syzbot


panic: vpoanp_igc:en e r i c _ b ad op

Status: closed as invalid on 2022/06/27 16:55
Reported-by: syzbot+9de53590c4a584a72d45@syzkaller.appspotmail.com
First crash: 878d, last: 878d

Sample crash report:
panic: vpoanp_igc:en e r i c _ b ad  op 
  kStopped at      db_enter+0x18:  addq    $0x8,%rsp
    TID    PID    UID     PRFLAGS     PFLAGS  CPU  COMMAND
 337891  90798      0           0          0    1  syz-executor.1
*439653  24013      0         0x2          0    0  syz-executor.0
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff825917a5) at panic+0x177 sys/kern/subr_prf.c:202
vop_generic_badop(ffff800021222e38) at vop_generic_badop+0x1b sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd80667207e8,fffffd80685e14a8) at VOP_STRATEGY+0x9b sys/kern/vfs_vops.c:628
bwrite(fffffd80685e14a8) at bwrite+0x1f0 sys/kern/vfs_bio.c:763
VOP_BWRITE(fffffd80685e14a8) at VOP_BWRITE+0x4a sys/kern/vfs_vops.c:640
ufs_mkdir(ffff8000212230d0) at ufs_mkdir+0x6b4 sys/ufs/ufs/ufs_vnops.c:1236
VOP_MKDIR(fffffd806aa71be0,ffff800021223230,ffff800021223260,ffff800021223160) at VOP_MKDIR+0xbf sys/kern/vfs_vops.c:388
domkdirat(ffff8000fffee2a8,ffffff9c,7f7ffffe86c0,1ff) at domkdirat+0x121 sys/kern/vfs_syscalls.c:3116
syscall(ffff8000212233e0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff8000212233e0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffe8730, count: 4
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports.  Insufficient info makes it difficult to find and fix bugs.
ddb{0}> 
ddb{0}> set $lines = 0
ddb{0}> set $maxwidth = 0
ddb{0}> show panic
*cpu0: vop_generic_badop
 cpu1: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/syzkaller/managers/multicore/kernel/sys/kern/kern_fork.c", line 678
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff825917a5) at panic+0x177 sys/kern/subr_prf.c:202
vop_generic_badop(ffff800021222e38) at vop_generic_badop+0x1b sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd80667207e8,fffffd80685e14a8) at VOP_STRATEGY+0x9b sys/kern/vfs_vops.c:628
bwrite(fffffd80685e14a8) at bwrite+0x1f0 sys/kern/vfs_bio.c:763
VOP_BWRITE(fffffd80685e14a8) at VOP_BWRITE+0x4a sys/kern/vfs_vops.c:640
ufs_mkdir(ffff8000212230d0) at ufs_mkdir+0x6b4 sys/ufs/ufs/ufs_vnops.c:1236
VOP_MKDIR(fffffd806aa71be0,ffff800021223230,ffff800021223260,ffff800021223160) at VOP_MKDIR+0xbf sys/kern/vfs_vops.c:388
domkdirat(ffff8000fffee2a8,ffffff9c,7f7ffffe86c0,1ff) at domkdirat+0x121 sys/kern/vfs_syscalls.c:3116
syscall(ffff8000212233e0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff8000212233e0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffe8730, count: -11
ddb{0}> show registers
rdi                                0
rsi                              0x1
rbp               0xffff800021222d60
rbx               0xffffffff8299cc5f    cpu_info_full_primary+0x2c5f
rdx                                0
rcx                                0
rax               0xffff8000fffee2a8
r8                                 0
r9                0x8080808080808080
r10               0x397b24c90b48c681
r11               0xf0a4b26afd4ca284
r12               0xffffffff8299ca60    cpu_info_full_primary+0x2a60
r13                                0
r14                                0
r15                              0x1
rip               0xffffffff810173f8    db_enter+0x18
cs                               0x8
rflags                         0x246
rsp               0xffff800021222d50
ss                                 0
db_enter+0x18:  addq    $0x8,%rsp
ddb{0}> show proc
PROC (syz-executor.0) pid=439653 stat=onproc
    flags process=2<EXEC> proc=0
    pri=17, usrpri=86, nice=20
    forw=0xffffffffffffffff, list=0xffff8000fffee548,0xffff8000fffefcf8
    process=0xffff8000ffff8858 user=0xffff80002121e000, vmspace=0xfffffd806ee42cf8
    estcpu=36, cpticks=1, pctcpu=0.0
    user=0, sys=1, intr=0
ddb{0}> ps
   PID     TID   PPID    UID  S       FLAGS  WAIT          COMMAND
