From nobody Fri Nov 17 15:20:52 2023
X-Original-To: ipfw@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4SX0wN44pJz514vk
	for <ipfw@mlmmj.nyi.freebsd.org>; Fri, 17 Nov 2023 15:20:52 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4SX0wN2zkkz4J15
	for <ipfw@FreeBSD.org>; Fri, 17 Nov 2023 15:20:52 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1700234452;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=gnSucbPjXx2yJ6eZJK5Qj1+uekuEhAjIDE2/zxCD0IE=;
	b=WD7QMRy41poaTMYLM75QMCNGUsmFGXOq+Pz9yVv0VkuAJ1+wYRGw9VfQPHloZSNQ3HaL9F
	Thtr/r/Z9x6w5xsqaPZqJR7CKZHgtgttGWjAhRtT/JTLiU3bgDE2psy5s+ufrLv4x5Tfx3
	aG2qCwVyPb2wGcpy4vSnhOa9NKPA42trwhKXBsoU5dwOH40W0QL+ZGirBrun/j9lCBLFfA
	bI7Iu8i0nBn9bjm3EnBZRfT7r6yDLVyJyNQa/mwsCsaksDUDbLu9y0rMtffydKkG5sJkjT
	63QgR2BG/JmV6hH16c3V7lzJRcqFzGxjFt6di5XR4GKJuCvgBRIn9mekFDV/AQ==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	none
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1700234452; a=rsa-sha256; cv=none;
	b=IWGOGHKPoREqVKqBuXm2gcOEsrSQpU/VmMisuMh5DvXe9zB1NLWUFV88oktWVcaROdkI/z
	wueOqBBb77rz610jbbN5PWXgPjAlMl7Xpg/mNooM/8v2+e1J7LilO+IHcgN+FglvR74Jz7
	HYb2LwsyrcpxCyhEMPVUCG4JG0KjrJJuGJ2eOJmPUH9/jAB495vKnBH9qRUWQPwEnRGlqv
	DXs4DeEq6JVwns3o73361p2m4Ts3Sw5YU6LpwA2LBLFviHUq/1h7HdE9qRJqRxb7DlF9zT
	AE8Ww1QmNIVTgyjh35CwJHURT19RcL81zOto2h7V3+6Zm+eUGmpDYv9wCKU52Q==
Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4SX0wN1yMSznvH
	for <ipfw@FreeBSD.org>; Fri, 17 Nov 2023 15:20:52 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org ([127.0.1.5])
	by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 3AHFKq8Q062706
	for <ipfw@FreeBSD.org>; Fri, 17 Nov 2023 15:20:52 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
Received: (from www@localhost)
	by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 3AHFKqVq062672
	for ipfw@FreeBSD.org; Fri, 17 Nov 2023 15:20:52 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f
From: bugzilla-noreply@freebsd.org
To: ipfw@FreeBSD.org
Subject: [Bug 132774] [ipfw] IPFW with uid/gid/jail rules may lead to lockup
Date: Fri, 17 Nov 2023 15:20:52 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: changed
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Base System
X-Bugzilla-Component: kern
X-Bugzilla-Version: 13.2-STABLE
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: Affects Only Me
X-Bugzilla-Who: vincent.jancso@outlook.com
X-Bugzilla-Status: Open
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: Normal
X-Bugzilla-Assigned-To: ipfw@FreeBSD.org
X-Bugzilla-Flags: 
X-Bugzilla-Changed-Fields: 
Message-ID: <bug-132774-8303-uCUHskK99y@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-132774-8303@https.bugs.freebsd.org/bugzilla/>
References: <bug-132774-8303@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-ipfw
List-Help: <mailto:freebsd-ipfw+help@freebsd.org>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Subscribe: <mailto:freebsd-ipfw+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-ipfw+unsubscribe@freebsd.org>
Sender: owner-freebsd-ipfw@freebsd.org
MIME-Version: 1.0

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D132774

--- Comment #6 from vincent.jancso@outlook.com ---
Update: I got the host to panic with a kernel debug build. Same stack trace=
 on
multiple hosts.

panic: rw_rlock: wlock already held for tcpinp @
/usr/src/sys/netinet/in_pcb.c:2529
cpuid =3D 6
time =3D 1700228046
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe020367a=
020
vpanic() at vpanic+0x151/frame 0xfffffe020367a070
panic() at panic+0x43/frame 0xfffffe020367a0d0
__rw_rlock_int() at __rw_rlock_int+0x10e/frame 0xfffffe020367a100
in_pcblookup_hash() at in_pcblookup_hash+0x4f/frame 0xfffffe020367a130
in_pcblookup_mbuf() at in_pcblookup_mbuf+0x24/frame 0xfffffe020367a150
check_uidgid() at check_uidgid+0x1e7/frame 0xfffffe020367a1a0
ipfw_chk() at ipfw_chk+0x12c3/frame 0xfffffe020367a3f0
ipfw_check_packet() at ipfw_check_packet+0xec/frame 0xfffffe020367a4d0
pfil_run_hooks() at pfil_run_hooks+0xb7/frame 0xfffffe020367a510
ip_output() at ip_output+0xb56/frame 0xfffffe020367a640
tcp_respond() at tcp_respond+0xb32/frame 0xfffffe020367a720
tcp_twcheck() at tcp_twcheck+0x2e6/frame 0xfffffe020367a780
tcp_input_with_port() at tcp_input_with_port+0x7b0/frame 0xfffffe020367a8b0
tcp_input() at tcp_input+0xb/frame 0xfffffe020367a8c0
ip_input() at ip_input+0x18b/frame 0xfffffe020367a950
netisr_dispatch_src() at netisr_dispatch_src+0xb1/frame 0xfffffe020367a9b0
ether_demux() at ether_demux+0x17c/frame 0xfffffe020367a9e0
ether_nh_input() at ether_nh_input+0x40b/frame 0xfffffe020367aa40
netisr_dispatch_src() at netisr_dispatch_src+0xb1/frame 0xfffffe020367aaa0
ether_input() at ether_input+0x99/frame 0xfffffe020367ab00
ether_demux() at ether_demux+0xcd/frame 0xfffffe020367ab30
ether_nh_input() at ether_nh_input+0x40b/frame 0xfffffe020367ab90
netisr_dispatch_src() at netisr_dispatch_src+0xb1/frame 0xfffffe020367abf0
ether_input() at ether_input+0x99/frame 0xfffffe020367ac50
tcp_lro_flush() at tcp_lro_flush+0x304/frame 0xfffffe020367ac80
tcp_lro_rx_done() at tcp_lro_rx_done+0x3a/frame 0xfffffe020367aca0
tcp_lro_flush_all() at tcp_lro_flush_all+0x175/frame 0xfffffe020367acf0
iflib_rxeof() at iflib_rxeof+0xe2c/frame 0xfffffe020367ae00
_task_fn_rx() at _task_fn_rx+0x7a/frame 0xfffffe020367ae40
gtaskqueue_run_locked() at gtaskqueue_run_locked+0xa7/frame 0xfffffe020367a=
ec0
gtaskqueue_thread_loop() at gtaskqueue_thread_loop+0xc2/frame
0xfffffe020367aef0
fork_exit() at fork_exit+0x80/frame 0xfffffe020367af30
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe020367af30
--- trap 0, rip =3D 0, rsp =3D 0, rbp =3D 0 ---
KDB: enter: panic

--=20
You are receiving this mail because:
You are the assignee for the bug.=