MLS panic
Daniel C. Sobral
dcs at tcoip.com.br
Mon Feb 24 14:54:12 GMT 2003
24/02/2003 HEAD kernel (attached). While trying to portupgrade (ftping
to a number of sites):
Good dump found on device /dev/ad0s2b
Architecture: i386
Architecture version: 1
Dump length: 268353536B (255 MB)
Blocksize: 512
Dumptime: Mon Feb 24 11:16:58 2003
Hostname: dcs
Versionstring: FreeBSD 5.0-CURRENT #0: Mon Feb 24 10:55:15 BRT 2003
root at dcs:/usr/obj/usr/src/sys/TESTE
Panicstring: mac_mls_single_in_range: a not single
Bounds: 0
root at dcs:/opt/home/dcs$ gdb -k /usr/obj/usr/src/sys/TESTE/kernel.debug
/var/crash/vmcore.0
GNU gdb 5.2.1 (FreeBSD)
Copyright 2002 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain
conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for details.
This GDB was configured as "i386-undermydesk-freebsd"...
panic: mac_mls_single_in_range: a not single
panic messages:
---
panic: mac_mls_single_in_range: a not single
Dumping 255 MB
ata0: resetting devices ..
done
16 32 48 64 80 96 112 128 144 160 176 192 208 224 240
---
#0 doadump () at /usr/src/sys/kern/kern_shutdown.c:239
239 dumping++;
(kgdb) bt detail
No symbol "detail" in current context.
(kgdb) bt complete
No symbol "complete" in current context.
(kgdb) help bt
Print backtrace of all stack frames, or innermost COUNT frames.
With a negative argument, print outermost -COUNT frames.
Use of the 'full' qualifier also prints the values of the local variables.
(kgdb) bt full
#0 doadump () at /usr/src/sys/kern/kern_shutdown.c:239
No locals.
#1 0xc01289a5 in db_fncall (dummy1=0, dummy2=0, dummy3=1999,
dummy4=0xcd2a6750 "À07ÀHã6Àlg*Í\r")
at /usr/src/sys/ddb/db_command.c:546
fn_addr = -1071732464
args = {0 <repeats 11 times>}
nargs = 11
retval = 0
func = (fcn_10args_t *) 0xc01ea910 <doadump>
t = 0
#2 0xc0128722 in db_command (last_cmdp=0xc0347360, cmd_table=0x0,
aux_cmd_tablep=0xc03418f8,
aux_cmd_tablep_end=0xc03418fc) at /usr/src/sys/ddb/db_command.c:346
cmd = (struct command *) 0xc03472f0
t = 0
modif =
"À07ÀHã6Àlg*Í\r\0\0\0\0\021<À\r\0\0\0\001\0\0\0\214g*Í&^-À\200÷:À\aK\0
\200\021<À Ô:ÀÀ07Àx\0\0\0À07ÀHã6À°g*ÍA¤\022Àÿù1À0£\022À\0\0\0\0\020\0\0\0Hã6ÀÀ07À®\234\022ÀÀ07À (7Àx\0\0\0\003\0\0"
addr = 0
count = 1999
have_addr = 0
result = 0
#3 0xc0128836 in db_command_loop () at /usr/src/sys/ddb/db_command.c:470
No locals.
#4 0xc012b5ca in db_trap (type=3, code=0) at /usr/src/sys/ddb/db_trap.c:72
bkpt = 0
#5 0xc02df4a2 in kdb_trap (type=3, code=0, regs=0xcd2a68a4) at
/usr/src/sys/i386/i386/db_interface.c:166
ddb_mode = 1
#6 0xc02f0e3f in trap (frame=
{tf_fs = -852885480, tf_es = -1071710192, tf_ds = 16, tf_edi =
-1058227632, tf_esi = 256, tf_ebp = -852858640, tf_isp = -852858672,
tf_ebx = 0, tf_edx = 0, tf_ecx = 1920, tf_eax = 18, tf_trapno = 3,
tf_err = 0, tf_eip = -1070729404, tf_cs = 8, tf_eflags = 646, tf_esp =
-1070347981, tf_ss = -1070419615})
at /usr/src/sys/i386/i386/trap.c:603
td = (struct thread *) 0xc0ecba50
p = (struct proc *) 0xc0eca9ec
sticks = 0
i = 0
---Type <return> to continue, or q <return> to quit---
ucode = 0
type = 3
code = 0
eva = 0
#7 0xc02e0df8 in calltrap () at {standard input}:96
No locals.
#8 0xc01eb07b in panic (fmt=0x0) at /usr/src/sys/kern/kern_shutdown.c:528
td = (struct thread *) 0xc0ecba50
bootopt = 256
newpanic = 1
buf = "mac_mls_single_in_range: a not single", '\0' <repeats
218 times>
#9 0xc0277064 in mac_mls_single_in_range (single=0x0, range=0xc2605e80)
at /usr/src/sys/security/mac_mls/mac_mls.c:225
No locals.
#10 0xc0278aa6 in mac_mls_check_ifnet_transmit (ifnet=0xc25ebc00,
ifnetlabel=0x0, m=0xc0ee0400, mbuflabel=0x0)
at /usr/src/sys/security/mac_mls/mac_mls.c:1462
p = (struct mac_mls *) 0x0
i = (struct mac_mls *) 0x0
#11 0xc01dad3a in mac_check_ifnet_transmit (ifnet=0xc25ebc00,
mbuf=0xc0ee0400)
at /usr/src/sys/kern/kern_mac.c:2269
mpc = (struct mac_policy_conf *) 0xc2605e80
error = 0
#12 0xc02525e8 in ether_output (ifp=0xc25ebc00, m=0xc0ee0400,
dst=0xc25c8690, rt0=0xc2bfad00)
at /usr/src/sys/net/if_ethersubr.c:157
type = 0
error = -1058143148
hdrcmplt = 0
esrc = "\0\0\0\0\024"
edst = "T\004îÀÌi"
rt = (struct rtentry *) 0xc0ee0400
eh = (struct ether_header *) 0xc0ee0454
loop_copy = 0
ac = (struct arpcom *) 0xc25ebc00
#13 0xc02625c5 in ip_output (m0=0xc0ee0400, opt=0xc0ee0454,
ro=0xc282fa08, flags=0, imo=0x0, inp=0xc282f9cc)
at /usr/src/sys/netinet/ip_output.c:1015
---Type <return> to continue, or q <return> to quit---
ip = (struct ip *) 0xc0ee0454
mhip = (struct ip *) 0xcd2a6a58
ifp = (struct ifnet *) 0xc25ebc00
m = (struct mbuf *) 0xc2bfad00
hlen = 20
len = -1071770256
off = -1070050368
error = 0
dst = (struct sockaddr_in *) 0xc25c8690
ia = (struct in_ifaddr *) 0xc2705400
isbroadcast = 0
sw_csum = 1
pkt_dst = {s_addr = 843641662}
args = {m = 0xcd2a6a7c, oif = 0xc01d17db, next_hop = 0x0, rule
= 0x0, eh = 0x0, ro = 0x2cf,
dst = 0xc0ee0400, flags = 2, f_id = {dst_ip = 1, src_ip = 3442109092,
dst_port = 20063, src_port = 49184,
proto = 0 '\0', flags = 4 '\004'}, divert_rule = 0, retval = 2}
src_was_INADDR_ANY = 0
#14 0xc026a4ec in tcp_twrespond (tw=0xc2bfd000, flags=16) at
/usr/src/sys/netinet/tcp_subr.c:1776
inp = (struct inpcb *) 0xc282f9cc
th = (struct tcphdr *) 0xc0ee0468
m = (struct mbuf *) 0xc0ee0400
ip = (struct ip *) 0xc0ee0454
optp = (u_int8_t *) 0x0
optlen = 12
error = 0
#15 0xc026a28d in tcp_twstart (tp=0xc27ffd00) at
/usr/src/sys/netinet/tcp_subr.c:1663
tm = (struct tcptw_mem *) 0x0
tw = (struct tcptw *) 0xc2bfd000
inp = (struct inpcb *) 0xc282f9cc
tw_time = 60000
acknow = 1
so = (struct socket *) 0xc27ffd00
#16 0xc0266ed0 in tcp_input (m=0xc0ee0400, off0=20) at
/usr/src/sys/netinet/tcp_input.c:2189
th = (struct tcphdr *) 0xc136a034
ip = (struct ip *) 0xc136a020
---Type <return> to continue, or q <return> to quit---
ipov = (struct ipovly *) 0x1
inp = (struct inpcb *) 0xc282f9cc
optp = (u_char *) 0xc136a048 "\001\001\b\n\020¡©Ý"
optlen = 12
len = -1031596300
tlen = 0
off = -1031596300
drop_hdrlen = 52
tp = (struct tcpcb *) 0xc28316f4
thflags = 1
so = (struct socket *) 0xc27ffd00
todrop = -1031596300
acked = -1031596300
ourfinisacked = -1031596300
needoutput = 0
tiwin = 57920
to = {to_flags = 1, to_tsval = 279030237, to_tsecr = 93307,
to_cc = 0, to_ccecho = 0, to_mss = 0,
to_requested_s_scale = 0 '\0', to_pad = 0 '\0'}
taop = (struct rmxp_tao *) 0xc28316f4
tao_noncached = {tao_cc = 3801157, tao_ccsent = 60584,
tao_mssopt = 37248}
headlocked = 1
next_hop = (struct sockaddr_in *) 0x0
rstreason = -1031596300
#17 0xc0260834 in ip_input (m=0xc0ee0400) at
/usr/src/sys/netinet/ip_input.c:947
ip = (struct ip *) 0xc136a020
fp = (struct ipq *) 0xc2705400
ia = (struct in_ifaddr *) 0xc2705400
ifa = (struct ifaddr *) 0x0
i = 0
hlen = 20
checkif = 1
sum = 0
pkt_dst = {s_addr = 100794378}
divert_info = 0
args = {m = 0xc03ad320, oif = 0x0, next_hop = 0x0, rule = 0x0,
eh = 0x0, ro = 0xcd2a6cb8,
---Type <return> to continue, or q <return> to quit---
dst = 0xc03618b4, flags = 962, f_id = {dst_ip = 3224582702, src_ip =
3442109608, dst_port = 5488,
src_port = 49182, proto = 180 '´', flags = 24 '\030'}, divert_rule
= 0, retval = 3224544816}
#18 0xc02608e1 in ipintr () at /usr/src/sys/netinet/ip_input.c:965
m = (struct mbuf *) 0xc0ee0400
#19 0xc0254774 in swi_net (dummy=0x0) at /usr/src/sys/net/netisr.c:97
pollmore = 0
bits = 4
i = 2
#20 0xc01c9ba2 in ithread_loop (arg=0xc0ec8f00) at
/usr/src/sys/kern/kern_intr.c:536
ithd = (struct ithd *) 0xc0ec8f00
ih = (struct intrhand *) 0xc0ec04c0
td = (struct thread *) 0xc0ecba50
p = (struct proc *) 0xc0eca9ec
#21 0xc01c8c74 in fork_exit (callout=0xc0ec04c0, arg=0x0, frame=0x0) at
/usr/src/sys/kern/kern_fork.c:871
td = (struct thread *) 0x0
p = (struct proc *) 0xc0ec8f00
(kgdb)
Filesystems:
root at dcs:/opt/home/dcs$ mount
/dev/ad0s2a on / (ufs, local)
devfs on /dev (devfs, local, multilabel)
/dev/ad0s2g on /opt (ufs, local, soft-updates)
/dev/ad0s2f on /tmp (ufs, local, soft-updates)
/dev/ad0s2h on /usr (ufs, local, soft-updates, multilabel)
/dev/ad0s2e on /var (ufs, local, soft-updates, multilabel)
/dev/ad0s1 on /dos (msdosfs, local)
(those not multilabel are UFS1)
kernel.debug + vmcore.0 measure about ~150Mb. I can put it on freefall
or ftp it somewhere on request.
--
Daniel C. Sobral (8-DCS)
Gerencia de Operacoes
Divisao de Comunicacao de Dados
Coordenacao de Seguranca
TCO
Fones: 55-61-313-7654/Cel: 55-61-9618-0904
E-mail: Daniel.Capo at tco.net.br
Daniel.Sobral at tcoip.com.br
dcs at tcoip.com.br
Outros:
dcs at newsguy.com
dcs at freebsd.org
capo at notorious.bsdconspiracy.net
Trying to define yourself is like trying to bite your own teeth.
-- Alan Watts
-------------- next part --------------
#
# GENERIC -- Generic kernel configuration file for FreeBSD/i386
#
# For more information on this file, please read the handbook section on
# Kernel Configuration Files:
#
# http://www.FreeBSD.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig-config.html
#
# The handbook is also available locally in /usr/share/doc/handbook
# if you've installed the doc distribution, otherwise always see the
# FreeBSD World Wide Web server (http://www.FreeBSD.org/) for the
# latest information.
#
# An exhaustive list of options and more detailed explanations of the
# device lines is also present in the ../../conf/NOTES and NOTES files.
# If you are in doubt as to the purpose or necessity of a line, check first
# in NOTES.
#
# $FreeBSD: src/sys/i386/conf/GENERIC,v 1.369 2002/10/19 16:54:07 rwatson Exp $
machine i386
cpu I686_CPU
ident GENERIC
maxusers 0
#To statically compile in device wiring instead of /boot/device.hints
#hints "GENERIC.hints" #Default places to look for devices.
makeoptions DEBUG=-g #Build kernel with gdb(1) debug symbols
makeoptions KERNEL=teste
options SCHED_4BSD #4BSD scheduler
options INET #InterNETworking
options FFS #Berkeley Fast Filesystem
options SOFTUPDATES #Enable FFS soft updates support
options UFS_DIRHASH #Improve performance on big directories
options MSDOSFS #MSDOS Filesystem
options CD9660 #ISO 9660 Filesystem
options PROCFS #Process filesystem (requires PSEUDOFS)
options PSEUDOFS #Pseudo-filesystem framework
options COMPAT_43 #Compatible with BSD 4.3 [KEEP THIS!]
options COMPAT_FREEBSD4 #Compatible with FreeBSD4
options SCSI_DELAY=15000 #Delay (in ms) before probing SCSI
options KTRACE #ktrace(1) support
options SYSVSHM #SYSV-style shared memory
options SYSVMSG #SYSV-style message queues
options SYSVSEM #SYSV-style semaphores
options _KPOSIX_PRIORITY_SCHEDULING #Posix P1003_1B real-time extensions
options KBD_INSTALL_CDEV # install a CDEV entry in /dev
options CPU_ENABLE_SSE # Acho que si, putz (default?)
options PERFMON # Acho que si, putz
options VESA # Acho que si, putz
options HZ=1000
options UFS_EXTATTR
options UFS_EXTATTR_AUTOSTART
#options ENABLE_VFS_IOOPT
options MAC
options MAC_BIBA
options MAC_BSDEXTENDED
#options MAC_DEBUG
#options MAC_IFOFF
#options MAC_LOMAC
options MAC_MLS
#options MAC_NONE
#options MAC_PARTITION
#options MAC_SEEOTHERUIDS
#options MAC_TEST
options MSGBUF_SIZE=40960
options SC_CUT_SPACES2TABS # convert leading spaces into tabs
options SC_TWOBUTTON_MOUSE
#options SC_NORM_ATTR=(FG_WHITE|BG_BLUE)
#options SC_NORM_REV_ATTR=(FG_YELLOW|BG_WHITE)
options DEVICE_POLLING
# Extended attributes allow additional data to be associated with files,
# # and is used for ACLs, Capabilities, and MAC labels.
# # See src/sys/ufs/ufs/README.extattr for more information.
options UFS_EXTATTR
options UFS_EXTATTR_AUTOSTART
#
# # Access Control List support for UFS filesystems. The current ACL
# # implementation requires extended attribute support, UFS_EXTATTR,
# # for the underlying filesystem.
# # See src/sys/ufs/ufs/README.acls for more information.
options UFS_ACL
# Debugging for use in -current
options DDB #Enable the kernel debugger
options INVARIANTS #Enable calls of extra sanity checking
options INVARIANT_SUPPORT #Extra sanity checks of internal structures, required by INVARIANTS
options WITNESS #Enable checks to detect deadlocks and cycles
options WITNESS_SKIPSPIN #Don't run witness on spinlocks for speed
# To make an SMP kernel, the next two are needed
#options SMP # Symmetric MultiProcessor Kernel
#options APIC_IO # Symmetric (APIC) I/O
device isa
device pci
# Floppy drives
device fdc
# ATA and ATAPI devices
device ata
device atadisk # ATA disk drives
device atapicd # ATAPI CDROM drives
options ATA_STATIC_ID #Static device numbering
# atkbdc0 controls both the keyboard and the PS/2 mouse
device atkbdc # AT keyboard controller
device atkbd # AT keyboard
device psm # PS/2 mouse
device vga # VGA video card driver
device splash # Splash screen and screen saver support
# syscons is the default console driver, resembling an SCO console
device sc
# Enable this for the pcvt (VT220 compatible) console driver
#device vt
#options XSERVER # support for X server on a vt console
#options FAT_CURSOR # start with block cursor
device agp # support several AGP chipsets
# Floating point support - do not disable.
device npx
# Power management support (see NOTES for more options)
#device apm
# Add suspend/resume support for the i8254.
device pmtimer
# PCCARD (PCMCIA) support
# Pcmcia and cardbus bridge support
device cbb # cardbus (yenta) bridge
#device pcic # ExCA ISA and PCI bridges
device pccard # PC Card (16-bit) bus
device cardbus # CardBus (32-bit) bus
# Serial (COM) ports
device sio # 8250, 16[45]50 based serial ports
# Parallel port
device ppc
device ppbus # Parallel port bus (required)
device lpt # Printer
device ppi # Parallel port interface device
# PCI Ethernet NICs that use the common MII bus controller code.
# NOTE: Be sure to keep the 'device miibus' line in order to use these NICs!
device miibus # MII bus support
device fxp # Intel EtherExpress PRO/100B (82557, 82558)
# Pseudo devices - the number indicates how many units to allocate.
device random # Entropy device
device loop # Network loopback
device ether # Ethernet support
device pty # Pseudo-ttys (telnet etc)
device md # Memory "disks"
# The `bpf' device enables the Berkeley Packet Filter.
# Be aware of the administrative consequences of enabling this!
device bpf # Berkeley packet filter
# USB support
device uhci # UHCI PCI->USB interface
device ohci # OHCI PCI->USB interface
device usb # USB Bus (required)
#device udbp # USB Double Bulk Pipe devices
device ugen # Generic
device uhid # "Human Interface Devices"
device ukbd # Keyboard
device ulpt # Printer
device ums # Mouse
device urio # Diamond Rio 500 MP3 player
device uscanner # Scanners
# USB Ethernet, requires mii
device aue # ADMtek USB ethernet
device cue # CATC USB ethernet
device kue # Kawasaki LSI USB ethernet
More information about the trustedbsd-discuss
mailing list