From owner-freebsd-stable@FreeBSD.ORG Wed Aug 12 19:16:13 2009 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4497710656C3 for ; Wed, 12 Aug 2009 19:16:13 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from mail11.syd.optusnet.com.au (mail11.syd.optusnet.com.au [211.29.132.192]) by mx1.freebsd.org (Postfix) with ESMTP id 712CD8FC64 for ; Wed, 12 Aug 2009 19:16:12 +0000 (UTC) Received: from server.vk2pj.dyndns.org (c122-106-201-175.belrs3.nsw.optusnet.com.au [122.106.201.175]) by mail11.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id n7CJG9BX013280 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Thu, 13 Aug 2009 05:16:10 +1000 X-Bogosity: Ham, spamicity=0.000000 Received: from server.vk2pj.dyndns.org (localhost.vk2pj.dyndns.org [127.0.0.1]) by server.vk2pj.dyndns.org (8.14.3/8.14.3) with ESMTP id n7CJG94F075396 for ; Thu, 13 Aug 2009 05:16:09 +1000 (EST) (envelope-from peter@server.vk2pj.dyndns.org) Received: (from peter@localhost) by server.vk2pj.dyndns.org (8.14.3/8.14.3/Submit) id n7CJG93a075395 for freebsd-stable@freebsd.org; Thu, 13 Aug 2009 05:16:09 +1000 (EST) (envelope-from peter) Date: Thu, 13 Aug 2009 05:16:09 +1000 From: Peter Jeremy To: freebsd-stable@freebsd.org Message-ID: <20090812191609.GA60973@server.vk2pj.dyndns.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="YZ5djTAD1cGYuMQK" Content-Disposition: inline X-PGP-Key: http://members.optusnet.com.au/peterjeremy/pubkey.asc User-Agent: Mutt/1.5.19 (2009-01-05) Subject: Panic due to junk pointer in pf(4) X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2009 19:16:15 -0000 --YZ5djTAD1cGYuMQK Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable My firewall (7.2p3/i386) recently panic'd: Fatal trap 12: page fault while in kernel mode fault virtual address =3D 0x1065e fault code =3D supervisor read, page not present =2E.. I have a crashdump that shows: #6 0xc06c9c1b in calltrap () at /usr/src/sys/i386/i386/exception.s:159 #7 0xc044ecd0 in pf_state_tree_lan_ext_RB_REMOVE_COLOR (head=3D0xc2a256a8,= =20 parent=3D0xc442c6a0, elm=3D0xc40aa8e0) at /usr/src/sys/contrib/pf/net/p= f.c:391 #8 0xc044ef79 in pf_state_tree_lan_ext_RB_REMOVE (head=3D0xc2a256a8,=20 elm=3D0xc404a11c) at /usr/src/sys/contrib/pf/net/pf.c:391 #9 0xc045383e in pf_unlink_state (cur=3D0xc404a11c) at /usr/src/sys/contrib/pf/net/pf.c:1158 #10 0xc0456b6e in pf_purge_expired_states (maxcheck=3D119) at /usr/src/sys/contrib/pf/net/pf.c:1242 #11 0xc04570f9 in pf_purge_thread (v=3D0x0) at /usr/src/sys/contrib/pf/net/pf.c:998 #12 0xc0535781 in fork_exit (callout=3D0xc0456f50 , arg=3D= 0x0,=20 frame=3D0xd2d4cd38) at /usr/src/sys/kern/kern_fork.c:810 #13 0xc06c9c90 in fork_trampoline () at /usr/src/sys/i386/i386/exception.s:= 264 Working up, 'parent' in pf_state_tree_lan_ext_RB_REMOVE_COLOR() has a garbage u.s.entry_lan_ext: (kgdb) p parent->u $3 =3D {s =3D {entry_lan_ext =3D {rbe_left =3D 0x10602, rbe_right =3D 0x500= 00,=20 rbe_parent =3D 0xc40aa8e0, rbe_color =3D -1002258432}, entry_ext_gwy = =3D { rbe_left =3D 0xc3c42238, rbe_right =3D 0x1, rbe_parent =3D 0x0,=20 rbe_color =3D 0}, entry_id =3D {rbe_left =3D 0xc3c54470, rbe_right = =3D 0x0,=20 rbe_parent =3D 0x0, rbe_color =3D 0}, entry_list =3D {tqe_next =3D 0x= c41f9e6c,=20 tqe_prev =3D 0x0}, kif =3D 0xc442c58c},=20 ifname =3D "\002\006\001\000\000\000\005\000=E0=A8\n=C4\000=C0B=C4"} Does anyone have any suggestions on where to look next? --=20 Peter Jeremy --YZ5djTAD1cGYuMQK Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.12 (FreeBSD) iEYEARECAAYFAkqDFPkACgkQ/opHv/APuIdIuACfYVGdmiATGpFiljLb+KWrrC8u EtoAn2P0l/+NRGB9IcJYYjR/ovlnCZ1E =7tL1 -----END PGP SIGNATURE----- --YZ5djTAD1cGYuMQK--