Re: Systems crash after call netstart

Thu, 20 Jun 2024 00:00:43 -0700 

On Wed, Jun 19, 2024 at 03:37:17PM +0000, Marco Agostani wrote:
> 
> >Synopsis:      ifconfig on a sec interface crash the system
> >Category:      System Hangs
> >Environment:
>         System      : OpenBSD 7.5
>         Details     : OpenBSD 7.5 (GENERIC.MP) #82: Wed Mar 20 15:48:40 MDT 
> 2024
>                          
> dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> 
>         Architecture: OpenBSD.amd64
>         Machine     : amd64
> >Description:
>         I call sh /etc.netstart after a change to some interfaces the system 
> suddenly crash
>         After some dig up I discovered that one interface is responsible for 
> the issue.
>         /etc/hostname.sec7129
> 
>           10.0.1.234 10.0.1.233 description "to CAT tun7129"
>           up
>           !route add 10.219.128/19 10.0.1.233 -mpath -label AWSCAT
> 
>            doing the same for exmaple on other sec interface has no issues
> 
>         i.e.
>             ifconfig sec8129 10.0.1.238 10.0.1.237 exit w/o doing nothing 
> weird
> 
>        systemctl.conf contents
> 
>         ddb.panic=1
>         kern.bufcachepercent=60        # Allow the kernel to use up to 90% of 
> the RAM for cache (default 10%)
>         net.inet.ip.forwarding=1       # Permit forwarding (routing) of 
> packets through the firewall
>         net.inet.icmp.errppslimit=1000 # Maximum number of outgoing ICMP 
> error messages per second
>         net.inet.ip.mtudisc=1          # TCP MTU (Maximum Transmission Unit) 
> discovery off since our mss is small enough
>         net.inet.tcp.rfc3390=1         # Enable RFC3390 TCP window increasing 
> so larger CWND can take affect
>         net.inet.ip.ttl=64             # the TTL should match what we have 
> for "min-ttl" in scrub rule in pf.conf
>         net.inet.tcp.ackonpush=1       # acks for packets with the push bit 
> set should not be delayed
>         net.inet.tcp.ecn=0             # Explicit Congestion Notification 
> enabled
>         net.inet.tcp.mssdflt=1452      # maximum segment size (1440 from 
> scrub pf.conf match statement)
>         net.inet.carp.log=2            # Log CARP state changes
>         net.inet.carp.preempt=1        # Enable CARP interfaces to preempt 
> each other (0 -> 1)
>         net.inet.ip.forwarding=1       # Enable packet forwarding through the 
> firewall (0 -> 1)
>         net.inet.ip.multipath=1        # Enable multipathing
> 
> 
> >How-To-Repeat:
>         ifconfig sec7129 10.0.1.234 10.0.1.233

trace in the png:

panic: kernel diagnostic assertion "!ISSET(rt->rt_flags, RTF_UP)" failed: file 
"/usr/src/sys/net/route.c", line 590
panic+0x130
__assert+0x29
rtfree+0x1bf
route_output+0x464
route_send+0x5b
sosend+0x385
dofilewritev+0x151
sys_writev+0xd2
syscall+0x55b
Xsyscall+0x128

Reply via email to