lang: en

FreeBSD lock order reversal (LOR) #32

ID 32
state patched
responsible
reported first
reported last
do you know more? submit update by email
LOR
lock order reversal
 1st 0xc165bdec inp (tcpinp) @ sys/netinet/tcp_syncache.c:1161
 2nd 0xc07cd240 pf task mtx (pf task mtx) @ sys/contrib/pf/net/pf.c:5828
		
KDB: stack backtrace:
witness_checkorder(c07cd240,9,c075e590,16c4,1) at witness_checkorder+0x5bb
_mtx_lock_flags(c07cd240,0,c075e590,16c4,c07d70a0) at _mtx_lock_flags+0x54
pf_test(2,c1379000,d51b09a4,c13f9840,c08090e0) at pf_test+0x87
pf_check_out(0,d51b09a4,c1379000,2,0) at pf_check_out+0x47
pfil_run_hooks(c08090e0,d51b0a30,c1379000,2,c08159c4) at pfil_run_hooks+0x14e
ip_output(c1481b00,0,d51b09fc,0,0) at ip_output+0x3f2
syncache_respond(d51b0ad0,c0809b80,1c,346,7d) at syncache_respond+0x2d0
syncache_add(d51b0b80,d51b0bf0,c139d834,d51b0b7c,c138e100) at syncache_add+0x662
tcp_input(c138e100,14,c1379000,1,c058b034) at tcp_input+0x2df7
ip_input(c138e100,0,c077cdd8,e5,c08091a0) at ip_input+0xea
netisr_processqueue(c07d70e0,0,c077cdd8,152,c12e0700) at netisr_processqueue+0x15
swi_net(0,0,c0770f78,268,d51b0d10) at swi_net+0x97
ithread_loop(c12b9b80,d51b0d48,c0770d4d,32c,0) at ithread_loop+0x1fd
fork_exit(c057dab0,c12b9b80,d51b0d48) at fork_exit+0xa9
fork_trampoline() at fork_trampoline+0x8
		
comments/references