IPfilter
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: iPFilter 4.1.17

from [Schuh Andreas] [Permanent Link][Original]
To: darrenr@reed.wattle.id.au
Subject: Re: iPFilter 4.1.17
From: "Schuh Andreas" <ipf@s3h.at>
Date: Sun, 28 Jan 2007 18:27:06 +0100 (CET)
Cc: ipfilter@coombs.anu.edu.au
Delivered-to: sp-com-lists@consult.net
Delivered-to: ipfilter-list@securepoint.com
Importance: Normal
In-reply-to: <45BCBC20.4050105@reed.wattle.id.au>
References: <45B20F87.4030008@reed.wattle.id.au> <55055.85.125.253.83.1169375999.squirrel@www.s3h.at> <45B3B47D.3060707@reed.wattle.id.au> <53562.85.125.253.83.1169407637.squirrel@www.s3h.at> <45BCBC20.4050105@reed.wattle.id.au>
Sender: owner-ipfilter@coombs.anu.edu.au
User-agent: SquirrelMail/1.4.9a 
Sorry, ipfstat -io hangs still in an endless loop at the first message.

Output from /var/log/messages:
Jan 28 18:22:33 gw kernel: ipf_findtoken(0,0,0xc2a5e300) = 0
Jan 28 18:22:33 gw kernel: ipf_findtoken(0,0,0xc2a5e300) = 0xc29726c0
Jan 28 18:22:33 gw last message repeated 345 times
Jan 28 18:22:33 gw kernel: 00) = 0xc29726c0
Jan 28 18:22:33 gw kernel: ipf_findtoken(0,0,0xc2a5e300) = 0xc29726c0
Jan 28 18:22:33 gw last message repeated 762 times
Jan 28 18:22:33 gw kernel: 00) = 0xc29726c0
Jan 28 18:22:33 gw kernel: ipf_findtoken(0,0,0xc2a5e300) = 0xc29726c0
Jan 28 18:22:34 gw last message repeated 2028 times
Jan 28 18:22:34 gw kernel: 00) = 0xc29726c0
Jan 28 18:22:34 gw kernel: ipf_findtoken(0,0,0xc2a5e300) = 0xc29726c0
Jan 28 18:22:34 gw last message repeated 762 times
Jan 28 18:22:34 gw kernel: 00) = 0xc29726c0
Jan 28 18:22:34 gw kernel: ipf_findtoken(0,0,0xc2a5e300) = 0xc29726c0
Jan 28 18:22:34 gw last message repeated 762 times
Jan 28 18:22:34 gw kernel: 00) = 0xc29726c0
Jan 28 18:22:34 gw kernel: ipf_findtoken(0,0,0xc2a5e300) = 0xc29726c0
Jan 28 18:22:34 gw last message repeated 762 times
Jan 28 18:22:34 gw kernel: 00) = 0xc29726c0
Jan 28 18:22:34 gw kernel: ipf_findtoken(0,0,0xc2a5e300) = 0xc29726c0
Jan 28 18:22:34 gw last message repeated 762 times
Jan 28 18:22:35 gw kernel: 00) = 0xc29726c0
Jan 28 18:22:35 gw kernel: ipf_findtoken(0,0,0xc2a5e300) = 0xc29726c0

Andy


On Sun, January 28, 2007 16:07, Darren Reed wrote:
Can you please test with this patch applied?

At present I can only run systems under vmware and freebsd 5.5 under vmware
doesn't exhibit the same problem as you're describing where ïpfstat -io"
runs
forever on just the first rule.

Darren

===================================================================
RCS file: /devel/CVS/IP-Filter/fil.c,v
retrieving revision 2.243.2.95
diff -u -r2.243.2.95 fil.c
--- fil.c       17 Jan 2007 11:34:54 -0000      2.243.2.95
+++ fil.c       27 Jan 2007 18:05:06 -0000
@@ -6536,6 +6536,7 @@
                    uid == it->ipt_uid)
                        break;
        }
+printf("ipf_findtoken(%d,%d,%p) = %p\n", type, uid, ptr, it);

        if (it == NULL) {
                it = new;
@@ -6561,7 +6562,7 @@
        ipftokentail = &it->ipt_next;
        it->ipt_next = NULL;

-       it->ipt_die = fr_ticks + 2;
+       it->ipt_die = fr_ticks + 4;

        MUTEX_DOWNGRADE(&ipf_tokens);
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: iPFilter 4.1.17, Darren Reed
Next by Date:  ipfilter vs nintendo DS, David Hough running ipfilt
Previous by Thread:  Re: iPFilter 4.1.17, Darren Reed
Next by Thread:  All networking stops!, John Rowe
Indexes:  [Date] [Thread] [Top] [All Lists]