Date: Wed, 17 Feb 2021 20:27:57 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 253587] pf: page fault in pf_pull_hdr Message-ID: <bug-253587-227-CpnPPiMGTU@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-253587-227@https.bugs.freebsd.org/bugzilla/> References: <bug-253587-227@https.bugs.freebsd.org/bugzilla/>
index | next in thread | previous in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=253587 --- Comment #2 from Kristof Provost <kp@freebsd.org> --- Best theory I have so far is that we're getting an invalid mbuf (chain) from the driver. That is, our initial mbuf contains valid header information, but has m_len set to 0. When we try to m_copydata() we try to find the first mbuf in the chain that contains byte 'off', which makes us run straight off the end of the mbuf chain and panic. That'd likely make it a driver issue rather than a pf problem. -- You are receiving this mail because: You are the assignee for the bug.help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-253587-227-CpnPPiMGTU>