* draft-stewart-tsvwg-sctp-ipv4 enforcement
@ 2021-06-17 19:01 Sérgio
2021-06-18 16:35 ` Xin Long
0 siblings, 1 reply; 4+ messages in thread
From: Sérgio @ 2021-06-17 19:01 UTC (permalink / raw)
To: linux-sctp
Hello,
I am troubleshooting a deployment with SCTP and eventually found that
the client has configured the equipment using addresses within the
RFC2544 annex C.2.2 test network (198.18.0.0/15).
Although I think the deployment network may be changed to use another
address space in order to "solve" the issue, the restriction
enforcement on the SCTP kernel driver (implemented by function
sctp_v4_addr_valid -- net/sctp/protocol.c -- in expansion of
IS_IPV4_UNUSABLE_ADDRESS -- include/net/sctp/consntans.h) seems odd to
me, because the address is a valid unicast IPv4 address and should be
acceptable as per RFC4960 clause 8.4:
The receiver of an OOTB packet MUST do the following:
1) If the OOTB packet is to or from a non-unicast address, a
receiver SHOULD silently discard the packet. Otherwise,
The source code states that this restriction came from
draft-stewart-tsvwg-sctp-ipv4, which is true, and the sysctl
net.sctp.addr_scope_policy is documented in ip-sysctl.txt as a switch
for the desired draft behavior, but changing the sysctl value has no
effect because IS_IPV4_UNUSABLE_ADDRESS macro expansion has no
verification of any sysctl configuration nor the sctp_v4_addr_valid.
The draft-stewart-tsvwg-sctp-ipv4 enforcement seems like a bug or I am
missing something?
Best Regards,
Sérgio Surkamp
^ permalink raw reply [flat|nested] 4+ messages in thread* Re: draft-stewart-tsvwg-sctp-ipv4 enforcement
2021-06-17 19:01 draft-stewart-tsvwg-sctp-ipv4 enforcement Sérgio
@ 2021-06-18 16:35 ` Xin Long
2021-06-18 20:35 ` Michael Tuexen
0 siblings, 1 reply; 4+ messages in thread
From: Xin Long @ 2021-06-18 16:35 UTC (permalink / raw)
To: Sérgio, Michael Tuexen; +Cc: linux-sctp @ vger . kernel . org
On Thu, Jun 17, 2021 at 4:40 PM Sérgio <surkamp@gmail.com> wrote:
>
> Hello,
>
> I am troubleshooting a deployment with SCTP and eventually found that
> the client has configured the equipment using addresses within the
> RFC2544 annex C.2.2 test network (198.18.0.0/15).
>
> Although I think the deployment network may be changed to use another
> address space in order to "solve" the issue, the restriction
> enforcement on the SCTP kernel driver (implemented by function
> sctp_v4_addr_valid -- net/sctp/protocol.c -- in expansion of
> IS_IPV4_UNUSABLE_ADDRESS -- include/net/sctp/consntans.h) seems odd to
> me, because the address is a valid unicast IPv4 address and should be
> acceptable as per RFC4960 clause 8.4:
>
> The receiver of an OOTB packet MUST do the following:
>
> 1) If the OOTB packet is to or from a non-unicast address, a
> receiver SHOULD silently discard the packet. Otherwise,
>
> The source code states that this restriction came from
> draft-stewart-tsvwg-sctp-ipv4, which is true, and the sysctl
> net.sctp.addr_scope_policy is documented in ip-sysctl.txt as a switch
> for the desired draft behavior, but changing the sysctl value has no
> effect because IS_IPV4_UNUSABLE_ADDRESS macro expansion has no
> verification of any sysctl configuration nor the sctp_v4_addr_valid.
>
> The draft-stewart-tsvwg-sctp-ipv4 enforcement seems like a bug or I am
> missing something?
>
There must be a reason for not using 198.18.0.0/24 in SCTP, as in
https://datatracker.ietf.org/doc/html/draft-stewart-tsvwg-sctp-ipv4-00#section-3.1
[1] IANA, I., "Special-Use IPv4 Addresses", draft-iana-special-ipv4-
03 (work in progress), April 2002.
https://datatracker.ietf.org/doc/html/draft-iana-special-ipv4-03
^ permalink raw reply [flat|nested] 4+ messages in thread* Re: draft-stewart-tsvwg-sctp-ipv4 enforcement
2021-06-18 16:35 ` Xin Long
@ 2021-06-18 20:35 ` Michael Tuexen
2021-06-18 20:54 ` Xin Long
0 siblings, 1 reply; 4+ messages in thread
From: Michael Tuexen @ 2021-06-18 20:35 UTC (permalink / raw)
To: Xin Long; +Cc: Sérgio, linux-sctp @ vger . kernel . org
> On 18. Jun 2021, at 18:35, Xin Long <lucien.xin@gmail.com> wrote:
>
> On Thu, Jun 17, 2021 at 4:40 PM Sérgio <surkamp@gmail.com> wrote:
>>
>> Hello,
>>
>> I am troubleshooting a deployment with SCTP and eventually found that
>> the client has configured the equipment using addresses within the
>> RFC2544 annex C.2.2 test network (198.18.0.0/15).
>>
>> Although I think the deployment network may be changed to use another
>> address space in order to "solve" the issue, the restriction
>> enforcement on the SCTP kernel driver (implemented by function
>> sctp_v4_addr_valid -- net/sctp/protocol.c -- in expansion of
>> IS_IPV4_UNUSABLE_ADDRESS -- include/net/sctp/consntans.h) seems odd to
>> me, because the address is a valid unicast IPv4 address and should be
>> acceptable as per RFC4960 clause 8.4:
>>
>> The receiver of an OOTB packet MUST do the following:
>>
>> 1) If the OOTB packet is to or from a non-unicast address, a
>> receiver SHOULD silently discard the packet. Otherwise,
>>
>> The source code states that this restriction came from
>> draft-stewart-tsvwg-sctp-ipv4, which is true, and the sysctl
>> net.sctp.addr_scope_policy is documented in ip-sysctl.txt as a switch
>> for the desired draft behavior, but changing the sysctl value has no
>> effect because IS_IPV4_UNUSABLE_ADDRESS macro expansion has no
>> verification of any sysctl configuration nor the sctp_v4_addr_valid.
>>
>> The draft-stewart-tsvwg-sctp-ipv4 enforcement seems like a bug or I am
>> missing something?
>>
> There must be a reason for not using 198.18.0.0/24 in SCTP, as in
>
> https://datatracker.ietf.org/doc/html/draft-stewart-tsvwg-sctp-ipv4-00#section-3.1
>
> [1] IANA, I., "Special-Use IPv4 Addresses", draft-iana-special-ipv4-
> 03 (work in progress), April 2002.
>
> https://datatracker.ietf.org/doc/html/draft-iana-special-ipv4-03
I think not allowing it at all is wrong.
https://datatracker.ietf.org/doc/html/rfc6890
states that it is not global. So maybe level 3 would be more appropriate.
Please note, the ID was never published as an RFC, so there might be more
errors...
Best regards
Michael
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: draft-stewart-tsvwg-sctp-ipv4 enforcement
2021-06-18 20:35 ` Michael Tuexen
@ 2021-06-18 20:54 ` Xin Long
0 siblings, 0 replies; 4+ messages in thread
From: Xin Long @ 2021-06-18 20:54 UTC (permalink / raw)
To: Michael Tuexen; +Cc: Sérgio, linux-sctp @ vger . kernel . org
On Fri, Jun 18, 2021 at 4:35 PM Michael Tuexen <tuexen@freebsd.org> wrote:
>
> > On 18. Jun 2021, at 18:35, Xin Long <lucien.xin@gmail.com> wrote:
> >
> > On Thu, Jun 17, 2021 at 4:40 PM Sérgio <surkamp@gmail.com> wrote:
> >>
> >> Hello,
> >>
> >> I am troubleshooting a deployment with SCTP and eventually found that
> >> the client has configured the equipment using addresses within the
> >> RFC2544 annex C.2.2 test network (198.18.0.0/15).
> >>
> >> Although I think the deployment network may be changed to use another
> >> address space in order to "solve" the issue, the restriction
> >> enforcement on the SCTP kernel driver (implemented by function
> >> sctp_v4_addr_valid -- net/sctp/protocol.c -- in expansion of
> >> IS_IPV4_UNUSABLE_ADDRESS -- include/net/sctp/consntans.h) seems odd to
> >> me, because the address is a valid unicast IPv4 address and should be
> >> acceptable as per RFC4960 clause 8.4:
> >>
> >> The receiver of an OOTB packet MUST do the following:
> >>
> >> 1) If the OOTB packet is to or from a non-unicast address, a
> >> receiver SHOULD silently discard the packet. Otherwise,
> >>
> >> The source code states that this restriction came from
> >> draft-stewart-tsvwg-sctp-ipv4, which is true, and the sysctl
> >> net.sctp.addr_scope_policy is documented in ip-sysctl.txt as a switch
> >> for the desired draft behavior, but changing the sysctl value has no
> >> effect because IS_IPV4_UNUSABLE_ADDRESS macro expansion has no
> >> verification of any sysctl configuration nor the sctp_v4_addr_valid.
> >>
> >> The draft-stewart-tsvwg-sctp-ipv4 enforcement seems like a bug or I am
> >> missing something?
> >>
> > There must be a reason for not using 198.18.0.0/24 in SCTP, as in
> >
> > https://datatracker.ietf.org/doc/html/draft-stewart-tsvwg-sctp-ipv4-00#section-3.1
> >
> > [1] IANA, I., "Special-Use IPv4 Addresses", draft-iana-special-ipv4-
> > 03 (work in progress), April 2002.
> >
> > https://datatracker.ietf.org/doc/html/draft-iana-special-ipv4-03
> I think not allowing it at all is wrong.
> https://datatracker.ietf.org/doc/html/rfc6890
> states that it is not global. So maybe level 3 would be more appropriate.
>
I will fix it, thanks.
> Please note, the ID was never published as an RFC, so there might be more
> errors...
>
> Best regards
> Michael
>
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2021-06-18 20:54 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-06-17 19:01 draft-stewart-tsvwg-sctp-ipv4 enforcement Sérgio
2021-06-18 16:35 ` Xin Long
2021-06-18 20:35 ` Michael Tuexen
2021-06-18 20:54 ` Xin Long
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.