panic: unhandled af 255 Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *383131 57489 0 0 0x4000000 0 syz-executor.0 db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic(ffffffff821b61dd) at panic+0x15c sys/kern/subr_prf.c:207 unhandled_af(ff) at unhandled_af+0x16 pf_addrcpy(ffff80001d436718,ffff80001d436a10,ff) at pf_addrcpy+0x99 sys/net/pf.c:409 pfioctl(4900,c0504417,ffff80001d436a10,1,ffff8000ffff2c70) at pfioctl+0x43c0 sys/net/pf_ioctl.c:1827 VOP_IOCTL(fffffd80628b9410,c0504417,ffff80001d436a10,1,fffffd806c3be8a0,ffff8000ffff2c70) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:291 vn_ioctl(fffffd8057d75da8,c0504417,ffff80001d436a10,ffff8000ffff2c70) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:533 sys_ioctl(ffff8000ffff2c70,ffff80001d436b28,ffff80001d436b70) at sys_ioctl+0x5b9 syscall(ffff80001d436bf0) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7fc8458680, count: 5 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic unhandled af 255 ddb> trace db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic(ffffffff821b61dd) at panic+0x15c sys/kern/subr_prf.c:207 unhandled_af(ff) at unhandled_af+0x16 pf_addrcpy(ffff80001d436718,ffff80001d436a10,ff) at pf_addrcpy+0x99 sys/net/pf.c:409 pfioctl(4900,c0504417,ffff80001d436a10,1,ffff8000ffff2c70) at pfioctl+0x43c0 sys/net/pf_ioctl.c:1827 VOP_IOCTL(fffffd80628b9410,c0504417,ffff80001d436a10,1,fffffd806c3be8a0,ffff8000ffff2c70) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:291 vn_ioctl(fffffd8057d75da8,c0504417,ffff80001d436a10,ffff8000ffff2c70) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:533 sys_ioctl(ffff8000ffff2c70,ffff80001d436b28,ffff80001d436b70) at sys_ioctl+0x5b9 syscall(ffff80001d436bf0) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7fc8458680, count: -10 ddb> show registers rdi 0xffffffff817d3d07 db_enter+0x17 rsi 0xc32 rbp 0xffff80001d4365d0 rbx 0xffff80001d436680 rdx 0xc33 rcx 0xffff80001d43f000 rax 0xffff80001d43f000 r8 0xffff80001d436590 r9 0x1 r10 0xffff8000009f2080 r11 0xca8a3e4f30745279 r12 0x3000000008 r13 0xffff80001d4365e0 r14 0x100 r15 0x1 rip 0xffffffff817d3d08 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff80001d4365c0 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb> show proc PROC (syz-executor.0) pid=383131 stat=onproc flags process=0 proc=4000000 pri=81, usrpri=81, nice=20 forw=0xffffffffffffffff, list=0xffff8000ffff29f8,0xffffffff82556268 process=0xffff8000ffff66e0 user=0xffff80001d431000, vmspace=0xfffffd806bc09ee0 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 57489 352755 72549 0 2 0 syz-executor.0 *57489 383131 72549 0 7 0x4000000 syz-executor.0 72549 521854 35397 0 3 0x82 nanosleep syz-executor.0 90564 490588 35397 0 2 0x2 syz-executor.1 35397 282576 26715 0 3 0x82 thrsleep syz-fuzzer 35397 238623 26715 0 3 0x4000082 nanosleep syz-fuzzer 35397 315040 26715 0 3 0x4000082 thrsleep syz-fuzzer 35397 404991 26715 0 3 0x4000082 thrsleep syz-fuzzer 35397 33935 26715 0 3 0x4000082 thrsleep syz-fuzzer 35397 312633 26715 0 3 0x4000082 thrsleep syz-fuzzer 35397 338334 26715 0 3 0x4000082 thrsleep syz-fuzzer 35397 62039 26715 0 3 0x4000082 kqread syz-fuzzer 26715 118731 84930 0 3 0x10008a pause ksh 84930 212010 92537 0 3 0x92 select sshd 21667 9565 1 0 3 0x100083 ttyin getty 92537 297963 1 0 3 0x80 select sshd 15701 64332 80981 73 3 0x100090 kqread syslogd 80981 206686 1 0 3 0x100082 netio syslogd 35000 292665 1 77 3 0x100090 poll dhclient 56230 258899 1 0 3 0x80 poll dhclient 59016 504214 0 0 2 0x14200 zerothread 16340 102277 0 0 3 0x14200 aiodoned aiodoned 84551 244156 0 0 3 0x14200 syncer update 82660 362901 0 0 3 0x14200 cleaner cleaner 37125 331333 0 0 3 0x14200 reaper reaper 16998 56991 0 0 3 0x14200 pgdaemon pagedaemon 9196 35783 0 0 3 0x14200 bored crynlk 8131 348653 0 0 3 0x14200 bored crypto 51094 478452 0 0 3 0x40014200 acpi0 acpi0 88768 269417 0 0 3 0x14200 bored softnet 64153 307264 0 0 3 0x14200 bored systqmp 7843 449770 0 0 3 0x14200 bored systq 29221 190979 0 0 3 0x40014200 bored softclock 72780 5618 0 0 3 0x40014200 idle0 53410 254987 0 0 3 0x14200 bored smr 1 189338 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9454 6326K 6332K 78643K 11283 0 pcb 13 8K 8K 78643K 21 0 rtable 105 3K 3K 78643K 193 0 ifaddr 39 10K 10K 78643K 39 0 counters 19 16K 16K 78643K 19 0 ioctlops 0 0K 2K 78643K 1240 0 mount 1 1K 1K 78643K 1 0 vnodes 1219 77K 77K 78643K 1319 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 1K 78643K 2 0 VM map 2 0K 0K 78643K 2 0 sem 2 0K 0K 78643K 2 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1794 195K 288K 78643K 12646 0 file desc 5 13K 25K 78643K 2968 0 sigio 0 0K 0K 78643K 156 0 proc 47 38K 63K 78643K 507 0 subproc 32 2K 2K 78643K 34 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 82 0 in_multi 33 2K 2K 78643K 52 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 31 148K 148K 78643K 31 0 exec 0 0K 1K 78643K 181 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 92 20K 21K 78643K 6827 0 UVM aobj 97 3K 3K 78643K 97 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 NDP 5 0K 0K 78643K 9 0 temp 104 3018K 3082K 78643K 9262 0 kqueue 0 0K 0K 78643K 23 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 6 0 0 1 0 1 1 0 8 0 rtpcb 80 19 0 17 1 0 1 1 0 8 0 rtentry 112 45 0 1 2 0 2 2 0 8 0 unpcb 120 1342 0 1334 1 0 1 1 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpcb 544 1433 0 1429 1 0 1 1 0 8 0 inpcb 280 2768 0 2761 4 3 1 2 0 8 0 nd6 48 4 0 0 