| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 25 May 2013 21:52:24 +0100 From: Adam Baker <linux@...er-net.org.uk> To: Cong Wang <amwang@...hat.com> CC: netdev@...r.kernel.org, Herbert Xu <herbert@...dor.hengli.com.au>, Stephen Hemminger <stephen@...workplumber.org>, "David S. Miller" <davem@...emloft.net> Subject: Re: [Patch net-next v5 1/3] bridge: use the bridge IP addr as source addr for querier On 22/05/13 08:52, Cong Wang wrote: > From: Cong Wang<amwang@...hat.com> > > Quote from Adam: > "If it is believed that the use of 0.0.0.0 > as the IP address is what is causing strange behaviour on other devices > then is there a good reason that a bridge rather than a router shouldn't > be the active querier? If not then using the bridge IP address and > having the querier enabled by default may be a reasonable solution > (provided that our querier obeys the election rules and shuts up if it > sees a query from a lower IP address that isn't 0.0.0.0). Just because a > device is the elected querier for IGMP doesn't appear to mean it is > required to perform any other routing functions." > > And introduce a new troggle for it, as suggested by Herbert. I've now tested this series applied to a 3.9.4 kernel Using wireshark I can see that if the multicast_querier and multicast_query_use_ifaddr flags are set then queries do get the correct IP address in them and if multicast_querier is set and multicast_query_use_ifaddr isn't we get queries with the address set to 0.0.0.0 I next tested with 2 bridges configured on different nodes (this is my normal network configuration with the 2 bridge devices acting as wireless routers with different coverage areas with a wired network between them). If multicast_query_use_ifaddr is set whichever device starts querying first will act as the querier and the other will shut up. According to RFC 2236 it should be the device with the lower IP address that ends up as the querier in that scenario but I can't imagine a situation where that exact behaviour matters If multicast_query_use_ifaddr is not set but multicast_querier is then both bridges end up generating queries with a source address of 0.0.0.0. Whilst this results in a small amount of unnecessary network traffic it does provide a functional setup. In all of these cases I also verified that multicast UPnP AV applications on different network segments remain able to talk to each other. I would therefore suggest that making multicast_query_use_ifaddr the default and making the querier only shut up if it sees a query from a lower non zero address rather than any non zero address would constitute minor improvements to this patch but as it stands it is still an improvement on the current behaviour. Tested-By: Adam Baker <linux@...er-net.org.uk> -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists