From owner-freebsd-current@FreeBSD.ORG Fri Oct 28 19:46:20 2005 Return-Path: X-Original-To: current@FreeBSD.org Delivered-To: freebsd-current@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1F54C16A41F; Fri, 28 Oct 2005 19:46:20 +0000 (GMT) (envelope-from kris@obsecurity.org) Received: from elvis.mu.org (elvis.mu.org [192.203.228.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id DD4BB43D45; Fri, 28 Oct 2005 19:46:19 +0000 (GMT) (envelope-from kris@obsecurity.org) Received: from obsecurity.dyndns.org (elvis.mu.org [192.203.228.196]) by elvis.mu.org (Postfix) with ESMTP id A522F1A3C25; Fri, 28 Oct 2005 12:46:19 -0700 (PDT) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id 7F8DB512CF; Fri, 28 Oct 2005 15:46:18 -0400 (EDT) Date: Fri, 28 Oct 2005 15:46:18 -0400 From: Kris Kennaway To: current@FreeBSD.org Message-ID: <20051028194618.GA21699@xor.obsecurity.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="HlL+5n6rz5pIUxbD" Content-Disposition: inline User-Agent: Mutt/1.4.2.1i Cc: kan@FreeBSD.org, jroberson@chesapeake.net, ssouhlal@FreeBSD.org Subject: Null pointer deref in getdirentries() X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Oct 2005 19:46:20 -0000 --HlL+5n6rz5pIUxbD Content-Type: text/plain; charset=us-ascii Content-Disposition: inline UP machine running 6.0. This machine does lots of unmounting, so it's possible rm raced with the umount. Fatal trap 12: page fault while in kernel mode fault virtual address = 0x7b fault code = supervisor read, page not present instruction pointer = 0x20:0xc055d705 stack pointer = 0x28:0xe766bc3c frame pointer = 0x28:0xe766bcd4 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 59277 (rm) db> wh Tracing pid 59277 tid 100059 td 0xc6201180 getdirentries(c6201180,e766bd04,10,418,4) at getdirentries+0x75 syscall(c068003b,3b,3b,8050000,805a300) at syscall+0x2c0 Xint0x80_syscall() at Xint0x80_syscall+0x1f --- syscall (196, FreeBSD ELF32, getdirentries), eip = 0x280bec6f, esp = 0xbfbfeb6c, ebp = 0xbfbfeb98 --- Core available. Kris --HlL+5n6rz5pIUxbD Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFDYoAKWry0BWjoQKURAlOSAJ0ZLFMk1lfFlGY7a5jR6u2csarE5QCg/q61 QyLqMUiLrD1rvTedd7Jc13o= =abU+ -----END PGP SIGNATURE----- --HlL+5n6rz5pIUxbD--