* skbs delivered to 'wrong' packet_type handler
@ 2013-08-07 13:08 Erik Hugne
2013-08-07 13:55 ` Eric Dumazet
0 siblings, 1 reply; 5+ messages in thread
From: Erik Hugne @ 2013-08-07 13:08 UTC (permalink / raw)
To: netdev; +Cc: tipc-discussion, jon.maloy, ying.xue
We have a race condition in TIPC when using both the parent ethernet
device, and a vlan on top of this device as TIPC bearers. For some reason,
net/core/dev.c is delivering vlan packets to packet handlers registered to
the native device. This only seems to occur when a packet_type handler is
registered on both the vlan device and it's parent ethernet device. This
causes all kinds of weird behaviour in TIPC, from cross-vlan links being
established to oopses.
At first, i thought this was due to a missing PACKET_OTHERHOST filtering
in the TIPC ethernet code, but adding that check did not resolve the issue.
Adding an explicit check for skb->dev vs packet_type->dev does work, but
i dont think that's the proper way to solve it.
What's the purpose of having a dev entry in the packet_type if it's ignored
by the lower layers?
//E
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: skbs delivered to 'wrong' packet_type handler
2013-08-07 13:08 skbs delivered to 'wrong' packet_type handler Erik Hugne
@ 2013-08-07 13:55 ` Eric Dumazet
2013-08-07 15:57 ` Erik Hugne
0 siblings, 1 reply; 5+ messages in thread
From: Eric Dumazet @ 2013-08-07 13:55 UTC (permalink / raw)
To: Erik Hugne; +Cc: netdev, tipc-discussion, jon.maloy, ying.xue
On Wed, 2013-08-07 at 15:08 +0200, Erik Hugne wrote:
> We have a race condition in TIPC when using both the parent ethernet
> device, and a vlan on top of this device as TIPC bearers. For some reason,
> net/core/dev.c is delivering vlan packets to packet handlers registered to
> the native device. This only seems to occur when a packet_type handler is
> registered on both the vlan device and it's parent ethernet device. This
> causes all kinds of weird behaviour in TIPC, from cross-vlan links being
> established to oopses.
>
> At first, i thought this was due to a missing PACKET_OTHERHOST filtering
> in the TIPC ethernet code, but adding that check did not resolve the issue.
> Adding an explicit check for skb->dev vs packet_type->dev does work, but
> i dont think that's the proper way to solve it.
> What's the purpose of having a dev entry in the packet_type if it's ignored
> by the lower layers?
Its not ignored, quite the contrary if you look at the code :
vi +3595 net/core/dev.c
type = skb->protocol;
list_for_each_entry_rcu(ptype,
&ptype_base[ntohs(type) & PTYPE_HASH_MASK], list) {
if (ptype->type == type &&
(ptype->dev == null_or_dev || ptype->dev == skb->dev ||
ptype->dev == orig_dev)) {
if (pt_prev)
ret = deliver_skb(skb, pt_prev, orig_dev);
pt_prev = ptype;
}
}
pkt->dev being set is only meaningful for packet sockets.
Protocols themselves should not care. If they want to care, they must
add their own checks.
Socket API has SO_BINDTODEVICE for this purpose.
IP layer has RP filtering.
A protocol should register a single ptype with NULL dev.
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: skbs delivered to 'wrong' packet_type handler
2013-08-07 13:55 ` Eric Dumazet
@ 2013-08-07 15:57 ` Erik Hugne
2013-08-08 2:21 ` Ying Xue
0 siblings, 1 reply; 5+ messages in thread
From: Erik Hugne @ 2013-08-07 15:57 UTC (permalink / raw)
To: Eric Dumazet; +Cc: netdev, tipc-discussion, jon.maloy, ying.xue
On Wed, Aug 07, 2013 at 06:55:43AM -0700, Eric Dumazet wrote:
> Its not ignored, quite the contrary if you look at the code :
>
> vi +3595 net/core/dev.c
>
> type = skb->protocol;
> list_for_each_entry_rcu(ptype,
> &ptype_base[ntohs(type) & PTYPE_HASH_MASK], list) {
> if (ptype->type == type &&
> (ptype->dev == null_or_dev || ptype->dev == skb->dev ||
> ptype->dev == orig_dev)) {
> if (pt_prev)
> ret = deliver_skb(skb, pt_prev, orig_dev);
> pt_prev = ptype;
> }
> }
>
>
> pkt->dev being set is only meaningful for packet sockets.
>
> Protocols themselves should not care. If they want to care, they must
> add their own checks.
>
> Socket API has SO_BINDTODEVICE for this purpose.
> IP layer has RP filtering.
>
> A protocol should register a single ptype with NULL dev.
>
Very well, we'll have to fix the protocol registration and add appropriate
checks in TIPC then.
But i fail to understand why a handler registered on the native device needs
to get the packets destined to a child vlan device (the ptype->dev == orig_dev
check).
//E
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: skbs delivered to 'wrong' packet_type handler
2013-08-07 15:57 ` Erik Hugne
@ 2013-08-08 2:21 ` Ying Xue
2013-08-08 7:43 ` Erik Hugne
0 siblings, 1 reply; 5+ messages in thread
From: Ying Xue @ 2013-08-08 2:21 UTC (permalink / raw)
To: Erik Hugne; +Cc: Eric Dumazet, netdev, tipc-discussion, jon.maloy
On 08/07/2013 11:57 PM, Erik Hugne wrote:
> On Wed, Aug 07, 2013 at 06:55:43AM -0700, Eric Dumazet wrote:
>> Its not ignored, quite the contrary if you look at the code :
>>
>> vi +3595 net/core/dev.c
>>
>> type = skb->protocol;
>> list_for_each_entry_rcu(ptype,
>> &ptype_base[ntohs(type) & PTYPE_HASH_MASK], list) {
>> if (ptype->type == type &&
>> (ptype->dev == null_or_dev || ptype->dev == skb->dev ||
>> ptype->dev == orig_dev)) {
>> if (pt_prev)
>> ret = deliver_skb(skb, pt_prev, orig_dev);
>> pt_prev = ptype;
>> }
>> }
>>
>>
>> pkt->dev being set is only meaningful for packet sockets.
>>
>> Protocols themselves should not care. If they want to care, they must
>> add their own checks.
>>
>> Socket API has SO_BINDTODEVICE for this purpose.
>> IP layer has RP filtering.
>>
>> A protocol should register a single ptype with NULL dev.
>>
>
> Very well, we'll have to fix the protocol registration and add appropriate
> checks in TIPC then.
Currently the usage of what TIPC registers its protocol handler into
networking device is totally wrong because af_packet_priv in packet_type
should be only owned by AF_PACKET socket as well as ptype->dev is set
with a network device. But I am sure the patch in below link can
definitely fix your met issue although it's not a final version to be
submitted net-next:
http://permalink.gmane.org/gmane.network.tipc.general/4159
Regards,
Ying
> But i fail to understand why a handler registered on the native device needs
> to get the packets destined to a child vlan device (the ptype->dev == orig_dev
> check).
>
> //E
>
>
>
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: skbs delivered to 'wrong' packet_type handler
2013-08-08 2:21 ` Ying Xue
@ 2013-08-08 7:43 ` Erik Hugne
0 siblings, 0 replies; 5+ messages in thread
From: Erik Hugne @ 2013-08-08 7:43 UTC (permalink / raw)
To: Ying Xue; +Cc: netdev, tipc-discussion
On Thu, Aug 08, 2013 at 10:21:24AM +0800, Ying Xue wrote:
> But I am sure the patch in below link can
> definitely fix your met issue although it's not a final version to be
> submitted net-next:
>
> http://permalink.gmane.org/gmane.network.tipc.general/4159
>
Yes it does, thanks!
//E
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2013-08-08 7:43 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2013-08-07 13:08 skbs delivered to 'wrong' packet_type handler Erik Hugne
2013-08-07 13:55 ` Eric Dumazet
2013-08-07 15:57 ` Erik Hugne
2013-08-08 2:21 ` Ying Xue
2013-08-08 7:43 ` Erik Hugne
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox