Date: Thu, 10 Oct 1996 16:43:30 -0500 (CDT) From: Karl Denninger <karl@Mcs.Net> To: fenner@parc.xerox.com (Bill Fenner) Cc: fenner@parc.xerox.com, karl@Mcs.Net, current@freebsd.org, hackers@freebsd.org Subject: Re: Crash in -current (from the current SNAP) Message-ID: <199610102143.QAA13666@Jupiter.Mcs.Net> In-Reply-To: <96Oct10.144023pdt.177476@crevenia.parc.xerox.com> from "Bill Fenner" at Oct 10, 96 02:40:12 pm
next in thread | previous in thread | raw e-mail | index | archive | help
>
> >(kgdb)
> >(kgdb) select-frame 14
> >(kgdb) print ip_protox[ip->ip_p]
> >$1 = 2 '\002'
> >
> >That's "INET", if I'm reading the headers correctly.
>
> No, it's "TCP" (ip_protox[] is an offset into the inetsw[], and inetsw[2]
> is TCP).
>
> >(kgdb) print inetsw[ip_protox[ip->ip_p]].pr_input
> >$2 = (void (*)()) 0xf01477ec <tcp_input>
>
> Looks fine. Perhaps the trap didn't actually happen in ip_input?
> Try "select-frame 12" and then "frame frame->tf_ebp frame->tf_eip",
> which should tell you where the crash really happened.
>
> Bill
Oh oh....
(kgdb) select-frame 12
(kgdb) frame frame->tf_ebp frame->tf_eip
#0 0xf0147ae5 in tcp_input (m=0xf2782900, iphlen=20)
at ../../netinet/tcp_input.c:438
../../netinet/tcp_input.c:438: No such file or directory.
Which is....
inp = (struct inpcb *)so->so_pcb;
>>>>>>> inp->inp_laddr = ti->ti_dst;
inp->inp_lport = ti->ti_dport;
in_pcbrehash(inp);
Right in the middle of the "dropsocket" area.
Me smells a problem with the SYN flood patch.
--
--
Karl Denninger (karl@MCS.Net)| MCSNet - The Finest Internet Connectivity
http://www.mcs.net/~karl | T1 from $600 monthly; speeds to DS-3 available
| 23 Chicagoland Prefixes, 13 ISDN, much more
Voice: [+1 312 803-MCS1 x219]| Email to "info@mcs.net" WWW: http://www.mcs.net/
Fax: [+1 312 248-9865] | Home of Chicago's only FULL Clarinet feed!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199610102143.QAA13666>