panic: kernel diagnostic assertion "cifp != NULL" failed: file "/syzkaller/managers/multicore/kernel/sys/net/route.c", line 1078 Stopped at db_enter+0x25: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *177862 90827 0 0x2 0 1K ifconfig 395843 22453 0 0x2 0 0 syz-executor db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff830e37cd) at panic+0x1e5 sys/kern/subr_prf.c:198 __assert(ffffffff8309b04e,ffffffff83016950,436,ffffffff8300d6b9) at __assert+0x29 rtrequest(1,ffff80002a0c80c8,4,ffff80002a0c8170,0) at rtrequest+0xdce sys/net/route.c:1078 rt_ifa_add(ffff800001615400,840100,ffff800001615458,0) at rt_ifa_add+0x22e sys/net/route.c:1273 in_ifinit(ffff800001584000,ffff800001615400,ffff80002a0c83e0,1) at in_ifinit+0x4bd in_insert_prefix sys/netinet/in.c:770 [inline] in_ifinit(ffff800001584000,ffff800001615400,ffff80002a0c83e0,1) at in_ifinit+0x4bd sys/netinet/in.c:703 in_ioctl_change_ifaddr(8040691a,ffff80002a0c83d0,ffff800001584000) at in_ioctl_change_ifaddr+0x92c sys/netinet/in.c:504 ifioctl(ffff800001588fa0,8040691a,ffff80002a0c83d0,ffff800037206540) at ifioctl+0x1571 pru_control sys/sys/protosw.h:355 [inline] ifioctl(ffff800001588fa0,8040691a,ffff80002a0c83d0,ffff800037206540) at ifioctl+0x1571 sys/net/if.c:2449 sys_ioctl(ffff800037206540,ffff80002a0c85b0,ffff80002a0c8500) at sys_ioctl+0x67c syscall(ffff80002a0c85b0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a0c85b0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d99d2ec3db0, count: 4 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic *cpu1: kernel diagnostic assertion "cifp != NULL" failed: file "/syzkaller/managers/multicore/kernel/sys/net/route.c", line 1078 ddb{1}> trace db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff830e37cd) at panic+0x1e5 sys/kern/subr_prf.c:198 __assert(ffffffff8309b04e,ffffffff83016950,436,ffffffff8300d6b9) at __assert+0x29 rtrequest(1,ffff80002a0c80c8,4,ffff80002a0c8170,0) at rtrequest+0xdce sys/net/route.c:1078 rt_ifa_add(ffff800001615400,840100,ffff800001615458,0) at rt_ifa_add+0x22e sys/net/route.c:1273 in_ifinit(ffff800001584000,ffff800001615400,ffff80002a0c83e0,1) at in_ifinit+0x4bd in_insert_prefix sys/netinet/in.c:770 [inline] in_ifinit(ffff800001584000,ffff800001615400,ffff80002a0c83e0,1) at in_ifinit+0x4bd sys/netinet/in.c:703 in_ioctl_change_ifaddr(8040691a,ffff80002a0c83d0,ffff800001584000) at in_ioctl_change_ifaddr+0x92c sys/netinet/in.c:504 ifioctl(ffff800001588fa0,8040691a,ffff80002a0c83d0,ffff800037206540) at ifioctl+0x1571 pru_control sys/sys/protosw.h:355 [inline] ifioctl(ffff800001588fa0,8040691a,ffff80002a0c83d0,ffff800037206540) at ifioctl+0x1571 sys/net/if.c:2449 sys_ioctl(ffff800037206540,ffff80002a0c85b0,ffff80002a0c8500) at sys_ioctl+0x67c syscall(ffff80002a0c85b0) at syscall+0xbb6 mi_syscall sys/sys/syscall_mi.h:179 [inline] syscall(ffff80002a0c85b0) at syscall+0xbb6 sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7d99d2ec3db0, count: -11 ddb{1}> show registers rdi 0 rsi 0x1 rbp 0xffff80002a0c7ec0 rbx 0xffff800029b7cdcf rdx 0 rcx 0xffff800037206540 rax 0xffff800029b7bff0 r8 0x101010101010101 r9 0x8080808080808080 r10 0x676381f178c548cc r11 0xcc31c3a5df9a7931 r12 0xffff800029b7cbd0 r13 0 r14 0 r15 0x1 rip 0xffffffff82efcef5 db_enter+0x25 cs 0x8 rflags 0x246 rsp 0xffff80002a0c7eb0 ss 0x10 db_enter+0x25: addq $0x8,%rsp ddb{1}> show proc PROC (ifconfig) tid=177862 pid=90827 tcnt=1 stat=onproc flags process=2 proc=0 runpri=69, usrpri=69, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 scnt=0 ecnt=0 forw=0xffffffffffffffff, list=0xffff800037206f60,0xffffffff8350c8a0 process=0xffff8000ffff56b0 user=0xffff80002a0c3000, vmspace=0xfffffd806b8ffdc8 estcpu=36, cpticks=2, pctcpu=0.0, user=0, sys=2, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND *90827 177862 93442 0 7 0x2 ifconfig 93442 171379 92331 0 3 0x10008a sigsusp sh 22453 395843 18653 0 7 0x2 syz-executor 83801 317358 18653 0 3 0x2 clonelk syz-executor 92331 333623 18653 0 3 0x82 wait syz-executor 69441 397183 0 0 3 0x14280 nfsidl nfsio 92225 246748 0 0 3 0x14280 nfsidl nfsio 27861 28647 0 0 3 0x14280 nfsidl nfsio 96434 493373 0 0 3 0x14280 nfsidl nfsio 28949 340630 0 0 3 0x14280 nfsidl nfsio 22389 514911 0 0 3 0x14280 nfsidl nfsio 36781 331693 0 0 3 0x14280 nfsidl nfsio 10198 76197 0 0 3 0x14280 nfsidl nfsio 5337 65369 0 0 3 0x14280 nfsidl nfsio 87043 496301 0 0 3 0x14280 nfsidl nfsio 7975 79 0 0 3 0x14280 nfsidl nfsio 67382 331354 0 0 3 0x14280 nfsidl nfsio 89309 76612 0 0 3 0x14280 nfsidl nfsio 87157 248133 0 0 3 0x14280 nfsidl nfsio 12599 272278 0 0 3 0x14280 nfsidl nfsio 59833 438090 0 0 3 0x14280 nfsidl nfsio 12048 479018 0 0 3 0x14280 nfsidl nfsio 82181 168137 0 0 3 0x14280 nfsidl nfsio 40329 259488 0 0 3 0x14280 nfsidl nfsio 14131 325490 0 0 3 0x14280 nfsidl nfsio 80027 447233 0 0 3 0x14200 bored sosplice 87360 466288 18653 0 3 0x82 piperd syz-executor 79805 34936 18653 0 3 0x82 piperd syz-executor 69706 94901 18653 0 3 0x82 piperd syz-executor 55472 291915 18653 0 3 0x82 piperd syz-executor 18653 82124 44684 0 3 0x82 wait syz-executor 44684 136671 1 0 3 0x100082 nanoslp ksh 54992 163213 1 0 3 0x8a kqread sshd 1305 360417 90887 74 3 0x1100092 bpf pflogd 90887 281796 1 0 3 0x80 sbwait pflogd 27455 128328 68399 73 3 0x1100010 biowait syslogd 68399 515383 1 0 3 0x100082 sbwait syslogd 11308 450838 1 0 3 0x100080 kqread resolvd 91694 65538 74123 77 3 0x100092 kqread dhcpleased 88974 26919 74123 77 3 0x100092 kqread dhcpleased 74123 153253 1 0 3 0x80 kqread dhcpleased 97808 264860 0 0 3 0x14200 bored smr 30186 510791 0 0 2 0x14200 zerothread 21355 414271 0 0 3 0x14200 aiodoned aiodoned 11810 404521 0 0 3 0x14200 syncer update 32581 107748 0 0 3 0x14200 cleaner cleaner 45210 428125 0 0 3 0x14200 reaper reaper 77333 14495 0 0 3 0x14200 pgdaemon pagedaemon 64181 8499 0 0 3 0x14200 bored viomb 24779 233320 0 0 3 0x40014200 acpi0 acpi0 52419 201853 0 0 3 0x40014200 idle1 63254 385828 0 0 3 0x14200 bored softnet3 45535 176221 0 0 3 0x14200 bored softnet2 70542 507814 0 0 3 0x14200 bored softnet1 33047 130147 0 0 3 0x14200 bored softnet0 50636 409661 0 0 3 0x14200 bored systqmp 57077 349781 0 0 3 0x14200 bored systq 90759 6354 0 0 3 0x14200 tmoslp softclockmp 67697 475830 0 0 3 0x40014200 tmoslp softclock 32590 361467 0 0 3 0x40014200 idle0 1 423040 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 90827 (ifconfig) thread 0xffff800037206540 (177862) Process 27455 (syslogd) thread 0xffff8000ffffd960 (128328) ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10223 14192K 14584K 166960K 12390 0 pcb 17 15K 17K 166960K 141 0 rtable 168 6K 7K 166960K 591 0 pf 32 17K 21K 166960K 74 0 ifaddr 34 5K 7K 166960K 65 0 ifgroup 47 2K 2K 166960K 78 0 sysctl 2 0K 0K 166960K 2 0 counters 60 35K 36K 166960K 80 0 ioctlops 0 0K 4K 166960K 1649 0 iov 0 0K 24K 166960K 50 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1484 93K 94K 166960K 2160 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 1K 5K 166960K 10 0 VM map 2 1K 1K 166960K 2 0 sem 12 0K 0K 166960K 89 0 dirhash 12 2K 2K 166960K 27 0 ACPI 1690 195K 286K 166960K 12418 0 file desc 12 41K 93K 166960K 755 0 sigio 0 0K 0K 166960K 16 0 proc 70 91K 128K 166960K 663 0 subproc 98 6K 6K 166960K 150 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 71 0 in_multi 63 4K 7K 166960K 138 0 ether_multi 1 0K 0K 166960K 2 0 mrt 1 0K 0K 166960K 3 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 265 1182K 1182K 166960K 265 0 exec 0 0K 1K 166960K 558 0 pfkey data 0 0K 0K 166960K 1 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 164 63K 92K 166960K 8762 0 UVM aobj 23 4K 4K 166960K 26 0 pinsyscall 31 62K 102K 166960K 1931 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 24 0 NDP 10 0K 2K 166960K 41 0 temp 63 6821K 6887K 166960K 40710 0 kqueue 11 16K 32K 166960K 134 0 SYN cache 2 16K 16K 166960K 2 0 ddb{1}>