panic: unhandled af 108 Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND * 24403 53967 0 0 0x4000000 0 syz-executor.1 db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic(ffffffff821b8c65) at panic+0x15c sys/kern/subr_prf.c:207 unhandled_af(6c) at unhandled_af+0x16 pf_addrcpy(ffff800020470028,ffff800020470320,6c) at pf_addrcpy+0x99 sys/net/pf.c:409 pfioctl(4900,c0504417,ffff800020470320,1,ffff8000ffff33d8) at pfioctl+0x43c0 sys/net/pf_ioctl.c:1827 VOP_IOCTL(fffffd805d6798f0,c0504417,ffff800020470320,1,fffffd806c3be6c0,ffff8000ffff33d8) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:291 vn_ioctl(fffffd8068749538,c0504417,ffff800020470320,ffff8000ffff33d8) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:533 sys_ioctl(ffff8000ffff33d8,ffff800020470438,ffff800020470480) at sys_ioctl+0x5b9 syscall(ffff800020470500) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x76227757890, count: 5 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic unhandled af 108 ddb> trace db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic(ffffffff821b8c65) at panic+0x15c sys/kern/subr_prf.c:207 unhandled_af(6c) at unhandled_af+0x16 pf_addrcpy(ffff800020470028,ffff800020470320,6c) at pf_addrcpy+0x99 sys/net/pf.c:409 pfioctl(4900,c0504417,ffff800020470320,1,ffff8000ffff33d8) at pfioctl+0x43c0 sys/net/pf_ioctl.c:1827 VOP_IOCTL(fffffd805d6798f0,c0504417,ffff800020470320,1,fffffd806c3be6c0,ffff8000ffff33d8) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:291 vn_ioctl(fffffd8068749538,c0504417,ffff800020470320,ffff8000ffff33d8) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:533 sys_ioctl(ffff8000ffff33d8,ffff800020470438,ffff800020470480) at sys_ioctl+0x5b9 syscall(ffff800020470500) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x76227757890, count: -10 ddb> show registers rdi 0xffffffff817e67d7 db_enter+0x17 rsi 0xc78 rbp 0xffff80002046fee0 rbx 0xffff80002046ff90 rdx 0xc79 rcx 0xffff80001e45b000 rax 0xffff80001e45b000 r8 0xffff80002046fea0 r9 0x1 r10 0xffff800000a14440 r11 0xc56bbcb93cf9e1ee r12 0x3000000008 r13 0xffff80002046fef0 r14 0x100 r15 0x1 rip 0xffffffff817e67d8 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff80002046fed0 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb> show proc PROC (syz-executor.1) pid=24403 stat=onproc flags process=0 proc=4000000 pri=74, usrpri=74, nice=20 forw=0xffffffffffffffff, list=0xffff8000ffff38c8,0xffffffff82560d28 process=0xffff80001d39a018 user=0xffff80002046b000, vmspace=0xfffffd806bc09330 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 53967 293074 35020 0 2 0 syz-executor.1 *53967 24403 35020 0 7 0x4000000 syz-executor.1 77037 97358 53065 0 2 0 syz-executor.0 77037 356126 53065 0 3 0x4000080 lockf syz-executor.0 35020 113819 73482 0 3 0x82 nanosleep syz-executor.1 53065 290889 73482 0 3 0x82 nanosleep syz-executor.0 66846 422382 0 0 3 0x14200 bored sosplice 73482 286186 86489 0 3 0x82 thrsleep syz-fuzzer 73482 518864 86489 0 3 0x4000082 thrsleep syz-fuzzer 73482 369307 86489 0 3 0x4000082 thrsleep syz-fuzzer 73482 31635 86489 0 3 0x4000082 thrsleep syz-fuzzer 73482 30888 86489 0 3 0x4000082 thrsleep syz-fuzzer 73482 522889 86489 0 3 0x4000082 kqread syz-fuzzer 73482 105754 86489 0 3 0x4000082 thrsleep syz-fuzzer 73482 126628 86489 0 3 0x4000082 thrsleep syz-fuzzer 86489 122360 45302 0 3 0x10008a pause ksh 45302 205195 63100 0 3 0x92 select sshd 52476 519303 1 0 3 0x100083 ttyin getty 63100 2684 1 0 3 0x80 select sshd 80357 275743 95174 73 3 0x100090 kqread syslogd 95174 326039 1 0 3 0x100082 netio syslogd 60853 475045 1 77 3 0x100090 poll dhclient 65484 486269 1 0 3 0x80 poll dhclient 45077 395740 0 0 2 0x14200 zerothread 89471 332074 0 0 3 0x14200 aiodoned aiodoned 21050 436802 0 0 3 0x14200 syncer update 21375 252017 0 0 3 0x14200 cleaner cleaner 65687 225410 0 0 3 0x14200 reaper reaper 1423 4944 0 0 3 0x14200 pgdaemon pagedaemon 39670 61626 0 0 3 0x14200 bored crynlk 52871 305020 0 0 3 0x14200 bored crypto 1329 251448 0 0 3 0x40014200 acpi0 acpi0 18984 224465 0 0 3 0x14200 bored softnet 14745 47664 0 0 3 0x14200 bored systqmp 44185 148247 0 0 3 0x14200 bored systq 47125 71251 0 0 3 0x40014200 bored softclock 60171 451949 0 0 3 0x40014200 idle0 92798 4137 0 0 3 0x14200 bored smr 1 200693 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9464 6351K 6663K 78643K 25488 0 pcb 13 8K 8K 78643K 2073 0 rtable 108 3K 3K 78643K 604 0 ifaddr 44 10K 10K 78643K 101 0 counters 19 16K 16K 78643K 19 0 ioctlops 0 0K 4K 78643K 2667 0 iov 0 0K 32K 78643K 474 0 mount 1 1K 1K 78643K 1 0 vnodes 1211 76K 77K 78643K 9110 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 1858 0 VM map 2 0K 0K 78643K 2 0 sem 12 0K 1K 78643K 331 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1794 195K 288K 78643K 12646 0 file desc 6 17K 25K 78643K 53789 0 sigio 0 0K 0K 78643K 1626 0 proc 121 43K 64K 78643K 1362 0 subproc 32 2K 2K 78643K 170 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 1688 0 in_multi 33 2K 2K 78643K 665 0 ether_multi 1 0K 0K 78643K 61 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 61 281K 281K 78643K 61 0 exec 0 0K 1K 78643K 2239 0 pfkey data 0 0K 0K 78643K 2 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 161 40K 44K 78643K 117282 0 UVM aobj 130 4K 4K 78643K 137 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 674 0 NDP 6 0K 0K 78643K 34 0 temp 109 3022K 3094K 78643K 259816 0 kqueue 0 0K 0K 78643K 337 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 23 0 17 1 0 1 1 0 8 0 rtpcb 80 885 0 883 1 0 1 1 0 8 0 rtentry 112 126 0 82 2 0 2 2 0 8 0 unpcb 120 111634 0 111626 59 58 1 3 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 sackhl 24 24 0 24 22 22 0 1 0 8 0 tcpcb 544 35936 0 35932 55 54 1 2 0 8 0 inpcb 280 45731 0 45724 62 61 1 3 0 8 0 nd6 48 20 0 16 1 0 1 1 0 8 0 pkpcb 40 58 0 58 6 6 0 1 0 8 0 pftag 88 11 0 11 2 2 0 1 0 8 0 pfrule 1360 20 0 20 2 2 0 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 557 0 344 14 0 14 14 0 8 0 art_table 