panic: pledge_namei: ni_pledge
Stopped at db_enter+0x25: addq $0x8,%rsp
TID PID UID PRFLAGS PFLAGS CPU COMMAND
*319906 41103 0 0x502000 0x4080000 0 syz-executor
db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff830334e0) at panic+0x1cf sys/kern/subr_prf.c:198
pledge_namei(ffff80002a4b0298,ffff80002a58b368,ffff80002a47a800) at pledge_namei+0xb59 sys/kern/kern_pledge.c:599
namei(ffff80002a58b368) at namei+0x424 sys/kern/vfs_lookup.c:202
sys_chroot(ffff80002a4b0298,ffff80002a58b540,ffff80002a58b490) at sys_chroot+0xb5 change_dir sys/kern/vfs_syscalls.c:839 [inline]
sys_chroot(ffff80002a4b0298,ffff80002a58b540,ffff80002a58b490) at sys_chroot+0xb5 sys/kern/vfs_syscalls.c:811
syscall(ffff80002a58b540) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x6899f2f6bb0, count: 8
https://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb>
ddb> set $lines = 0
ddb> set $maxwidth = 0
ddb> show panic
*cpu0: pledge_namei: ni_pledge
ddb> trace
db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff830334e0) at panic+0x1cf sys/kern/subr_prf.c:198
pledge_namei(ffff80002a4b0298,ffff80002a58b368,ffff80002a47a800) at pledge_namei+0xb59 sys/kern/kern_pledge.c:599
namei(ffff80002a58b368) at namei+0x424 sys/kern/vfs_lookup.c:202
sys_chroot(ffff80002a4b0298,ffff80002a58b540,ffff80002a58b490) at sys_chroot+0xb5 change_dir sys/kern/vfs_syscalls.c:839 [inline]
sys_chroot(ffff80002a4b0298,ffff80002a58b540,ffff80002a58b490) at sys_chroot+0xb5 sys/kern/vfs_syscalls.c:811
syscall(ffff80002a58b540) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x6899f2f6bb0, count: -7
ddb> show registers
rdi 0
rsi 0x1
rbp 0xffff80002a58adb0
rbx 0
rdx 0
rcx 0
rax 0xffff80002a4b0298
r8 0x101010101010101
r9 0x8080808080808080
r10 0x94e61e02342d38c0
r11 0xff427a1055212643
r12 0
r13 0xffff80002a47a800
r14 0
r15 0x1
rip 0xffffffff818517f5 db_enter+0x25
cs 0x8
rflags 0x246
rsp 0xffff80002a58ada0
ss 0x10
db_enter+0x25: addq $0x8,%rsp
ddb> show proc
PROC (syz-executor) tid=319906 pid=41103 tcnt=4 stat=onproc
flags process=502000<SINGLEUNWIND,PLEDGE,EXECPLEDGE> proc=4080000<SUSPSINGLE,THREAD>
runpri=86, usrpri=86, slppri=32, nice=20
wchan=0x0, wmesg=, ps_single=0xffff80002a5982c8 scnt=1 ecnt=0
forw=0xffffffffffffffff, list=0xffff80002a4b0a30,0xffff80002a598560
process=0xffff800030df59c8 user=0xffff80002a586000, vmspace=0xfffffd807821ead8
estcpu=36, cpticks=2, pctcpu=0.0, user=0, sys=2, intr=0
ddb> ps
PID TID PPID UID S FLAGS WAIT COMMAND
41103 298781 49001 0 4 0x582000 syz-executor
*41103 319906 49001 0 7 0x4582000 syz-executor
41103 158723 49001 0 4 0x4582000 syz-executor
41103 523819 49001 0 3 0x4502000 suspend syz-executor
88200 316913 66154 0 3 0x80 fsleep syz-executor
88200 221790 66154 0 3 0x4000080 kqpoll syz-executor
47699 184100 33444 0 3 0x80 fsleep syz-executor
47699 137095 33444 0 3 0x4000080 sbwait syz-executor
19254 124577 43429 0 3 0x80 fsleep syz-executor
19254 218608 43429 0 3 0x4000080 pipewr syz-executor
65342 305699 75783 0 3 0x80 fsleep syz-executor
65342 163346 75783 0 3 0x4000080 sbwait syz-executor
39722 22344 84251 0 3 0x80 fsleep syz-executor
39722 91427 84251 0 3 0x4000080 sbwait syz-executor
26558 182552 21169 0 3 0x80 fsleep syz-executor
26558 275336 21169 0 3 0x4000080 rest syz-executor
81619 471453 61979 0 3 0x80 fsleep syz-executor
81619 148624 61979 0 3 0x4000080 sbwait syz-executor
66154 182144 3081 0 3 0x82 nanoslp syz-executor
8591 413622 1 0 3 0x100083 ttyin getty
75783 202565 3081 0 3 0x82 nanoslp syz-executor
60115 138437 0 0 3 0x14280 nfsidl nfsio
46595 404661 0 0 3 0x14280 nfsidl nfsio
68156 406356 0 0 3 0x14280 nfsidl nfsio
72071 421728 0 0 3 0x14280 nfsidl nfsio
59375 278444 0 0 3 0x14280 nfsidl nfsio
31148 111599 0 0 3 0x14280 nfsidl nfsio
97540 468095 0 0 3 0x14280 nfsidl nfsio
71175 521898 0 0 3 0x14280 nfsidl nfsio
17516 370964 0 0 3 0x14280 nfsidl nfsio
94783 459794 0 0 3 0x14280 nfsidl nfsio
37146 49874 0 0 3 0x14280 nfsidl nfsio
53325 1786 0 0 3 0x14280 nfsidl nfsio
93915 314344 0 0 3 0x14280 nfsidl nfsio
85280 459516 0 0 3 0x14280 nfsidl nfsio
59454 466971 0 0 3 0x14280 nfsidl nfsio
60647 117396 0 0 3 0x14280 nfsidl nfsio
11642 81567 0 0 3 0x14280 nfsidl nfsio
90242 269368 0 0 3 0x14280 nfsidl nfsio
91535 479488 0 0 3 0x14280 nfsidl nfsio
85248 224575 0 0 3 0x14280 nfsidl nfsio
57476 255510 0 0 3 0x14200 bored sosplice
43429 156435 3081 0 3 0x82 nanoslp syz-executor
84251 125080 3081 0 3 0x82 nanoslp syz-executor
33444 368206 3081 0 3 0x82 nanoslp syz-executor
49001 277067 3081 0 3 0x82 nanoslp syz-executor
21169 123974 3081 0 3 0x82 nanoslp syz-executor
61979 63274 3081 0 3 0x82 nanoslp syz-executor
3081 117342 70025 0 3 0x82 kqread syz-executor
70025 418797 66463 0 3 0x10008a sigsusp ksh
66463 364103 28557 0 3 0x98 kqread sshd-session
28557 70190 67234 0 3 0x92 kqread sshd-session
67234 122673 1 0 3 0x88 kqread sshd
89003 482939 26538 73 3 0x1100090 kqread syslogd
26538 464090 1 0 3 0x100082 sbwait syslogd
20618 124173 1 0 3 0x100080 kqread resolvd
61379 512260 89166 77 3 0x100092 kqread dhcpleased
84915 437846 89166 77 3 0x100092 kqread dhcpleased
89166 343092 1 0 3 0x80 kqread dhcpleased
56856 219762 0 0 3 0x14200 bored smr
84937 389484 0 0 3 0x14200 pgzero zerothread
86866 420008 0 0 3 0x14200 aiodoned aiodoned
15694 260306 0 0 3 0x14200 syncer update
33021 433356 0 0 3 0x14200 cleaner cleaner
83121 244181 0 0 3 0x14200 reaper reaper
85823 333549 0 0 3 0x14200 pgdaemon pagedaemon
70435 134072 0 0 3 0x14200 bored viomb
6571 318365 0 0 3 0x40014200 acpi0 acpi0
20750 265604 0 0 3 0x14200 bored softnet3
96434 520809 0 0 3 0x14200 bored softnet2
66538 435337 0 0 3 0x14200 bored softnet1
31007 79220 0 0 3 0x14200 bored softnet0
17764 285905 0 0 3 0x14200 bored systqmp
77842 344115 0 0 3 0x14200 bored systq
38567 133539 0 0 3 0x40014200 tmoslp softclock
11175 191521 0 0 3 0x40014200 idle0
1 429772 0 0 3 0x80082 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb> show all locks
No such command
ddb> show malloc
Type InUse MemUse HighUse Limit Requests Type Lim
devbuf 10186 11122K 11503K 166960K 13283 0
pcb 17 15K 16K 166960K 413 0
rtable 176 5K 7K 166960K 746 0
pf 37 14K 18K 166960K 102 0
ifaddr 38 6K 7K 166960K 84 0
ifgroup 53 2K 2K 166960K 119 0
sysctl 4 1K 1K 166960K 6 0
counters 30 17K 17K 166960K 53 0
ioctlops 0 0K 4K 166960K 199 0
iov 2 6K 28K 166960K 74 0
mount 1 1K 1K 166960K 1 0
log 0 0K 0K 166960K 4 0
vnodes 1458 92K 93K 166960K 2448 0
UFS quota 1 32K 32K 166960K 1 0
UFS mount 5 36K 36K 166960K 5 0
shm 2 1K 9K 166960K 21 0
VM map 2 1K 1K 166960K 2 0
sem 12 0K 1K 166960K 70 0
dirhash 12 2K 2K 166960K 42 0
ACPI 1690 195K 286K 166960K 12468 0
file desc 18 65K 89K 166960K 1230 0
sigio 0 0K 0K 166960K 18 0
proc 60 59K 91K 166960K 631 0
subproc 104 6K 6K 166960K 134 0
NFS srvsock 1 0K 0K 166960K 1 0
NFS daemon 1 16K 16K 166960K 1 0
ip_moptions 0 0K 0K 166960K 211 0
in_multi 72 5K 7K 166960K 151 0
ether_multi 1 0K 0K 166960K 8 0
mrt 1 0K 0K 166960K 5 0
ISOFS mount 1 32K 32K 166960K 1 0
MSDOSFS mount 1 16K 16K 166960K 1 0
ttys 85 387K 387K 166960K 85 0
exec 0 0K 1K 166960K 584 0
pfkey data 0 0K 0K 166960K 2 0
tdb 3 0K 0K 166960K 3 0
VM swap 8 62K 64K 166960K 10 0
UVM amap 223 72K 92K 166960K 12643 0
UVM aobj 67 3K 3K 166960K 72 0
pinsyscall 39 78K 95K 166960K 2319 0
memdesc 1 4K 4K 166960K 1 0
crypto data 1 1K 1K 166960K 1 0
ip6_options 1 0K 0K 166960K 85 0
NDP 11 0K 2K 166960K 57 0
temp 77 6816K 6912K 166960K 50470 0
kqueue 13 20K 32K 166960K 228 0
SYN cache 2 16K 16K 166960K 2 0
ddb> show all pools
Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle
rtpcb 120 122 0 119 1 0 1 1 0 8 0
rtentry 112 274 0 196 4 0 4 4 0 8 0
unpcb 144 1417 0 1386 10 4 6 6 0 8 4
syncache 336 5 0 5 1 1 0 1 0 8 0
tcpqe 32 13 0 13 1 1 0 1 0 8 0
tcpcb 808 441 0 435 9 7 2 8 0 8 1
arp 88 63 0 47 1 0 1 1 0 8 0
ipq 40 3 0 0 1 0 1 1 0 8 0
ipqe 40 5 0 0 1 0 1 1 0 8 0
inpcb 336 1825 0 1814 14 10 4 12 0 8 2
nd6 104 41 0 24 1 0 1 1 0 8 0
pkpcb 40 9 0 9 2 1 1 1 0 8 1
kcovpl 48 10 0 2 1 0 1 1 0 8 0
ppxss 1072 17 0 17 2 1 1 1 0 8 1
pfstscr 40 6 0 5 1 0 1 1 0 8 0
pftag 88 2 0 0 1 0 1 1 0 8 0
pfstitem 24 3 0 0 1 0 1 1 0 8 0
pfstkey 128 11 0 8 1 0 1 1 0 8 0
pfstate 344 7 0 5 1 0 1 1 0 8 0
pfrule 1344 8 0 7 2 1 1 1 0 8 0
art_heap8 4096 3 0 0 3 0 3 3 0 8 0
art_heap4 256 728 0 387 33 11 22 31 0 8 0
art_table 32 731 0 387 4 0 4 4 0 8 0
art_node 16 268 0 202 1 0 1 1 0 8 0
sysvmsgpl 40 5 0 1 1 0 1 1 0 8 0
semupl 112 1 0 1 1 0 1 1 0 8 1
semapl 112 67 0 57 1 0 1 1 0 8 0
shmpl 112 69 0 5 2 0 2 2 0 8 0
dirhash 1024 37 0 20 3 0 3 3 0 8 0
dino2pl 256 3504 0 2008 94 0 94 94 0 8 0
ffsino 240 3504 0 2008 89 0 89 89 0 8 0
nchpl 144 5184 0 3498 63 0 63 63 0 8 0
uvmvnodes 80 4364 0 0 90 0 90 90 0 8 0
vnodes 216 4364 0 0 243 0 243 243 0 8 0
namei 1024 18544 0 18543 2 1 1 2 0 8 0
kstatmem 264 68 0 46 2 0 2 2 0 8 0
scsiplug 72 4 0 4 2 1 1 1 0 8 1
scxspl 216 15049 0 15049 8 7 1 8 1 8 1
plimitpl 152 274 0 257 1 0 1 1 0 8 0
sigapl 424 1532 0 1465 8 0 8 8 0 8 0
futexpl 64 17391 0 17384 1 0 1 1 0 8 0
knotepl 120 43093 0 43046 38 29 9 25 0 8 7
kqueuepl 184 337 0 327 1 0 1 1 0 8 0
pipepl 288 208 0 180 3 0 3 3 0 8 0
fdescpl 432 1493 0 1463 5 1 4 5 0 8 0
filepl 120 10465 0 10202 16 4 12 14 0 8 2
lockfpl 104 526 0 524 2 1 1 2 0 8 0
lockfspl 48 191 0 189 1 0 1 1 0 8 0
sessionpl 144 26 0 18 1 0 1 1 0 8 0
pgrppl 48 84 0 68 1 0 1 1 0 8 0
ucredpl 104 1821 0 1810 1 0 1 1 0 8 0
zombiepl 144 1572 0 1572 1 0 1 1 0 8 1
processpl 1096 1532 0 1465 5 0 5 5 0 8 0
procpl 648 3152 0 3075 9 1 8 8 0 8 0
sosppl 168 10 0 10 1 1 0 1 0 8 0
sockpl 504 3427 0 3382 51 37 14 22 0 8 7
mcl64k 65536 25 0 24 2 1 1 1 0 8 0
mcl16k 16384 2 0 2 1 1 0 1 0 8 0
mcl8k 8192 92 0 92 2 1 1 1 0 8 1
mcl4k 4096 4056 0 4001 13 5 8 13 0 8 0
mcl2k 2048 1584 0 1580 6 3 3 4 0 8 2
mtagpl 96 46 0 19 1 0 1 1 0 8 0
mbufpl 256 16288 0 16037 27 9 18 26 0 8 0
bufpl 280 4252 0 106 297 0 297 297 0 8 0
anonpl 24 224619 0 221311 45 16 29 45 0 187 0
amapchunkpl 152 49977 0 49500 52 16 36 36 0 158 16
amappl16 200 5266 0 5234 22 16 6 15 0 8 2
amappl15 192 2 0 2 1 1 0 1 0 8 0
amappl14 184 115 0 105 1 0 1 1 0 8 0
amappl13 176 22 0 22 1 1 0 1 0 8 0
amappl12 168 2142 0 2112 3 1 2 3 0 8 0
amappl11 160 81 0 71 1 0 1 1 0 8 0
amappl10 152 75 0 75 1 1 0 1 0 8 0
amappl9 144 134 0 134 1 1 0 1 0 8 0
amappl8 136 34 0 33 1 0 1 1 0 8 0
amappl7 128 103 0 93 1 0 1 1 0 8 0
amappl6 120 183 0 181 1 0 1 1 0 8 0
amappl5 112 172 0 163 1 0 1 1 0 8 0
amappl4 104 297 0 283 1 0 1 1 0 8 0
amappl3 96 7794 0 7703 3 0 3 3 0 8 0
amappl2 88 1785 0 1707 2 0 2 2 0 8 0
amappl1 80 11216 0 10697 13 0 13 13 0 8 0
amappl 88 12151 0 11983 5 0 5 5 0 92 0
dma65536 65536 1 0 1 1 1 0 1 0 8 0
dma8192 8192 1 0 1 1 1 0 1 0 8 0
dma4096 4096 1 0 1 1 1 0 1 0 8 0
dma2048 2048 1 0 1 1 1 0 1 0 8 0
dma1024 1024 1 0 0 1 0 1 1 0 8 0
dma256 256 6 0 6 1 1 0 1 0 8 0
dma128 128 253 0 253 1 1 0 1 0 8 0
dma64 64 7 0 7 1 1 0 1 0 8 0
dma32 32 7 0 7 1 1 0 1 0 8 0
dma16 16 18 0 17 1 0 1 1 0 8 0
aobjpl 72 71 0 5 2 0 2 2 0 8 0
uaddrrnd 24 1493 0 1463 1 0 1 1 0 8 0
uaddrbest 32 2 0 0 1 0 1 1 0 8 0
uaddr 24 1493 0 1463 1 0 1 1 0 8 0
vmmpekpl 168 12287 0 12250 3 0 3 3 0 8 1
vmmpepl 168 95767 0 93991 90 10 80 89 0 357 1
vmsppl 344 1492 0 1463 4 1 3 4 0 8 0
rwobjpl 24 31361 0 26086 32 0 32 32 0 8 0
pdppl 4096 2992 0 2926 104 36 68 78 0 8 2
pvpl 32 615870 0 606790 107 23 84 107 0 265 0
pmappl 216 1492 0 1463 2 0 2 2 0 8 0
extentpl 40 55 0 38 1 0 1 1 0 8 0
phpool 112 463 0 128 11 0 11 11 0 8 0
ddb> machine ddbcpu 0
No such command
ddb> trace
db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff830334e0) at panic+0x1cf sys/kern/subr_prf.c:198
pledge_namei(ffff80002a4b0298,ffff80002a58b368,ffff80002a47a800) at pledge_namei+0xb59 sys/kern/kern_pledge.c:599
namei(ffff80002a58b368) at namei+0x424 sys/kern/vfs_lookup.c:202
sys_chroot(ffff80002a4b0298,ffff80002a58b540,ffff80002a58b490) at sys_chroot+0xb5 change_dir sys/kern/vfs_syscalls.c:839 [inline]
sys_chroot(ffff80002a4b0298,ffff80002a58b540,ffff80002a58b490) at sys_chroot+0xb5 sys/kern/vfs_syscalls.c:811
syscall(ffff80002a58b540) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x6899f2f6bb0, count: -7
ddb> machine ddbcpu 1
No such command
ddb> trace
db_enter() at db_enter+0x25 sys/arch/amd64/amd64/db_interface.c:437
panic(ffffffff830334e0) at panic+0x1cf sys/kern/subr_prf.c:198
pledge_namei(ffff80002a4b0298,ffff80002a58b368,ffff80002a47a800) at pledge_namei+0xb59 sys/kern/kern_pledge.c:599
namei(ffff80002a58b368) at namei+0x424 sys/kern/vfs_lookup.c:202
sys_chroot(ffff80002a4b0298,ffff80002a58b540,ffff80002a58b490) at sys_chroot+0xb5 change_dir sys/kern/vfs_syscalls.c:839 [inline]
sys_chroot(ffff80002a4b0298,ffff80002a58b540,ffff80002a58b490) at sys_chroot+0xb5 sys/kern/vfs_syscalls.c:811
syscall(ffff80002a58b540) at syscall+0x97e sys/arch/amd64/amd64/trap.c:577
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x6899f2f6bb0, count: -7