ipfw uid/gid rules and mpsafenet (Re: PREEMPTION still unusable
with 6.0-RC1)
Kris Kennaway
kris at obsecurity.org
Sat Oct 22 12:04:12 PDT 2005
On Sat, Oct 22, 2005 at 07:45:37PM +0400, Gleb Smirnoff wrote:
> On Fri, Oct 21, 2005 at 09:17:29AM +0200, Stefan Ehmann wrote:
> S> I recently upgraded my 5.4-RELEASE machine to 6.0-RC1. Runs fine so far
> S> if I disable PREEMPTION.
> S>
> S> With PREEMPTION enabled, I still get the same issues as described here:
> S> http://lists.freebsd.org/pipermail/freebsd-current/2004-September/037949.html
> S>
> S> kernel config:
> S> http://stud4.tuwien.ac.at/~e0125637/fbsd/kernconf-6.0-RC1
> S>
> S> /var/log/messages output:
> S> http://stud4.tuwien.ac.at/~e0125637/fbsd/messages-6.0-RC1
> S>
> S> Any one else still experiencing these problems or has any idea what
> S> causes this?
> S>
> S> BTW, are 6.0 discussions supposed to go to stable@ once 6.0 is released?
>
> AFAIK, the uid/gid rules in ipfw(8) require debug.mpsafenet=0. So
> your deadlock isn't a surprise. I wonder why this limitation isn't
> documented.
Yeah, and ipfw(8) should refuse to add them if it's =1, or at least
display a warning.
Kris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-current/attachments/20051022/37b3e701/attachment.bin
More information about the freebsd-current
mailing list