NEEDS FIXING - Was: Re: [PATCH v2] ipv4: ping: fix bind address validity check

From: Riccardo Paolo Bestetti
Date: Fri Jun 17 2022 - 20:33:06 EST

Next message: Yang Shi: "Re: [syzbot] KASAN: null-ptr-deref Read in hugepage_vma_check"
Previous message: Krzysztof Kozlowski: "Re: [PATCH v8 1/5] arm64: dts: qcom: sc7180: Add wormdingler dts files"
In reply to: Maciej Żenczykowski: "Re: [PATCH v2] ipv4: ping: fix bind address validity check"
Next in thread: Jakub Kicinski: "Re: NEEDS FIXING - Was: Re: [PATCH v2] ipv4: ping: fix bind address validity check"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri Jun 17, 2022 at 1:30 PM CEST, wrote:
> Hello:
>
> This patch was applied to netdev/net.git (master)
> by David S. Miller <davem@xxxxxxxxxxxxx>:
>
> On Fri, 17 Jun 2022 10:54:35 +0200 you wrote:
> > Commit 8ff978b8b222 ("ipv4/raw: support binding to nonlocal addresses")
> > introduced a helper function to fold duplicated validity checks of bind
> > addresses into inet_addr_valid_or_nonlocal(). However, this caused an
> > unintended regression in ping_check_bind_addr(), which previously would
> > reject binding to multicast and broadcast addresses, but now these are
> > both incorrectly allowed as reported in [1].
> >
> > [...]
>
> Here is the summary with links:
> - [v2] ipv4: ping: fix bind address validity check
> https://git.kernel.org/netdev/net/c/b4a028c4d031
>
I receompiled the kernel from the net tree to do some more manual testing
on the patch and I have two things to disclose. Sorry for the caps in
the subject.

TL;DR: I noticed that one of the regressions tests is (correctly)
failing, but for the wrong reasons; and the patch I sent contains a
mistake, and unfortunately it has already been applied to the tree as
commit b4a028c4d0.

Long version below.

1) If you run regression tests with -v, the (correct -- see below) ICMP
tests for broadcast and multicast binding do not fail with
EADDRNOTAVAIL, but with ACCES, but only when run through fcnal-test.sh.
This is also true for one of the additional (commented out) tests you
can find in my patch following this email. I'm not sure why this
happens; however I'm reasonably convinced it is a quirk or a consequence
of the testing methodology/setup. Can anyone offer any insights?

2) My patch is faulty. I had a complete and tested patch, including code
fixing the regression. Instead of sending it, however, I decided to
adapt it to preserve Carlos Llamas' version of ping.c, since they posted
their patch first. In doing so I used a work branch which contained a
faulty version (wrong flags) of the regression tests. The resulting
faulty patch is, unfortunately, currently in the tree.

At this point, due to the unfortunate combination of (1) and (2), it
might be worth reverting the patch altogether and just applying the v1
(i.e. without the regression tests) to the tree and to the relevant LTS
versions.

After that, a more proper discussion can be had about (1), and the
regression tests can be fixed. I'm sending a demonstrative patch for
that as a response to this message.

Riccardo P. Bestetti

> You are awesome, thank you!
> --
> Deet-doot-dot, I am a bot.
> https://korg.docs.kernel.org/patchwork/pwbot.html

Next message: Yang Shi: "Re: [syzbot] KASAN: null-ptr-deref Read in hugepage_vma_check"
Previous message: Krzysztof Kozlowski: "Re: [PATCH v8 1/5] arm64: dts: qcom: sc7180: Add wormdingler dts files"
In reply to: Maciej Żenczykowski: "Re: [PATCH v2] ipv4: ping: fix bind address validity check"
Next in thread: Jakub Kicinski: "Re: NEEDS FIXING - Was: Re: [PATCH v2] ipv4: ping: fix bind address validity check"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]