From owner-freebsd-current@FreeBSD.ORG Sun Jul 25 21:02:58 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2EF4716A4CE; Sun, 25 Jul 2004 21:02:58 +0000 (GMT) Received: from zaphod.nitro.dk (port324.ds1-khk.adsl.cybercity.dk [212.242.113.79]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8B09A43D54; Sun, 25 Jul 2004 21:02:57 +0000 (GMT) (envelope-from simon@zaphod.nitro.dk) Received: by zaphod.nitro.dk (Postfix, from userid 3000) id 5C649119B1; Sun, 25 Jul 2004 23:02:55 +0200 (CEST) Date: Sun, 25 Jul 2004 23:02:54 +0200 From: "Simon L. Nielsen" To: freebsd-current@freebsd.org Message-ID: <20040725210254.GA765@zaphod.nitro.dk> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="ibTvN161/egqYuK8" Content-Disposition: inline User-Agent: Mutt/1.5.6i cc: bzeeb+freebsd+lor@zabbadoz.net cc: Robert Watson Subject: LOR in mac_portacl on dhclient start X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Jul 2004 21:02:58 -0000 --ibTvN161/egqYuK8 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hello I get the following LOR on each boot when dhclient starts up: lock order reversal 1st 0xc1d702dc so_rcv (so_rcv) @ /usr/src/sys/kern/uipc_syscalls.c:193 2nd 0xc08c1b00 rule_sx (rule_sx) @ /usr/src/sys/security/mac_portacl/mac_p= ortacl.c:399 KDB: stack backtrace: kdb_backtrace(c074eb16,c08c1b00,c08c0427,c08c0427,c08c0443) at kdb_backtrac= e+0x2f witness_checkorder(c08c1b00,1,c08c0443,18f,c078f2bc) at witness_checkorder+= 0x67c _sx_slock(c08c1b00,c08c0443,18f,1,c1b22e20) at _sx_slock+0x7f rules_check(c197b900,2,2,44,c08c19e0) at rules_check+0x47 check_socket_bind(c197b900,c1d70278,c1ce7d48,c1b22e20,0) at check_socket_bi= nd+0x81 mac_check_socket_bind(c197b900,c1d70278,c1b22e20,c1,c1d70278) at mac_check_= socket_bind+0xd5 kern_bind(c1d566e0,4,c1b22e20,c1b22e20,0) at kern_bind+0xa4 bind(c1d566e0,e659fd14,c,431,3) at bind+0x44 syscall(2f,2f,2f,bfbfe5c4,80a9000) at syscall+0x271 Xint0x80_syscall() at Xint0x80_syscall+0x1f --- syscall (104, FreeBSD ELF32, bind), eip =3D 0x281163af, esp =3D 0xbfbfe= 4dc, ebp =3D 0xbfbfe528 --- I load mac_portacl from loader.conf with the following policy (which is set from sysctl.conf): security.mac.portacl.rules=3Duid:80:tcp:80 BTW. this is not on the LOR page. --=20 Simon L. Nielsen FreeBSD Documentation Team --ibTvN161/egqYuK8 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFBBB/+h9pcDSc1mlERAqw5AJwMOpRkBpmfNtETSD563khD/JikxACeJ1e8 POh8vKKHKUHApuOFeBc/3E0= =FPRH -----END PGP SIGNATURE----- --ibTvN161/egqYuK8--