Page MenuHomeFreeBSD
Differential D13239

Add support for ABORT action in ipfw
ClosedPublic
Actions

Authored by tuexen on Nov 25 2017, 3:06 PM.
Tags
None
Referenced Files
F103199167: D13239.diff
Fri, Nov 22, 4:16 AM
Unknown Object (File)
Wed, Nov 20, 5:28 PM
Unknown Object (File)
Tue, Nov 19, 3:47 PM
Unknown Object (File)
Wed, Nov 6, 10:40 PM
Unknown Object (File)
Wed, Nov 6, 7:02 AM
Unknown Object (File)
Sun, Oct 27, 8:25 AM
Unknown Object (File)
Oct 17 2024, 2:38 PM
Unknown Object (File)
Oct 17 2024, 1:53 AM
View All Files
Subscribers
ae
bcr
imp

Details

Reviewers
bcr
Group Reviewers
transport
manpages
Commits
rS326233: Add to ipfw support for sending an SCTP packet containing an ABORT chunk.
Summary

This patch adds support for an action for ipfw to send an SCTP packet containing an ABORT chunk. This is similar to the TCP case, where a TCP reset segment is sent.

There is one limitation: When sending an ABORT in response to a packet it should be tested if there is no ABORT in the incoming packet. Currently it is only checked if the first chunk is an ABORT chunk to avoid parsing through the whole packet.

Test Plan

It was tested with packets containing INIT chunks, non-INIT chunks, packets containing no chunks. IPv4 and IPv6 was used. Thanks to Timo Völker for creating some test scripts to test this.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

tuexen created this revision.Nov 25 2017, 3:06 PM
Herald added a reviewer: manpages. · View Herald TranscriptNov 25 2017, 3:06 PM
Herald added subscribers: ae, imp. · View Herald Transcript
bcr accepted this revision.Nov 25 2017, 3:12 PM
bcr added a subscriber: bcr.

OK from manpages, you just need to bump the .Dd to the date of the actual commit.

This revision is now accepted and ready to land.Nov 25 2017, 3:12 PM
ae added a comment.Nov 26 2017, 2:32 PM

I'm not familiar with SCTP, from other side seems good to me, except some style issues.

sys/netpfil/ipfw/ip_fw2.c
480 ↗(On Diff #35765)

It seems this function can be made static.

484 ↗(On Diff #35765)

This line should be moved below according to style(9) :)

tuexen updated this revision to Diff 35811.Nov 26 2017, 6:09 PM

Address comments made by bcr@ and ae@.

This revision now requires review to proceed.Nov 26 2017, 6:09 PM
tuexen marked 2 inline comments as done.Nov 26 2017, 6:10 PM
Closed by commit rS326233: Add to ipfw support for sending an SCTP packet containing an ABORT chunk. (authored by tuexen). · Explain WhyNov 26 2017, 6:19 PM
This revision was automatically updated to reflect the committed changes.
tuexen added a comment.Nov 26 2017, 6:20 PM

Thanks to bcr@ and ae@ for reviewing this patch so fast!

Best regards
Michael

Revision Contents
Changeset List

PathSize
head/
sbin/
ipfw/
10 lines
2 lines
16 lines
sys/
netinet/
2 lines
netpfil/
ipfw/
268 lines
4 lines

Diff 35816

View Options

head/sbin/ipfw/ipfw.8

Loading...
View Options

head/sbin/ipfw/ipfw2.h

Loading...
View Options

head/sbin/ipfw/ipfw2.c

Loading...
View Options

head/sys/netinet/ip_fw.h

Loading...
View Options

head/sys/netpfil/ipfw/ip_fw2.c

Loading...
View Options

head/sys/netpfil/ipfw/ip_fw_log.c

Loading...