Loading...

XML

Word

Printable

Type: Bug
Resolution: Won't Do
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: openvswitch3.5
Labels:
None

Story Points:
1
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
OS:
rhel-10
Planning:
None
AssignedTeam:
rhel-net-ovs-dpdk
Intelligence Requested:
Market:
Sub-System Group:

ssg_networking

Sprint:
OVS/DPDK - FDP-25.E - 1
sprint_count:
1

SFDC Cases Links:
SFDC Cases Open:
SFDC Cases Counter:

Currently pkt_metadata_init does not initialize ct_orig_tuple fields because these will be set when ct_state is set. Except that doesn't always happen, ipf can set ct_state to CS_INVALID without initializing the remaining fields, causing miniflow_extract to access uninitialized memory. This was found by running the tests with ubsan enabled.

lib/flow.c:900:35: runtime error: load of value 190, which is not a valid value for type 'bool'
        lib/flow.c:900       miniflow_extract
        lib/dpif-netdev.c:8317       dfc_processing
        lib/dpif-netdev.c:8598       dp_netdev_input__
        lib/dpif-netdev.c:8650       dp_netdev_recirculate
        lib/dpif-netdev.c:9045       dp_execute_cb
        lib/odp-execute.c:890        odp_actions_impl_set
        lib/dpif-netdev.c:9231       dp_netdev_execute_actions
        lib/dpif-netdev.c:8419       handle_packet_upcall
        lib/dpif-netdev.c:8515       fast_path_processing
        lib/dpif-netdev.c:8604       dp_netdev_input__
        lib/dpif-netdev.c:8642       dp_netdev_input
        lib/dpif-netdev.c:5423       dp_netdev_process_rxq_port
        lib/dpif-netdev.c:6758       dpif_netdev_run
    
SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior lib/flow.c:900:35

Assignee:: Mike Pattrick

Reporter:: Mike Pattrick

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2025/05/26 6:58 PM

Updated:: 2025/07/10 7:14 PM

Resolved:: 2025/07/10 7:14 PM

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates