Purging ufw causes system lockup with NFS-root
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| ufw (Ubuntu) |
Fix Released
|
Medium
|
Jamie Strandboge | ||
Bug Description
Binary package hint: ufw
System where problem was experienced:
Package Version: ufw 0.16.2.4
Description: Ubuntu 8.04.4 LTS
Release: 8.04
Problem still exists in current karmic. Verified with
Package Version ufw: 0.29-4ubuntu1
Description: Ubuntu 9.10
Release: 9.10
Problem Description:
When purging ufw, a system using NFS for its root file-system and having a firewall configuration with policy DROP hangs irrevocably. The reason for this is the order the ufw.postrm script clears the firewall:
Step 1 - iptables -F
This removes all rules allowing network traffic to the NFS server, _the server hangs_ trying to execute the next step because it can't read the executable from the filesystem.
Step 2 - iptables -X
Step 3 - iptables -P INPUT ACCEPT
Step 4 - iptables -P OUTPUT ACCEPT
Step 5 - iptables -P FORWARD ACCEPT
Solution Suggestion:
Putting steps 3-5 _before_ steps 1-2 would completely solve this problem.
Related branches
| Jamie Strandboge (jdstrand) wrote | #1 |
| Changed in ufw (Ubuntu): | |
| assignee: | nobody → Jamie Strandboge (jdstrand) |
| importance: | Undecided → Medium |
| status: | New → In Progress |
| Launchpad Janitor (janitor) wrote | #2 |
| Changed in ufw (Ubuntu): | |
| status: | In Progress → Fix Released |
Thanks Sebastian for the excellent report. I've committed the change to trunk and will get this into the development release of Ubuntu on my next upload.