[OPNFLWPLUG-559] Openflow allows semi-valid input before handshake completion - OpenDaylight JIRA

XML

Word

Printable

Details

Type: Bug
Status: Resolved
Resolution: Done
Affects Version/s: None
Fix Version/s: None
Component/s: General
Labels:
None
Environment:

Operating System: All
Platform: All

External issue ID:
4420

Description

Usually, any violation of the "handshake order" is considered an attack attempt or invalid input and the protocol handler should immediately close the connection. This is the standard best practice (mostly for security reasons).

ODL Openflow does not comply to this best practice. If you send a message with valid framing before the HELLO + FEATURES handshake is complete the connection is not closed.

Example - send an Echo, PacketIn as a first message from switch before the FEATURES_REPLY. The controller will proceed oblivious to the fact that the client has obviously tried to feed garbage input.

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Anton Ivanov

Reporter:: Anton Ivanov

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 06/Oct/15 10:23 AM

Updated:: 27/Sep/21 9:01 AM

Resolved:: 26/Jun/17 11:51 AM