* Segmenation fault in netfilter/iptables code in 2.4.18 upon receiving a TFTP broadcast
@ 2005-08-16 22:45 Bala Pitchandi
2005-08-16 23:40 ` Phil Oester
0 siblings, 1 reply; 4+ messages in thread
From: Bala Pitchandi @ 2005-08-16 22:45 UTC (permalink / raw)
To: netfilter-devel
[-- Attachment #1: Type: text/plain, Size: 1414 bytes --]
Hello,
I am using a 2.4.18 TimeSys kernel in a PPC device. Please see the
attachment for the iptables rules that I have installed in my device. Newly
installed Cisco routers send out TFTP broadcasts asking for configuration
files (network-confg, cisconet.cfg etc) to get the hostname to IP address
mapping. Upon receiving such a broadcast there was a SIGSEGV exception
caused in the kernel. The call backtrace is given below:
init_conntrack
ip_conntrack_in
----------------------------------------
nf_iterate
nf_hook_slow
ip_rcv
process_pkt
do_net_rx_action
net_rx_action
ksoftirqd
----------------------------------------
seq_read
It looks like that the netfilter code is causing a segmentation fault upon
receiving the TFTP broadcast packet (although not every time). It got
processed by ip_rcv and ip_rcv called nf_hook_slow. nf_hook_slow called
nf_iterate to find out whether to accept/drop this packet and that's where
the segmentation fault happened. I dunno why the PC is pointing to
init_conntrack.
I found discussions regarding similar segmentation fault in the netfilter
code but couldn't get much information from it:
https://lists.netfilter.org/pipermail/netfilter-devel/2004-February/014064.h
tml
If any of you have some thoughts on this problem or a similar issues, please
let me know what the cause could be (or if a patch is available).
Thanks,
Bala
[-- Attachment #2: iptables.txt --]
[-- Type: text/plain, Size: 5111 bytes --]
bash-2.05# iptables -t nat -L
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
DNAT udp -- anywhere anywhere udp dpt:10014 to:192.168.100.16:69
DNAT udp -- anywhere anywhere udp dpt:10015 to:192.168.100.17:69
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
bash-2.05# iptables -L
Chain INPUT (policy DROP)
target prot opt source destination
input_chain all -- anywhere anywhere
DROP icmp -- anywhere anywhere icmp source-quench
DROP icmp -- anywhere anywhere icmp redirect
DROP icmp -- anywhere anywhere icmp timestamp-request
DROP icmp -- anywhere anywhere icmp timestamp-reply
Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere limit: avg 100/sec burst 5
ACCEPT all -- anywhere anywhere limit: avg 100/sec burst 5
ACCEPT tcp -- anywhere anywhere tcp dpt:4004
ACCEPT udp -- anywhere anywhere state NEW udp dpt:tftp
ACCEPT udp -- anywhere anywhere udp dpt:17185
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain allowed_ping (0 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere icmp echo-request limit: avg 3/sec burst 5
ACCEPT icmp -- anywhere anywhere icmp echo-reply
Chain allowed_protocols (1 references)
target prot opt source destination
ACCEPT igmp -- anywhere anywhere
ACCEPT igmp -- anywhere anywhere
ACCEPT ospf -- anywhere anywhere
ACCEPT pim -- anywhere anywhere
ACCEPT all -- anywhere 224.0.0.0/4 limit: avg 1/sec burst 5
Chain allowed_tcp (6 references)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere limit: avg 100/sec burst 5 tcp flags:SYN,RST,ACK/SYN
ACCEPT tcp -- anywhere anywhere state RELATED,ESTABLISHED
DROP tcp -- anywhere anywhere
Chain icmp_packets (1 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere icmp echo-request limit: avg 3/sec burst 5
ACCEPT icmp -- anywhere anywhere icmp echo-reply
ACCEPT icmp -- anywhere anywhere icmp port-unreachable
ACCEPT icmp -- anywhere anywhere icmp time-exceeded
Chain input_chain (1 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
tcp_packets tcp -- anywhere anywhere
tcp_packets1 tcp -- anywhere anywhere
udp_packets udp -- anywhere anywhere
icmp_packets icmp -- anywhere anywhere
allowed_protocols all -- anywhere anywhere
Chain tcp_packets (1 references)
target prot opt source destination
allowed_tcp tcp -- anywhere anywhere tcp dpt:telnet
Chain tcp_packets1 (1 references)
target prot opt source destination
allowed_tcp tcp -- anywhere anywhere tcp dpt:zebra
allowed_tcp tcp -- anywhere anywhere tcp dpt:ripd
allowed_tcp tcp -- anywhere anywhere tcp dpt:ospfd
allowed_tcp tcp -- anywhere anywhere tcp dpt:2610
allowed_tcp tcp -- anywhere anywhere tcp dpt:8700
Chain udp_packets (1 references)
target prot opt source destination
ACCEPT udp -- anywhere anywhere udp spt:domain
ACCEPT udp -- anywhere anywhere udp dpt:snmp
ACCEPT udp -- anywhere anywhere udp dpt:syslog
ACCEPT udp -- anywhere anywhere udp spt:ntp
ACCEPT udp -- anywhere anywhere udp spt:2049
ACCEPT udp -- anywhere anywhere udp dpts:33434:33523
ACCEPT udp -- anywhere anywhere udp dpt:tftp
ACCEPT udp -- anywhere anywhere udp dpt:route
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Segmenation fault in netfilter/iptables code in 2.4.18 upon receiving a TFTP broadcast
2005-08-16 22:45 Segmenation fault in netfilter/iptables code in 2.4.18 upon receiving a TFTP broadcast Bala Pitchandi
@ 2005-08-16 23:40 ` Phil Oester
2005-08-17 0:02 ` Bala Pitchandi
0 siblings, 1 reply; 4+ messages in thread
From: Phil Oester @ 2005-08-16 23:40 UTC (permalink / raw)
To: Bala Pitchandi; +Cc: netfilter-devel
On Tue, Aug 16, 2005 at 06:45:50PM -0400, Bala Pitchandi wrote:
> Hello,
>
> I am using a 2.4.18 TimeSys kernel in a PPC device. Please see the
> attachment for the iptables rules that I have installed in my device. Newly
> installed Cisco routers send out TFTP broadcasts asking for configuration
> files (network-confg, cisconet.cfg etc) to get the hostname to IP address
> mapping. Upon receiving such a broadcast there was a SIGSEGV exception
> caused in the kernel. The call backtrace is given below:
Please upgrade to a recent kernel...the bug you are experiencing was
fixed long ago.
Phil
^ permalink raw reply [flat|nested] 4+ messages in thread
* RE: Segmenation fault in netfilter/iptables code in 2.4.18 upon receiving a TFTP broadcast
2005-08-16 23:40 ` Phil Oester
@ 2005-08-17 0:02 ` Bala Pitchandi
2005-08-17 0:18 ` Phil Oester
0 siblings, 1 reply; 4+ messages in thread
From: Bala Pitchandi @ 2005-08-17 0:02 UTC (permalink / raw)
To: 'Phil Oester'; +Cc: netfilter-devel
Phil,
Thanks for your response. I kinda knew that this bug has been fixed in the
later version of the kernel.
Since the kernel that I am using is a modified version of the 2.4.18 kernel,
it would be too much of an hassle for me to update the entire kernel. If you
could point me to the version of the kernel where this bug was fixed, I
could just port this fix onto my netfilter/iptables.
Thanks again,
-- Bala
-----Original Message-----
From: Phil Oester [mailto:kernel@linuxace.com]
Sent: Tuesday, August 16, 2005 7:41 PM
To: Bala Pitchandi
Cc: netfilter-devel@lists.netfilter.org
Subject: Re: Segmenation fault in netfilter/iptables code in 2.4.18 upon
receiving a TFTP broadcast
On Tue, Aug 16, 2005 at 06:45:50PM -0400, Bala Pitchandi wrote:
> Hello,
>
> I am using a 2.4.18 TimeSys kernel in a PPC device. Please see the
> attachment for the iptables rules that I have installed in my device.
Newly
> installed Cisco routers send out TFTP broadcasts asking for configuration
> files (network-confg, cisconet.cfg etc) to get the hostname to IP address
> mapping. Upon receiving such a broadcast there was a SIGSEGV exception
> caused in the kernel. The call backtrace is given below:
Please upgrade to a recent kernel...the bug you are experiencing was
fixed long ago.
Phil
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Segmenation fault in netfilter/iptables code in 2.4.18 upon receiving a TFTP broadcast
2005-08-17 0:02 ` Bala Pitchandi
@ 2005-08-17 0:18 ` Phil Oester
0 siblings, 0 replies; 4+ messages in thread
From: Phil Oester @ 2005-08-17 0:18 UTC (permalink / raw)
To: Bala Pitchandi; +Cc: netfilter-devel
On Tue, Aug 16, 2005 at 08:02:07PM -0400, Bala Pitchandi wrote:
> Phil,
>
> Thanks for your response. I kinda knew that this bug has been fixed in the
> later version of the kernel.
good
> Since the kernel that I am using is a modified version of the 2.4.18 kernel,
> it would be too much of an hassle for me to update the entire kernel. If you
> could point me to the version of the kernel where this bug was fixed, I
> could just port this fix onto my netfilter/iptables.
a searchable archive of the netfilter-devel list is available here:
http://marc.theaimsgroup.com/?l=netfilter-devel&r=1&w=2
searching for 'tftp oops' will give you the answer on result 10 of 17.
Phil
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2005-08-17 0:18 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-08-16 22:45 Segmenation fault in netfilter/iptables code in 2.4.18 upon receiving a TFTP broadcast Bala Pitchandi
2005-08-16 23:40 ` Phil Oester
2005-08-17 0:02 ` Bala Pitchandi
2005-08-17 0:18 ` Phil Oester
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.