[ovs-discuss] A bug in ovs-ofctl.c
Ben Pfaff
blp at ovn.org
Tue Jul 31 20:31:21 UTC 2018
On Tue, Jul 17, 2018 at 05:33:41PM +0800, Oscar Wilde wrote:
> I think I find a bug or vulnerability in openvswitch-2.9.0,maybe other
> versions also has the problem.
>
> When I fuzz it like 'ovs-ofctl ofp-parse-pcap @@',there is a sample cause
> hang.I reproduce it and it cause an infinite loop.It cause the resource of
> CPU is high.I think it also could cause a dos attack.You should have a look
> at it and try to fix it.
Thanks for the report and the sample file.
I posted a fix:
https://mail.openvswitch.org/pipermail/ovs-dev/2018-July/350351.html
I don't think this is much of a DoS. "ovs-ofctl ofp-parse-pcap" runs
interactively, so the user can just push Control+C.
Thanks,
Ben.
More information about the discuss
mailing list