Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug

From:	Simon Josefsson
Subject:	Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug
Date:	Thu, 30 Apr 2009 10:48:13 +0200
User-agent:	Gnus/5.110011 (No Gnus v0.11) Emacs/23.0.92 (gnu/linux)

Peter Hendrickson <address@hidden> writes:

>> > Yes, but it's somewhat complicated, you have to create a socket for each 
>> > returned addrinfo structure, bind them all, set them non-blocking, and 
>> > then poll across them to wait for a connection, and cope with the edge 
>> > cases with v6-mapped IPv4 addresses which make it not that simple.
>> 
>> I tried to implement that:
>> 
>> http://git.savannah.gnu.org/cgit/gnutls.git/commit/?id=6ccb2ccaf7d0e8a5391433a6654eef08059f686c
>> 
>> Peter, can you test the latest daily snapshot?
>> http://daily.josefsson.org/gnutls/gnutls-20090424.tar.gz
>
> I tested the 20090424 snapshot under OpenBSD 4.4 and gnutls-serv emits
> a bind error for the IPv4 socket and only listens on the IPv6 socket.
>
> When bind() is called in listen_socket(), it is given two "res->"
> arguments, but it should be two "ptr->" arguments.  Otherwise it
> doesn't move to ptr->ai_next the second time through the for loop.
>
> Like this:
>> diff serv.c.orig serv.c
>> 685c685
>> <       if (bind (s, res->ai_addr, res->ai_addrlen) < 0)
>> ---
>> >       if (bind (s, ptr->ai_addr, ptr->ai_addrlen) < 0)

Oops.  Thanks, committed, please try the next daily snapshot.

> And I suspect this problem has the same cause:
>> There seems to be a cosmetic problem, though, on my normal debian
>> machine:
>> 
>> address@hidden:~/src/gnutls/src master$ ./gnutls-serv 
>> Set static Diffie Hellman parameters, consider --dhparams.
>> Echo Server listening to 0.0.0.0:5556 (family 2)...done
>> Echo Server listening to :::5556 (family 10)...bind() failed: Invalid 
>> argument
>> ^CExiting via signal 2
>> address@hidden:~/src/gnutls/src master$ 
>>
>> It seems bind fail on my IPv6 interface, which is probably right because
>> I haven't setup IPv6 here.  Is ignoring bind failures the right thing?
>> I'm not sure why getaddrinfo returns the IPv6 interface at all.
>
> My guess is that you actually have an IPv6 address assigned to an
> interface.  It's probably a "link-local" default address, but an
> address nontheless.  It is proper that getaddrinfo returns an entry
> for it -- and when it does you get hit by the bad call to bind().

Yes, this is the case.  I'm wondering what the best way to handle this
is though.  Should we just display the error above?  It seems confusing
to users.  How are servers in general expected to handle such errors?

/Simon

[Prev in Thread]

Current Thread

[Next in Thread]

OpenBSD 4.4 gnutls-serv IPv6 Only Bug, Peter Hendrickson, 2009/04/17
- Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug, Simon Josefsson, 2009/04/17
  - Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug, Joe Orton, 2009/04/17
    - Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug, Simon Josefsson, 2009/04/24
    - Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug, Peter Hendrickson, 2009/04/29
    - Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug, Simon Josefsson <=
    - Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug, Peter Hendrickson, 2009/04/30
    - Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug, Joe Orton, 2009/04/30
  - Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug, Peter Hendrickson, 2009/04/18

Prev by Date: Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug
Next by Date: GnuTLS 2.6.6 - Security Release
Previous by thread: Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug
Next by thread: Re: OpenBSD 4.4 gnutls-serv IPv6 Only Bug
Index(es):
- Date
- Thread