From: Thomas Monjalon <thomas@monjalon.net>
To: dev@dpdk.org
Cc: stable@dpdk.org, "Jiayu Hu" <jiayu.hu@intel.com>,
konstantin.ananyev@intel.com,
"Morten Brørup" <mb@smartsharesystems.com>,
stephen@networkplumber.org
Subject: Re: [dpdk-dev] [dpdk-stable] [PATCH v2] gro: add missing invalid packet checks
Date: Mon, 14 Jan 2019 23:26:07 +0100 [thread overview]
Message-ID: <1679955.9WYREdNOYL@xps> (raw)
In-Reply-To: <1547132768-2384-1-git-send-email-jiayu.hu@intel.com>
Any review, please?
10/01/2019 16:06, Jiayu Hu:
> Currently, GRO library doesn't check if input packets have
> invalid headers. The packets with invalid headers will also
> be processed by GRO.
>
> However, GRO shouldn't process invalid packets. This patch adds
> missing invalid packet checks.
>
> Fixes: 0d2cbe59b719 ("lib/gro: support TCP/IPv4")
> Fixes: 9e0b9d2ec0f4 ("gro: support VxLAN GRO")
> Cc: stable@dpdk.org
>
> Signed-off-by: Jiayu Hu <jiayu.hu@intel.com>
> ---
> changes in v2:
> - fix VxLAN header length check bug for VxLAN GRO;
> - fix ethernet header length check bug;
> - use sizeof() and macro to present valid header length;
> - add VLAN related comments since GRO cannot process VLAN tagged packets.
>
> lib/librte_gro/gro_tcp4.c | 12 ++++++++++++
> lib/librte_gro/gro_tcp4.h | 10 ++++++++++
> lib/librte_gro/gro_vxlan_tcp4.c | 15 +++++++++++++++
> 3 files changed, 37 insertions(+)
>
> diff --git a/lib/librte_gro/gro_tcp4.c b/lib/librte_gro/gro_tcp4.c
> index 2fe9aab..48076e0 100644
> --- a/lib/librte_gro/gro_tcp4.c
> +++ b/lib/librte_gro/gro_tcp4.c
> @@ -208,6 +208,18 @@ gro_tcp4_reassemble(struct rte_mbuf *pkt,
> int cmp;
> uint8_t find;
>
> + /*
> + * Don't process the packet whose Ethernet, IPv4 and TCP header
> + * lengths are invalid.
> + *
> + * In addition, GRO doesn't process the packet that is VLAN
> + * tagged or whose the IPv4 header contains Options.
> + */
> + if (unlikely(ILLEGAL_ETHER_HDRLEN(pkt->l2_len) ||
> + ILLEGAL_IPV4_HDRLEN(pkt->l3_len) ||
> + ILLEGAL_TCP_HDRLEN(pkt->l4_len)))
> + return -1;
> +
> eth_hdr = rte_pktmbuf_mtod(pkt, struct ether_hdr *);
> ipv4_hdr = (struct ipv4_hdr *)((char *)eth_hdr + pkt->l2_len);
> tcp_hdr = (struct tcp_hdr *)((char *)ipv4_hdr + pkt->l3_len);
> diff --git a/lib/librte_gro/gro_tcp4.h b/lib/librte_gro/gro_tcp4.h
> index 6bb30cd..65bcae8 100644
> --- a/lib/librte_gro/gro_tcp4.h
> +++ b/lib/librte_gro/gro_tcp4.h
> @@ -17,6 +17,16 @@
> */
> #define MAX_IPV4_PKT_LENGTH UINT16_MAX
>
> +/* The maximum TCP header length */
> +#define TCP_MAX_HLEN 60
> +
> +#define ILLEGAL_ETHER_HDRLEN(len) ((len) != ETHER_HDR_LEN)
> +#define ILLEGAL_ETHER_VXLAN_HDRLEN(len) \
> + ((len) != (ETHER_VXLAN_HLEN + ETHER_HDR_LEN))
> +#define ILLEGAL_IPV4_HDRLEN(len) ((len) != sizeof(struct ipv4_hdr))
> +#define ILLEGAL_TCP_HDRLEN(len) \
> + (((len) < sizeof(struct tcp_hdr)) || ((len) > TCP_MAX_HLEN))
> +
> /* Header fields representing a TCP/IPv4 flow */
> struct tcp4_flow_key {
> struct ether_addr eth_saddr;
> diff --git a/lib/librte_gro/gro_vxlan_tcp4.c b/lib/librte_gro/gro_vxlan_tcp4.c
> index 955ae4b..72d63bc 100644
> --- a/lib/librte_gro/gro_vxlan_tcp4.c
> +++ b/lib/librte_gro/gro_vxlan_tcp4.c
> @@ -306,6 +306,21 @@ gro_vxlan_tcp4_reassemble(struct rte_mbuf *pkt,
> uint16_t hdr_len;
> uint8_t find;
>
> + /*
> + * Don't process the packet whose outer Ethernet, outer IPv4,
> + * VxLAN header, inner Ethernet, inner IPv4 and inner TCP
> + * header lengths are invalid.
