[Swan] Crash with Libreswan 3.12
Roel van Meer
roel at 1afa.com
Tue Nov 11 14:53:14 EET 2014
Roel van Meer writes:
>> It looks like some corruption happened, and we were giving nonsense to
>> nss. Your passert patch seems to confirm that.
>
> Ok.
As far as I can see, what happens is that at some point nss gives us a key
without a slot, and the next time we call nss, we don't get a key and hit
the assert. So the problem actually happens in the call to nss before the one
that hits the assert. I'm going to try and find out how it can happen that
we get a key without a slot.
>>> I hope this is useful. Please let me know if I can provide any more
>>> information, or if there is anything I should test.
>>
>> If possible, you could enable EFENCE in Makefile.inc and compile with
>> electric fence. It might be able to spot some bad memory usage.
>
> I've compiled 3.12-rc1 with duma, but it might be a few days before I have a
> chance to test it. I'll report back the results as soon as I have them.
Not much useful info, I'm afraid. See below:
# /etc/rc.d/rc.ipsec start
Starting pluto IKE daemon for IPsec: DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
DUMA: Reported 0 leaks. There are 1196 extra leaks without allocation information
DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
DUMA: Reported 0 leaks. There are 702 extra leaks without allocation information
DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
/usr/libexec/ipsec/_stackmanager: line 329: 20151 Segmentation fault ipsec tncfg --delete ${device}
DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
DUMA: Reported 0 leaks. There are 702 extra leaks without allocation information
DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
DUMA: Reported 0 leaks. There are 702 extra leaks without allocation information
DUMA 2.5.15 (shared library)
Copyright (C) 2006 Michael Eddington <meddington at gmail.com>
Copyright (C) 2002-2008 Hayati Ayguen <h_ayguen at web.de>, Procitec GmbH
Copyright (C) 1987-1999 Bruce Perens <bruce at perens.com>
DUMA: Reported 0 leaks. There are 702 extra leaks without allocation information
Anything else I might try?
Regards,
Roel
More information about the Swan
mailing list