All of lore.kernel.org
 help / color / mirror / Atom feed
* Question on sctp state machine
@ 2017-09-01  6:25 amar padmanabhan
  2017-09-01 13:32 ` Neil Horman
  2017-09-01 15:18 ` amar padmanabhan
  0 siblings, 2 replies; 3+ messages in thread
From: amar padmanabhan @ 2017-09-01  6:25 UTC (permalink / raw)
  To: linux-sctp

[-- Attachment #1: Type: text/plain, Size: 838 bytes --]

Hi all,
I am trying to create a simpler repro for an issue where an
association lingers/leaks and am observing something that I fully
don't fully follow:

Scenario:
Client initiates 4 way handshake completes it, sends some user data,
dies, reinitiates the 4 way handshake, completes sends some user data
dies. Repeat forever.
Server is running all through.

In the attached pcap the third INIT gets an INIT ACK but the COOKIE
ECHO doesn't get a corresponding COOKIE_ACK response from the server.
The only thing I see here is that the initiate tag is the same between
the second and third run.
Please find the trace in the attached pcap. The post handshake
exchange can be ignored for the most part.

vagrant@magma-dev:~$ uname -a
Linux magma-dev 4.9.0-0.bpo.1-amd64 #1 SMP Debian 4.9.2-2~bpo8+1
(2017-01-26) x86_64 GNU/Linux

Thanks
Amar

[-- Attachment #2: tester.pcap --]
[-- Type: application/octet-stream, Size: 10390 bytes --]

^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: Question on sctp state machine
  2017-09-01  6:25 Question on sctp state machine amar padmanabhan
@ 2017-09-01 13:32 ` Neil Horman
  2017-09-01 15:18 ` amar padmanabhan
  1 sibling, 0 replies; 3+ messages in thread
From: Neil Horman @ 2017-09-01 13:32 UTC (permalink / raw)
  To: linux-sctp

On Thu, Aug 31, 2017 at 11:25:16PM -0700, amar padmanabhan wrote:
> Hi all,
> I am trying to create a simpler repro for an issue where an
> association lingers/leaks and am observing something that I fully
> don't fully follow:
> 
> Scenario:
> Client initiates 4 way handshake completes it, sends some user data,
> dies, reinitiates the 4 way handshake, completes sends some user data
> dies. Repeat forever.
> Server is running all through.
> 
Are you forcing that connection failure?  Or is it happening on its own?  I'm
trying to figure out where the ICMP proto unreachable messsages are originating
from.  Its sort of an odd ICMP code to hit.

> In the attached pcap the third INIT gets an INIT ACK but the COOKIE
> ECHO doesn't get a corresponding COOKIE_ACK response from the server.
> The only thing I see here is that the initiate tag is the same between
> the second and third run.
That suggests to me that we're considering this an unexpected init, and
processing it as such in sctp_sf_do_unexpected_init, by creating a new
association and copying over the tags.  Then we handle the cookie in
sctp_sf_do_5_2_4_dupcook and silently discard it for one of several reasons.
I'd suggest writing a stap script to probe the return and error value of
sctp_unpack_cookie to see how the last cookie is getting handled.

Neil


> Please find the trace in the attached pcap. The post handshake
> exchange can be ignored for the most part.
> 
> vagrant@magma-dev:~$ uname -a
> Linux magma-dev 4.9.0-0.bpo.1-amd64 #1 SMP Debian 4.9.2-2~bpo8+1
> (2017-01-26) x86_64 GNU/Linux
> 
> Thanks
> Amar



^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: Question on sctp state machine
  2017-09-01  6:25 Question on sctp state machine amar padmanabhan
  2017-09-01 13:32 ` Neil Horman
@ 2017-09-01 15:18 ` amar padmanabhan
  1 sibling, 0 replies; 3+ messages in thread
From: amar padmanabhan @ 2017-09-01 15:18 UTC (permalink / raw)
  To: linux-sctp

>>
>> Scenario:
>> Client initiates 4 way handshake completes it, sends some user data,
>> dies, reinitiates the 4 way handshake, completes sends some user data
>> dies. Repeat forever.
>> Server is running all through.
>>
> Are you forcing that connection failure?  Or is it happening on its own?  I'm
> trying to figure out where the ICMP proto unreachable messsages are originating
> from.  Its sort of an odd ICMP code to hit.
>
Yeah I am forcing the connection failure by killing the sctp. The
client is an eNB simulator (LTE base station) and has its own user
space sctp stack which we are killing.

>> In the attached pcap the third INIT gets an INIT ACK but the COOKIE
>> ECHO doesn't get a corresponding COOKIE_ACK response from the server.
>> The only thing I see here is that the initiate tag is the same between
>> the second and third run.
> That suggests to me that we're considering this an unexpected init, and
> processing it as such in sctp_sf_do_unexpected_init, by creating a new
> association and copying over the tags.  Then we handle the cookie in
> sctp_sf_do_5_2_4_dupcook and silently discard it for one of several reasons.
> I'd suggest writing a stap script to probe the return and error value of
> sctp_unpack_cookie to see how the last cookie is getting handled.

Great thanks for the pointer, will try it out.

>
> Neil
>
>
>> Please find the trace in the attached pcap. The post handshake
>> exchange can be ignored for the most part.
>>
>> vagrant@magma-dev:~$ uname -a
>> Linux magma-dev 4.9.0-0.bpo.1-amd64 #1 SMP Debian 4.9.2-2~bpo8+1
>> (2017-01-26) x86_64 GNU/Linux
>>
>> Thanks
>> Amar
>
>

^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2017-09-01 15:18 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2017-09-01  6:25 Question on sctp state machine amar padmanabhan
2017-09-01 13:32 ` Neil Horman
2017-09-01 15:18 ` amar padmanabhan

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.