panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/main/kernel/sys/kern/sys_socket.c:690 cpuid = 1 time = 10 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0xc6/frame 0xfffffe0056e898d0 kdb_backtrace() at kdb_backtrace+0xd0/frame 0xfffffe0056e89a30 vpanic() at vpanic+0x257/frame 0xfffffe0056e89bf0 panic() at panic+0xb5/frame 0xfffffe0056e89cb0 soaio_process_sb() at soaio_process_sb+0x11e2/frame 0xfffffe0056e89ea0 soaio_kproc_loop() at soaio_kproc_loop+0x17b/frame 0xfffffe0056e89ef0 fork_exit() at fork_exit+0xcc/frame 0xfffffe0056e89f30 fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe0056e89f30 --- trap 0xc, rip = 0x3a723a, rsp = 0x8211e3a98, rbp = 0x8211e3aa0 --- KDB: enter: panic [ thread pid 845 tid 100087 ] Stopped at kdb_enter+0x6e: movq $0,0x25886f7(%rip) db> db> set $lines = 0 db> set $maxwidth = 0 db> show registers cs 0x20 ds 0x3b es 0x3b fs 0x13 gs 0x1b ss 0x28 rax 0x12 rcx 0xfffffe0002bf1850 rdx 0 rbx 0xffffffff82832120 .str.27 rsp 0xfffffe0056e89a10 rbp 0xfffffe0056e89a30 rsi 0 rdi 0xffffffff8165f4b9 printf+0x149 r8 0 r9 0xffffffff r10 0x8d7c0765246e4f02 r11 0xfffffe0058785cd0 r12 0xfffffe005864c780 r13 0xfffffffffffffffd r14 0xffffffff82832120 .str.27 r15 0 rip 0xffffffff8164889e kdb_enter+0x6e rflags 0x46 kdb_enter+0x6e: movq $0,0x25886f7(%rip) db> show proc Process 845 (soaiod2) at 0xfffffe0058605570: state: NORMAL uid: 0 gid: 0 supp gids: 0 parent: pid 0 at 0xffffffff83b5b020 ABI: null flag: 0x10000204 flag2: 0 reaper: 0xffffffff83b5b020 reapsubtree: 845 sigparent: 20 vmspace: 0xfffffe005876e490 (map 0xfffffe005876e490) (map.pmap 0xfffffe005876e530) (pmap 0xfffffe005876e5a0) threads: 1 100087 Run CPU 1 [soaiod2] db> ps pid ppid pgrp uid state wmesg wchan cmd 1279 763 763 0 RE CPU 0 syz-executor 1278 764 764 0 R (threaded) syz-executor 100666 RunQ syz-executor 100684 RunQ syz-executor 100685 S uwait 0xfffffe006e791900 syz-executor 1277 951 951 0 T (threaded) syz-executor 100096 s syz-executor 100681 RunQ syz-executor 100682 s syz-executor 1274 765 765 0 S (threaded) syz-executor 100651 S nanslp 0xffffffff83bb2001 syz-executor 100673 S uwait 0xfffffe006e791480 syz-executor 100676 S aiowc 0xfffffe005876be40 syz-executor 100678 S uwait 0xfffffe006e792780 syz-executor 1261 1 764 0 S uwait 0xfffffe005858e500 syz-executor 1256 1 764 0 S uwait 0xfffffe006e792280 syz-executor 1252 1 765 0 S uwait 0xfffffe0058309000 syz-executor 1237 1 763 0 S uwait 0xfffffe005858fd00 syz-executor 1236 1 763 0 S uwait 0xfffffe00084f7100 syz-executor 1229 1 763 0 S uwait 0xfffffe005830cb00 syz-executor 1224 1 1224 0 SV uwait 0xfffffe006e792c80 syz-executor 1213 1 951 0 SV uwait 0xfffffe005858f000 syz-executor 1202 1 765 0 S uwait 0xfffffe00084f7880 syz-executor 1196 1 765 0 S uwait 0xfffffe005858eb80 syz-executor 1195 1 764 0 S uwait 0xfffffe006e791b00 syz-executor 1194 1 764 0 S uwait 0xfffffe006e791c00 syz-executor 1191 1 764 0 S uwait 0xfffffe006e791a00 syz-executor 1190 1 764 0 S uwait 0xfffffe0058309400 syz-executor 1189 1 764 0 S uwait 0xfffffe006e792a80 syz-executor 1188 1 764 0 S uwait 0xfffffe006e792000 syz-executor 1187 1 764 0 S uwait 0xfffffe006e792980 syz-executor 1175 0 0 0 DL mdwait 0xfffffe007a286000 [md0] 1170 1 764 0 S uwait 0xfffffe006e792e80 syz-executor 1167 1 764 0 S uwait 0xfffffe00084f7780 syz-executor 1165 1 763 0 S uwait 0xfffffe005830a780 syz-executor 1164 1 763 0 S uwait 0xfffffe005830a880 syz-executor 1163 1 763 0 S uwait 0xfffffe006e792a00 syz-executor 1158 1 765 0 S uwait 0xfffffe005830c800 syz-executor 1153 1 951 0 SV uwait 0xfffffe005858ec80 syz-executor 1149 1 764 0 S uwait 0xfffffe005830ac80 syz-executor 1147 1 764 0 S uwait 0xfffffe006e792580 syz-executor 1134 1 1134 0 Ss+ ttyin 0xfffffe00542664b0 getty 1132 1 1132 0 Ss+ ttyin 0xfffffe00542674b0 getty 1131 1 1131 0 Ss+ ttyin 0xfffffe0054266cb0 getty 1130 1 1130 0 Ss+ ttyin 0xfffffe00542668b0 getty 1128 1 1128 0 Ss+ ttyin 0xfffffe00542660b0 getty 1127 1 1127 0 Ss+ ttyin 0xfffffe0058328cb0 getty 1126 1 1126 0 Ss+ ttyin 0xfffffe0054265cb0 getty 1123 1 764 0 S uwait 0xfffffe005830cf00 syz-executor 1110 1 951 0 S uwait 0xfffffe006e791f00 syz-executor 1109 1 1109 0 Ss+ ttyin 0xfffffe00542678b0 getty 1107 1 1107 0 Ss+ ttyin 0xfffffe00542670b0 getty 1093 1 951 0 S uwait 0xfffffe005858e900 syz-executor 1090 1 951 0 S uwait 0xfffffe006e793300 syz-executor 1089 1 763 0 S uwait 0xfffffe005858fa00 syz-executor 1088 1 763 0 S uwait 0xfffffe005858ea00 syz-executor 1081 1 1080 0 S uwait 0xfffffe005858e180 syz-executor 1077 1 763 0 S uwait 0xfffffe005858e280 syz-executor 1076 1 763 0 S uwait 0xfffffe005858f200 syz-executor 1061 1 763 0 S uwait 0xfffffe006e792880 syz-executor 1048 1 951 60929 S uwait 0xfffffe005858e080 syz-executor 1047 1 951 60929 S uwait 0xfffffe0058309500 syz-executor 1046 1 951 0 S uwait 0xfffffe00084f7180 syz-executor 1043 1 763 0 S uwait 0xfffffe00084f7d80 syz-executor 1040 1 765 0 S uwait 0xfffffe005858eb00 syz-executor 1005 1 765 0 SV uwait 0xfffffe005858fc00 syz-executor 975 1 765 0 S uwait 0xfffffe005830ab80 syz-executor 967 966 764 0 S uwait 0xfffffe006e793000 syz-executor 966 1 764 0 SV wait 0xfffffe0058724ab0 syz-executor 951 762 951 0 S nanslp 0xffffffff83bb2001 syz-executor 936 1 766 0 S uwait 0xfffffe00084f7480 syz-executor 931 1 765 0 S uwait 0xfffffe005858e800 syz-executor 927 1 766 0 S uwait 0xfffffe0058590880 syz-executor 925 1 766 0 S uwait 0xfffffe005858e700 syz-executor 921 1 765 0 S uwait 0xfffffe006e793100 syz-executor 920 1 765 0 S uwait 0xfffffe00084f7d00 syz-executor 917 1 765 0 S uwait 0xfffffe005830bb00 syz-executor 916 1 764 0 S uwait 0xfffffe006e793200 syz-executor 912 1 766 0 S uwait 0xfffffe005830a480 syz-executor 908 907 763 0 SV uwait 0xfffffe00084f7380 syz-executor 907 1 763 0 DV ppwait 0xfffffe0058725a60 syz-executor 904 1 764 0 S uwait 0xfffffe0058309200 syz-executor 902 1 764 0 S uwait 0xfffffe0058309080 syz-executor 898 1 763 0 S uwait 0xfffffe00084f7a80 syz-executor 895 1 763 0 S uwait 0xfffffe00084f7580 syz-executor 881 0 0 0 DL (threaded) [KTLS] 100089 D - 0xfffffe0059714100 [thr_0] 100163 D - 0xfffffe0059714180 [thr_1] 100164 D - 0xffffffff83cd3a28 [reclaim_0] 866 1 763 0 S uwait 0xfffffe006e792d80 syz-executor 852 1 763 0 S uwait 0xfffffe00084f7280 syz-executor 847 0 0 0 DL - 0xffffffff83cd2200 [soaiod4] 846 0 0 0 DL - 0xffffffff83cd2200 [soaiod3] 845 0 0 0 RL CPU 1 [soaiod2] 844 0 0 0 DL - 0xffffffff83cd2200 [soaiod1] 822 0 0 0 DL aiordy 0xfffffe0058711560 [aiod4] 821 0 0 0 DL aiordy 0xfffffe0058711ab8 [aiod3] 820 0 0 0 DL aiordy 0xfffffe0058712010 [aiod2] 819 0 0 0 DL aiordy 0xfffffe0058712ac0 [aiod1] 817 1 764 0 S uwait 0xfffffe005858fe00 syz-executor 815 0 0 0 DL (threaded) [so_splice] 100115 D - 0xfffffe0007787880 [thr_0] 100126 D - 0xfffffe00077878c0 [thr_1] 765 762 765 0 S nanslp 0xffffffff83bb2000 syz-executor 764 762 764 0 S nanslp 0xffffffff83bb2001 syz-executor 763 762 763 0 S nanslp 0xffffffff83bb2000 syz-executor 762 1 760 0 S select 0xfffffe0007787a40 syz-executor 737 1 17 0 S+ piperd 0xfffffe0059913420 logger 736 735 17 0 S+ nanslp 0xffffffff83bb2001 sleep 735 1 17 0 S+ wait 0xfffffe0058604568 sh 685 1 685 0 Ss nanslp 0xffffffff83bb2001 cron 681 1 681 0 Ss select 0xfffffe00077881c0 sshd 494 1 494 0 Ss select 0xfffffe0054236f40 syslogd 16 0 0 0 DL syncer 0xffffffff83cdfc20 [syncer] 15 0 0 0 DL vlruwt 0xfffffe000780a018 [vnlru] 14 0 0 0 DL (threaded) [bufdaemon] 100079 D psleep 0xffffffff83cde160 [bufdaemon] 100082 D - 0xffffffff83001ec0 [bufspacedaemon-0] 100094 D sdflush 0xfffffe005808e4e8 [/ worker] 9 0 0 0 DL psleep 0xffffffff83d1f040 [vmdaemon] 8 0 0 0 DL (threaded) [pagedaemon] 100077 D psleep 0xffffffff83d05108 [dom0] 100080 D launds 0xffffffff83d05114 [laundry: dom0] 100081 D umarcl 0xffffffff81e2fb90 [uma] 7 0 0 0 DL - 0xffffffff8392a5b0 [rand_harvestq] 6 0 0 0 DL pftm 0xffffffff8485cf60 [pf purge] 5 0 0 0 DL waiting 0xffffffff8472b700 [sctp_iterator] 4 0 0 0 DL (threaded) [cam] 100045 D - 0xffffffff838f4340 [doneq0] 100046 D - 0xffffffff838f42c0 [async] 100075 D - 0xffffffff838f4140 [scanner] 3 0 0 0 DL (threaded) [crypto] 100042 D crypto_ 0xffffffff83d009e0 [crypto] 100043 D crypto_ 0xfffffe0007b17030 [crypto returns 0] 100044 D crypto_ 0xfffffe0007b17080 [crypto returns 1] 13 0 0 0 DL (threaded) [geom] 100037 D - 0xffffffff83b5a5e0 [g_event] 100038 D - 0xffffffff83b5a600 [g_up] 100039 D - 0xffffffff83b5a620 [g_down] 2 0 0 0 WL (threaded) [clock] 100031 I [clock (0)] 100032 I [clock (1)] 12 0 0 0 WL (threaded) [intr] 100013 I [swi6: task queue] 100014 I [swi6: Giant taskq] 100016 I [swi5: fast taskq] 100033 I [swi1: netisr 0] 100034 I [swi1: hpts] 100035 I [swi1: hpts] 100047 I [irq24: virtio_pci0] 100048 I [irq25: virtio_pci0] 100049 I [irq26: virtio_pci0] 100050 I [irq27: virtio_pci0] 100051 I [irq28: virtio_pci1] 100052 I [irq29: virtio_pci1] 100053 I [irq30: virtio_pci1] 100054 I [irq31: virtio_pci1] 100055 I [irq32: virtio_pci1] 100060 I [irq10: virtio_pci2] 100062 I [irq1: atkbd0] 100063 I [irq12: psm0] 100064 I [swi0: uart uart++] 100068 I [swi1: pf send] 11 0 0 0 RL (threaded) [idle] 100003 CanRun [idle: cpu0] 100004 CanRun [idle: cpu1] 1 0 1 0 SLs wait 0xfffffe0007809010 [init] 10 0 0 0 DL audit_w 0xffffffff83d01480 [audit] 0 0 0 0 DLs (threaded) [kernel] 100000 D parked 0xffffffff84c56ff0 [swapper] 100005 D - 0xfffffe00077f7a00 [softirq_0] 100006 D - 0xfffffe00077f7800 [softirq_1] 100007 D - 0xfffffe00077f7600 [if_io_tqg_0] 100008 D - 0xfffffe00077f7400 [if_io_tqg_1] 100009 D - 0xfffffe00077f7200 [if_config_tqg_0] 100010 D - 0xfffffe00077f7000 [kqueue_ctx taskq] 100011 D - 0xfffffe00077f6d00 [jail_remove taskq] 100012 D - 0xfffffe00077f6b00 [bus taskq] 100015 D - 0xfffffe00077f6500 [thread taskq] 100017 D - 0xfffffe00077f6100 [aiod_kick taskq] 100018 D - 0xfffffe00077f5e00 [deferred_unmount ta] 100019 D - 0xfffffe00077f5c00 [inm_free taskq] 100020 D - 0xfffffe00077f5a00 [in6m_free taskq] 100021 D - 0xfffffe00077f5800 [linuxkpi_irq_wq] 100022 D - 0xfffffe00077f5600 [linuxkpi_short_wq_0] 100023 D - 0xfffffe00077f5600 [linuxkpi_short_wq_1] 100024 D - 0xfffffe00077f5600 [linuxkpi_short_wq_2] 100025 D - 0xfffffe00077f5600 [linuxkpi_short_wq_3] 100026 D - 0xfffffe00077f5100 [linuxkpi_long_wq_0] 100027 D - 0xfffffe00077f5100 [linuxkpi_long_wq_1] 100028 D - 0xfffffe00077f5100 [linuxkpi_long_wq_2] 100029 D - 0xfffffe00077f5100 [linuxkpi_long_wq_3] 100036 D - 0xfffffe00077f4400 [firmware taskq] 100040 D - 0xfffffe0007bcc100 [crypto_0] 100041 D - 0xfffffe0007bcc100 [crypto_1] 100056 D - 0xfffffe00077f8200 [vtnet0 rxq 0] 100057 D - 0xfffffe00541f6500 [vtnet0 txq 0] 100058 D - 0xfffffe00541f6400 [vtnet0 rxq 1] 100059 D - 0xfffffe00541f6300 [vtnet0 txq 1] 100061 D vtbslp 0xfffffe00580bf000 [virtio_balloon] 100065 D - 0xffffffff82836800 [deadlkres] 100069 D - 0xfffffe0058595000 [acpi_task_0] 100070 D - 0xfffffe0058595000 [acpi_task_1] 100071 D - 0xfffffe0058595000 [acpi_task_2] 100073 D - 0xfffffe00077f8100 [mca taskq] 100074 D - 0xfffffe0007bcba00 [CAM taskq] 100076 D - 0xfffffe0058594700 [ipsec_offload] 100543 D - 0xfffffe0059716600 [netlink_socket (PID] 100683 D - 0xfffffe0059717500 [netlink_socket (PID] 100686 D - 0xfffffe0059717b00 [netlink_socket (PID] db> show all locks Process 1279 (syz-executor) thread 0xfffffe005869f000 (100165) exclusive rw vmobject (vmobject) r = 0 (0xfffffe005877f0f8) locked @ /syzkaller/managers/main/kernel/sys/vm/vm_object.c:647 Process 1277 (syz-executor) thread 0xfffffe0058773000 (100681) exclusive lockmgr bufwait (bufwait) r = 0 (0xfffffe0007d45160) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_bio.c:1754 exclusive lockmgr ufs (ufs) r = 0 (0xfffffe007a36ac78) locked @ /syzkaller/managers/main/kernel/sys/kern/vfs_vnops.c:1315 db>