Date: Wed, 6 Apr 2005 14:00:33 +0000 (UTC) From: Gleb Smirnoff <glebius@FreeBSD.org> To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sys/netinet ip_fw_pfil.c Message-ID: <200504061400.j36E0Xjr052128@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
glebius 2005-04-06 14:00:33 UTC
FreeBSD src repository
Modified files:
sys/netinet ip_fw_pfil.c
Log:
When a packet has been reinjected into ipfw(4) after dummynet(4) processing
we have a non-NULL args.rule. If the same packet later is subject to "tee"
rule, its original is sent again into ipfw_chk() and it reenters at the same
rule. This leads to infinite loop and frozen router.
Assign args.rule to NULL, any time we are going to send packet back to
ipfw_chk() after a tee rule. This is a temporary workaround, which we
will leave for RELENG_5. In HEAD we are going to make divert(4) save
next rule the same way as dummynet(4) does.
PR: kern/79546
Submitted by: Oleg Bulyzhin
Reviewed by: maxim, andre
MFC after: 3 days
Revision Changes Path
1.18 +6 -2 src/sys/netinet/ip_fw_pfil.c
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200504061400.j36E0Xjr052128>