[Bug 197286] Panic in IPv6 stack - 0xc0d0b1fc is in ip6_input (/usr/src/sys/netinet6/ip6_input.c:702)

Tue Mar 3 11:59:56 UTC 2015

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=197286

--- Comment #4 from Andrey V. Elsukov <ae at FreeBSD.org> ---
r274300 is very dangerous for merging to stable/10. Can you try this patch
instead? It disables LLE operations for tunneling interfaces, and therefore
ip6_input() will go through another code path for such packets.

Index: in6.c
===================================================================
--- in6.c    (revision 279514)
+++ in6.c    (working copy)
@@ -155,6 +155,8 @@ in6_ifaddloop(struct ifaddr *ifa)

     ia = ifa2ia6(ifa);
     ifp = ifa->ifa_ifp;
+    if (nd6_need_cache(ifp) == 0)
+        return;
     IF_AFDATA_LOCK(ifp);
     ifa->ifa_rtrequest = nd6_rtrequest;
     ln = lla_lookup(LLTABLE6(ifp), (LLE_CREATE | LLE_IFADDR |
Index: nd6.c
===================================================================
--- nd6.c    (revision 279514)
+++ nd6.c    (working copy)
@@ -2185,9 +2185,6 @@ nd6_need_cache(struct ifnet *ifp)
     case IFT_IEEE80211:
 #endif
     case IFT_INFINIBAND:
-    case IFT_GIF:        /* XXX need more cases? */
-    case IFT_PPP:
-    case IFT_TUNNEL:
     case IFT_BRIDGE:
     case IFT_PROPVIRTUAL:
         return (1);

-- 
You are receiving this mail because:
You are the assignee for the bug.
