS Cache 360 0 0 0 0 30 0 0
L VFS Cache 320 0 0 0 0 30 0 0
STS VFS Cache 144 0 0 0 0 62 0 0
cryptop 280 0 0 0 0 30 0 0
linux_dma_object 32 0 0 0 0 254 0 0
linux_dma_pctrie 152 0 0 0 0 62 0 0
IOMMU_MAP_ENTRY 112 0 0 0 0 126 0 0
skbuff 1808 0 0 0 0 8 0 0
mbuf_jumbo_16k 16384 0 0 0 0 254 0 0
mbuf_jumbo_9k 9216 0 0 0 0 254 0 0
audit_record 1280 0 0 0 0 8 0 0
domainset 40 0 0 0 0 254 0 0
MAC labels 40 0 0 0 0 254 0 0
vnpbuf 2624 0 0 0 0 16 0 0
nfspbuf 2624 0 0 0 0 4 0 0
swwbuf 2624 0 0 0 0 2 0 0
swrbuf 2624 0 0 0 0 4 0 0
umtx_shm 88 0 0 0 0 126 0 0
umtx pi 96 0 0 0 0 126 0 0
rangeset pctrie nodes 152 0 0 0 0 62 0 0
rl_entry 48 0 0 0 0 254 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-65536 65536 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-32768 32768 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-16384 16384 0 0 0 0 1 0 0
malloc-512 512 0 0 0 0 30 0 0
pcpu-32 32 0 0 0 0 254 0 0
pcpu-4 4 0 0 0 0 254 0 0
fakepg 104 0 0 0 0 126 0 0
UMA Hash 256 0 0 0 0 62 0 0
---
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
Reply all
Reply to author
Forward
0 new messages