FreeBSD Mail Archives

Date:      Sun, 25 May 2025 00:42:49 +0000
From:      bugzilla-noreply@freebsd.org
To:        bugs@FreeBSD.org
Subject:   [Bug 287057] mac_do: reproducible panic in check_type_and_type_flags
Message-ID:  <bug-287057-227@https.bugs.freebsd.org/bugzilla/>

index | next in thread | raw e-mail


https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=287057

            Bug ID: 287057
           Summary: mac_do: reproducible panic in
                    check_type_and_type_flags
           Product: Base System
           Version: 15.0-CURRENT
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: kern
          Assignee: bugs@FreeBSD.org
          Reporter: ivy@FreeBSD.org
                CC: bapt@FreeBSD.org, olce@FreeBSD.org

# sysctl security.mac.do.rules='gid=5>uid=*'
panic: ID type uid: Unexpected flags 256 (Presence of folded primary clause not
reflected by presence of MDF_HAS_PRIMARY_CLAUSE)

#0  __curthread () at /home/ivy/src/bsd/main/sys/amd64/include/pcpu_aux.h:57
#1  doadump (textdump=textdump@entry=0) at
../../../../../../../../../main/sys/kern/kern_shutdown.c:404
#2  0xffffffff804a6c7a in db_dump (dummy=<optimized out>, dummy2=<optimized
out>, dummy3=<optimized out>, dummy4=<optimized out>)
    at ../../../../../../../../../main/sys/ddb/db_command.c:596
#3  0xffffffff804a6a6d in db_command (last_cmdp=<optimized out>,
cmd_table=<optimized out>, dopager=true) at
../../../../../../../../../main/sys/ddb/db_command.c:508
#4  0xffffffff804a672d in db_command_loop () at
../../../../../../../../../main/sys/ddb/db_command.c:555
#5  0xffffffff804aa126 in db_trap (type=<optimized out>, code=<optimized out>)
at ../../../../../../../../../main/sys/ddb/db_main.c:267
#6  0xffffffff80bc6f6f in kdb_trap (type=type@entry=3, code=code@entry=0,
tf=tf@entry=0xfffffe00da00c850) at
../../../../../../../../../main/sys/kern/subr_kdb.c:790
#7  0xffffffff810bca3b in trap (frame=<optimized out>) at
../../../../../../../../../main/sys/amd64/amd64/trap.c:617
#8  <signal handler called>
#9  kdb_enter (why=<optimized out>, msg=<optimized out>) at
../../../../../../../../../main/sys/kern/subr_kdb.c:556
#10 0xffffffff80b76a4b in vpanic (fmt=0xffffffff82321bbf "ID type %s:
Unexpected flags %u (%s), ", ap=ap@entry=0xfffffe00da00ca80)
    at ../../../../../../../../../main/sys/kern/kern_shutdown.c:967
#11 0xffffffff80b768b3 in panic (fmt=0xffffffff81d9d420 <cnputs_mtx>
"\026\340\031\201\377\377\377\377") at
../../../../../../../../../main/sys/kern/kern_shutdown.c:892
#12 0xffffffff8231f53a in check_type_and_type_flags (flags=<optimized out>,
type=<optimized out>)
    at
../../../../../../../../../../../../../../../../../../main/sys/security/mac_do/mac_do.c:197
#13 parse_target_clause (to=<optimized out>, rule=0xfffff8000536eb40,
uid_list=0xfffffe00da00cb28, gid_list=0xfffffe00da00cae8,
parse_error=0xfffffe00da00cba8)
    at
../../../../../../../../../../../../../../../../../../main/sys/security/mac_do/mac_do.c:741
#14 parse_single_rule (rule=0x0, rules=0xfffff8000e147000,
parse_error=0xfffffe00da00cba8)
    at
../../../../../../../../../../../../../../../../../../main/sys/security/mac_do/mac_do.c:925
#15 parse_rules (string=<optimized out>, parse_error=0xfffffe00da00cba8,
rulesp=<optimized out>)
    at
../../../../../../../../../../../../../../../../../../main/sys/security/mac_do/mac_do.c:1039
#16 parse_and_set_rules (pr=pr@entry=0xffffffff81acb1b0 <prison0>,
rules_string=rules_string@entry=0xfffff8000e15bc00 "gid=5>uid=*",
    parse_error=parse_error@entry=0xfffffe00da00cba8) at
../../../../../../../../../../../../../../../../../../main/sys/security/mac_do/mac_do.c:1219
#17 0xffffffff8231e13e in mac_do_sysctl_rules (oidp=<optimized out>,
arg1=<optimized out>, arg2=<optimized out>, req=0xfffffe00da00ccc0)
    at
../../../../../../../../../../../../../../../../../../main/sys/security/mac_do/mac_do.c:1245
#18 0xffffffff80b88c0c in sysctl_root_handler_locked
(oid=oid@entry=0xffffffff82322190 <sysctl___security_mac_do_rules>,
arg1=arg1@entry=0x0, arg2=arg2@entry=0,
    req=req@entry=0xfffffe00da00ccc0, tracker=tracker@entry=0xfffffe00da00cc40)
at ../../../../../../../../../main/sys/kern/kern_sysctl.c:199
#19 0xffffffff80b87f71 in sysctl_root (oidp=<optimized out>, arg1=0x0,
arg1@entry=0xfffffe00da00cd80, arg2=0, arg2@entry=4,
req=req@entry=0xfffffe00da00ccc0)
    at ../../../../../../../../../main/sys/kern/kern_sysctl.c:2403
#20 0xffffffff80b88656 in userland_sysctl (td=td@entry=0xfffff80006f1e000,
name=name@entry=0xfffffe00da00cd80, namelen=<optimized out>, old=<optimized
out>,
    oldlenp=<optimized out>, inkernel=inkernel@entry=0, new=0x40f5c920a016,
newlen=11, retval=0xfffffe00da00cde8, flags=0)
    at ../../../../../../../../../main/sys/kern/kern_sysctl.c:2562
#21 0xffffffff80b88485 in sys___sysctl (td=0xfffff80006f1e000,
uap=0xfffff80006f1e400) at
../../../../../../../../../main/sys/kern/kern_sysctl.c:2433
#22 0xffffffff810bdefa in syscallenter (td=0xfffff80006f1e000) at
../../../../../../../../../main/sys/amd64/amd64/../../kern/subr_syscall.c:191
#23 amd64_syscall (td=0xfffff80006f1e000, traced=0) at
../../../../../../../../../main/sys/amd64/amd64/trap.c:1215

-- 
You are receiving this mail because:
You are the assignee for the bug.

home | help

Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-287057-227>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation