Page MenuHomeFreeBSD
Differential D46492

carp: Fix pullup checks
ClosedPublic
Actions

Authored by markj on Aug 30 2024, 4:59 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Dec 7, 12:01 AM
Unknown Object (File)
Wed, Dec 3, 3:05 AM
Unknown Object (File)
Wed, Nov 26, 4:56 AM
Unknown Object (File)
Tue, Nov 25, 8:13 PM
Unknown Object (File)
Sun, Nov 16, 5:48 PM
Unknown Object (File)
Nov 10 2025, 5:11 PM
Unknown Object (File)
Oct 29 2025, 7:55 AM
Unknown Object (File)
Oct 29 2025, 5:31 AM
View All 83 Files
Subscribers
glebius
imp
melifaro

Details

Reviewers
kp
Commits
rG7d508464f56c: carp: Fix pullup checks
Summary

The conditions used to test whether a pullup is needed were inverted.

While here:

  • Fix a bogus assignment to "iplen": it's already initialized to *offp.
  • Use in_cksum_skip() instead of manually adjusting the data pointer. Otherwise the mbuf is temporarily in an invalid state, since m_len isn't updated to match.

Reported by: KMSAN
Sponsored by: Klara, Inc.
Fixes: 37115154672f ("carp: support VRRPv3")

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Skipped
Unit
Tests Skipped
Build Status
Buildable 59248
Build 56135: arc lint + arc unit

Event Timeline

markj created this revision.Aug 30 2024, 4:59 PM
Herald added subscribers: glebius, melifaro, imp. · View Herald TranscriptAug 30 2024, 4:59 PM
markj requested review of this revision.Aug 30 2024, 4:59 PM
Harbormaster completed remote builds in B59248: Diff 142630.Aug 30 2024, 4:59 PM
markj updated this revision to Diff 142633.Aug 30 2024, 5:21 PM

Use in_cksum_skip() in carp6_input() as well.

Harbormaster completed remote builds in B59250: Diff 142633.Aug 30 2024, 5:21 PM
kp accepted this revision.Aug 30 2024, 7:55 PM
This revision is now accepted and ready to land.Aug 30 2024, 7:55 PM
markj added inline comments.Aug 30 2024, 8:16 PM
sys/netinet/ip_carp.c
597

This and the other in_cksum_skip() call is wrong. in_cksum_skip() has a weird interface: the offset should be included in the length, so we always have len >= off, and the function checksums len - off bytes.

Currently waiting for a test run to finish with this call changed to in_cksum_skip(m, totlen, iplen) and the one below changed to in_cksum_skip(m, sizeof(struct carp_header) + *offp, *offp).

Closed by commit rG7d508464f56c: carp: Fix pullup checks (authored by markj). · Explain WhySep 1 2024, 2:10 PM
This revision was automatically updated to reflect the committed changes.
markj added a commit: rG7d508464f56c: carp: Fix pullup checks.

Revision Contents
Changeset List

PathSize
sys/
netinet/
18 lines

Diff 142630

View Options

sys/netinet/ip_carp.c

Loading...