Date: Thu, 19 Dec 2002 09:31:26 -0800 From: Brooks Davis <brooks@one-eyed-alien.net> To: Vincent Jardin <vjardin@wanadoo.fr> Cc: freebsd-net@FreeBSD.ORG, Lars Eggert <larse@ISI.EDU> Subject: Re: Recursive encapsulation could panic the Kernel Message-ID: <20021219093126.B30203@Odin.AC.HMC.Edu> In-Reply-To: <3E018315.5070602@isi.edu>; from larse@ISI.EDU on Thu, Dec 19, 2002 at 09:28:05AM %2B0100 References: <3DF62DBD0032C2ED@mel-rta6.wanadoo.fr> <3E018315.5070602@isi.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
--EuxKj2iCbKjpUGkD Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable > On 12/16/2002 9:45 PM, Vincent Jardin wrote: > >=20 > > With FreeBSD, there are many ways to create a recursive local encapsula= tion=20 > > loop within the IPv4 and IPv6 stack. > ... > > There is a simple local solution that is used by gif_output() that is n= ot=20 > > protected by any mutex: > .. > > if (++called > max_gif_nesting) { > > log(LOG_NOTICE, > > "gif_output: recursively called too many times(%d)\n", > > called); > > m_freem(m); > > error =3D EIO; /* is there better errno? */ > > goto end; > > } > >=20 > > I am wondering if a more generic solution could be found, however I do = not=20 > > have any idea yet ;-( Since we now have m_tag support, we could implement the solution OpenBSD uses which catches actual loops instead of just refusing to nest more then a certain amount. See sys/net/if_gif.c rev 1.19. -- Brooks --=20 Any statement of the form "X is the one, true Y" is FALSE. PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4 --EuxKj2iCbKjpUGkD Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE+AgJsXY6L6fI4GtQRAml/AJ0Y44wjRBlocuGuH5FSkCvsiydFBACfWGmn HolDmI5PBToLu2hKEJdd+ns= =HixY -----END PGP SIGNATURE----- --EuxKj2iCbKjpUGkD-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021219093126.B30203>