Subject: kern/26927: netinet/fil.c rev 1.70 causes kernel panic
To: None <>
From: None <>
List: netbsd-bugs
Date: 09/12/2004 20:38:15
>Number:         26927
>Category:       kern
>Synopsis:       netinet/fil.c rev 1.70 causes kernel panic
>Confidential:   no
>Severity:       critical
>Priority:       high
>Responsible:    kern-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sun Sep 12 18:39:00 UTC 2004
>Originator:     Jaromir Dolecek
>Release:        NetBSD 2.0G
System: NetBSD 2.0G NetBSD 2.0G (SARUMAN.MP) #255: Sun Sep 12 20:11:05 CEST 2004 i386
Architecture: i386
Machine: i386
	Kernel with fil.c rev 1.70 panics on my box when the ipfilter
	is enabled (/sbin/ipf -E -Fa). The same kernel with fil.c rev.1.69
	doesn't panic. The panic happens in frrequest()+0xa9, called from
	ioctl() path. I can provide full backtrace on request. Unfortunately
	dump fails due to failed randevous IPI.

	My /etc/ipf.conf:

block in on fxp0
pass in quick on fxp0 proto icmp
pass out quick on fxp0 keep state

	Workaround is to back the change in rev 1.70 off.