Hi, Filed github.com/FDio/vpp/issues <http://github.com/FDio/vpp/issues> #3728.
On VPP 26.06-release (x86_64-v4, nat44-ed, on-a-stick — one interface both in and out), a worker reliably SIGSEGVs in nat44_ed_out2in_slowpath_node_fn under normal CGNAT traffic. For ~39 s beforehand the log floods with "nat_6t_flow_icmp_translate:3955: unexpected NAT protocol value '47'/'4'" (47=GRE, 4=IPIP), i.e. an ICMP error message whose quoted inner packet is GRE or IPIP (PPTP / IP-in-IP tunnels). In nat_6t_flow_icmp_translate (nat44_ed.c) the default case for the inner protocol returns NAT_ED_TRNSL_ERR_TRANSLATION_FAILED cleanly, so the fault is in the caller's handling of that path: faulting instruction "mov %ebp,0x4(%rcx,%rbx,4)" at nat44_ed_out2in_slowpath_node_fn+2535 (a u32-array store with a bad base/index). Full backtrace, faulting instruction and a 12 GB core are in the issue. Repro: send an ICMP error with inner IPv4 protocol=47/4 to a NATed external address on an on-a-stick nat44-ed node. Is this known / fixed on master or a later branch? Happy to test a patch. Thanks. s pozdravem Tomáš Tyll AmigoNet s.r.o. +420605880880
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#27085): https://lists.fd.io/g/vpp-dev/message/27085 Mute This Topic: https://lists.fd.io/mt/119993465/21656 Group Owner: [email protected] Unsubscribe: https://lists.fd.io/g/vpp-dev/leave/14379924/21656/631435203/xyzzy [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
