Hi all,
when sending lot of traffic over firewall with pflow and if I run
ifconfig pflow0 destroy I'm getting kernel: protection fault trap.
This is latest snapshot:
OpenBSD 7.2-beta (GENERIC.MP) #677: Mon Aug 8 18:58:49 MDT 2022
[email protected]:/usr/src/sys/arch/amd64/compile/GENERIC.MP
r620-1# ifconfig pflow0 destroy
kernel: protection fault trap, code=0
Stopped at in_nam2sin+0x29: cmpb $0x2,0x1(%rdx)
ddb{2}> show panic
the kernel did not panic
ddb{2}> trace
in_nam2sin(fffffd80cd292b00,ffff800022d66028) at in_nam2sin+0x29
udp_output(fffffd83b2c1ba00,fffffd80a3abf800,fffffd80cd292b00,0) at
udp_output+0xcc
sosend(fffffd83b2c1c558,fffffd80cd292b00,0,fffffd80a3abf800,0,0) at
sosend+0x385
pflow_output_process(ffff8000008ca000) at pflow_output_process+0x67
taskq_thread(ffff800000030100) at taskq_thread+0x100
end trace frame: 0x0, count: -5
ddb{2}>
ddb{2}> show reg
rdi 0xfffffd80cd292b00
rsi 0xffff800022d66028
rbp 0xffff800022d65ff0
rbx 0
rdx 0x4a1336b5a404c64e
rcx 0xce2fdf4a
rax 0x2f
r8 0x5b8
r9 0
r10 0xffffffffffffffff
r11 0x3b190b40737cbe31
r12 0xfffffd80a3abf800
r13 0x28
r14 0x5b8
r15 0xfffffd83b2c1ba00
rip 0xffffffff81e494f9 in_nam2sin+0x29
cs 0x8
rflags 0x10286 __ALIGN_SIZE+0xf286
rsp 0xffff800022d65fe0
ss 0x10
in_nam2sin+0x29: cmpb $0x2,0x1(%rdx)
ddb{2}>
ddb{2}> ps
PID TID PPID UID S FLAGS WAIT COMMAND
97584 114469 17291 0 7 0x3 ifconfig
17291 147440 1 0 3 0x10008b sigsusp ksh
61667 371523 1 0 3 0x100098 kqread cron
62419 388523 46193 95 3 0x1100092 kqread smtpd
43433 312290 46193 103 3 0x1100092 kqread smtpd
45389 509524 46193 95 3 0x1100092 kqread smtpd
68113 112694 46193 95 3 0x100092 kqread smtpd
12544 45817 46193 95 3 0x1100092 kqread smtpd
35310 168879 46193 95 3 0x1100092 kqread smtpd
46193 474443 1 0 3 0x100080 kqread smtpd
66976 365265 1 0 3 0x88 kqread sshd
45262 438619 1 0 3 0x100080 kqread ntpd
23411 270550 91687 83 3 0x100092 kqread ntpd
91687 425806 1 83 3 0x1100092 kqread ntpd
87999 345906 43 73 3 0x1100090 kqread syslogd
43 197785 1 0 3 0x100082 netio syslogd
53263 391295 0 0 3 0x14200 bored smr
53027 160140 0 0 3 0x14200 pgzero zerothread
93436 395928 0 0 3 0x14200 aiodoned aiodoned
6422 376977 0 0 3 0x14200 syncer update
12666 145796 0 0 3 0x14200 cleaner cleaner
5339 104878 0 0 3 0x14200 reaper reaper
18437 379590 0 0 3 0x14200 pgdaemon pagedaemon
95609 15815 0 0 3 0x14200 usbtsk usbtask
34720 188775 0 0 3 0x14200 usbatsk usbatsk
28283 197132 0 0 3 0x40014200 acpi0 acpi0
32308 129369 0 0 7 0x40014200 idle5
91423 465223 0 0 7 0x40014200 idle4
82830 201537 0 0 7 0x40014200 idle3
72849 294469 0 0 3 0x40014200 idle2
82591 160582 0 0 3 0x40014200 idle1
19010 51380 0 0 3 0x14200 bored sensors
46387 318985 0 0 3 0x14200 netlock softnet
72266 368671 0 0 3 0x14200 netlock softnet
*31740 217354 0 0 7 0x14200 softnet
63482 377439 0 0 3 0x14200 netlock softnet
66088 38816 0 0 3 0x14200 bored systqmp
72341 421031 0 0 3 0x14200 bored systq
43727 54109 0 0 3 0x40014200 bored softclock
4948 138264 0 0 7 0x40014200 idle0
1 135757 0 0 3 0x82 wait init
0 0 -1 0 3 0x10200 scheduler swapper
ddb{2}> ps /o
TID PID UID PRFLAGS PFLAGS CPU COMMAND
114469 97584 0 0x3 0 1 ifconfig
*217354 31740 0 0x14000 0x200 2K softnet
ddb{2}>
ddb{2}> trace /t 0t114469
sleep_finish(ffff800022e258d0,1) at sleep_finish+0xfe
rw_enter(ffffffff822b5b90,1) at rw_enter+0x1cb
soclose(fffffd83b2c1c558,80) at soclose+0x27
pflow_clone_destroy(ffff8000008ca000) at pflow_clone_destroy+0xf3
if_clone_destroy(ffff800022e25aa0) at if_clone_destroy+0xd9
soo_ioctl(fffffd83aeb2de98,80206979,ffff800022e25aa0,ffff800022de8d20)
at soo_ioctl+0x161
sys_ioctl(ffff800022de8d20,ffff800022e25bb0,ffff800022e25c10) at
sys_ioctl+0x2c4
syscall(ffff800022e25c80) at syscall+0x384
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ffffcd9c0, count: -9
ddb{2}> trace /t 0t217354
end trace frame: 0x0, count: -1
ddb{2}>
ddb{2}> trace /t 0t318985
sleep_finish(ffff800022d71db0,1) at sleep_finish+0xfe
rw_enter(ffffffff822b5b90,2) at rw_enter+0x1cb
if_input_process(ffff800000095048,ffff800022d71e88) at if_input_process+0x43
ifiq_process(ffff80000009a300) at ifiq_process+0x69
taskq_thread(ffff800000030200) at taskq_thread+0x100
end trace frame: 0x0, count: -5
ddb{2}> trace /t 0t368671
sleep_finish(ffff800022d6ca30,1) at sleep_finish+0xfe
rw_enter(ffffffff822b5b90,2) at rw_enter+0x1cb
if_input_process(ffff800000095048,ffff800022d6cb08) at if_input_process+0x43
ifiq_process(ffff80000009a200) at ifiq_process+0x69
taskq_thread(ffff800000030180) at taskq_thread+0x100
end trace frame: 0x0, count: -5
ddb{2}> trace /t 0t377439
sleep_finish(ffff800022d605e0,1) at sleep_finish+0xfe
rw_enter(ffffffff822b5b90,1) at rw_enter+0x1cb
pfsync_send_dispatch(ffffffff8231db08) at pfsync_send_dispatch+0x3c
taskq_thread(ffff800000030080) at taskq_thread+0x100
end trace frame: 0x0, count: -4
ddb{2}> trace /t 0t38816
sleep_finish(ffff800022d5a250,1) at sleep_finish+0xfe
msleep(ffffffff822af710,ffffffff822af728,20,ffffffff81f5bc09,0) at
msleep+0xc7
taskq_next_work(ffffffff822af710,ffff800022d5a310) at taskq_next_work+0x61
taskq_thread(ffffffff822af710) at taskq_thread+0xeb
end trace frame: 0x0, count: -4
ddb{2}> trace /t 0t421031
sleep_finish(ffff800022d546f0,1) at sleep_finish+0xfe
msleep(ffffffff822af6c0,ffffffff822af6d8,20,ffffffff81f5bc09,0) at
msleep+0xc7
taskq_next_work(ffffffff822af6c0,ffff800022d547b0) at taskq_next_work+0x61
taskq_thread(ffffffff822af6c0) at taskq_thread+0xeb
end trace frame: 0x0, count: -4
ddb{2}>
ddb{2}> mach ddbcpu 0
Stopped at x86_ipi_db+0x12: leave
ddb{0}> mach ddbcpu 1
Stopped at x86_ipi_db+0x12: leave
ddb{1}> mach ddbcpu 2
Stopped at in_nam2sin+0x29: cmpb $0x2,0x1(%rdx)
ddb{2}> mach ddbcpu 3
Stopped at x86_ipi_db+0x12: leave
ddb{3}> mach ddbcpu 4
Stopped at x86_ipi_db+0x12: leave
ddb{4}> mach ddbcpu 5
Stopped at x86_ipi_db+0x12: leave
