syzbot


Fatal trap 12: page fault in sctp_ss_default_add (2)

Status: fixed on 2021/09/20 20:59
Reported-by: syzbot+aa2e3b013a48870e193d@syzkaller.appspotmail.com
Fix commit: 34b1efcea19d sctp: use a valid outstream when adding it to the scheduler
First crash: 580d, last: 580d
similar bugs (2):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
freebsd Fatal trap 12: page fault in sctp_ss_default_add 1 756d 756d 0/2 auto-closed as invalid on 2021/04/10 23:38
freebsd Fatal trap NUM: page fault in sctp_ss_default_add 1 363d 363d 0/2 closed as invalid on 2022/04/17 13:29

Sample crash report:
Fatal trap 12: page fault while in kernel mode
cpuid = 1; apic id = 01
fault virtual address	= 0xfffffe009f177010
fault code		= supervisor read data, page not present
instruction pointer	= 0x20:0xffffffff82df5f4b
stack pointer	        = 0x0:0xfffffe00b95ee540
frame pointer	        = 0x0:0xfffffe00b95ee570
code segment		= base 0x0, limit 0xfffff, type 0x1b
			= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags	= interrupt enabled, resume, IOPL = 0
current process		= 49205 (syz-executor.2)
trap number		= 12
panic: page fault
cpuid = 1
time = 220
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x47/frame 0xfffffe00b95ee190
vpanic() at vpanic+0x1cc/frame 0xfffffe00b95ee1f0
panic() at panic+0x43/frame 0xfffffe00b95ee250
trap_fatal() at trap_fatal+0x4cd/frame 0xfffffe00b95ee2d0
trap_pfault() at trap_pfault+0xdb/frame 0xfffffe00b95ee350
trap() at trap+0x398/frame 0xfffffe00b95ee470
calltrap() at calltrap+0x8/frame 0xfffffe00b95ee470
--- trap 0xc, rip = 0xffffffff82df5f4b, rsp = 0xfffffe00b95ee540, rbp = 0xfffffe00b95ee570 ---
sctp_ss_default_add() at sctp_ss_default_add+0xab/frame 0xfffffe00b95ee570
sctp_lower_sosend() at sctp_lower_sosend+0x5522/frame 0xfffffe00b95ee760
sctp_sosend() at sctp_sosend+0x49b/frame 0xfffffe00b95ee8a0
sosend() at sosend+0xc6/frame 0xfffffe00b95ee910
kern_sendit() at kern_sendit+0x33c/frame 0xfffffe00b95ee9c0
freebsd32_sendmsg() at freebsd32_sendmsg+0x270/frame 0xfffffe00b95eeab0
ia32_syscall() at ia32_syscall+0x23a/frame 0xfffffe00b95eebf0
int0x80_syscall_common() at int0x80_syscall_common+0x9c/frame 0xfbffcf78
KDB: enter: panic
[ thread pid 49205 tid 151001 ]
Stopped at      kdb_enter+0x67: movq    $0,0x164233e(%rip)
db> 
db> set $lines = 0
db> set $maxwidth = 0
db> show registers
cs                        0x20
ds                        0x3b
es                        0x3b
fs                        0x13
gs                        0x1b
ss                           0
rax                       0x12
rcx         0xfffffe0099a00000
rdx                    0x3ffff
rbx                          0
rsp         0xfffffe00b95ee170
rbp         0xfffffe00b95ee190
rsi                    0x40001
rdi         0xffffffff81132566  vprintf+0x176
r8                           0
r9          0x8080808080808080
r10         0xfffffe00b95ee060
r11              0x1ff46fff59c
r12         0xffffffff82267d50  ddb_dbbe
r13         0xffffffff81981f00
r14         0xffffffff81a759c1
r15         0xffffffff81a759c1
rip         0xffffffff811295c7  kdb_enter+0x67
rflags                0x200082  kernload+0x82
kdb_enter+0x67: movq    $0,0x164233e(%rip)
db> show proc
Process 49205 (syz-executor.2) at 0xfffff80060fa5538:
 state: NORMAL
 uid: 0  gids: 0, 0, 5
 parent: pid 828 at 0xfffff8004dc62538
 ABI: FreeBSD ELF32
 flag: 0x10080480  flag2: 0
 arguments: /root/syz-executor.2
 reaper: 0xfffff80004bdb538 reapsubtree: 1
 sigparent: 20
 vmspace: 0xfffffe009e7a6000
   (map 0xfffffe009e7a6000)
   (map.pmap 0xfffffe009e7a60c0)
   (pmap 0xfffffe009e7a6120)
 threads: 2
150466                   s                                   syz-executor.2
151001                   Run     CPU 1                       syz-executor.2
db> ps
  pid  ppid  pgrp   uid  state   wmesg   wchan               cmd
49205   828   828     0  T       (threaded)                  syz-executor.2
150466                   s                                   syz-executor.2
151001                   Run     CPU 1                       syz-executor.2
46685     1   788     0  T       uwait   0xfffff800607d9700  syz-executor.1
46678     1   788     0  T       uwait   0xfffff80060c73100  syz-executor.1
46566     1   802     0  S       uwait   0xfffff80060e78100  syz-executor.3
46565     1   802     0  S       umtxn   0xfffff80060ff9900  syz-executor.3
46564     1   802     0  T                                   syz-executor.3
46563     1   802     0  T                                   syz-executor.3
46562     1   802     0  S       uwait   0xfffff80060e78b00  syz-executor.3
46557     1   802     0  T       uwait   0xfffff800607d9300  syz-executor.3
46427     1   787     0  T                                   syz-executor.0
46426     1   787     0  T       uwait   0xfffff80060c76700  syz-executor.0
45294     1   802     0  T       uwait   0xfffff800605df900  syz-executor.3
44363     1   802     0  S       uwait   0xfffff80060e78300  syz-executor.3
44361     1   802     0  T                                   syz-executor.3
43879     1   787     0  T                                   syz-executor.0
43727     1   802     0  S       uwait   0xfffff800606ecd00  syz-executor.3
43726     1   802     0  T       uwait   0xfffff80060d05d00  syz-executor.3
43709     1   802     0  T                                   syz-executor.3
43708     1   802     0  T       uwait   0xfffff800606ec100  syz-executor.3
43307     1   788     0  T       uwait   0xfffff80060d05f00  syz-executor.1
42252     1   828     0  T                                   syz-executor.2
42242     1   828     0  T       uwait   0xfffff80060d05900  syz-executor.2
42222     1   788     0  T                                   syz-executor.1
42221     1   788     0  T       uwait   0xfffff80060c76500  syz-executor.1
42119     1   787     0  S       uwait   0xfffff800606cd900  syz-executor.0
42111     1   787     0  T       uwait   0xfffff80060d08d00  syz-executor.0
41048 41046   787     0  SV      uwait   0xfffff80073f12900  syz-executor.0
41046     1   787     0  DV      ppwait  0xfffff80060712f58  syz-executor.0
40924     1   828     0  S       uwait   0xfffff80060c76b00  syz-executor.2
40923     1   828     0  T                                   syz-executor.2
40921     1   828     0  T       uwait   0xfffff80060626b00  syz-executor.2
40890     1   787     0  S       uwait   0xfffff80073f12100  syz-executor.0
40889     1   787     0  T       uwait   0xfffff800605dd100  syz-executor.0
40888     1   787     0  T                                   syz-executor.0
40887     1   787     0  S       uwait   0xfffff800606cd100  syz-executor.0
40886     1   787     0  T       uwait   0xfffff80060c76900  syz-executor.0
40885     1   787     0  T       uwait   0xfffff800607d9500  syz-executor.0
39725     1   787     0  S       uwait   0xfffff800605dd900  syz-executor.0
39724     1   787     0  S       uwait   0xfffff800605dff00  syz-executor.0
39723     1   788     0  T                                   syz-executor.1
39719     1   788     0  T       uwait   0xfffff800605ddd00  syz-executor.1
39686     0     0     0  DL      (threaded)                  [zfskern]
134625                   D       t->zthr 0xfffff8005be32948  [arc_evict]
140705                   D       t->zthr 0xfffff8005b4d4b48  [arc_reap]
140706                   D       -       0xfffff800608d6100  [dbu_evict]
140707                   D       dbuf_ev 0xffffffff839c76e8  [dbuf_evict_thread]
140709                   D       -       0xfffff80060c79d00  [z_vdev_file_0]
140710                   D       -       0xfffff80060c79d00  [z_vdev_file_1]
140711                   D       -       0xfffff80060c79d00  [z_vdev_file_2]
140712                   D       -       0xfffff80060c79d00  [z_vdev_file_3]
140713                   D       -       0xfffff80060c79d00  [z_vdev_file_4]
140714                   D       -       0xfffff80060c79d00  [z_vdev_file_5]
140715                   D       -       0xfffff80060c79d00  [z_vdev_file_6]
140716                   D       -       0xfffff80060c79d00  [z_vdev_file_7]
140717                   D       -       0xfffff80060c79d00  [z_vdev_file_8]
140718                   D       -       0xfffff80060c79d00  [z_vdev_file_9]
140719                   D       -       0xfffff80060c79d00  [z_vdev_file_10]
140720                   D       -       0xfffff80060c79d00  [z_vdev_file_11]
140721                   D       -       0xfffff80060c79d00  [z_vdev_file_12]
140722                   D       -       0xfffff80060c79d00  [z_vdev_file_13]
140723                   D       -       0xfffff80060c79d00  [z_vdev_file_14]
140724                   D       -       0xfffff80060c79d00  [z_vdev_file_15]
140725                   D       l2arc_f 0xffffffff83985ce0  [l2arc_feed_thread]
140726                   D       -       0xfffff80060c79900  [zfsvfs]
140727                   S       zevent_ 0xffffffff839c7d88  [sysevent]
39650     1   802     0  S       uwait   0xfffff80073f12b00  syz-executor.3
39648     1   802     0  T       uwait   0xfffff800605df100  syz-executor.3
39599     1   787     0  S       uwait   0xfffff80060588900  syz-executor.0
39597     1   787     0  S       uwait   0xfffff800606cd300  syz-executor.0
39544     1   787     0  T       uwait   0xfffff80073f12700  syz-executor.0
39543     1   787     0  T       uwait   0xfffff800606cd500  syz-executor.0
39508     1   828     0  T       uwait   0xfffff80073f12300  syz-executor.2
39500     1   802     0  T                                   syz-executor.3
39492     1   802     0  T       uwait   0xfffff80073f12f00  syz-executor.3
37086     1   802     0  T       uwait   0xfffff80073f12d00  syz-executor.3
37082     1   802     0  T       uwait   0xfffff80073e80300  syz-executor.3
35217 35214   787     0  SV      uwait   0xfffff8006005a300  syz-executor.0
35214     1   787     0  DV      ppwait  0xfffff800607324e8  syz-executor.0
35134     1   788     0  T       uwait   0xfffff80060588d00  syz-executor.1
35129     1   788     0  T       uwait   0xfffff80060588b00  syz-executor.1
35128     1   788     0  T       uwait   0xfffff800606cdb00  syz-executor.1
34935     1   802     0  T                                   syz-executor.3
34934 34930   802     0  SV      uwait   0xfffff80060588f00  syz-executor.3
34932 34930   802     0  T                                   syz-executor.3
34930     1   802     0  DV      ppwait  0xfffff80060660f58  syz-executor.3
34730     1   787     0  T       uwait   0xfffff80073e80f00  syz-executor.0
34696     1   787     0  T       uwait   0xfffff80073dfdd00  syz-executor.0
33938     1   787     0  T       uwait   0xfffff8006005a100  syz-executor.0
33933     1   802     0  S       uwait   0xfffff800733e4300  syz-executor.3
33931     1   802     0  T       uwait   0xfffff800605dfb00  syz-executor.3
33927     1   802     0  T                                   syz-executor.3
33924     1   802     0  T       uwait   0xfffff80073388b00  syz-executor.3
33916     1   802     0  T                                   syz-executor.3
33909     1   802     0  T       uwait   0xfffff80073f12500  syz-executor.3
33903     1   802     0  T       uwait   0xfffff8007382d300  syz-executor.3
33899     1   802     0  T       uwait   0xfffff800605df300  syz-executor.3
33888     1   802     0  T       uwait   0xfffff800737fe900  syz-executor.3
33883     1   802     0  T       uwait   0xfffff8006005af00  syz-executor.3
33878     1   802     0  T       uwait   0xfffff800733e4100  syz-executor.3
33875     1   802     0  T       uwait   0xfffff800605df700  syz-executor.3
33873     1   802     0  T                                   syz-executor.3
33870     1   802     0  T       uwait   0xfffff8005be21900  syz-executor.3
33868     1   802     0  T       uwait   0xfffff8006005a700  syz-executor.3
33860     1   787     0  T       uwait   0xfffff80073dfdb00  syz-executor.0
33858     1   802     0  T       uwait   0xfffff80073e80700  syz-executor.3
33855     1   802     0  T       uwait   0xfffff8006005ad00  syz-executor.3
33852     1   802     0  T       uwait   0xfffff80073dfd100  syz-executor.3
33839     1   802     0  T       uwait   0xfffff80015d45100  syz-executor.3
33830     1   802     0  T       uwait   0xfffff80073e80900  syz-executor.3
33818     1   802     0  T       uwait   0xfffff800737feb00  syz-executor.3
33729     1   787     0  T       uwait   0xfffff80073dfd700  syz-executor.0
33715     1   788     0  T       uwait   0xfffff80073388300  syz-executor.1
33711     1   788     0  T                                   syz-executor.1
33694     1   802     0  S       uwait   0xfffff8006005a500  syz-executor.3
33688     1   802     0  T       uwait   0xfffff8006005a900  syz-executor.3
33684     1   802     0  T       uwait   0xfffff8007382d900  syz-executor.3
33677     1   802     0  T       uwait   0xfffff80073e80100  syz-executor.3
33670     1   802     0  T       uwait   0xfffff800733e4500  syz-executor.3
33661     1   802     0  T       uwait   0xfffff80073dfd300  syz-executor.3
33657     1   802     0  T                                   syz-executor.3
33652     1   802     0  T                                   syz-executor.3
33648     1   802     0  T       uwait   0xfffff80073dfdf00  syz-executor.3
33640     1   802     0  T       uwait   0xfffff80073e80b00  syz-executor.3
33635     1   802     0  T       uwait   0xfffff8004deed300  syz-executor.3
33627     1   802     0  T       uwait   0xfffff800737fe300  syz-executor.3
33622     1   802     0  T       uwait   0xfffff8004deed100  syz-executor.3
33614     1   802     0  T       uwait   0xfffff80073dfd900  syz-executor.3
32268     1   788     0  S       uwait   0xfffff8007382db00  syz-executor.1
32267     1   788     0  T       uwait   0xfffff800737fed00  syz-executor.1
32208     1   788     0  T       uwait   0xfffff80073388700  syz-executor.1
32207     1   788     0  T       uwait   0xfffff80073388f00  syz-executor.1
28559     1   828     0  S       uwait   0xfffff8007382df00  syz-executor.2
28551     1   828     0  T       uwait   0xfffff80073388500  syz-executor.2
28547     1   787     0  S       uwait   0xfffff800737fe100  syz-executor.0
28546     1   787     0  T       uwait   0xfffff800737fef00  syz-executor.0
28545     1   828     0  T       uwait   0xfffff80073388100  syz-executor.2
28539     1   828     0  T       uwait   0xfffff8007382dd00  syz-executor.2
28527     1   828     0  T                                   syz-executor.2
28514     1   828     0  T       uwait   0xfffff8005be21300  syz-executor.2
28492     1   787     0  S       uwait   0xfffff8005b141700  syz-executor.0
28491     1   787     0  T       uwait   0xfffff800737fe700  syz-executor.0
27599     1   828     0  S       uwait   0xfffff800737fe500  syz-executor.2
27596     1   828     0  S       uwait   0xfffff8004dc35d00  syz-executor.2
23451 23450   802     0  S       uwait   0xfffff80015de4300  syz-executor.3
23450 23448   802     0  SV      uwait   0xfffff8005be21b00  syz-executor.3
23449 23448   802     0  T                                   syz-executor.3
23448     1   802     0  DV      ppwait  0xfffff80073958f58  syz-executor.3
23355     1   828     0  T       uwait   0xfffff80015ddff00  syz-executor.2
23354     1   828     0  T       uwait   0xfffff800733e4d00  syz-executor.2
23287     1   787     0  S       uwait   0xfffff8005b141300  syz-executor.0
23286     1   787     0  T       uwait   0xfffff8005b141500  syz-executor.0
22039     1   787     0  S       uwait   0xfffff8005be21100  syz-executor.0
22038     1   787     0  T       uwait   0xfffff8004deed500  syz-executor.0
21785     1   828     0  T       uwait   0xfffff80015dd9500  syz-executor.2
21783     1   828     0  T       uwait   0xfffff8004dc35500  syz-executor.2
21694     1   828     0  T       uwait   0xfffff800733e4b00  syz-executor.2
21691     1   828     0  T       uwait   0xfffff8005be21700  syz-executor.2
21682     1   828     0  T       uwait   0xfffff8005b141100  syz-executor.2
21655     1   787     0  T                                   syz-executor.0
21651     1   787     0  T       uwait   0xfffff8005be21f00  syz-executor.0
16954     1   802     0  T       uwait   0xfffff80015e8ad00  syz-executor.3
16952     1   802     0  T       uwait   0xfffff80015dddb00  syz-executor.3
16739     1   788     0  T       uwait   0xfffff80015d45f00  syz-executor.1
16738     1   788     0  T       uwait   0xfffff8004dc35b00  syz-executor.1
16187     1 16187    65  Ss      select  0xfffff800736fcbc0  dhclient
14614     1 14614     0  Ss      select  0xfffff800739045c0  dhclient
14611     1 14611     0  Ss      select  0xfffff8004dd7dbc0  dhclient
14592     1 14592    65  Ss      select  0xfffff800734a6ec0  dhclient
12035     1   788     0  T                                   syz-executor.1
12028     1   788     0  T       uwait   0xfffff80015ddc700  syz-executor.1
12007     1 12007     0  Ss      select  0xfffff8007354b140  dhclient
12004     1 12004     0  Ss      select  0xfffff8007354b5c0  dhclient
11982     1 11982    65  Ss      select  0xfffff80073308140  dhclient
11745     1   788     0  T       uwait   0xfffff8005b0d0700  syz-executor.1
11743     1   788     0  T       uwait   0xfffff80073388900  syz-executor.1
 8579     1  8579     0  Ss      select  0xfffff8005b25d140  dhclient
 8576     1  8576     0  Ss      select  0xfffff80073308d40  dhclient
 8557     1  8557    65  Ss      select  0xfffff8007327eec0  dhclient
 8237     1   788     0  S       uwait   0xfffff8004deedf00  syz-executor.1
 8236     1   788     0  S       uwait   0xfffff8004deed700  syz-executor.1
 8235     1   788     0  S       uwait   0xfffff8004dc35300  syz-executor.1
 8231     1   788     0  T       uwait   0xfffff80015e8a700  syz-executor.1
 5691     1   828     0  T       uwait   0xfffff8005b0d0900  syz-executor.2
 5657     1   787     0  S       uwait   0xfffff8005b141d00  syz-executor.0
 5651     1   787     0  S       uwait   0xfffff8005b141f00  syz-executor.0
 5650     1   802     0  T       uwait   0xfffff8004dc35700  syz-executor.3
 5647     1   787     0  S       uwait   0xfffff8005b0d0f00  syz-executor.0
 5645     1   802     0  S       uwait   0xfffff80015ddf700  syz-executor.3
 5640     1   802     0  T                                   syz-executor.3
 5636     1   787     0  S       uwait   0xfffff80015d32d00  syz-executor.0
 5625     1   787     0  T       uwait   0xfffff80015de5300  syz-executor.0
 5622     1   788     0  S       uwait   0xfffff80015ddf900  syz-executor.1
 5617     1   788     0  S       uwait   0xfffff8005b0d0500  syz-executor.1
 5612     1   787     0  T                                   syz-executor.0
 5611     1   788     0  S       uwait   0xfffff80015ddd700  syz-executor.1
 5605     1   788     0  T       uwait   0xfffff8004deedb00  syz-executor.1
 5600     1   787     0  T       uwait   0xfffff80015de5b00  syz-executor.0
 5595     1   788     0  T       uwait   0xfffff8005b0d0100  syz-executor.1
 5590     1   787     0  T       uwait   0xfffff8005b0d0300  syz-executor.0
 5586     1   788     0  T                                   syz-executor.1
 5580     1   787     0  T       uwait   0xfffff80015ddf500  syz-executor.0
 5575     1   788     0  T       uwait   0xfffff80015dddf00  syz-executor.1
 5574     1   828     0  T                                   syz-executor.2
 5569     1   787     0  T       uwait   0xfffff80015de4100  syz-executor.0
 5564     1   788     0  T       uwait   0xfffff80015e8af00  syz-executor.1
 5329     1   787     0  T       uwait   0xfffff8004deed900  syz-executor.0
 2141     1  2141     0  Ss      select  0xfffff8004dfb3140  dhclient
 2132     1  2132     0  Ss      select  0xfffff8004df5c5c0  dhclient
 1282     1   802     0  S       uwait   0xfffff80015ddcf00  syz-executor.3
 1281     1   802     0  T       uwait   0xfffff80015d32100  syz-executor.3
 1243     1   802     0  T       uwait   0xfffff80015de5700  syz-executor.3
 1236     1   802     0  T                                   syz-executor.3
 1115     0     0     0  DL      aiordy  0xfffff8004df1ea70  [aiod4]
 1114     0     0     0  DL      aiordy  0xfffff80015dcf000  [aiod3]
 1113     0     0     0  DL      aiordy  0xfffff8004dde4000  [aiod2]
 1111     0     0     0  DL      aiordy  0xfffff8004dc5f000  [aiod1]
 1079     1   802     0  T       uwait   0xfffff80015e8a100  syz-executor.3
 1078     1   802     0  T                                   syz-executor.3
 1076     1   802     0  T       uwait   0xfffff80015ddd300  syz-executor.3
 1075     1   802     0  T       uwait   0xfffff80015dd9d00  syz-executor.3
  828   784   828     0  Ss      nanslp  0xffffffff8273f0a0  syz-executor.2
  802   784   802     0  Ss      piperd  0xfffff8004dbf3000  syz-executor.3
  788   784   788     0  Ss      piperd  0xfffff80015dd12e8  syz-executor.1
  787   784   787     0  Ss      piperd  0xfffff8004d301000  syz-executor.0
  784   782   782     0  S       (threaded)                  syz-fuzzer
100092                   S       uwait   0xfffff80015d67100  syz-fuzzer
100115                   S       uwait   0xfffff80015d67d00  syz-fuzzer
100116                   S       uwait   0xfffff80015d67f00  syz-fuzzer
100117                   S       uwait   0xfffff80015b0e100  syz-fuzzer
100118                   S       uwait   0xfffff80015dd9700  syz-fuzzer
100119                   S       uwait   0xfffff80015de4900  syz-fuzzer
100120                   S       uwait   0xfffff80015b0e300  syz-fuzzer
100122                   S       kqread  0xfffff80015dd9b00  syz-fuzzer
100713                   S       uwait   0xfffff80015d32300  syz-fuzzer
  782   780   782     0  Ss      pause   0xfffff8004d4feb20  csh
  780   694   780     0  Ss      select  0xfffff8004d417d40  sshd
  760     1   760     0  Ss+     ttyin   0xfffff80015489cb0  getty
  759     1   759     0  Ss+     ttyin   0xfffff80015b114b0  getty
  758     1   758     0  Ss+     ttyin   0xfffff80015b11cb0  getty
  757     1   757     0  Ss+     ttyin   0xfffff80015a984b0  getty
  756     1   756     0  Ss+     ttyin   0xfffff80015a98cb0  getty
  755     1   755     0  Ss+     ttyin   0xfffff80015a9c4b0  getty
  754     1   754     0  Ss+     ttyin   0xfffff80015a9ccb0  getty
  753     1   753     0  Ss+     ttyin   0xfffff80015aa04b0  getty
  752     1   752     0  Ss+     ttyin   0xfffff80015aa0cb0  getty
  698     1   698     0  Ss      nanslp  0xffffffff8273f0a0  cron
  694     1   694     0  Ss      select  0xfffff8004d44b8c0  sshd
  507     1   507     0  Ss      select  0xfffff8004d44bec0  syslogd
  436     1   436     0  Ss      select  0xfffff8004d354bc0  devd
  435     1   435    65  Ss      select  0xfffff8004d3542c0  dhclient
  350     1   350     0  Ss      select  0xfffff8004d358d40  dhclient
  347     1   347     0  Ss      select  0xfffff8004d315140  dhclient
   23     0     0     0  DL      syncer  0xffffffff8282e450  [syncer]
   22     0     0     0  DL      vlruwt  0xfffff80015afa538  [vnlru]
   21     0     0     0  RL      (threaded)                  [bufdaemon]
100081                   D       qsleep  0xffffffff8282d520  [bufdaemon]
100086                   RunQ                                [bufspacedaemon-0]
100099                   D       sdflush 0xfffff80015dc6ce8  [/ worker]
   20     0     0     0  DL      psleep  0xffffffff82855308  [vmdaemon]
   19     0     0     0  DL      (threaded)                  [pagedaemon]
100079                   D       psleep  0xffffffff82849778  [dom0]
100087                   D       launds  0xffffffff82849784  [laundry: dom0]
100088                   D       umarcl  0xffffffff815c5a50  [uma]
   18     0     0     0  DL      -       0xffffffff82573458  [rand_harvestq]
   17     0     0     0  DL      waiting 0xffffffff82e418b8  [sctp_iterator]
   16     0     0     0  DL      pftm    0xffffffff83052410  [pf purge]
   15     0     0     0  DL      -       0xffffffff8282abdc  [soaiod4]
    9     0     0     0  DL      -       0xffffffff8282abdc  [soaiod3]
    8     0     0     0  DL      -       0xffffffff8282abdc  [soaiod2]
    7     0     0     0  DL      -       0xffffffff8282abdc  [soaiod1]
    6     0     0     0  DL      (threaded)                  [cam]
100044                   D       -       0xffffffff8244ab40  [doneq0]
100045                   D       -       0xffffffff8244aac0  [async]
100078                   D       -       0xffffffff8244a990  [scanner]
   14     0     0     0  DL      seqstat 0xfffff80004437488  [sequencer 00]
    5     0     0     0  DL      crypto_ 0xfffff80004d56d80  [crypto returns 1]
    4     0     0     0  DL      crypto_ 0xfffff80004d56d30  [crypto returns 0]
    3     0     0     0  DL      crypto_ 0xffffffff82846c60  [crypto]
   13     0     0     0  DL      (threaded)                  [geom]
100035                   D       -       0xffffffff8271e8e0  [g_event]
100036                   D       -       0xffffffff8271e8e8  [g_up]
100037                   D       -       0xffffffff8271e8f0  [g_down]
    2     0     0     0  DL      (threaded)                  [KTLS]
100028                   D       -       0xfffff80004080900  [thr_0]
100029                   D       -       0xfffff80004080980  [thr_1]
   12     0     0     0  WL      (threaded)                  [intr]
100010                   I                                   [swi5: fast taskq]
100013                   I                                   [swi6: task queue]
100015                   I                                   [swi6: Giant taskq]
100030                   I                                   [swi4: clock (0)]
100031                   I                                   [swi4: clock (1)]
100032                   I                                   [swi1: netisr 0]
100033                   I                                   [swi3: vm]
100046                   I                                   [irq24: virtio_pci0]
100047                   I                                   [irq25: virtio_pci0]
100048                   I                                   [irq26: virtio_pci0]
100049                   I                                   [irq27: virtio_pci0]
100050                   I                                   [irq28: virtio_pci1]
100051                   I                                   [irq29: virtio_pci1]
100052                   I                                   [irq30: virtio_pci1]
100053                   I                                   [irq31: virtio_pci1]
100054                   I                                   [irq32: virtio_pci1]
100059                   I                                   [irq10: virtio_pci2]
100061                   I                                   [irq1: atkbd0]
100062                   I                                   [irq12: psm0]
100063                   I                                   [swi0: uart uart++]
100071                   I                                   [swi1: pf send]
100084                   I                                   [swi1: hpts]
100085                   I                                   [swi1: hpts]
   11     0     0     0  RL      (threaded)                  [idle]
100003                   Run     CPU 0                       [idle: cpu0]
100004                   CanRun                              [idle: cpu1]
    1     0     1     0  SLs     wait    0xfffff80004bdb538  [init]
   10     0     0     0  DL      audit_w 0xffffffff82847170  [audit]
    0     0     0     0  DLs     (threaded)                  [kernel]
100000                   D       swapin  0xffffffff8271ee70  [swapper]
100005                   D       -       0xfffff80004bd3500  [if_config_tqg_0]
100006                   D       -       0xfffff80004c78d00  [softirq_0]
100007                   D       -       0xfffff80004c78500  [softirq_1]
100008                   D       -       0xfffff80004c77d00  [if_io_tqg_0]
100009                   D       -       0xfffff80004c77500  [if_io_tqg_1]
100011                   D       -       0xfffff80004c76900  [kqueue_ctx taskq]
100012                   D       -       0xfffff80004c76500  [pci_hp taskq]
100014                   D       -       0xfffff80004c6dd00  [inm_free taskq]
100016                   D       -       0xfffff80004c6d500  [linuxkpi_irq_wq]
100017                   D       -       0xfffff80004c6d100  [thread taskq]
100018                   D       -       0xfffff80004c69d00  [in6m_free taskq]
100019                   D       -       0xfffff80004c69900  [aiod_kick taskq]
100020                   D       -       0xfffff80004c69500  [linuxkpi_short_wq_0]
100021                   D       -       0xfffff80004c69500  [linuxkpi_short_wq_1]
100022                   D       -       0xfffff80004c69500  [linuxkpi_short_wq_2]
100023                   D       -       0xfffff80004c69500  [linuxkpi_short_wq_3]
100024                   D       -       0xfffff80004c69100  [linuxkpi_long_wq_0]
100025                   D       -       0xfffff80004c69100  [linuxkpi_long_wq_1]
100026                   D       -       0xfffff80004c69100  [linuxkpi_long_wq_2]
100027                   D       -       0xfffff80004c69100  [linuxkpi_long_wq_3]
100034                   D       -       0xfffff80004cd7d00  [firmware taskq]
100038                   D       -       0xfffff80004cd7900  [crypto_0]
100039                   D       -       0xfffff80004cd7900  [crypto_1]
100055                   D       -       0xfffff80004cd7100  [vtnet0 rxq 0]
100056                   D       -       0xfffff800153edd00  [vtnet0 txq 0]
100057                   D       -       0xfffff800153ed900  [vtnet0 rxq 1]
100058                   D       -       0xfffff800153ed500  [vtnet0 txq 1]
100060                   D       vtbslp  0xfffff800153d0700  [virtio_balloon]
100064                   D       -       0xfffff800153ed100  [mca taskq]
100066                   D       -       0xffffffff81e225d1  [deadlkres]
100073                   D       -       0xfffff80015aaad00  [acpi_task_0]
100074                   D       -       0xfffff80015aaad00  [acpi_task_1]
100075                   D       -       0xfffff80015aaad00  [acpi_task_2]
100077                   D       -       0xfffff80004cd7500  [CAM taskq]
140699                   D       -       0xfffff800608d6d00  [system_taskq_0]
140700                   D       -       0xfffff800608d6d00  [system_taskq_1]
140701                   D       -       0xfffff800608d6900  [system_delay_taskq_]
140702                   D       -       0xfffff800608d6900  [system_delay_taskq_]
140703                   D       -       0xfffff800608d6500  [arc_prune_0]
140704                   D       -       0xfffff800608d6500  [arc_prune_1]
db> show all locks
Process 49205 (syz-executor.2) thread 0xfffffe009e927020 (151001)
exclusive sleep mutex sctp-send-tcb (tcbs) r = 0 (0xfffffe009e3faab0) locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_output.c:13125
db> show malloc
              Type        InUse        MemUse     Requests
         sctp_stro          667       189686K        18900
         sysctloid        46272        17352K        46339
           pf_hash            5        11560K            5
               pcb         1818         8669K       139469
            devbuf         4216         6982K         4245
            linker          388         6152K          683
          filedesc          370         5973K        96197
           solaris          130         4433K          200
          tcp_hpts            5         3219K            5
              kobj          326         2608K          486
           subproc          509         2217K        49481
             vtbuf           24         2064K           46
          inodedep         1357         1876K        48235
         sctp_atcl         1562         1562K        87465
            newblk           12         1038K        48521
          vfscache            3         1035K            3
         sctp_atky         2229          836K       106700
            dirrem         1348          674K        47986
            acpica         1674          649K        54806
         sctp_athm         1562          586K        87682
           callout            2          528K            2
         ufs_quota            1          520K            1
          vfs_hash            1          520K            1
          freefile         1344          504K        47860
          sctp_map         1334          501K        35654
              intr            4          480K            4
           kdtrace          612          460K       100224
               bus          986          377K         3469
              umtx          770          337K          770
               BPF           46          337K           84
            DEVFS1          108          216K          125
            module          515          194K          515
         vnet_data            1          176K            1
           tidhash            3          164K            3
           pagedep           12          142K        47991
               UMA          365          137K          365
        tfo_ccache            1          136K            1
               sem            4          120K            4
              vmem            3          112K            7
         sctp_timw          200          100K          200
            kqueue          246          100K        49283
           pwddesc          244           92K        49213
     audit_evclass          236           89K          294
          routetbl          159           81K          509
          mtx_pool            2           80K            2
              temp           35           77K        17507
          syncache            1           76K            1
               msg            4           68K            4
            ifaddr           71           67K           75
          acpitask            1           64K            1
       ddb_capture            1           64K            1
            DEVFS3          127           64K          137
       ether_multi          157           59K          177
        gtaskqueue           18           57K           18
        DEVFS_RULE           56           54K           56
              kenv           95           52K           95
      eventhandler          136           51K          136
         taskqueue           78           47K           78
           lltable           50           44K          136
           ithread           99           43K           99
              rman           84           42K          425
            DEVFSP          103           39K        10723
            KTRACE          100           38K          100
        kstat_data           17           34K           17
              proc            3           34K            3
         ufs_mount            5           34K            6
            bus-sc           33           34K         1684
           devstat            4           33K            4
         hostcache            1           32K            1
               tty           16           32K           16
               shm            1           32K            8
         in6_multi           71           31K           71
              GEOM           60           29K          493
            kbdmux            6           28K            6
              cred           26           26K          305
             ifnet            7           25K            7
               osd           65           25K         6702
            plimit           24           24K          484
          kcovinfo           64           24K           68
         CAM queue            5           21K         1528
             selfd           55           21K       656032
         pfs_nodes           20           20K           20
         proc-args           52           20K          751
       inpcbpolicy           50           19K         8266
              UART           12           18K           12
           session           35           18K           70
         bmsafemap            2           17K        48125
              ksem            1           16K         1316
               rpc            2           16K            2
             shmfd            1           16K           54
       pfs_vncache            1           16K            1
       ufs_dirhash           24           14K           24
            sglist            5           13K            5
               MCA           32           12K           32
           CAM DEV            3           12K          510
             lockf           32           12K           60
             sigio           30           12K           38
                vt           11           11K           11
           acpisem           28           11K           28
            Unitno           28           11K           51
           CAM XPT           22           11K          543
             xform           25           10K        12594
           uidinfo            3            9K           14
          pf_ifnet           10            9K           19
           memdesc            1            8K            1
         ipsec-saq            2            8K            2
             evdev            4            8K            4
           acpidev           20            8K           20
             hhook           15            8K           17
            select           19            8K           91
             mount           16            7K           90
       fpukern_ctx            3            6K            3
          sctp_ifa           15            6K           16
          terminal           11            6K           11
            ip6ndp           12            6K           15
       ipsecpolicy            2            5K            2
 encap_export_host           12            5K           12
             clone            9            5K            9
        local_apic            1            4K            1
           io_apic            1            4K            1
            sahead            1            4K            1
          secasvar            1            4K            1
             nhops            6            4K            8
          pci_link           10            4K           10
               msi            9            4K            9
             DEVFS            9            4K           10
               tun            7            4K            7
             ipsec            3            3K            3
             mkdir            8            3K        95832
          in_multi            6            3K           10
       vnodemarker            3            3K          391
            prison            8            3K            8
          nexusdev            7            3K            7
         newdirblk            7            3K        47916
            feeder            7            3K            7
          procdesc            5            3K           18
          freework            5            3K        47810
          sctp_ifn            6            3K           16
               mld            6            3K            6
              igmp            6            3K            6
         toponodes            6            3K            6
            isadev            6            3K            6
           softdep            1            2K            1
          freeblks            4            2K        47809
      NFSD session            1            2K            1
       lkpikmalloc            5            2K            6
        CAM periph            4            2K          271
            soname            5            2K        52554
          filecaps            5            2K          120
            crypto            4            2K         1526
            diradd            4            2K        48027
              pfil            4            2K            4
          CAM path            4            2K         1034
           tcpfunc            3            2K            3
        loginclass            3            2K            7
    chacha20random            1            1K            1
            vnodes            1            1K            1
              ktls            1            1K            1
              cdev            2            1K            2
             taskq            2            1K            2
        aesni_data            2            1K            2
              cpus            2            1K            2
          atkbddev            2            1K            2
     CAM dev queue            2            1K            2
           entropy            2            1K           49
           CAM SIM            2            1K            2
      NFSD lckfile            1            1K            1
     NFSD V4client            1            1K            1
            ip6opt            1            1K          191
          pmchooks            1            1K            1
          sctp_vrf            1            1K            1
            apmdev            1            1K            1
 CAM I/O Scheduler            1            1K            1
        ip_msource            1            1K            2
    vnet_data_free            1            1K            1
              vnet            1            1K            1
               iov            1            1K        42554
           Per-cpu            1            1K            1
          p1003.1b            1            1K            1
          acpiintr            1            1K            1
               pmc            1            1K            1
        ext2_mount            0            0K            0
         ext2_node            0            0K            0
      ext2_extents            0            0K            0
         sfs_nodes            0            0K            0
        zones_data            0            0K            0
        vegas data            0            0K            0
          chd data            0            0K            0
        cubic data            0            0K           23
          pf_table            0            0K            0
           pf_rule            0            0K            0
           pf_altq            0            0K            0
           pf_osfp            0            0K            0
           pf_temp            0            0K            0
        dctcp data            0            0K            0
            mqdata            0            0K            0
            tcp_do            0            0K            0
           tcp_fsb            0            0K         1487
         htcp data            0            0K            9
        sctp_mcore            0            0K            0
        sctp_socko            0            0K        34308
         sctp_iter            0            0K         1460
         sctp_mvrf            0            0K            0
         sctp_cpal            0            0K         1449
         sctp_cmsg            0            0K            0
         sctp_stre            0            0K            0
         sctp_athi            0            0K            0
         sctp_a_it            0            0K           11
         sctp_aadr            0            0K          151
         sctp_stri            0            0K         1955
          cdg data            0            0K           16
      NFSCL lckown            0            0K            0
      NFSCL client            0            0K            0
        madt_table            0            0K            2
          smartpqi            0            0K            0
       NFSCL deleg            0            0K            0
        NFSCL open            0            0K            0
       NFSCL owner            0            0K            0
            NFS fh            0            0K            0
           NFS req            0            0K            0
     NFSD usrgroup            0            0K            0
       NFSD string            0            0K            0
              iavf            0            0K            0
               ixl            0            0K            0
       NFSD V4lock            0            0K            0
      NFSD V4state            0            0K            0
     NFSD srvcache            0            0K            0
       msdosfs_fat            0            0K            0
     msdosfs_mount            0            0K            0
      msdosfs_node            0            0K            0
        ice-resmgr            0            0K            0
         ice-osdep            0            0K            0
               ice            0            0K            0
             axgbe            0            0K            0
            DEVFS4            0            0K            0
            DEVFS2            0            0K            0
            gntdev            0            0K            0
       privcmd_dev            0            0K            0
        evtchn_dev            0            0K            0
          xen_intr            0            0K            0
          xenstore            0            0K            0
         ciss_data            0            0K            0
           xen_hvm            0            0K            0
         legacydrv            0            0K            0
            qpidrv            0            0K            0
         BACKLIGHT            0            0K            0
               xnb            0            0K            0
      dmar_idpgtbl            0            0K            0
          dmar_dom            0            0K            0
          dmar_ctx            0            0K            0
              xbbd            0            0K            0
               xbd            0            0K            0
           Balloon            0            0K            0
              isci            0            0K            0
      iommu_dmamap            0            0K            0
          sysmouse            0            0K            0
     hyperv_socket            0            0K            0
           bxe_ilt            0            0K            0
            xenbus            0            0K            0
            vtfont            0            0K            0
     vm_fictitious            0            0K            0
           ath_hal            0            0K            0
            athdev            0            0K            0
           ata_pci            0            0K            0
           ata_dma            0            0K            0
       ata_generic            0            0K            0
               amr            0            0K            0
            pvscsi            0            0K            0
           scsi_da            0            0K           69
            ata_da            0            0K            0
           scsi_ch            0            0K            0
           UMAHash            0            0K            0
           scsi_cd            0            0K            0
       AHCI driver            0            0K            0
         vm_pgdata            0            0K            0
           jblocks            0            0K            0
          savedino            0            0K        38998
          sentinel            0            0K            0
            jfsync            0            0K            0
            jtrunc            0            0K            0
             sbdep            0            0K          194
           jsegdep            0            0K            0
              jseg            0            0K            0
         jfreefrag            0            0K            0
          jfreeblk            0            0K            0
           jnewblk            0            0K            0
            jmvref            0            0K            0
           jremref            0            0K            0
           jaddref            0            0K            0
           freedep            0            0K            0
          freefrag            0            0K            6
        allocindir            0            0K            0
          indirdep            0            0K           10
       allocdirect            0            0K            0
          ufs_trim            0            0K            0
           mactemp            0            0K            0
     audit_trigger            0            0K            0
 audit_pipe_presel            0            0K            0
     audit_pipeent            0            0K            0
        audit_pipe            0            0K            0
      audit_evname            0            0K            0
         audit_bsm            0            0K            0
      audit_gidset            0            0K            0
        audit_text            0            0K            0
        audit_path            0            0K            0
        audit_data            0            0K            0
        audit_cred            0            0K            0
            USBdev            0            0K            0
               USB            0            0K            0
               agp            0            0K            0
           nvme_da            0            0K            0
           acpipwr            0            0K            0
         acpi_perf            0            0K            0
          ktls_ocf            0            0K            0
            twsbuf            0            0K            0
        MLX5EEPROM            0            0K            0
        MLX5EEPROM            0            0K            0
        MLX5EEPROM            0            0K            0
        MLX5EEPROM            0            0K            0
         MLX5E_TLS            0            0K            0
        MLX5EEPROM            0            0K            0
        MLX5EEPROM            0            0K            0
        MLX5EEPROM            0            0K            0
            MLX5EN            0            0K            0
        MLX5EEPROM            0            0K            0
        MLX5EEPROM            0            0K            0
        MLX5EEPROM            0            0K            0
          MLX5DUMP            0            0K            0
        MLX5EEPROM            0            0K            0
        MLX5EEPROM            0            0K            0
          seq_file            0            0K            0
             radix            0            0K            0
               idr            0            0K            0
            lkpifw            0            0K            0
               NLM            0            0K            0
    ipsec-spdcache            0            0K            0
         ipsec-reg            0            0K            0
        ipsec-misc            0            0K            0
      ipsecrequest            0            0K            0
       ip6_msource            0            0K            0
      ip6_moptions            0            0K            0
       in6_mfilter            0            0K            0
             frag6            0            0K            0
            tcplog            0            0K            0
        tcp_hwpace            0            0K            0
      twe_commands            0            0K            0
               LRO            0            0K            0
      newreno data            0            0K            1
       ip_moptions            0            0K           31
        in_mfilter            0            0K            7
              ipid            0            0K            0
         80211scan            0            0K            0
      80211ratectl            0            0K            0
        80211power            0            0K            0
       80211nodeie            0            0K            0
         80211node            0            0K            0
      80211mesh_gt            0            0K            0
      80211mesh_rt            0            0K            0
         80211perr            0            0K            0
         80211prep            0            0K            0
         80211preq            0            0K            0
          80211dfs            0            0K            0
       80211crypto            0            0K            0
          80211vap            0            0K            0
             iflib            0            0K            0
              vlan            0            0K            0
               gif            0            0K            0
           ifdescr            0            0K            0
              zlib            0            0K            0
           fadvise            0            0K            0
           VN POLL            0            0K            0
      twa_commands            0            0K            0
            statfs            0            0K        48394
     namei_tracker            0            0K            4
       export_host            0            0K            0
        cl_savebuf            0            0K            4
       tcp_log_dev            0            0K            5
      midi buffers            0            0K            0
             mixer            0            0K            0
              ac97            0            0K            0
             hdacc            0            0K            0
              hdac            0            0K            0
              hdaa            0            0K            0
         acpicmbat            0            0K            0
       SIIS driver            0            0K            0
           CAM CCB            0            0K         4899
               PUC            0            0K            0
          ppbusdev            0            0K            0
agtiapi_MemAlloc malloc            0            0K            0
    osti_cacheable            0            0K            0
          tempbuff            0            0K            0
            biobuf            0            0K            0
              aios            0            0K           19
               lio            0            0K           24
               acl            0            0K            0
          tempbuff            0            0K            0
          mbuf_tag            0            0K          153
ag_tgt_map_t malloc            0            0K            0
ag_slr_map_t malloc            0            0K            0
lDevFlags * malloc            0            0K            0
tiDeviceHandle_t * malloc            0            0K            0
ag_portal_data_t malloc            0            0K            0
ag_device_t malloc            0            0K            0
     STLock malloc            0            0K            0
          CCB List            0            0K            0
            sr_iov            0            0K            0
               OCS            0            0K            0
               OCS            0            0K            0
              nvme            0            0K            0
               nvd            0            0K            0
            netmap            0            0K            0
            mwldev            0            0K            0
        MVS driver            0            0K            0
     CAM ccb queue            0            0K            0
          mrsasbuf            0            0K            0
          mpt_user            0            0K            0
          mps_user            0            0K            0
              accf            0            0K            0
               pts            0            0K            0
          ioctlops            0            0K         1888
           eventfd            0            0K           86
           Witness            0            0K            0
             stack            0            0K            0
            MPSSAS            0            0K            0
               mps            0            0K            0
          mpr_user            0            0K            0
            MPRSAS            0            0K            0
               mpr            0            0K            0
            mfibuf            0            0K            0
              sbuf            0            0K          288
        md_sectors            0            0K            0
          firmware            0            0K            0
        compressor            0            0K            0
           md_disk            0            0K            0
              SWAP            0            0K            0
           malodev            0            0K            0
               LED            0            0K            0
         sysctltmp            0            0K          954
            sysctl            0            0K            3
              ekcd            0            0K            0
            dumper            0            0K            0
          sendfile            0            0K            0
              rctl            0            0K            0
          ix_sriov            0            0K            0
        aacraidcam            0            0K            0
       aacraid_buf            0            0K            0
                ix            0            0K            0
            ipsbuf            0            0K            0
             cache            0            0K            0
            iirbuf            0            0K            0
      prison_racct            0            0K            0
       Fail Points            0            0K            0
filedesc_to_leader            0            0K            0
               pwd            0            0K            0
       tty console            0            0K            0
            aaccam            0            0K            0
            aacbuf            0            0K            0
              zstd            0            0K            0
            XZ_DEC            0            0K            0
            nvlist            0            0K            0
          SCSI ENC            0            0K            0
           SCSI sa            0            0K            0
         scsi_pass            0            0K            0
        isofs_node            0            0K            0
       isofs_mount            0            0K            0
     tr_raid5_data            0            0K            0
    tr_raid1e_data            0            0K            0
     tr_raid1_data            0            0K            0
     tr_raid0_data            0            0K            0
    tr_concat_data            0            0K            0
       md_sii_data            0            0K            0
   md_promise_data            0            0K            0
    md_nvidia_data            0            0K            0
   md_jmicron_data            0            0K            0
     md_intel_data            0            0K            0
       md_ddf_data            0            0K            0
         raid_data            0            0K           72
     geom_flashmap            0            0K            0
         tmpfs dir            0            0K            0
        tmpfs name            0            0K            0
       tmpfs mount            0            0K            0
           NFS FHA            0            0K            0
         newnfsmnt            0            0K            0
  newnfsclient_req            0            0K            0
   NFSCL layrecall            0            0K            0
     NFSCL session            0            0K            0
     NFSCL sockreq            0            0K            0
     NFSCL devinfo            0            0K            0
     NFSCL flayout            0            0K            0
      NFSCL layout            0            0K            0
     NFSD rollback            0            0K            0
      NFSCL diroff            0            0K            0
       NEWdirectio            0            0K            0
        NEWNFSnode            0            0K            0
         NFSCL lck            0            0K            0
db> show uma
              Zone   Size    Used    Free    Requests  Sleeps  Bucket  Total Mem    XFree
   mbuf_jumbo_page   4096    8344    1089     1104210       0     254   38637568        0
        malloc-384    384   48224      16      766485       0      30   18524160        0
       malloc-8192   8192     896     324       67582       0       2    9994240        0
      malloc-32768  32768     185       7       48097       0       1    6291456        0
       malloc-1024   1024    4469      11        4875       0      16    4587520        0
       malloc-1024   1024    2459    1117      157678       0      16    3661824        0
              mbuf    256    9501    3369     2567261       0     254    3294720        0
       malloc-1024   1024    1362    1670       48628       0      16    3104768        0
        RADIX NODE    144   19292    1565     1072541       0      63    3003408        0
       malloc-1024   1024     378    2486       90024       0      16    2932736        0
    ertt_txseginfo     40   66330    2754      185285       0     254    2763360        0
       malloc-8192   8192     327       3         623       0       1    2703360        0
         sctp_asoc   2288     667     473       17827       0     254    2608320        0
              pbuf   2624       0     973           0       0       2    2553152        0
        malloc-384    384    3869    2011      212179       0      30    2257920        0
           tcp_log    416       0    5175       15016       0     254    2152800        0
       malloc-8192   8192     248       7       49751       0       1    2088960        0
       malloc-2048   2048     601     383       18338       0       8    2015232        0
      mbuf_cluster   2048     975       1         975       0     254    1998848        0
          BUF TRIE    144     218   13250        2328       0      62    1939392        0
       UMA Slabs 0    112   17112      21       17112       0     126    1918896        0
           sctp_ep   1280     895     512       67580       0     254    1800960        0
        malloc-512    512    1452    1668      192257       0      30    1597440        0
        malloc-384    384    2447    1563       51416       0      30    1539840        0
        sctp_raddr    736     956     881       25963       0     254    1352032        0
         MAP ENTRY     96   10950     432     2660227       0     126    1092672        0
        malloc-384    384    2520      60      302234       0      30     990720        0
         VM OBJECT    264    3382      98      691343       0      30     918720        0
        malloc-384    384    2268      62      203362       0      30     894720        0
         FFS inode   1160     643      22       48504       0       8     771400        0
            THREAD   1808     367      18       51010       0       8     696080        0
           VMSPACE   2544     212      13       49183       0       4     572400        0
      malloc-16384  16384      27       0          31       0       1     442368        0
            socket    944     312      96       77924       0     254     385152        0
            lkpimm    160       1    2324           1       0      62     372000        0
          lkpicurr    160       2    2323           2       0      62     372000        0
              PROC   1336     243      21       49212       0       8     352704        0
        256 Bucket   2048     148      22       19433       0       8     348160        0
             VNODE    448     682      74       48545       0      30     338688        0
      malloc-65536  65536       5       0           5       0       1     327680        0
         vmem btag     56    5280      36        5382       0     254     297696        0
        malloc-512    512     554       6        6805       0      30     286720        0
         filedesc0   1072     244      22       49213       0       8     285152        0
       tcp_bbr_map    128     980    1190       14099       0     126     277760        0
        sctp_chunk    152     704    1012        9974       0     254     260832        0
         UMA Zones    768     337       2         337       0      16     260352        0
         tcp_inpcb    488      36     484        6659       0     254     253760        0
       mbuf_packet    256     431     544      559326       0     254     249600        0
       malloc-4096   4096       9      49        5132       0       2     237568        0
       malloc-2048   2048     112       2         129       0       8     233472        0
            DEVCTL   1024       0     220         159       0       0     225280        0
      malloc-16384  16384       8       4         270       0       1     196608        0
       FFS2 dinode    256     643      17       48504       0      62     168960        0
      malloc-32768  32768       3       2         139       0       1     163840        0
         32 Bucket    256     262     338       30524       0      62     153600        0
       S VFS Cache    104    1048     395       49674       0     126     150072        0
      malloc-16384  16384       4       5          38       0       1     147456        0
        malloc-384    384     292      68       48307       0      30     138240        0
        malloc-512    512     221      43        4384       0      30     135168        0
zio_buf_comb_131072 131072       0       1           1       0       1     131072        0
      malloc-65536  65536       2       0           2       0       1     131072        0
      malloc-65536  65536       1       1         178       0       1     131072        0
      malloc-65536  65536       2       0           2       0       1     131072        0
      malloc-32768  32768       4       0           4       0       1     131072        0
          UMA Kegs    384     322       1         322       0      30     124032        0
          ksiginfo    112     249     795        2763       0     126     116928        0
      malloc-16384  16384       5       2          80       0       1     114688        0
       malloc-8192   8192      13       1          24       0       1     114688        0
        malloc-384    384     258      22        7146       0      30     107520        0
       malloc-1024   1024      80      20         920       0      16     102400        0
         16 Bucket    144     384     316       10242       0      62     100800        0
       malloc-8192   8192      10       2          19       0       1      98304        0
             g_bio    408       0     230       16947       0      30      93840        0
        malloc-512    512     152      16         192       0      30      86016        0
        128 Bucket   1024      45      38        9132       0      16      84992        0
            clpbuf   2624       0      32          38       0      16      83968        0
      malloc-16384  16384       5       0           5       0       1      81920        0
       malloc-1024   1024      72       4        1111       0      16      77824        0
sctp_stream_msg_out    112      48     600        4056       0     254      72576        0
             tcpcb   1080      36      27        6659       0     254      68040        0
      malloc-65536  65536       1       0           1       0       1      65536        0
      malloc-16384  16384       2       2           8       0       1      65536        0
      malloc-16384  16384       4       0           4       0       1      65536        0
        malloc-384    384     116      54       12236       0      30      65280        0
        malloc-512    512      31      89       48161       0      30      61440        0
       malloc-8192   8192       1       6       48396       0       1      57344        0
       malloc-4096   4096      12       2         209       0       2      57344        0
         TURNSTILE    136     386      34         386       0      62      57120        0
             Files     80     561     139      160843       0     126      56000        0
       malloc-4096   4096       7       6        1399       0       2      53248        0
        malloc-512    512      39      65       50882       0      30      53248        0
         64 Bucket    512      47      57       21281       0      30      53248        0
zio_data_buf_16384  16384       0       3           9       0       1      49152        0
       malloc-8192   8192       2       4         168       0       1      49152        0
       malloc-8192   8192       4       2          18       0       1      49152        0
       malloc-4096   4096       7       5         420       0       2      49152        0
       malloc-2048   2048       9      15        3567       0       8      49152        0
              pipe    744      36      29        3455       0      16      48360        0
       malloc-2048   2048      19       3          32       0       8      45056        0
       malloc-1024   1024      38       6          42       0      16      45056        0
            pcpu-8      8    5211     421        5644       0     254      45056        0
           DIRHASH   1024      34       6          34       0      16      40960        0
       malloc-4096   4096       3       7         510       0       2      40960        0
       malloc-1024   1024      37       3        1194       0      16      40960        0
       tcp_bbr_pcb    832      25      20        2600       0      16      37440        0
             NAMEI   1024       0      36      224191       0      16      36864        0
       malloc-4096   4096       2       7         825       0       2      36864        0
       malloc-2048   2048      17       1          17       0       8      36864        0
        malloc-512    512      50      22         527       0      30      36864        0
        SLEEPQUEUE     88     386      30         386       0     126      36608        0
     zio_buf_16384  16384       0       2          10       0       1      32768        0
      malloc-32768  32768       1       0           1       0       1      32768        0
           pcpu-64     64     495      17         495       0     254      32768        0
        malloc-512    512      29      27        8510       0      30      28672        0
               PWD     32     141     741       48038       0     254      28224        0
          2 Bucket     32     273     609       16502       0     254      28224        0
             KNOTE    160      28     147      527731       0      62      28000        0
          8 Bucket     80      87     263        8518       0     126      28000        0
            ttyinq    160     135      15         300       0      62      24000        0
           ttyoutq    256      72      18         160       0      62      23040        0
      tcp_rack_pcb    832       0      27        1487       0      16      22464        0
       malloc-2048   2048       7       3           9       0       8      20480        0
       malloc-2048   2048       9       1           9       0       8      20480        0
       malloc-2048   2048       9       1          12       0       8      20480        0
       Mountpoints   2752       2       5           2       0       4      19264        0
       malloc-4096   4096       2       2           4       0       2      16384        0
        sctp_laddr     48      50     286       21172       0     254      16128        0
      vtnet_tx_hdr     24       0     668      585977       0     254      16032        0
             ripcb    488       5      27         506       0     254      15616        0
     udplite_inpcb    488       3      29         539       0     254      15616        0
         udp_inpcb    488       6      26         562       0     254      15616        0
            cpuset    104       7     117        2154       0     126      12896        0
              kenv    258      15      30        1048       0      30      11610        0
             unpcb    256      21      24        2024       0     254      11520        0
           rtentry    176      31      15          38       0      62       8096        0
              PGRP     88      35      57          72       0     126       8096        0
          rl_entry     40     114      88         114       0     254       8080        0
      tcp_rack_map    112       0      72        2565       0     126       8064        0
             udpcb     32       9     243        1101       0     254       8064        0
              AIOP     32       4     248           4       0     254       8064        0
              ertt     72      36      76        6659       0     126       8064        0
          4 Bucket     48       7     161         900       0     254       8064        0
        sctp_readq    152       0      52         780       0     254       7904        0
               AIO    208       0      38         106       0      62       7904        0
           cryptop    280       0      28          55       0      30       7840        0
            itimer    352       0      22           5       0      30       7744        0
             AIOCB    552       0      14         115       0      16       7728        0
     routing nhops    256      27       3          38       0      62       7680        0
            AIOLIO    272       0      28          12       0      30       7616        0
     FPU_save_area    832       1       8           1       0      16       7488        0
         domainset     40       0     126        2145       0     254       5040        0
 epoch_record pcpu    256       4      12           4       0      62       4096        0
       malloc-4096   4096       1       0           1       0       2       4096        0
           pcpu-16     16       7     249           7       0     254       4096        0
   sctp_asconf_ack     48       0      84          54       0     254       4032        0
         hostcache     64       1      62           1       0     254       4032        0
          syncache    168       0      24           4       0     254       4032        0
       UMA Slabs 1    176      10      12          10       0      62       3872        0
            mqnode    416       3       6           3       0      30       3744        0
        KMAP ENTRY     96      19      20          23       0       0       3744        0
              vmem   1856       1       1           1       0       8       3712        0
           SMR CPU     32       3      60           3       0     254       2016        0
        SMR SHARED     24       3      60           3       0     254       1512        0
   zfs_znode_cache    472       0       0           0       0      30          0        0
       sio_cache_2    168       0       0           0       0      62          0        0
       sio_cache_1    152       0       0           0       0      62          0        0
       sio_cache_0    136       0       0           0       0      62          0        0
     zil_zcw_cache     80       0       0           0       0     126          0        0
     zil_lwb_cache    360       0       0           0       0      30          0        0
    dmu_buf_impl_t    408       0       0           0       0      30          0        0
         arc_buf_t     64       0       0           0       0     254          0        0
arc_buf_hdr_t_l2only     96       0       0           0       0     126          0        0
arc_buf_hdr_t_full_crypt    424       0       0           0       0      30          0        0
arc_buf_hdr_t_full    360       0       0           0       0      30          0        0
           dnode_t   1040       0       0           0       0       8          0        0
          sa_cache    296       0       0           0       0      30          0        0
         abd_chunk   4096       0       0           0       0       2          0        0
zio_buf_comb_16777216 16777216       0       0           0       0       1          0        0
zio_buf_comb_14680064 14680064       0       0           0       0       1          0        0
zio_buf_comb_12582912 12582912       0       0           0       0       1          0        0
zio_buf_comb_10485760 10485760       0       0           0       0       1          0        0
zio_buf_comb_8388608 8388608       0       0           0       0       1          0        0
zio_buf_comb_7340032 7340032       0       0           0       0       1          0        0
zio_buf_comb_6291456 6291456       0       0           0       0       1          0        0
zio_buf_comb_5242880 5242880       0       0           0       0       1          0        0
zio_buf_comb_4194304 4194304       0       0           0       0       1          0        0
zio_buf_comb_3670016 3670016       0       0           0       0       1          0        0
zio_buf_comb_3145728 3145728       0       0           0       0       1          0        0
zio_buf_comb_2621440 2621440       0       0           0       0       1          0        0
zio_buf_comb_2097152 2097152       0       0           0       0       1          0        0
zio_buf_comb_1835008 1835008       0       0           0       0       1          0        0
zio_buf_comb_1572864 1572864       0       0           0       0       1          0        0
zio_buf_comb_1310720 1310720       0       0           0       0       1          0        0
zio_buf_comb_1048576 1048576       0       0           0       0       1          0        0
zio_buf_comb_917504 917504       0       0           0       0       1          0        0
zio_buf_comb_786432 786432       0       0           0       0       1          0        0
zio_buf_comb_655360 655360       0       0           0       0       1          0        0
zio_buf_comb_524288 524288       0       0           0       0       1          0        0
zio_buf_comb_458752 458752       0       0           0       0       1          0        0
zio_buf_comb_393216 393216       0       0           0       0       1          0        0
zio_buf_comb_327680 327680       0       0           0       0       1          0        0
zio_buf_comb_262144 262144       0       0           0       0       1          0        0
zio_buf_comb_229376 229376       0       0           0       0       1          0        0
zio_buf_comb_196608 196608       0       0           0       0       1          0        0
zio_buf_comb_163840 163840       0       0           0       0       1          0        0
zio_buf_comb_114688 114688       0       0           0       0       1          0        0
zio_buf_comb_98304  98304       0       0           0       0       1          0        0
zio_buf_comb_81920  81920       0       0           0       0       1          0        0
zio_buf_comb_65536  65536       0       0           0       0       1          0        0
zio_buf_comb_57344  57344       0       0           0       0       1          0        0
zio_buf_comb_49152  49152       0       0           0       0       1          0        0
zio_buf_comb_40960  40960       0       0           0       0       1          0        0
zio_buf_comb_32768  32768       0       0           0       0       1          0        0
zio_buf_comb_28672  28672       0       0           0       0       1          0        0
zio_buf_comb_24576  24576       0       0           0       0       1          0        0
zio_buf_comb_20480  20480       0       0           0       0       1          0        0
zio_data_buf_14336  14336       0       0           0       0       1          0        0
     zio_buf_14336  14336       0       0           0       0       1          0        0
zio_data_buf_12288  12288       0       0           0       0       1          0        0
     zio_buf_12288  12288       0       0           0       0       1          0        0
zio_data_buf_10240  10240       0       0           0       0       1          0        0
     zio_buf_10240  10240       0       0           0       0       1          0        0
 zio_data_buf_8192   8192       0       0           0       0       1          0        0
      zio_buf_8192   8192       0       0           0       0       1          0        0
 zio_data_buf_7168   7168       0       0           0       0       1          0        0
      zio_buf_7168   7168       0       0           0       0       1          0        0
 zio_data_buf_6144   6144       0       0           0       0       1          0        0
      zio_buf_6144   6144       0       0           0       0       1          0        0
 zio_data_buf_5120   5120       0       0           0       0       1          0        0
      zio_buf_5120   5120       0       0           0       0       1          0        0
 zio_data_buf_4096   4096       0       0           0       0       2          0        0
