Bug#813116: /usr/sbin/ovs-vswitchd: segfault when push_mpls flow action is applied

Control: tag -1 + patch This patch seems to help: --- openvswitch-2.3.0+git20140819/lib/odp-util.c.orig 2017-12-10 15:34:48.312913875 +0100 +++ openvswitch-2.3.0+git20140819/lib/odp-util.c 2017-12-10 16:03:41.589150537 +0100 @@ -2967,13 +2967,20 @@ enum ovs_key_attr expected_bit = 0xff;

Bug#813116: /usr/sbin/ovs-vswitchd: segfault when push_mpls flow action is applied

Oh, the above killer.c code misses the IFF_NO_PI flag, but it happens to make no difference in this case. -- Feri

Bug#813116: /usr/sbin/ovs-vswitchd: segfault when push_mpls flow action is applied

Control: tag -1 - security On Fri, 08 Dec 2017 17:19:21 +0100 wf...@niif.hu (Ferenc =?utf-8?Q?W=C3=A1gner?=) wrote: > This is a remote DoS vector in jessie, so adding the security tag. It isn't /that/ remote, being exploitable from the LAN only. So I'm removing the security tag after all. --

Bug#813116: /usr/sbin/ovs-vswitchd: segfault when push_mpls flow action is applied

Control: tag -1 + security Simple reproducer attached. This is a remote DoS vector in jessie, so adding the security tag. -- Thanks, Feri /* ovs-vsctl add-br ovsbr * then this crashes ovs-vswitchd (which restarts automatically) */ #include #include #include #include #include #include #i

Bug#813116: /usr/sbin/ovs-vswitchd: segfault when push_mpls flow action is applied

Ben Pfaff writes: > What version of Open vSwitch is this? The jessie version with the security update: 2.3.0+git20140819-3+deb8u1 I forgot to attach the related syslog excerpt: Nov 30 23:06:42 vhbl08 kernel: [3400373.344953] traps: handler20[4173] general protection ip:466280 sp:7f203afe34e8

Bug#813116: /usr/sbin/ovs-vswitchd: segfault when push_mpls flow action is applied

On Fri, Dec 01, 2017 at 02:24:13PM +0100, Ferenc Wágner wrote: > Yesterday an upstream switch reboot segfaulted all our ovs-vswitchd > instances at the same time. There's no MPLS or flow config in our OVS > setups, they run a bridge over a bond and several 802.1q interfaces. I > mention it here,

Bug#813116: /usr/sbin/ovs-vswitchd: segfault when push_mpls flow action is applied

Hi, Yesterday an upstream switch reboot segfaulted all our ovs-vswitchd instances at the same time. There's no MPLS or flow config in our OVS setups, they run a bridge over a bond and several 802.1q interfaces. I mention it here, though, as the backtrace starts similarly, so maybe this is a more

Bug#813116: /usr/sbin/ovs-vswitchd: segfault when push_mpls flow action is applied

I can confirm this bug. ovs-vswitchd crashes when push_mpls flow action is required and output port is veth type. However, if output port is a tap device, it works correctly. -- --.++-++---+--+-+-+-+++-+++--+--+-+++---+++--+-++-+- Juan Carlos Fabero Jiménez +34-913947605 Dpto.

Bug#813116: /usr/sbin/ovs-vswitchd: segfault when push_mpls flow action is applied

Package: openvswitch-switch Version: 2.3.0+git20140819-3 Severity: important File: /usr/sbin/ovs-vswitchd Dear Maintainer, * What led up to the situation? ip netns add h1 ip netns add h2 ip link add sh1 type veth peer name h1 netns h1 ip link add sh2 type veth peer name h2 netns h2 ip link ad