kern.securelevel: 0 -> 1
creating runtime link editor directory cache.
preserving editor files.
starting network daemons: sshd.
starting local daemons:.
Wed Jul 22 06:22:19 PDT 2020
OpenBSD/amd64 (ci-openbsd-main-2.c.syzkaller.internal) (tty00)
Warning: Permanently added '10.128.0.28' (ECDSA) to the list of known hosts.
2020/07/22 06:22:28 fuzzer started
2020/07/22 06:22:33 dialing manager at 10.128.15.235:10803
2020/07/22 06:22:33 syscalls: 381
2020/07/22 06:22:33 code coverage: enabled
2020/07/22 06:22:33 comparison tracing: enabled
2020/07/22 06:22:33 extra coverage: support is not implemented in syzkaller
2020/07/22 06:22:33 setuid sandbox: enabled
2020/07/22 06:22:33 namespace sandbox: support is not implemented in syzkaller
2020/07/22 06:22:33 Android sandbox: support is not implemented in syzkaller
2020/07/22 06:22:33 fault injection: support is not implemented in syzkaller
2020/07/22 06:22:33 leak checking: support is not implemented in syzkaller
2020/07/22 06:22:33 net packet injection: enabled
2020/07/22 06:22:33 net device setup: support is not implemented in syzkaller
2020/07/22 06:22:33 concurrency sanitizer: support is not implemented in syzkaller
2020/07/22 06:22:33 devlink PCI setup: support is not implemented in syzkaller
2020/07/22 06:22:33 USB emulation: support is not implemented in syzkaller
06:22:38 executing program 1:
r0 = openat$wsdisplay(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyCcfg\x00', 0x80, 0x0)
ioctl$WSDISPLAYIO_GVIDEO(r0, 0x40045744, &(0x7f0000000040))
r1 = dup2(0xffffffffffffffff, r0)
recvfrom$unix(r1, &(0x7f0000000080)=""/207, 0xcf, 0x80, 0x0, 0x0)
ioctl$KDENABIO(0xffffffffffffffff, 0x20004b3c)
ioctl$WSMOUSEIO_GETPARAMS(r1, 0x80105727, &(0x7f00000001c0)={&(0x7f0000000180)=[{0x23, 0x20}], 0x1})
select(0x40, &(0x7f0000000200)={0xffff, 0x0, 0xfffffffffffffbff, 0x7f, 0x9bb, 0x1, 0xffff, 0x6}, &(0x7f0000000240)={0x9ae, 0xb97, 0x4, 0x2, 0x0, 0x5, 0xbc9d, 0xfffffffffffffbff}, &(0x7f0000000280)={0x0, 0x0, 0x2, 0x812b, 0x80, 0x306, 0x6, 0xced}, &(0x7f00000002c0)={0x4, 0xfffffffffffffff9})
ioctl$KDSETRAD(r1, 0x20004b43)
r2 = semget$private(0x0, 0x4, 0x0)
semop(r2, &(0x7f0000000300)=[{0x3, 0x8, 0x800}, {0x1, 0xa5, 0x1800}, {0x0, 0x6, 0x1800}, {0x2, 0xfffb, 0x1000}], 0x4)
r3 = socket$unix(0x1, 0x2, 0x0)
setsockopt$sock_int(r3, 0xffff, 0x4, &(0x7f0000000340)=0x6, 0x4)
r4 = semget(0x3, 0x4, 0x62)
semctl$GETPID(r4, 0x0, 0x4, &(0x7f0000000380)=""/225)
preadv(0xffffffffffffff9c, &(0x7f0000000780)=[{&(0x7f0000000480)}, {&(0x7f00000004c0)=""/70, 0x46}, {&(0x7f0000000540)=""/203, 0xcb}, {&(0x7f0000000640)=""/34, 0x22}, {&(0x7f0000000680)=""/227, 0xe3}], 0x5, 0x0, 0x5)
semop(r4, &(0x7f0000000800)=[{0x4, 0x0, 0x1000}, {0x3, 0x13, 0x1800}, {0x4, 0x2, 0x1000}, {0x0, 0x5, 0x1000}, {0x3, 0x200}, {0x0, 0x7, 0x1800}], 0x6)
ioctl$WSKBDIO_SETDEFAULTKEYREPEAT(r1, 0x800c5709, &(0x7f0000000840)={0x9, 0x1, 0x1})
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0)
socket$unix(0x1, 0x5, 0x0)
flock(r3, 0x7)
06:22:38 executing program 0:
r0 = socket$inet(0x2, 0x2, 0x3)
recvfrom$inet(r0, &(0x7f0000000000)=""/249, 0xf9, 0x40, &(0x7f0000000100)={0x2, 0x1}, 0xc)
pipe2(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x10004)
ioctl$TIOCSPGRP(r1, 0x40047477, &(0x7f0000000180))
r3 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x200, 0x0)
ioctl$TIOCDRAIN(r3, 0x2000745e)
openat$bpf(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bpf\x00', 0x20000, 0x0)
r4 = openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x8000, 0x0)
r5 = openat$diskmap(0xffffffffffffff9c, &(0x7f0000000280)='/dev/diskmap\x00', 0x20, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r6=>0xffffffffffffffff})
poll(&(0x7f0000000300)=[{r4, 0x40}, {r5, 0x1}, {r6, 0x38}], 0x3, 0x40)
r7 = msgget(0x3, 0x0)
msgctl$IPC_RMID(r7, 0x0)
r8 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340)='/dev/zero\x00', 0x0, 0x0)
ioctl$WSMOUSEIO_SRES(r8, 0x80045721, &(0x7f0000000380)=0x2)
pipe(&(0x7f00000003c0)={<r9=>0xffffffffffffffff})
ioctl$TIOCMSET(r9, 0x8004746d, &(0x7f0000000400))
pread(r2, &(0x7f0000000440)="6f87c3773eb7580c3f786a78e9a149fe220cbe204cbf5a6236cca16902ceacdc5620b22ebdf85dbcdab668e55287622b54a269d77f949b3d800410fb883972945c941b5a28f0596a24f409810cbf330a6055fe37e7902d1844955cb218ae93133e15e8c35ee55ceb3a135858a50a9d732b40021d720f4bbe71f91440ca10e52ca469d76643506419a4581d8c6483ac", 0x8f, 0x0, 0x91e1)
r10 = openat$vmm(0xffffffffffffff9c, &(0x7f0000000500)='/dev/vmm\x00', 0x8000, 0x0)
ioctl$VMM_IOC_RUN(r10, 0xc0205602, &(0x7f00000007c0)={0xd67, 0x5, 0x4a, 0x313, &(0x7f0000000540)={{0x1, 0x9, 0x2, 0xe3, 0x4, 0x9, 0x3ff}, {[0x4, 0xffffffffffffff5b, 0x8, 0x3, 0x81, 0xb6, 0x8, 0x3f, 0xba, 0x1, 0x5, 0x0, 0x8, 0x3b5e, 0x7fff, 0x8, 0x1, 0x40], [0x2, 0x6, 0x5, 0x400, 0x9, 0x1, 0x7fff, 0x353, 0x8, 0x10000], [0x3ff, 0x3, 0x0, 0xc36, 0x0, 0xce, 0x1], [0x5, 0xfc, 0xff, 0x2, 0x4, 0x1299], [{0x8, 0x2, 0x3, 0x5f}, {0x6, 0x0, 0xfffffff8, 0x8}, {0xfbff, 0xf7, 0xffffffc0, 0x1000}, {0x5, 0xfffffff8, 0x7, 0x5ad}, {0xcede, 0x0, 0x6, 0x8}, {0x7, 0x15, 0x8001}, {0x0, 0x4, 0x7, 0x7fff}, {0x6, 0x80000000, 0x1, 0x6}], {0x4, 0x9, 0x80000001, 0x1}, {0x80, 0x7fffffff, 0x6, 0x1}}}, 0x80, 0x1})
06:22:38 executing program 0:
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff}, 0x10000)
ioctl$WSKBDIO_SETDEFAULTBELL(r0, 0x80105705, &(0x7f0000000080)={0x40, 0x67, 0x10001, 0x4})
sysctl$kern(&(0x7f0000000000)={0x1, 0x4f}, 0x8, &(0x7f0000000040), 0x0, 0x0, 0x0)
06:22:38 executing program 0:
mlock(&(0x7f00009a2000/0x1000)=nil, 0x1000)
r0 = kqueue()
kevent(r0, &(0x7f0000000080), 0x400000009130dbf, 0x0, 0xfffffffe, 0x0)
r1 = openat$pf(0xffffffffffffff9c, &(0x7f0000000200)='/dev/pf\x00', 0x2, 0x0)
ioctl$FIOASYNC(r1, 0xcd604404, &(0x7f0000000240))
r2 = openat$speaker(0xffffffffffffff9c, &(0x7f0000000000)='/dev/speaker\x00', 0x10, 0x0)
mmap(&(0x7f00009dc000/0x2000)=nil, 0x2000, 0x2, 0x1013, r2, 0x0, 0x100000000)
06:22:40 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file0/file0\x00', 0x20)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0xffff, 0x0, 0xffffffffffffffff, 0x500)
getsockname(r0, &(0x7f0000000080)=@un=@abs, &(0x7f0000000200)=0x8)
chmod(&(0x7f00000001c0)='./file0/file0\x00', 0x154)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4)
ioctl$WSDISPLAYIO_GETSCREENTYPE(r1, 0xc028575d, &(0x7f0000000280)={0xfea, 0x8, './file0\x00', 0x5, 0x1f, 0x6, 0x3})
chmod(&(0x7f00000000c0)='./file0\x00', 0x3f)
setuid(0xee01)
mkdir(&(0x7f0000000140)='./file0/file1\x00', 0x1ba)
rename(&(0x7f0000000100)='./file0/file1\x00', &(0x7f0000000180)='./file0/file0\x00')
06:22:40 executing program 0:
ioctl$BIOCSETF(0xffffffffffffffff, 0x80104267, &(0x7f00000000c0)={0x0, &(0x7f0000000300)})
r0 = socket(0x2, 0x3, 0x0)
setitimer(0x1, &(0x7f0000000000)={{0x0, 0x1}, {0xdcfc, 0x9}}, &(0x7f0000000040))
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TIOCFLUSH(r1, 0xc0106924, &(0x7f00000000c0)=0x6e)
ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000300)={'tap', 0x0})
ioctl$VMM_IOC_RESETCPU(0xffffffffffffffff, 0x82405605, &(0x7f0000000340)={0x0, 0x0, {[0x7, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x8]}})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r2 = socket(0x18, 0x2, 0x0)
chmod(&(0x7f0000000080)='./file0\x00', 0x20)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$TIOCFLUSH(r3, 0x8080691a, &(0x7f0000000300))
06:22:40 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000040)=ANY=[@ANYBLOB="ffffd40063c868daaa4941ffffffffaaaaaaaaaaaa0800450000380000000000019078e0000002000000000305907800000000470000000000000000000000ac1400aaffffff"])
06:22:40 executing program 0:
r0 = socket(0x18, 0x8002, 0x0)
recvfrom$inet6(r0, &(0x7f0000000180)=""/24, 0x18, 0x800, &(0x7f00000001c0)={0x18, 0x3, 0xc230, 0xa9ef}, 0xc)
r1 = socket(0x18, 0x2, 0x0)
setsockopt(r1, 0x29, 0xb, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4)
r2 = dup2(r1, r0)
sendmsg$unix(r2, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x0)
r3 = socket(0x18, 0x8002, 0x0)
r4 = socket(0x18, 0x2, 0x0)
setsockopt(r4, 0x29, 0xb, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4)
setsockopt$sock_int(0xffffffffffffffff, 0xffff, 0x0, 0xffffffffffffffff, 0x500)
getsockopt$sock_timeval(0xffffffffffffffff, 0xffff, 0x1005, &(0x7f0000000200), &(0x7f0000000280)=0x10)
dup2(r4, r3)
getpeername$inet6(r4, &(0x7f0000000100), &(0x7f0000000140)=0xc)
utimensat(r2, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={{0xf2fe, 0x8}, {0x1ff, 0x2acc}}, 0x2)
r5 = openat$pf(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pf\x00', 0x2, 0x0)
ioctl$FIOASYNC(r5, 0xcd60441a, &(0x7f0000000240)=0x6)
r6 = openat$pf(0xffffffffffffff9c, &(0x7f0000001340)='/dev/pf\x00', 0x1, 0x0)
sysctl$net_mpls(&(0x7f0000000cc0), 0x3, 0x0, 0x0, 0x0, 0x0)
ioctl$FIOASYNC(r6, 0xcd60441a, &(0x7f0000000240)=0x2)
ioctl$BIOCSDIRFILT(0xffffffffffffff9c, 0x8004427d, &(0x7f0000000040)=0x7)
06:22:40 executing program 1:
setrlimit(0x8, &(0x7f0000000040)={0x7, 0x95})
r0 = syz_open_pts()
close(r0)
r1 = socket(0x20, 0x8000, 0x9)
ioctl$FIOASYNC(r1, 0x8004667d, &(0x7f00000000c0)=0x100)
syz_open_pts()
ioctl$TIOCSETA(r0, 0x802c7414, &(0x7f0000000080)={0x0, 0x3, 0xffff, 0xfffffffffffffffa, "0366e0af37b2033c02df50795acd00"})
write(r0, &(0x7f0000000140)="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", 0x546)
write(r0, &(0x7f0000000000)="6a4a4e5cfab9b0fbac605a000000ff03", 0x1e2)
06:22:40 executing program 0:
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000140)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc})
mknod(&(0x7f0000000500)='./bus\x00', 0x2003, 0xa6138)
r0 = open(&(0x7f0000001ac0)='./bus\x00', 0x2, 0x0)
pwritev(r0, &(0x7f00000002c0)=[{&(0x7f0000000180), 0xff20}], 0x100000000000005e, 0x0, 0x0)
pwritev(r0, &(0x7f0000000280), 0x6b, 0x0, 0x0)
06:22:40 executing program 0:
syz_emit_ethernet(0x36, &(0x7f0000000c00)={@local, @empty, [], {@ipv4={0x800, {{0x8, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0xad01, 0x0, @remote={0xac, 0x14, 0x0}, @empty, {[@timestamp={0x44, 0xc, 0x6, 0x0, 0x0, [{[@multicast2]}]}]}}, @icmp=@echo}}}})
unveil(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='W\x00')
06:22:40 executing program 0:
ioctl$VMM_IOC_WRITEREGS(0xffffffffffffffff, 0x82485608, &(0x7f0000000240)={0x0, 0x0, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000], [0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1fd], [0x0, 0x0, 0x0, 0x9, 0xf9ffffffffffffff], [0xfffffffffffffffe, 0x1f, 0x9]}})
ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000300)={'tap', 0x0})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket(0x18, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TIOCFLUSH(r1, 0x8080691a, &(0x7f0000000300))
login: panic: m_copym0: short mbuf chain
Stopped at db_enter+0x18: addq $0x8,%rsp
TID PID UID PRFLAGS PFLAGS CPU COMMAND
*176442 6966 0 0x12 0 0 sshd
db_enter() at db_enter+0x18
panic(ffffffff823d660f) at panic+0x15c
m_copym(fffffd805c804500,244,184,2) at m_copym+0x553
tcp_output(ffff800000ac3540) at tcp_output+0x154d
tcp_usrreq(fffffd805da777d8,9,fffffd805c804400,0,0,ffff80001d71c010) at tcp_usrreq+0xa54
sosend(fffffd805da777d8,0,ffff80001d6cd5a8,0,0,80) at sosend+0x669
dofilewritev(ffff80001d71c010,4,ffff80001d6cd5a8,0,ffff80001d6cd690) at dofilewritev+0x1ab
sys_write(ffff80001d71c010,ffff80001d6cd640,ffff80001d6cd690) at sys_write+0x83
syscall(ffff80001d6cd710) at syscall+0x507
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffbd410, count: 5
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb>
ddb> set $lines = 0
ddb> set $maxwidth = 0
ddb> show panic
m_copym0: short mbuf chain
ddb> trace
db_enter() at db_enter+0x18
panic(ffffffff823d660f) at panic+0x15c
m_copym(fffffd805c804500,244,184,2) at m_copym+0x553
tcp_output(ffff800000ac3540) at tcp_output+0x154d
tcp_usrreq(fffffd805da777d8,9,fffffd805c804400,0,0,ffff80001d71c010) at tcp_usrreq+0xa54
sosend(fffffd805da777d8,0,ffff80001d6cd5a8,0,0,80) at sosend+0x669
dofilewritev(ffff80001d71c010,4,ffff80001d6cd5a8,0,ffff80001d6cd690) at dofilewritev+0x1ab
sys_write(ffff80001d71c010,ffff80001d6cd640,ffff80001d6cd690) at sys_write+0x83
syscall(ffff80001d6cd710) at syscall+0x507
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffbd410, count: -10
ddb> show registers
rdi 0
rsi 0x1
rbp 0xffff80001d6cd070
rbx 0xffff80001d6cd120
rdx 0x2
rcx 0
rax 0x1
r8 0xffffffff81443f7f kprintf+0x15f
r9 0x1
r10 0x2
r11 0xfd32ff67264c3511
r12 0x3000000008
r13 0xffff80001d6cd080
r14 0x100
r15 0x1
rip 0xffffffff8197d558 db_enter+0x18
cs 0x8
rflags 0x246
rsp 0xffff80001d6cd060
ss 0x10
db_enter+0x18: addq $0x8,%rsp
ddb> show proc
PROC (sshd) pid=176442 stat=onproc
flags process=12<EXEC,SUGID,8ORPHAN> proc=0
pri=24, usrpri=50, nice=20
forw=0xffffffffffffffff, list=0xffff80001d71c280,0xffff80001d71c770
process=0xffff80001d706af8 user=0xffff80001d6c8000, vmspace=0xfffffd806bc0a330
estcpu=0, cpticks=0, pctcpu=0.1
user=0, sys=0, intr=0
ddb> ps
PID TID PPID UID S FLAGS WAIT COMMAND
82375 34881 82856 0 3 0x82 piperd syz-executor.0
53366 136440 82856 0 2 0x2 syz-executor.1
82856 188963 95342 0 3 0x82 thrsleep syz-fuzzer
82856 449937 95342 0 3 0x4000082 nanosleep syz-fuzzer
82856 520445 95342 0 2 0x4000002 syz-fuzzer
82856 343717 95342 0 3 0x4000082 thrsleep syz-fuzzer
82856 45643 95342 0 3 0x4000082 thrsleep syz-fuzzer
82856 225634 95342 0 3 0x4000082 thrsleep syz-fuzzer
82856 342241 95342 0 3 0x4000082 thrsleep syz-fuzzer
82856 366255 95342 0 3 0x4000082 thrsleep syz-fuzzer
82856 223763 95342 0 3 0x4000082 thrsleep syz-fuzzer
95342 424433 6966 0 3 0x10008a pause ksh
* 6966 176442 16932 0 7 0x12 sshd
79080 403307 1 0 3 0x100083 ttyin getty
16932 368987 1 0 3 0x80 select sshd
49199 168015 13318 73 3 0x100090 kqread syslogd
13318 192642 1 0 3 0x100082 netio syslogd
41473 445443 1 77 3 0x100090 poll dhclient
74669 108025 1 0 3 0x80 poll dhclient
64340 277710 0 0 3 0x14200 bored smr
89353 385039 0 0 2 0x14200 zerothread
40487 87409 0 0 3 0x14200 aiodoned aiodoned
85917 458575 0 0 3 0x14200 syncer update
43148 462768 0 0 3 0x14200 cleaner cleaner
97319 145553 0 0 3 0x14200 reaper reaper
97763 133432 0 0 3 0x14200 pgdaemon pagedaemon
64421 229110 0 0 3 0x14200 bored crynlk
44029 296490 0 0 3 0x14200 bored crypto
70260 103246 0 0 3 0x40014200 acpi0 acpi0
97549 367004 0 0 3 0x14200 bored softnet
20237 138286 0 0 3 0x14200 bored systqmp
50200 76212 0 0 3 0x14200 bored systq
99488 292913 0 0 3 0x40014200 bored softclock
10937 120319 0 0 3 0x40014200 idle0
1 330570 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb> show all locks
No such command
ddb> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 9453 6326K 6326K 78643K 10554 0
pcb 13 8K 8K 78643K 17 0
rtable 105 3K 3K 78643K 195 0
ifaddr 44 10K 10K 78643K 48 0
counters 21 16K 16K 78643K 21 0
ioctlops 0 0K 4K 78643K 21 0
iov 0 0K 2K 78643K 4 0
mount 1 1K 1K 78643K 1 0
vnodes 1216 76K 77K 78643K 1222 0
UFS quota 1 32K 32K 78643K 1 0
UFS mount 5 36K 36K 78643K 5 0
shm 2 1K 1K 78643K 2 0
VM map 2 0K 0K 78643K 2 0
sem 4 0K 0K 78643K 4 0
dirhash 12 2K 2K 78643K 12 0
ACPI 1809 195K 288K 78643K 12938 0
file desc 4 9K 25K 78643K 46 0
proc 48 38K 63K 78643K 361 0
subproc 32 2K 2K 78643K 34 0
NFS srvsock 1 0K 0K 78643K 1 0
NFS daemon 1 16K 16K 78643K 1 0
ip_moptions 0 0K 0K 78643K 3 0
in_multi 33 2K 2K 78643K 41 0
ether_multi 1 0K 0K 78643K 1 0
ISOFS mount 1 32K 32K 78643K 1 0
MSDOSFS mount 1 16K 16K 78643K 1 0
ttys 31 148K 148K 78643K 31 0
exec 0 0K 1K 78643K 181 0
pagedep 1 8K 8K 78643K 1 0
inodedep 1 32K 32K 78643K 1 0
newblk 1 0K 0K 78643K 1 0
VM swap 7 26K 26K 78643K 7 0
UVM amap 121 23K 23K 78643K 981 0
UVM aobj 3 2K 2K 78643K 3 0
memdesc 1 4K 4K 78643K 1 0
crypto data 1 1K 1K 78643K 1 0
NDP 6 0K 0K 78643K 12 0
temp 66 3847K 3911K 78643K 1801 0
kqueue 3 4K 4K 78643K 3 0
SYN cache 2 16K 16K 78643K 2 0
ddb> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
arp 64 6 0 0 1 0 1 1 0 8 0
rtpcb 80 19 0 17 1 0 1 1 0 8 0
rtentry 112 47 0 3 2 0 2 2 0 8 0
unpcb 120 31 0 23 1 0 1 1 0 8 0
syncache 264 4 0 4 1 1 0 1 0 8 0
tcpqe 32 102 0 102 1 0 1 1 0 8 1
tcpcb 544 10 0 6 1 0 1 1 0 8 0
inpcb 296 48 0 41 1 0 1 1 0 8 0
nd6 48 8 0 2 1 0 1 1 0 8 0
pfrule 1360 4 0 2 1 0 1 1 0 8 0
art_heap8 4096 1 0 0 1 0 1 1 0 8 0
art_heap4 256 188 0 0 12 0 12 12 0 8 0
art_table 32 189 0 0 2 0 2 2 0 8 0
art_node 16 46 0 6 1 0 1 1 0 8 0
semapl 112 2 0 0 1 0 1 1 0 8 0
dirhash 1024 17 0 0 3 0 3 3 0 8 0
dino2pl 256 1436 0 38 88 0 88 88 0 8 0
ffsino 240 1436 0 38 83 0 83 83 0 8 0
nchpl 144 1672 0 70 60 0 60 60 0 8 0
uvmvnodes 72 1479 0 0 27 0 27 27 0 8 0
vnodes 208 1479 0 0 78 0 78 78 0 8 0
namei 1024 4132 0 4132 1 0 1 1 0 8 1
scxspl 192 4616 0 4616 1 0 1 1 0 8 1
plimitpl 152 16 0 9 1 0 1 1 0 8 0
sigapl 424 232 0 205 4 0 4 4 0 8 0
futexpl 56 241 0 241 1 0 1 1 0 8 1
knotepl 112 61 0 42 1 0 1 1 0 8 0
kqueuepl 144 4 0 2 1 0 1 1 0 8 0
pipepl 272 76 0 66 1 0 1 1 0 8 0
fdescpl 432 218 0 205 2 0 2 2 0 8 0
filepl 120 1084 0 989 4 0 4 4 0 8 1
lockfpl 104 10 0 9 1 0 1 1 0 8 0
lockfspl 48 5 0 4 1 0 1 1 0 8 0
sessionpl 112 17 0 7 1 0 1 1 0 8 0
pgrppl 48 17 0 7 1 0 1 1 0 8 0
ucredpl 96 55 0 48 1 0 1 1 0 8 0
zombiepl 144 205 0 205 1 0 1 1 0 8 1
processpl 928 232 0 205 4 0 4 4 0 8 0
