Page MenuHomeFreeBSD
Differential D47545

pf: clean up pflow sockets on jail removal
ClosedPublic
Actions

Authored by kp on Nov 13 2024, 8:29 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Mar 9, 8:31 PM
Unknown Object (File)
Sat, Mar 8, 10:09 PM
Unknown Object (File)
Feb 17 2025, 8:16 AM
Unknown Object (File)
Feb 4 2025, 11:20 PM
Unknown Object (File)
Feb 4 2025, 8:05 AM
Unknown Object (File)
Jan 27 2025, 7:17 AM
Unknown Object (File)
Jan 26 2025, 3:54 PM
Unknown Object (File)
Jan 26 2025, 10:59 AM
View All 23 Files
Subscribers
farrokhi
glebius
imp
melifaro
vegeta_tuxpowered.net

Details

Reviewers
None
Group Reviewers
network
pfsense
Commits
rG83641335f96c: pf: clean up pflow sockets on jail removal
Summary

pflow opens sockets in the kernel to transmit netflow information.
If this is done in a (vnet) jail these sockets end up preventing the removal of
the jail. The VNET_SYSUNINIT() vnet_pflowdetach() function doesn't get called,
but that's the function that would remove the sockets.

Install a callback on the PR_METHOD_REMOVE jail callback and close the sockets
there. This ensures that the jail can get cleaned up.

Sponsored by: Rubicon Communications, LLC ("Netgate")

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

kp created this revision.Nov 13 2024, 8:29 PM
Herald added subscribers: vegeta_tuxpowered.net, glebius, melifaro and 2 others. · View Herald TranscriptNov 13 2024, 8:29 PM
kp requested review of this revision.Nov 13 2024, 8:29 PM
Harbormaster completed remote builds in B60524: Diff 146375.Nov 13 2024, 8:29 PM
This revision was not accepted when it landed; it landed in state Needs Review.Nov 18 2024, 11:23 AM
Closed by commit rG83641335f96c: pf: clean up pflow sockets on jail removal (authored by kp). · Explain Why
This revision was automatically updated to reflect the committed changes.
kp added a commit: rG83641335f96c: pf: clean up pflow sockets on jail removal.

Revision Contents
Changeset List

PathSize
sys/
netpfil/
pf/
26 lines

Diff 146643

View Options

sys/netpfil/pf/pflow.c

# Autogenerated - do NOT edit! # Autogenerated - do NOT edit!
DIRDEPS = \ DIRDEPS = \
include \ include \
include/arpa \ include/arpa \
include/xlocale \ include/xlocale \
lib/clang/libclang \ lib/clang/libclang \
lib/clang/libllvm \ lib/clang/libllvm \
lib/libc++ \ lib/libc++ \
lib/libedit \ lib/libedit \
lib/libexecinfo \ lib/libexecinfo \
lib/libkvm \
lib/liblzma \
lib/libz \
lib/msun \ lib/msun \
lib/ncurses/ncursesw \ lib/ncurses/panel \
lib/ncurses/panelw \ lib/ncurses/tinfo \
usr.bin/clang/lldb-tblgen.host \
.include <dirdeps.mk> .include <dirdeps.mk>
.if ${DEP_RELDIR} == ${_DEP_RELDIR} .if ${DEP_RELDIR} == ${_DEP_RELDIR}
# local dependencies - needed for -jN in clean tree # local dependencies - needed for -jN in clean tree
.endif .endif