syzbot

 sign-in | mailing list | source | docs
🐞 Open [132] 🐞 Fixed [269] 🐞 Invalid [576] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

kernel: double fault trap, code=0 (4)

Status: fixed on 2021/01/09 22:01
Reported-by: syzbot+a43ace363f1b663238f8@syzkaller.appspotmail.com
Fix commit: c11d76984715 Syzkaller has found a stack overflow in socket splicing. Broadcast packets were resent through simplex broadcast delivery and socket splicing. Although there is an M_LOOP check in somove(9), it did not take effect. if_input_local() cleared the M_BCAST and M_MCAST flags with m_resethdr(). As if_input_local() is used for broadcast and multicast delivery, it was a mistake to delete them. Keep the M_BCAST and M_MCAST mbuf flags when packets are reinjected into the network stack. Reported-by: syzbot+a43ace363f1b663238f8@syzkaller.appspotmail.com OK anton@; discussed with claudio@
First crash: 1471d, last: 1214d
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
openbsd kernel: double fault trap, code=0 (2) syz 2 1637d 1637d 0/3 closed as invalid on 2020/02/21 15:02
openbsd kernel: double fault trap, code=0 (3) C 69 1504d 1513d 3/3 fixed on 2020/03/12 12:20
openbsd kernel: double fault trap, code=0 1 1805d 1805d 0/3 auto-closed as invalid on 2019/10/25 08:51
Last patch testing requests (2)
Created Duration User Patch Repo Result
2021/01/03 08:53 15m anton@basename.se https://github.com/mptre/openbsd-src splice OK
2020/04/18 08:55 17m anton@basename.se https://github.com/mptre/openbsd-src netinet OK

Sample crash report:
login: kernel: double fault trap, code=0
Stopped at      pool_get+0x26:  callq   __sanitizer_cov_trace_pc+0x4
ddb> 
ddb> set $lines = 0
ddb> set $maxwidth = 0
ddb> show panic
the kernel did not panic
ddb> trace
pool_get(ffffffff8259ed90,2) at pool_get+0x26 sys/kern/subr_pool.c:561
m_copym(fffffd806bc22c00,0,3b9aca00,2) at m_copym+0x174 m_get sys/kern/uipc_mbuf.c:250 [inline]
m_copym(fffffd806bc22c00,0,3b9aca00,2) at m_copym+0x174 sys/kern/uipc_mbuf.c:667
ether_resolve(ffff80000017a2a8,fffffd806bc22c00,fffffd805e561080,fffffd805e542310,ffff80001d7c11e8) at ether_resolve+0x49f sys/net/if_ethersubr.c:227
ether_output(ffff80000017a2a8,fffffd806bc22c00,fffffd805e561080,fffffd805e542310) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:310 [inline]
ether_output(ffff80000017a2a8,fffffd806bc22c00,fffffd805e561080,fffffd805e542310) at ether_output+0x47 sys/net/if_ethersubr.c:339
ip_output(fffffd806bc22c00,fffffd805e4faa00,fffffd805e561070,0,0,fffffd805e561000) at ip_output+0x10d4 sys/netinet/ip_output.c:468
udp_output(fffffd805e561000,fffffd806bc22c00,0,0) at udp_output+0x58b sys/netinet/udp_usrreq.c:1008
somove(fffffd805dafb7d8,2) at somove+0xf61 sys/kern/uipc_socket.c:1610
sorwakeup(fffffd805dafb7d8) at sorwakeup+0x79 sys/kern/uipc_socket.c:1659
udp_sbappend(fffffd805e561000,fffffd806bc22c00,fffffd806bc22ce0,0,18,fffffd806bc22cf8) at udp_sbappend+0x366 sys/netinet/udp_usrreq.c:635
udp_input(ffff80001d7c1868,ffff80001d7c1874,11,2) at udp_input+0x10d8
ip_deliver(ffff80001d7c1868,ffff80001d7c1874,11,2) at ip_deliver+0x2e3 sys/netinet/ip_input.c:668
ip_ours(ffff80001d7c1868,ffff80001d7c1874,2,0) at ip_ours+0x4fe sys/netinet/ip_input.c:563
ip_input_if(ffff80001d7c1868,ffff80001d7c1874,4,0,ffff80000017a2a8) at ip_input_if+0x571
ipv4_input(ffff80000017a2a8,fffffd806bc22c00) at ipv4_input+0x48 sys/netinet/ip_input.c:215
if_input_local(ffff80000017a2a8,fffffd806bc22c00,2) at if_input_local+0xf9 sys/net/if.c:776
ether_resolve(ffff80000017a2a8,fffffd806bc22a00,fffffd805e561080,fffffd805e542310,ffff80001d7c19b8) at ether_resolve+0x4c2 sys/net/if_ethersubr.c:228
ether_output(ffff80000017a2a8,fffffd806bc22a00,fffffd805e561080,fffffd805e542310) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:310 [inline]
ether_output(ffff80000017a2a8,fffffd806bc22a00,fffffd805e561080,fffffd805e542310) at ether_output+0x47 sys/net/if_ethersubr.c:339
ip_output(fffffd806bc22a00,fffffd805e4faa00,fffffd805e561070,0,0,fffffd805e561000) at ip_output+0x10d4 sys/netinet/ip_output.c:468
udp_output(fffffd805e561000,fffffd806bc22a00,0,0) at udp_output+0x58b sys/netinet/udp_usrreq.c:1008
somove(fffffd805dafb7d8,2) at somove+0xf61 sys/kern/uipc_socket.c:1610
sorwakeup(fffffd805dafb7d8) at sorwakeup+0x79 sys/kern/uipc_socket.c:1659
udp_sbappend(fffffd805e561000,fffffd806bc22a00,fffffd806bc22ae0,0,18,fffffd806bc22af8) at udp_sbappend+0x366 sys/netinet/udp_usrreq.c:635
udp_input(ffff80001d7c2038,ffff80001d7c2044,11,2) at udp_input+0x10d8
ip_deliver(ffff80001d7c2038,ffff80001d7c2044,11,2) at ip_deliver+0x2e3 sys/netinet/ip_input.c:668
ip_ours(ffff80001d7c2038,ffff80001d7c2044,2,0) at ip_ours+0x4fe sys/netinet/ip_input.c:563
ip_input_if(ffff80001d7c2038,ffff80001d7c2044,4,0,ffff80000017a2a8) at ip_input_if+0x571
ipv4_input(ffff80000017a2a8,fffffd806bc22a00) at ipv4_input+0x48 sys/netinet/ip_input.c:215
if_input_local(ffff80000017a2a8,fffffd806bc22a00,2) at if_input_local+0xf9 sys/net/if.c:776
ether_resolve(ffff80000017a2a8,fffffd805e2f0700,fffffd805e561080,fffffd805e542310,ffff80001d7c2188) at ether_resolve+0x4c2 sys/net/if_ethersubr.c:228
ether_output(ffff80000017a2a8,fffffd805e2f0700,fffffd805e561080,fffffd805e542310) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:310 [inline]
ether_output(ffff80000017a2a8,fffffd805e2f0700,fffffd805e561080,fffffd805e542310) at ether_output+0x47 sys/net/if_ethersubr.c:339
ip_output(fffffd805e2f0700,fffffd805e4faa00,fffffd805e561070,0,0,fffffd805e561000) at ip_output+0x10d4 sys/netinet/ip_output.c:468
udp_output(fffffd805e561000,fffffd805e2f0700,0,0) at udp_output+0x58b sys/netinet/udp_usrreq.c:1008
somove(fffffd805dafb7d8,2) at somove+0xf61 sys/kern/uipc_socket.c:1610
sorwakeup(fffffd805dafb7d8) at sorwakeup+0x79 sys/kern/uipc_socket.c:1659
udp_sbappend(fffffd805e561000,fffffd805e2f0700,fffffd805e2f07e0,0,18,fffffd805e2f07f8) at udp_sbappend+0x366 sys/netinet/udp_usrreq.c:635
udp_input(ffff80001d7c2808,ffff80001d7c2814,11,2) at udp_input+0x10d8
ip_deliver(ffff80001d7c2808,ffff80001d7c2814,11,2) at ip_deliver+0x2e3 sys/netinet/ip_input.c:668
ip_ours(ffff80001d7c2808,ffff80001d7c2814,2,0) at ip_ours+0x4fe sys/netinet/ip_input.c:563
ip_input_if(ffff80001d7c2808,ffff80001d7c2814,4,0,ffff80000017a2a8) at ip_input_if+0x571
ipv4_input(ffff80000017a2a8,fffffd805e2f0700) at ipv4_input+0x48 sys/netinet/ip_input.c:215
if_input_local(ffff80000017a2a8,fffffd805e2f0700,2) at if_input_local+0xf9 sys/net/if.c:776
ether_resolve(ffff80000017a2a8,fffffd805e4fa900,fffffd805e561080,fffffd805e542310,ffff80001d7c2958) at ether_resolve+0x4c2 sys/net/if_ethersubr.c:228
ether_output(ffff80000017a2a8,fffffd805e4fa900,fffffd805e561080,fffffd805e542310) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:310 [inline]
ether_output(ffff80000017a2a8,fffffd805e4fa900,fffffd805e561080,fffffd805e542310) at ether_output+0x47 sys/net/if_ethersubr.c:339
ip_output(fffffd805e4fa900,fffffd805e4faa00,fffffd805e561070,0,0,fffffd805e561000) at ip_output+0x10d4 sys/netinet/ip_output.c:468
udp_output(fffffd805e561000,fffffd805e4fa900,0,0) at udp_output+0x58b sys/netinet/udp_usrreq.c:1008
somove(fffffd805dafb7d8,2) at somove+0xf61 sys/kern/uipc_socket.c:1610
sorwakeup(fffffd805dafb7d8) at sorwakeup+0x79 sys/kern/uipc_socket.c:1659
udp_sbappend(fffffd805e561000,fffffd805e4fa900,fffffd805e4fa9e0,0,18,fffffd805e4fa9f8) at udp_sbappend+0x366 sys/netinet/udp_usrreq.c:635
udp_input(ffff80001d7c2fd8,ffff80001d7c2fe4,11,2) at udp_input+0x10d8
ip_deliver(ffff80001d7c2fd8,ffff80001d7c2fe4,11,2) at ip_deliver+0x2e3 sys/netinet/ip_input.c:668
ip_ours(ffff80001d7c2fd8,ffff80001d7c2fe4,2,0) at ip_ours+0x4fe sys/netinet/ip_input.c:563
ip_input_if(ffff80001d7c2fd8,ffff80001d7c2fe4,4,0,ffff80000017a2a8) at ip_input_if+0x571
ipv4_input(ffff80000017a2a8,fffffd805e4fa900) at ipv4_input+0x48 sys/netinet/ip_input.c:215
if_input_local(ffff80000017a2a8,fffffd805e4fa900,2) at if_input_local+0xf9 sys/net/if.c:776
ether_resolve(ffff80000017a2a8,fffffd805e390d00,fffffd805e561080,fffffd805e542310,ffff80001d7c3128) at ether_resolve+0x4c2 sys/net/if_ethersubr.c:228
ether_output(ffff80000017a2a8,fffffd805e390d00,fffffd805e561080,fffffd805e542310) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:310 [inline]
ether_output(ffff80000017a2a8,fffffd805e390d00,fffffd805e561080,fffffd805e542310) at ether_output+0x47 sys/net/if_ethersubr.c:339
ip_output(fffffd805e390d00,fffffd805e4faa00,fffffd805e561070,0,0,fffffd805e561000) at ip_output+0x10d4 sys/netinet/ip_output.c:468
udp_output(fffffd805e561000,fffffd805e390d00,0,0) at udp_output+0x58b sys/netinet/udp_usrreq.c:1008
somove(fffffd805dafb7d8,2) at somove+0xf61 sys/kern/uipc_socket.c:1610
sorwakeup(fffffd805dafb7d8) at sorwakeup+0x79 sys/kern/uipc_socket.c:1659
udp_sbappend(fffffd805e561000,fffffd805e390d00,fffffd805e390de0,0,18,fffffd805e390df8) at udp_sbappend+0x366 sys/netinet/udp_usrreq.c:635
udp_input(ffff80001d7c37a8,ffff80001d7c37b4,11,2) at udp_input+0x10d8
ip_deliver(ffff80001d7c37a8,ffff80001d7c37b4,11,2) at ip_deliver+0x2e3 sys/netinet/ip_input.c:668
ip_ours(ffff80001d7c37a8,ffff80001d7c37b4,2,0) at ip_ours+0x4fe sys/netinet/ip_input.c:563
ip_input_if(ffff80001d7c37a8,ffff80001d7c37b4,4,0,ffff80000017a2a8) at ip_input_if+0x571
ipv4_input(ffff80000017a2a8,fffffd805e390d00) at ipv4_input+0x48 sys/netinet/ip_input.c:215
if_input_local(ffff80000017a2a8,fffffd805e390d00,2) at if_input_local+0xf9 sys/net/if.c:776
ether_resolve(ffff80000017a2a8,fffffd805e390c00,fffffd805e561080,fffffd805e542310,ffff80001d7c38f8) at ether_resolve+0x4c2 sys/net/if_ethersubr.c:228
ether_output(ffff80000017a2a8,fffffd805e390c00,fffffd805e561080,fffffd805e542310) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:310 [inline]
ether_output(ffff80000017a2a8,fffffd805e390c00,fffffd805e561080,fffffd805e542310) at ether_output+0x47 sys/net/if_ethersubr.c:339
ip_output(fffffd805e390c00,fffffd805e4faa00,fffffd805e561070,0,0,fffffd805e561000) at ip_output+0x10d4 sys/netinet/ip_output.c:468
udp_output(fffffd805e561000,fffffd805e390c00,0,0) at udp_output+0x58b sys/netinet/udp_usrreq.c:1008
somove(fffffd805dafb7d8,2) at somove+0xf61 sys/kern/uipc_socket.c:1610
sorwakeup(fffffd805dafb7d8) at sorwakeup+0x79 sys/kern/uipc_socket.c:1659
udp_sbappend(fffffd805e561000,fffffd805e390c00,fffffd805e390ce0,0,18,fffffd805e390cf8) at udp_sbappend+0x366 sys/netinet/udp_usrreq.c:635
udp_input(ffff80001d7c3f78,ffff80001d7c3f84,11,2) at udp_input+0x10d8
ip_deliver(ffff80001d7c3f78,ffff80001d7c3f84,11,2) at ip_deliver+0x2e3 sys/netinet/ip_input.c:668
ip_ours(ffff80001d7c3f78,ffff80001d7c3f84,2,0) at ip_ours+0x4fe sys/netinet/ip_input.c:563
ip_input_if(ffff80001d7c3f78,ffff80001d7c3f84,4,0,ffff80000017a2a8) at ip_input_if+0x571
ipv4_input(ffff80000017a2a8,fffffd805e390c00) at ipv4_input+0x48 sys/netinet/ip_input.c:215
if_input_local(ffff80000017a2a8,fffffd805e390c00,2) at if_input_local+0xf9 sys/net/if.c:776
ether_resolve(ffff80000017a2a8,fffffd805e390600,fffffd805e561080,fffffd805e542310,ffff80001d7c40c8) at ether_resolve+0x4c2 sys/net/if_ethersubr.c:228
ether_output(ffff80000017a2a8,fffffd805e390600,fffffd805e561080,fffffd805e542310) at ether_output+0x47 ether_encap sys/net/if_ethersubr.c:310 [inline]
ether_output(ffff80000017a2a8,fffffd805e390600,fffffd805e561080,fffffd805e542310) at ether_output+0x47 sys/net/if_ethersubr.c:339
ip_output(fffffd805e390600,fffffd805e4faa00,fffffd805e561070,0,0,fffffd805e561000) at ip_output+0x10d4 sys/netinet/ip_output.c:468
udp_output(fffffd805e561000,fffffd805e390600,0,0) at udp_output+0x58b sys/netinet/udp_usrreq.c:1008
somove(fffffd805dafb7d8,2) at somove+0xf61 sys/kern/uipc_socket.c:1610
sorwakeup(fffffd805dafb7d8) at sorwakeup+0x79 sys/kern/uipc_socket.c:1659
sorflush(fffffd805dafb7d8) at sorflush+0x69 sys/kern/uipc_socket.c:1122
soshutdown(fffffd805dafb7d8,2) at soshutdown+0x7b sys/kern/uipc_socket.c:1097
sys_shutdown(ffff80001d7a74f0,ffff80001d7c4678,ffff80001d7c46c0) at sys_shutdown+0x63 sys/kern/uipc_syscalls.c:913
syscall(ffff80001d7c4740) at syscall+0x507 sys/arch/amd64/amd64/trap.c:570
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7fffff5680, count: -91
ddb> show registers
rdi               0xffffffff8259ed90    mbpool
rsi                              0x2
rbp               0xffff80001d7c1090
rbx                              0x2
rdx                       0x3b9aca00
rcx                              0x2
rax                                0
r8                0xffff80001d7c11e8
r9                               0x1
r10               0xd03d3e2678cc3c3d
r11               0x21bcb9d3b2c6ca2d
r12                              0x1
r13                                0
r14               0xffffffff8259ed90    mbpool
r15                              0x2
rip               0xffffffff81be24b6    pool_get+0x26
cs                               0x8
rflags                       0x10286    __ALIGN_SIZE+0xf286
rsp               0xffff80001d7c1000
ss                              0x10
pool_get+0x26:  callq   __sanitizer_cov_trace_pc+0x4
ddb> show proc
PROC (syz-executor4063) pid=10593 stat=onproc
    flags process=2<EXEC,8ORPHAN> proc=0
    pri=50, usrpri=50, nice=20
    forw=0xffffffffffffffff, list=0xffff80001d7a79d0,0xffff80001d7a7290
    process=0xffff8000ffff83b0 user=0xffff80001d7bf000, vmspace=0xfffffd806bc0a880
    estcpu=0, cpticks=0, pctcpu=0.0
    user=0, sys=0, intr=0
ddb> ps
   PID     TID   PPID    UID  S       FLAGS  WAIT          COMMAND
 66493  382082      0      0  3     0x14200  bored         sosplice
*98885   10593  41012      0  7         0x2                syz-executor4063
 41012  395185  76824      0  3    0x10008a  pause         ksh
 76824  186071  48787      0  3        0x92  select        sshd
 18842  121248      1      0  3    0x100083  ttyin         getty
 48787  491985      1      0  3        0x80  select        sshd
 26628  487399  54106     73  3    0x100090  kqread        syslogd
 54106  374205      1      0  3    0x100082  netio         syslogd
 84179  434613      1     77  3    0x100090  poll          dhclient
 19568  205371      1      0  3        0x80  poll          dhclient
 80036  178254      0      0  3     0x14200  bored         smr
 79528  166973      0      0  2     0x14200                zerothread
 97735    9675      0      0  3     0x14200  aiodoned      aiodoned
 39757  231287      0      0  3     0x14200  syncer        update
 66587  150793      0      0  3     0x14200  cleaner       cleaner
 21148  312412      0      0  3     0x14200  reaper        reaper
 24489  152249      0      0  3     0x14200  pgdaemon      pagedaemon
 45427  452143      0      0  3     0x14200  bored         crynlk
 69863  516110      0      0  3     0x14200  bored         crypto
  2730  143834      0      0  3  0x40014200  acpi0         acpi0
 43809  309895      0      0  3     0x14200  bored         softnet
 38612  231265      0      0  3     0x14200  bored         systqmp
 40109  196140      0      0  3     0x14200  bored         systq
 57716  210237      0      0  3  0x40014200  bored         softclock
 42149   81211      0      0  3  0x40014200                idle0
     1  123040      0      0  3        0x82  wait          init
     0       0     -1      0  3     0x10200  scheduler     swapper
ddb> show all locks
No such command
ddb> show malloc
           Type InUse  MemUse  HighUse   Limit  Requests Type Lim
         devbuf  9440   6319K    6320K  78643K     10537        0
            pcb    13      8K       8K  78643K        13        0
         rtable    61      1K       2K  78643K       118        0
         ifaddr    24      7K       7K  78643K        24        0
       counters    19     16K      16K  78643K        19        0
       ioctlops     0      0K       2K  78643K        13        0
          mount     1      1K       1K  78643K         1        0
         vnodes  1182     74K      74K  78643K      1187        0
      UFS quota     1     32K      32K  78643K         1        0
      UFS mount     5     36K      36K  78643K         5        0
            shm     2      1K       1K  78643K         2        0
         VM map     2      0K       0K  78643K         2        0
            sem     2      0K       0K  78643K         2        0
        dirhash    12      2K       2K  78643K        12        0
           ACPI  1794    195K     288K  78643K     12646        0
      file desc     1      0K       0K  78643K         1        0
           proc    47     38K      46K  78643K       278        0
    NFS srvsock     1      0K       0K  78643K         1        0
     NFS daemon     1     16K      16K  78643K         1        0
       in_multi    11      0K       0K  78643K        11        0
    ether_multi     1      0K       0K  78643K         1        0
    ISOFS mount     1     32K      32K  78643K         1        0
  MSDOSFS mount     1     16K      16K  78643K         1        0
           ttys    19     95K      95K  78643K        19        0
           exec     0      0K       1K  78643K       151        0
        pagedep     1      8K       8K  78643K         1        0
       inodedep     1     32K      32K  78643K         1        0
         newblk     1      0K       0K  78643K         1        0
        VM swap     7     26K      26K  78643K         7        0
       UVM amap    55      2K       3K  78643K       699        0
       UVM aobj     2      2K       2K  78643K         2        0
        memdesc     1      4K       4K  78643K         1        0
    crypto data     1      1K       1K  78643K         1        0
            NDP     3      0K       0K  78643K         3        0
           temp    18   3029K    3093K  78643K      1417        0
         kqueue     2      2K       2K  78643K         2        0
      SYN cache     2     16K      16K  78643K         2        0
ddb> show all pools
Name      Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
arp         64        2    0        0     1     0     1     1     0     8    0
rtpcb       80       15    0       13     1     0     1     1     0     8    0
rtentry    112       23    0        1     1     0     1     1     0     8    0
unpcb      120       27    0       19     1     0     1     1     0     8    0
syncache   264        5    0        5     1     0     1     1     0     8    1
tcpcb      544        8    0        5     1     0     1     1     0     8    0
inpcb      280       24    0       17     1     0     1     1     0     8    0
art_heap8  4096       1    0        0     1     0     1     1     0     8    0
art_heap4  256       96    0        0     6     0     6     6     0     8    0
art_table   32       97    0        0     1     0     1     1     0     8    0
art_node    16       22    0        2     1     0     1     1     0     8    0
dirhash    1024      17    0        0     3     0     3     3     0     8    0
dino1pl    128     1391    0       15    45     0    45    45     0     8    0
ffsino     240     1391    0       15    81     0    81    81     0     8    0
nchpl      144     1566    0       31    57     0    57    57     0     8    0
uvmvnodes   72     1400    0        0    26     0    26    26     0     8    0
vnodes     208     1400    0        0    74     0    74    74     0     8    0
namei      1024    3447    0     3447     1     0     1     1     0     8    1
scxspl     192     2585    0     2585     1     0     1     1     0     8    1
plimitpl   152       13    0        8     1     0     1     1     0     8    0
sigapl     424      192    0      166     4     0     4     4     0     8    0
knotepl    112        5    0        0     1     0     1     1     0     8    0
kqueuepl   144        3    0        0     1     0     1     1     0     8    0
pipelkpl    16       57    0       53     1     0     1     1     0     8    0
pipepl     120      114    0      107     1     0     1     1     0     8    0
fdescpl    432      177    0      166     2     0     2     2     0     8    0
filepl     120      827    0      781     2     0     2     2     0     8    0
lockfpl    104        5    0        4     1     0     1     1     0     8    0
lockfspl    48        3    0        2     1     0     1     1     0     8    0
sessionpl  112       17    0        9     1     0     1     1     0     8    0
pgrppl      48       17    0        9     1     0     1     1     0     8    0
ucredpl     96       47    0       40     1     0     1     1     0     8    0
zombiepl   144      166    0      166     1     0     1     1     0     8    1
processpl  920      192    0      166     4     0     4     4     0     8    0
procpl     624      192    0      166     3     0     3     3     0     8    0
sosppl     128        1    0        0     1     0     1     1     0     8    0
sockpl     400       66    0       49     2     0     2     2     0     8    0
mcl4k      4096      10    0       10     1     0     1     1     0     8    1
mcl2k      2048    5842    0     5802     9     1     8     9     0     8    2
mtagpl      80        2    0        2     1     1     0     1     0     8    0
mbufpl     256     9977    0     9919     6     1     5     6     0     8    1
bufpl      280     1754    0       66   121     0   121   121     0     8    0
anonpl      16    17557    0    16425     7     2     5     7     0   107    0
amapchunkpl 152     494    0      458     2     0     2     2     0   158    0
amappl16   192       71    0       67     1     0     1     1     0     8    0
amappl15   184        1    0        0     1     0     1     1     0     8    0
amappl14   176        1    0        1     1     1     0     1     0     8    0
amappl13   168       12    0       11     1     0     1     1     0     8    0
amappl12   160        7    0        7     1     0     1     1     0     8    1
amappl11   152       55    0       43     1     0     1     1     0     8    0
amappl10   144        2    0        0     1     0     1     1     0     8    0
amappl9    136      217    0      214     1     0     1     1     0     8    0
amappl8    128      200    0      199     1     0     1     1     0     8    0
amappl7    120       78    0       70     1     0     1     1     0     8    0
amappl6    112       13    0       12     1     0     1     1     0     8    0
amappl5    104      148    0      139     1     0     1     1     0     8    0
amappl4     96      414    0      389     1     0     1     1     0     8    0
amappl3     88       98    0       92     1     0     1     1     0     8    0
amappl2     80      714    0      664     2     0     2     2     0     8    0
amappl1     72    12232    0    11843    16     7     9    16     0     8    0
amappl      80      364    0      345     1     0     1     1     0    84    0
dma4096    4096       1    0        1     1     1     0     1     0     8    0
dma256     256        6    0        6     1     1     0     1     0     8    0
dma128     128      253    0      253     1     1     0     1     0     8    0
dma64       64        6    0        6     1     1     0     1     0     8    0
dma32       32        7    0        7     1     1     0     1     0     8    0
dma16       16       18    0       17     1     0     1     1     0     8    0
aobjpl      64        1    0        0     1     0     1     1     0     8    0
uaddrrnd    24      177    0      166     1     0     1     1     0     8    0
uaddrbest   32        2    0        0     1     0     1     1     0     8    0
uaddr       24      177    0      166     1     0     1     1     0     8    0
vmmpekpl   168     5167    0     5148     1     0     1     1     0     8    0
vmmpepl    168    25588    0    24831    48     7    41    48     0   357    6
vmsppl     272      176    0      166     1     0     1     1     0     8    0
pdppl      4096     360    0      332     5     0     5     5     0     8    0
pvpl        32    70695    0    67968    26     0    26    26     0   265    1
pmappl     200      176    0      166     1     0     1     1     0     8    0
extentpl    40       46    0       29     1     0     1     1     0     8    0
phpool     112      122    0        4     4     0     4     4     0     8    0

Crashes (493):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/04/16 00:19 openbsd 20c8eb7cf336 3f3c5574 .config console log report syz C ci-openbsd-main
2020/04/14 13:36 openbsd 25b10e5944a3 3f3c5574 .config console log report syz ci-openbsd-main
2020/12/27 13:42 openbsd 6a98cd60999d b982b3ea .config console log report ci-openbsd-setuid
2020/12/07 08:04 openbsd 14f2141b3532 57072f7b .config console log report ci-openbsd-setuid
2020/11/20 09:41 openbsd c968ca6e72d6 0767f13f .config console log report ci-openbsd-setuid
2020/08/11 06:23 openbsd 5e0cad520542 d3694ffb .config console log report ci-openbsd-setuid
2020/08/11 01:38 openbsd 5e0cad520542 d3694ffb .config console log report ci-openbsd-setuid
2020/08/10 15:46 openbsd 3c86a58ec715 7adc7b65 .config console log report ci-openbsd-setuid
2020/08/10 06:54 openbsd 3c86a58ec715 70301872 .config console log report ci-openbsd-setuid
2020/08/10 04:15 openbsd ec4d335cab8e 70301872 .config console log report ci-openbsd-setuid
2020/08/09 12:13 openbsd 97da2ad2205f f721e4a0 .config console log report ci-openbsd-setuid
2020/08/09 04:44 openbsd a395eaf7c290 f721e4a0 .config console log report ci-openbsd-setuid
2020/08/08 18:16 openbsd a395eaf7c290 f721e4a0 .config console log report ci-openbsd-setuid
2020/08/08 02:30 openbsd 42858fb0ce8a bb468f32 .config console log report ci-openbsd-setuid
2020/08/07 22:24 openbsd 42858fb0ce8a bb468f32 .config console log report ci-openbsd-setuid
2020/08/07 20:11 openbsd 42858fb0ce8a bb468f32 .config console log report ci-openbsd-setuid
2020/08/07 19:03 openbsd 42858fb0ce8a bb468f32 .config console log report ci-openbsd-multicore
2020/08/07 07:46 openbsd a17537c08dc2 cb436c69 .config console log report ci-openbsd-setuid
2020/08/07 01:02 openbsd f232436aca1c cb436c69 .config console log report ci-openbsd-setuid
2020/08/06 23:37 openbsd f232436aca1c cb436c69 .config console log report ci-openbsd-setuid
2020/08/06 19:56 openbsd f232436aca1c cb436c69 .config console log report ci-openbsd-setuid
2020/08/06 12:09 openbsd 483a0179c14f 0487ea6f .config console log report ci-openbsd-setuid
2020/08/05 22:55 openbsd 5afedbbfd181 c9cef45b .config console log report ci-openbsd-setuid
2020/08/05 13:26 openbsd 455c25c8b800 02034dac .config console log report ci-openbsd-setuid
2020/08/05 00:27 openbsd fd07ab7ef78f 43f1389d .config console log report ci-openbsd-setuid
2020/08/04 21:50 openbsd fd07ab7ef78f 43f1389d .config console log report ci-openbsd-setuid
2020/08/03 11:54 openbsd 02ddb7a22afb 63a73341 .config console log report ci-openbsd-setuid
2020/08/03 01:34 openbsd 84e8f3e59749 63a73341 .config console log report ci-openbsd-main
2020/08/02 15:51 openbsd 41d03808d33a 63a73341 .config console log report ci-openbsd-setuid
2020/08/01 18:45 openbsd 724b49ef0a35 d895b3be .config console log report ci-openbsd-setuid
2020/07/31 13:19 openbsd b3881478d863 8df85ed9 .config console log report ci-openbsd-setuid
2020/07/31 10:28 openbsd b3881478d863 8df85ed9 .config console log report ci-openbsd-setuid
2020/07/31 00:11 openbsd 0a287e03b198 8df85ed9 .config console log report ci-openbsd-setuid
2020/07/30 23:02 openbsd 0a287e03b198 8df85ed9 .config console log report ci-openbsd-setuid
2020/07/30 03:24 openbsd 511c53b12928 233283a1 .config console log report ci-openbsd-setuid
2020/07/29 07:59 openbsd 511c53b12928 19a8de55 .config console log report ci-openbsd-setuid
2020/07/25 03:51 openbsd a9f43bc31f08 0a13649c .config console log report ci-openbsd-setuid
2020/07/23 12:04 openbsd fad015d206fd 340ea530 .config console log report ci-openbsd-setuid
2020/07/23 06:28 openbsd fad015d206fd 340ea530 .config console log report ci-openbsd-setuid
2020/07/22 09:44 openbsd 12d98fe19503 21f1765e .config console log report ci-openbsd-setuid
2020/07/22 01:37 openbsd 12d98fe19503 21f1765e .config console log report ci-openbsd-setuid
2020/07/21 17:26 openbsd 38194102e48c 328906f3 .config console log report ci-openbsd-setuid
2020/07/20 20:24 openbsd bea295828719 8caeeeb7 .config console log report ci-openbsd-setuid
2020/07/16 22:47 openbsd c45df27875dd 54b3c45e .config console log report ci-openbsd-setuid
2020/07/16 06:12 openbsd e44adad9b7cd ada108d0 .config console log report ci-openbsd-setuid
2020/07/16 01:51 openbsd e44adad9b7cd ada108d0 .config console log report ci-openbsd-setuid
2020/07/15 23:25 openbsd f8fbf366cc5a ada108d0 .config console log report ci-openbsd-setuid
2020/04/14 13:14 openbsd 25b10e5944a3 3f3c5574 .config console log report ci-openbsd-main
* Struck through repros no longer work on HEAD.