kernel panics when executing "conntrackd -c"
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Hardy |
Won't Fix
|
Medium
|
Andy Whitcroft |
Bug Description
I'm using Ubuntu 8.04 server for a pair of redundant firewalls with keepalived and conntackd (conntrack-tools).
The systems run the current ubuntu 2.6.24-18.32 server kernel.
Whenever I execute "conntrackd -c" i get either a kernel oops or a kernel panic.
I've attached a scenshot of the kernel panic.
I've already reported this bug upstream to the netfilter-devel list (see this thread: http://
The underlying problem has already been fixed in 2.6.26-rc.
Krzysztof Oledzki provided a backport for the fix consisting of 4 patches (see http://
which I applied to the current Ubuntu linux-source.
These patches indeed fixed the kernel panic and oopses I got on my system.
It would be nice, if this could also fixed in the kernel of Ubuntu 8.04. Especially since this is a LTS distribution which people may use as a basis for building network appliances like iptable firewalls, routers, load balancers etc. this fix seems rater important.
Changed in linux: | |
assignee: | ubuntu-kernel-team → colin-king |
milestone: | none → ubuntu-8.04.2 |
status: | Triaged → In Progress |
Changed in linux (Ubuntu Hardy): | |
assignee: | Colin King (colin-king) → Andy Whitcroft (apw) |
Thanks Rainer,
I'm going to include the 4 upstream git commit id's for the kernel team to reference.
Also, just in case you are interested, the upcoming Intrepid Ibex 8.10 kernel already has these patches applied as it was most recently sync'd with the upstream 2.6.26 kernel. If you'd be interested in running the latest Alpha for the upcoming Intrepid release more information can be found at http:// www.ubuntu. com/testing. Thanks.
commit 86577c661bc01d5 c4e477d74567df4 470d6c5138
Author: Patrick McHardy <email address hidden>
Date: Thu Feb 7 17:56:34 2008 -0800
[NETFILTER]: nf_conntrack: fix ct_extend ->move operation
commit 019f692ea719a2d a17606511d2648b 8cc1762268
Author: Pekka Enberg <email address hidden>
Date: Mon Mar 10 16:43:41 2008 -0700
[NETFILTER]: nf_conntrack: replace horrible hack with ksize()
commit ceeff7541e5a4ba 8e8d97ffbae32b3 f283cb7a3f
Author: Patrick McHardy <email address hidden>
Date: Wed Jun 11 17:51:10 2008 -0700
netfilter: nf_conntrack: fix ctnetlink related crash in nf_nat_setup_info()
commit 68b80f113808899 96aa7eadba29dbb b5c29a5864
Author: Patrick McHardy <email address hidden>
Date: Tue Jun 17 15:51:47 2008 -0700
netfilter: nf_nat: fix RCU races