cvs commit: src/sys/netinet ip_fw_pfil.c
Gleb Smirnoff
glebius at FreeBSD.org
Fri Apr 8 05:38:00 PDT 2005
glebius 2005-04-08 12:38:00 UTC
FreeBSD src repository
Modified files: (Branch: RELENG_5_4)
sys/netinet ip_fw_pfil.c
Log:
MFC 1.18:
When a packet has been reinjected into ipfw(4) after dummynet(4) processing
we have a non-NULL args.rule. If the same packet later is subject to "tee"
rule, its original is sent again into ipfw_chk() and it reenters at the same
rule. This leads to infinite loop and frozen router.
Assign args.rule to NULL, any time we are going to send packet back to
ipfw_chk() after a tee rule. This is a temporary workaround, which we
will leave for RELENG_5. In HEAD we are going to make divert(4) save
next rule the same way as dummynet(4) does.
PR: kern/79546
Submitted by: Oleg Bulyzhin
Reviewed by: maxim, andre
Approved by: re (kensmith)
Revision Changes Path
1.1.2.8.2.1 +6 -2 src/sys/netinet/ip_fw_pfil.c
More information about the cvs-all
mailing list