| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 25 Aug 2015 12:20:20 -0400 From: Vlad Yasevich <vyasevic@...hat.com> To: Marcelo Ricardo Leitner <marcelo.leitner@...il.com>, lucien xin <lucien.xin@...il.com> CC: network dev <netdev@...r.kernel.org>, davem <davem@...emloft.net> Subject: Re: [PATCH net] sctp: asconf process should treat multiple address parameter as unrecognized parameter On 08/25/2015 10:18 AM, Marcelo Ricardo Leitner wrote: > On Tue, Aug 25, 2015 at 08:43:10PM +0800, lucien xin wrote: >> On Tue, Aug 25, 2015 at 8:39 PM, lucien xin <lucien.xin@...il.com> wrote: >>>> >>>> I think it would be much better to catch this in the validation stage. >>>> If an implementation inserts multiple address parameters, we don't really know >>>> which one we should be using. >>>> >>> >>> the params of ASCONF chunk should consist of one *Address Parameter* and one >>> or more *ASCONF Parameters*. besides, the address parameter should be in the >>> beginning. so the first one must be our choice. > > That's not necessarily true. You're assuming the first is the best but > that's not ensured anywhere as RFC doesn't allow multiple parameteres in > there. > > That also puts the entire asconf in question, because if it needed an > address parameter and now it has many and you don't know which one you > should use, you actually have none, and the needed parameter is thus > missing. > >>> if we cat this in the validation stage, I think it will be hard to treat it as a >>> unrecognized parameter, >> because *unrecognized parameter* cause packet need to be built in >> sctp_process_asconf(), >> as current linux's implementation. > > I agree with Vlad, but yeah, it may make error reporting harder. > Although I don't have any issue if we just fall through the current error > handling for bad asconf chunks, which aborts the association due to > param len violation. Vlad? I've been looking at the spec and the spec does not make any requirements on the the number of address parameters present. The only thing we have to draw any additional requirements from is the format of the ASCONF message. That format provides space for a single address parameter and doesn't to include any options data between it and and ASCONF parameters. Based on that, I would argue that inclusion of multiple Address Parameters in the ASCONF message is a violation of ASCONF protocol and should be dealt with the same as all the other violations we have. I believe the above would make things a lot simpler. -vlad > Marcelo > -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists