Date: Fri, 18 Aug 2023 21:45:29 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 273207] pf_syncookie_mac for IPv6 random cause panic Message-ID: <bug-273207-227-tpMrbjpyqQ@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-273207-227@https.bugs.freebsd.org/bugzilla/> References: <bug-273207-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D273207 Rin Cat <dev@rincat.ch> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|Closed |New Resolution|Not Accepted |--- --- Comment #4 from Rin Cat <dev@rincat.ch> --- I can confirm it also happened in the base kernel `FreeBSD XXX 13.2-RELEASE-p1 FreeBSD 13.2-RELEASE-p1 releng/13.2-n254621-08b87f63a04 SMP amd64` ``` Fatal trap 12: page fault while in kernel mode cpuid =3D 1; apic id =3D 02 fault virtual address =3D 0x0 fault code =3D supervisor read data, page not present instruction pointer =3D 0x20:0xffffffff8114d675 stack pointer =3D 0x28:0xfffffe00c5fc38b0 frame pointer =3D 0x28:0xfffffe00c5fc38b0 code segment =3D base 0x0, limit 0xfffff, type 0x1b =3D DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags =3D interrupt enabled, resume, IOPL =3D 0 current process =3D 12 (swi1: netisr 0) trap number =3D 12 panic: page fault cpuid =3D 1 time =3D 1692394742 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe00c5fc3= 670 vpanic() at vpanic+0x151/frame 0xfffffe00c5fc36c0 panic() at panic+0x43/frame 0xfffffe00c5fc3720 trap_fatal() at trap_fatal+0x387/frame 0xfffffe00c5fc3780 trap_pfault() at trap_pfault+0x65/frame 0xfffffe00c5fc37e0 calltrap() at calltrap+0x8/frame 0xfffffe00c5fc37e0 --- trap 0xc, rip =3D 0xffffffff8114d675, rsp =3D 0xfffffe00c5fc38b0, rbp = =3D 0xfffffe00c5fc38b0 --- memmove_erms() at memmove_erms+0xe5/frame 0xfffffe00c5fc38b0 SipBuf() at SipBuf+0x49/frame 0xfffffe00c5fc38e0 SipHash_Update() at SipHash_Update+0x40/frame 0xfffffe00c5fc3910 pf_syncookie_mac() at pf_syncookie_mac+0xda/frame 0xfffffe00c5fc3990 pf_syncookie_check() at pf_syncookie_check+0x78/frame 0xfffffe00c5fc39b0 pf_test_state_tcp() at pf_test_state_tcp+0x353/frame 0xfffffe00c5fc3b10 pf_test6() at pf_test6+0xd8a/frame 0xfffffe00c5fc3c90 pf_check6_in() at pf_check6_in+0x6b/frame 0xfffffe00c5fc3cc0 pfil_run_hooks() at pfil_run_hooks+0xb7/frame 0xfffffe00c5fc3d00 ip6_input() at ip6_input+0x625/frame 0xfffffe00c5fc3de0 swi_net() at swi_net+0x1a1/frame 0xfffffe00c5fc3e60 ithread_loop() at ithread_loop+0x259/frame 0xfffffe00c5fc3ef0 fork_exit() at fork_exit+0x80/frame 0xfffffe00c5fc3f30 fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe00c5fc3f30 --- trap 0, rip =3D 0, rsp =3D 0, rbp =3D 0 --- Timeout initializing vt_vga Uptime: 47s Dumping 1065 out of 16209 MB:..2%..11%..22%..31%..41%..52%..61%..71%..82%..= 91% Dump complete ---<<BOOT>>--- ``` --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-273207-227-tpMrbjpyqQ>