[Bug 268832] panics in check_uidgid() for outgoing packets

bugzilla-noreply Tue, 10 Jan 2023 03:34:27 -0800

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=268832


Alexander V. Chernikov <melif...@freebsd.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Assignee|b...@freebsd.org            |n...@freebsd.org

--- Comment #2 from Alexander V. Chernikov <melif...@freebsd.org> ---
The following set of conditions leads to this:

* tcp_respond() does not propagate inpcb pointer if the connection is reset
(TH_RST)
* On the output path, ipfw_chk is called
* ipfw may run check_uidgid() to verify jail/uid/gid ruleset opcodes
* check_uidgid() performs incpb lookup, requesting read lock
* As inpcb is already write-locked, the search results in the panic

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 268832] panics in check_uidgid() for outgoing packets

Reply via email to