Re: sparc64 panic in ipv4_input with npppd/pipex

Sun, 16 Apr 2017 07:09:04 -0700 

You need to disable pipex and then it works.
I had this issue for a long time and it seems to be ppp compression of
multicast UDP packets that cause unaligned UDP packets to happen.
Fixing this is far from trivial but I also never spent a lot of time on
it.

On Sun, Apr 16, 2017 at 03:03:15PM +0200, Stefan Sperling wrote:
> This is a sparc64 ldom guest serving L2TP/IPsec for my phone with npppd.
> Since an upgrade to 6.1 the server now panics when the phone connects:
> 
>  panic: trap type 0x34 (mem address not aligned): pc=126277c npc=1262780 
> pstate=820006<PRIV,IE>
> Stopped at      Debugger+0x8:   nop
>     TID    PID    UID     PRFLAGS     PFLAGS  CPU  COMMAND
> *352282  13807      0     0x14000      0x200    0  softnet
> trap(4000f903980, 34, 126277c, 820006, 40000, 40000000) at trap+0x334
> Lslowtrap_reenter(400008d3000, 4000917cee0, 1696c98, 1697360, 0, 6) at 
> Lslowtrap_reenter+0xf8
> ipv4_input(400008d3000, 4000f903de0, 1189be0, 0, 40000, 40000000) at 
> ipv4_input+0x28
> ipintr(188b08c, 4000917cee0, 1696c98, 1697360, 0, 6) at ipintr+0x30
> if_netisr(0, 4000f903de0, 1189be0, 0, 40000, 40000000) at if_netisr+0x108
> taskq_thread(40000896080, 4000917cee0, 1696c98, 1697360, 0, 3b9ac800) at 
> taskq_thread+0x6c
> proc_trampoline(0, 0, 0, 0, 0, 0) at proc_trampoline+0x14
> 
> 
> The latest entries in /var/log/daemon were:
> 
> npppd[64123]: l2tpd ctrl=1 logtype=Started RecvSCCRQ 
> from=2xx.xx.xx.xx:43603/udp tunnel_id=1/9147 protocol=1.0 winsize=1 
> hostname=anonymous vendor=(no vendorname) firm=0000
> npppd[64123]: l2tpd ctrl=1 SendSCCRP
> npppd[64123]: l2tpd ctrl=1 RecvSCCN
> npppd[64123]: l2tpd ctrl=1 SendZLB
> npppd[64123]: l2tpd ctrl=1 call=25390 RecvICRQ session_id=4276
> npppd[64123]: l2tpd ctrl=1 call=25390 SendICRP session_id=25390
> npppd[64123]: l2tpd ctrl=1 call=25390 RecvICCN session_id=4276 
> calling_number= tx_conn_speed=100000000 framing=async
> npppd[64123]: l2tpd ctrl=1 call=25390 logtype=PPPBind ppp=0
> npppd[64123]: ppp id=0 layer=base logtype=Started 
> tunnel=L2TP(2xx.xx.xx.xx:43603)
> npppd[64123]: l2tpd ctrl=1 call=25390 SendZLB
> npppd[64123]: ppp id=0 layer=lcp logtype=Opened mru=1360/1400 auth=MS-CHAP-V2 
> magic=5c8fcb66/d54ca801
> npppd[64123]: ppp id=0 layer=chap proto=mschap_v2 logtype=Success 
> username="stsp" realm=LOCAL
> npppd[64123]: ppp id=0 layer=ipcp IP Address peer=0.0.0.0 our=10.197.92.176.
> npppd[64123]: ppp id=0 layer=base mppe is rejected by peer
> npppd[64123]: ppp id=0 layer=ipcp logtype=Opened ip=10.197.92.176 
> assignType=dynamic
> npppd[64123]: ppp id=0 layer=base logtype=TUNNELSTART user="stsp" 
> duration=0sec layer2=L2TP layer2from=2xx.xx.xx.xx:43603 auth=MS-CHAP-V2  
> ip=10.197.92.176 iface=pppx0
> npppd[64123]: ppp id=0 layer=base Using pipex=yes
> 
> /etc/ipsec.conf:
> [[[
> ipv4 = "2yy.yy.yy.yy"
> ipv6 = "2001:yyyy:yyyy:yyyy::yyyy"
> l2tp_port = "1701"
> password = "guessme"
> 
> ike passive esp transport \
>         proto udp from $ipv4 to any port $l2tp_port \
>         psk $passphrase 
> 
> ike passive esp transport \
>         proto udp from $ipv6 to any port $l2tp_port \
>         psk $passphrase 
> ]]]
> 
> /etc/npppd/npppd.conf:
> [[[
> authentication LOCAL type local {
>         users-file "/etc/npppd/npppd-users"
> }
> 
> tunnel L2TP protocol l2tp {
>         listen on 0.0.0.0
>         listen on ::
> }
> 
> ipcp IPCP {
>         pool-address 10.197.92.2-10.197.92.254
>         dns-servers 8.8.8.8
> }
> 
> interface pppx0 address 10.197.92.1 ipcp IPCP
> bind tunnel from L2TP authenticated by LOCAL to pppx0
> ]]]
> 
> /etc/sysctl.conf
> [[[
> net.inet.ip.forwarding=1        # 1=Permit forwarding (routing) of IPv4 
> packets
> net.inet6.ip6.forwarding=1      # 1=Permit forwarding (routing) of IPv6 
> packets
> net.pipex.enable=1              # 1=Enable pipex(4) for npppd(8)
> ]]]
> 
> /etc/pf.conf
> [[[
> set skip on lo
> 
> block return    # block stateless traffic
> pass            # establish keep-state
> 
> # By default, do not permit remote connections to X11
> block return in on ! lo0 proto tcp to port 6000:6010
> 
> pass in on enc0 from any to any keep state (if-bound)
> pass out on vnet0 from "10.197.92.0/24" nat-to (vnet0)
> ]]]
> 
> console is /virtual-devices@100/console@1
> Copyright (c) 1982, 1986, 1989, 1991, 1993
>       The Regents of the University of California.  All rights reserved.
> Copyright (c) 1995-2017 OpenBSD. All rights reserved.  https://www.OpenBSD.org
> 
> OpenBSD 6.1 (GENERIC.MP) #58: Sat Apr  1 17:10:24 MDT 2017
>     [email protected]:/usr/src/sys/arch/sparc64/compile/GENERIC.MP
> real mem = 536870912 (512MB)
> avail mem = 507019264 (483MB)
> mpath0 at root
> scsibus0 at mpath0: 256 targets
> mainbus0 at root: SPARC Enterprise T1000
> cpu0 at mainbus0: SUNW,UltraSPARC-T1 (rev 0.0) @ 1000 MHz
> cpu1 at mainbus0: SUNW,UltraSPARC-T1 (rev 0.0) @ 1000 MHz
> vbus0 at mainbus0
> "flashprom" at vbus0 not configured
> cbus0 at vbus0
> vdsk0 at cbus0 chan 0x2: ivec 0x4, 0x5
> scsibus1 at vdsk0: 2 targets
> sd0 at scsibus1 targ 0 lun 0: <SUN, Virtual Disk, 1.1> SCSI3 0/direct fixed
> sd0: 8192MB, 512 bytes/sector, 16777216 sectors
> vdsk1 at cbus0 chan 0x3: ivec 0x6, 0x7
> scsibus2 at vdsk1: 2 targets
> sd1 at scsibus2 targ 0 lun 0: <SUN, Virtual Disk, 1.1> SCSI3 0/direct fixed
> sd1: 2MB, 512 bytes/sector, 5760 sectors
> vnet0 at cbus0 chan 0x4: ivec 0x8, 0x9, address 00:14:4f:fb:2c:e1
> vcons0 at vbus0: ivec 0x111, console
> vrtc0 at vbus0
> vscsi0 at root
> scsibus3 at vscsi0: 256 targets
> softraid0 at root
> scsibus4 at softraid0: 256 targets
> softraid0: sd2 was not shutdown properly
> sd2 at scsibus4 targ 1 lun 0: <OPENBSD, SR CRYPTO, 006> SCSI2 0/direct fixed
> sd2: 8189MB, 512 bytes/sector, 16771332 sectors
> bootpath: /virtual-devices@100,0/channel-devices@200,0/disk@0,0
> root on sd2a (f2c282e2b49fa017.a) swap on sd2b dump on sd2b
> WARNING: / was not properly unmounted
> 

-- 
:wq Claudio

Reply via email to