      zio_buf_4096   4096       0       0           0       0       2          0        0
 zio_data_buf_3584   3584       0       0           0       0       2          0        0
      zio_buf_3584   3584       0       0           0       0       2          0        0
 zio_data_buf_3072   3072       0       0           0       0       4          0        0
      zio_buf_3072   3072       0       0           0       0       4          0        0
 zio_data_buf_2560   2560       0       0           0       0       4          0        0
      zio_buf_2560   2560       0       0           0       0       4          0        0
 zio_data_buf_2048   2048       0       0           0       0       8          0        0
      zio_buf_2048   2048       0       0           0       0       8          0        0
 zio_data_buf_1536   1536       0       0           0       0       8          0        0
      zio_buf_1536   1536       0       0           0       0       8          0        0
 zio_data_buf_1024   1024       0       0           0       0      16          0        0
      zio_buf_1024   1024       0       0           0       0      16          0        0
  zio_data_buf_512    512       0       0           0       0      30          0        0
       zio_buf_512    512       0       0           0       0      30          0        0
    zio_link_cache     48       0       0           0       0     254          0        0
         zio_cache   1232       0       0           0       0       8          0        0
   ddt_entry_cache    392       0       0           0       0      30          0        0
         ddt_cache  24840       0       0           0       0       1          0        0
metaslab_alloc_trace_cache     72       0       0           0       0     126          0        0
zfs_btree_leaf_cache   4096       0       0           0       0       2          0        0
reference_history_cache      8       0       0           0       0     254          0        0
   reference_cache     40       0       0           0       0     254          0        0
        taskq_zone    192       0       0           0       0      62          0        0
       FFS1 dinode    128       0       0           0       0     126          0        0
            da_ccb    544       0       0           0       0      16          0        0
           ada_ccb    272       0       0           0       0      30          0        0
             swblk    136       0       0           0       0      62          0        0
          swpctrie    144       0       0           0       0      62          0        0
       sctp_asconf     40       0       0           0       0     254          0        0
   cdg_qdiffsample     16       0       0           0       0     254          0        0
   pf state scrubs     40       0       0           0       0     254          0        0
   pf frag entries     40       0       0           0       0     254          0        0
          pf frags    248       0       0           0       0      62          0        0
  pf table entries    160       0       0           0       0      62          0        0
pf table entry counters     64       0       0           0       0     254          0        0
   pf source nodes    136       0       0           0       0     254          0        0
     pf state keys     88       0       0           0       0     126          0        0
         pf states    304       0       0           0       0       0          0        0
           pf tags    104       0       0           0       0     126          0        0
          pf mtags     48       0       0           0       0     254          0        0
      tcp_log_node    120       0       0           0       0     126          0        0
    tcp_log_bucket    176       0       0           0       0      62          0        0
          tcpreass     48       0       0           0       0     254          0        0
tfo_ccache_entries     80       0       0           0       0     126          0        0
               tfo      4       0       0           0       0     254          0        0
          sackhole     32       0       0           0       0     254          0        0
             tcptw     88       0       0           0       0     254          0        0
               ipq     56       0       0           0       0     254          0        0
    IPsec SA lft_c     16       0       0           0       0     254          0        0
        mqnotifier    216       0       0           0       0      62          0        0
            mvdata     64       0       0           0       0     254          0        0
            mqueue    248       0       0           0       0      62          0        0
        TMPFS node    224       0       0           0       0      62          0        0
           NCLNODE    584       0       0           0       0      16          0        0
     LTS VFS Cache    360       0       0           0       0      30          0        0
       L VFS Cache    320       0       0           0       0      30          0        0
     STS VFS Cache    144       0       0           0       0      62          0        0
  linux_dma_object     24       0       0           0       0     254          0        0
  linux_dma_pctrie    144       0       0           0       0      62          0        0
   IOMMU_MAP_ENTRY    120       0       0           0       0     126          0        0
      ktls_session    128       0       0           0       0     126          0        0
    mbuf_jumbo_16k  16384       0       0           0       0     254          0        0
     mbuf_jumbo_9k   9216       0       0           0       0     254          0        0
      audit_record   1280       0       0           0       0       8          0        0
        MAC labels     40       0       0           0       0     254          0        0
            vnpbuf   2624       0       0           0       0      64          0        0
            mdpbuf   2624       0       0           0       0       3          0        0
           nfspbuf   2624       0       0           0       0      16          0        0
            swwbuf   2624       0       0           0       0       8          0        0
            swrbuf   2624       0       0           0       0      16          0        0
          umtx_shm     88       0       0           0       0     126          0        0
           umtx pi     96       0       0           0       0     126          0        0
rangeset pctrie nodes    144       0       0           0       0      62          0        0
      malloc-65536  65536       0       0           0       0       1          0        0
      malloc-65536  65536       0       0           0       0       1          0        0
      malloc-65536  65536       0       0           0       0       1          0        0
      malloc-32768  32768       0       0           0       0       1          0        0
      malloc-32768  32768       0       0           0       0       1          0        0
      malloc-32768  32768       0       0           0       0       1          0        0
      malloc-32768  32768       0       0           0       0       1          0        0
      malloc-16384  16384       0       0           0       0       1          0        0
        malloc-256    256       0       0           0       0      62          0        0
        malloc-256    256       0       0           0       0      62          0        0
        malloc-256    256       0       0           0       0      62          0        0
        malloc-256    256       0       0           0       0      62          0        0
        malloc-256    256       0       0           0       0      62          0        0
        malloc-256    256       0       0           0       0      62          0        0
        malloc-256    256       0       0           0       0      62          0        0
        malloc-256    256       0       0           0       0      62          0        0
        malloc-128    128       0       0           0       0     126          0        0
        malloc-128    128       0       0           0       0     126          0        0
        malloc-128    128       0       0           0       0     126          0        0
        malloc-128    128       0       0           0       0     126          0        0
        malloc-128    128       0       0           0       0     126          0        0
        malloc-128    128       0       0           0       0     126          0        0
        malloc-128    128       0       0           0       0     126          0        0
        malloc-128    128       0       0           0       0     126          0        0
         malloc-64     64       0       0           0       0     254          0        0
         malloc-64     64       0       0           0       0     254          0        0
         malloc-64     64       0       0           0       0     254          0        0
         malloc-64     64       0       0           0       0     254          0        0
         malloc-64     64       0       0           0       0     254          0        0
         malloc-64     64       0       0           0       0     254          0        0
         malloc-64     64       0       0           0       0     254          0        0
         malloc-64     64       0       0           0       0     254          0        0
         malloc-32     32       0       0           0       0     254          0        0
         malloc-32     32       0       0           0       0     254          0        0
         malloc-32     32       0       0           0       0     254          0        0
         malloc-32     32       0       0           0       0     254          0        0
         malloc-32     32       0       0           0       0     254          0        0
         malloc-32     32       0       0           0       0     254          0        0
         malloc-32     32       0       0           0       0     254          0        0
         malloc-32     32       0       0           0       0     254          0        0
         malloc-16     16       0       0           0       0     254          0        0
         malloc-16     16       0       0           0       0     254          0        0
         malloc-16     16       0       0           0       0     254          0        0
         malloc-16     16       0       0           0       0     254          0        0
         malloc-16     16       0       0           0       0     254          0        0
         malloc-16     16       0       0           0       0     254          0        0
         malloc-16     16       0       0           0       0     254          0        0
         malloc-16     16       0       0           0       0     254          0        0
           pcpu-32     32       0       0           0       0     254          0        0
            pcpu-4      4       0       0           0       0     254          0        0
            fakepg    104       0       0           0       0     126          0        0
          UMA Hash    256       0       0           0       0      62          0        0

Crashes (1):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Title
ci-freebsd-i386 2021/07/05 20:40 freebsd-src f649cff58721 55aa55c2 console log report Fatal trap 12: page fault in sctp_ss_default_add
* Struck through repros no longer work on HEAD.