32 558 0 344 2 0 2 2 0 8 0 art_node 16 125 0 85 1 0 1 1 0 8 0 sysvmsgpl 40 325 0 325 7 7 0 1 0 8 0 semapl 112 329 0 319 1 0 1 1 0 8 0 shmpl 112 135 0 7 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 68084 0 66646 47 0 47 47 0 8 0 ffsino 240 68084 0 66646 86 0 86 86 0 8 0 nchpl 144 150920 0 149133 69 2 67 67 0 8 0 uvmvnodes 72 5926 0 0 108 0 108 108 0 8 0 vnodes 208 5926 0 0 312 0 312 312 0 8 0 namei 1024 372718 0 372718 1 0 1 1 0 8 1 vcpupl 1984 2 0 1 1 0 1 1 0 8 0 vmpool 528 14 0 13 2 1 1 1 0 8 0 scxspl 192 361769 0 361769 1 0 1 1 0 8 1 plimitpl 152 199 0 192 1 0 1 1 0 8 0 sigapl 432 53936 0 53922 2 0 2 2 0 8 0 futexpl 56 551840 0 551840 1 0 1 1 0 8 1 knotepl 112 3616 0 3597 1 0 1 1 0 8 0 kqueuepl 104 6718 0 6716 1 0 1 1 0 8 0 pipepl 112 23354 0 23335 17 16 1 2 0 8 0 fdescpl 424 53937 0 53922 2 0 2 2 0 8 0 filepl 120 335656 0 335557 84 80 4 6 0 8 0 lockfpl 104 8259 0 8256 1 0 1 1 0 8 0 lockfspl 48 3098 0 3096 1 0 1 1 0 8 0 sessionpl 112 25 0 15 1 0 1 1 0 8 0 pgrppl 48 602 0 592 1 0 1 1 0 8 0 ucredpl 96 37788 0 37780 1 0 1 1 0 8 0 zombiepl 144 53922 0 53922 1 0 1 1 0 8 1 processpl 872 53952 0 53922 4 0 4 4 0 8 0 procpl 632 110137 0 110098 4 0 4 4 0 8 0 sosppl 128 131 0 131 5 5 0 1 0 8 0 sockpl 384 158684 0 158667 239 236 3 12 0 8 1 mcl64k 65536 525 0 525 50 50 0 1 0 8 0 mcl16k 16384 100 0 100 48 48 0 1 0 8 0 mcl12k 12288 231 0 231 63 63 0 1 0 8 0 mcl9k 9216 933 0 933 48 48 0 1 0 8 0 mcl8k 8192 622 0 622 71 71 0 1 0 8 0 mcl4k 4096 3508 0 3508 52 52 0 1 0 8 0 mcl2k2 2112 559 0 559 61 61 0 1 0 8 0 mcl2k 2048 90209 0 90167 40 34 6 10 0 8 0 mtagpl 80 4 0 4 2 2 0 1 0 8 0 mbufpl 256 445480 0 445389 43 34 9 12 0 8 0 bufpl 280 64052 0 57868 442 0 442 442 0 8 0 anonpl 16 3031774 0 3026991 159 137 22 37 0 107 0 amapchunkpl 152 336082 0 335988 151 147 4 8 0 158 0 amappl16 192 218306 0 218070 127 115 12 24 0 8 0 amappl15 184 76 0 71 1 0 1 1 0 8 0 amappl14 176 20170 0 20168 1 0 1 1 0 8 0 amappl13 168 3293 0 3291 2 1 1 1 0 8 0 amappl12 160 5770 0 5767 1 0 1 1 0 8 0 amappl11 152 70 0 59 1 0 1 1 0 8 0 amappl10 144 1834 0 1831 1 0 1 1 0 8 0 amappl9 136 23372 0 23368 1 0 1 1 0 8 0 amappl8 128 23287 0 23202 4 1 3 3 0 8 0 amappl7 120 1950 0 1938 1 0 1 1 0 8 0 amappl6 112 78 0 73 1 0 1 1 0 8 0 amappl5 104 6329 0 6317 1 0 1 1 0 8 0 amappl4 96 46260 0 46232 1 0 1 1 0 8 0 amappl3 88 31447 0 31440 1 0 1 1 0 8 0 amappl2 80 424680 0 424600 3 1 2 3 0 8 0 amappl1 72 856704 0 856265 26 16 10 20 0 8 0 amappl 80 115723 0 115684 1 0 1 1 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 136 0 7 3 0 3 3 0 8 0 uaddrrnd 24 53951 0 53935 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 53951 0 53935 1 0 1 1 0 8 0 vmmpekpl 168 264617 0 264589 3 1 2 2 0 8 0 vmmpepl 168 5944188 0 5942694 227 161 66 78 0 357 0 vmsppl 272 53950 0 53935 5 3 2 2 0 8 1 pdppl 4096 107908 0 107871 6 1 5 6 0 8 0 pvpl 32 8618549 0 8610597 531 463 68 115 0 265 0 pmappl 200 53950 0 53935 1 0 1 1 0 8 0 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 479 0 351 4 0 4 4 0 8 0