Created attachment 173971 [details]
Crashdump generated by system
Kernel with compiled:
options IPFIREWALL #firewall
options IPFIREWALL_VERBOSE #enable logging to syslogd(8)
options IPFIREWALL_VERBOSE_LIMIT=100 #limit verbosity
options IPFIREWALL_DEFAULT_TO_ACCEPT #allow everything by default
I have created jail (using cbsd) with vnet. When I try to added (on jail):
ipfw add 1 allow ip from 'table(10)' to me
it causes kernel panic
OK, it's not the command that triggers the panic, it's a packet that is then checked against the rule.
I can reproduce it on head.
Fixed in head/ and stable/11. Thanks!