procpl 624 259 0 224 4 0 4 4 0 8 1
sockpl 400 98 0 81 3 0 3 3 0 8 1
mcl64k 65536 4 0 4 1 0 1 1 0 8 1
mcl4k 4096 10 0 10 2 1 1 1 0 8 1
mcl2k 2048 92311 0 92264 15 2 13 13 0 8 7
mtagpl 96 2 0 2 1 1 0 1 0 8 0
mbufpl 256 145453 0 145362 13 1 12 12 0 8 1
bufpl 280 3294 0 126 227 0 227 227 0 8 0
anonpl 16 42644 0 27827 77 1 76 76 0 107 16
amapchunkpl 152 1121 0 994 8 0 8 8 0 158 2
amappl16 192 1190 0 386 51 0 51 51 0 8 10
amappl15 184 1 0 0 1 0 1 1 0 8 0
amappl14 176 27 0 22 1 0 1 1 0 8 0
amappl13 168 39 0 34 1 0 1 1 0 8 0
amappl12 160 20 0 17 2 1 1 1 0 8 0
amappl11 152 46 0 37 1 0 1 1 0 8 0
amappl10 144 18 0 11 1 0 1 1 0 8 0
amappl9 136 372 0 370 1 0 1 1 0 8 0
amappl8 128 319 0 278 2 0 2 2 0 8 0
amappl7 120 107 0 95 1 0 1 1 0 8 0
amappl6 112 23 0 20 1 0 1 1 0 8 0
amappl5 104 170 0 160 1 0 1 1 0 8 0
amappl4 96 415 0 389 1 0 1 1 0 8 0
amappl3 88 99 0 94 1 0 1 1 0 8 0
amappl2 80 920 0 865 2 0 2 2 0 8 0
amappl1 72 13957 0 13555 22 5 17 17 0 8 8
amappl 80 509 0 471 1 0 1 1 0 84 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 6 0 6 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 64 2 0 0 1 0 1 1 0 8 0
uaddrrnd 24 218 0 205 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 218 0 205 1 0 1 1 0 8 0
vmmpekpl 168 5709 0 5684 2 0 2 2 0 8 0
vmmpepl 168 34419 0 32626 115 4 111 111 0 357 29
vmsppl 272 217 0 205 2 0 2 2 0 8 1
pdppl 4096 442 0 410 6 0 6 6 0 8 1
pvpl 32 131460 0 113774 181 0 181 181 0 265 36
pmappl 200 217 0 205 1 0 1 1 0 8 0
extentpl 40 53 0 36 1 0 1 1 0 8 0
phpool 112 239 0 6 7 0 7 7 0 8 0
ddb> machine ddbcpu 0
No such command
ddb> trace
db_enter() at db_enter+0x18
panic(ffffffff823d660f) at panic+0x15c
m_copym(fffffd805c804500,244,184,2) at m_copym+0x553
tcp_output(ffff800000ac3540) at tcp_output+0x154d
tcp_usrreq(fffffd805da777d8,9,fffffd805c804400,0,0,ffff80001d71c010) at tcp_usrreq+0xa54
sosend(fffffd805da777d8,0,ffff80001d6cd5a8,0,0,80) at sosend+0x669
dofilewritev(ffff80001d71c010,4,ffff80001d6cd5a8,0,ffff80001d6cd690) at dofilewritev+0x1ab
sys_write(ffff80001d71c010,ffff80001d6cd640,ffff80001d6cd690) at sys_write+0x83
syscall(ffff80001d6cd710) at syscall+0x507
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffbd410, count: -10
ddb> machine ddbcpu 1
No such command
ddb> trace
db_enter() at db_enter+0x18
panic(ffffffff823d660f) at panic+0x15c
m_copym(fffffd805c804500,244,184,2) at m_copym+0x553
tcp_output(ffff800000ac3540) at tcp_output+0x154d
tcp_usrreq(fffffd805da777d8,9,fffffd805c804400,0,0,ffff80001d71c010) at tcp_usrreq+0xa54
sosend(fffffd805da777d8,0,ffff80001d6cd5a8,0,0,80) at sosend+0x669
dofilewritev(ffff80001d71c010,4,ffff80001d6cd5a8,0,ffff80001d6cd690) at dofilewritev+0x1ab
sys_write(ffff80001d71c010,ffff80001d6cd640,ffff80001d6cd690) at sys_write+0x83
syscall(ffff80001d6cd710) at syscall+0x507
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffbd410, count: -10