Memory leak on Security Gateway in rare scenarios when identity sharing and Application Control rules (with access roles) are configured
||Identity Awareness, Application Control
||R76, R76SP, R76SP.10, R76SP.10_VSLS, R76SP.20, R76SP.30, R77, R77.10, R77.20, R77.30, R80.10
|Platform / Model
Memory consumption constantly increases on Security Gateway when Identity sharing and Application Control rules (with access roles) are configured. Eventually, Security Gateway might crash due to memory exhaustion.
Output of memory leak detection procedure (sk35496) shows:
;fw_drv_fini: XXX bytes allocated by 'idapi_create_handle' leaked at ... allocation time ...
;FW-1: Leak in: idapi_create_handle: hmem_bytes XXX
/var/log/messages file repeatedly shows:
;FW-1: fw_kfree: memory already freed at XXX. caller is 'appi_transaction_destroy_rb_async_opaque' sz=XXX
Note: To view this solution you need to