mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
synced 2024-10-31 16:38:12 +00:00
0c51e12e21
In case user space sends a packet destined to a broadcast address when a matching broadcast route is not configured, the kernel will create a unicast neighbour entry that will never be resolved [1]. When the broadcast route is configured, the unicast neighbour entry will not be invalidated and continue to linger, resulting in packets being dropped. Solve this by invalidating unresolved neighbour entries for broadcast addresses after routes for these addresses are internally configured by the kernel. This allows the kernel to create a broadcast neighbour entry following the next route lookup. Another possible solution that is more generic but also more complex is to have the ARP code register a listener to the FIB notification chain and invalidate matching neighbour entries upon the addition of broadcast routes. It is also possible to wave off the issue as a user space problem, but it seems a bit excessive to expect user space to be that intimately familiar with the inner workings of the FIB/neighbour kernel code. [1] https://lore.kernel.org/netdev/55a04a8f-56f3-f73c-2aea-2195923f09d1@huawei.com/ Reported-by: Wang Hai <wanghai38@huawei.com> Signed-off-by: Ido Schimmel <idosch@nvidia.com> Tested-by: Wang Hai <wanghai38@huawei.com> Signed-off-by: David S. Miller <davem@davemloft.net>
77 lines
2 KiB
C
77 lines
2 KiB
C
/* SPDX-License-Identifier: GPL-2.0 */
|
|
/* linux/net/inet/arp.h */
|
|
#ifndef _ARP_H
|
|
#define _ARP_H
|
|
|
|
#include <linux/if_arp.h>
|
|
#include <linux/hash.h>
|
|
#include <net/neighbour.h>
|
|
|
|
|
|
extern struct neigh_table arp_tbl;
|
|
|
|
static inline u32 arp_hashfn(const void *pkey, const struct net_device *dev, u32 *hash_rnd)
|
|
{
|
|
u32 key = *(const u32 *)pkey;
|
|
u32 val = key ^ hash32_ptr(dev);
|
|
|
|
return val * hash_rnd[0];
|
|
}
|
|
|
|
#ifdef CONFIG_INET
|
|
static inline struct neighbour *__ipv4_neigh_lookup_noref(struct net_device *dev, u32 key)
|
|
{
|
|
if (dev->flags & (IFF_LOOPBACK | IFF_POINTOPOINT))
|
|
key = INADDR_ANY;
|
|
|
|
return ___neigh_lookup_noref(&arp_tbl, neigh_key_eq32, arp_hashfn, &key, dev);
|
|
}
|
|
#else
|
|
static inline
|
|
struct neighbour *__ipv4_neigh_lookup_noref(struct net_device *dev, u32 key)
|
|
{
|
|
return NULL;
|
|
}
|
|
#endif
|
|
|
|
static inline struct neighbour *__ipv4_neigh_lookup(struct net_device *dev, u32 key)
|
|
{
|
|
struct neighbour *n;
|
|
|
|
rcu_read_lock_bh();
|
|
n = __ipv4_neigh_lookup_noref(dev, key);
|
|
if (n && !refcount_inc_not_zero(&n->refcnt))
|
|
n = NULL;
|
|
rcu_read_unlock_bh();
|
|
|
|
return n;
|
|
}
|
|
|
|
static inline void __ipv4_confirm_neigh(struct net_device *dev, u32 key)
|
|
{
|
|
struct neighbour *n;
|
|
|
|
rcu_read_lock_bh();
|
|
n = __ipv4_neigh_lookup_noref(dev, key);
|
|
neigh_confirm(n);
|
|
rcu_read_unlock_bh();
|
|
}
|
|
|
|
void arp_init(void);
|
|
int arp_ioctl(struct net *net, unsigned int cmd, void __user *arg);
|
|
void arp_send(int type, int ptype, __be32 dest_ip,
|
|
struct net_device *dev, __be32 src_ip,
|
|
const unsigned char *dest_hw,
|
|
const unsigned char *src_hw, const unsigned char *th);
|
|
int arp_mc_map(__be32 addr, u8 *haddr, struct net_device *dev, int dir);
|
|
void arp_ifdown(struct net_device *dev);
|
|
int arp_invalidate(struct net_device *dev, __be32 ip, bool force);
|
|
|
|
struct sk_buff *arp_create(int type, int ptype, __be32 dest_ip,
|
|
struct net_device *dev, __be32 src_ip,
|
|
const unsigned char *dest_hw,
|
|
const unsigned char *src_hw,
|
|
const unsigned char *target_hw);
|
|
void arp_xmit(struct sk_buff *skb);
|
|
|
|
#endif /* _ARP_H */
|