From: Ido Schimmel <idosch@idosch.org> To: netdev@vger.kernel.org, bridge@lists.linux-foundation.org Cc: davem@davemloft.net, kuba@kernel.org, roopa@cumulusnetworks.com, nikolay@cumulusnetworks.com, dlstevens@us.ibm.com, allas@mellanox.com, mlxsw@mellanox.com, Ido Schimmel <idosch@mellanox.com> Subject: [PATCH net 0/2] Fix infinite loop in bridge and vxlan modules Date: Mon, 1 Jun 2020 15:58:53 +0300 [thread overview] Message-ID: <20200601125855.1751343-1-idosch@idosch.org> (raw) From: Ido Schimmel <idosch@mellanox.com> When suppressing invalid IPv6 Neighbour Solicitation messages, it is possible for the bridge and vxlan modules to get stuck in an infinite loop. See the individual changelogs for detailed explanation of the problem and solution. The bug was originally reported against the bridge module, but after auditing the code base I found that the buggy code was copied from the vxlan module. This patch set fixes both modules. Could not find more instances of the problem. Please consider both patches for stable releases. Ido Schimmel (2): bridge: Avoid infinite loop when suppressing NS messages with invalid options vxlan: Avoid infinite loop when suppressing NS messages with invalid options drivers/net/vxlan.c | 4 ++++ net/bridge/br_arp_nd_proxy.c | 4 ++++ 2 files changed, 8 insertions(+) -- 2.26.2
WARNING: multiple messages have this Message-ID (diff)
From: Ido Schimmel <idosch@idosch.org> To: netdev@vger.kernel.org, bridge@lists.linux-foundation.org Cc: mlxsw@mellanox.com, nikolay@cumulusnetworks.com, roopa@cumulusnetworks.com, dlstevens@us.ibm.com, Ido Schimmel <idosch@mellanox.com>, allas@mellanox.com, kuba@kernel.org, davem@davemloft.net Subject: [Bridge] [PATCH net 0/2] Fix infinite loop in bridge and vxlan modules Date: Mon, 1 Jun 2020 15:58:53 +0300 [thread overview] Message-ID: <20200601125855.1751343-1-idosch@idosch.org> (raw) From: Ido Schimmel <idosch@mellanox.com> When suppressing invalid IPv6 Neighbour Solicitation messages, it is possible for the bridge and vxlan modules to get stuck in an infinite loop. See the individual changelogs for detailed explanation of the problem and solution. The bug was originally reported against the bridge module, but after auditing the code base I found that the buggy code was copied from the vxlan module. This patch set fixes both modules. Could not find more instances of the problem. Please consider both patches for stable releases. Ido Schimmel (2): bridge: Avoid infinite loop when suppressing NS messages with invalid options vxlan: Avoid infinite loop when suppressing NS messages with invalid options drivers/net/vxlan.c | 4 ++++ net/bridge/br_arp_nd_proxy.c | 4 ++++ 2 files changed, 8 insertions(+) -- 2.26.2
next reply other threads:[~2020-06-01 12:59 UTC|newest] Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top 2020-06-01 12:58 Ido Schimmel [this message] 2020-06-01 12:58 ` [Bridge] [PATCH net 0/2] Fix infinite loop in bridge and vxlan modules Ido Schimmel 2020-06-01 12:58 ` [PATCH net 1/2] bridge: Avoid infinite loop when suppressing NS messages with invalid options Ido Schimmel 2020-06-01 12:58 ` [Bridge] " Ido Schimmel 2020-06-01 13:02 ` Nikolay Aleksandrov 2020-06-01 13:02 ` [Bridge] " Nikolay Aleksandrov 2020-06-01 12:58 ` [PATCH net 2/2] vxlan: " Ido Schimmel 2020-06-01 12:58 ` [Bridge] " Ido Schimmel 2020-06-01 13:02 ` Nikolay Aleksandrov 2020-06-01 13:02 ` [Bridge] " Nikolay Aleksandrov 2020-06-01 18:09 ` [PATCH net 0/2] Fix infinite loop in bridge and vxlan modules David Miller 2020-06-01 18:09 ` [Bridge] " David Miller
Reply instructions: You may reply publicly to this message via plain-text email using any one of the following methods: * Save the following mbox file, import it into your mail client, and reply-to-all from there: mbox Avoid top-posting and favor interleaved quoting: https://en.wikipedia.org/wiki/Posting_style#Interleaved_style * Reply using the --to, --cc, and --in-reply-to switches of git-send-email(1): git send-email \ --in-reply-to=20200601125855.1751343-1-idosch@idosch.org \ --to=idosch@idosch.org \ --cc=allas@mellanox.com \ --cc=bridge@lists.linux-foundation.org \ --cc=davem@davemloft.net \ --cc=dlstevens@us.ibm.com \ --cc=idosch@mellanox.com \ --cc=kuba@kernel.org \ --cc=mlxsw@mellanox.com \ --cc=netdev@vger.kernel.org \ --cc=nikolay@cumulusnetworks.com \ --cc=roopa@cumulusnetworks.com \ /path/to/YOUR_REPLY https://kernel.org/pub/software/scm/git/docs/git-send-email.html * If your mail client supports setting the In-Reply-To header via mailto: links, try the mailto: linkBe sure your reply has a Subject: header at the top and a blank line before the message body.
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.