 56559   35797  43135      0  2           0                syz-executor.2
 90798  337891  30155      0  7           0                syz-executor.1
 41286  444296  35725      0  2           0                syz-executor.5
 41286  144950  35725      0  2   0x4000000                syz-executor.5
 41286  137957  35725      0  2   0x4000000                syz-executor.5
 41286  507486  35725      0  2   0x4000000                syz-executor.5
 67074  103057  38337      0  2           0                syz-executor.7
 67074  471937  38337      0  2   0x4000000                syz-executor.7
   545  414435  13950      0  2           0                syz-executor.6
   545   94077  13950      0  2   0x4000000                syz-executor.6
  6955  523171  18036      0  2           0                syz-executor.4
  6955  340775  18036      0  3   0x4000080  fsleep        syz-executor.4
 63890   87125      0      0  3     0x14200  acct          acct
 38337  257113  19034      0  2       0x482                syz-executor.7
 13950  135255  19034      0  2       0x482                syz-executor.6
 92889  419453  19034      0  2         0x2                syz-executor.3
 35725  433525  19034      0  3        0x82  nanoslp       syz-executor.5
 18036  227767  19034      0  3        0x82  nanoslp       syz-executor.4
 54230  441809      0      0  3     0x14200  bored         sosplice
 60926  459719      0      0  3     0x14280  nfsidl        nfsio
 89435  161293      0      0  3     0x14280  nfsidl        nfsio
 57682  192357      0      0  3     0x14280  nfsidl        nfsio
 29582  272997      0      0  3     0x14280  nfsidl        nfsio
 50664   84865      0      0  3     0x14280  nfsidl        nfsio
 80076  443227      0      0  3     0x14280  nfsidl        nfsio
 84003   99750      0      0  3     0x14280  nfsidl        nfsio
 38631  519234      0      0  3     0x14280  nfsidl        nfsio
 32541    6839      0      0  3     0x14280  nfsidl        nfsio
 51477  167824      0      0  3     0x14280  nfsidl        nfsio
 61540  475753      0      0  3     0x14280  nfsidl        nfsio
 19744  157571      0      0  3     0x14280  nfsidl        nfsio
 69029  173798      0      0  3     0x14280  nfsidl        nfsio
 71723  474261      0      0  3     0x14280  nfsidl        nfsio
 71390  207933      0      0  3     0x14280  nfsidl        nfsio
 57654  520177      0      0  3     0x14280  nfsidl        nfsio
 48694   63082      0      0  3     0x14280  nfsidl        nfsio
 76560  484073      0      0  3     0x14280  nfsidl        nfsio
 90989  411512      0      0  3     0x14280  nfsidl        nfsio
 95973   64093      0      0  3     0x14280  nfsidl        nfsio
 43135  130764  19034      0  3        0x82  nanoslp       syz-executor.2
 30155  357454  19034      0  3        0x82  nanoslp       syz-executor.1
*24013  439653  19034      0  7         0x2                syz-executor.0
 19034  275162  22359      0  3        0x82  thrsleep      syz-fuzzer
 19034    4691  22359      0  3   0x4000082  nanoslp       syz-fuzzer
 19034  496623  22359      0  3   0x4000082  thrsleep      syz-fuzzer
 19034  404294  22359      0  3   0x4000082  thrsleep      syz-fuzzer
 19034  224231  22359      0  3   0x4000082  thrsleep      syz-fuzzer
 19034  395220  22359      0  3   0x4000082  thrsleep      syz-fuzzer
 19034    7916  22359      0  3   0x4000082  thrsleep      syz-fuzzer
 19034  225384  22359      0  3   0x4000082  thrsleep      syz-fuzzer
 19034  339073  22359      0  3   0x4000082  thrsleep      syz-fuzzer
 19034  313328  22359      0  2   0x4000082                syz-fuzzer
 22359  459465  96483      0  3    0x10008a  sigsusp       ksh
 96483   92935  63754      0  3        0x9a  kqread        sshd
 19415  165178      1      0  3    0x100083  ttyin         getty
 63754  504973      1      0  3        0x88  kqread        sshd
 90184  291787  20298     74  3   0x1100092  bpf           pflogd
 20298  211814      1      0  3        0x80  netio         pflogd
 39324  347012  92520     73  3   0x1100090  kqread        syslogd
 92520  260469      1      0  3    0x100082  netio         syslogd
  3051  214565      1      0  3    0x100080  kqread        resolvd
 56953  234582  68011     77  3    0x100092  kqread        dhcpleased
 74101  387428  68011     77  3    0x100092  kqread        dhcpleased
 68011  177725      1      0  3        0x80  kqread        dhcpleased
 52635   62068      0      0  3     0x14200  bored         smr
 84667  397110      0      0  2     0x14200                zerothread
 73589  430396      0      0  3     0x14200  aiodoned      aiodoned
 36172  506052      0      0  3     0x14200  syncer        update
 28881  473198      0      0  3     0x14200  cleaner       cleaner
 74065  169473      0      0  3     0x14200  reaper        reaper
 55193  321653      0      0  3     0x14200  pgdaemon      pagedaemon
 48060  494961      0      0  3     0x14200  bored         viomb
 41622  189563      0      0  3  0x40014200  acpi0         acpi0
 98349  428168      0      0  3  0x40014200                idle1
 60052   18317      0      0  3     0x14200  bored         softnet
 33011  242884      0      0  3     0x14200  bored         softnet
 81917  144157      0      0  3     0x14200  bored         softnet
 28953   10663      0      0  3     0x14200  bored         softnet
 25137  336034      0      0  3     0x14200  bored         systqmp
 15011  323125      0      0  3     0x14200  bored         systq
 14650  393821      0      0  2  0x40014200                softclock
 78985  252184      0      0  3  0x40014200                idle0
     1  131087      0      0  3        0x82  wait          init
     0       0     -1      0  3     0x10200  scheduler     swapper
ddb{0}> show all locks
ddb{0}> show malloc
           Type InUse  MemUse  HighUse   Limit  Requests Type Lim
         devbuf 10194   6547K    7008K  78643K     17849        0
            pcb    13     11K      12K  78643K       843        0
         rtable   246     21K      22K  78643K      1150        0
         ifaddr    92     19K      19K  78643K       336        0
         sysctl     2      0K       0K  78643K         2        0
       counters    56     35K      35K  78643K       114        0
       ioctlops     0      0K       4K  78643K      3607        0
            iov     0      0K      24K  78643K       268        0
          mount     1      1K       1K  78643K         1        0
            log     0      0K       0K  78643K         5        0
         vnodes  1401     88K      88K  78643K      3528        0
      UFS quota     1     32K      32K  78643K         1        0
      UFS mount     5     36K      36K  78643K         5        0
            shm     2      1K       5K  78643K        41        0
         VM map     2      1K       1K  78643K         2        0
            sem    21      2K       2K  78643K       148        0
        dirhash    12      2K       2K  78643K        12        0
           ACPI  1697    195K     286K  78643K     12548        0
      file desc    16     57K      85K  78643K      3880        0
          sigio     0      0K       0K  78643K       262        0
           proc    75     91K     128K  78643K      1107        0
        subproc   104      6K       6K  78643K       273        0
    NFS srvsock     1      0K       0K  78643K         1        0
     NFS daemon     1     16K      16K  78643K         1        0
    ip_moptions     0      0K       0K  78643K       193        0
       in_multi    96      6K       6K  78643K       317        0
    ether_multi     1      0K       0K  78643K        15        0
            mrt     1      0K       0K  78643K        16        0
    ISOFS mount     1     32K      32K  78643K         1        0
  MSDOSFS mount     1     16K      16K  78643K         1        0
           ttys    67    307K     307K  78643K        67        0
           exec     0      0K       2K  78643K      1667        0
            tdb     3      0K       0K  78643K         3        0
        pagedep     1      8K       8K  78643K         1        0
       inodedep     1     32K      32K  78643K         1        0
         newblk     1      0K       0K  78643K         1        0
        VM swap     7     26K      26K  78643K         7        0
       UVM amap   335    476K     477K  78643K     24695        0
       UVM aobj   131      4K       4K  78643K       134        0
        memdesc     1      4K       4K  78643K         1        0
    crypto data     1      1K       1K  78643K         1        0
    ip6_options     0      0K       0K  78643K       126        0
            NDP    13      0K       2K  78643K        87        0
           temp   143   4750K    5770K  78643K     47497        0
         kqueue    13     20K      25K  78643K       363        0
      SYN cache     2     16K      16K  78643K         2        0
ddb{0}> show all pools
Name      Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
plcache    128       22    0        0     1     0     1     1     0     8    0
rtpcb      120      391    0      388     6     5     1     3     0     8    0
rtentry    112      283    0      185     4     0     4     4     0     8    0
unpcb      136     2533    0     2518    22    21     1    10     0     8    0
syncache   296       20    0       20     7     7     0     1     0     8    0
tcpqe       32      481    0      481     3     3     0     2     0     8    0
tcpcb      736     3577    0     3567    85    76     9    18     0     8    7
arp        120       47    0       29     1     0     1     1     0     8    0
inpcb      312     5527    0     5517    40    34     6    11     0     8    5
nd6         48       69    0       44     1     0     1     1     0     8    0
pkpcb       40       17    0       17     3     3     0     1     0     8    0
kcovpl      48       21    0       13     1     0     1     1     0     8    0
ppxss      1256       3    0        3     1     0     1     1     0     8    1
pfstscr     40        2    0        1     1     0     1     1     0     8    0
pffrag     232        9    0        8     3     2     1     1     0   482    0
pffrnode    88        9    0        8     3     2     1     1     0     8    0
pffrent     40       56    0       55     4     3     1     1     0     8    0
pfosfp      40     1428    0     1428     5     5     0     5     0     8    0
pfosfpen   112     1428    0     1428    21    21     0    21     0     8    0
pfrktable  1344      33    0       20     2     0     2     2     0     8    0
pftag       88        4    0        0     1     0     1     1     0     8    0
pfqueue    264        7    0        7     2     2     0     1     0     8    0
pfstitem    24       25    0       21     1     0     1     1     0     8    0
pfstkey    112       27    0       23     1     0     1     1     0     8    0
pfstate    336       25    0       22     2     1     1     2     0     8    0
pfrule     1360     262    0      221     5     1     4     4     0     8    0
rttmr       64        3    0        3     2     2     0     1     0     8    0
art_heap8  4096       1    0        0     1     0     1     1     0     8    0
art_heap4  256     1244    0      839    38    12    26    30     0     8    0
art_table   32     1245    0      839     4     0     4     4     0     8    0
art_node    16      279    0      194     1     0     1     1     0     8    0
sysvmsgpl   40       26    0       15     1     0     1     1     0     8    0
semupl     112        7    0        7     1     1     0     1     0     8    0
semapl     112      138    0      119     1     0     1     1     0     8    0
shmpl      112      131    0        3     4     0     4     4     0     8    0
dirhash    1024      17    0        0     3     0     3     3     0     8    0
dino2pl    256     6415    0     4959    92     0    92    92     0     8    0
ffsino     272     6415    0     4959    98     0    98    98     0     8    0
nchpl      144    11785    0    10139    63     0    63    63     0     8    0
uvmvnodes   80     5926    0        0   121     0   121   121     0     8    0
vnodes     224     5926    0        0   349     0   349   349     0     8    0
namei      1024   43855    0    43854     4     3     1     2     0     8    0
percpumem   16       69    0       29     1     0     1     1     0     8    0
vcpupl     2048     154    0        0    20     0    20    20     0     8    0
vmpool     560      157    0        3    11     0    11    11     0     8    0
pfiaddrpl  120       19    0        0     1     0     1     1     0     8    0
kstatmem   264       84    0       58     2     0     2     2     0     8    0
scsiplug    72       10    0       10     2     2     0     1     0     8    0
scxspl     216    32582    0    32582    18    15     3     8     0     8    3
plimitpl   152      539    0      524     1     0     1     1     0     8    0
sigapl     424     4187    0     4119    10     2     8     9     0     8    0
futexpl     64    32542    0    32541     3     2     1     1     0     8    0
knotepl    120      395    0        0     8     0     8     8     0     8    0
kqueuepl   216      798    0      789    13     8     5     5     0     8    4
pipepl     336     1011    0      983    37    34     3    14     0     8    0
fdescpl    496     4141    0     4112     5     1     4     5     0     8    0
filepl     152    30139    0    29897    53    40    13    22     0     8    3
lockfpl    104      902    0      900     3     1     2     2     0     8    1
lockfspl    48      303    0      301     1     0     1     1     0     8    0
sessionpl  144       37    0       20     1     0     1     1     0     8    0
pgrppl      48       37    0       20     1     0     1     1     0     8    0
ucredpl     96     3523    0     3511     1     0     1     1     0     8    0
zombiepl   144     4119    0     4119     1     0     1     1     0     8    1
processpl  1064    4187    0     4119     5     0     5     5     0     8    0
procpl     672    11468    0    11385    15     6     9     9     0     8    1
srpgc       96       16    0       16     3     3     0     1     0     8    0
sosppl     168       34    0       33     5     4     1     1     0     8    0
sockpl     480     8469    0     8441   120   108    12    36     0     8    8
mcl64k     65536     25    0        0     3     0     3     3     0     8    0
mcl16k     16384     17    0        0     3     0     3     3     0     8    0
mcl12k     12288     17    0        0     2     0     2     2     0     8    0
mcl9k      9216      17    0        0     2     0     2     2     0     8    0
mcl8k      8192      17    0        0     3     0     3     3     0     8    0
mcl4k      4096      18    0        0     3     0     3     3     0     8    0
mcl2k2     2112       6    0        0     1     0     1     1     0     8    0
mcl2k      2048     346    0        0    42     0    42    42     0     8    0
mtagpl      96      447    0        0    10     0    10    10     0     8    0
mbufpl     256     8936    0        0   557     0   557   557     0     8    0
bufpl      288     9578    0     3245   453     0   453   453     0     8    0
anonpl      24   792382    0   774780   161    47   114   132     0   186    1
amapchunkpl 152   68668    0    67941    43    11    32    33     0   158    0
amappl16   200    10206    0     9636    65    34    31    43     0     8    0
amappl15   192     1354    0     1352     1     0     1     1     0     8    0
amappl14   184     1061    0     1055     1     0     1     1     0     8    0
