kern/168190: [pf] panic when using pf and route-to (maybe: bad fragment handling?)

Thu May 24 06:36:26 UTC 2012

On Wed, May 23, 2012 at 10:10:04PM +0000, Joerg Pulz wrote:

>  here is what i could get out.
>  I was unable to print *pfh and pfh->pfil_func, but i printed the other 
>  two and *ph, maybe this helps.

That looks corrupted: ph_type = 92404512, ph_nhooks = -512 makes no
sense to me.

Can you go up one stack frame (to #11), which should be ip_output()

509     /* Run through list of hooks for output packets. */
510     odst.s_addr = ip->ip_dst.s_addr;
511     ASSERT_HOST_BYTE_ORDER(m);
512     error = pfil_run_hooks(&V_inet_pfil_hook, &m, ifp, PFIL_OUT, inp);
513     if (error != 0 || m == NULL)
514             goto done;

and there print V_inet_pfil_hook?

Kind regards,
Daniel