panic: ifa_update_broadaddr does not support dynamic length Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *384043 63588 0 0 0x4000000 0 syz-executor.1 db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic() at panic+0x15c sys/kern/subr_prf.c:207 ifa_update_broadaddr(ffff800000ad1000,ffff800000c79100,ffff80001580d630) at ifa_update_broadaddr+0x61 sys/net/if.c:2986 in_ioctl(80206913,ffff80001580d620,ffff800000ad1000,1) at in_ioctl+0x463 sys/netinet/in.c:311 ifioctl(fffffd803a29f180,80206913,ffff80001580d620,ffff8000ffff3b40) at ifioctl+0xb34 sys/net/if.c:2218 sys_ioctl(ffff8000ffff3b40,ffff80001580d738,ffff80001580d780) at sys_ioctl+0x5b9 syscall(ffff80001580d800) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall(6,0,ffffffffffffff36,0,3,4a4fa4b7010) at Xsyscall+0x128 end of kernel end trace frame: 0x4a6fe2e8d10, count: 7 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic ifa_update_broadaddr does not support dynamic length ddb> trace db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic() at panic+0x15c sys/kern/subr_prf.c:207 ifa_update_broadaddr(ffff800000ad1000,ffff800000c79100,ffff80001580d630) at ifa_update_broadaddr+0x61 sys/net/if.c:2986 in_ioctl(80206913,ffff80001580d620,ffff800000ad1000,1) at in_ioctl+0x463 sys/netinet/in.c:311 ifioctl(fffffd803a29f180,80206913,ffff80001580d620,ffff8000ffff3b40) at ifioctl+0xb34 sys/net/if.c:2218 sys_ioctl(ffff8000ffff3b40,ffff80001580d738,ffff80001580d780) at sys_ioctl+0x5b9 syscall(ffff80001580d800) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall(6,0,ffffffffffffff36,0,3,4a4fa4b7010) at Xsyscall+0x128 end of kernel end trace frame: 0x4a6fe2e8d10, count: -8 ddb> show registers rdi 0xffffffff816c6117 db_enter+0x17 rsi 0x1e6a __ALIGN_SIZE+0xe6a rbp 0xffff80001580d3c0 rbx 0xffff80001580d470 rdx 0x1e6b __ALIGN_SIZE+0xe6b rcx 0xffff80001593c000 rax 0xffff80001593c000 r8 0xffff80001580d380 r9 0x1 r10 0xffff800000a46d80 r11 0x6c9b40e875a6d356 r12 0x3000000008 r13 0xffff80001580d3d0 r14 0x100 r15 0x1 rip 0xffffffff816c6118 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff80001580d3b0 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb> show proc PROC (syz-executor.1) pid=384043 stat=onproc flags process=0 proc=4000000 pri=80, usrpri=80, nice=20 forw=0xffffffffffffffff, list=0xffff8000ffff2018,0xffff8000ffff3660 process=0xffff8000ffff6370 user=0xffff800015808000, vmspace=0xfffffd803f011990 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 77092 127006 81134 0 2 0x10 syz-executor.0 77092 440373 81134 0 3 0x4000090 fsleep syz-executor.0 63588 483040 66717 0 2 0 syz-executor.1 *63588 384043 66717 0 7 0x4000000 syz-executor.1 81134 47340 68372 0 3 0x82 nanosleep syz-executor.0 66717 140631 68372 0 3 0x82 nanosleep syz-executor.1 91956 345037 1 0 3 0x100083 ttyin getty 79972 432693 0 0 3 0x14200 bored sosplice 68372 479773 58316 0 3 0x82 thrsleep syz-fuzzer 68372 79778 58316 0 3 0x4000082 thrsleep syz-fuzzer 68372 125172 58316 0 3 0x4000082 thrsleep syz-fuzzer 68372 87673 58316 0 3 0x4000082 thrsleep syz-fuzzer 68372 92341 58316 0 3 0x4000082 thrsleep syz-fuzzer 68372 317624 58316 0 3 0x4000082 thrsleep syz-fuzzer 68372 431461 58316 0 3 0x4000082 thrsleep syz-fuzzer 68372 449604 58316 0 3 0x4000082 kqread syz-fuzzer 68372 512945 58316 0 3 0x4000082 thrsleep syz-fuzzer 58316 374434 45878 0 3 0x10008a pause ksh 45878 487257 49188 0 3 0x92 select sshd 49188 342832 1 0 3 0x80 select sshd 84366 185637 95687 73 3 0x100090 kqread syslogd 95687 212971 1 0 3 0x100082 netio syslogd 35262 260432 0 0 2 0x14200 zerothread 77576 73464 0 0 3 0x14200 aiodoned aiodoned 49803 496710 0 0 3 0x14200 syncer update 40617 438243 0 0 3 0x14200 cleaner cleaner 89911 75858 0 0 3 0x14200 reaper reaper 25168 366611 0 0 3 0x14200 pgdaemon pagedaemon 79690 110880 0 0 3 0x14200 bored crynlk 42322 13637 0 0 3 0x14200 bored crypto 99694 281666 0 0 3 0x40014200 acpi0 acpi0 92961 31800 0 0 3 0x14200 bored softnet 57243 276198 0 0 3 0x14200 bored systqmp 81114 52492 0 0 3 0x14200 bored systq 99097 40863 0 0 3 0x40014200 bored softclock 44655 85747 0 0 3 0x40014200 idle0 45791 394104 0 0 3 0x14200 bored smr 1 295600 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim Kern Lim devbuf 9623 6348K 8149K 78643K 67453 0 0 pcb 13 11K 12K 78643K 5763 0 0 rtable 170 15K 16K 78643K 7193 0 0 ifaddr 138 39K 43K 78643K 3296 0 0 counters 19 16K 16K 78643K 19 0 0 ioctlops 0 0K 2K 78643K 1240 0 0 iov 0 0K 32K 78643K 6165 0 0 mount 1 1K 1K 78643K 1 0 0 vnodes 1206 76K 77K 78643K 25182 0 0 UFS quota 1 32K 32K 78643K 1 0 0 UFS mount 5 36K 36K 78643K 5 0 0 shm 2 1K 9K 78643K 314 0 0 VM map 216 54K 54K 78643K 313 0 0 sem 12 0K 1K 78643K 5610 0 0 dirhash 12 2K 2K 78643K 12 0 0 ACPI 1794 195K 288K 78643K 12646 0 0 file desc 6 17K 25K 78643K 23034 0 0 sigio 0 0K 0K 78643K 372 0 0 proc 45 30K 63K 78643K 7382 0 0 subproc 32 2K 2K 78643K 2056 0 0 NFS srvsock 1 0K 0K 78643K 1 0 0 NFS daemon 1 16K 16K 78643K 1 0 0 ip_moptions 0 0K 0K 78643K 2805 0 0 in_multi 63 4K 4K 78643K 2884 0 0 ether_multi 1 0K 0K 78643K 288 0 0 mrt 5 0K 0K 78643K 189 0 0 ISOFS mount 1 32K 32K 78643K 1 0 0 MSDOSFS mount 1 16K 16K 78643K 1 0 0 ttys 156 689K 689K 78643K 156 0 0 exec 0 0K 1K 78643K 4339 0 0 pfkey data 0 0K 4K 78643K 4 0 0 pagedep 1 8K 8K 78643K 1 0 0 inodedep 1 32K 32K 78643K 1 0 0 newblk 1 0K 0K 78643K 1 0 0 VM swap 7 26K 26K 78643K 7 0 0 UVM amap 391 1619K 1620K 78643K 58947 0 0 UVM aobj 130 6K 6K 78643K 147 0 0 memdesc 1 4K 4K 78643K 1 0 0 crypto data 1 1K 1K 78643K 1 0 0 ip6_options 0 0K 1K 78643K 5624 0 0 NDP 24 0K 1K 78643K 1104 0 0 temp 230 3545K 4185K 78643K 689191 0 0 kqueue 0 0K 0K 78643K 468 0 0 SYN cache 2 16K 16K 78643K 2 0 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 471 0 466 1 0 1 1 0 8 0 rtpcb 80 2334 0 2334 49 48 1 1 0 8 1 rtentry 112 2661 0 2595 3 1 2 3 0 8 0 unpcb 120 13507 0 13497 4 3 1 2 0 8 0 syncache 264 142 0 142 57 57 0 1 0 8 0 sackhl 24 1 0 1 1 1 0 1 0 8 0 tcpqe 32 76 0 76 35 35 0 1 0 8 0 tcpcb 544 11559 0 11554 145 144 1 15 0 8 0 ipq 40 281 0 281 88 87 1 1 0 8 1 ipqe 40 7767 0 7767 88 87 1 1 0 8 1 inpcb 280 31214 0 31207 168 166 2 9 0 8 1 rttmr 72 58 0 57 12 11 1 1 0 8 0 ip6q 72 8 0 8 7 7 0 1 0 8 0 ip6af 40 22 0 22 7 7 0 1 0 8 0 nd6 48 365 0 362 11 10 1 1 0 8 0 pkpcb 40 101 0 101 42 42 0 1 0 8 0 swfcl 56 8 0 0 1 0 1 1 0 8 0 ppxss 1128 384 0 384 88 87 1 1 0 8 1 art_heap8 4096 60 0 56 28 24 4 6 0 8 0 art_heap4 256 11137 0 10810 106 84 22 25 0 8 0 art_table 32 11197 0 10866 7 4 3 4 0 8 0 art_node 16 2648 0 2593 1 0 1 1 0 8 0 sysvmsgpl 40 24 0 7 1 0 1 1 0 8 0 semupl 112 1 0 1 1 1 0 1 0 8 0 semapl 112 5608 0 5598 1 0 1 1 0 8 0 shmpl 112 145 0 17 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 39557 0 38053 52 3 49 49 0 8 0 ffsino 240 39557 0 38053 89 0 89 89 0 8 0 nchpl 144 81997 0 81429 64 42 22 60 0 8 0 uvmvnodes 72 11529 0 0 210 0 210 210 0 8 0 vnodes 208 11529 0 0 607 0 607 607 0 8 0 namei 1024 350544 0 350544 24 23 1 1 0 8 1 vcpupl 1984 219 0 5 27 0 27 27 0 8 0 vmpool 520 311 0 97 21 6 15 15 0 8 0 scsiplug 64 28 0 28 19 19 0 1 0 8 0 scxspl 192 286348 0 286348 103 102 1 7 0 8 1 plimitpl 152 2179 0 2173 1 0 1 1 0 8 0 sigapl 432 22862 0 22850 2 0 2 2 0 8 0 futexpl 56 711852 0 711851 29 28 1 1 0 8 0 knotepl 112 6669 0 6650 38 36 2 3 0 8 1 kqueuepl 104 10348 0 10346 25 24 1 4 0 8 0 pipepl 112 14682 0 14663 34 33 1 2 0 8 0 fdescpl 424 22863 0 22850 2 0 2 2 0 8 0 filepl 120 265415 0 265330 145 140 5 10 0 8 2 lockfpl 104 10119 0 10119 31 30 1 1 0 8 1 lockfspl 48 3142 0 3142 31 30 1 1 0 8 1 sessionpl 112 147 0 139 1 0 1 1 0 8 0 pgrppl 48 570 0 562 1 0 1 1 0 8 0 ucredpl 96 86261 0 86253 1 0 1 1 0 8 0 zombiepl 144 22886 0 22886 2 1 1 1 0 8 1 processpl 864 22914 0 22886 4 0 4 4 0 8 0 procpl 632 51468 0 51430 9 5 4 5 0 8 0 sosppl 128 351 0 351 74 73 1 1 0 8 1 sockpl 384 47923 0 47908 256 252 4 14 0 8 2 mcl64k 65536 7167 0 7167 566 565 1 64 0 8 1 mcl16k 16384 357 0 357 95 95 0 1 0 8 0 mcl12k 12288 811 0 811 61 60 1 1 0 8 1 mcl9k 9216 376 0 376 105 104 1 1 0 8 1 mcl8k 8192 1322 0 1322 36 35 1 1 0 8 1 mcl4k 4096 2987 0 2987 34 33 1 1 0 8 1 mcl2k2 2112 245 0 245 101 101 0 1 0 8 0 mcl2k 2048 115017 0 114971 22 15 7 14 0 8 1 mtagpl 80 1259 0 1255 12 11 1 1 0 8 0 mbufpl 256 384477 0 384345 937 918 19 44 0 8 8 bufpl 256 114483 0 102953 722 1 721 721 0 8 0 anonpl 16 2823968 0 2799231 673 562 111 131 0 62 0 amapchunkpl 152 127741 0 127578 481 473 8 36 0 158 0 amappl16 192 153634 0 152018 661 576 85 93 0 8 0 amappl15 184 2500 0 2500 19 19 0 1 0 8 0 amappl14 176 5387 0 5378 1 0 1 1 0 8 0 amappl13 168 3842 0 3839 1 0 1 1 0 8 0 amappl12 160 3030 0 3028 2 1 1 1 0 8 0 amappl11 152 2330 0 2326 1 0 1 1 0 8 0 amappl10 144 1713 0 1710 1 0 1 1 0 8 0 amappl9 136 5078 0 5073 1 0 1 1 0 8 0 amappl8 128 4613 0 4536 4 1 3 3 0 8 0 amappl7 120 2248 0 2239 1 0 1 1 0 8 0 amappl6 112 2046 0 2033 1 0 1 1 0 8 0 amappl5 104 4441 0 4434 1 0 1 1 0 8 0 amappl4 96 20555 0 20523 1 0 1 1 0 8 0 amappl3 88 9558 0 9529 1 0 1 1 0 8 0 amappl2 80 179549 0 179455 3 1 2 3 0 8 0 amappl1 72 423945 0 423553 28 19 9 20 0 8 0 amappl 80 53998 0 53855 4 0 4 4 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 146 0 17 3 0 3 3 0 8 0 uaddrrnd 24 23174 0 22850 2 0 2 2 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 23174 0 22850 2 0 2 2 0 8 0 vmmpekpl 168 133122 0 133064 3 0 3 3 0 8 0 vmmpepl 168 2802142 0 2798702 1582 1388 194 200 0 357 36 vmsppl 272 22862 0 22850 3 2 1 2 0 8 0 pdppl 4096 46354 0 46108 40 9 31 31 0 8 0 pvpl 32 7961827 0 7940382 1730 1522 208 395 0 265 0 pmappl 200 23173 0 22947 12 0 12 12 0 8 0 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 2852 0 1950 28 1 27 27 0 8 0