New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
FS#588 - openvpn-mbedtls crash on mpc85xx with signal 4 (SIGILL) #7937
Comments
lynxis: openvpn-openssl works |
nbd: Please make a core dump and figure out exactly where it crashes in the code. |
ajmcc: Hi, not sure if this is the right thing to do but here goes anyway. I'm running a TL-WDR4900 on lede-17.01.0-r3205-59508e3-mpc85xx-generic-tl-wdr4900-v1-squashfs-sysupgrade.bin. I find that 'curl' fails with 'Illegal Instruction' when making a https transfer, but is fine with http. Syslog: Mar 29 17:11:33 <1.6> 10.0.20.4 c-fw kernel: [2073277.579797] curl[14801]: unhandled signal 4 at b7d2b408 nip b7d2b408 lr b7d19af8 code 30001 I feel the finger may be pointing toward a problem with libembedtls on mpc85xx. The packages on my firewall: curl - 7.52.1-3 |
marcellos: The problem is still there with my TL-WR4900 (mpc85xx) lede-17.01.04 stable release. branch (git-17.290.79498-d3f0685) / LEDE Reboot 17.01.4 r3560-79f57e422d $ curl https://www.example.com Tested with: Also tested upgrading manually cURL and Libcurl (powerpc_8540.ipk) Strange fact is that before upgrading to the stable branch, I was using the nightly snapshot (downloaded 16/10) and there curl/libcurl_7.55.1-2 (+ libmbedtls_2.6.0-1) were there and all was working without a problem. |
SAm0815: I think this was fixed with an update of mbedtls in a later release. |
This is still an issue:
|
The decision to switch the default to wolfSSL was taken because of hostapd back from when curl was in base. Unfortunately, not only is wolfSSL bigger but it has also been causing issues recently. There's also no relation between hostapd and curl. Signed-off-by: Rosen Penev <rosenp@gmail.com>
Curl does not work with mbedtls. This is a known issue: - Mbed-TLS/mbedtls#6430 - openwrt/openwrt#7937 - openwrt#5293 - https://forum.openwrt.org/t/curl-illegal-instruction-17-01-0-r3205-59508e3-mpc85xx-generic/2697 Use wolfssl instead of mbedtls. Signed-off-by: Nick Hainke <vincent@systemli.org>
lynxis:
device: tp-link wdr4900
affected version: lede 17.01 / openvpn-mbedtls - 2.4.0-3
openvpn config:
dev tun-monitoring
remote somehost 1194
ca /etc/openvpn/monitoring-vpn/ca.crt
cert /etc/openvpn/monitoring-vpn/xyz.crt
key /etc/openvpn/monitoring-vpn/xyz.key
tls-auth /etc/openvpn/monitoring-vpn/ta.key 1
remote-cert-tls server
keepalive 10 120
cipher AES-256-CBC
comp-lzo yes
persist-key
persist-tun
The text was updated successfully, but these errors were encountered: