lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date:   Wed, 31 Aug 2022 16:06:44 +0800
From:   Hangbin Liu <liuhangbin@...il.com>
To:     Jay Vosburgh <jay.vosburgh@...onical.com>
Cc:     netdev@...r.kernel.org, Veaceslav Falico <vfalico@...il.com>,
        Andy Gospodarek <andy@...yhouse.net>,
        "David S . Miller" <davem@...emloft.net>,
        Jakub Kicinski <kuba@...nel.org>,
        Jonathan Toppins <jtoppins@...hat.com>,
        Paolo Abeni <pabeni@...hat.com>,
        David Ahern <dsahern@...il.com>, LiLiang <liali@...hat.com>
Subject: Re: [PATCH net] bonding: fix lladdr finding and confirmation

On Tue, Aug 30, 2022 at 07:53:39PM -0700, Jay Vosburgh wrote:
> >> >@@ -3246,14 +3256,14 @@ static int bond_na_rcv(const struct sk_buff *skb, struct bonding *bond,
> >> > 	 * see bond_arp_rcv().
> >> > 	 */
> >> > 	if (bond_is_active_slave(slave))
> >> >-		bond_validate_ns(bond, slave, saddr, daddr);
> >> >+		bond_validate_na(bond, slave, saddr, daddr);
> >> > 	else if (curr_active_slave &&
> >> > 		 time_after(slave_last_rx(bond, curr_active_slave),
> >> > 			    curr_active_slave->last_link_up))
> >> >-		bond_validate_ns(bond, slave, saddr, daddr);
> >> >+		bond_validate_na(bond, slave, saddr, daddr);
> >> > 	else if (curr_arp_slave &&
> >> > 		 bond_time_in_interval(bond, slave_last_tx(curr_arp_slave), 1))
> >> >-		bond_validate_ns(bond, slave, saddr, daddr);
> >> >+		bond_validate_na(bond, slave, saddr, daddr);
> >> 
> >> 	Is this logic correct?  If I'm not mistaken, there are two
> >> receive cases:
> >> 
> >> 	1- We receive a reply (Neighbor Advertisement) to our request
> >> (Neighbor Solicitation).
> >> 
> >> 	2- We receive a copy of our request (NS), which passed through
> >> the switch and was received by another interface of the bond.
> >
> >No, we don't have this case for IPv6 because I did a check in
> >
> >static int bond_na_rcv(const struct sk_buff *skb, struct bonding *bond,
> >                       struct slave *slave)
> >{
> >	[...]
> >
> >        if (skb->pkt_type == PACKET_OTHERHOST ||
> >            skb->pkt_type == PACKET_LOOPBACK ||
> >            hdr->icmp6_type != NDISC_NEIGHBOUR_ADVERTISEMENT)
> >                goto out;
> >
> >Here we will ignore none NA messages.
> 
> 	Is there a reason to implement this differently from the ARP
> monitor with regard to the "passed request through switch to backup
> interface" logic?  Are the backup interfaces then always down until the
> active interface fails (in other words, what do they receive)?

Hmm... There do have some differences between the ARP monitor and NS/NA monitor.

For ARP monitor
"""
	For an active slave, the validation checks ARP replies to confirm
	that they were generated by an arp_ip_target.  Since backup slaves
	do not typically receive these replies, the validation performed
	for backup slaves is on the broadcast ARP request sent out via the
	active slave.  
"""

But IPv6 NS message is a little different. For our solicited NS message, the
dest mac is set to correspond solicited-node multicast address instead of
broadcast address. So the backup slave will not receive the NS message that
send from active slave.

When we send unsolicited NS with in6addr_any. The target will reply NA with
dest addr ff02::1. This is the only time the backup salve could receive NA
message.

If you think this is OK, I can update the comments.

Thanks
Hangbin

> 
> 	Assuming that there is a good reason, the commentary in
> bond_na_rcv() is misleading, as it says to "see bond_arp_rcv()" for the
> logic.  Again, assuming there's a good reason for it, can you amend this
> comment to mention that the "Note: for (b)" in the bond_arp_rcv()
> commentary does not apply to bond_na_rcv() for whatever the good reason
> is?
> 
> 	-J
> 
> >Thanks
> >Hangbin
> >> 
> >> 	For the ARP monitor implementation, in the second case, the
> >> source and target IP addresses are swapped for the validation.
> >> 
> >> 	Is such a swap necessary for the NS/NA monitor implementation?
> >> I would expect this to be in the second block of the if (inside the
> >> "else if (curr_active_slave &&" block).
> >> 
> >> 	-J
> >> 
> >> > out:
> >> > 	return RX_HANDLER_ANOTHER;
> >> >diff --git a/net/ipv6/addrconf.c b/net/ipv6/addrconf.c
> >> >index e15f64f22fa8..77750b6327e7 100644
> >> >--- a/net/ipv6/addrconf.c
> >> >+++ b/net/ipv6/addrconf.c
> >> >@@ -3557,11 +3557,14 @@ static int addrconf_notify(struct notifier_block *this, unsigned long event,
> >> > 		fallthrough;
> >> > 	case NETDEV_UP:
> >> > 	case NETDEV_CHANGE:
> >> >-		if (dev->flags & IFF_SLAVE)
> >> >+		if (idev && idev->cnf.disable_ipv6)
> >> > 			break;
> >> > 
> >> >-		if (idev && idev->cnf.disable_ipv6)
> >> >+		if (dev->flags & IFF_SLAVE) {
> >> >+			if (event == NETDEV_UP && !IS_ERR_OR_NULL(idev))
> >> >+				ipv6_mc_up(idev);
> >> > 			break;
> >> >+		}
> >> > 
> >> > 		if (event == NETDEV_UP) {
> >> > 			/* restore routes for permanent addresses */
> >> >-- 
> >> >2.37.1
> 
> ---
> 	-Jay Vosburgh, jay.vosburgh@...onical.com

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