Bug ID 1296409: TMM cored in ping access hudfilter due to ctx pointed to invalid address

Last Modified: Dec 18, 2024

Affected Product(s):
BIG-IP APM(all modules)

Known Affected Versions:
15.1.8.1, 15.1.8.2, 15.1.9, 15.1.9.1, 15.1.10, 15.1.10.2, 15.1.10.3, 15.1.10.4, 15.1.10.5, 15.1.10.6

Opened: May 08, 2023

Severity: 3-Major

Symptoms

In the pingaccess, when the HUDCTL_TEARDOWN arrives and is forwarded synchronously down the chain, this causes the flow to be removed and the chain to be torn down. This also causes the CLIENT_CLOSED to be called. Coincidentally customer has iRule, and happens to need a block matching the size of the just-freed block containing ctx, thus the freed ctx is overwritten with the log message generated due to the debugging TCL variable being "1". Upon reaching lower filters, the pingaccess attempts to call pmgr_service_update_last_active where the issue occurred. This issue can be seen in the 1001041 bug.

Impact

Unexpected failover occurred which impacted accessing applications.

Conditions

APM provisioned. Using multiple ping access instances, the Ping access feature is mainly used for SSO.

Workaround

None

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips