Subject: kern/25506: ipnat's proxy ipsec causes page fault
To: None <gnats-bugs@gnats.NetBSD.org>
From: None <gcw@primenet.com.au>
List: netbsd-bugs
Date: 05/09/2004 10:20:33
>Number: 25506
>Category: kern
>Synopsis: ipnat's proxy ipsec causes page fault
>Confidential: no
>Severity: critical
>Priority: high
>Responsible: kern-bug-people
>State: open
>Class: sw-bug
>Submitter-Id: net
>Arrival-Date: Sun May 09 00:21:00 UTC 2004
>Closed-Date:
>Last-Modified:
>Originator: Geoff C. Wing
>Release: NetBSD 2.0E (2004/05/08)
>Organization:
>Environment:
NetBSD chestnut.primenet.com.au 2.0E NetBSD 2.0E (CHESTNUT) #0: Sun May 9 09:34:45 EST 2004 gcw@g.primenet.com.au:/usr/netbsd/src/sys/arch/i386/compile/CHESTNUT i386
Architecture: i386
Machine: i386
>Description:
Trying to establish a L2TP session via NAT & NAT proxy
causes a page fault during proxy ipsec stage. This has been
happening since the IPFilter 4.1.1 import.
Rules:
------
map pppoe0 192.168.1.0/24 -> 0/32 proxy port isakmp ipsec/udp
map pppoe0 192.168.1.0/24 -> 0/32 proxy port 4500 ipsec/udp
map pppoe0 192.168.1.0/24 -> 0/32 portmap tcp/udp 40000:60000 mssclamp 1440
map pppoe0 192.168.1.0/24 -> 0/32 mssclamp 1440
Handtyped error and backtrace:
------
kernel: page fault trap, code=0
Stopped at netbsd:fr_queueback+0x1f: movl %edx,0(%eax)
fr_queueback(c0747654,0,0,0,c06eba00)
ippr_ipsec_inout()
appr_check()
fr_natout()
fr_checknatout()
fr_check()
fr_check_wrapper()
pfil_run_hooks()
ip_output()
ip_forward()
ip_input()
ip_intr()
..
Xsoftnet()
>How-To-Repeat:
See above
>Fix:
?
>Release-Note:
>Audit-Trail:
>Unformatted: