Re: kernel/1816: Repetable crashes of ipfilter code

[Camiel Dobbelaar <dobbe@xs4all.nl>]

Yep, you almost nailed it.

I could get it down to this:

ipf.rules:
block return-icmp in proto icmp from any to any

- ipf -Fa -f /etc/ipf.rules
- ping -R 127.0.0.1

For the ipfilter list: can this be reproduced on non-OpenBSD systems too?

--
Cam

On Tue, 8 May 2001, Przemyslaw Frasunek wrote:

> On Tue, May 08, 2001 at 05:54:34AM -0000, venglin@freebsd.lublin.pl wrote:
> > 	Sending ICMP ECHO with record route, directed to OpenBSD box
> > 	with ipfilter enabled, causes 'panic: in_cksum: mp == NULL'.
> 
> I've noticed, that crash occurs only when record route packet is triggered
> by rule containing return-icmp keyword. A simple workaround is to remove
> return-icmp from rules which could match against ICMP packet.