This happened after a 'smurf' attack on a test win95 host.
It is on the same 100B-T as the target.
(smurf is a ICMP DOS attack by spoofing a ping to a broadcast address)
(named after a post on bugtraq)
only patch is squid file descriptor increase patch.
I blame this on the eth0 card, but I read that you all want all
oopses and such posted so here it is.
The crash happened when I tried to ifconfig eth0 down
I also got many of these in my log right before the crash:
Oct 13 12:52:30 cache kernel: eth0: transmit timed out, tx_status 00
status e000
.
Oct 13 12:52:30 cache kernel: Flags; bus-master 0, full 0; dirty 0
current 0.
Oct 13 12:52:30 cache kernel: Down list 00000000 vs. 00092524.
Oct 13 12:52:30 cache kernel: 0: 00092524 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 1: 00092534 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 2: 00092544 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 3: 00092554 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 4: 00092564 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 5: 00092574 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 6: 00092584 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 7: 00092594 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 8: 000925a4 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 9: 000925b4 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 10: 000925c4 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 11: 000925d4 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 12: 000925e4 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 13: 000925f4 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 14: 00092604 length 00000000 status 00000000
Oct 13 12:52:30 cache kernel: 15: 00092614 length 00000000 status 00000000
The NIC is buggy so says the driver:
eth0: 3Com 3c905 Boomerang 100baseTx at 0xff00, 00:60:08:19:98:01, IRQ 9
8K word-wide RAM 3:5 Rx:Tx split, autoselect/MII interface.
Rx Pacing bug exists, disabling bus-master receives.
eth0: Overriding PCI latency timer (CFLT) setting of 32, new value is 248.
3c900.c:v0.40 4/16/97 becker@cesdis.gsfc.nasa.gov
my modules:
<none>
my bootup messages:
Serial driver version 4.13 with no serial options enabled
tty00 at 0x03f8 (irq = 4) is a 16550A
tty01 at 0x02f8 (irq = 3) is a 16550A
PS/2 auxiliary pointing device detected -- driver installed.
Floppy drive(s): fd0 is 1.44M
Started kswapd v 1.4.2.2
FDC 0 is a National Semiconductor PC87306
md driver 0.35 MAX_MD_DEV=4, MAX_REAL=8
linear personality registered
raid0 personality registered
aic7xxx: BurstLen = 8 DWDs, Latency Timer = 72 PCLKS
aic7xxx: AHA-2940 Ultra Rev B.
aic7xxx: devconfig = 0x1580.
aic7xxx: Reading SEEPROM...done.
aic7xxx: Extended translation enabled.
aic7xxx: Memory check yields 16 SCBs, paging not enabled.
aic7xxx: Enabling wide channel of AHA-2940 Ultra-Wide.
AHA-2940 Ultra-WIDE (PCI-bus), I/O 0xf800, Mem 0xffbee000:
irq 11
bus release time 40 bclks
data fifo threshold 100%
SCSI CHANNEL A:
scsi id 7
scsi selection timeout 256 ms
scsi bus reset at power-on enabled
scsi bus parity enabled
scsi bus termination (low byte) disabled
scsi bus termination (high byte) disabled
aic7xxx: Downloading sequencer code...done.
aic7xxx: Resetting the SCSI bus...done.
scsi0 : Adaptec AHA274x/284x/294x (EISA/VLB/PCI-Fast SCSI) 4.0/3.2/4.0
scsi : 1 host.
scsi0: Scanning channel A for devices.
scsi0: Received MSG_WDTR, Target 0, channel A needwdtr(0xffff).
scsi0: Target 0, channel A, using 16 bit transfers.
scsi0: Target 0, channel A, now synchronous at 10.0MHz, offset 8.
Vendor: SEAGATE Model: ST19171W Rev: 0023
Type: Direct-Access ANSI SCSI revision: 02
Detected scsi disk sda at scsi0, channel 0, id 0, lun 0
scsi0: Received MSG_WDTR, Target 1, channel A needwdtr(0xfffe).
scsi0: Target 1, channel A, now synchronous at 10.0MHz, offset 15.
Vendor: SEAGATE Model: ST12400N SUN2.1G Rev: 8720
Type: Direct-Access ANSI SCSI revision: 02
Detected scsi disk sdb at scsi0, channel 0, id 1, lun 0
scsi0: Received MSG_WDTR, Target 3, channel A needwdtr(0xfffc).
scsi0: Target 3, channel A, now synchronous at 10.0MHz, offset 15.
Vendor: SEAGATE Model: ST12400N SUN2.1G Rev: 8720
Type: Direct-Access ANSI SCSI revision: 02
Detected scsi disk sdc at scsi0, channel 0, id 3, lun 0
scsi0: Received MSG_WDTR, Target 4, channel A needwdtr(0xfff4).
scsi0: Target 4, channel A, now synchronous at 10.0MHz, offset 15.
Vendor: HP Model: C1533A Rev: A612
Type: Sequential-Access ANSI SCSI revision: 02
Detected scsi tape st0 at scsi0, channel 0, id 4, lun 0
scsi0: Received MSG_WDTR, Target 6, channel A needwdtr(0xffe4).
scsi0: Target 6, channel A, now synchronous at 10.0MHz, offset 15.
Vendor: PLEXTOR Model: CD-ROM PX-12TS Rev: 1.02
Type: CD-ROM ANSI SCSI revision: 02
Detected scsi CD-ROM sr0 at scsi0, channel 0, id 6, lun 0
scsi : detected 1 SCSI tape 1 SCSI cdrom 3 SCSI disks total.
SCSI device sda: hdwr sector= 512 bytes. Sectors= 17783112 [8683 MB] [8.7 GB]
SCSI device sdb: hdwr sector= 512 bytes. Sectors= 4194685 [2048 MB] [2.0 GB]
SCSI device sdc: hdwr sector= 512 bytes. Sectors= 4194685 [2048 MB] [2.0 GB]
eth0: 3Com 3c905 Boomerang 100baseTx at 0xff00, 00:60:08:19:98:01, IRQ 9
8K word-wide RAM 3:5 Rx:Tx split, autoselect/MII interface.
Rx Pacing bug exists, disabling bus-master receives.
eth0: Overriding PCI latency timer (CFLT) setting of 32, new value is 248.
3c900.c:v0.40 4/16/97 becker@cesdis.gsfc.nasa.gov
Partition check:
sda: sda1 sda2 sda3 sda4 < sda5 sda6 sda7 sda8 sda9 sda10 sda11 >
sdb: sdb1
sdc: sdc1
VFS: Mounted root (ext2 filesystem) readonly.
Adding Swap: 130748k swap-space (priority -1)
Detected scsi tape st0 at scsi0, channel 0, id 4, lun 0
Unable to get major 9 for SCSI tapes
REGISTER_DEV sdb1 to md0 done
REGISTER_DEV sdc1 to md0 done
START_DEV md0 raid0
(the last is my raid0 across 2 s.1 gig scsi drives)
P6-200 64 megs of memory
-------------------------------------------------------------------
invalid operand: 0000
CPU: 0
EIP: 0010:[<00000007>]
EFLAGS: 00010602
eax: 00000000 ebx: 01653414 ecx: 00000212 ed x: 00705240
esi: 00705240 edi: 00000000 ebp: 00001043 es p: 01050ef0
ds: 0018 es: 0018 fs: 002b gs: 002b ss: 00 18
Process ifconfig (pid: 24817, process nr: 81, stac kpage=01050000)
Stack:
001386e4 01653414 001de428 00000001 001de39 0 001392f8 00705240 00000000
001de390 bffffcd4 01050f64 00139c1c 001de39 0 bffffcb4 02971c0c 0804c983
bffffc98 00cb70d8 0006d000 03feb4ec 03fbb00 0 30687465 0804e000 0804c921
Call Trace: [__release_sock+16/128]
[dev_add_pack+ 56/64]
[dev_ifsioc+160/1632]
[dev_ifsioc+1499/1632]
[dev_getbytype+11/40]
[sock_ ioctl+1/36]
[sys_ioctl+135/268]
[do_signal+277/628]
Code:
f0 c3 e2 00 f0 fd 00 00 f0 fd 00 00 f0 54 ff 00 f0 fd 00 00 A
Using `/boot/System.map' to map addresses to symbols.
Code: lock ret
Code: loop 00000004 <_EIP+4>
Code: lock std
Code: addb %al,(%eax)
Code: lock std
Code: addb %al,(%eax)
Code: lock pushl %esp
Code: incl (%eax)
Code: lock std
Code: addb %al,(%eax)
Code:
My kernel config:
CONFIG_EXPERIMENTAL=y
CONFIG_MODULES=y
CONFIG_NET=y
CONFIG_PCI=y
CONFIG_PCI_OPTIMIZE=y
CONFIG_SYSVIPC=y
CONFIG_BINFMT_AOUT=y
CONFIG_BINFMT_ELF=y
CONFIG_KERNEL_ELF=y
CONFIG_M686=y
CONFIG_BLK_DEV_FD=y
CONFIG_BLK_DEV_IDE=y
CONFIG_BLK_DEV_CMD640=y
CONFIG_BLK_DEV_RZ1000=y
CONFIG_BLK_DEV_MD=y
CONFIG_MD_LINEAR=y
CONFIG_MD_STRIPED=y
CONFIG_INET=y
CONFIG_SYN_COOKIES=y
CONFIG_RST_COOKIES=y
CONFIG_IP_NOSR=y
CONFIG_SKB_LARGE=y
CONFIG_IPX=y
CONFIG_SCSI=y
CONFIG_BLK_DEV_SD=y
CONFIG_CHR_DEV_ST=y
CONFIG_BLK_DEV_SR=y
CONFIG_CHR_DEV_SG=y
CONFIG_SCSI_MULTI_LUN=y
CONFIG_SCSI_CONSTANTS=y
CONFIG_SCSI_AIC7XXX=y
CONFIG_NETDEVICES=y
CONFIG_DUMMY=y
CONFIG_NET_ETHERNET=y
CONFIG_NET_VENDOR_3COM=y
CONFIG_VORTEX=y
CONFIG_QUOTA=y
CONFIG_MINIX_FS=y
CONFIG_EXT2_FS=y
CONFIG_PROC_FS=y
CONFIG_NFS_FS=y
CONFIG_SMB_FS=y
CONFIG_SMB_WIN95=y
CONFIG_NCP_FS=y
CONFIG_ISO9660_FS=y
CONFIG_SERIAL=y
CONFIG_MOUSE=y
CONFIG_PSMOUSE=y
CONFIG_PSMOUSE=y
If you need more just ask.
JS