panic: ifa_update_broadaddr does not support dynamic length Stopped at db_enter+0x1c: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND * 57753 98451 0 0x8000000 0x4000000 0 syz-executor.3 db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8282fc39) at panic+0x165 sys/kern/subr_prf.c:198 ifa_update_broadaddr(ffff800000e48800,ffff800000f94700,ffff80002d929a70) at ifa_update_broadaddr+0x6a sys/net/if.c:3315 in_ioctl(80206913,ffff80002d929a60,ffff800000e48800,1) at in_ioctl+0x5cf sys/netinet/in.c:313 ifioctl(fffffd8058baa008,80206913,ffff80002d929a60,ffff80002a6a2a80) at ifioctl+0x104c pru_control sys/sys/protosw.h:378 [inline] ifioctl(fffffd8058baa008,80206913,ffff80002d929a60,ffff80002a6a2a80) at ifioctl+0x104c sys/net/if.c:2449 sys_ioctl(ffff80002a6a2a80,ffff80002d929c40,ffff80002d929b90) at sys_ioctl+0x4a5 syscall(ffff80002d929c40) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xff234525d80, count: 7 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic *cpu0: ifa_update_broadaddr does not support dynamic length ddb> trace db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8282fc39) at panic+0x165 sys/kern/subr_prf.c:198 ifa_update_broadaddr(ffff800000e48800,ffff800000f94700,ffff80002d929a70) at ifa_update_broadaddr+0x6a sys/net/if.c:3315 in_ioctl(80206913,ffff80002d929a60,ffff800000e48800,1) at in_ioctl+0x5cf sys/netinet/in.c:313 ifioctl(fffffd8058baa008,80206913,ffff80002d929a60,ffff80002a6a2a80) at ifioctl+0x104c pru_control sys/sys/protosw.h:378 [inline] ifioctl(fffffd8058baa008,80206913,ffff80002d929a60,ffff80002a6a2a80) at ifioctl+0x104c sys/net/if.c:2449 sys_ioctl(ffff80002a6a2a80,ffff80002d929c40,ffff80002d929b90) at sys_ioctl+0x4a5 syscall(ffff80002d929c40) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xff234525d80, count: -8 ddb> show registers rdi 0 rsi 0x1 rbp 0xffff80002d929810 rbx 0x200 rdx 0 rcx 0 rax 0xffff80002a6a2a80 r8 0x101010101010101 r9 0x8080808080808080 r10 0xc73fe63ceeaef861 r11 0xcbc8f7b21a08d188 r12 0 r13 0x10 r14 0 r15 0x1 rip 0xffffffff81a273dc db_enter+0x1c cs 0x8 rflags 0x246 rsp 0xffff80002d929800 ss 0x10 db_enter+0x1c: addq $0x8,%rsp ddb> show proc PROC (syz-executor.3) tid=57753 pid=98451 tcnt=2 stat=onproc flags process=8000000 proc=4000000 runpri=32, usrpri=86, slppri=32, nice=20 wchan=0x0, wmesg=, ps_single=0x0 forw=0xffffffffffffffff, list=0xffff80002a6a34c0,0xffffffff82e4f948 process=0xffff8000ffffa9e8 user=0xffff80002d924000, vmspace=0xfffffd8067757020 estcpu=36, cpticks=1, pctcpu=0.0, user=0, sys=1, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 98451 479393 30385 0 2 0x8000000 syz-executor.3 *98451 57753 30385 0 7 0xc000000 syz-executor.3 33705 14013 66459 60928 2 0x8000010 syz-executor.5 33705 443508 66459 60928 3 0xc000090 fsleep syz-executor.5 22217 114947 79353 0 3 0x8000080 nanoslp syz-executor.6 22217 374291 79353 0 3 0xc000080 fsleep syz-executor.6 22217 378243 79353 0 3 0xc000080 sbwait syz-executor.6 22217 146365 79353 0 3 0xc000080 fsleep syz-executor.6 95165 476282 29982 0 3 0x8000080 nanoslp syz-executor.2 95165 381571 29982 0 3 0xc000080 netcon2 syz-executor.2 95165 185674 29982 0 3 0xc000080 fsleep syz-executor.2 47681 154201 65083 0 3 0x8000080 nanoslp syz-executor.1 47681 143348 65083 0 3 0xc000080 fifor syz-executor.1 47681 384371 65083 0 3 0xc000080 fsleep syz-executor.1 29982 58627 71926 0 3 0x8000082 nanoslp syz-executor.2 65083 56794 71926 0 3 0x8000082 nanoslp syz-executor.1 79353 101755 71926 0 3 0x8000082 nanoslp syz-executor.6 62789 104658 0 0 3 0x14200 acct acct 97137 489425 71926 0 3 0x8000082 nanoslp syz-executor.7 30385 299661 71926 0 3 0x8000082 nanoslp syz-executor.3 72434 233846 71926 0 2 0x8000002 syz-executor.0 81798 178990 71926 0 2 0x8000002 syz-executor.4 66459 523756 71926 0 3 0x8000082 nanoslp syz-executor.5 27474 73554 0 0 3 0x14280 nfsidl nfsio 28369 242141 0 0 3 0x14280 nfsidl nfsio 79166 268743 0 0 3 0x14280 nfsidl nfsio 52248 389820 0 0 3 0x14280 nfsidl nfsio 45415 426340 0 0 3 0x14280 nfsidl nfsio 34791 28977 0 0 3 0x14280 nfsidl nfsio 7705 479242 0 0 3 0x14280 nfsidl nfsio 56000 374316 0 0 3 0x14280 nfsidl nfsio 21208 69977 0 0 3 0x14280 nfsidl nfsio 47380 351246 0 0 3 0x14280 nfsidl nfsio 59013 469676 0 0 3 0x14280 nfsidl nfsio 80937 267846 0 0 3 0x14280 nfsidl nfsio 62493 422768 0 0 3 0x14280 nfsidl nfsio 4799 449994 0 0 3 0x14280 nfsidl nfsio 27453 381269 0 0 3 0x14280 nfsidl nfsio 88265 113366 0 0 3 0x14280 nfsidl nfsio 94078 474436 0 0 3 0x14280 nfsidl nfsio 91686 124439 0 0 3 0x14280 nfsidl nfsio 67620 124472 0 0 3 0x14280 nfsidl nfsio 50009 162472 0 0 3 0x14280 nfsidl nfsio 56678 492622 58228 0 3 0x18100082 netio arp 58228 305525 1 0 3 0x810008a sigsusp sh 83798 142753 0 0 3 0x14200 bored sosplice 71926 423768 12032 0 3 0x1a000082 thrsleep syz-fuzzer 71926 383244 12032 0 3 0x1e000082 nanoslp syz-fuzzer 71926 452046 12032 0 3 0x1e000082 kqread syz-fuzzer 71926 260659 12032 0 3 0x1e000082 wait syz-fuzzer 71926 73586 12032 0 3 0x1e000082 wait syz-fuzzer 71926 125660 12032 0 3 0x1e000082 wait syz-fuzzer 71926 486781 12032 0 3 0x1e000082 wait syz-fuzzer 71926 207600 12032 0 3 0x1e000082 thrsleep syz-fuzzer 71926 248694 12032 0 3 0x1e000082 thrsleep syz-fuzzer 71926 70559 12032 0 3 0x1e000082 wait syz-fuzzer 71926 89024 12032 0 3 0x1e000082 thrsleep syz-fuzzer 71926 108131 12032 0 3 0x1e000082 wait syz-fuzzer 71926 150364 12032 0 3 0x1e000082 thrsleep syz-fuzzer 71926 362491 12032 0 3 0x1e000082 wait syz-fuzzer 71926 424751 12032 0 3 0x1e000082 wait syz-fuzzer 12032 368923 7483 0 3 0x810008a sigsusp ksh 7483 312011 15551 0 3 0x1800009a kqread sshd 49247 407727 1 0 3 0x18100083 ttyin getty 15551 517083 1 0 3 0x18000088 kqread sshd 63236 206500 61052 73 3 0x19100090 kqread syslogd 61052 160223 1 0 3 0x18100082 sbwait syslogd 27648 248383 1 0 3 0x18100080 kqread resolvd 2807 448103 11169 77 3 0x18100092 kqread dhcpleased 60088 178614 11169 77 3 0x18100092 kqread dhcpleased 11169 174919 1 0 3 0x18000080 kqread dhcpleased 70195 410725 0 0 3 0x14200 bored smr 73845 85351 0 0 2 0x14200 zerothread 61541 330937 0 0 3 0x14200 aiodoned aiodoned 91883 323444 0 0 3 0x14200 syncer update 97999 452865 0 0 3 0x14200 cleaner cleaner 3235 239062 0 0 3 0x14200 reaper reaper 28727 459228 0 0 3 0x14200 pgdaemon pagedaemon 86334 208162 0 0 3 0x14200 bored viomb 3171 278567 0 0 3 0x40014200 acpi0 acpi0 54655 216187 0 0 3 0x14200 bored softnet3 20473 336825 0 0 3 0x14200 bored softnet2 80105 389783 0 0 3 0x14200 bored softnet1 45034 98287 0 0 3 0x14200 bored softnet0 47073 117616 0 0 3 0x14200 bored systqmp 71002 55731 0 0 3 0x14200 bored systq 99653 361022 0 0 3 0x40014200 tmoslp softclock 32618 246547 0 0 3 0x40014200 idle0 1 482624 0 0 3 0x8080082 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 10222 6442K 7028K 166960K 24860 0 pcb 17 18K 20K 166960K 1146 0 rtable 256 9K 10K 166960K 9084 0 pf 37 10K 10K 166960K 713 0 ifaddr 48 15K 17K 166960K 1181 0 ifgroup 66 2K 2K 166960K 1352 0 sysctl 4 1K 3K 166960K 12 0 counters 34 18K 18K 166960K 353 0 ioctlops 0 0K 2K 166960K 937 0 iov 0 0K 24K 166960K 593 0 mount 1 1K 1K 166960K 1 0 log 0 0K 0K 166960K 4 0 vnodes 1585 100K 100K 166960K 11755 0 UFS quota 1 32K 32K 166960K 1 0 UFS mount 5 36K 36K 166960K 5 0 shm 2 68K 76K 166960K 210 0 VM map 2 1K 1K 166960K 2 0 sem 12 1K 1K 166960K 218 0 dirhash 12 2K 3K 166960K 135 0 ACPI 1697 195K 286K 166960K 12548 0 file desc 17 61K 105K 166960K 13218 0 sigio 1 0K 0K 166960K 416 0 proc 71 59K 125K 166960K 8469 0 subproc 117 7K 8K 166960K 3898 0 NFS srvsock 1 0K 0K 166960K 1 0 NFS daemon 1 16K 16K 166960K 1 0 ip_moptions 0 0K 0K 166960K 1510 0 in_multi 78 5K 7K 166960K 3226 0 ether_multi 2 0K 0K 166960K 63 0 mrt 2 0K 0K 166960K 28 0 ISOFS mount 1 32K 32K 166960K 1 0 MSDOSFS mount 1 16K 16K 166960K 1 0 ttys 259 1155K 1155K 166960K 259 0 exec 0 0K 1K 166960K 5371 0 pfkey data 0 0K 0K 166960K 4 0 tdb 3 0K 0K 166960K 3 0 VM swap 8 62K 64K 166960K 10 0 UVM amap 301 145K 163K 166960K 104653 0 UVM aobj 41 3K 3K 166960K 42 0 pinsyscall 38 76K 102K 166960K 21440 0 memdesc 1 4K 4K 166960K 1 0 crypto data 1 1K 1K 166960K 1 0 ip6_options 0 0K 0K 166960K 495 0 NDP 15 0K 2K 166960K 865 0 temp 79 6812K 6940K 166960K 568908 0 kqueue 12 18K 28K 166960K 1183 0 SYN cache 2 16K 16K 166960K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle rtpcb 120 1541 0 1537 3 0 3 3 0 8 2 rtentry 112 3255 0 3142 4 0 4 4 0 8 0 unpcb 144 6596 0 6579 8 0 8 8 0 8 7 syncache 336 4 0 4 1 0 1 1 0 8 1 sackhl 24 6 17 6 1 0 1 1 0 8 1 tcpcb 808 3586 0 3580 8 0 8 8 0 8 7 arp 88 610 0 588 1 0 1 1 0 8 0 ipq 40 39 0 37 1 0 1 1 0 8 0 ipqe 40 364 0 362 1 0 1 1 0 8 0 inpcb 352 13584 0 13570 22 13 9 20 0 8 7 nd6 104 846 0 823 1 0 1 1 0 8 0 pkpcb 40 101 0 101 1 0 1 1 0 8 1 kcovpl 48 299 0 290 1 0 1 1 0 8 0 ppxss 1072 16 0 16 1 0 1 1 0 8 1 art_heap8 4096 2 0 1 2 0 2 2 0 8 1 art_heap4 256 12363 0 11980 178 148 30 30 0 8 5 art_table 32 12365 0 11981 4 0 4 4 0 8 0 art_node 16 3241 0 3152 1 0 1 1 0 8 0 sysvmsgpl 40 52 0 38 1 0 1 1 0 8 0 semupl 112 4 0 4 1 0 1 1 0 8 1 semapl 112 216 0 206 1 0 1 1 0 8 0 shmpl 112 39 0 1 2 0 2 2 0 8 0 dirhash 1024 99 0 82 3 0 3 3 0 8 0 dino2pl 256 17899 0 16339 98 0 98 98 0 8 0 ffsino 240 17899 0 16339 92 0 92 92 0 8 0 nchpl 144 34019 0 33376 66 33 33 66 0 8 8 uvmvnodes 80 12483 0 0 255 0 255 255 0 8 0 vnodes 216 12483 0 0 694 0 694 694 0 8 0 namei 1024 143265 0 143264 3 0 3 3 0 8 2 vcpupl 3904 15 0 2 2 0 2 2 0 8 0 vmpool 664 135 0 122 2 0 2 2 0 8 0 kstatmem 264 668 0 638 3 0 3 3 0 8 0 scsiplug 72 28 0 28 1 0 1 1 0 8 1 scxspl 216 175660 0 175660 8 0 8 8 1 8 8 plimitpl 152 2294 0 2278 1 0 1 1 0 8 0 sigapl 424 12977 0 12910 8 0 8 8 0 8 0 futexpl 64 139871 0 139866 1 0 1 1 0 8 0 knotepl 120 117894 0 117811 51 37 14 18 0 8 7 kqueuepl 184 3251 0 3242 6 0 6 6 0 8 5 pipepl 288 2259 0 2228 7 0 7 7 0 8 4 fdescpl 432 12916 0 12888 5 0 5 5 0 8 1 filepl 120 79184 0 78917 16 0 16 16 0 8 4 lockfpl 104 2304 0 2302 2 0 2 2 0 8 1 lockfspl 48 898 0 896 1 0 1 1 0 8 0 sessionpl 144 291 0 274 1 0 1 1 0 8 0 pgrppl 48 411 0 394 1 0 1 1 0 8 0 ucredpl 104 13203 0 13187 1 0 1 1 0 8 0 zombiepl 144 12911 0 12910 1 0 1 1 0 8 0 processpl 1072 12977 0 12910 5 0 5 5 0 8 0 procpl 656 25108 0 25018 10 0 10 10 0 8 1 sosppl 168 213 0 213 1 0 1 1 0 8 1 sockpl 504 21947 0 21912 153 139 14 29 0 8 8 mcl64k 65536 118 0 118 1 0 1 1 0 8 1 mcl16k 16384 1 0 1 1 0 1 1 0 8 1 mcl12k 12288 75 0 75 1 0 1 1 0 8 1 mcl9k 9216 3 0 3 1 0 1 1 0 8 1 mcl8k 8192 191 0 191 1 0 1 1 0 8 1 mcl4k 4096 26 0 26 1 0 1 1 0 8 1 mcl2k2 2112 2 0 2 1 0 1 1 0 8 1 mcl2k 2048 102298 0 102191 37 16 21 34 0 8 7 mtagpl 96 452 0 437 2 0 2 2 0 8 0 mbufpl 256 430596 0 430385 680 651 29 107 0 8 8 bufpl 280 28265 0 15781 892 0 892 892 0 8 0 anonpl 24 1446660 0 1440317 114 0 114 114 0 188 43 amapchunkpl 152 333037 0 332353 56 0 56 56 0 158 26 amappl16 200 29461 0 29334 93 73 20 24 0 8 8 amappl15 192 16 0 15 1 0 1 1 0 8 0 amappl14 184 1140 0 1128 2 0 2 2 0 8 1 amappl13 176 67 0 66 1 0 1 1 0 8 0 amappl12 168 17512 0 17477 3 0 3 3 0 8 0 amappl11 160 52 0 42 1 0 1 1 0 8 0 amappl10 152 335 0 326 1 0 1 1 0 8 0 amappl9 144 181 0 180 1 0 1 1 0 8 0 amappl8 136 579 0 549 2 0 2 2 0 8 0 amappl7 128 87 0 71 1 0 1 1 0 8 0 amappl6 120 4092 0 4075 2 0 2 2 0 8 0 amappl5 112 1215 0 1203 1 0 1 1 0 8 0 amappl4 104 2376 0 2343 2 0 2 2 0 8 1 amappl3 96 61408 0 61326 3 0 3 3 0 8 0 amappl2 88 14015 0 13938 4 0 4 4 0 8 2 amappl1 80 66608 0 66093 22 3 19 22 0 8 6 amappl 88 101805 0 101599 6 0 6 6 0 92 0 dma4096 4096 1 0 1 1 0 1 1 0 8 1 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 0 1 1 0 8 1 dma128 128 253 0 253 1 0 1 1 0 8 1 dma64 64 6 0 6 1 0 1 1 0 8 1 dma32 32 7 0 7 1 0 1 1 0 8 1 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 72 41 0 1 1 0 1 1 0 8 0 uaddrrnd 24 13051 0 13010 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 13051 0 13010 1 0 1 1 0 8 0 vmmpekpl 168 93164 0 93097 4 0 4 4 0 8 0 vmmpepl 168 836842 0 834950 111 0 111 111 0 357 18 vmsppl 344 13050 0 13010 5 0 5 5 0 8 0 rwobjpl 24 195497 0 181841 84 0 84 84 0 8 0 pdppl 4096 26108 0 26033 843 762 81 94 0 8 6 pvpl 32 4434535 0 4421881 361 16 345 361 0 265 200 pmappl 216 13050 0 13010 3 0 3 3 0 8 0 extentpl 40 56 0 38 1 0 1 1 0 8 0 phpool 112 2112 0 1716 14 0 14 14 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8282fc39) at panic+0x165 sys/kern/subr_prf.c:198 ifa_update_broadaddr(ffff800000e48800,ffff800000f94700,ffff80002d929a70) at ifa_update_broadaddr+0x6a sys/net/if.c:3315 in_ioctl(80206913,ffff80002d929a60,ffff800000e48800,1) at in_ioctl+0x5cf sys/netinet/in.c:313 ifioctl(fffffd8058baa008,80206913,ffff80002d929a60,ffff80002a6a2a80) at ifioctl+0x104c pru_control sys/sys/protosw.h:378 [inline] ifioctl(fffffd8058baa008,80206913,ffff80002d929a60,ffff80002a6a2a80) at ifioctl+0x104c sys/net/if.c:2449 sys_ioctl(ffff80002a6a2a80,ffff80002d929c40,ffff80002d929b90) at sys_ioctl+0x4a5 syscall(ffff80002d929c40) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xff234525d80, count: -8 ddb> machine ddbcpu 1 No such command ddb> trace db_enter() at db_enter+0x1c sys/arch/amd64/amd64/db_interface.c:437 panic(ffffffff8282fc39) at panic+0x165 sys/kern/subr_prf.c:198 ifa_update_broadaddr(ffff800000e48800,ffff800000f94700,ffff80002d929a70) at ifa_update_broadaddr+0x6a sys/net/if.c:3315 in_ioctl(80206913,ffff80002d929a60,ffff800000e48800,1) at in_ioctl+0x5cf sys/netinet/in.c:313 ifioctl(fffffd8058baa008,80206913,ffff80002d929a60,ffff80002a6a2a80) at ifioctl+0x104c pru_control sys/sys/protosw.h:378 [inline] ifioctl(fffffd8058baa008,80206913,ffff80002d929a60,ffff80002a6a2a80) at ifioctl+0x104c sys/net/if.c:2449 sys_ioctl(ffff80002a6a2a80,ffff80002d929c40,ffff80002d929b90) at sys_ioctl+0x4a5 syscall(ffff80002d929c40) at syscall+0x72a sys/arch/amd64/amd64/trap.c:577 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xff234525d80, count: -8