On Fri, Nov 14, 2008 at 12:58 AM, Felipe Alfaro Solana <[EMAIL PROTECTED]> wrote: > On Fri, Nov 14, 2008 at 12:00 AM, Felipe Alfaro Solana > <[EMAIL PROTECTED]> wrote: >> Hi misc, >> >> Are any of you using AICCU on OpenBSD 4.4 patched to 005? Have you >> experienced panics? Since I upgraded to OpenBSD 4.4, whenever I take >> AICCU down, then up, after a while the system panics. I can reproduce >> this reliably, although the timing is not always the same: sometimes >> the system panics in a few seconds, sometimes it takes longer. >> >> Have you experienced this? > > I've been trying to chase down what is causing the panic. Apparently, > it's related to IPSec/IPv6: when I reboot the system with no > IPSec/IPv6 tunnels enabled (no sasync, no isakmpd) the system doesn't > panic when I take aiccu down and then up. > > The system panics here: > > uvm_fault(0xd623f758, 0x0, 0, 1) -> e > kernel: page fault trap, code=0 > Stopped at in6_selecthlim+0x29: movzbl 0x1c(%eax),%eax
Looks to me that the IPSec/IPv6 code is holding a reference to a in6pcb structure (that represents or is associated the aiccu tun0 interface) that gets destroyed when I take aiccu down. When I start aiccu again, the in6_selecthlim ends up being called with an old reference to tun0 interface that does not exist anymore (was freed) and that causes the trap. >> >> Thanks in advance. >> >> PS: I have crash dumps for each panic. >> >> -- >> http://www.felipe-alfaro.org/blog/disclaimer/ >> > > > > -- > http://www.felipe-alfaro.org/blog/disclaimer/ > -- http://www.felipe-alfaro.org/blog/disclaimer/
