hollalinux
/
linux-sg2042
mirror of https://github.com/sophgo/linux-riscv.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
linux-sg2042/net/openvswitch
History
Joe Stringer 740dbc2891 openvswitch: Scrub skb between namespaces 
If OVS receives a packet from another namespace, then the packet should
be scrubbed. However, people have already begun to rely on the behaviour
that skb->mark is preserved across namespaces, so retain this one field.

This is mainly to address information leakage between namespaces when
using OVS internal ports, but by placing it in ovs_vport_receive() it is
more generally applicable, meaning it should not be overlooked if other
port types are allowed to be moved into namespaces in future.

Signed-off-by: Joe Stringer <joestringer@nicira.com>
Acked-by: Pravin B Shelar <pshelar@nicira.com>
Acked-by: Thomas Graf <tgraf@suug.ch>
Signed-off-by: David S. Miller <davem@davemloft.net>
 		2015-10-18 22:24:50 -07:00
..
Kconfig
Makefile
actions.c openvswitch: Ensure flow is valid before executing ct 2015-10-07 05:03:05 -07:00
conntrack.c openvswitch: Change CT_ATTR_FLAGS to CT_ATTR_COMMIT 2015-10-07 05:03:06 -07:00
conntrack.h openvswitch: Extend ct_state match field to 32 bits 2015-10-07 05:03:06 -07:00
datapath.c
datapath.h
dp_notify.c
flow.c
flow.h
flow_netlink.c openvswitch: Extend ct_state match field to 32 bits 2015-10-07 05:03:06 -07:00
flow_netlink.h
flow_table.c
flow_table.h
vport-geneve.c
vport-gre.c
vport-internal_dev.c
vport-internal_dev.h
vport-netdev.c
vport-netdev.h
vport-vxlan.c
vport.c openvswitch: Scrub skb between namespaces 2015-10-18 22:24:50 -07:00
vport.h