lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:   Tue, 28 May 2019 09:16:42 -0700
From:   Stephen Hemminger <stephen@...workplumber.org>
To:     netdev@...r.kernel.org
Subject: Fw: [Bug 203743] New: Networking goes down when running Docker and
 receiving fragmented IPv4 packets



Begin forwarded message:

Date: Tue, 28 May 2019 15:49:52 +0000
From: bugzilla-daemon@...zilla.kernel.org
To: stephen@...workplumber.org
Subject: [Bug 203743] New: Networking goes down when running Docker and receiving fragmented IPv4 packets


https://bugzilla.kernel.org/show_bug.cgi?id=203743

            Bug ID: 203743
           Summary: Networking goes down when running Docker and receiving
                    fragmented IPv4 packets
           Product: Networking
           Version: 2.5
    Kernel Version: 4.15.0-1032-aws
          Hardware: x86-64
                OS: Linux
              Tree: Mainline
            Status: NEW
          Severity: normal
          Priority: P1
         Component: IPV4
          Assignee: stephen@...workplumber.org
          Reporter: camden.fullmer@...cast.com
        Regression: No

We are experiencing an issue where our EC2 instances fail instance status
checks and completely lose networking because of cellular UDP traffic going to
an instance.

It seems that when sending UDP traffic using T-Mobile cellular the packets are
fragmented and causes the system to completely lose networking because of this.
I have attached the source code for the iOS app that can reliabily reproduce
this issue as well as the server code to receive the traffic. The packet
capture of the traffic is attached as well. Also important to note that the
system only drops networking when Docker is running, but the fragmentation also
happens no matter if Docker is installed or not.

It's also worth pointing out that when sending the traffic over Cellular to a
local network at our office that the traffic is not fragmented. This makes me
think that there is an issue with networking between T-Mobile and AWS.

Base AWS AMI: ami-0a313d6098716f372
Instance Types: g3.4xlarge or c5.2xlarge
Docker GitHub Issue: https://github.com/docker/for-linux/issues/672
iOS app: https://github.com/docker/for-linux/files/3192116/LockUpDemo.zip
Server app:https://github.com/docker/for-linux/files/3192118/main.c.zip
tcpdump capture:
https://github.com/docker/for-linux/files/3192155/capture.pcap.zip

-- 
You are receiving this mail because:
You are the assignee for the bug.

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