Page MenuHomeFreeBSD
Differential D54269

netinet: fix checksum calculation bug
ClosedPublic
Actions

Authored by timo.voelker_fh-muenster.de on Wed, Dec 17, 3:32 PM.
Tags
None
Referenced Files
Unknown Object (File)
Fri, Dec 19, 1:36 AM
Unknown Object (File)
Thu, Dec 18, 3:20 AM
Unknown Object (File)
Thu, Dec 18, 3:10 AM
Unknown Object (File)
Thu, Dec 18, 2:17 AM
Subscribers
glebius
imp
melifaro

Details

Reviewers
sobomax
eugen_grosbein.net
markj
tuexen
Commits
rGc8b3b605ae85: tcp: fix checksum calculation bug
Summary

D49677 introduced the new function in_delayed_cksum_o in ip_output.c that computes the checksum even if the mbuf does not start with the IP header by using the parameter iph_offset as the offset to the IP header.

If the iph_offset is larger than 0, this function computes a wrong checksum for a TCP packet. For a TCP packet, it calls in_cksum_skip with the IP total length field value as second parameter, where in_cksum_skip expects the length of the mbuf.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Skipped
Unit
Tests Skipped

Event Timeline

timo.voelker_fh-muenster.de created this revision.Wed, Dec 17, 3:32 PM
Herald added subscribers: glebius, melifaro, imp. · View Herald TranscriptWed, Dec 17, 3:32 PM
timo.voelker_fh-muenster.de requested review of this revision.Wed, Dec 17, 3:32 PM
tuexen added inline comments.Wed, Dec 17, 4:17 PM
sys/netinet/ip_output.c
1069

Would it be better to use

	 cklen = ntohs(ip->ip_len) - (ip->ip_hl << 2);

That would keep the semantic of cklen. Then you could use

	csum = in_cksum_skip(m, cklen + offset, offset);

below.
You could then simplify the code even further to use this statement always. Only the mapping of 0 to 0xffff would be UDP specific.

sobomax accepted this revision.Wed, Dec 17, 5:39 PM
This revision is now accepted and ready to land.Wed, Dec 17, 5:39 PM
timo.voelker_fh-muenster.de added inline comments.Wed, Dec 17, 5:40 PM
sys/netinet/ip_output.c
1069

Using

cklen = ntohs(ip->ip_len) - (ip->ip_hl << 2);

for UDP indeed simplifies the code but changes the behavior if the value in the UDP length field is not equal to the value in the IP total length field - the IP header length. This might be the case with UDP options (RFC9868). Would that be an issue?

tuexen added inline comments.Wed, Dec 17, 8:57 PM
sys/netinet/ip_output.c
1069

I don't know what else needs changes if you implement UDP options. We can at least argue that this change should fix the function, not simplify it by changing its behavior.

I still would suggest to change cklen to assign to it the number of bytes the checksum will be computed over.

timo.voelker_fh-muenster.de updated this revision to Diff 168300.Thu, Dec 18, 11:10 AM

Use the same semantic for cklen as in the UDP case.

This revision now requires review to proceed.Thu, Dec 18, 11:10 AM
timo.voelker_fh-muenster.de marked 2 inline comments as done.Thu, Dec 18, 11:10 AM
tuexen accepted this revision.Thu, Dec 18, 11:19 AM
This revision is now accepted and ready to land.Thu, Dec 18, 11:19 AM
timo.voelker_fh-muenster.de edited the summary of this revision. (Show Details)Thu, Dec 18, 12:10 PM
Closed by commit rGc8b3b605ae85: tcp: fix checksum calculation bug (authored by timo.voelker_fh-muenster.de, committed by tuexen). · Explain WhyFri, Dec 19, 5:00 PM
This revision was automatically updated to reflect the committed changes.
tuexen added a commit: rGc8b3b605ae85: tcp: fix checksum calculation bug.

Revision Contents
Changeset List

PathSize
sys/
netinet/
2 lines

Diff 168265

View Options

sys/netinet/ip_output.c

Loading...