From nobody@FreeBSD.org  Mon Jan 28 18:54:28 2008
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id B622E16A418
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 28 Jan 2008 18:54:28 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [IPv6:2001:4f8:fff6::21])
	by mx1.freebsd.org (Postfix) with ESMTP id A604C13C47E
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 28 Jan 2008 18:54:28 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.14.2/8.14.2) with ESMTP id m0SIqiBX003020
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 28 Jan 2008 18:52:44 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.14.2/8.14.1/Submit) id m0SIqiBk003019;
	Mon, 28 Jan 2008 18:52:44 GMT
	(envelope-from nobody)
Message-Id: <200801281852.m0SIqiBk003019@www.freebsd.org>
Date: Mon, 28 Jan 2008 18:52:44 GMT
From: Stefan Krger <stadtkind2@gmx.de>
To: freebsd-gnats-submit@FreeBSD.org
Subject: ipnat -s panic's FreeBSD 7.0-PRERELEASE
X-Send-Pr-Version: www-3.1
X-GNATS-Notify:

>Number:         120092
>Category:       kern
>Synopsis:       [panic] ipnat(8): ipnat -s panics FreeBSD 7.0-PRERELEASE
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Jan 28 19:00:02 UTC 2008
>Closed-Date:    Sun Jul 06 09:03:29 UTC 2008
>Last-Modified:  Sun Jul 06 09:03:29 UTC 2008
>Originator:     Stefan Krger
>Release:        7.0-PRERELEASE from 27.01.2008
>Organization:
None
>Environment:
FreeBSD localhost 7.0-PRERELEASE FreeBSD 7.0-PRERELEASE #15: Sun Jan 27 12:53:09 CET 2008     root@localhost:/usr/obj/usr/src/sys/ULE  i386
>Description:
here's the backtrace:

$ kgdb -q kernel.debug vmcore.3

Unread portion of the kernel message buffer:
Kernel page fault with the following non-sleepable locks held:
shared rw ipf filter load/unload mutex r = 0 (0xc094e8a0) locked @ /usr/src/sys/modules/ipfilter/../../contrib/ipfilter/netinet/ip_fil_freebsd.c:350


Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address   = 0x28202000
fault code              = supervisor write, page not present
instruction pointer     = 0x20:0xc073b706
stack pointer           = 0x28:0xe6636de8
frame pointer           = 0x28:0xe6637bb8
code segment            = base 0x0, limit 0xfffff, type 0x1b
                        = DPL 0, pres 1, def32 1, gran 1
processor eflags        = interrupt enabled, resume, IOPL = 0
current process         = 2990 (ipnat)
trap number             = 12
panic: page fault
cpuid = 0
Uptime: 6h31m26s
Physical memory: 1015 MB
Dumping 156 MB: 141 125 109 93 77 61 45 29 13

#0  doadump () at pcpu.h:195
195             __asm __volatile("movl %%fs:0,%0" : "=r" (td));
(kgdb) bt
#0  doadump () at pcpu.h:195
#1  0xc052b3ee in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:409
#2  0xc052b67e in panic (fmt=Variable "fmt" is not available.
) at /usr/src/sys/kern/kern_shutdown.c:563
#3  0xc073d54c in trap_fatal (frame=0xe6636da8, eva=673193984)
    at /usr/src/sys/i386/i386/trap.c:899
#4  0xc073de6d in trap (frame=0xe6636da8) at /usr/src/sys/i386/i386/trap.c:280
#5  0xc072526b in calltrap () at /usr/src/sys/i386/i386/exception.s:139
#6  0xc073b706 in generic_copyout () at /usr/src/sys/i386/i386/support.s:772
Previous frame inner to this frame (corrupt stack?)
(kgdb) list *0xc073b706
0xc073b706 is at /usr/src/sys/i386/i386/support.s:773.
768             ALIGN_TEXT
769     slow_copyout:
770     #endif
771             shrl    $2,%ecx
772             cld
773             rep
774             movsl
775             movb    %bl,%cl
776             andb    $3,%cl
777             rep
(kgdb)

>How-To-Repeat:
run 'ipnat -s' as root
>Fix:


>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->feedback 
State-Changed-By: gonzo 
State-Changed-When: Sat Jul 5 21:17:32 UTC 2008 
State-Changed-Why:  
Waiting for some feedback 

http://www.freebsd.org/cgi/query-pr.cgi?pr=120092 

From: Oleksandr Tymoshenko <gonzo@freebsd.org>
To: Stefan =?koi8-r?Q?Kr=FCger?= <stadtkind2@gmx.de>
Cc: bug-followup@FreeBSD.org
Subject: Re: kern/120092: [panic] ipnat(8): ipnat -s panics FreeBSD 7.0-PRERELEASE
Date: Sun, 6 Jul 2008 00:04:20 +0300

     Stefan, is this panic still reproducable for RELENG_7? I failed
 to trigger it. Does it appear with empty ipnat ruleset or only with 
 your specific set?
 
 -- 
 gonzo
State-Changed-From-To: feedback->closed 
State-Changed-By: gonzo 
State-Changed-When: Sun Jul 6 09:02:45 UTC 2008 
State-Changed-Why:  
Bug is not confirmed for latest RELENG_7 

http://www.freebsd.org/cgi/query-pr.cgi?pr=120092 
>Unformatted:
