1 |
Hello, |
2 |
|
3 |
I've been experiencing really strange behaviours with the 2 latest |
4 |
hardened kernels (2.6.14-r6 and r7) on 2 different machines that are |
5 |
both used as OpenVPN concentrators. |
6 |
2.6.14-r5 is working fine on these machines. |
7 |
|
8 |
The phenomenon is the following. When I connect to the openvpn server |
9 |
from remote with openvpn, a connection is established (from the view of |
10 |
the client) but in the same moment the server crashes. |
11 |
|
12 |
This is what I managed to capture with netconsole: |
13 |
|
14 |
Unable to handle kernel paging request at virtual address 00695052 |
15 |
printing eip: |
16 |
*pgd = 0 |
17 |
*pmd = 0 |
18 |
Oops: 0000 [#1] |
19 |
Modules linked in: netconsole w83781d hwmon_vid hwmon i2c_isa |
20 |
ip6table_filter cls_fw sch_sfq sch_htb cls_u32 bsd_comp ppp_synctty |
21 |
ppp_async crc_ccitt ppp_generic slhc ipt_DSCP ipt_tos ipt_length |
22 |
ipt_TCPMSS i2c_viapro i2c_core parport_pc loop |
23 |
CPU: 0 |
24 |
EIP: 0060:[<00000001>] Not tainted VLI |
25 |
EFLAGS: 00010286 |
26 |
(2.6.14-hardened-r7) EIP is at checkCPUtype+0xfffffefc/0x81 |
27 |
eax: c0c25a20 ebx: 00000000 ecx: f793e4e0 edx: f5b89640 |
28 |
esi: 0028d4f0 edi: c0c95240 ebp: 00289370 esp: c0c56e70 |
29 |
ds: 007b es: 007b ss: 0068 |
30 |
Process openvpn (pid: 24564, threadinfo=c0c56000 task=f730e070) |
31 |
Stack: 0028d5c1 f5b89640 00000001 c0c95300 00000000 |
32 |
0028d4f0 c0c95240 00289370 0028de4b f5b89640 00000000 c0c56ec0 f6c3c000 |
33 |
|
34 |
|
35 |
I first though it was machine related (hardware) but as it now happened on a |
36 |
second machine, I'm not sure anymore... |
37 |
I tried to recompile openvpn and the kernel (one machine has gcc 3.3.6 |
38 |
- the other one 3.4.5): it didn't help. |
39 |
|
40 |
I'm unsure where to start looking for the problem. Is it a flaw in OpenVPN or could it be caused by one of the patches included in 2.4.15-r6? |
41 |
|
42 |
Thanks for your advice. Regards, |
43 |
|
44 |
|
45 |
Jean-Pierre |
46 |
-- |
47 |
Powered by Linux From Scratch - http://schwicky.net/ |
48 |
PGP Key ID: 0xEE6F49B4 - AIM/Jabber: Schwicky - ICQ: 4690141 |
49 |
|
50 |
Nothing is impossible... Everything is relative! |
51 |
-- |
52 |
gentoo-hardened@g.o mailing list |