In one core dump the pointers to socket, inpcb, tcpcb on the stack

of tcp_input() and tcp_output() were very inconsistent.  Especially
the so->so_pcb is NULL which can only happen after the inp has been
detached.  The whole issue looks similar to the old panic:
pool_do_get(inpcbpl): free list modified.
http://marc.info/?l=openbsd-bugs&m=132630237316970&w=2

To get more information, add some asserts that guarantee the
consistency of the socket, inpcb, tcpcb linking.  They should trigger
when an inp is taken from the pcb hashes after it has been freed.
OK henning@

0 files changed, 0 insertions, 0 deletions