panic: unhandled af 38 Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *435771 8340 0 0 0x4000000 0 syz-executor.0 db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic(ffffffff821b61dd) at panic+0x15c sys/kern/subr_prf.c:207 unhandled_af(26) at unhandled_af+0x16 pf_addrcpy(ffff80001d4304c8,ffff80001d4307c0,26) at pf_addrcpy+0x99 sys/net/pf.c:409 pfioctl(4900,c0504417,ffff80001d4307c0,1,ffff80001d40d8c8) at pfioctl+0x43c0 sys/net/pf_ioctl.c:1827 VOP_IOCTL(fffffd8068fe4410,c0504417,ffff80001d4307c0,1,fffffd806c3be8a0,ffff80001d40d8c8) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:291 vn_ioctl(fffffd8057bd7268,c0504417,ffff80001d4307c0,ffff80001d40d8c8) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:533 sys_ioctl(ffff80001d40d8c8,ffff80001d4308d8,ffff80001d430920) at sys_ioctl+0x5b9 syscall(ffff80001d4309a0) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x82910d5e340, count: 5 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic unhandled af 38 ddb> trace db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:398 panic(ffffffff821b61dd) at panic+0x15c sys/kern/subr_prf.c:207 unhandled_af(26) at unhandled_af+0x16 pf_addrcpy(ffff80001d4304c8,ffff80001d4307c0,26) at pf_addrcpy+0x99 sys/net/pf.c:409 pfioctl(4900,c0504417,ffff80001d4307c0,1,ffff80001d40d8c8) at pfioctl+0x43c0 sys/net/pf_ioctl.c:1827 VOP_IOCTL(fffffd8068fe4410,c0504417,ffff80001d4307c0,1,fffffd806c3be8a0,ffff80001d40d8c8) at VOP_IOCTL+0x88 sys/kern/vfs_vops.c:291 vn_ioctl(fffffd8057bd7268,c0504417,ffff80001d4307c0,ffff80001d40d8c8) at vn_ioctl+0xb7 sys/kern/vfs_vnops.c:533 sys_ioctl(ffff80001d40d8c8,ffff80001d4308d8,ffff80001d430920) at sys_ioctl+0x5b9 syscall(ffff80001d4309a0) at syscall+0x507 sys/arch/amd64/amd64/trap.c:555 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x82910d5e340, count: -10 ddb> show registers rdi 0xffffffff817d3d07 db_enter+0x17 rsi 0xba1 rbp 0xffff80001d430380 rbx 0xffff80001d430430 rdx 0xba2 rcx 0xffff80001e439000 rax 0xffff80001e439000 r8 0xffff80001d430340 r9 0x1 r10 0xffff800000a7e5c0 r11 0x701c9f1142a2e656 r12 0x3000000008 r13 0xffff80001d430390 r14 0x100 r15 0x1 rip 0xffffffff817d3d08 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff80001d430370 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb> show proc PROC (syz-executor.0) pid=435771 stat=onproc flags process=0 proc=4000000 pri=82, usrpri=82, nice=20 forw=0xffffffffffffffff, list=0xffff80001d40d650,0xffffffff82556268 process=0xffff8000ffff7480 user=0xffff80001d42b000, vmspace=0xfffffd806bc09220 estcpu=32, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 8340 405351 78615 0 2 0 syz-executor.0 * 8340 435771 78615 0 7 0x4000000 syz-executor.0 78615 110372 95419 0 3 0x82 nanosleep syz-executor.0 8889 304985 95419 0 2 0x2 syz-executor.1 15538 248721 0 0 3 0x14200 bored sosplice 95419 81761 13713 0 3 0x82 thrsleep syz-fuzzer 95419 405253 13713 0 3 0x4000082 thrsleep syz-fuzzer 95419 288888 13713 0 3 0x4000082 kqread syz-fuzzer 95419 375313 13713 0 3 0x4000082 thrsleep syz-fuzzer 95419 295982 13713 0 3 0x4000082 thrsleep syz-fuzzer 95419 263829 13713 0 3 0x4000082 thrsleep syz-fuzzer 95419 211530 13713 0 3 0x4000082 thrsleep syz-fuzzer 95419 390007 13713 0 3 0x4000082 thrsleep syz-fuzzer 13713 275846 74646 0 3 0x10008a pause ksh 74646 58687 41458 0 3 0x92 select sshd 80449 307474 1 0 3 0x100083 ttyin getty 41458 322775 1 0 3 0x80 select sshd 94440 131862 80371 73 3 0x100090 kqread syslogd 80371 175897 1 0 3 0x100082 netio syslogd 38947 393547 1 77 3 0x100090 poll dhclient 54203 477128 1 0 3 0x80 poll dhclient 85016 56739 0 0 2 0x14200 zerothread 73599 404453 0 0 3 0x14200 aiodoned aiodoned 58064 257679 0 0 3 0x14200 syncer update 76201 321175 0 0 3 0x14200 cleaner cleaner 88640 196724 0 0 3 0x14200 reaper reaper 5776 23527 0 0 3 0x14200 pgdaemon pagedaemon 68260 6691 0 0 3 0x14200 bored crynlk 29910 120430 0 0 3 0x14200 bored crypto 68652 333179 0 0 3 0x40014200 acpi0 acpi0 39873 210000 0 0 3 0x14200 bored softnet 61621 281838 0 0 3 0x14200 bored systqmp 98817 41389 0 0 3 0x14200 bored systq 54221 272719 0 0 3 0x40014200 bored softclock 20140 249492 0 0 3 0x40014200 idle0 703 216071 0 0 3 0x14200 bored smr 1 379770 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9472 6536K 10660K 78643K 224679 0 pcb 13 8K 8K 78643K 635 0 rtable 105 3K 3K 78643K 433 0 ifaddr 40 10K 10K 78643K 83 0 counters 19 16K 16K 78643K 19 0 ioctlops 0 0K 4K 78643K 1504 0 iov 0 0K 24K 78643K 1889 0 mount 1 1K 1K 78643K 1 0 vnodes 1244 78K 79K 78643K 61439 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 9K 78643K 1036 0 VM map 2 0K 0K 78643K 2 0 sem 12 0K 1K 78643K 948 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1794 195K 288K 78643K 12646 0 file desc 5 13K 25K 78643K 63528 0 sigio 0 0K 0K 78643K 263 0 proc 2619 199K 213K 78643K 3288 0 subproc 32 2K 2K 78643K 136 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 1900 0 in_multi 33 2K 2K 78643K 133 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 49 228K 228K 78643K 49 0 exec 0 0K 1K 78643K 384 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 172 24K 28K 78643K 133905 0 UVM aobj 130 16K 16K 78643K 132 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 22 0 NDP 5 0K 0K 78643K 27 0 temp 104 3021K 3090K 78643K 2127788 0 kqueue 0 0K 0K 78643K 48 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 18 0 12 1 0 1 1 0 8 0 rtpcb 80 163 0 161 1 0 1 1 0 8 0 rtentry 112 105 0 61 2 0 2 2 0 8 0 unpcb 120 132699 0 132691 72 70 2 3 0 8 1 syncache 264 4 0 4 1 1 0 1 0 8 0 sackhl 24 23 0 23 18 18 0 1 0 8 0 tcpcb 544 3627 0 3623 1 0 1 1 0 8 0 inpcb 280 19529 0 19522 1 0 1 1 0 8 0 nd6 48 16 0 12 1 0 1 1 0 8 0 pfosfp 40 2 0 0 1 0 1 1 0 8 0 pfosfpen 112 2 0 0 1 0 1 1 0 8 0 pftag 88 7 0 4 2 1 1 1 0 8 0 pfqueue 264 2 0 2 1 1 0 1 0 8 0 pfrule 1360 19 0 4 3 1 2 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 470 0 258 14 0 14 14 0 8 0 art_table 32 471 0 258 2 0 2 2 0 8 0 art_node 16 104 0 64 1 0 1 1 0 8 0 semapl 112 946 0 936 1 0 1 1 0 8 0 shmpl 112 130 0 2 4 0 4 4 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino1pl 128 75201 0 73747 49 2 47 48 0 8 0 ffsino 240 75201 0 73747 86 0 86 86 0 8 0 nchpl 144 156432 0 154510 76 4 72 72 0 8 0 uvmvnodes 72 5926 0 0 108 0 108 108 0 8 0 vnodes 208 5926 0 0 312 0 312 312 0 8 0 namei 1024 425567 0 425567 1 0 1 1 0 8 1 scxspl 192 441873 0 441873 1 0 1 1 0 8 1 plimitpl 152 79 0 72 1 0 1 1 0 8 0 sigapl 432 63681 0 63668 2 0 2 2 0 8 0 futexpl 56 678698 0 678698 1 0 1 1 0 8 1 knotepl 112 2451 0 2432 1 0 1 1 0 8 0 kqueuepl 104 6190 0 6188 1 0 1 1 0 8 0 pipepl 112 15560 0 15541 2 1 1 2 0 8 0 fdescpl 424 63682 0 63668 2 0 2 2 0 8 0 filepl 120 359034 0 358938 83 78 5 6 0 8 2 lockfpl 104 8485 0 8484 1 0 1 1 0 8 0 lockfspl 48 3559 0 3558 1 0 1 1 0 8 0 sessionpl 112 23 0 13 1 0 1 1 0 8 0 pgrppl 48 430 0 420 1 0 1 1 0 8 0 ucredpl 96 21678 0 21669 1 0 1 1 0 8 0 zombiepl 144 63668 0 63668 1 0 1 1 0 8 1 processpl 872 63697 0 63668 4 0 4 4 0 8 0 procpl 632 131740 0 131703 4 0 4 4 0 8 0 sosppl 128 61 0 61 3 3 0 1 0 8 0 sockpl 384 152449 0 152432 254 248 6 10 0 8 4 mcl64k 65536 258 0 258 46 46 0 1 0 8 0 mcl16k 16384 96 0 96 44 44 0 1 0 8 0 mcl12k 12288 1547 0 1547 78 77 1 1 0 8 1 mcl9k 9216 562 0 562 53 52 1 1 0 8 1 mcl8k 8192 1478 0 1478 77 76 1 1 0 8 1 mcl4k 4096 3363 0 3363 71 70 1 1 0 8 1 mcl2k2 2112 297 0 297 84 83 1 1 0 8 1 mcl2k 2048 107661 0 107627 44 38 6 9 0 8 1 mtagpl 80 2 0 2 1 1 0 1 0 8 0 mbufpl 256 494603 0 494529 51 43 8 12 0 8 0 bufpl 280 96555 0 90371 442 0 442 442 0 8 0 anonpl 16 3869743 0 3863823 123 93 30 40 0 107 0 amapchunkpl 152 219449 0 219362 9 4 5 7 0 158 0 amappl16 192 257907 0 257555 111 92 19 31 0 8 0 amappl15 184 62 0 58 1 0 1 1 0 8 0 amappl14 176 31805 0 31801 1 0 1 1 0 8 0 amappl13 168 14166 0 14163 1 0 1 1 0 8 0 amappl12 160 206 0 206 2 2 0 1 0 8 0 amappl11 152 17370 0 17359 1 0 1 1 0 8 0 amappl10 144 20 0 18 1 0 1 1 0 8 0 amappl9 136 653 0 649 1 0 1 1 0 8 0 amappl8 128 1149 0 1024 5 0 5 5 0 8 0 amappl7 120 129 0 117 1 0 1 1 0 8 0 amappl6 112 17141 0 17134 1 0 1 1 0 8 0 amappl5 104 640 0 630 1 0 1 1 0 8 0 amappl4 96 75322 0 75292 1 0 1 1 0 8 0 amappl3 88 33771 0 33763 1 0 1 1 0 8 0 amappl2 80 505233 0 505157 3 1 2 3 0 8 0 amappl1 72 1034738 0 1034322 26 16 10 20 0 8 0 amappl 80 132561 0 132527 1 0 1 1 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 131 0 2 3 0 3 3 0 8 0 uaddrrnd 24 63682 0 63668 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 63682 0 63668 1 0 1 1 0 8 0 vmmpekpl 168 312612 0 312588 3 1 2 2 0 8 0 vmmpepl 168 7013386 0 7011846 242 169 73 84 0 357 0 vmsppl 272 63681 0 63668 3 2 1 2 0 8 0 pdppl 4096 127370 0 127336 6 1 5 6 0 8 0 pvpl 32 10751025 0 10741959 419 335 84 115 0 265 0 pmappl 200 63681 0 63668 1 0 1 1 0 8 0 extentpl 40 46 0 29 1 0 1 1 0 8 0 phpool 112 453 0 323 4 0 4 4 0 8 0