From owner-freebsd-stable@FreeBSD.ORG  Tue Nov 14 09:31:07 2006
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
X-Original-To: freebsd-stable@freebsd.org
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2A56916A417
	for <freebsd-stable@freebsd.org>; Tue, 14 Nov 2006 09:31:07 +0000 (UTC)
	(envelope-from rwatson@FreeBSD.org)
Received: from cyrus.watson.org (cyrus.watson.org [209.31.154.42])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 877A043D77
	for <freebsd-stable@freebsd.org>; Tue, 14 Nov 2006 09:31:05 +0000 (GMT)
	(envelope-from rwatson@FreeBSD.org)
Received: from fledge.watson.org (fledge.watson.org [209.31.154.41])
	by cyrus.watson.org (Postfix) with ESMTP id 0540546E68;
	Tue, 14 Nov 2006 04:31:05 -0500 (EST)
Date: Tue, 14 Nov 2006 09:31:04 +0000 (GMT)
From: Robert Watson <rwatson@FreeBSD.org>
X-X-Sender: robert@fledge.watson.org
To: Steve Wills <steve@stevenwills.com>
In-Reply-To: <9ABCABF7-2D44-496D-84A2-4C3CA4527355@stevenwills.com>
Message-ID: <20061114092953.R50450@fledge.watson.org>
References: <9ABCABF7-2D44-496D-84A2-4C3CA4527355@stevenwills.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: freebsd-stable@freebsd.org
Subject: Re: audit and quota don't get along
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Nov 2006 09:31:07 -0000

On Sun, 12 Nov 2006, Steve Wills wrote:

> I thought I'd try out the new audit support in 6.2-PRE and discovered that 
> having quota enabled causes:
>
> Fatal trap 12: page fault while in kernel mode
> fault virtual address   = 0x0
> fault code              = supervisor read, page not present
> instruction pointer     = 0x20:0xc0695278
> stack pointer           = 0x28:0xce19ac34
> frame pointer           = 0x28:0xce19ac3c
> code segment            = base 0x0, limit 0xfffff, type 0x1b
>                       = DPL 0, pres 1, def32 1, gran 1
> processor eflags        = resume, IOPL = 0
> current process         = 564 (auditd)
> trap number             = 12
> panic: page fault
>
> when trying to start auditd. I can provide backtrace, but it seems pretty 
> reproducible.

A backtrace would be helpful.

Are you using quotas on the file system targeted by the audit trail, or just 
on the system in general?  Is compiling quotas in sufficient to reproduce the 
problem, or must quotas be enabled on at least one file system?

Thanks,

Robert N M Watson
Computer Laboratory
University of Cambridge