USER/GROUP rules on the chopping Block [ Re: Panic on boot with April 16 src (lengthy info attached) ]

Tillman Hodgson tillman at
Wed Jun 6 15:13:24 UTC 2007

On Wed, Jun 06, 2007 at 04:29:12PM +0200, Max Laier wrote:
> After several attempts to fix user/group rules which ended like the most 
> recent one - cited below - with *ZERO* feedback, I won't waste anymore 
> effort.  Either somebody steps up, does proper testing and reports back, 
> or user/group rules go!  End of story!
> This is not personal against Tillman - he just happend to be the most 
> recent one to hit the problem.
> On Wednesday 18 April 2007, Tillman Hodgson wrote:
> > On Wed, Apr 18, 2007 at 10:13:42PM +0200, Max Laier wrote:
> > > On Wednesday 18 April 2007 21:28, Tillman Hodgson wrote:
> > > > Oh, interesting! I'm rebuilding right now with that option :-)
> > > > I'll report back in a few days how it goes.
> > >
> > > Actually, could you test this?  It should enable the hack on the fly
> > > as a user/group rule is added.  See "sysctl debug.pfugidhack" or
> > > "pfctl -x misc" to confirm it's on.
> >
> > Sure, I've restarted the build with this patch.
> and again ... the thread ends here - zero feedback received :-(  Does 
> anyone care about user/group rules at all?  If so - speak up now or I'll 
> just disable them with the upcoming update!!!

I think you might have missed some posts :-) I successfully built with
that patch and reported it:

  Date: Thu, 19 Apr 2007 08:50:57 -0600
  From: Tillman Hodgson <tillman at>
  Subject: Re: Panic on boot with April 16 src (lengthy info attached)

I also reported a week later (after a series of network-heavy daily
backup jobs) that it's been stable for the week.

  Date: Thu, 26 Apr 2007 18:08:43 -0600
  From: Tillman Hodgson <tillman at>
  Subject: Re: Panic on boot with April 16 src (lengthy info attached)

I didn't get a reply to either email and had (wrongly) assumed that it
had been dropped on your end. Perhaps we just crossed wires :-)

I'd be glad to forward those emails to you if you'd find them helpful.
There's not that much info in them though and I think the fact that I've
been running with the patch since then with no problems is probably more

[root at athena ~]# uptime
 8:40AM  up 48 days, 28 secs, 10 users, load averages: 0.19, 0.15, 0.09

If there's any particular information you'd like (such as from pfctl,
sysctl, or whatever) let me know. It's stable, and PF is working well
for me, so it seems good with my workload.


"The important thing is not to stop questioning. Curiosity has its own
 reason for existing."
    -- Albert Einstein

More information about the freebsd-current mailing list