From davec@unforgettable.com Tue Jun 15 15:28:22 1999
Return-Path: <davec@unforgettable.com>
Received: from rmx07.globecomm.net (rmx07.iname.net [165.251.8.75])
	by hub.freebsd.org (Postfix) with ESMTP id 4171B14DE4
	for <FreeBSD-gnats-submit@freebsd.org>; Tue, 15 Jun 1999 15:28:21 -0700 (PDT)
	(envelope-from davec@unforgettable.com)
Received: from weba7.iname.net  by rmx07.globecomm.net (8.9.1/8.8.0) with ESMTP id SAA07955 ; Tue, 15 Jun 1999 18:28:21 -0400 (EDT)
Received: (from root@localhost)
	by weba7.iname.net (8.9.1a/8.9.2.Alpha2) id SAA25028;
	Tue, 15 Jun 1999 18:28:21 -0400 (EDT)
Message-Id: <990615182820EX.12713@weba7.iname.net>
Date: Tue, 15 Jun 1999 18:28:20 -0400 (EDT)
From: davec@unforgettable.com
To: FreeBSD-gnats-submit@freebsd.org
Subject: IPFilter breaking with ipl ERROR

>Number:         12226
>Category:       kern
>Synopsis:       In 4.0-current the ipl driver breaks with "bogus cdevsw->d_maj = -1
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Jun 15 15:30:02 PDT 1999
>Closed-Date:    Fri Jun 18 20:07:08 PDT 1999
>Last-Modified:  Fri Jun 18 20:08:10 PDT 1999
>Originator:     Dave
>Release:        FreeBSD 4.0-CURRENT i386
>Organization:
>Environment:

        FreeBSD 4.0-Current as of June 15, 1999
        Pentium233MMX, 128MB SDRAM, two UDMA2 HD's, one IDE HD.
        PA-2007 motherboard, Matrox MillenniumII vid.  3COM905-TX NIC.
        Kernel compiled with IPFILTER, IPFILTER_LOG, and bpfilter.
       
>Description:

        I made buildworld and installworld.  Compiled a new kernel after checking
        with LINT for changes, then MAKEDEV all in /dev.
        After a the reboot, dmesg shows:
       
           Preloaded elf kernel "kernel" at 0xc030e000.
           Intel Pentium detected, installing workaround for F00F bug
           ipl: ERROR: driver has bogus cdevsw->d_maj = -1
       
        For every rule ipf tries to process, the following error was produced:
       
           open device: Device not configured
           ioctl(SIOCIPFFL): Bad file descriptor
       
        Same errors occurs when I tried to manually unload and reload the IPFilter
        rules.
       
        This actually occurred a few weeks ago, I've been following -current a long
        time.  First report was to IPFilter's author without reply, then to FreeBSD-
        current mailing list with no comment on the issue.
       
        One day it worked, the next day it didn't.  I can still load the kernel.saved
        of the last compiled kernel when ipl worked.

       
>How-To-Repeat:

        Run 4.0-current with IPFILTER option in the kernel config.
       
>Fix:
       
        Unknown.



----------------------------------------------------------------
Get your free email from AltaVista at http://altavista.iname.com

>Release-Note:
>Audit-Trail:

From: Nathan Dorfman <nathan@rtfm.net>
To: davec@unforgettable.com
Cc: FreeBSD-gnats-submit@FreeBSD.ORG, freebsd-current@FreeBSD.ORG
Subject: Re: kern/12226: IPFilter breaking with ipl ERROR
Date: Wed, 16 Jun 1999 18:15:06 -0400

 On Tue, Jun 15, 1999 at 06:28:20PM -0400, davec@unforgettable.com wrote:
 > >Synopsis:       In 4.0-current the ipl driver breaks with "bogus cdevsw->d_maj = -1
 > >Environment:
 > 
 >         FreeBSD 4.0-Current as of June 15, 1999
 >         Pentium233MMX, 128MB SDRAM, two UDMA2 HD's, one IDE HD.
 >         PA-2007 motherboard, Matrox MillenniumII vid.  3COM905-TX NIC.
 >         Kernel compiled with IPFILTER, IPFILTER_LOG, and bpfilter.
 > >Description:
 >            Preloaded elf kernel "kernel" at 0xc030e000.
 >            Intel Pentium detected, installing workaround for F00F bug
 >            ipl: ERROR: driver has bogus cdevsw->d_maj = -1
 >        
 >         For every rule ipf tries to process, the following error was produced:
 >        
 >            open device: Device not configured
 >            ioctl(SIOCIPFFL): Bad file descriptor
 
 I've seen this since at least as early as June 3rd. Haven't said anything
 because I've not had time to see if there was already a fix, or at least
 the topic had been brought up.
 
 Maybe we're doing something wrong; ipf + ipnat not working at all sounds
 like something that'd get noticed real quick. Oh yeah, ipnat:
 
 # ipnat -l
 /dev/ipnat: open: Device not configured
 # grep IPFILTER /sys/i386/conf/LIMBO
 options         IPFILTER
 options         IPFILTER_LOG
 
 Same error message as the author of the send-pr above reports. Any ideas?
 
 -- 
 Nathan Dorfman <nathan@rtfm.net>         The statements and opinions in my
 Unix Admin @ Frontline Communications    public posts are mine, not FCC's.
 "The light at the end of the tunnel is the headlight of an approaching
 train." --/usr/games/fortune
 
State-Changed-From-To: open->closed 
State-Changed-By: billf 
State-Changed-When: Fri Jun 18 20:07:08 PDT 1999 
State-Changed-Why:  
fixed by green in rev1.17 of src/sys/netinet/mlf_ipl.c 
>Unformatted:
