Uploaded image for project: 'OpenFlowPlugin'
  1. OpenFlowPlugin
  2. OPNFLWPLUG-559

Openflow allows semi-valid input before handshake completion

    XMLWordPrintable

Details

    • Bug
    • Status: Resolved
    • Resolution: Done
    • None
    • None
    • General
    • None
    • Operating System: All
      Platform: All

    • 4420

    Description

      Usually, any violation of the "handshake order" is considered an attack attempt or invalid input and the protocol handler should immediately close the connection. This is the standard best practice (mostly for security reasons).

      ODL Openflow does not comply to this best practice. If you send a message with valid framing before the HELLO + FEATURES handshake is complete the connection is not closed.

      Example - send an Echo, PacketIn as a first message from switch before the FEATURES_REPLY. The controller will proceed oblivious to the fact that the client has obviously tried to feed garbage input.

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            aivanov@brocade.com Anton Ivanov
            aivanov@brocade.com Anton Ivanov
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: