panic: pool_do_get: semupl free list modified: page 0xffffff003cd18000; item addr 0xffffff003cd18ee0; offset 0x10=0xdeadbef1 Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *383238 48361 0 0 0x4000000 0 syz-executor1 db_enter() at db_enter+0x18 sys/arch/amd64/amd64/db_interface.c:399 panic() at panic+0x147 sys/kern/subr_prf.c:208 pool_do_get(e8712c9295043384,2,ffffffff81f8c2f8) at pool_do_get+0x407 sys/kern/subr_pool.c:750 pool_get(ca5106ed6853286e,ffff800014a9cb88) at pool_get+0x84 sys/kern/subr_pool.c:587 semundo_adjust(93afa23cbd67c589,ffffffffffffffff,ffff800014a9cb88,ffff8000ffff9070,ffffff0037a53ee0) at semundo_adjust+0xe5 semu_alloc sys/kern/sysv_sem.c:92 [inline] semundo_adjust(93afa23cbd67c589,ffffffffffffffff,ffff800014a9cb88,ffff8000ffff9070,ffffff0037a53ee0) at semundo_adjust+0xe5 sys/kern/sysv_sem.c:135 sys_semop(619d864eb5384bda,ffff800014a9cce0,ffff8000ffff9070) at sys_semop+0x5f3 sys/kern/sysv_sem.c:703 syscall(b5e0df99dff1ce36) at syscall+0x3f1 Xsyscall(6,0,ffffffffffffffd2,0,3,d6ae18010) at Xsyscall+0x128 end of kernel end trace frame: 0xf6bcf0250, count: 7 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs.