Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 24 Mar 1999 14:58:15 -0800 (PST)
From:      Archie Cobbs <archie@whistle.com>
To:        FreeBSD-gnats-submit@freebsd.org
Subject:   kern/10778: "ipforward_rt" is not cleared when routing table changes
Message-ID:  <199903242258.OAA94806@bubba.whistle.com>

next in thread | raw e-mail | index | archive | help

>Number:         10778
>Category:       kern
>Synopsis:       "ipforward_rt" is not cleared when routing table changes
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed Mar 24 15:00:00 PST 1999
>Closed-Date:
>Last-Modified:
>Originator:     Archie Cobbs
>Release:        FreeBSD 4.x-current, 3.1
>Organization:
Whistle Communications, Inc.
>Environment:

	FreeBSD 3.1 and 4.x-current

>Description:

	The variable "ipforward_rt" in ip_input.c holds a cached route.
	This cached route should be cleared whenever there is a change
	to the routing table, but this is not being done.

	The affect is that a FreeBSD router could end up mis-routing
	packets for an arbitrarily long time in the future.

	In case the new route being added is for a secure VPN, then
	the result is that private data could suddenly start being
	sent out to the world.

>How-To-Repeat:

>Fix:
	
	Whenever the IP routing table changes, clear the cached route if any.


>Release-Note:
>Audit-Trail:
>Unformatted:


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199903242258.OAA94806>