Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at skb_copy_and_csum_dev

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Eric Dumazet

Subject: Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at skb_copy_and_csum_dev

Date: Tuesday, August 24, 2010 - 12:19 pm

Le mardi 24 août 2010 à 20:25 +0300, Plamen Petrov a écrit :
quoted text> Above patch applied, and happy to report the machine now spits data
> in the logs instead of oopsing. Here is what we have now: 
> [  707.276981] ---[ end trace 75e4f8534893c910 ]---
> [  707.376998] 100: csum_start 306, offset 16, headroom 390, headlen 70, 
> len 70
> [  707.477015] nr_frags=0 gso_size=0
> [  707.577031]
> [ 1021.032794] ---[ end trace 75e4f8534893c911 ]---
> [ 1021.132812] 100: csum_start 306, offset 16, headroom 390, headlen 153, 
> len 153
> [ 1021.232828] nr_frags=0 gso_size=0
> [ 1021.332844] 
> 

Thanks !

csum_offset = 16.

so its offsetof(struct tcphdr, check)

maybe a bug in net/ipv4/netfilter/nf_nat_helper.c ?

We should trace all spots where we set csum_start/csum_offset

Or/And trace the skb content.

Please add a :

print_hex_dump(KERN_ERR, "skb data:", DUMP_PREFIX_OFFSET, 
               16, 1, skb->head, skb_end_pointer(skb)-skb->head,true);


call in skb_csum_start_bug(), right after the pr_err("\n") and before
the "return 1;"


int skb_csum_start_bug(const struct sk_buff *skb, int pos)
{

        if (skb->ip_summed == CHECKSUM_PARTIAL) {
                long csstart;

                csstart = skb->csum_start - skb_headroom(skb);
                if (WARN_ON(csstart > skb_headlen(skb))) {
                        int i;

                        pr_err("%d: csum_start %u, offset %u, headroom %d, headlen %d, len %d\n",
                                   pos, skb->csum_start, skb->csum_offset, skb_headroom(skb),
                                   skb_headlen(skb), skb->len);
                        pr_err("nr_frags=%u gso_size=%u ",
                                        skb_shinfo(skb)->nr_frags,
                                        skb_shinfo(skb)->gso_size);
                        for (i = 0; i < skb_shinfo(skb)->nr_frags; i++) {
                                pr_err("frag_size=%u ", skb_shinfo(skb)->frags[i].size);
                        }
                        pr_err("\n");
                        print_hex_dump(KERN_ERR, "skb data:", DUMP_PREFIX_OFFSET,
                                16, 1, skb->head, skb_end_pointer(skb) - skb->head, true);
                        return 1;
                }
        }
        return 0;
}


--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Jarek Poplawski, (Fri Aug 20, 12:38 pm)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Jarek Poplawski, (Sat Aug 21, 12:47 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Eric Dumazet, (Sat Aug 21, 12:50 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Jarek Poplawski, (Sat Aug 21, 1:07 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Mon Aug 23, 4:47 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Eric Dumazet, (Mon Aug 23, 5:35 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Jarek Poplawski, (Mon Aug 23, 5:47 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Eric Dumazet, (Mon Aug 23, 6:00 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Jarek Poplawski, (Mon Aug 23, 6:10 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Mon Aug 23, 6:43 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Mon Aug 23, 7:05 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Jarek Poplawski, (Mon Aug 23, 7:14 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Mon Aug 23, 9:51 pm)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Eric Dumazet, (Mon Aug 23, 10:01 pm)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Mon Aug 23, 10:19 pm)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Jarek Poplawski, (Mon Aug 23, 11:18 pm)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Tue Aug 24, 1:43 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Tue Aug 24, 6:27 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Eric Dumazet, (Tue Aug 24, 8:08 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Tue Aug 24, 10:25 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Jarek Poplawski, (Tue Aug 24, 11:22 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Eric Dumazet, (Tue Aug 24, 12:19 pm)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Wed Aug 25, 12:05 am)

Re: [Bugme-new] [Bug 16626] New: Machine hangs with EIP at ..., Plamen Petrov, (Fri Aug 27, 1:44 am)

[PATCH] net: reset ip_summed in skb_tunnel_rx(), Eric Dumazet, (Sun Aug 29, 12:48 am)

Re: [PATCH] net: reset ip_summed in skb_tunnel_rx(), Jesse Gross, (Sun Aug 29, 8:35 am)


linux-kernel:
FUJITA Tomonori	Re: [Scst-devel] Integration of SCST in the mainstream Linux kernel
Rafael J. Wysocki	[Bug #11287] Regression in 2.6.27-rc2 in acpi_processor_init()
Ingo Molnar	Re: [PATCH] x86: silence section mismatch warning - uv_cpu_init
Ingo Molnar	Re: [GIT PULL] time.c - respin
Paul E. McKenney	Re: [PATCH, RFC] v7 scalable classic RCU implementation
git:
Mark Junker	git on MacOSX and files with decomposed utf-8 file names
Junio C Hamano	Re: git-svnimport
Junio C Hamano	Re: [PATCH] Detached HEAD (experimental)
Johannes Schindelin	Re: [PATCH] Fix approxidate("never") to always return 0
A Large Angry SCM	Re: [RFC] origin link for cherry-pick and revert
linux-netdev:
Arnaldo Carvalho de Melo	Re: [PATCH 06/37] dccp: Limit feature negotiation to connection setup phase
Gerrit Renker	[PATCH 1/5] dccp: Initialisation framework for feature negotiation
Daniel Lezcano	getsockopt(TCP_DEFER_ACCEPT) value change
David Miller	Re: 2.6.27.18: bnx2/tg3: BUG: "scheduling while atomic" trying to ifenslave a seco...
Gerrit Renker	[PATCH 37/37] dccp: Debugging functions for feature negotiation
git-commits-head:
Linux Kernel Mailing List	ath9k_htc: Allocate URBs properly
Linux Kernel Mailing List	powerpc/kexec: Add support for FSL-BookE
Linux Kernel Mailing List	timer: Try to survive timer callback preempt_count leak
Linux Kernel Mailing List	V4L/DVB (8976): af9015: Add USB ID for AVerMedia A309
Linux Kernel Mailing List	ARM: 5670/1: bcmring: add default configuration for bcmring arch
openbsd-misc:
Stephen J. Bevan	GRE over IPsec
Christophe Rioux	Implementation example of snmp
Nick Holland	Re: booting openbsd on eee without cd-rom
Cabillot Julien	Re: OpenBSD isakmpd and pf vs Cisco PIX or ASA
Guido Tschakert	Re: what exactly is enc0?