Re: [PATCH net-next-2.6] net/ipv4: push IP options to CB inip_fragment

From: Bandan Das
Date: Wed Sep 01 2010 - 22:06:09 EST

Next message: Andy Lutomirski: "Re: Is there a primitive to atomically release a spinlock and goto sleep?"
Previous message: Greg KH: "Re: [PATCH] serial: uartlite: Remove obscure loop fromulite_get_poll_char"
In reply to: David Miller: "Re: [PATCH net-next-2.6] net/ipv4: push IP options to CB inip_fragment"
Next in thread: David Miller: "Re: [PATCH net-next-2.6] net/ipv4: push IP options to CB inip_fragment"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 0, David Miller <davem@xxxxxxxxxxxxx> wrote:
> From: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>
> Date: Thu, 2 Sep 2010 07:30:56 +0800
>
> > On Wed, Sep 01, 2010 at 02:46:58PM -0700, David Miller wrote:
> > .
> >> Therefore I'm inclined to agree with Herbert that we need to parse the
> >> options explicitly before invoke ip_fragment(). We must call it with
> >> an SKB in the state it expects, and that means with options parsing
> >> already performed.
> >
> > FWIW the packet probably doesn't even have IP options. What is
> > happening here is that we've found yet another entry point from
> > the bridge driver into the IP stack so we need to duplicate my
> > original patch here.
>
> With that in mind I'm going to commit the following and
> queue it up to -stable too.
>
> Thanks.
>
> --------------------
> bridge: Clear INET control block of SKBs passed into ip_fragment().
>
> In a similar vain to commit 17762060c25590bfddd68cc1131f28ec720f405f
> ("bridge: Clear IPCB before possible entry into IP stack")
>
> Any time we call into the IP stack we have to make sure the state
> there is as expected by the ipv4 code.
>
> With help from Eric Dumazet and Herbert Xu.
>
> Reported-by: Brandan Das <brandan.das@xxxxxxxxxxx>
> Signed-off-by: David S. Miller <davem@xxxxxxxxxxxxx>
> ---
> net/bridge/br_netfilter.c | 6 ++++--
> 1 files changed, 4 insertions(+), 2 deletions(-)
>
> diff --git a/net/bridge/br_netfilter.c b/net/bridge/br_netfilter.c
> index 5ed00bd..137f232 100644
> --- a/net/bridge/br_netfilter.c
> +++ b/net/bridge/br_netfilter.c
> @@ -761,9 +761,11 @@ static int br_nf_dev_queue_xmit(struct sk_buff *skb)
> {
> if (skb->nfct != NULL && skb->protocol == htons(ETH_P_IP) &&
> skb->len + nf_bridge_mtu_reduction(skb) > skb->dev->mtu &&
> - !skb_is_gso(skb))
> + !skb_is_gso(skb)) {
> + /* BUG: Should really parse the IP options here. */
> + memset(IPCB(skb), 0, sizeof(struct inet_skb_parm));
> return ip_fragment(skb, br_dev_queue_push_xmit);
> - else
> + } else
> return br_dev_queue_push_xmit(skb);
> }
> #else
> --
> 1.7.2.2
Sounds good, except for one thing :)
It should be: Reported-by: Bandan Das <bandan.das@xxxxxxxxxxx> (without the "r")

Bandan
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andy Lutomirski: "Re: Is there a primitive to atomically release a spinlock and goto sleep?"
Previous message: Greg KH: "Re: [PATCH] serial: uartlite: Remove obscure loop fromulite_get_poll_char"
In reply to: David Miller: "Re: [PATCH net-next-2.6] net/ipv4: push IP options to CB inip_fragment"
Next in thread: David Miller: "Re: [PATCH net-next-2.6] net/ipv4: push IP options to CB inip_fragment"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]