https://jira.opendaylight.org This file is an XML representation of an issue en-us 8.20.10 820010 22-06-2022 https://jira.opendaylight.org/browse/OPNFLWPLUG-559 OpenFlowPlugin <p>Usually, any violation of the "handshake order" is considered an attack attempt or invalid input and the protocol handler should immediately close the connection. This is the standard best practice (mostly for security reasons).</p> <p>ODL Openflow does not comply to this best practice. If you send a message with valid framing before the HELLO + FEATURES handshake is complete the connection is not closed.</p> <p>Example - send an Echo, PacketIn as a first message from switch before the FEATURES_REPLY. The controller will proceed oblivious to the fact that the client has obviously tried to feed garbage input.</p> <p>Operating System: All<br/> Platform: All</p> OPNFLWPLUG-559

Openflow allows semi-valid input before handshake completion

Bug Resolved Done Anton Ivanov Anton Ivanov Tue, 6 Oct 2015 10:23:21 +0000 Mon, 27 Sep 2021 09:01:39 +0000 Mon, 26 Jun 2017 11:51:38 +0000 General 0 1 <p>On what version and on what design have you tested it? I think this was vulnerability in the He-design. Can you re-test it on the latest code ?</p> Development External issue ID 4420 External issue URL Rank 0|i031wf: