[Bug 273207] pf_syncookie_mac for IPv6 random cause panic

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 273207] pf_syncookie_mac for IPv6 random cause panic"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Fri, 18 Aug 2023 21:45:29 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=273207

Rin Cat <dev@rincat.ch> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|Closed                      |New
         Resolution|Not Accepted                |---

--- Comment #4 from Rin Cat <dev@rincat.ch> ---
I can confirm it also happened in the base kernel

`FreeBSD XXX 13.2-RELEASE-p1 FreeBSD 13.2-RELEASE-p1
releng/13.2-n254621-08b87f63a04 SMP amd64`

```
Fatal trap 12: page fault while in kernel mode
cpuid = 1; apic id = 02
fault virtual address       = 0x0
fault code          = supervisor read data, page not present
instruction pointer = 0x20:0xffffffff8114d675
stack pointer               = 0x28:0xfffffe00c5fc38b0
frame pointer               = 0x28:0xfffffe00c5fc38b0
code segment                = base 0x0, limit 0xfffff, type 0x1b
                   = DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags   = interrupt enabled, resume, IOPL = 0
current process            = 12 (swi1: netisr 0)
trap number                = 12
panic: page fault
cpuid = 1
time = 1692394742
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe00c5fc3670
vpanic() at vpanic+0x151/frame 0xfffffe00c5fc36c0
panic() at panic+0x43/frame 0xfffffe00c5fc3720
trap_fatal() at trap_fatal+0x387/frame 0xfffffe00c5fc3780
trap_pfault() at trap_pfault+0x65/frame 0xfffffe00c5fc37e0
calltrap() at calltrap+0x8/frame 0xfffffe00c5fc37e0
--- trap 0xc, rip = 0xffffffff8114d675, rsp = 0xfffffe00c5fc38b0, rbp =
0xfffffe00c5fc38b0 ---
memmove_erms() at memmove_erms+0xe5/frame 0xfffffe00c5fc38b0
SipBuf() at SipBuf+0x49/frame 0xfffffe00c5fc38e0
SipHash_Update() at SipHash_Update+0x40/frame 0xfffffe00c5fc3910
pf_syncookie_mac() at pf_syncookie_mac+0xda/frame 0xfffffe00c5fc3990
pf_syncookie_check() at pf_syncookie_check+0x78/frame 0xfffffe00c5fc39b0
pf_test_state_tcp() at pf_test_state_tcp+0x353/frame 0xfffffe00c5fc3b10
pf_test6() at pf_test6+0xd8a/frame 0xfffffe00c5fc3c90
pf_check6_in() at pf_check6_in+0x6b/frame 0xfffffe00c5fc3cc0
pfil_run_hooks() at pfil_run_hooks+0xb7/frame 0xfffffe00c5fc3d00
ip6_input() at ip6_input+0x625/frame 0xfffffe00c5fc3de0
swi_net() at swi_net+0x1a1/frame 0xfffffe00c5fc3e60
ithread_loop() at ithread_loop+0x259/frame 0xfffffe00c5fc3ef0
fork_exit() at fork_exit+0x80/frame 0xfffffe00c5fc3f30
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe00c5fc3f30
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
Timeout initializing vt_vga
Uptime: 47s
Dumping 1065 out of 16209 MB:..2%..11%..22%..31%..41%..52%..61%..71%..82%..91%
Dump complete
---<<BOOT>>---
```

-- 
You are receiving this mail because:
You are the assignee for the bug.