| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 25 Jul 2013 21:31:26 +0200
From: Linus Lüssing <linus.luessing@....de>
To: Stephen Hemminger <stephen@...workplumber.org>
Cc: bridge@...ts.linux-foundation.org,
"David S. Miller" <davem@...emloft.net>, netdev@...r.kernel.org,
linux-kernel@...r.kernel.org,
Herbert Xu <herbert@...dor.apana.org.au>,
Cong Wang <amwang@...hat.com>,
Adam Baker <linux@...er-net.org.uk>,
Linus Lüssing <linus.luessing@....de>
Subject: Re: [PATCHv2] bridge: disable snooping if there is no querier
On Thu, Jul 25, 2013 at 09:01:40AM -0700, Stephen Hemminger wrote:
> On Thu, 25 Jul 2013 15:56:20 +0200
> Linus Lüssing <linus.luessing@....de> wrote:
>
> >
> > +static void br_multicast_update_querier_timer(struct net_bridge *br,
> > + unsigned long max_delay)
> > +{
> > + if (!timer_pending(&br->multicast_querier_timer))
> > + atomic64_set(&br->multicast_querier_delay_time,
> > + jiffies + max_delay);
> > +
> > + mod_timer(&br->multicast_querier_timer,
> > + jiffies + br->multicast_querier_interval);
> > +}
> > +
>
> Isn't this test racing with timer expiration.
>
> static void br_multicast_update_querier_timer(struct net_bridge *br,
> unsigned long max_delay)
> {
> if (!timer_pending(&br->multicast_querier_timer))
> atomic64_set(&br->multicast_querier_delay_time,
> jiffies + max_delay);
> What if timer completes here?
If the timer completes here, then for one thing this means that
the query message is very late (we were supposed to have heard
at least two query messages by now, query messages should by
default arrive every 125 seconds, we are at 255 seconds now).
Which in most cases would have the reason of the original querier
having left.
Not resetting the newly introduced
br->multicast_querier_delay_time means that we won't switch back
to flooding for a grace period (which we would have done if the
timer had completed three lines earlier).
So the question is, does refraining from switching back to
flooding for the grace period result in any packet loss in this
scenario?
Yes and no. Our current records from the previous multicast
listener reports are still valid until
br->multicast_membership_interval, so for another 5 seconds.
So in the worst case we can have lost multicast packets for
up to five seconds for some listeners.
However, normal multicast routers would have the same issue for
this five seconds period. So to me it looks like this is
actually a bug in RFC2710, section 7.4 - Multicast Listener
Interval: We and multicast routers wouldn't have that problem if
it were 'plus (one _and a half_ Query Response Interval)' instead.
So maybe we could just increase br->multicast_membership_interval
from 260 to 265 with another patch?
Despite from that I don't see which other issues could arise from
the race you pointed out here.
>
> mod_timer(&br->multicast_querier_timer,
> jiffies + br->multicast_querier_interval);
> }
>
>
> And another race if timer goes off?
>
> static void br_multicast_update_querier_timer(struct net_bridge *br,
> unsigned long max_delay)
> {
> if (!timer_pending(&br->multicast_querier_timer))
> atomic64_set(&br->multicast_querier_delay_time,
> jiffies + max_delay);
> Timer fires here...?
>
> mod_timer(&br->multicast_querier_timer,
> jiffies + br->multicast_querier_interval);
> }
Hm? Sorry, I don't quite see how this race differs from the one
you pointed out before.
Thanks for looking at this patch so far!
Cheers, Linus
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists