[Bug 205743] null pointer dereference in PF running a vimage jail
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Thu Dec 31 20:56:47 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=205743
--- Comment #4 from gila <ing.gila at gmail.com> ---
I've applied the patch against 0efa1469be94566c09b9f4ce538c28e92d26026c and
there is another panic.
(kgdb) bt
#0 doadump (textdump=0x1) at pcpu.h:221
During symbol reading, Incomplete CFI data; unspecified registers at
0xffffffff80a9ed76.
#1 0xffffffff80a9eaa3 in kern_reboot (howto=0x104) at
/usr/src/sys/kern/kern_shutdown.c:364
#2 0xffffffff80a9f00b in vpanic (fmt=<value optimized out>, ap=<value
optimized out>)
at /usr/src/sys/kern/kern_shutdown.c:757
#3 0xffffffff80a9ee43 in panic (fmt=0x0) at
/usr/src/sys/kern/kern_shutdown.c:688
#4 0xffffffff8038a3b7 in db_panic (addr=<value optimized out>, have_addr=0x0,
count=0x0, modif=0x0)
at /usr/src/sys/ddb/db_command.c:473
#5 0xffffffff8038993e in db_command (cmd_table=0x0) at
/usr/src/sys/ddb/db_command.c:440
#6 0xffffffff803896d4 in db_command_loop () at
/usr/src/sys/ddb/db_command.c:493
#7 0xffffffff8038c1db in db_trap (type=<value optimized out>, code=0x0) at
/usr/src/sys/ddb/db_main.c:251
#8 0xffffffff80ae3803 in kdb_trap (type=0xc, code=0x0, tf=<value optimized
out>) at /usr/src/sys/kern/subr_kdb.c:654
#9 0xffffffff80f8e711 in trap_fatal (frame=0xfffffe0231d4e1c0, eva=<value
optimized out>)
at /usr/src/sys/amd64/amd64/trap.c:829
#10 0xffffffff80f8e944 in trap_pfault (frame=0xfffffe0231d4e1c0,
usermode=<value optimized out>)
at /usr/src/sys/amd64/amd64/trap.c:684
#11 0xffffffff80f8e0fe in trap (frame=0xfffffe0231d4e1c0) at
/usr/src/sys/amd64/amd64/trap.c:435
#12 0xffffffff80f71337 in calltrap () at
/usr/src/sys/amd64/amd64/exception.S:234
#13 0xffffffff80d22752 in pfsync_clear_states (creatorid=<value optimized out>,
ifname=0x0)
at /usr/src/sys/netpfil/pf/if_pfsync.c:1973
#14 0xffffffff80d3bac5 in pfioctl (dev=<value optimized out>, cmd=<value
optimized out>, addr=0xfffff80006f62500 "",
flags=<value optimized out>, td=<value optimized out>) at
/usr/src/sys/netpfil/pf/pf_ioctl.c:1692
#15 0xffffffff8095a9ab in devfs_ioctl_f (fp=0xfffff800068e12d0, com=0xc0e04412,
data=0xfffff80006f62500,
cred=<value optimized out>, td=0xfffff8004649e000) at
/usr/src/sys/fs/devfs/devfs_vnops.c:813
#16 0xffffffff80b00a3c in kern_ioctl (td=0xfffff8004649e000, fd=<value
optimized out>, com=0x0,
data=0xfffff80006f62500 "") at file.h:324
#17 0xffffffff80b005be in sys_ioctl (td=0xfffff8004649e000,
uap=0xfffffe0231d4ea40)
at /usr/src/sys/kern/sys_generic.c:723
#18 0xffffffff80f8f0e8 in amd64_syscall (td=0xfffff8004649e000, traced=0x0) at
subr_syscall.c:135
#19 0xffffffff80f7161b in Xfast_syscall () at
/usr/src/sys/amd64/amd64/exception.S:394
#20 0x0000000800de94ba in ?? ()
Now the panic occurs in pfsync_clear_states()
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the freebsd-amd64
mailing list