Re: UDP recvmsg blocks after select(), 2.6 bug?

From: Colin Phipps
Date: Sat Oct 09 2004 - 07:07:37 EST

Next message: Ken Moffat: "Re: Problem with ide=nodma"
Previous message: Francois Romieu: "Re: [openib-general] InfiniBand incompatible with the Linux kernel?"
In reply to: Mark Mielke: "Re: UDP recvmsg blocks after select(), 2.6 bug?"
Next in thread: Bodo Eggert: "Re: UDP recvmsg blocks after select(), 2.6 bug?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

So the performance gain is significant. And programs that break were
buggy anyway. But that still leaves the question of whether it benefits
users, given that there is a lot of software, buggy by this
interpretation, that can break. In particular, exposing UDP daemons to
denial of service using bad-checksum UDP packets looks like a rather
interesting security issue.

I have just tried syslog and inetd on a couple of machines running
2.6.8.1, and both hang when given a single bad-checksum udp packet.
hping2 -2 -c 1 -b is the tool of choice. Sure, they could have broken
anyway, but this makes them easy targets - and presumably they are the
tip of the iceberg.

--
Colin Phipps <cph@xxxxxxxxxxxxxxx>
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ken Moffat: "Re: Problem with ide=nodma"
Previous message: Francois Romieu: "Re: [openib-general] InfiniBand incompatible with the Linux kernel?"
In reply to: Mark Mielke: "Re: UDP recvmsg blocks after select(), 2.6 bug?"
Next in thread: Bodo Eggert: "Re: UDP recvmsg blocks after select(), 2.6 bug?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]