> + *
> + * In addition, GRO doesn't process the packet that is VLAN
> + * tagged or whose IPv4 header contains Options.
> + */
> + if (unlikely(ILLEGAL_ETHER_HDRLEN(pkt->outer_l2_len) ||
> + ILLEGAL_IPV4_HDRLEN(pkt->outer_l3_len) ||
> + ILLEGAL_ETHER_VXLAN_HDRLEN(pkt->l2_len) ||
> + ILLEGAL_IPV4_HDRLEN(pkt->l3_len) ||
> + ILLEGAL_TCP_HDRLEN(pkt->l4_len)))
> + return -1;
> +
> outer_eth_hdr = rte_pktmbuf_mtod(pkt, struct ether_hdr *);
> outer_ipv4_hdr = (struct ipv4_hdr *)((char *)outer_eth_hdr +
> pkt->outer_l2_len);
>
next prev parent reply other threads:[~2019-01-14 22:26 UTC|newest]
Thread overview: 24+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-01-04 1:57 [dpdk-dev] [PATCH] gro: fix overflow of TCP Options length calculation Jiayu Hu
2019-01-07 14:29 ` Bruce Richardson
2019-01-08 1:22 ` Hu, Jiayu
2019-01-08 6:19 ` Stephen Hemminger
2019-01-08 6:08 ` [dpdk-dev] [PATCH] gro: add missing invalid packet checks Jiayu Hu
2019-01-08 6:31 ` Stephen Hemminger
2019-01-08 8:14 ` Hu, Jiayu
2019-01-08 10:39 ` Ananyev, Konstantin
2019-01-08 11:33 ` Morten Brørup
2019-01-08 13:40 ` Hu, Jiayu
2019-01-08 13:43 ` Ananyev, Konstantin
2019-01-08 14:50 ` Morten Brørup
2019-01-09 3:32 ` Hu, Jiayu
2019-01-10 15:06 ` [dpdk-dev] [PATCH v2] " Jiayu Hu
2019-01-14 22:26 ` Thomas Monjalon [this message]
2019-01-15 1:00 ` Stephen Hemminger
2019-01-15 2:48 ` Hu, Jiayu
2019-01-15 5:05 ` Wang, Yinan
2019-01-15 10:11 ` Ananyev, Konstantin
2019-01-15 12:18 ` Hu, Jiayu
2019-01-15 13:38 ` Hu, Jiayu
2019-01-16 0:45 ` [dpdk-dev] [PATCH v3] gro: add missing invalid TCP header length check Jiayu Hu
2019-01-16 9:49 ` Ananyev, Konstantin
2019-01-17 21:41 ` Thomas Monjalon
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1679955.9WYREdNOYL@xps \
--to=thomas@monjalon.net \
--cc=dev@dpdk.org \
--cc=jiayu.hu@intel.com \
--cc=konstantin.ananyev@intel.com \
--cc=mb@smartsharesystems.com \
--cc=stable@dpdk.org \
--cc=stephen@networkplumber.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).