bugzilla-daemon@netfilter.org
2003-Mar-03 07:59 UTC
[Bug 59] New: sparc64 conntrack issue with expecting related connections, FTP
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=59
Summary: sparc64 conntrack issue with expecting related
connections, FTP
Product: netfilter/iptables
Version: linux-2.4.x
Platform: sparc64
OS/Version: other
Status: NEW
Severity: normal
Priority: P2
Component: connection tracking
AssignedTo: laforge@netfilter.org
ReportedBy: laforge@netfilter.org
CC: netfilter-buglog@lists.netfilter.org
From: "Chris Poon" <Chris.Poon@TELUS.COM>
After running a kernel with debugging on ip_conntrack_core.c, I can see that it
doesn't find a match in the expected connections list, but the print out
suggests that the expectation for the related connection is set correctly. That
points me to two scenarios:
1) the related connection entry was not found in the expectation
list due to a failed masked
comparison or
2) the related connection entry was found and further operations in
ip_conntrack_core.c:init_conntrack invalidated the expectation.
Again, I feel that this might be strictly a 64 bit kernel issue as I'm
sure if the conntrack for related connection didn't work for 32 bit kernels,
I
would have found a lot more discussion about it (which I found none so far). And
I don't
think this is strictly with FTP connection tracking either, but rather
connection tracking for related connection in general under a 64 bit kernel.
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Reasonably Related Threads
- [Bug 41] New: pptp-conntrack-nat and sparc64 structures/padding/maskcomp bug
- [Bug 59] sparc64 conntrack issue with expecting related connections, FTP
- [Bug 495] New: Netfilter Connection Tracking Race Condition in Kernel 2.4.x
- [SECURITY] Netfilter Security Advisory: Conntrack list_del() DoS
- conntrack event/hook when ''expected'' connection terminates ?
Wisdom of the Ancients
