Kernel OOPS: BUG: unable to handle kernel NULL pointer dereference; IP at ip6_datagram_connect+0x249/0x500
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Confirmed
|
Medium
|
Unassigned |
Bug Description
We are running Ubuntu 15.10, in a server environment where we have IPsec transport set between servers both for IPv4 and IPv6. We can *reliably* reproduce this error by running:
```
tcpdump "ip and ( host host1.example.com or host host2.example.com or host host3.example.com or host host4.example.com or host host5.example.com )"
```
...where host1-host5.
This immediately produces the kernel oops.
Some more info on the host:
```
# uname -a
Linux host6 4.2.0-27-generic #32-Ubuntu SMP Fri Jan 22 04:49:08 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux
```
Version signature:
```
# cat /proc/version_
Ubuntu 4.2.0-27.32-generic 4.2.8-ckt1
```
An example oops (more in the attached file):
```
[23882.053990] BUG: unable to handle kernel NULL pointer dereference at 00000000000000a0
[23882.054044] IP: [<ffffffff817bb
[23882.054080] PGD 0
[23882.054103] Oops: 0000 [#7] SMP
[23882.054129] Modules linked in: aufs xt_multiport ip6table_filter ip6table_nat nf_conntrack_ipv6 nf_defrag_ipv6 nf_nat_ipv6 ip6_tables esp6 ah6 xfrm6_mode_
[23882.054488] ip_tables x_tables nf_nat nf_conntrack br_netfilter bridge stp llc overlay intel_rapl x86_pkg_
[23882.054773] CPU: 7 PID: 5954 Comm: tcpdump Tainted: G D 4.2.0-27-generic #32-Ubuntu
[23882.054819] Hardware name: System manufacturer System Product Name/P8H67-M PRO, BIOS 1106 10/17/2011
[23882.054864] task: ffff8808153ce040 ti: ffff88046c9e0000 task.ti: ffff88046c9e0000
[23882.054907] RIP: 0010:[<
[23882.054955] RSP: 0018:ffff88046c
[23882.054980] RAX: ffff880816c10038 RBX: ffff880816c10000 RCX: 000000000000ffff
[23882.055008] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[23882.055036] RBP: ffff88046c9e3e48 R08: ffff880816c10390 R09: ffff880815fc5c80
[23882.055064] R10: ffffffff81cf7c00 R11: 0000000000000002 R12: 0000000000000000
[23882.055092] R13: 0000000000000000 R14: ffff880816c10120 R15: ffff880816c10390
[23882.055121] FS: 00007f4a150af70
[23882.055165] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[23882.055191] CR2: 00000000000000a0 CR3: 00000000b6161000 CR4: 00000000000406e0
[23882.055219] Stack:
[23882.055241] ffff880816c10390 ffff880816c10038 0000000000000000 00000000d23f16ed
[23882.055291] ffff8800b6477980 0000000100000000 0011000000000000 f804012a00000000
[23882.055341] 00000000f5511001 f804012a02000000 000000002f845101 0000000002000000
[23882.055390] Call Trace:
[23882.055420] [<ffffffff8175b
[23882.055451] [<ffffffff816c8
[23882.055483] [<ffffffff8121b
[23882.055511] [<ffffffff816c7
[23882.055540] [<ffffffff816c9
[23882.055569] [<ffffffff817f1
[23882.055598] Code: ff ff ff 4c 8b 85 60 ff ff ff 49 89 47 28 4d 89 47 30 41 f6 85 17 01 00 00 40 0f 85 ae 01 00 00 41 f6 45 60 10 0f 85 7e 02 00 00 <49> 8b 85 a0 00 00 00 48 85 c0 0f 84 67 02 00 00 8b 40 2c 41 89
[23882.055768] RIP [<ffffffff817bb
[23882.055801] RSP <ffff88046c9e3da8>
[23882.055824] CR2: 00000000000000a0
[23882.056185] ---[ end trace 91f389eb505db06a ]---
```
tags: |
added: kernel-fixed-upstream-4.5-rc3 needs-reverse-bisect regression-release wily removed: ipv6 networking |
Changed in linux (Ubuntu): | |
status: | Incomplete → Confirmed |
information type: | Public → Public Security |
This bug is missing log files that will aid in diagnosing the problem. From a terminal window please run:
apport-collect 1545031
and then change the status of the bug to 'Confirmed'.
If, due to the nature of the issue you have encountered, you are unable to run this command, please add a comment stating that fact and change the bug status to 'Confirmed'.
This change has been made by an automated script, maintained by the Ubuntu Kernel Team.