Page MenuHomeFreeBSD
Differential D46492

carp: Fix pullup checks
ClosedPublic
Actions

Authored by markj on Aug 30 2024, 4:59 PM.
Tags
None
Referenced Files
Unknown Object (File)
Thu, Oct 16, 3:38 PM
Unknown Object (File)
Thu, Oct 16, 4:14 AM
Unknown Object (File)
Thu, Oct 16, 4:14 AM
Unknown Object (File)
Thu, Oct 16, 4:14 AM
Unknown Object (File)
Wed, Oct 15, 5:13 PM
Unknown Object (File)
Sat, Oct 11, 3:43 AM
Unknown Object (File)
Sat, Oct 11, 12:08 AM
Unknown Object (File)
Fri, Oct 10, 1:16 PM
View All 72 Files
Subscribers
glebius
imp
melifaro

Details

Reviewers
kp
Commits
rG7d508464f56c: carp: Fix pullup checks
Summary

The conditions used to test whether a pullup is needed were inverted.

While here:

  • Fix a bogus assignment to "iplen": it's already initialized to *offp.
  • Use in_cksum_skip() instead of manually adjusting the data pointer. Otherwise the mbuf is temporarily in an invalid state, since m_len isn't updated to match.

Reported by: KMSAN
Sponsored by: Klara, Inc.
Fixes: 37115154672f ("carp: support VRRPv3")

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

markj created this revision.Aug 30 2024, 4:59 PM
Herald added subscribers: glebius, melifaro, imp. · View Herald TranscriptAug 30 2024, 4:59 PM
markj requested review of this revision.Aug 30 2024, 4:59 PM
Harbormaster completed remote builds in B59248: Diff 142630.Aug 30 2024, 4:59 PM
markj updated this revision to Diff 142633.Aug 30 2024, 5:21 PM

Use in_cksum_skip() in carp6_input() as well.

Harbormaster completed remote builds in B59250: Diff 142633.Aug 30 2024, 5:21 PM
kp accepted this revision.Aug 30 2024, 7:55 PM
This revision is now accepted and ready to land.Aug 30 2024, 7:55 PM
markj added inline comments.Aug 30 2024, 8:16 PM
sys/netinet/ip_carp.c
597

This and the other in_cksum_skip() call is wrong. in_cksum_skip() has a weird interface: the offset should be included in the length, so we always have len >= off, and the function checksums len - off bytes.

Currently waiting for a test run to finish with this call changed to in_cksum_skip(m, totlen, iplen) and the one below changed to in_cksum_skip(m, sizeof(struct carp_header) + *offp, *offp).

Closed by commit rG7d508464f56c: carp: Fix pullup checks (authored by markj). · Explain WhySep 1 2024, 2:10 PM
This revision was automatically updated to reflect the committed changes.
markj added a commit: rG7d508464f56c: carp: Fix pullup checks.

Revision Contents
Changeset List

PathSize
sys/
netinet/
23 lines

Diff 142672

View Options

sys/netinet/ip_carp.c

Loading...