| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 14 Apr 2011 23:53:25 +0100
From: Simon Arlott <simon@...e.lp0.eu>
To: Linux Kernel Mailing List <linux-kernel@...r.kernel.org>,
netdev <netdev@...r.kernel.org>
Subject: BUG: unable to handle kernel paging request at 676e7543 / IP: [<c04d89a7>]
icmpv6_send+0x5c3/0x6e2
Network traffic input is via two PPP devices, output is via a TEQL
device with both PPP devices attached.
It's possible that a PPP device could have gone down while this packet
was being logged.
icmp.o attached:
109a: 8b 9b 60 01 00 00 mov 0x160(%ebx),%ebx
10a0: 83 c4 10 add $0x10,%esp
10a3: 85 db test %ebx,%ebx
10a5: 74 07 je 10ae <icmpv6_send+0x5ca>
* 10a7: f0 ff 83 dc 00 00 00 lock incl 0xdc(%ebx)
10ae: b9 ae 10 00 00 mov $0x10ae,%ecx
10af: R_386_32 .text
10b3: ba 01 00 00 00 mov $0x1,%edx
10b8: b8 00 00 00 00 mov $0x0,%eax
10b9: R_386_32 rcu_lock_map
10bd: e8 fc ff ff ff call 10be <icmpv6_send+0x5da>
[19258502.086131] BUG: unable to handle kernel paging request at 676e7543
[19258502.087007] IP: [<c04d89a7>] icmpv6_send+0x5c3/0x6e2
[19258502.087007] *pdpt = 0000000002734001 *pde = 0000000000000000
[19258502.087007] Oops: 0002 [#1] PREEMPT SMP
[19258502.087007] last sysfs file: /sys/devices/platform/it87.552/cpu0_vid
[19258502.087007] Modules linked in: sr_mod cdrom xt_NOTRACK iptable_raw ftdi_sio sch_teql crc32c iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi pppoe pppox ppp_synctty act_mirred sch_ingress sch_sfq cls_]
[19258502.087007]
[19258502.087007] Pid: 3, comm: ksoftirqd/0 Tainted: G W 2.6.35.4-git+ #git+ GA-MA69VM-S2/GA-MA69VM-S2
[19258502.087007] EIP: 0060:[<c04d89a7>] EFLAGS: 00010202 CPU: 0
[19258502.087007] EIP is at icmpv6_send+0x5c3/0x6e2
[19258502.087007] EAX: 00000000 EBX: 676e7467 ECX: 00000000 EDX: 00000001
[19258502.087007] ESI: f6fa8db4 EDI: 00000000 EBP: f7483c4c ESP: f7483b48
[19258502.087007] DS: 007b ES: 007b FS: 00d8 GS: 0000 SS: 0068
[19258502.087007] Process ksoftirqd/0 (pid: 3, ti=f7482000 task=f74800a0 task.ti=f7482000)
[19258502.251703] Stack:
[19258502.251703] f68d1e00 c067f614 f7483b58 c067f614 f7483b68 c0513fe0 b21c8fe7 b21c8fdd
[19258502.251703] <0> f7483b88 c022e74d 00000046 0101fe2f f4d8004c 00000151 f6fa8ac0 f6fa8db4
[19258502.251703] <0> f4d8005c 00000000 00000040 f6fa8af0 00000000 00000000 00000000 10060120
[19258502.251703] Call Trace:
[19258502.251703] [<c0513fe0>] ? _raw_spin_unlock_irqrestore+0x42/0x58
[19258502.251703] [<c022e74d>] ? release_console_sem+0x197/0x1c4
[19258502.251703] [<fa78f0b5>] ? reject_tg6+0x70/0x43f [ip6t_REJECT]
[19258502.251703] [<fa7b49b1>] ? ip6t_log_packet+0x15d/0x167 [ip6t_LOG]
[19258502.251703] [<c024e201>] ? trace_hardirqs_on+0xb/0xd
[19258502.251703] [<c0232a72>] ? local_bh_enable_ip+0x97/0xad
[19258502.251703] [<c0513f59>] ? _raw_spin_unlock_bh+0x2f/0x32
[19258502.251703] [<fa7b49b1>] ? ip6t_log_packet+0x15d/0x167 [ip6t_LOG]
[19258502.251703] [<fa67c1a0>] ? ipv6_find_hdr+0xf8/0x164 [ip6_tables]
[19258502.251703] [<fa67c7c1>] ? ip6t_do_table+0x4c8/0x53e [ip6_tables]
[19258502.251703] [<fa7220f0>] ? ip6table_mangle_hook+0xf0/0x100 [ip6table_mangle]
[19258502.251703] [<fa687018>] ? ip6table_filter_hook+0x18/0x20 [ip6table_filter]
[19258502.251703] [<c046ee87>] ? nf_iterate+0x2f/0x62
[19258502.251703] [<c04c40c8>] ? ip6_input_finish+0x0/0x3db
[19258502.251703] [<c046f088>] ? nf_hook_slow+0x63/0xeb
[19258502.251703] [<c04c40c8>] ? ip6_input_finish+0x0/0x3db
[19258502.251703] [<c04c44d6>] ? ip6_input+0x33/0x47
[19258502.251703] [<c04c40c8>] ? ip6_input_finish+0x0/0x3db
[19258502.251703] [<c04c4775>] ? ip6_rcv_finish+0x8b/0x8e
[19258502.251703] [<fc206a3a>] ? nf_ct_frag6_output+0x7c/0x95 [nf_conntrack_ipv6]
[19258502.251703] [<fc20645c>] ? ipv6_defrag+0x87/0x9f [nf_conntrack_ipv6]
[19258502.251703] [<c04c46ea>] ? ip6_rcv_finish+0x0/0x8e
[19258502.251703] [<c046ee87>] ? nf_iterate+0x2f/0x62
[19258502.251703] [<c04c46ea>] ? ip6_rcv_finish+0x0/0x8e
[19258502.251703] [<c046f088>] ? nf_hook_slow+0x63/0xeb
[19258502.251703] [<c04c46ea>] ? ip6_rcv_finish+0x0/0x8e
[19258502.251703] [<c04c4aff>] ? ipv6_rcv+0x387/0x47c
[19258502.251703] [<c04c46ea>] ? ip6_rcv_finish+0x0/0x8e
[19258502.251703] [<c0455065>] ? __netif_receive_skb+0x367/0x3b6
[19258502.251703] [<c0455142>] ? process_backlog+0x8e/0x146
[19258502.251703] [<c0455c3b>] ? net_rx_action+0x62/0x119
[19258502.251703] [<c0232750>] ? __do_softirq+0x8b/0x10a
[19258502.251703] [<c02327fa>] ? do_softirq+0x2b/0x43
[19258502.251703] [<c0232885>] ? run_ksoftirqd+0x73/0x155
[19258502.251703] [<c0232812>] ? run_ksoftirqd+0x0/0x155
[19258502.251703] [<c023fdbd>] ? kthread+0x61/0x66
[19258502.251703] [<c023fd5c>] ? kthread+0x0/0x66
[19258502.251703] [<c0202c7a>] ? kernel_thread_helper+0x6/0x1a
[19258502.251703] Code: e8 1b da d4 ff 68 48 89 4d c0 31 c9 31 d2 b8 58 11 68 c0 6a 00 6a 01 6a 02 e8 37 76 d7 ff 8b 9b 60 01 00 00 83 c4 10 85 db 74 07 <f0> ff 83 dc 00 00 00 b9 ae 89 4d c0 ba 01 00 00 00 b8 5
[19258502.251703] EIP: [<c04d89a7>] icmpv6_send+0x5c3/0x6e2 SS:ESP 0068:f7483b48
[19258502.251703] CR2: 00000000676e7543
[19258502.535098] ---[ end trace 0e99e06f98463fb7 ]---
[19258502.540292] Kernel panic - not syncing: Fatal exception in interrupt
[19258502.541915] __iptables__: l2tp_2 IN=aaisp3 OUT= MAC= SRC=87.106.29.21 DST=81.2.80.67 LEN=123 TOS=0x00 PREC=0x00 TTL=58 ID=0 DF PROTO=UDP SPT=53 DPT=50245 LEN=103
[19258502.541956] __iptables__: l2tp_2 IN=aaisp3 OUT= MAC= SRC=66.45.29.125 DST=81.2.80.67 LEN=128 TOS=0x00 PREC=0x00 TTL=238 ID=25735 DF PROTO=UDP SPT=53 DPT=41665 LEN=108
[19258502.542038] __iptables__: l2tp_2 IN=aaisp3 OUT= MAC= SRC=2600:2002:0000:0000:0000:0000:0000:0076 DST=2001:08b0:ffea:0000:0053:4150:5841:0001 LEN=152 TC=0 HOPLIMIT=56 FLOWLBL=0 PROTO=UDP SPT=53 DPT=22817 L
[19258502.542070] __iptables__: l2tp_2 IN=aaisp3 OUT= MAC= SRC=208.80.124.2 DST=81.2.80.67 LEN=120 TOS=0x00 PREC=0x00 TTL=56 ID=56897 PROTO=UDP SPT=53 DPT=17380 LEN=100
[19258502.612141] Pid: 3, comm: ksoftirqd/0 Tainted: G D W 2.6.35.4-git+ #git+
[19258502.619983] Call Trace:
[19258502.622783] [<c0511194>] ? printk+0xf/0x13
[19258502.627394] [<c0511116>] panic+0x55/0xc4
[19258502.631754] [<c02050ed>] oops_end+0x6e/0x7c
[19258502.636443] [<c021a514>] no_context+0x13f/0x149
[19258502.641434] [<c021a657>] __bad_area_nosemaphore+0x139/0x141
[19258502.647441] [<c04cef8d>] ? fib6_lookup+0x48/0x5c
[19258502.652564] [<c04cdd75>] ? ip6_pol_route+0x208/0x223
[19258502.657997] [<c024e201>] ? trace_hardirqs_on+0xb/0xd
[19258502.663466] [<c0232a72>] ? local_bh_enable_ip+0x97/0xad
[19258502.669170] [<c0513d08>] ? _raw_read_unlock_bh+0x2f/0x32
[19258502.674925] [<c04cdd75>] ? ip6_pol_route+0x208/0x223
[19258502.680318] [<c021a66c>] bad_area_nosemaphore+0xd/0x10
[19258502.685957] [<c021a910>] do_page_fault+0x14e/0x302
[19258502.691291] [<c04b3486>] ? __xfrm_lookup+0x32d/0x38b
[19258502.696768] [<c04e8bbe>] ? fib6_rule_lookup+0x35/0x77
[19258502.702280] [<c021a7c2>] ? do_page_fault+0x0/0x302
[19258502.707576] [<c051499b>] error_code+0x6b/0x70
[19258502.712446] [<c021a7c2>] ? do_page_fault+0x0/0x302
[19258502.717783] [<c04d89a7>] ? icmpv6_send+0x5c3/0x6e2
[19258502.723047] [<c0513fe0>] ? _raw_spin_unlock_irqrestore+0x42/0x58
[19258502.729616] [<c022e74d>] ? release_console_sem+0x197/0x1c4
[19258502.735622] [<fa78f0b5>] reject_tg6+0x70/0x43f [ip6t_REJECT]
[19258502.741855] [<fa7b49b1>] ? ip6t_log_packet+0x15d/0x167 [ip6t_LOG]
[19258502.748512] [<c024e201>] ? trace_hardirqs_on+0xb/0xd
[19258502.753997] [<c0232a72>] ? local_bh_enable_ip+0x97/0xad
[19258502.759716] [<c0513f59>] ? _raw_spin_unlock_bh+0x2f/0x32
[19258502.765543] [<fa7b49b1>] ? ip6t_log_packet+0x15d/0x167 [ip6t_LOG]
[19258502.772245] [<fa67c1a0>] ? ipv6_find_hdr+0xf8/0x164 [ip6_tables]
[19258502.778739] [<fa67c7c1>] ip6t_do_table+0x4c8/0x53e [ip6_tables]
[19258502.785126] [<fa7220f0>] ? ip6table_mangle_hook+0xf0/0x100 [ip6table_mangle]
[19258502.792698] [<fa687018>] ip6table_filter_hook+0x18/0x20 [ip6table_filter]
[19258502.800096] [<c046ee87>] nf_iterate+0x2f/0x62
[19258502.804934] [<c04c40c8>] ? ip6_input_finish+0x0/0x3db
[19258502.810438] [<c046f088>] nf_hook_slow+0x63/0xeb
[19258502.815466] [<c04c40c8>] ? ip6_input_finish+0x0/0x3db
[19258502.821049] [<c04c44d6>] ip6_input+0x33/0x47
[19258502.825833] [<c04c40c8>] ? ip6_input_finish+0x0/0x3db
[19258502.831446] [<c04c4775>] ip6_rcv_finish+0x8b/0x8e
[19258502.836649] [<fc206a3a>] nf_ct_frag6_output+0x7c/0x95 [nf_conntrack_ipv6]
[19258502.844072] [<fc20645c>] ipv6_defrag+0x87/0x9f [nf_conntrack_ipv6]
[19258502.850871] [<c04c46ea>] ? ip6_rcv_finish+0x0/0x8e
[19258502.856156] [<c046ee87>] nf_iterate+0x2f/0x62
[19258502.860968] [<c04c46ea>] ? ip6_rcv_finish+0x0/0x8e
[19258502.866315] [<c046f088>] nf_hook_slow+0x63/0xeb
[19258502.871290] [<c04c46ea>] ? ip6_rcv_finish+0x0/0x8e
[19258502.876614] [<c04c4aff>] ipv6_rcv+0x387/0x47c
[19258502.881476] [<c04c46ea>] ? ip6_rcv_finish+0x0/0x8e
[19258502.886807] [<c0455065>] __netif_receive_skb+0x367/0x3b6
[19258502.892639] [<c0455142>] process_backlog+0x8e/0x146
[19258502.897996] [<c0455c3b>] net_rx_action+0x62/0x119
[19258502.903187] [<c0232750>] __do_softirq+0x8b/0x10a
[19258502.908305] [<c02327fa>] do_softirq+0x2b/0x43
[19258502.913157] [<c0232885>] run_ksoftirqd+0x73/0x155
[19258502.918401] [<c0232812>] ? run_ksoftirqd+0x0/0x155
[19258502.923693] [<c023fdbd>] kthread+0x61/0x66
[19258502.928301] [<c023fd5c>] ? kthread+0x0/0x66
[19258502.933014] [<c0202c7a>] kernel_thread_helper+0x6/0x1a
[19258502.938655] Rebooting in 10 seconds..
--
Simon Arlott
Download attachment "icmp.o" of type "application/x-object" (11628 bytes)
View attachment "config" of type "text/plain" (66100 bytes)
Powered by blists - more mailing lists