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 213 0 0 14 0 14 14 0 8 0 art_table 32 214 0 0 2 0 2 2 0 8 0 art_node 16 44 0 4 1 0 1 1 0 8 0 sysvmsgpl 40 29 0 10 1 0 1 1 0 8 0 shmpl 112 95 0 0 3 0 3 3 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 4394 0 2994 46 0 46 46 0 8 0 ffsino 240 4394 0 2994 83 0 83 83 0 8 0 nchpl 144 9129 0 7519 60 0 60 60 0 8 0 uvmvnodes 72 4526 0 0 83 0 83 83 0 8 0 vnodes 208 4526 0 0 239 0 239 239 0 8 0 namei 1024 20940 0 20940 1 0 1 1 0 8 1 scxspl 192 22204 0 22204 1 0 1 1 0 8 1 plimitpl 152 14 0 7 1 0 1 1 0 8 0 sigapl 432 3139 0 3126 2 0 2 2 0 8 0 futexpl 56 30288 0 30288 1 0 1 1 0 8 1 knotepl 112 139 0 120 1 0 1 1 0 8 0 kqueuepl 104 113 0 111 1 0 1 1 0 8 0 pipepl 112 1924 0 1905 1 0 1 1 0 8 0 fdescpl 424 3140 0 3126 2 0 2 2 0 8 0 filepl 120 14416 0 14317 4 0 4 4 0 8 1 lockfpl 104 74 0 71 1 0 1 1 0 8 0 lockfspl 48 37 0 34 1 0 1 1 0 8 0 sessionpl 112 17 0 7 1 0 1 1 0 8 0 pgrppl 48 17 0 7 1 0 1 1 0 8 0 ucredpl 96 506 0 499 1 0 1 1 0 8 0 zombiepl 144 3126 0 3126 1 0 1 1 0 8 1 processpl 872 3154 0 3126 4 0 4 4 0 8 0 procpl 632 6155 0 6119 4 0 4 4 0 8 0 sockpl 384 4129 0 4112 5 2 3 4 0 8 1 mcl64k 65536 5 0 5 3 2 1 1 0 8 1 mcl16k 16384 5 0 5 1 1 0 1 0 8 0 mcl12k 12288 60 0 60 4 3 1 1 0 8 1 mcl9k 9216 11 0 11 2 2 0 1 0 8 0 mcl8k 8192 164 0 164 4 3 1 1 0 8 1 mcl4k 4096 373 0 373 4 3 1 1 0 8 1 mcl2k2 2112 36 0 36 4 4 0 1 0 8 0 mcl2k 2048 21942 0 21904 11 5 6 10 0 8 0 mtagpl 80 2 0 2 1 1 0 1 0 8 0 mbufpl 256 49557 0 49426 14 3 11 11 0 8 0 bufpl 280 9100 0 2916 442 0 442 442 0 8 0 anonpl 16 184122 0 179566 21 1 20 20 0 107 0 amapchunkpl 152 9894 0 9800 6 1 5 6 0 158 0 amappl16 192 12064 0 11859 11 0 11 11 0 8 0 amappl15 184 50 0 46 1 0 1 1 0 8 0 amappl14 176 1475 0 1471 1 0 1 1 0 8 0 amappl13 168 1488 0 1487 1 0 1 1 0 8 0 amappl12 160 3 0 3 1 1 0 1 0 8 0 amappl11 152 48 0 36 1 0 1 1 0 8 0 amappl10 144 11 0 9 1 0 1 1 0 8 0 amappl9 136 566 0 561 1 0 1 1 0 8 0 amappl8 128 104 0 90 1 0 1 1 0 8 0 amappl7 120 92 0 82 1 0 1 1 0 8 0 amappl6 112 55 0 48 1 0 1 1 0 8 0 amappl5 104 149 0 139 1 0 1 1 0 8 0 amappl4 96 4835 0 4810 1 0 1 1 0 8 0 amappl3 88 1634 0 1626 1 0 1 1 0 8 0 amappl2 80 24503 0 24432 3 1 2 3 0 8 0 amappl1 72 61292 0 60879 26 17 9 20 0 8 0 amappl 80 6369 0 6333 1 0 1 1 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 96 0 0 2 0 2 2 0 8 0 uaddrrnd 24 3140 0 3126 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 3140 0 3126 1 0 1 1 0 8 0 vmmpekpl 168 17996 0 17974 2 0 2 2 0 8 0 vmmpepl 168 353447 0 352177 84 23 61 78 0 357 5 vmsppl 272 3139 0 3126 2 1 1 2 0 8 0 pdppl 4096 6286 0 6252 6 1 5 6 0 8 0 pvpl 32 574456 0 566891 118 55 63 115 0 265 0 pmappl 200 3139 0 3126 1 0 1 1 0 8 0 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 150 0 21 4 0 4 4 0 8 0