panic: Assertion ip->i_mode != 0 failed at /syzkaller/managers/i386/kernel/sys/ufs/ffs/ffs_softdep.c:10021 cpuid = 0 time = 36 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0056c527d0 kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0056c52930 vpanic() at vpanic+0x257/frame 0xfffffe0056c52af0 panic() at panic+0xb5/frame 0xfffffe0056c52bb0 handle_workitem_remove() at handle_workitem_remove+0xd03/frame 0xfffffe0056c52cf0 process_worklist_item() at process_worklist_item+0x525/frame 0xfffffe0056c52e40 softdep_process_worklist() at softdep_process_worklist+0xfd/frame 0xfffffe0056c52e90 softdep_flush() at softdep_flush+0x1a4/frame 0xfffffe0056c52ef0 fork_exit() at fork_exit+0xcc/frame 0xfffffe0056c52f30 fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe0056c52f30 --- trap 0, rip = 0, rsp = 0, rbp = 0 --- KDB: enter: panic [ thread pid 14 tid 100094 ] Stopped at kdb_enter+0x6e: movq $0,0x25c45c7(%rip) db> db> set $lines = 0 db> set $maxwidth = 0 db> show registers cs 0x20 ds 0x3b es 0x3b fs 0x13 gs 0x1b ss 0 rax 0x12 rcx 0xfffffe0002bf1850 rdx 0 rbx 0xffffffff827cb4c0 .str.27 rsp 0xfffffe0056c52910 rbp 0xfffffe0056c52930 rsi 0 rdi 0xffffffff81614a99 printf+0x149 r8 0 r9 0xffffffff r10 0 r11 0x1f r12 0xfffffe00540bf000 r13 0xfffffffffffffffe r14 0xffffffff827cb4c0 .str.27 r15 0 rip 0xffffffff815fe5ce kdb_enter+0x6e rflags 0x46 kdb_enter+0x6e: movq $0,0x25c45c7(%rip) db> show proc Process 14 (bufdaemon) at 0xfffffe00540055c0: state: NORMAL uid: 0 gids: 0 parent: pid 0 at 0xffffffff83b4d060 ABI: null flag: 0x10000284 flag2: 0 reaper: 0xffffffff83b4d060 reapsubtree: 14 sigparent: 20 vmspace: 0xffffffff83b4e040 (map 0xffffffff83b4e040) (map.pmap 0xffffffff83b4e0e0) (pmap 0xffffffff83b4e150) threads: 3 100079 D psleep 0xffffffff83cbfd60 [bufdaemon] 100082 D - 0xffffffff83001ec0 [bufspacedaemon-0] 100094 Run CPU 0 [/ worker] db> ps pid ppid pgrp uid state wmesg wchan cmd 2362 765 765 0 R (threaded) syz-executor 101915 RunQ syz-executor 101963 S uwait 0xfffffe0078ac0200 syz-executor 101964 RunQ syz-executor 2361 2358 764 0 S uwait 0xfffffe0059631380 syz-executor 2359 2358 764 0 S uwait 0xfffffe0078158b80 syz-executor 2358 764 764 0 R (threaded) syz-executor 101930 Run CPU 1 syz-executor 101960 S uwait 0xfffffe0079330480 syz-executor 2339 1 764 0 S uwait 0xfffffe0078158c80 syz-executor 2337 1 764 0 S uwait 0xfffffe0078158a80 syz-executor 2323 0 0 0 DL mdwait 0xfffffe007c004000 [md0] 2322 1 764 0 S uwait 0xfffffe0078ac0b80 syz-executor 2319 1 764 0 S uwait 0xfffffe0078ac1600 syz-executor 2318 1 763 0 S uwait 0xfffffe0078158980 syz-executor 2305 1 763 0 S uwait 0xfffffe0078158880 syz-executor 2299 1 764 0 S uwait 0xfffffe0078ac0500 syz-executor 2297 2296 765 0 S uwait 0xfffffe0079332480 syz-executor 2296 1 765 0 SV uwait 0xfffffe0079331180 syz-executor 2294 1 765 0 S uwait 0xfffffe0079330a80 syz-executor 2274 1 764 0 S uwait 0xfffffe0078ac0a80 syz-executor 2272 1 764 0 S uwait 0xfffffe0078ac1200 syz-executor 2265 1 763 0 S uwait 0xfffffe0078ac0580 syz-executor 2263 1 763 0 S uwait 0xfffffe0078ac0680 syz-executor 2247 1 763 0 S umtxn 0xfffffe0078ac2e80 syz-executor 2245 1 763 0 S uwait 0xfffffe0058258580 syz-executor 2235 1 763 0 S uwait 0xfffffe0079330980 syz-executor 2231 1 764 0 S uwait 0xfffffe0079330780 syz-executor 2229 1 764 0 S uwait 0xfffffe0079330880 syz-executor 2227 1 764 0 S uwait 0xfffffe0079330680 syz-executor 2207 1 763 0 S uwait 0xfffffe0079331280 syz-executor 2204 1 763 0 S uwait 0xfffffe0079330f00 syz-executor 2195 1 764 0 S uwait 0xfffffe0078ac0d80 syz-executor 2191 1 763 0 S uwait 0xfffffe0079331780 syz-executor 2186 1 763 0 S uwait 0xfffffe0079330e00 syz-executor 2180 1 765 0 SV uwait 0xfffffe0078ac1500 syz-executor 2178 1 764 0 S uwait 0xfffffe0078ac0980 syz-executor 2176 1 764 0 S uwait 0xfffffe0078ac0780 syz-executor 2170 1 763 0 S uwait 0xfffffe0059633180 syz-executor 2159 1 764 0 S umtxn 0xfffffe0079331080 syz-executor 2154 1 764 0 S uwait 0xfffffe0058257900 syz-executor 2152 1 764 0 S uwait 0xfffffe0078ac2d80 syz-executor 2143 1 764 0 S uwait 0xfffffe0078ac1400 syz-executor 2138 1 763 0 S uwait 0xfffffe0078ac2780 syz-executor 2134 1 763 0 S uwait 0xfffffe0078ac1c00 syz-executor 2131 1 764 0 S uwait 0xfffffe0079330c00 syz-executor 2129 1 764 0 S uwait 0xfffffe0079330d00 syz-executor 2127 1 764 0 S uwait 0xfffffe0079331a80 syz-executor 2120 1 764 0 S uwait 0xfffffe0079331680 syz-executor 2116 1 765 0 S uwait 0xfffffe0058257800 syz-executor 2114 1 765 0 S uwait 0xfffffe0058257b00 syz-executor 2112 1 764 0 S uwait 0xfffffe0078ac1100 syz-executor 2111 1 765 0 S uwait 0xfffffe0078ac2080 syz-executor 2105 1 764 0 S uwait 0xfffffe0058257d00 syz-executor 2095 2094 764 0 S uwait 0xfffffe0078ac1000 syz-executor 2094 1 764 0 SV uwait 0xfffffe0078ac0e80 syz-executor 2093 1 764 0 S uwait 0xfffffe0078ac1e00 syz-executor 2089 1 765 0 S uwait 0xfffffe0078ac2b80 syz-executor 2080 1 765 0 S uwait 0xfffffe0058257c00 syz-executor 2078 1 765 0 S uwait 0xfffffe007766be00 syz-executor 2061 1 765 0 S uwait 0xfffffe0078ac2180 syz-executor 2059 1 765 0 S uwait 0xfffffe0058258180 syz-executor 2058 1 764 0 S uwait 0xfffffe0078ac1a00 syz-executor 2046 1 765 0 S uwait 0xfffffe0058258680 syz-executor 2044 1 765 0 S uwait 0xfffffe0078ac1700 syz-executor 2042 1 765 0 S uwait 0xfffffe0058258280 syz-executor 2025 1 766 0 S uwait 0xfffffe0078ac1900 syz-executor 2023 1 766 0 S uwait 0xfffffe0058259100 syz-executor 2006 1 765 0 S uwait 0xfffffe0058258780 syz-executor 2004 1 765 0 S uwait 0xfffffe007766b900 syz-executor 1998 1 766 0 S uwait 0xfffffe0078ac2980 syz-executor 1996 1 766 0 S uwait 0xfffffe0078155480 syz-executor 1975 1 765 0 S uwait 0xfffffe0078ac2a80 syz-executor 1973 1 765 0 S uwait 0xfffffe0078ac2280 syz-executor 1968 1 765 0 S uwait 0xfffffe0058258380 syz-executor 1967 1 765 0 S uwait 0xfffffe0078ac2580 syz-executor 1952 1 765 0 S uwait 0xfffffe0078ac2680 syz-executor 1949 1 765 0 S uwait 0xfffffe0078ac2480 syz-executor 1946 1 763 0 S uwait 0xfffffe007766bb00 syz-executor 1934 1 765 0 S uwait 0xfffffe0058258080 syz-executor 1932 1 765 0 S uwait 0xfffffe0058258b80 syz-executor 1925 1 765 0 S uwait 0xfffffe007766ba00 syz-executor 1922 1 764 0 S uwait 0xfffffe0078155080 syz-executor 1911 1 766 0 S uwait 0xfffffe0078ac3200 syz-executor 1889 1 765 0 S uwait 0xfffffe007766bc00 syz-executor 1886 1 766 0 S uwait 0xfffffe0078ac1f00 syz-executor 1882 1 765 0 S uwait 0xfffffe00584ec600 syz-executor 1880 1 765 0 S uwait 0xfffffe0078ac3500 syz-executor 1877 1 764 0 SV uwait 0xfffffe0078155380 syz-executor 1874 1 764 0 S uwait 0xfffffe0078ac2c80 syz-executor 1867 1 766 0 S uwait 0xfffffe0078ac3300 syz-executor 1863 1 764 0 S uwait 0xfffffe0058258d80 syz-executor 1860 1 764 0 S uwait 0xfffffe007766b500 syz-executor 1844 1 765 0 S uwait 0xfffffe0058258a80 syz-executor 1842 1 765 0 S uwait 0xfffffe0078155880 syz-executor 1829 1 765 0 S uwait 0xfffffe0078ac3400 syz-executor 1827 1 765 0 S uwait 0xfffffe0058259200 syz-executor 1808 1 766 0 S uwait 0xfffffe00584ebc00 syz-executor 1805 1 766 0 S uwait 0xfffffe0078155280 syz-executor 1801 1 765 0 S uwait 0xfffffe0078ac3100 syz-executor 1799 1 765 0 S uwait 0xfffffe0078155580 syz-executor 1790 1 766 0 S uwait 0xfffffe007766b800 syz-executor 1765 1 763 0 S uwait 0xfffffe0078156880 syz-executor 1758 1 763 0 S uwait 0xfffffe0078ac3000 syz-executor 1757 1 765 0 S uwait 0xfffffe007766bd00 syz-executor 1749 1 765 0 S uwait 0xfffffe007766b700 syz-executor 1747 1 765 0 S uwait 0xfffffe0058258880 syz-executor 1732 1 764 0 S uwait 0xfffffe007766b600 syz-executor 1730 1 764 0 S uwait 0xfffffe0078155780 syz-executor 1717 1 764 0 S uwait 0xfffffe0058258c80 syz-executor 1715 1 764 0 S uwait 0xfffffe0078155680 syz-executor 1711 1 765 0 S uwait 0xfffffe00584eb900 syz-executor 1707 1 763 0 S uwait 0xfffffe0078157300 syz-executor 1706 1 764 0 S uwait 0xfffffe007766bf00 syz-executor 1698 1 765 0 S uwait 0xfffffe0078156c80 syz-executor 1697 1 764 0 S uwait 0xfffffe0078155d80 syz-executor 1695 1 764 0 S uwait 0xfffffe0058259380 syz-executor 1685 1 765 0 S uwait 0xfffffe00584ecd00 syz-executor 1684 1 763 0 S uwait 0xfffffe0078156200 syz-executor 1680 1 766 0 S uwait 0xfffffe0078156100 syz-executor 1672 1 765 0 S uwait 0xfffffe007766a900 syz-executor 1670 1 765 0 S uwait 0xfffffe0058258980 syz-executor 1664 1 766 0 S uwait 0xfffffe0059633780 syz-executor 1656 1 763 0 S uwait 0xfffffe0059630900 syz-executor 1640 1 765 0 S uwait 0xfffffe00584ec900 syz-executor 1639 1 764 0 S uwait 0xfffffe00584ed080 syz-executor 1637 1 764 0 S uwait 0xfffffe00584eb800 syz-executor 1636 1 766 0 S uwait 0xfffffe00584ecc00 syz-executor 1622 1 765 0 S uwait 0xfffffe00584ecf00 syz-executor 1620 1 765 0 S uwait 0xfffffe0058259300 syz-executor 1617 1 765 0 S uwait 0xfffffe0078156680 syz-executor 1612 1 764 0 S uwait 0xfffffe0078155a80 syz-executor 1601 1 764 0 S uwait 0xfffffe00584ec800 syz-executor 1599 1 764 0 S uwait 0xfffffe0078156500 syz-executor 1596 1 764 0 S uwait 0xfffffe0078156000 syz-executor 1588 1 763 0 SV uwait 0xfffffe0078156400 syz-executor 1587 1 764 0 S uwait 0xfffffe0078155b80 syz-executor 1583 1 764 0 S uwait 0xfffffe0078156300 syz-executor 1581 1 764 0 S uwait 0xfffffe0078155980 syz-executor 1579 1 763 0 S uwait 0xfffffe0077668100 syz-executor 1578 0 0 0 DL mdwait 0xfffffe007868f000 [md3] 1573 1 765 0 S uwait 0xfffffe00584ec480 syz-executor 1570 1 763 0 S uwait 0xfffffe00584ec700 syz-executor 1569 1 766 0 S uwait 0xfffffe0059632a00 syz-executor 1562 1 763 0 S uwait 0xfffffe0059631a80 syz-executor 1560 1 763 0 S uwait 0xfffffe0078157100 syz-executor 1555 1 764 0 S uwait 0xfffffe00584ec380 syz-executor 1549 1 763 0 S uwait 0xfffffe00584ecb00 syz-executor 1542 1 763 0 S uwait 0xfffffe0078156b80 syz-executor 1540 1 763 0 S uwait 0xfffffe0078156d80 syz-executor 1532 1 763 0 S uwait 0xfffffe0078157600 syz-executor 1524 1 763 0 S uwait 0xfffffe0078155e80 syz-executor 1522 1 763 0 S uwait 0xfffffe0078156980 syz-executor 1519 1 764 0 S uwait 0xfffffe0078156a80 syz-executor 1513 1 763 0 S uwait 0xfffffe0078157200 syz-executor 1507 1 763 0 S uwait 0xfffffe0059632700 syz-executor 1504 1 763 0 S uwait 0xfffffe00584eca00 syz-executor 1503 1 766 0 S uwait 0xfffffe00584ebd00 syz-executor 1499 1 765 0 S uwait 0xfffffe00584eb600 syz-executor 1493 1 766 0 S uwait 0xfffffe00584ec080 syz-executor 1489 1 766 0 S uwait 0xfffffe00584eb700 syz-executor 1482 0 0 0 DL mdwait 0xfffffe0077c69000 [md2] 1480 1 764 0 S uwait 0xfffffe0078157800 syz-executor 1478 1 766 0 S uwait 0xfffffe00584ebf00 syz-executor 1476 1 766 0 S uwait 0xfffffe00584ebe00 syz-executor 1474 1 764 0 S uwait 0xfffffe00584ec180 syz-executor 1460 1 766 0 S uwait 0xfffffe00584ec280 syz-executor 1458 1 766 0 S uwait 0xfffffe00584eb400 syz-executor 1456 1 766 0 S uwait 0xfffffe00584eb500 syz-executor 1453 1 763 0 SV uwait 0xfffffe0078157c00 syz-executor 1451 1 764 0 S uwait 0xfffffe0078157e00 syz-executor 1443 1 765 0 S uwait 0xfffffe0059633d80 syz-executor 1442 1 763 0 S uwait 0xfffffe00584ebb00 syz-executor 1440 1 763 0 S uwait 0xfffffe0059633480 syz-executor 1430 1 766 0 S uwait 0xfffffe0078157d00 syz-executor 1428 1 765 0 S uwait 0xfffffe005825ac80 syz-executor 1424 1 766 0 S uwait 0xfffffe0077668f00 syz-executor 1423 1 765 0 S uwait 0xfffffe0078157000 syz-executor 1420 1 765 0 S uwait 0xfffffe0078157a00 syz-executor 1418 1 763 0 S uwait 0xfffffe007766a080 syz-executor 1415 1 763 0 S uwait 0xfffffe0078156e80 syz-executor 1410 1 763 0 S uwait 0xfffffe0078157900 syz-executor 1398 1 763 0 S uwait 0xfffffe0078157f00 syz-executor 1397 1 766 0 S uwait 0xfffffe0078158180 syz-executor 1394 1 765 0 S uwait 0xfffffe0059633b80 syz-executor 1392 1 765 0 S uwait 0xfffffe0059633680 syz-executor 1388 1 764 0 S uwait 0xfffffe005825ae80 syz-executor 1383 1 763 0 S uwait 0xfffffe00584eb100 syz-executor 1373 1 763 0 S uwait 0xfffffe0059633a80 syz-executor 1372 1 765 0 S uwait 0xfffffe0078157700 syz-executor 1371 1 764 0 S uwait 0xfffffe005825ab80 syz-executor 1369 1 764 0 S uwait 0xfffffe00584eba00 syz-executor 1363 1 766 0 S uwait 0xfffffe0059633c80 syz-executor 1353 1 763 0 S uwait 0xfffffe0077669580 syz-executor 1349 1 766 0 S uwait 0xfffffe005825ad80 syz-executor 1347 1 766 0 S uwait 0xfffffe0077668500 syz-executor 1344 1 766 0 S uwait 0xfffffe0078158080 syz-executor 1338 1 763 0 S uwait 0xfffffe0078158280 syz-executor 1334 1 765 0 S uwait 0xfffffe007766a180 syz-executor 1327 1 764 0 S uwait 0xfffffe00584eee80 syz-executor 1322 1 763 0 S uwait 0xfffffe007766a800 syz-executor 1320 1 763 0 S uwait 0xfffffe0077668200 syz-executor 1309 1 763 0 S uwait 0xfffffe0077668c00 syz-executor 1306 1 764 0 S uwait 0xfffffe0078158580 syz-executor 1299 1 764 0 S uwait 0xfffffe0077669280 syz-executor 1297 1296 765 0 S uwait 0xfffffe0078158480 syz-executor 1296 1 765 0 SV uwait 0xfffffe0059633980 syz-executor 1294 1 765 0 S uwait 0xfffffe00584eb200 syz-executor 1292 1 766 0 S uwait 0xfffffe0078158380 syz-executor 1281 1 766 0 S uwait 0xfffffe007766a380 syz-executor 1279 1 764 0 S uwait 0xfffffe00584eeb80 syz-executor 1277 1 766 0 S uwait 0xfffffe0059633e80 syz-executor 1275 1 766 0 S uwait 0xfffffe0077668400 syz-executor 1274 1 765 0 S uwait 0xfffffe0059633880 syz-executor 1266 1 763 0 S uwait 0xfffffe0059633580 syz-executor 1265 1 763 0 S uwait 0xfffffe0077668000 syz-executor 1258 1 764 0 S uwait 0xfffffe0077668300 syz-executor 1250 1 765 0 S uwait 0xfffffe00584eb000 syz-executor 1244 1 766 0 S uwait 0xfffffe0077668800 syz-executor 1234 1233 763 0 S uwait 0xfffffe0077669c80 syz-executor 1233 1 763 0 SV uwait 0xfffffe007766b380 syz-executor 1231 1 763 0 S uwait 0xfffffe00584ee980 syz-executor 1229 1 763 0 S uwait 0xfffffe0059630100 syz-executor 1224 1 763 0 S uwait 0xfffffe007766a580 syz-executor 1221 1 766 0 S umtxn 0xfffffe00584eb300 syz-executor 1219 1 764 0 SV semwait 0xfffffe0058513f50 syz-executor 1215 1 763 0 S uwait 0xfffffe0077669d80 syz-executor 1210 1 764 0 S uwait 0xfffffe0077668a00 syz-executor 1205 1 764 0 S uwait 0xfffffe0077669f00 syz-executor 1203 1 764 0 S uwait 0xfffffe0077669380 syz-executor 1199 1 766 0 S uwait 0xfffffe0077668900 syz-executor 1195 1 763 0 S uwait 0xfffffe0077669180 syz-executor 1190 1 764 0 S uwait 0xfffffe0077669b80 syz-executor 1188 1 765 0 S uwait 0xfffffe0077668600 syz-executor 1181 1 764 0 S uwait 0xfffffe0077668d00 syz-executor 1179 1 764 0 S uwait 0xfffffe0077668b00 syz-executor 1177 1 766 0 S uwait 0xfffffe0077668700 syz-executor 1175 1 765 0 S uwait 0xfffffe007766a280 syz-executor 1172 1 764 0 S uwait 0xfffffe0077669a80 syz-executor 1168 1 763 0 S umtxn 0xfffffe007766a480 syz-executor 1161 1 766 0 S uwait 0xfffffe0077669480 syz-executor 1159 1 766 0 S uwait 0xfffffe0077669080 syz-executor 1150 1 766 0 S uwait 0xfffffe0077669880 syz-executor 1149 1 765 0 S uwait 0xfffffe0059630300 syz-executor 1145 1 765 0 S uwait 0xfffffe0077668e00 syz-executor 1141 1 763 0 S uwait 0xfffffe0077669780 syz-executor 1137 1 766 0 S uwait 0xfffffe007766af00 syz-executor 1132 1 764 0 S uwait 0xfffffe007766b180 syz-executor 1130 1 764 0 S uwait 0xfffffe007766a680 syz-executor 1129 1 763 0 S uwait 0xfffffe0077669980 syz-executor 1126 1 763 0 S uwait 0xfffffe0059632d00 syz-executor 1122 1 766 0 S uwait 0xfffffe0059630600 syz-executor 1120 1 763 0 S uwait 0xfffffe0077669680 syz-executor 1113 1 765 0 SV semwait 0xfffffe0058513b40 syz-executor 1111 1 766 0 SV semwait 0xfffffe0058513af0 syz-executor 1109 1 763 0 SV semwait 0xfffffe0058513aa0 syz-executor 1106 1 765 0 S uwait 0xfffffe0059631580 syz-executor 1097 1 764 0 S uwait 0xfffffe007766ab00 syz-executor 1096 1 766 0 S uwait 0xfffffe0059630a00 syz-executor 1092 1 764 0 S uwait 0xfffffe00584eea80 syz-executor 1090 1 763 0 S uwait 0xfffffe0059631780 syz-executor 1089 1 765 0 SV semwait 0xfffffe00585139b0 syz-executor 1087 1 766 0 S uwait 0xfffffe0059632e00 syz-executor 1080 1 766 0 S uwait 0xfffffe0059631980 syz-executor 1065 1052 1065 0 Ss select 0xfffffe006deee840 dhclient 1063 1 765 0 SV uwait 0xfffffe005825a680 syz-executor 1058 1 766 0 S uwait 0xfffffe005825a480 syz-executor 1057 1 1057 0 Ss select 0xfffffe00593ebf40 dhclient 1052 1044 423 65 S select 0xfffffe0053ffc2c0 dhclient 1044 423 423 0 S wait 0xfffffe005414b060 sh 1038 1 766 0 S uwait 0xfffffe0059632f00 syz-executor 1026 1 763 0 S uwait 0xfffffe0059630400 syz-executor 998 0 0 0 DL - 0xffffffff83cb3e00 [soaiod4] 997 0 0 0 DL - 0xffffffff83cb3e00 [soaiod3] 996 0 0 0 DL - 0xffffffff83cb3e00 [soaiod2] 995 0 0 0 DL - 0xffffffff83cb3e00 [soaiod1] 984 0 0 0 DL mdwait 0xfffffe0077712000 [md1] 981 1 763 0 S uwait 0xfffffe0059630c00 syz-executor 960 1 765 0 S uwait 0xfffffe007766b080 syz-executor 954 0 0 0 DL (threaded) [so_splice] 100175 D - 0xfffffe007766a700 [thr_0] 100270 D - 0xfffffe007766a740 [thr_1] 932 1 763 0 S uwait 0xfffffe007766b480 syz-executor 929 1 766 0 S uwait 0xfffffe00584ee780 syz-executor 921 1 765 0 S uwait 0xfffffe0059633080 syz-executor 910 1 764 0 S uwait 0xfffffe0059630700 syz-executor 902 1 766 0 S umtxn 0xfffffe0059630000 syz-executor 894 1 766 0 S uwait 0xfffffe005825a580 syz-executor 891 1 765 0 S uwait 0xfffffe0059630b00 syz-executor 877 1 766 0 S uwait 0xfffffe0059630800 syz-executor 876 1 763 0 S uwait 0xfffffe0059630500 syz-executor 873 1 763 0 S uwait 0xfffffe0059631680 syz-executor 814 0 0 0 DL aiordy 0xfffffe00540cf5a0 [aiod4] 813 0 0 0 DL aiordy 0xfffffe00540cfb00 [aiod3] 812 0 0 0 DL aiordy 0xfffffe00540d0060 [aiod2] 811 0 0 0 DL aiordy 0xfffffe00540d05c0 [aiod1] 765 1 765 0 S nanslp 0xffffffff83ba3c40 syz-executor 764 1 764 0 S nanslp 0xffffffff83ba3c40 syz-executor 747 1 747 0 Ss+ ttyin 0xfffffe00582904b0 getty 746 1 746 0 Ss+ ttyin 0xfffffe00585cc4b0 getty 745 1 745 0 Ss+ ttyin 0xfffffe00585cc8b0 getty 744 1 744 0 Ss+ ttyin 0xfffffe00585cccb0 getty 743 1 743 0 Ss+ ttyin 0xfffffe00585cd0b0 getty 742 1 742 0 Ss+ ttyin 0xfffffe00585cd4b0 getty 741 1 741 0 Ss+ ttyin 0xfffffe00585cd8b0 getty 740 1 740 0 Ss+ ttyin 0xfffffe00585cdcb0 getty 739 1 739 0 Ss+ ttyin 0xfffffe00585ce0b0 getty 685 1 685 0 Ss nanslp 0xffffffff83ba3c41 cron 681 1 681 0 Ss select 0xfffffe006deef4c0 sshd 494 1 494 0 Ss select 0xfffffe0057d65140 syslogd 423 1 423 0 Ss wait 0xfffffe005400d060 devd 422 1 422 65 Ss select 0xfffffe0057d652c0 dhclient 337 1 337 0 Ss select 0xfffffe0053ffc5c0 dhclient 334 1 334 0 Ss select 0xfffffe0053ffc8c0 dhclient 16 0 0 0 DL syncer 0xffffffff83cc1820 [syncer] 15 0 0 0 DL vlruwt 0xfffffe0054002560 [vnlru] 14 0 0 0 RL (threaded) [bufdaemon] 100079 D psleep 0xffffffff83cbfd60 [bufdaemon] 100082 D - 0xffffffff83001ec0 [bufspacedaemon-0] 100094 Run CPU 0 [/ worker] 9 0 0 0 DL psleep 0xffffffff83d0acc0 [vmdaemon] 8 0 0 0 DL (threaded) [pagedaemon] 100077 D psleep 0xffffffff83cf0d88 [dom0] 100080 D launds 0xffffffff83cf0d94 [laundry: dom0] 100081 D umarcl 0xffffffff81de0e10 [uma] 7 0 0 0 DL - 0xffffffff8391c5d8 [rand_harvestq] 6 0 0 0 DL pftm 0xffffffff848579e0 [pf purge] 5 0 0 0 DL waiting 0xffffffff844c3700 [sctp_iterator] 4 0 0 0 DL (threaded) [cam] 100045 D - 0xffffffff838e6340 [doneq0] 100046 D - 0xffffffff838e62c0 [async] 100075 D - 0xffffffff838e6140 [scanner] 3 0 0 0 DL (threaded) [crypto] 100042 D crypto_ 0xffffffff83cec640 [crypto] 100043 D crypto_ 0xfffffe0057d43030 [crypto returns 0] 100044 D crypto_ 0xfffffe0057d43080 [crypto returns 1] 13 0 0 0 DL (threaded) [geom] 100037 D - 0xffffffff83b4c620 [g_event] 100038 D - 0xffffffff83b4c640 [g_up] 100039 D - 0xffffffff83b4c660 [g_down] 2 0 0 0 WL (threaded) [clock] 100031 I [clock (0)] 100032 I [clock (1)] 12 0 0 0 WL (threaded) [intr] 100013 I [swi6: task queue] 100014 I [swi6: Giant taskq] 100016 I [swi5: fast taskq] 100033 I [swi1: netisr 0] 100034 I [swi1: hpts] 100035 I [swi1: hpts] 100047 I [irq24: virtio_pci0] 100048 I [irq25: virtio_pci0] 100049 I [irq26: virtio_pci0] 100050 I [irq27: virtio_pci0] 100051 I [irq28: virtio_pci1] 100052 I [irq29: virtio_pci1] 100053 I [irq30: virtio_pci1] 100054 I [irq31: virtio_pci1] 100055 I [irq32: virtio_pci1] 100060 I [irq10: virtio_pci2] 100062 I [irq1: atkbd0] 100063 I [irq12: psm0] 100064 I [swi0: uart uart++] 100068 I [swi1: pf send] 11 0 0 0 RL (threaded) [idle] 100003 CanRun [idle: cpu0] 100004 CanRun [idle: cpu1] 1 0 1 0 SLs wait 0xfffffe0007809040 [init] 10 0 0 0 DL audit_w 0xffffffff83ced0e0 [audit] 0 0 0 0 DLs (threaded) [kernel] 100000 D parked 0xffffffff84c3dff0 [swapper] 100005 D - 0xfffffe0007768d00 [softirq_0] 100006 D - 0xfffffe0007768b00 [softirq_1] 100007 D - 0xfffffe0007768900 [if_io_tqg_0] 100008 D - 0xfffffe0007768700 [if_io_tqg_1] 100009 D - 0xfffffe0007768500 [if_config_tqg_0] 100010 D - 0xfffffe00083db100 [kqueue_ctx taskq] 100011 D - 0xfffffe00083db000 [jail_remove taskq] 100012 D - 0xfffffe00083dae00 [bus taskq] 100015 D - 0xfffffe00083da900 [thread taskq] 100017 D - 0xfffffe00083da600 [aiod_kick taskq] 100018 D - 0xfffffe00083da500 [deferred_unmount ta] 100019 D - 0xfffffe00083da400 [inm_free taskq] 100020 D - 0xfffffe00083da300 [in6m_free taskq] 100021 D - 0xfffffe00083da200 [linuxkpi_irq_wq] 100022 D - 0xfffffe00083da100 [linuxkpi_short_wq_0] 100023 D - 0xfffffe00083da100 [linuxkpi_short_wq_1] 100024 D - 0xfffffe00083da100 [linuxkpi_short_wq_2] 100025 D - 0xfffffe00083da100 [linuxkpi_short_wq_3] 100026 D - 0xfffffe00083da000 [linuxkpi_long_wq_0] 100027 D - 0xfffffe00083da000 [linuxkpi_long_wq_1] 100028 D - 0xfffffe00083da000 [linuxkpi_long_wq_2] 100029 D - 0xfffffe00083da000 [linuxkpi_long_wq_3] 100036 D - 0xfffffe00083d9900 [firmware taskq] 100040 D - 0xfffffe0057d47300 [crypto_0] 100041 D - 0xfffffe0057d47300 [crypto_1] 100056 D - 0xfffffe00083dd200 [vtnet0 rxq 0] 100057 D - 0xfffffe0058145500 [vtnet0 txq 0] 100058 D - 0xfffffe0058145400 [vtnet0 rxq 1] 100059 D - 0xfffffe0058145300 [vtnet0 txq 1] 100061 D vtbslp 0xfffffe0057d67400 [virtio_balloon] 100065 D - 0xffffffff827cfba1 [deadlkres] 100069 D - 0xfffffe0057d46e00 [acpi_task_0] 100070 D - 0xfffffe0057d46e00 [acpi_task_1] 100071 D - 0xfffffe0057d46e00 [acpi_task_2] 100073 D - 0xfffffe00083dca00 [mca taskq] 100074 D - 0xfffffe0057d46b00 [CAM taskq] 100076 D - 0xfffffe0058142300 [ipsec_offload] 100148 D - 0xfffffe006e424400 [netlink_socket (PID] 100171 D - 0xfffffe006e23b300 [netlink_socket (PID] 100202 D - 0xfffffe006e419000 [netlink_socket (PID] 100785 D - 0xfffffe006e383300 [netlink_socket (PID] 100825 D - 0xfffffe006e419400 [netlink_socket (PID] 100826 D - 0xfffffe006e419a00 [netlink_socket (PID] 101112 D - 0xfffffe006e416d00 [netlink_socket (PID] 101165 D - 0xfffffe006e423b00 [netlink_socket (PID] 101372 D - 0xfffffe006e3bd400 [netlink_socket (PID] 101394 D - 0xfffffe0059673900 [netlink_socket (PID] 101444 D - 0xfffffe006e423300 [netlink_socket (PID] 101447 D - 0xfffffe006e424100 [netlink_socket (PID] 101476 D - 0xfffffe006e239200 [netlink_socket (PID] 101607 D - 0xfffffe0059666700 [system_taskq_0] 101608 D - 0xfffffe0059666700 [system_taskq_1] 101609 D - 0xfffffe006e239e00 [system_delay_taskq_] 101610 D - 0xfffffe006e239e00 [system_delay_taskq_] 101611 D - 0xfffffe006e239a00 [zvol_tq-0_0] 101612 D - 0xfffffe006e239a00 [zvol_tq-0_1] 101613 D - 0xfffffe006e239a00 [zvol_tq-0_2] 101614 D - 0xfffffe006e239a00 [zvol_tq-0_3] 101615 D - 0xfffffe006e239a00 [zvol_tq-0_4] 101616 D - 0xfffffe006e239a00 [zvol_tq-0_5] 101617 D - 0xfffffe006e239a00 [zvol_tq-0_6] 101618 D - 0xfffffe006e239a00 [zvol_tq-0_7] 101619 D - 0xfffffe006e239a00 [zvol_tq-0_8] 101620 D - 0xfffffe006e239a00 [zvol_tq-0_9] 101621 D - 0xfffffe006e239a00 [zvol_tq-0_10] 101622 D - 0xfffffe006e239a00 [zvol_tq-0_11] 101623 D - 0xfffffe006e239a00 [zvol_tq-0_12] 101624 D - 0xfffffe006e239a00 [zvol_tq-0_13] 101625 D - 0xfffffe006e239a00 [zvol_tq-0_14] 101626 D - 0xfffffe006e239a00 [zvol_tq-0_15] 101627 D - 0xfffffe006e239a00 [zvol_tq-0_16] 101628 D - 0xfffffe006e239a00 [zvol_tq-0_17] 101629 D - 0xfffffe006e239a00 [zvol_tq-0_18] 101630 D - 0xfffffe006e239a00 [zvol_tq-0_19] 101631 D - 0xfffffe006e239a00 [zvol_tq-0_20] 101632 D - 0xfffffe006e239a00 [zvol_tq-0_21] 101633 D - 0xfffffe006e239a00 [zvol_tq-0_22] 101634 D - 0xfffffe006e239a00 [zvol_tq-0_23] 101635 D - 0xfffffe006e239a00 [zvol_tq-0_24] 101636 D - 0xfffffe006e239a00 [zvol_tq-0_25] 101637 D - 0xfffffe006e239a00 [zvol_tq-0_26] 101638 D - 0xfffffe006e239a00 [zvol_tq-0_27] 101639 D - 0xfffffe006e239a00 [zvol_tq-0_28] 101640 D - 0xfffffe006e239a00 [zvol_tq-0_29] 101641 D - 0xfffffe006e239a00 [zvol_tq-0_30] 101642 D - 0xfffffe006e239a00 [zvol_tq-0_31] 101643 D - 0xfffffe006e239400 [arc_prune] 101644 D - 0xfffffe0059666a00 [arc_flush_0] 101645 D - 0xfffffe0059666a00 [arc_flush_1] 101663 D - 0xfffffe0059672400 [dbu_evict] 101682 D - 0xfffffe006e239c00 [z_vdev_file_0] 101683 D - 0xfffffe006e239c00 [z_vdev_file_1] 101684 D - 0xfffffe006e239c00 [z_vdev_file_2] 101685 D - 0xfffffe006e239c00 [z_vdev_file_3] 101686 D - 0xfffffe006e239c00 [z_vdev_file_4] 101687 D - 0xfffffe006e239c00 [z_vdev_file_5] 101688 D - 0xfffffe006e239c00 [z_vdev_file_6] 101689 D - 0xfffffe006e239c00 [z_vdev_file_7] 101690 D - 0xfffffe006e239c00 [z_vdev_file_8] 101691 D - 0xfffffe006e239c00 [z_vdev_file_9] 101692 D - 0xfffffe006e239c00 [z_vdev_file_10] 101693 D - 0xfffffe006e239c00 [z_vdev_file_11] 101694 D - 0xfffffe006e239c00 [z_vdev_file_12] 101695 D - 0xfffffe006e239c00 [z_vdev_file_13] 101696 D - 0xfffffe006e239c00 [z_vdev_file_14] 101697 D - 0xfffffe006e239c00 [z_vdev_file_15] 101730 D - 0xfffffe006e235900 [zfsvfs] 101875 D - 0xfffffe0059672c00 [netlink_socket (PID] 101906 D - 0xfffffe0059666500 [netlink_socket (PID] 101918 D - 0xfffffe0059671600 [netlink_socket (PID] db> show all locks Process 2362 (syz-executor) thread 0xfffffe0078533780 (101964) exclusive lockmgr bufwait (bufwait) r = 0 (0xfffffe0007c1d420) locked @ /syzkaller/managers/i386/kernel/sys/kern/vfs_vnops.c:3085 exclusive lockmgr mntfs (mntfs) r = 0 (0xfffffe00598d2228) locked @ /syzkaller/managers/i386/kernel/sys/ufs/ffs/ffs_vfsops.c:1646 Process 14 (bufdaemon) thread 0xfffffe00540bf000 (100094) exclusive lockmgr ufs (ufs) r = 0 (0xfffffe007c0e0598) locked @ /syzkaller/managers/i386/kernel/sys/ufs/ffs/ffs_vfsops.c:1751 db> show malloc Type InUse MemUse Requests pf_hash 6 12804K 6 linker 401 12294K 1002 tcp_hpts 7 4801K 7 filedesc 543 4349K 2967 devbuf 4187 4323K 4223 solaris 2246 3597K 4472 netlink 1067 3137K 1159 sysctloid 44697 2626K 44809 vtbuf 24 1968K 46 subproc 682 1429K 2736 kobj 330 1320K 563 newblk 17 1028K 4268 vfscache 3 1025K 3 pcb 227 859K 1076 inodedep 29 523K 1975 ufs_quota 1 512K 1 vfs_hash 1 512K 1 callout 2 512K 2 intr 4 472K 4 vmem 5 284K 10 vnet_data 2 224K 2 acpitask 1 224K 1 KTRACE 101 201K 127720 acpica 1674 184K 54444 tidhash 3 141K 3 kdtrace 801 140K 4328 pagedep 19 133K 1130 tfo_ccache 1 128K 1 IP reass 1 128K 1 umtx 960 120K 960 DEVFS1 112 112K 194 sem 4 106K 4 gtaskqueue 18 98K 18 bus 1006 82K 5090 mtx_pool 3 74K 3 syncache 1 68K 1 NFSD srvcache 3 68K 3 module 525 66K 540 ddb_capture 1 64K 1 CC Mem 405 51K 2889 BPF 31 40K 98 shm 3 36K 14 DEVFS3 131 33K 164 hostcache 1 32K 1 sctp_atcl 85 32K 350 cred 123 31K 491 msg 4 30K 4 kbdmux 6 28K 6 filemon 3 24K 11 kqueue 329 22K 3369 temp 37 21K 3229 pwddesc 324 21K 2446 DEVFS_RULE 56 20K 56 ifaddr 73 20K 216 kstat_data 19 19K 19 routetbl 149 19K 458 LRO 18 19K 18 ufs_mount 4 17K 5 proc 3 17K 3 md_disk 5 17K 12 tty 16 16K 16 inpcbpolicy 473 15K 4032 taskqueue 141 15K 267 lltable 48 15K 139 ithread 90 15K 90 bus-sc 34 15K 1656 ifnet 8 15K 28 GEOM 69 15K 692 eventhandler 166 14K 166 ether_multi 157 13K 493 shmfd 10 12K 55 kenv 95 12K 95 CAM queue 5 11K 1528 rman 82 10K 467 rpc 8 9K 8 bmsafemap 4 9K 1868 in6_multi 65 9K 80 devstat 4 9K 4 UART 12 9K 12 osd 470 9K 2982 ksem 1 8K 15 pfs_vncache 1 8K 1 plimit 21 8K 511 audit_evclass 240 8K 303 pf_ifnet 20 7K 122 proc-args 336 7K 3674 UMA 338 7K 338 sglist 6 7K 6 CAM DEV 3 6K 510 pfs_nodes 22 6K 22 ufs_dirhash 24 5K 27 DEVFSP 66 5K 720 vt 11 5K 11 memdesc 1 4K 1 MCA 32 4K 32 md_sectors 1 4K 1 evdev 4 4K 4 acpisem 28 4K 28 sctp_atky 87 3K 361 terminal 11 3K 11 uidinfo 6 3K 23 session 20 3K 68 acpidev 20 3K 20 hhook 8 3K 10 clone 9 3K 9 kcovinfo 36 3K 225 mkdir 17 3K 2110 lockf 20 3K 277 sctp_stro 2 2K 7 local_apic 1 2K 1 io_apic 1 2K 1 ipsec-saq 2 2K 2 ip6ndp 13 2K 35 tun 5 2K 25 newdirblk 14 2K 1055 diradd 14 2K 1714 in_multi 7 2K 67 ip6opt 11 2K 172 sctp_ifa 13 2K 14 Unitno 26 2K 200 CAM XPT 22 2K 543 dirrem 6 2K 1675 vnodemarker 3 2K 173 selfd 24 2K 64134 toponodes 6 2K 6 ipsecpolicy 2 2K 2 sctp_athm 85 2K 354 msi 9 2K 9 select 9 2K 139 sctp_timw 4 1K 4 softdep 1 1K 1 sahead 1 1K 1 secasvar 1 1K 1 nhops 6 1K 8 NFSD session 1 1K 1 crypto 7 1K 486 mount 19 1K 2223 mld 7 1K 27 igmp 7 1K 27 CAM periph 4 1K 271 cryptodev 13 1K 941 ipsec 3 1K 3 sctp_ifn 6 1K 14 freefile 6 1K 1399 pfil 6 1K 6 isadev 6 1K 12 pci_link 10 1K 10 encap_export_host 12 1K 12 freework 3 1K 1437 sctp_stri 1 1K 8 freeblks 2 1K 982 cdev 2 1K 2 lkpikmalloc 8 1K 9 counter_rate 13 1K 13 chacha20random 1 1K 1 biobuf 1 1K 1 vnodes 1 1K 14 procdesc 2 1K 12 NFSD lckfile 1 1K 1 NFSD V4client 1 1K 1 DEVFS 9 1K 10 CAM SIM 2 1K 2 prison 8 1K 8 feeder 7 1K 7 taskq 2 1K 2 tcpfunc 3 1K 3 loginclass 3 1K 5 in_mfilter 3 1K 151 nexusdev 8 1K 8 apmdev 1 1K 1 atkbddev 2 1K 2 ip_msource 2 1K 61 ip_moptions 2 1K 93 aio 4 1K 9 pmchooks 1 1K 1 filedesc_to_leader 2 1K 7 CAM path 4 1K 1034 CAM dev queue 2 1K 2 CAM I/O Scheduler 1 1K 1 soname 4 1K 4528 sctp_vrf 1 1K 1 sctp_map 4 1K 14 vnet 1 1K 1 pmc 1 1K 1 entropy 2 1K 55 acpiintr 1 1K 1 cpus 2 1K 2 vnet_data_free 1 1K 1 Per-cpu 1 1K 1 filecaps 2 1K 120 p1003.1b 1 1K 1 sfs_nodes 0 0K 0 zones_data 0 0K 0 pf_table 0 0K 0 pf_rule 0 0K 1 pf_altq 0 0K 0 pf_osfp 0 0K 0 pf_krule_item 0 0K 0 pf_temp 0 0K 0 tcp_pcm_rack 0 0K 18 tcp_do_rack 0 0K 0 tcp_fsb_rack 0 0K 36 mqdata 0 0K 0 ipcomp 0 0K 0 esp 0 0K 0 ah 0 0K 0 sctp_mcore 0 0K 0 sctp_socko 0 0K 26 sctp_iter 0 0K 9 sctp_mvrf 0 0K 0 sctp_cpal 0 0K 0 sctp_cmsg 0 0K 0 sctp_stre 0 0K 0 sctp_athi 0 0K 0 sctp_a_it 0 0K 9 sctp_aadr 0 0K 0 madt_table 0 0K 2 smartpqi 0 0K 0 ixl 0 0K 0 ice-resmgr 0 0K 0 ice-osdep 0 0K 0 ice 0 0K 0 iavf 0 0K 0 axgbe 0 0K 0 fpukern_ctx 0 0K 0 xen_intr 0 0K 0 xen_hvm 0 0K 0 legacydrv 0 0K 0 NMI handlers 0 0K 0 bounce 0 0K 0 busdma 0 0K 0 qpidrv 0 0K 0 dmar_idpgtbl 0 0K 0 dmar_dom 0 0K 0 dmar_ctx 0 0K 0 amdiommu_dom 0 0K 0 amdiommu_ctx 0 0K 0 isci 0 0K 0 iommu_dmamap 0 0K 0 hyperv_socket 0 0K 0 bxe_ilt 0 0K 0 aesni_data 0 0K 0 xenbus 0 0K 0 vm_fictitious 0 0K 0 UMAHash 0 0K 0 vm_pgdata 0 0K 0 jblocks 0 0K 0 savedino 0 0K 696 sentinel 0 0K 0 jfsync 0 0K 0 jtrunc 0 0K 0 sbdep 0 0K 86 jsegdep 0 0K 0 jseg 0 0K 0 jfreefrag 0 0K 0 jfreeblk 0 0K 0 jnewblk 0 0K 0 jmvref 0 0K 0 jremref 0 0K 0 jaddref 0 0K 0 freedep 0 0K 0 freefrag 0 0K 136 allocindir 0 0K 0 indirdep 0 0K 279 allocdirect 0 0K 0 ufs_trim 0 0K 0 mactemp 0 0K 0 audit_trigger 0 0K 0 audit_pipe_presel 0 0K 0 audit_pipeent 0 0K 0 audit_pipe 0 0K 0 audit_evname 0 0K 0 audit_bsm 0 0K 0 audit_gidset 0 0K 0 audit_text 0 0K 0 audit_path 0 0K 0 audit_data 0 0K 0 audit_cred 0 0K 0 ktls_ocf 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5E_TLS_RX 0 0K 0 MLX5EEPROM 0 0K 0 MLX5E_TLS 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EN 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5DUMP 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 MLX5EEPROM 0 0K 0 simple_attr 0 0K 0 seq_file 0 0K 0 lkpiskb 0 0K 0 radix 0 0K 0 idr 0