svn commit: r339646 - head/sys/net
Kristof Provost
kp at FreeBSD.org
Tue Oct 23 19:55:14 UTC 2018
> On 23 Oct 2018, at 06:03, Andrey V. Elsukov <ae at FreeBSD.org> wrote:
>
> Author: ae
> Date: Tue Oct 23 13:03:03 2018
> New Revision: 339646
> URL: https://svnweb.freebsd.org/changeset/base/339646
>
> Log:
> Add the check that current VNET is ready and access to srchash is
> allowed.
>
> ipsec_srcaddr() callback can be called during VNET teardown, since
> ingress address checking subsystem isn't VNET specific. And thus
> callback can make access to already freed memory. To prevent this,
> use V_ipsec_idhtbl pointer as indicator of VNET readiness. And make
> epoch_wait() after resetting it to NULL in vnet_ipsec_uninit() to
> be sure that ipsec_srcaddr() is finished its work.
>
> Reported by: kp
> MFC after: 20 days
>
Thanks for the fix.
Kristof
More information about the svn-src-head
mailing list