[Bug 212576] vnet jail startup and shutdown destroys ipfw object rewriter list

Sun Sep 11 03:25:04 UTC 2016

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=212576

            Bug ID: 212576
           Summary: vnet jail startup and shutdown destroys ipfw object
                    rewriter list
           Product: Base System
           Version: 11.0-RC1
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: kern
          Assignee: freebsd-bugs at FreeBSD.org
          Reporter: avernar at gmail.com

In ip_fw2.c the functions ipfw_init_obj_rewriter and ipfw_destroy_obj_rewriter
are called per vnet but the ctl3_rewriters and ctl3_rsize variables in
ip_fw_sockopt.c file are system global.

This causes the rewriter list to be wiped out on vnet startup (and again at
vnet shutdown but that has no effect on a now empty list).  The result is a
very small memory leak in the kernel and the "ipfw list" command will segfault
if tables are defined as the kernel will not return the table names.

Running 11.0-RC2 but it wasn't in the list.

-- 
You are receiving this mail because:
You are the assignee for the bug.