Bug ID 911485: When MRF is in use, TCP::release does not immediately remove data from the TCP payload

Last Modified: Sep 29, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,,,,, 14.1.5,,

Opened: May 22, 2020
Severity: 3-Major


Tmm crashes because the TCP::payload is not flushed after the TCP::release command.


Tmm crash leads to unavailability of service. Traffic disrupted while tmm restarts.


If a virtual server is configured for MRF, when TCP::release is used, it does not immediately remove the specified number of bytes from the TCP payload, leading to the possibility that these bytes could be retrieved multiple times by successive calls to TCP::payload.


For example, if a GENERICMESSAGE_INGRESS event is included in the iRule, then when it gets executed the bytes are removed from the payload. Another way to do it was to explicitly call 'TCP::payload replace 0 <bytes released> ""'.

Fix Information


Behavior Change