From: David Miller <davem@davemloft.net>
To: kaber@trash.net
Cc: netdev@vger.kernel.org, jmorris@namei.org, Curtis@GreenKey.net
Subject: Re: oops in net/ipv4/icmp.c:icmp_send() with icmp_errors_use_inbound_ifaddr (fwd)
Date: Sat, 19 May 2007 14:50:42 -0700 (PDT) [thread overview]
Message-ID: <20070519.145042.105428414.davem@davemloft.net> (raw)
In-Reply-To: <464C884D.4010100@trash.net>
From: Patrick McHardy <kaber@trash.net>
Date: Thu, 17 May 2007 18:52:29 +0200
> [IPV4]: icmp: fix crash with sysctl_icmp_errors_use_inbound_ifaddr
>
> When icmp_send is called on the local output path before the
> packet hits ip_output, skb->dev is not set, causing a crash
> when sysctl_icmp_errors_use_inbound_ifaddr is set. This can
> happen with the netfilter REJECT target or IPsec tunnels.
>
> Let routing decide the ICMP source address in that case, since the
> packet is locally generated there is no inbound interface and
> the sysctl should not apply.
>
> The option actually seems to be unfixable broken, on the path
> after ip_output() skb->dev points to the outgoing device and
> we don't know the incoming device anymore, so its going to do
> the absolute wrong thing and pick the address of the outgoing
> interface. Add a comment about this.
>
> Reported by Curtis Doty <Curtis@GreenKey.net>.
>
> Signed-off-by: Patrick McHardy <kaber@trash.net>
Applied, thanks for the fix Patrick.
The post ip_output() case is very unfortunate. Perhaps we
can tag the call sites, or if that doesn't work we can
find some way to perhaps tag the dst as an input vs. output
route in order to avoid this problem.
next prev parent reply other threads:[~2007-05-19 21:50 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-05-14 18:30 oops in net/ipv4/icmp.c:icmp_send() with icmp_errors_use_inbound_ifaddr (fwd) James Morris
2007-05-14 18:46 ` Patrick McHardy
2007-05-14 19:19 ` Patrick McHardy
2007-05-17 16:52 ` Patrick McHardy
2007-05-18 0:57 ` Julian Anastasov
2007-05-19 21:50 ` David Miller [this message]
2007-05-21 17:03 ` Patrick McHardy
2007-05-20 5:26 ` Herbert Xu
2007-05-21 16:36 ` Patrick McHardy
2007-05-21 21:28 ` Herbert Xu
2007-05-21 21:32 ` Patrick McHardy
2007-05-14 20:24 ` Curtis Doty
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20070519.145042.105428414.davem@davemloft.net \
--to=davem@davemloft.net \
--cc=Curtis@GreenKey.net \
--cc=jmorris@namei.org \
--cc=kaber@trash.net \
--cc=netdev@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).