[PATCH v2 net] l2tp: Allow duplicate session creation with UDP

public inbox for netdev@vger.kernel.org
 help / color / mirror / Atom feed

* [PATCH v2 net] l2tp: Allow duplicate session creation with UDP
@ 2020-02-03 23:24 Ridge Kennedy
  2020-02-04 10:27 ` James Chapman
                   ` (2 more replies)
  0 siblings, 3 replies; 4+ messages in thread
From: Ridge Kennedy @ 2020-02-03 23:24 UTC (permalink / raw)
  To: netdev; +Cc: gnault, tparkin, jchapman, Ridge Kennedy

In the past it was possible to create multiple L2TPv3 sessions with the
same session id as long as the sessions belonged to different tunnels.
The resulting sessions had issues when used with IP encapsulated tunnels,
but worked fine with UDP encapsulated ones. Some applications began to
rely on this behaviour to avoid having to negotiate unique session ids.

Some time ago a change was made to require session ids to be unique across
all tunnels, breaking the applications making use of this "feature".

This change relaxes the duplicate session id check to allow duplicates
if both of the colliding sessions belong to UDP encapsulated tunnels.

Fixes: dbdbc73b4478 ("l2tp: fix duplicate session creation")
Signed-off-by: Ridge Kennedy <ridge.kennedy@alliedtelesis.co.nz>
---
 net/l2tp/l2tp_core.c | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/net/l2tp/l2tp_core.c b/net/l2tp/l2tp_core.c
index f82ea12bac37..425b95eb7e87 100644
--- a/net/l2tp/l2tp_core.c
+++ b/net/l2tp/l2tp_core.c
@@ -322,8 +322,13 @@ int l2tp_session_register(struct l2tp_session *session,

 		spin_lock_bh(&pn->l2tp_session_hlist_lock);

+		/* IP encap expects session IDs to be globally unique, while
+		 * UDP encap doesn't.
+		 */
 		hlist_for_each_entry(session_walk, g_head, global_hlist)
-			if (session_walk->session_id == session->session_id) {
+			if (session_walk->session_id == session->session_id &&
+			    (session_walk->tunnel->encap == L2TP_ENCAPTYPE_IP ||
+			     tunnel->encap == L2TP_ENCAPTYPE_IP)) {
 				err = -EEXIST;
 				goto err_tlock_pnlock;
 			}
-- 
2.25.0

^ permalink raw reply related	[flat|nested] 4+ messages in thread

* Re: [PATCH v2 net] l2tp: Allow duplicate session creation with UDP
  2020-02-03 23:24 [PATCH v2 net] l2tp: Allow duplicate session creation with UDP Ridge Kennedy
@ 2020-02-04 10:27 ` James Chapman
  2020-02-04 11:39 ` David Miller
  2020-02-04 12:09 ` Guillaume Nault
  2 siblings, 0 replies; 4+ messages in thread
From: James Chapman @ 2020-02-04 10:27 UTC (permalink / raw)
  To: Ridge Kennedy, netdev; +Cc: gnault, tparkin

On 03/02/2020 23:24, Ridge Kennedy wrote:
> In the past it was possible to create multiple L2TPv3 sessions with the
> same session id as long as the sessions belonged to different tunnels.
> The resulting sessions had issues when used with IP encapsulated tunnels,
> but worked fine with UDP encapsulated ones. Some applications began to
> rely on this behaviour to avoid having to negotiate unique session ids.
>
> Some time ago a change was made to require session ids to be unique across
> all tunnels, breaking the applications making use of this "feature".
>
> This change relaxes the duplicate session id check to allow duplicates
> if both of the colliding sessions belong to UDP encapsulated tunnels.
>
> Fixes: dbdbc73b4478 ("l2tp: fix duplicate session creation")
> Signed-off-by: Ridge Kennedy <ridge.kennedy@alliedtelesis.co.nz>

Acked-by: James Chapman <jchapman@katalix.com>


> ---
>  net/l2tp/l2tp_core.c | 7 ++++++-
>  1 file changed, 6 insertions(+), 1 deletion(-)
>
> diff --git a/net/l2tp/l2tp_core.c b/net/l2tp/l2tp_core.c
> index f82ea12bac37..425b95eb7e87 100644
> --- a/net/l2tp/l2tp_core.c
> +++ b/net/l2tp/l2tp_core.c
> @@ -322,8 +322,13 @@ int l2tp_session_register(struct l2tp_session *session,
>  
>  		spin_lock_bh(&pn->l2tp_session_hlist_lock);
>  
> +		/* IP encap expects session IDs to be globally unique, while
> +		 * UDP encap doesn't.
> +		 */
>  		hlist_for_each_entry(session_walk, g_head, global_hlist)
> -			if (session_walk->session_id == session->session_id) {
> +			if (session_walk->session_id == session->session_id &&
> +			    (session_walk->tunnel->encap == L2TP_ENCAPTYPE_IP ||
> +			     tunnel->encap == L2TP_ENCAPTYPE_IP)) {
>  				err = -EEXIST;
>  				goto err_tlock_pnlock;
>  			}




^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [PATCH v2 net] l2tp: Allow duplicate session creation with UDP
  2020-02-03 23:24 [PATCH v2 net] l2tp: Allow duplicate session creation with UDP Ridge Kennedy
  2020-02-04 10:27 ` James Chapman
@ 2020-02-04 11:39 ` David Miller
  2020-02-04 12:09 ` Guillaume Nault
  2 siblings, 0 replies; 4+ messages in thread
From: David Miller @ 2020-02-04 11:39 UTC (permalink / raw)
  To: ridge.kennedy; +Cc: netdev, gnault, tparkin, jchapman

From: Ridge Kennedy <ridge.kennedy@alliedtelesis.co.nz>
Date: Tue,  4 Feb 2020 12:24:00 +1300

> In the past it was possible to create multiple L2TPv3 sessions with the
> same session id as long as the sessions belonged to different tunnels.
> The resulting sessions had issues when used with IP encapsulated tunnels,
> but worked fine with UDP encapsulated ones. Some applications began to
> rely on this behaviour to avoid having to negotiate unique session ids.
> 
> Some time ago a change was made to require session ids to be unique across
> all tunnels, breaking the applications making use of this "feature".
> 
> This change relaxes the duplicate session id check to allow duplicates
> if both of the colliding sessions belong to UDP encapsulated tunnels.
> 
> Fixes: dbdbc73b4478 ("l2tp: fix duplicate session creation")
> Signed-off-by: Ridge Kennedy <ridge.kennedy@alliedtelesis.co.nz>

Applied and queued up for -stable, thank you.

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [PATCH v2 net] l2tp: Allow duplicate session creation with UDP
  2020-02-03 23:24 [PATCH v2 net] l2tp: Allow duplicate session creation with UDP Ridge Kennedy
  2020-02-04 10:27 ` James Chapman
  2020-02-04 11:39 ` David Miller
@ 2020-02-04 12:09 ` Guillaume Nault
  2 siblings, 0 replies; 4+ messages in thread
From: Guillaume Nault @ 2020-02-04 12:09 UTC (permalink / raw)
  To: Ridge Kennedy; +Cc: netdev, tparkin, jchapman

On Tue, Feb 04, 2020 at 12:24:00PM +1300, Ridge Kennedy wrote:
> In the past it was possible to create multiple L2TPv3 sessions with the
> same session id as long as the sessions belonged to different tunnels.
> The resulting sessions had issues when used with IP encapsulated tunnels,
> but worked fine with UDP encapsulated ones. Some applications began to
> rely on this behaviour to avoid having to negotiate unique session ids.
> 
> Some time ago a change was made to require session ids to be unique across
> all tunnels, breaking the applications making use of this "feature".
> 
> This change relaxes the duplicate session id check to allow duplicates
> if both of the colliding sessions belong to UDP encapsulated tunnels.
> 
Thanks Ridge.

Even though it's already applied,
Reviewed-by: Guillaume Nault <gnault@redhat.com>
Tested-by: Guillaume Nault <gnault@redhat.com>


^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2020-02-04 12:09 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2020-02-03 23:24 [PATCH v2 net] l2tp: Allow duplicate session creation with UDP Ridge Kennedy
2020-02-04 10:27 ` James Chapman
2020-02-04 11:39 ` David Miller
2020-02-04 12:09 ` Guillaume Nault

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox