Rudder

This looks like a pretty serious problem to me - potentially a security issue?

I think this should be adressed in 2.4 if possible (or 2.3?). Any ideas, opinions?

I'm thinking to put the duplicate node (with a hostname or a IP already present) in the Accept new node table, and to refuse when the user try to add it to rudder.
Is that a good solution ? Or do you prefer a different behavior ?

Jean VILVER wrote:

I'm thinking to put the duplicate node (with a hostname or a IP already present) in the Accept new node table, and to refuse when the user try to add it to rudder.
Is that a good solution ? Or do you prefer a different behavior ?

This could be a quick simple solution, and is sufficiently non intrusive to be a good approach for this beta version. Please make sure to include a clear warning message to the user, something like "The node XXX could not be accepted because another node in Rudder already has the same hostname or IP address: node YYY", replacing XXX and YYY with the real node names (XXX for the one to not accept, and YYY for the one that already exists and conflicts).

For a future version (2.5?), a nicer approach would be to have a new tab in the "Accept new nodes" screen for these "abnormal" cases, like the "Unusual changes" tab discussed in #623.

Applied in changeset 43414f2ca0892325c6f55d3d1e4b67528ff319e6.

The result in the image attached.

François ARMAND wrote:

[...]
So, I propose to revert that commit and rewrite it.

Ok, I'm working on it.

Applied in changeset 5c5ec1c02782591295302fe30b15a7d5b783f1c1.

This was closed in error due to a merge containing the "Fixes #xxxx" commit. It still needs doing.

Applied in changeset 14bb15ed1264f65a121a23a3bc63dba8e148e8cb.

François, I just looked at this commit, but I didn't see anything that ignores duplicate IPs if they are in the 127.0.0.0/8 range. Is this check indeed implemented? It is very important that it is, otherwise we'll only be able to accept one node.

This is valid, thank you Francois

Nicolas CHARLES wrote:

Jonathan CLARKE wrote:

François, I just looked at this commit, but I didn't see anything that ignores duplicate IPs if they are in the 127.0.0.0/8 range. Is this check indeed implemented? It is very important that it is, otherwise we'll only be able to accept one node.

In the preAccept, there is a filter on LocalAddress, LoopbackAddress and Multicast, so this works as expected

Right, missed that, thanks for the pointer.

I checked these methods, and I agree that they do what we want, after having to read the source code (see http://grepcode.com/file/repository.grepcode.com/java/root/jdk/openjdk/6-b14/java/net/Inet4Address.java). However, I'd like to note that the method "isLocalAddress" is extremely poorly named, as that method doesn't answer the question "is this a local address", but rather the question "is this the special wildcard address 0.0.0.0?". This is fine, but had me worried, because we don't want to ignore IPs that are local to the Rudder server - on the contrary.