amappl13   176      488    0      486     1     0     1     1     0     8    0
amappl12   168      155    0      148     1     0     1     1     0     8    0
amappl11   160      358    0      334     2     0     2     2     0     8    0
amappl10   152     1055    0     1048     1     0     1     1     0     8    0
amappl9    144      895    0      891     1     0     1     1     0     8    0
amappl8    136      843    0      773     3     0     3     3     0     8    0
amappl7    128      192    0      180     1     0     1     1     0     8    0
amappl6    120      690    0      671     2     1     1     2     0     8    0
amappl5    112     3773    0     3755     1     0     1     1     0     8    0
amappl4    104     2306    0     2276     2     1     1     2     0     8    0
amappl3     96    11982    0    11930     2     0     2     2     0     8    0
amappl2     88     4884    0     4822     3     0     3     3     0     8    0
amappl1     80   100860    0   100225    22     7    15    20     0     8    0
amappl      88    23892    0    23707     6     1     5     5     0    92    0
dma4096    4096       1    0        1     1     1     0     1     0     8    0
dma1024    1024       1    0        0     1     0     1     1     0     8    0
dma256     256        6    0        6     1     1     0     1     0     8    0
dma128     128      253    0      253     1     1     0     1     0     8    0
dma64       64        6    0        6     1     1     0     1     0     8    0
dma32       32        7    0        7     1     1     0     1     0     8    0
dma16       16       18    0       17     1     0     1     1     0     8    0
aobjpl      72      133    0        3     3     0     3     3     0     8    0
uaddrrnd    24     4298    0     4115     2     0     2     2     0     8    0
uaddrbest   32        2    0        0     1     0     1     1     0     8    0
uaddr       24     4298    0     4115     2     0     2     2     0     8    0
vmmpekpl   168    36524    0    36447     4     0     4     4     0     8    0
vmmpepl    168   407051    0   404142   186    47   139   158     0   357    3
vmsppl     368     4297    0     4115    18     1    17    17     0     8    0
rwobjpl     56   106477    0    98810   112     2   110   111     0     8    0
pdppl      4096    8603    0     8384   469   246   223   223     0     8    4
pvpl        32  1620582    0  1598958   300   114   186   247     0   265    2
pmappl     248     4297    0     4115    13     1    12    12     0     8    0
extentpl    40       58    0       38     1     0     1     1     0     8    0
phpool     112     1980    0      410    45     0    45    45     0     8    0
ddb{0}> machine ddbcpu 0
Invalid cpu 0
ddb{0}> trace
db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff825917a5) at panic+0x177 sys/kern/subr_prf.c:202
vop_generic_badop(ffff800021222e38) at vop_generic_badop+0x1b sys/kern/vfs_default.c:133
VOP_STRATEGY(fffffd80667207e8,fffffd80685e14a8) at VOP_STRATEGY+0x9b sys/kern/vfs_vops.c:628
bwrite(fffffd80685e14a8) at bwrite+0x1f0 sys/kern/vfs_bio.c:763
VOP_BWRITE(fffffd80685e14a8) at VOP_BWRITE+0x4a sys/kern/vfs_vops.c:640
ufs_mkdir(ffff8000212230d0) at ufs_mkdir+0x6b4 sys/ufs/ufs/ufs_vnops.c:1236
VOP_MKDIR(fffffd806aa71be0,ffff800021223230,ffff800021223260,ffff800021223160) at VOP_MKDIR+0xbf sys/kern/vfs_vops.c:388
domkdirat(ffff8000fffee2a8,ffffff9c,7f7ffffe86c0,1ff) at domkdirat+0x121 sys/kern/vfs_syscalls.c:3116
syscall(ffff8000212233e0) at syscall+0x489 mi_syscall sys/sys/syscall_mi.h:102 [inline]
syscall(ffff8000212233e0) at syscall+0x489 sys/arch/amd64/amd64/trap.c:585
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffe8730, count: -11
ddb{0}> machine ddbcpu 1

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/06/27 08:38 openbsd a5953208fc7d a371c43c .config console log report ci-openbsd-multicore panic: vpoanp_igc:en e r i c _ b ad op
* Struck through repros no longer work on HEAD.