Kernel panic with PF
Martin Beran
mb at tns.cz
Mon Jul 24 11:21:01 UTC 2006
On Fri, Jul 21, 2006 at 02:15:33PM +0000, Martin Beran wrote:
> I think this is not the case. The proxy uses either DIOCXBEGIN + DIOCBEGINADDRS
> + DIOCADDADDR + DIOCADDRULE + DIOCXCOMMIT or
> DIOCCHANGERULE(PF_CHANGE_GET_TICKET) + DIOCBEGINADDRS + DIOCADDADDR
> + DIOCCHANGERULE(PF_CHANGE_ADD_TAIL). The first method is used in the first
> call to create the ruleset. In the subsequent call, the second method is used
> to modify the ruleset.
I did an experiment - repeated adding and deleting rules in two processes, as
fast as possible. I expected EBUSY from time to time, but I also received
EINVAL indeterministically. It seems to me that when the PF ioctl() is called
simultaneously by two processes, it sometimes retuns EINVAL, although it sould
be possible to either complete the operation (parameters are correct), or
return EBUSY.
--
Martin Beran
Senior Developer
Trusted Network Solutions, a.s.
mobil: +420 603 820 932
[ www.tns.cz ]
More information about the freebsd-stable
mailing list