* Regression in 3.6+: fib_validate_source breakage
@ 2013-01-13 4:45 Phil Oester
0 siblings, 0 replies; only message in thread
From: Phil Oester @ 2013-01-13 4:45 UTC (permalink / raw)
To: netdev
In commit 7a9bc9b81a (Elide fib_validate_source() completely when possible) it
was stated:
If rpfilter is off (or the SKB has an IPSEC path) and there are not
tclassid users, we don't have to do anything at all when
fib_validate_source() is invoked besides setting the itag to zero.
However, this change was later proven to break redirects, fixed in commit
e81da0e113 (ipv4: fix sending of redirects).
In addition to this breakage, it also bypassed another necessary check, as
clearly stated in the preamble comment to fib_validate_source:
* - (main) check, that source is valid i.e. not broadcast or our local
* address.
Without this check (and if rp_filter is NOT enabled), packets with local source
addresses are accepted by the stack. This only came to light due to a buggy
switch which is occasionally reflecting packets back at a box running a VRRP
daemon, causing the local box to believe it has seen a higher priority
advertisement, when in reality it is only seeing a copy of its own advertisement.
Prior to 3.6, these packets would be silently dropped.
Also, not that I use it, but accept_local handling appears to now be broken.
I realize the original change likely made the route cache removal more palatable,
but given the number of issues it has caused, perhaps a revert is in order?
I can't find any easy alternative fix.
Phil Oester
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2013-01-13 4:45 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2013-01-13 4:45 Regression in 3.6+: fib_validate_source breakage Phil Oester
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).