Warning: Permanently added '10.128.0.66' (ECDSA) to the list of known hosts.
2018/12/22 14:24:37 parsed 1 programs
2018/12/22 14:24:40 executed programs: 0
panic: malformed IPv4 option passed to ip_optcopy

Stopped at      db_enter+0xa:   popq    %rbp

    TID    PID    UID     PRFLAGS     PFLAGS  CPU  COMMAND

*245344  73868      0           0  0x4000000    0  syz-executor0

db_enter() at db_enter+0xa

panic() at panic+0x147

ip_optcopy(ffffff00353fb400,ffff800000171290) at ip_optcopy

ip_output(ffffff0036f09118,ffffff00353fb400,ffffff00391da000,22,1000,ffcc7a1cc2

ba05e5) at ip_output+0xbd5

rip_output(0,9,ffffff0036333a88,0) at rip_output+0x187

rip_usrreq(1000,ffffff0036333a88,0,ffffff00353fb400,0,ffcc7a1cc2ba05e5) at rip_

usrreq+0x3ed

sosend(ffffff0037690e88,ffff800014ab01b8,1000,ffff800014ab0260,0,ffcc7a1cc2ba05

e5) at sosend+0x462

dofilewritev(ffff8000ffffc4b8,ffff800014ab0260,1000,ffff800014ab0278,dda37938eb

8) at dofilewritev+0x13e

sys_write(ffff800014ab0300,ffff8000ffffc4b8,ffff8000149cffd0) at sys_write+0x6e


syscall(0) at syscall+0x3e4

Xsyscall(6,0,c,0,3,dd77184d010) at Xsyscall+0x128

end of kernel

end trace frame: 0xdda37938f40, count: 4

https://www.openbsd.org/ddb.html describes the minimum info required in bug

reports.  Insufficient info makes it difficult to find and fix bugs.

ddb> 

ddb> set $lines = 0

ddb> show panic

malformed IPv4 option passed to ip_optcopy

ddb> trace

db_enter() at db_enter+0xa

panic() at panic+0x147

ip_optcopy(ffffff00353fb400,ffff800000171290) at ip_optcopy

ip_output(ffffff0036f09118,ffffff00353fb400,ffffff00391da000,22,1000,ffcc7a1cc2ba05e5) at ip_output+0xbd5

rip_output(0,9,ffffff0036333a88,0) at rip_output+0x187

rip_usrreq(1000,ffffff0036333a88,0,ffffff00353fb400,0,ffcc7a1cc2ba05e5) at rip_usrreq+0x3ed

sosend(ffffff0037690e88,ffff800014ab01b8,1000,ffff800014ab0260,0,ffcc7a1cc2ba05e5) at sosend+0x462

dofilewritev(ffff8000ffffc4b8,ffff800014ab0260,1000,ffff800014ab0278,dda37938eb8) at dofilewritev+0x13e

sys_write(ffff800014ab0300,ffff8000ffffc4b8,ffff8000149cffd0) at sys_write+0x6e

syscall(0) at syscall+0x3e4

Xsyscall(6,0,c,0,3,dd77184d010) at Xsyscall+0x128

end of kernel

end trace frame: 0xdda37938f40, count: -11

ddb> show registers

rdi               0xffffffff81e32758    kprintf_mutex

rsi                              0x5

rbp               0xffff800014aafdf0

rbx               0xffff800014aafe90

rdx                            0x3fd

rcx                                0

rax                              0x1

r8                0xffff800014aafdc0

r9                                 0

r10               0x495952dd39ba416a

r11               0xffffffff817d6c80    x86_bus_space_io_read_1

r12                     0x3000000008

r13               0xffff800014aafe00

r14                            0x100

r15               0xffffffff81c1f7e9    substchar+0xe718

rip               0xffffffff819017ba    db_enter+0xa

cs                               0x8

rflags                         0x202

rsp               0xffff800014aafdf0

ss                              0x10

db_enter+0xa:   popq    %rbp

ddb> show proc

PROC (syz-executor0) pid=245344 stat=onproc

    flags process=0 proc=4000000<THREAD>

    pri=50, usrpri=50, nice=20

    forw=0xffffffffffffffff, list=0xffff8000ffffd778,0xffffffff81ed9bd0

    process=0xffff8000149cffd0 user=0xffff800014aab000, vmspace=0xffffff003f12c420

    estcpu=0, cpticks=0, pctcpu=0.0

    user=0, sys=0, intr=0

ddb> ps

   PID     TID   PPID    UID  S       FLAGS  WAIT          COMMAND

 73868  391905  31309      0  2           0                syz-executor0

*73868  245344  31309      0  7   0x4000000                syz-executor0

 31309  414828  43114      0  3        0x82  nanosleep     syz-executor0

 43114  200314  83474      0  3        0x82  thrsleep      syz-execprog

 43114  391602  83474      0  3   0x4000082  thrsleep      syz-execprog

 43114  245488  83474      0  3   0x4000082  thrsleep      syz-execprog

 43114  448666  83474      0  3   0x4000082  thrsleep      syz-execprog

 43114    7476  83474      0  3   0x4000082  kqread        syz-execprog

 43114  463026  83474      0  3   0x4000082  thrsleep      syz-execprog

 83474   36557   9992      0  3    0x10008a  pause         ksh

  9992  152075  69808      0  3        0x92  select        sshd

 31395  397315      1      0  3    0x100083  ttyin         getty

 69808  315177      1      0  3        0x80  select        sshd

 75056  146190  34335     73  3    0x100090  kqread        syslogd

 34335  312749      1      0  3    0x100082  netio         syslogd

 26481  271717      1     77  3    0x100090  poll          dhclient

  5653  184599      1      0  3        0x80  poll          dhclient

 34184   40196      0      0  2     0x14200                zerothread

 79088  134201      0      0  3     0x14200  aiodoned      aiodoned

 22188  521077      0      0  3     0x14200  syncer        update

 95457   47499      0      0  3     0x14200  cleaner       cleaner

 57930  105905      0      0  3     0x14200  reaper        reaper

 91163  371799      0      0  3     0x14200  pgdaemon      pagedaemon

 39325  491237      0      0  3     0x14200  bored         crynlk

 17161  243870      0      0  3     0x14200  bored         crypto

 64044  143015      0      0  3  0x40014200  acpi0         acpi0

 46137  340925      0      0  3     0x14200  bored         softnet

 82509  343081      0      0  3     0x14200  bored         systqmp

 20045  462752      0      0  3     0x14200  bored         systq

 24935  185996      0      0  3  0x40014200  bored         softclock

 68479  424698      0      0  3  0x40014200                idle0

     1  185281      0      0  3        0x82  wait          init

     0       0     -1      0  3     0x10200  scheduler     swapper

ddb>