[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: kernel/2211: PF / Kernel problem, it filtered all ports

To: bugs@openbsd.org
Subject: Re: kernel/2211: PF / Kernel problem, it filtered all ports
From: Daniel Hartmeier <daniel@benzedrine.cx>
Date: Wed, 28 Nov 2001 21:34:29 +0100
Content-Disposition: inline
References: <200111280628.fAS6SNkv031628@shellhung.org> <200111280630.fAS6U2mS007608@cvs.openbsd.org> <20011128171302.B32152@shellhung.org> <20011128205604.A17382@imac.benzedrine.cx>
User-Agent: Mutt/1.2.5i

I repeated the procedure a couple of times with variations, and finally
got it to panic:

panic: malloc out of space in kmem_map
_panic
_malloc
_bpf_allocbufs
_bpf_setif
_bpfioctl
_specioctl
_VOP_ioctl
_vn_ioctl
_sys_ioctl
_syscall

This is on the 64MB i386. I have to set all state timeouts to high
values (pfctl -t tcp.first=9999 etc.) and then run nmap until it fails
(around 62000 states). Then stop the scan and run just 'nmap 10.1.1.1' a
couple of times. Sometimes it just fails with various messages
(variations of 'No route to host'). After a couple of tries, I get the
above panic.

How does the trace look? Is is probably a bug in pf, like not freeing
mbufs? Or the pool handling within pf? Or is pf just the part that
exhausts the resources, and other pool usage would cause the same thing?

Daniel

Follow-Ups:
- Re: kernel/2211: PF / Kernel problem, it filtered all ports
  - From: Daniel Hartmeier <daniel@benzedrine.cx>

References:
- kernel/2211: PF / Kernel problem, it filtered all ports
  - From: shell@shellhung.org
- Re: kernel/2211: PF / Kernel problem, it filtered all ports
  - From: "Shell, Hin-lik Hung" <shell@shellhung.org>

Prev by Date: Online ordering for Europe
Next by Date: Re: kernel/2211: PF / Kernel problem, it filtered all ports
Prev by thread: Re: kernel/2211: PF / Kernel problem, it filtered all ports
Next by thread: Re: kernel/2211: PF / Kernel problem, it filtered all ports
Index(es):
- Date
- Thread