kern.securelevel: 0 -> 1 creating runtime link editor directory cache. preserving editor files. starting network daemons: sshd. starting local daemons:. Mon Mar 30 16:28:25 PDT 2020 OpenBSD/amd64 (ci-openbsd-main-4.c.syzkaller.internal) (tty00) Warning: Permanently added '10.128.0.153' (ECDSA) to the list of known hosts. 2020/03/30 16:28:36 fuzzer started 2020/03/30 16:28:40 dialing manager at 10.128.15.235:25887 2020/03/30 16:28:40 syscalls: 338 2020/03/30 16:28:40 code coverage: enabled 2020/03/30 16:28:40 comparison tracing: enabled 2020/03/30 16:28:40 extra coverage: support is not implemented in syzkaller 2020/03/30 16:28:40 setuid sandbox: enabled 2020/03/30 16:28:40 namespace sandbox: support is not implemented in syzkaller 2020/03/30 16:28:40 Android sandbox: support is not implemented in syzkaller 2020/03/30 16:28:40 fault injection: support is not implemented in syzkaller 2020/03/30 16:28:40 leak checking: support is not implemented in syzkaller 2020/03/30 16:28:40 net packet injection: enabled 2020/03/30 16:28:40 net device setup: support is not implemented in syzkaller 2020/03/30 16:28:40 concurrency sanitizer: support is not implemented in syzkaller 2020/03/30 16:28:40 devlink PCI setup: support is not implemented in syzkaller 16:28:44 executing program 0: readlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/1, 0x1) r0 = semget(0x3, 0x6, 0x12f) semctl$SETALL(r0, 0x0, 0x9, &(0x7f0000000080)=[0x3ff, 0x4]) r1 = open(&(0x7f00000000c0)='./file0\x00', 0x8, 0x0) ioctl$WSDISPLAYIO_DELFONT(r1, 0x8058574f, &(0x7f0000000100)={'./file0/file0\x00', 0xffffffc0, 0x1, 0xfffffffa, 0x1, 0xffff, 0x3, 0x40, 0x0, 0x0, 0x6, 0x8001}) ioctl$WSDISPLAYIO_USEFONT(r1, 0x80585750, &(0x7f0000000180)={'./file0\x00', 0x9, 0xffffffff, 0x7, 0x0, 0x4dda, 0x3f, 0x3c, 0x0, 0x2, 0x4}) ioctl$BIOCGDIRFILT(r1, 0x4004427c, &(0x7f0000000200)) chroot(&(0x7f0000000240)='./file0\x00') r2 = semget$private(0x0, 0xea4dfb5a7c135f66, 0x1) semctl$GETZCNT(r2, 0x0, 0x7, &(0x7f0000000280)=""/31) r3 = openat$wsmouse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/wsmouse0\x00', 0xe18ce0a484da679e, 0x0) r4 = semget$private(0x0, 0x2, 0x0) semctl$GETVAL(r4, 0x0, 0x5, &(0x7f0000000300)=""/246) r5 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000400)) r6 = accept(r5, &(0x7f0000000440)=@in, &(0x7f0000000480)=0xc) open(&(0x7f00000004c0)='./file0\x00', 0x80, 0x10) recvfrom$unix(r6, &(0x7f0000000500)=""/50, 0x32, 0x1001, 0x0, 0x0) r7 = dup2(r3, r6) ioctl$WSDISPLAYIO_ADDSCREEN(r7, 0x80245753, &(0x7f0000000540)={0x7ff, './file0/file0\x00', './file0/file0\x00'}) sendto$unix(r7, &(0x7f0000000580)="977667f738782430a2fd32a445", 0xd, 0x1, &(0x7f00000005c0)=@abs={0x0, 0x0, 0x2}, 0x8) 16:28:44 executing program 1: r0 = openat$wsdisplay(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyCcfg\x00', 0x6917d7a8337e7f13, 0x0) ioctl$WSDISPLAYIO_GBURNER(r0, 0x400c5752, &(0x7f0000000040)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r2 = fcntl$dupfd(r1, 0xa, r0) ioctl$PCIOCWRITE(r2, 0xc0107003, &(0x7f00000000c0)={{0x51, 0xe3}, 0x5, 0x7, 0x1}) r3 = socket$inet6(0x18, 0x2, 0x7) setsockopt$inet6_MRT6_ADD_MFC(r3, 0x29, 0x68, &(0x7f0000000100)={{0x18, 0x1, 0x5, 0x2}, {0x18, 0x0, 0x5, 0x76}, 0xab13, [0x6, 0x9, 0x9, 0x5, 0x2, 0x7ff, 0xfffffffc, 0xff]}, 0x3c) open$dir(&(0x7f0000000140)='./file0\x00', 0x20, 0x0) r4 = openat$diskmap(0xffffffffffffff9c, &(0x7f0000000180)='/dev/diskmap\x00', 0x20000, 0x0) flock(r4, 0xd) pipe2(&(0x7f00000001c0)={0xffffffffffffffff}, 0x10000) ftruncate(r5, 0x0, 0x81) munlockall() r6 = openat$wskbd(0xffffffffffffff9c, &(0x7f0000000200)='/dev/wskbd0\x00', 0x800, 0x0) fcntl$setstatus(r6, 0x4, 0x4) r7 = openat$vmm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vmm\x00', 0x2, 0x0) fcntl$getown(r7, 0x5) r8 = fcntl$dupfd(0xffffffffffffff9c, 0xa, r3) ioctl$WSDISPLAYIO_SETSCREEN(r8, 0x80045756, &(0x7f0000000280)=0xe2e0) pwrite(0xffffffffffffff9c, &(0x7f00000002c0)="aa89eea35e4eea234221203ffea0fdd95b4a0f81f10db413c89e4338fa96c54ec8cfa15407af5188d53f41f247236de66970f4df09d77301b9947eb2b73db3e1303a609c9b73e66dffbe02219f7e165f013e71a0735651742d1947610978", 0x5e, 0x0, 0x8) login: pckbd_enable: command error 16:28:45 executing program 0: r0 = getpid() ktrace(&(0x7f0000000080)='./file0\x00', 0x0, 0xfcfc96ac7f78659a, r0) r1 = getpgid(r0) r2 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r2, 0x8020426c, &(0x7f0000000040)={'tap', 0x0}) ioctl$BIOCSETWF(r2, 0x80104277, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{0x7}, {0x8000025}, {0x6, 0x0, 0x0, 0x100}]}) r3 = socket(0x18, 0x2, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$TIOCFLUSH(r4, 0x8080691a, &(0x7f0000000300)) ioctl$VMM_IOC_INFO(r4, 0xc0185603, &(0x7f00000001c0)={0xf9, 0x0, &(0x7f00000000c0)=""/249}) pwrite(r2, &(0x7f0000000240)="fbaf8a8d1a029be96914f6357e3a", 0xe, 0x0, 0x0) fcntl$getown(r2, 0x5) munmap(&(0x7f0000000000/0x3000)=nil, 0x3000) sendmsg$unix(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000280)=@abs={0x0, 0x0, 0x3}, 0x8, &(0x7f0000000640)=[{&(0x7f00000002c0)}, {&(0x7f0000000340)="824a4fedce68bf4570d5063e213e5cc9c2b6cf19ecd8c7690e74710d327cd965ea630b9604746e05d3c3a452880f2f40916f0159625afc71d0179853f085fcbf3a9648fe035a402e1326a1d7c6717f019bc8b0e58b5078f9c4c92353945b7e4b12470723641a2a0a3d9cffa3ee13829a6e1cdfd961ccb2c9eb268d3be4d2b2bacd75c9a96014e4cfc60b5c79ec981ddf6d77c005c3a72fdb9432226ef63a81c802c3f94d2d29a294c2c0f5b9c06b585ed5ff90edeceff47b2b758b083e4abc851a02e0c79a4652cf6660209230a60525331765692b057bbb9c7940341c2285c99c4d8da19b61", 0xe6}, {&(0x7f0000000440)="569734d58ab3cb7097925e23cafbab24989347db71c888b727aa5713dc43dc4950a5508cc16c3e2f77dc3fc3e65eeed3525fa4e97210ff3eeef1782cf1764401f09c188e60561ddf94", 0x49}, {&(0x7f00000004c0)="1f43b851d43172cb2a720165b91deb87a8d78f0bbc558c9dea430a9f6c2a0e1e8545178a058f269538c9e192f5abc9b96fa683061f264dabc7eda4f8ffc4c2178e475e4491ba31a1c0158a3bc253ce80bac0d93a023aae52546afb8bbc1bfc0795f584ff3fe81360acc72e715994c57c69778dbd0272816123b81f811ebb4a0aa6d39cd2321a4c704407cdbc102b6b3baccd111be5", 0x95}, {&(0x7f0000000580)="e1f87793b05003a3cf45b943c9295706d1a321ff40e1a8e4133b95b5444423cd7b523ca39abad2f22b7cc76e7c0f4eb0b6987bcf47ddc03de64ecfe0ed5a89e0cda7283e0650015c392b1987742c63d17e29f3a0437c388fa57f1d9a5b5485700dc0837d72eaeae757a85a47816a9cc73b69c0ce80cde8aed6aa329bc3b7962b1e414a289b99e62c2e", 0x89}], 0x5, 0x0, 0x0, 0x1}, 0xe) r5 = getpid() setpgid(r1, r5) syz_emit_ethernet(0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd60a4060000103c00000020000000000000000000000000aaff0200000000000000000000000000012c00050401b6f7f8323a"]) syz_emit_ethernet(0x400e, &(0x7f0000000000)="c7a895006f53dd000005ffff86dd") r6 = socket$inet(0x2, 0x4, 0xc4) getsockname(r6, &(0x7f0000000040)=@in6, &(0x7f0000000080)=0xc) 16:28:45 executing program 0: mknod(&(0x7f0000000100)='./bus\x00', 0x2000, 0x86139) r0 = open(&(0x7f0000000080)='./bus\x00', 0x20, 0x0) write(r0, &(0x7f0000000040)="670dc3", 0x3) write(r0, &(0x7f0000000140)="09917b2f2d25d3e5e3df3765279232c01f1eb7dfe6000b7a", 0x18) pwritev(r0, &(0x7f00000002c0)=[{&(0x7f0000000000)="a7f93d1b2c000000", 0x8}], 0x1, 0x0, 0x0) 16:28:46 executing program 0: setrlimit(0x8, &(0x7f0000000040)={0x7, 0x95}) r0 = syz_open_pts() r1 = syz_open_pts() ioctl$TIOCSETAF(r1, 0x802c7416, &(0x7f0000000000)={0x0, 0x20000003, 0x3ff, 0xfffffff8, "a8186503182eab7fff0e091fa600", 0x0, 0xfffffffd}) write(r0, &(0x7f0000000080)="96038c867d189ac9f508d0f68e0299003a52edcc40b100d771d81fdf45df4284f85cffe2a0ccdfc66f8614df7085abb101001061ef76da41e7dc71c96ae4c37431a4bf7eeea0d36524669f18959d18d08c3509", 0x53) 16:28:46 executing program 1: r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bpf\x00', 0x0, 0x0) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f00000000c0)={'tap', 0x0}) r1 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r1, 0x8020426c, &(0x7f0000000040)={'tap', 0x0}) ioctl$BIOCSETWF(r1, 0x80104277, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{0x3}, {0x8000025, 0x5, 0x58}, {0x6, 0x0, 0x5, 0x6}]}) pwrite(r1, &(0x7f0000000240)="fbaf8a8d1a029be96914f6357e3a", 0xe, 0x0, 0x0) ioctl$BIOCGFILDROP(r1, 0x40044278, &(0x7f0000000040)) ioctl$BIOCSETF(r0, 0x80104267, &(0x7f0000000240)={0x3, &(0x7f0000000000)=[{0x6c}, {0x28}, {0x40000004006}]}) syz_emit_ethernet(0xe, &(0x7f0000000080)="010c777cf7c7e52c32db472b74ed") 16:28:46 executing program 0: r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000540)={'tap', 0x0}) ioctl$BIOCSETWF(r0, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0x83}, {0x35, 0x0, 0x4}, {0x6, 0x0, 0x0, 0xfc}]}) pwrite(r0, &(0x7f0000000140)="f94c4c49dfd685fbaf8a8d1a029b", 0xe, 0x0, 0x0) 16:28:46 executing program 1: r0 = syz_open_pts() ioctl$TIOCSETAF(r0, 0x802c7416, &(0x7f00000000c0)={0x0, 0x0, 0x90d6, 0x0, "d700060000000000005b00000000000000e74de4"}) write(r0, &(0x7f0000000180)="582720efabd16ebae63225259560f8e5815f73f2a044fd33055552fbd7e41789632dfc94ff334a5619515a4c8ab06198824b3da025bbd47b3bf579456fc7d4096e8c8b6b87cb2d72b8bcdb9ad8a4f5f728193ef16ab93f12fc4d5f16b136a5d00d1628b53a", 0x65) write(r0, &(0x7f0000000040), 0xfffffec2) r1 = syz_open_pts() close(r0) dup(r1) socket$unix(0x1, 0x5, 0x0) open$dir(&(0x7f0000000340)='./file0\x00', 0x400000002c5, 0x0) syz_open_pts() truncate(&(0x7f0000000100)='./file0\x00', 0x0, 0x20007) truncate(&(0x7f0000000040)='./file0\x00', 0x0, 0x6) rename(&(0x7f0000000000)='.\x00', 0x0) pckbd_enable: command error 16:28:46 executing program 0: ioctl$VMM_IOC_WRITEREGS(0xffffffffffffffff, 0x82485608, &(0x7f0000000240)={0x0, 0x0, 0x0, {[], [], [0x0, 0x0, 0x0, 0x9, 0xffffffffffffffff, 0xf7ffffffffffffff], [0x0, 0x0, 0x482]}}) ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000300)={'tap', 0x0}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket(0x18, 0x2, 0x0) fcntl$dupfd(r0, 0x0, r0) 16:28:47 executing program 0: r0 = socket(0x18, 0x2, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = socket(0x18, 0x2, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg(r1, &(0x7f0000000100)={&(0x7f0000000080)=@un=@abs={0x0, 0x0, 0x2}, 0x8, &(0x7f00000000c0)=[{&(0x7f0000000a40)="37f597c86301fdde5d9079a28f36a977c0ca4ddb83215aff130d7fe577989a64a67a6749b0b2d8535d2f2cbe49c8fc8ed2d47ab979b0c756ae88211da24292b4310110b589e4e1299ad96926e0171a3981da542cdfd1c47a8b11f1337f3b1bf681b58f260ac0cc7e01590f64a3c927d457f2b3e26e9b5b601c642d5eee507a8cb5571cf2f7ddd3b34c8afafec93ddc8594f5efcf3c4f09812c52bcc876fa7da30884d194fb68d52fe7841c71e4fbc76ac706d6aec61c9c764da98ca9619c9f94adf113940d5ef666e116b1382dcf133d5e8bd5c5d23cacc512450623ef6f3b205d3218a598679fe41b9c29bc048809", 0xef}, {&(0x7f0000000340)="3c00c55195beedbfb20491e8e97e8783ddcbfe7f95418b0e2922dd3799298d3d0724915889fd1927c0f9df543cb97c31cc5d0200e43df26825da0baa0d079f40ece2393fb0260d3dd8b6d14f14b349ff58041a79f90e10356eeb0e50990e24b9989aab6e445527aa1459869674be9b8adeb8754dc2128687227acf42337f403a6d28b0f1cf77c9cfd2024c9d4b7561939f1ec3ef6ca8b68255558d3e7bdb6cdd3510c75ddf864318e2b813e8a158da47ec4014d934389afdebca78413f6bf9c675c873b55f48949533cc392451e5fc322074adfa5936942a78a2033f1b6cdb0facfcaf75ca64cd9b98fdedc3d2df358140351f9bb237", 0xf6}, {&(0x7f0000000440)="6dad87ae1801c70fee6416234cec8d2e96ac85f62767817fea26dfdf366a7df859f9a50a500f6494f6be0fd73fcc8b7850d56c08f14f7f113e73827e483c56e6c45b3ba5d161c25966e0e3292869627fc934b4fe62bb13cc815b5bb580c706540deeb279a35d5967a21dd0a3cc438f0d28d8db3fd004bc82fc9ba84da2e6a04ca3902f0d3588e96561dad04dd520066d991269a7daf9a7831ddb88442da6f58e1bcb482c1e49db4c18ce8b461a31d79ff7981ff3acdc7c93bff5a8867960ac3fc2cf2d2223322f74cb11d954bf498c316a059337c12088ed7f883f3461a2a4fad6", 0xe1}, {&(0x7f0000000540)="a9d7af158e0f095b759bc28966f37ecbd0c3f702a4da832816eec89a623ac94966d524517d84291cde89807057682a2bb79dd35c0a573a450bd009ff129174efbe2d3d304607c3562cdff6265af59839b84122f8a155b575b8557dc3a620e9aa667d2544e37a1f48908e4279d534975b03047a68f1ce7fc844c5921e84523e45fd59f81491d3f119a240790ae5f6d73000273a246622b3122eda6db1ea607104cd0e0be0135425a667c9a69a2bf8cce98a6655466862be0d403e46e078441f70461be68abd5c8bae526a7fab5f6bdffc751da2e06792c7995750a0c2ae47312e186675173e2d39feae247406c55843ecbdad11e7ea19d4ecda", 0xf9}], 0x4, &(0x7f0000000640)=[{0xb0, 0xffff, 0x1, "7158b7fd3174a74674e1d55a3c77cdd97e7bb212f8f01816a46e5937aef807c901b9096b2fd080ad4bdb2124aec1646657b861b7dc754be898a795257e129bcfc0b682daa004d63836e359ecf14db1de4160faeb5658982a99100415c7ee1fa8171f194354ee7bb169f2c8e0e8be5a637e2d560c386fb0275ce2af5dca1369cc07f1ccb5d2f328cb094965ac7ed8e33b71b227832039d2048b00273f64"}, {0xd0, 0xffff, 0x8, "86576963544c1f495496d36de3bdaf6af5679e9e4a4dc0bb264b8ce776a2be10142d42822c59e768e518120c7558bf8c9912e48359cf8545fd373594dde65dc99b89870132d4e871b3e77bdbe54f701796f4667874a61273c1ba66aa0ce0b405186a54130c1f7eab8c25b5855df2bf8f728fa0ff1f3689909c64c496e4e998e8b035981a36b441b8fc72883369186e9350db6dff5453238d763fab78ab430edf517ccf68b6ae6b92240ff418257e9adb6c99308c319b07dcc1e89cd695"}, {0xe0, 0xffff, 0x0, "92fa2b3f36080cee50b57ab3599e04393bde8d9b0ce08da8c6185188994c30271ec0064dfc9cbed105ba3ff90793eaaf1feafec7de077a4793c79dc5b869625d5d8698ebb2475c7df8dd6f02cfe1799103c474de63fb2637859e8dc3a1a3c5b5b189a514d0ac09c1436252723fdb246e783bd732b54cef63a5827142e5aa94f4eb67b049646e4a9848290d8e54103db5fbc6d88de2a58be99c0f63def0dfcaed7ad580c7a6e953c12d4938da9a2ff2a93b0818d408f0dc9e1ffb528b151dc116f02264fe1ce784ac47"}, {0x48, 0x1, 0x20, "57dd1e33eb94c72bac653a0da64b2b85bf16490f8c8b8f4764446009037cc6f1499926e14f4d6f8bc9a869e15b3c9baece86c5f663f902"}, {0xa0, 0xffff, 0xffffffff, "9c9c919bd7085f69a09397ee52e955d8915fc0e7ad185fccf6df7689279da194093c9d99e5f9e09b8d604bf9b3355f12722dd8a2da8057820674a6b22f0636d72e62d038e2b89fd3f581f2caeb9c6ad65ee2813c216bb72e82b97b71c9a2a0328c4cabb81ebeb408a9e9edfeb6d685c167308398824a66c5d86161a3281ec1081fa09270e2a1308709919946"}, {0x98, 0x1, 0x7f, "13c662673e49a763d65a8bba07f3165a8f541b244960af693831e0d6e5e5a207142858f8db02454d48d0b7e39684681d7f6860115687c8f5b428510d3cd2bfd9fcc80df53866741b6279e09f9c66e2f0ec2eb90224e408299970ef4d8ec1523806451fd27f98666e762cfb143952d17910051ce79ec3d36bdd770990f02a2bede0df3e1099"}], 0x3e0}, 0x0) setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0x66, &(0x7f0000000040)={0x3, 0x1, 0xff, 0x67bd, 0x4}, 0xc) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r3, 0xffff, 0x1022, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000200)=0xc) setregid(0xffffffffffffffff, r4) mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xc0e99db6de761f86, 0x0) setsockopt(r2, 0x8, 0x1000, &(0x7f0000000180), 0x0) 16:28:47 executing program 0: setrlimit(0x8, &(0x7f0000000040)={0x7, 0x95}) r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000040)={'tap', 0x0}) ioctl$BIOCSETWF(r0, 0x80104277, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{0x7}, {0x8000025}, {0x6, 0x0, 0x0, 0x100}]}) pwrite(r0, &(0x7f0000000240)="fbaf8a8d1a029be96914f6357e3a", 0xe, 0x0, 0x0) r1 = dup(r0) ioctl$WSDISPLAYIO_DELFONT(r1, 0x8058574f, &(0x7f0000000140)={'./file0\x00', 0x80000001, 0x20, 0x7fffffff, 0x1, 0x8001, 0x8, 0x2, 0x2, 0x2, 0x4, 0x8000}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=""/210, 0xd2}, 0x0) sendmsg$unix(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="28000000ffff00000100000008cd7fdf03000000", @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r3], 0x28}, 0x0) panic: kernel diagnostic assertion "p == curproc" failed: file "/syzkaller/managers/main/kernel/sys/kern/vfs_vops.c", line 169 Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND * 73232 23391 0 0x14000 0x200 0 systq db_enter() at db_enter+0x18 panic(ffffffff821d5d2f) at panic+0x15c __assert(ffffffff8222900d,ffffffff8225c86f,a9,ffffffff82208fd2) at __assert+0x2b VOP_CLOSE(fffffd80573409d8,2,fffffd806c3bf840,0) at VOP_CLOSE+0x12f vn_closefile(fffffd80657853d8,0) at vn_closefile+0xd2 fdrop(fffffd80657853d8,0) at fdrop+0xc2 closef(fffffd80657853d8,0) at closef+0x117 unp_gc(0) at unp_gc+0x172 taskq_thread(ffffffff824bcfd0) at taskq_thread+0x52 end trace frame: 0x0, count: 6 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic kernel diagnostic assertion "p == curproc" failed: file "/syzkaller/managers/main/kernel/sys/kern/vfs_vops.c", line 169 ddb> trace db_enter() at db_enter+0x18 panic(ffffffff821d5d2f) at panic+0x15c __assert(ffffffff8222900d,ffffffff8225c86f,a9,ffffffff82208fd2) at __assert+0x2b VOP_CLOSE(fffffd80573409d8,2,fffffd806c3bf840,0) at VOP_CLOSE+0x12f vn_closefile(fffffd80657853d8,0) at vn_closefile+0xd2 fdrop(fffffd80657853d8,0) at fdrop+0xc2 closef(fffffd80657853d8,0) at closef+0x117 unp_gc(0) at unp_gc+0x172 taskq_thread(ffffffff824bcfd0) at taskq_thread+0x52 end trace frame: 0x0, count: -9 ddb> show registers rdi 0 rsi 0x1 rbp 0xffff80001d2fc6a0 rbx 0xffff80001d2fc750 rdx 0x2 rcx 0 rax 0 r8 0xffff80001d2fc660 r9 0x1 r10 0 r11 0xa9726347c4620dd r12 0x3000000008 r13 0xffff80001d2fc6b0 r14 0x100 r15 0x1 rip 0xffffffff813787c8 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff80001d2fc690 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb> show proc PROC (systq) pid=73232 stat=onproc flags process=14000 proc=200 pri=32, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff80001d2e19c0,0xffff80001d2e1280 process=0xffff8000ffffe000 user=0xffff80001d2f7000, vmspace=0xffffffff82589be8 estcpu=0, cpticks=1, pctcpu=0.0 user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 64433 327451 90998 0 2 0x482 syz-executor.1 61930 422729 90998 0 2 0x482 syz-executor.0 90998 413474 5939 0 3 0x82 thrsleep syz-fuzzer 90998 321443 5939 0 3 0x4000082 thrsleep syz-fuzzer 90998 487793 5939 0 3 0x4000082 kqread syz-fuzzer 90998 335955 5939 0 3 0x4000082 thrsleep syz-fuzzer 90998 506865 5939 0 3 0x4000082 thrsleep syz-fuzzer 90998 55715 5939 0 3 0x4000082 thrsleep syz-fuzzer 90998 375536 5939 0 3 0x4000082 thrsleep syz-fuzzer 90998 235625 5939 0 3 0x4000082 thrsleep syz-fuzzer 5939 422913 22216 0 3 0x10008a pause ksh 22216 379169 40196 0 3 0x92 select sshd 82837 221807 1 0 3 0x100083 ttyin getty 40196 519446 1 0 3 0x80 select sshd 69962 96308 88003 73 3 0x100090 kqread syslogd 88003 155928 1 0 3 0x100082 netio syslogd 75887 500822 1 77 3 0x100090 poll dhclient 64219 217280 1 0 3 0x80 poll dhclient 88263 13938 0 0 3 0x14200 bored smr 67278 485654 0 0 2 0x14200 zerothread 87284 436055 0 0 3 0x14200 aiodoned aiodoned 75328 433800 0 0 3 0x14200 syncer update 11698 51298 0 0 3 0x14200 cleaner cleaner 31903 163693 0 0 3 0x14200 reaper reaper 84349 346310 0 0 3 0x14200 pgdaemon pagedaemon 50906 228015 0 0 3 0x14200 bored crynlk 289 117963 0 0 3 0x14200 bored crypto 4388 299747 0 0 3 0x40014200 acpi0 acpi0 50857 75806 0 0 3 0x14200 bored softnet 77968 288904 0 0 3 0x14200 bored systqmp *23391 73232 0 0 7 0x14200 systq 91380 274617 0 0 3 0x40014200 bored softclock 51037 254793 0 0 3 0x40014200 idle0 1 296300 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9464 6391K 6714K 78643K 10595 0 pcb 13 8K 8K 78643K 13 0 rtable 105 3K 3K 78643K 191 0 ifaddr 44 10K 10K 78643K 44 0 counters 21 16K 16K 78643K 21 0 ioctlops 0 0K 2K 78643K 15 0 mount 1 1K 1K 78643K 1 0 vnodes 1220 77K 77K 78643K 1233 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 1K 78643K 2 0 VM map 2 0K 0K 78643K 2 0 sem 4 0K 0K 78643K 4 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1794 195K 288K 78643K 12646 0 file desc 4 9K 25K 78643K 45 0 proc 47 38K 63K 78643K 358 0 subproc 32 2K 2K 78643K 34 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 in_multi 33 2K 2K 78643K 33 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 37 175K 175K 78643K 37 0 exec 0 0K 1K 78643K 181 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 83 20K 21K 78643K 926 0 UVM aobj 2 2K 2K 78643K 2 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 NDP 6 0K 0K 78643K 10 0 temp 67 3027K 3091K 78643K 1837 0 kqueue 3 4K 4K 78643K 3 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 6 0 0 1 0 1 1 0 8 0 rtpcb 80 19 0 17 1 0 1 1 0 8 0 rtentry 112 45 0 1 2 0 2 2 0 8 0 unpcb 120 37 0 27 1 0 1 1 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 tcpqe 32 62 0 62 1 0 1 1 0 8 1 tcpcb 544 10 0 6 1 0 1 1 0 8 0 inpcb 280 40 0 33 1 0 1 1 0 8 0 nd6 48 6 0 0 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 188 0 0 12 0 12 12 0 8 0 art_table 32 189 0 0 2 0 2 2 0 8 0 art_node 16 44 0 4 1 0 1 1 0 8 0 semapl 112 2 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 1435 0 35 46 0 46 46 0 8 0 ffsino 240 1435 0 35 83 0 83 83 0 8 0 nchpl 144 1679 0 69 60 0 60 60 0 8 0 uvmvnodes 72 1486 0 0 28 0 28 28 0 8 0 vnodes 208 1486 0 0 79 0 79 79 0 8 0 namei 1024 4019 0 4019 1 0 1 1 0 8 1 scxspl 192 4978 0 4978 1 0 1 1 0 8 1 plimitpl 152 18 0 10 1 0 1 1 0 8 0 sigapl 424 231 0 204 4 0 4 4 0 8 0 futexpl 56 253 0 253 1 0 1 1 0 8 1 knotepl 112 53 0 34 1 0 1 1 0 8 0 kqueuepl 144 2 0 0 1 0 1 1 0 8 0 pipelkpl 16 67 0 57 1 0 1 1 0 8 0 pipepl 120 134 0 115 1 0 1 1 0 8 0 fdescpl 432 217 0 204 2 0 2 2 0 8 0 filepl 120 1069 0 971 4 0 4 4 0 8 0 lockfpl 104 7 0 6 1 0 1 1 0 8 0 lockfspl 48 4 0 3 1 0 1 1 0 8 0 sessionpl 112 17 0 7 1 0 1 1 0 8 0 pgrppl 48 19 0 9 1 0 1 1 0 8 0 ucredpl 96 62 0 55 1 0 1 1 0 8 0 zombiepl 144 204 0 202 1 0 1 1 0 8 0 processpl 920 231 0 202 4 0 4 4 0 8 0 procpl 624 254 0 218 4 0 4 4 0 8 0 sockpl 400 96 0 77 3 0 3 3 0 8 0 mcl64k 65536 2 0 2 1 0 1 1 0 8 1 mcl8k 8192 1 0 1 1 0 1 1 0 8 1 mcl4k 4096 9 0 9 2 1 1 1 0 8 1 mcl2k 2048 60634 0 60590 15 2 13 13 0 8 6 mtagpl 80 9 0 2 2 1 1 1 0 8 0 mbufpl 256 96147 0 96062 10 1 9 9 0 8 1 bufpl 280 4105 0 160 282 0 282 282 0 8 0 anonpl 16 34325 0 21883 53 1 52 52 0 107 0 amapchunkpl 152 965 0 838 8 0 8 8 0 158 2 amappl16 192 845 0 181 35 0 35 35 0 8 1 amappl15 184 8 0 5 1 0 1 1 0 8 0 amappl14 176 3 0 2 2 1 1 1 0 8 0 amappl13 168 23 0 22 1 0 1 1 0 8 0 amappl12 160 7 0 7 1 1 0 1 0 8 0 amappl11 152 64 0 51 1 0 1 1 0 8 0 amappl10 144 16 0 12 1 0 1 1 0 8 0 amappl9 136 386 0 382 1 0 1 1 0 8 0 amappl8 128 251 0 242 1 0 1 1 0 8 0 amappl7 120 111 0 100 1 0 1 1 0 8 0 amappl6 112 20 0 16 1 0 1 1 0 8 0 amappl5 104 147 0 137 1 0 1 1 0 8 0 amappl4 96 432 0 405 1 0 1 1 0 8 0 amappl3 88 105 0 100 1 0 1 1 0 8 0 amappl2 80 937 0 879 3 0 3 3 0 8 1 amappl1 72 13691 0 13302 26 9 17 20 0 8 8 amappl 80 487 0 448 1 0 1 1 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 1 0 0 1 0 1 1 0 8 0 uaddrrnd 24 217 0 204 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 217 0 204 1 0 1 1 0 8 0 vmmpekpl 168 5622 0 5596 2 0 2 2 0 8 0 vmmpepl 168 33111 0 31518 100 5 95 95 0 357 20 vmsppl 272 216 0 204 2 0 2 2 0 8 1 pdppl 4096 440 0 408 6 0 6 6 0 8 1 pvpl 32 121657 0 106351 131 0 131 131 0 265 2 pmappl 200 216 0 204 1 0 1 1 0 8 0 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 147 0 6 5 0 5 5 0 8 0