From nobody@FreeBSD.org  Sat Jul  2 20:52:13 2005
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D14FD16A41C
	for <freebsd-gnats-submit@FreeBSD.org>; Sat,  2 Jul 2005 20:52:13 +0000 (GMT)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [216.136.204.117])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A700B43D4C
	for <freebsd-gnats-submit@FreeBSD.org>; Sat,  2 Jul 2005 20:52:13 +0000 (GMT)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.13.1/8.13.1) with ESMTP id j62KqDNW089692
	for <freebsd-gnats-submit@FreeBSD.org>; Sat, 2 Jul 2005 20:52:13 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.13.1/8.13.1/Submit) id j62KqDiJ089688;
	Sat, 2 Jul 2005 20:52:13 GMT
	(envelope-from nobody)
Message-Id: <200507022052.j62KqDiJ089688@www.freebsd.org>
Date: Sat, 2 Jul 2005 20:52:13 GMT
From: Adrian Czerniak <adriancz@go2.pl>
To: freebsd-gnats-submit@FreeBSD.org
Subject: mount_nullfs can reboot system
X-Send-Pr-Version: www-2.3

>Number:         82905
>Category:       kern
>Synopsis:       [nullfs] mount_nullfs can reboot system
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Sat Jul 02 21:00:32 GMT 2005
>Closed-Date:    Wed Sep 21 07:11:01 GMT 2005
>Last-Modified:  Wed Sep 21 07:11:01 GMT 2005
>Originator:     Adrian Czerniak
>Release:        6-CURRENT
>Organization:
>Environment:
FreeBSD 68-71.is.net.pl 6.0-CURRENT FreeBSD 6.0-CURRENT #0: Sat Jul  2 15:27:02 CEST 2005     abaddon@68-71.is.net.pl:/usr/obj/usr/src/sys/abaddon  i386
>Description:
Try to do:
mount_nullfs /mnt/foo /some/other/place (where foo is mounted fat32 partition) and enter to /some/other/place, system will reboot.
>How-To-Repeat:
mount_nullfs /mnt/foo /some/other/place (where foo is mounted fat32 partition) and enter to /some/other/place
>Fix:
      
>Release-Note:
>Audit-Trail:

From: Kris Kennaway <kris@obsecurity.org>
To: Adrian Czerniak <adriancz@go2.pl>
Cc: freebsd-gnats-submit@FreeBSD.org
Subject: Re: kern/82905: mount_nullfs can reboot system
Date: Fri, 29 Jul 2005 17:52:36 -0400

 On Sat, Jul 02, 2005 at 08:52:13PM +0000, Adrian Czerniak wrote:
 > 
 > >Number:         82905
 > >Category:       kern
 > >Synopsis:       mount_nullfs can reboot system
 > >Confidential:   no
 > >Severity:       serious
 > >Priority:       high
 > >Responsible:    freebsd-bugs
 > >State:          open
 > >Quarter:        
 > >Keywords:       
 > >Date-Required:
 > >Class:          sw-bug
 > >Submitter-Id:   current-users
 > >Arrival-Date:   Sat Jul 02 21:00:32 GMT 2005
 > >Closed-Date:
 > >Last-Modified:
 > >Originator:     Adrian Czerniak
 > >Release:        6-CURRENT
 > >Organization:
 > >Environment:
 > FreeBSD 68-71.is.net.pl 6.0-CURRENT FreeBSD 6.0-CURRENT #0: Sat Jul  2 15:27:02 CEST 2005     abaddon@68-71.is.net.pl:/usr/obj/usr/src/sys/abaddon  i386
 > >Description:
 > Try to do:
 > mount_nullfs /mnt/foo /some/other/place (where foo is mounted fat32 partition) and enter to /some/other/place, system will reboot.
 > >How-To-Repeat:
 > mount_nullfs /mnt/foo /some/other/place (where foo is mounted fat32 partition) and enter to /some/other/place
 
 Does it panic, or just reboot? Make sure you are at the system console
 and not running X, or you won't see the panic string.  If it panics,
 please see the chapter on kernel debugging in the developers' handbook
 to learn how to obtain the information necessary to debug this.
 
 Kris
 
State-Changed-From-To: open->closed 
State-Changed-By: kris 
State-Changed-When: Wed Sep 21 07:10:46 GMT 2005 
State-Changed-Why:  
Feedback timeout 

http://www.freebsd.org/cgi/query-pr.cgi?pr=82905 
>Unformatted:
