search

evilsocket / opensnitch

OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
GNU General Public License v3.0
10.74k stars 498 forks source link

KernelPanic in 5.6.16 #297

Closed hirnwunde closed 3 years ago

hirnwunde commented 4 years ago 
BUG: kernel NULL pointer dereference, address: 0000000000000084
#PF: supervisor read access in kernel mode
#PF: error_code(0x0000) - not-present page
PGD 0 P4D 0 
Oops: 0000 [#1] PREEMPT SMP NOPTI
CPU: 9 PID: 970 Comm: opensnitchd Tainted: P        W  OE     5.6.16-1-MANJARO #1
Hardware name: To Be Filled By O.E.M. To Be Filled By O.E.M./B450 Pro4, BIOS P3.50 07/18/2019
RIP: 0010:nf_conntrack_update+0x234/0x3a0 [nf_conntrack]
Code: 89 4d 9e 48 8b 83 b8 00 00 00 48 85 c0 0f 84 eb 00 00 00 0f b6 10 84 d2 0f 84 e0 00 00 00 48 01 d0 0f 84 d7 00 00 00 48 8b 00 <f6> 80 84 00 00 00 01 0f 84 c7 00 00 00 0f b7 43 32 66 83 f8 02 0f
RSP: 0018:ffff9f3601877940 EFLAGS: 00010286
RAX: 0000000000000000 RBX: ffff896f0c656f80 RCX: 0000000000000000
RDX: 000000000000003f RSI: 0000000080330032 RDI: ffff896f87018fc0
RBP: ffff9f36018779b0 R08: ffffffffc20b6010 R09: 0000000000000001
R10: ffff896f0c656f80 R11: ffffffffc1a8e501 R12: ffff896f9c23f800
R13: 0000000000000002 R14: ffff896f0c654a00 R15: 0000000000000000
FS:  00007ff4f2ffd700(0000) GS:ffff896f9ea40000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000084 CR3: 0000000418f7c000 CR4: 00000000003406e0
Call Trace:
 ? nfqnl_reinject+0x4a/0x70 [nfnetlink_queue]
 nfqnl_reinject+0x4a/0x70 [nfnetlink_queue]
 nfqnl_recv_verdict+0x30d/0x500 [nfnetlink_queue]
 nfnetlink_rcv_msg+0x166/0x2e0 [nfnetlink]
 ? nfnetlink_net_exit_batch+0x60/0x60 [nfnetlink]
 netlink_rcv_skb+0x75/0x140
 netlink_unicast+0x242/0x340
 netlink_sendmsg+0x243/0x480
 sock_sendmsg+0x5e/0x60
 ____sys_sendmsg+0x253/0x290
 ___sys_sendmsg+0x97/0xe0
 ? __lru_cache_add+0x75/0xa0
 __sys_sendmsg+0x81/0xd0
 do_syscall_64+0x49/0x90
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x7ff52cc7064d
Code: 28 89 54 24 1c 48 89 74 24 10 89 7c 24 08 e8 ba ee ff ff 8b 54 24 1c 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 33 44 89 c7 48 89 44 24 08 e8 ee ee ff ff 48
RSP: 002b:00007ff4f2ffbae0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007ff4f4000db8 RCX: 00007ff52cc7064d
RDX: 0000000000000000 RSI: 00007ff4f2ffbb20 RDI: 000000000000000a
RBP: 00007ff4f2ffbb80 R08: 0000000000000000 R09: 0000000000000301
R10: 000000000000002e R11: 0000000000000293 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
Modules linked in: isofs snd_seq_dummy snd_hrtimer snd_seq snd_seq_device xt_CHECKSUM xt_MASQUERADE ipt_REJECT nf_nat_tftp nft_objref nf_conntrack_tftp tun md4 cmac nls_utf8 cifs libarc4 dns_resolver fscache libdes hid_logitech_hidpp ppdev parport_pc parport nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib xt_mark nft_reject_inet xt_conntrack nf_reject_ipv4 nf_reject_ipv6 nft_reject xt_NFQUEUE xt_tcpudp nfnetlink_queue nft_ct fuse vmw_vsock_vmci_transport vsock nf_tables_set nft_chain_nat vmw_vmci rfkill nf_tables ip6table_nat joydev input_leds mousedev ip6table_mangle ip6table_raw hid_logitech_dj bridge ip6table_security iptable_nat nf_nat stp nf_conntrack llc nf_defrag_ipv6 nf_defrag_ipv4 libcrc32c iptable_mangle iptable_raw iptable_security nfnetlink ip6table_filter ip6_tables hid_generic iptable_filter usbhid hid squashfs edac_mce_amd nls_iso8859_1 nls_cp437 kvm_amd vfat fat ccp rng_core loop kvm snd_hda_codec_realtek snd_hda_codec_generic wmi_bmof ledtrig_audio
 snd_hda_codec_hdmi snd_hda_intel crct10dif_pclmul snd_intel_dspcfg crc32_pclmul snd_hda_codec ghash_clmulni_intel snd_hda_core uinput snd_hwdep nvidia_drm(POE) aesni_intel snd_pcm crypto_simd vfio_pci pcspkr nvidia_modeset(POE) k10temp snd_timer r8168(OE) cryptd vfio_virqfd glue_helper vfio_iommu_type1 sp5100_tco drm_kms_helper i2c_piix4 snd vfio soundcore irqbypass cec wmi rc_core pinctrl_amd drm evdev gpio_amdpt mac_hid acpi_cpufreq agpgart syscopyarea sysfillrect sysimgblt fb_sys_fops nvidia(POE) ipmi_devintf ipmi_msghandler sg crypto_user ip_tables x_tables ext4 crc32c_generic crc16 mbcache jbd2 crc32c_intel xhci_pci sr_mod xhci_hcd cdrom
CR2: 0000000000000084
---[ end trace 5e50920c4d174f42 ]---

I have no problems with Linux 5.8, 5.7 or 5.4

NRGLine4Sec commented 4 years ago

Try with Gustavo's fork https://github.com/gustavo-iniguez-goya/opensnitch/releases

hirnwunde commented 4 years ago

Thanks for the hint. What are the differences between this repo and the fork form Gustavo?

Edit: Ahh .. i see. Very nice UI!

gustavo-iniguez-goya commented 3 years ago

fixed by netfilter devs.