Re: ioctl SIOCGIFNETMASK: ip alias bug 2.4.9 and 2.2.19

From: Andrey Savochkin (saw@saw.sw.com.sg)
Date: Thu Sep 06 2001 - 08:35:34 EST

Next message: Rik van Riel: "Re: page_launder() on 2.4.9/10 issue"
Previous message: Alan Cox: "Re: page_launder() on 2.4.9/10 issue"
In reply to: Andi Kleen: "Re: ioctl SIOCGIFNETMASK: ip alias bug 2.4.9 and 2.2.19"
Next in thread: Wietse Venema: "Re: ioctl SIOCGIFNETMASK: ip alias bug 2.4.9 and 2.2.19"
Reply: Wietse Venema: "Re: ioctl SIOCGIFNETMASK: ip alias bug 2.4.9 and 2.2.19"
Reply: Matthias Andree: "Re: ioctl SIOCGIFNETMASK: ip alias bug 2.4.9 and 2.2.19"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

On Wed, Sep 05, 2001 at 09:26:50PM +0200, Andi Kleen wrote:
> Matthias Andree <matthias.andree@stud.uni-dortmund.de> writes:
> >
> > I believe this would require fixing for compatibility reasons, in the
> > sense that the address is also compared to figure the interface, but I'm
> > out of time now and cannot try anything before tomorrow, I'd happily
> > test patches sent by then.
>
> Even if it checked the address it would not be unique because you can have multiple
> interfaces with the same addresses but different netmasks.
> The SIOCGIFNETMASK interface is just broken. If you really wanted it you should use
> rtnetlink instead, which allows multiple answers to a single question.
> Likely postfix doesn't really need it though, the concept of checking for "local"
> address is pretty dubious and likely to be incorrect for many cases.

Andi, it's right to the point.
The only one good reason for an SMTP server to bother about IP addresses at
all is a quick check for mail loops, i.e. a check at the moment of opening
TCP connection to send a message whether your peer is yourself.
Bothering about network masks just doesn't have any valid grounds.

In fact, sending message to yourself this way is not a disaster, mail system
has loop protection by design. However, sending message to yourself wastes
system resources.

It's not possible to answer the right question (whether you talk to yourself)
inspecting IP addresses.
One may have several mail servers on a single computer, each with its own
configuration file, using different local IP addresses.
In the original example, mail systems on 192.168.0.4 and 192.168.1.1 may be
different.

So, the very right way of doing things is:
- make admin specify the listening addresses for a mail system in the
configuration and use them to check for loops;
- never try to learn anything about networking configuration.

Andrey
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Rik van Riel: "Re: page_launder() on 2.4.9/10 issue"
Previous message: Alan Cox: "Re: page_launder() on 2.4.9/10 issue"
In reply to: Andi Kleen: "Re: ioctl SIOCGIFNETMASK: ip alias bug 2.4.9 and 2.2.19"
Next in thread: Wietse Venema: "Re: ioctl SIOCGIFNETMASK: ip alias bug 2.4.9 and 2.2.19"
Reply: Wietse Venema: "Re: ioctl SIOCGIFNETMASK: ip alias bug 2.4.9 and 2.2.19"
Reply: Matthias Andree: "Re: ioctl SIOCGIFNETMASK: ip alias bug 2.4.9 and 2.2.19"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Fri Sep 07 2001 - 21:00:35 EST