Bug 200320 - pfSync causes crashes
Summary: pfSync causes crashes
Status: Closed Overcome By Events
Alias: None
Product: Base System
Classification: Unclassified
Component: kern (show other bugs)
Version: 10.1-RELEASE
Hardware: Any Any
: --- Affects Many People
Assignee: Ermal Luçi
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-05-19 08:29 UTC by Ermal Luçi
Modified: 2020-06-07 13:36 UTC (History)
3 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ermal Luçi 2015-05-19 08:29:36 UTC 
Pfsync in FreeBSD 10.0++ causes crashes when trying to synchronize states between two firewalls.
The panic here is reached http://fxr.watson.org/fxr/source/netpfil/pf/if_pfsync.c?v=FREEBSD10#L1779 due to not found defer state after pf(4) itself defered a state.

Reference: https://redmine.pfsense.org/issues/4310

Primary root cause of the crashes seems to be the defer option of pfsync which defers states on pf(4) to be treated by pfsync after.
This is on as default on FreeBSD which should not be since active-active is not supported.
Comment 1 Kristof Provost freebsd_committer freebsd_triage 2020-06-07 13:36:34 UTC 
Closing as (a) 10 is no longer supported and (b) the pfsense issue appears to be solved, so it is assumed that the problem is fixed in FreeBSD as well.