openvswitch: Scrub skb between namespaces - kernel - saturneric's kernel source tree

diff options

author	Joe Stringer <[email protected]>	2015-10-16 18:08:18 +0000
committer	David S. Miller <[email protected]>	2015-10-19 05:24:50 +0000
commit	740dbc289155fdeed32438396370e70b684cd45e (patch)
tree	d57e072326e2c7867556f7f199a41e4b30b8b36f /net/switchdev/switchdev.c
parent	Merge branch 'for-upstream' of git://git.kernel.org/pub/scm/linux/kernel/git/... (diff)
download	kernel-740dbc289155fdeed32438396370e70b684cd45e.tar.gz kernel-740dbc289155fdeed32438396370e70b684cd45e.zip

openvswitch: Scrub skb between namespaces

If OVS receives a packet from another namespace, then the packet should be scrubbed. However, people have already begun to rely on the behaviour that skb->mark is preserved across namespaces, so retain this one field. This is mainly to address information leakage between namespaces when using OVS internal ports, but by placing it in ovs_vport_receive() it is more generally applicable, meaning it should not be overlooked if other port types are allowed to be moved into namespaces in future. Signed-off-by: Joe Stringer <[email protected]> Acked-by: Pravin B Shelar <[email protected]> Acked-by: Thomas Graf <[email protected]> Signed-off-by: David S. Miller <[email protected]>

Diffstat (limited to 'net/switchdev/switchdev.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: