From nobody Fri Feb 03 15:46:44 2023 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4P7g4h3cGXz3kRjF for ; Fri, 3 Feb 2023 15:46:44 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4P7g4h1TjRz3FPP for ; Fri, 3 Feb 2023 15:46:44 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1675439204; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=sv+9lEJbEknlAA6Mnfu/HglzBcK1Kzo88jQZzIN4tww=; b=gjRU1xIOYYloH+LdGQCemH/Rr0CnmWxaT1JZgMeRk6TuKHUtyLTcav1Eyh4+QYQigBGcII 1LQd6FOMH+/l0qZEEYC39Og2CBaOEUyswKLYvy3+uApkdpcV+Qbo6p5XGxE3bwcanTm3hR YedFK1jwpvd9XASkk3S6Xion5M+SJv7esN/ELqyuHft3qC7HOUJMb5xXZXWELyfH6Pi3C4 /3riSB2CvPvtBu63KqGdWCrWa2vCXIaUnazAhtj+a/09aMWR2BM8cWP8TbMQAHLrhCaB98 b9y73sUYsNmh3UJ45kHvwdm9XSKIGCN85O2mXwLTbU4vH0mygAE4YsOeyz5Xwg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1675439204; a=rsa-sha256; cv=none; b=R97wwRdaHnFQJ9uQvlHsyv9JSdvOI4aOHfY01wiQJmwxBgTNFJCnmnszHxpLzAM7sLaRLH JQOOx4+2DrVA4SDqfCPG5DyJHLwiMG0n1dn2H0qtdBM6h/DuKOOeeQnf7lqSXiILkZIWQ7 prN3cdIRI2NwCmV7jRG/rJk7YjAYKW/wj9gTePBcudBDAt2dxvO1DrSuOZYEpz7qgYKaFj S+JGbsJdJ5RkLZ+0VAXl5nC6LK6Z7Da1uKucWKXlpQOVuZaqCR3tfZupAovwLPOA0NOy6x viMDwmZHlrKaNf4os3oUh1bS/gWsxapk6VM7YuO4VI7mJAL59wFs8IAibMx14A== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4P7g4h0RZVzgKw for ; Fri, 3 Feb 2023 15:46:44 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 313FkioD038538 for ; Fri, 3 Feb 2023 15:46:44 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 313Fkh6e038537 for net@FreeBSD.org; Fri, 3 Feb 2023 15:46:43 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 266442] kernel page fault on packet with broken lengths if ipfilter is loaded Date: Fri, 03 Feb 2023 15:46:44 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: cy@FreeBSD.org X-Bugzilla-Status: In Progress X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: cy@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D266442 --- Comment #8 from Cy Schubert --- It was indeed an IP Filter bug. It was not telling pfil to drop the packet = when m_pullup() had freed the mbuf chain while failing. The bug likely exists in NetBSD too. I've sent them an email. This ticket will be closed after the patch has been MFCed to stable. --=20 You are receiving this mail because: You are on the CC list for the bug.=