Hi,

Filed github.com/FDio/vpp/issues <http://github.com/FDio/vpp/issues> #3728.

On VPP 26.06-release (x86_64-v4, nat44-ed, on-a-stick — one interface both in 
and out), a worker reliably SIGSEGVs in nat44_ed_out2in_slowpath_node_fn under 
normal CGNAT traffic.
For ~39 s beforehand the log floods with "nat_6t_flow_icmp_translate:3955: 
unexpected NAT protocol value '47'/'4'" (47=GRE, 4=IPIP), i.e. an ICMP error 
message whose quoted inner packet is GRE or IPIP (PPTP / IP-in-IP tunnels).

In nat_6t_flow_icmp_translate (nat44_ed.c) the default case for the inner 
protocol returns NAT_ED_TRNSL_ERR_TRANSLATION_FAILED cleanly, so the fault is 
in the caller's handling of that path: faulting instruction "mov 
%ebp,0x4(%rcx,%rbx,4)" at nat44_ed_out2in_slowpath_node_fn+2535 (a u32-array 
store with a bad base/index). Full backtrace, faulting instruction and a 12 GB 
core are in the issue.

Repro: send an ICMP error with inner IPv4 protocol=47/4 to a NATed external 
address on an on-a-stick nat44-ed node.

Is this known / fixed on master or a later branch? Happy to test a patch. 
Thanks.





s pozdravem 

Tomáš Tyll
AmigoNet s.r.o.
+420605880880

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#27085): https://lists.fd.io/g/vpp-dev/message/27085
Mute This Topic: https://lists.fd.io/mt/119993465/21656
Group Owner: [email protected]
Unsubscribe: https://lists.fd.io/g/vpp-dev/leave/14379924/21656/631435203/xyzzy 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

Reply via email to