lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <53D7697C.6020103@gmail.com>
Date:	Tue, 29 Jul 2014 17:29:32 +0800
From:	zhuyj <zyjzyj2000@...il.com>
To:	"David S. Miller" <davem@...emloft.net>,
	Hong Zhiguo <honkiko@...il.com>
CC:	LKML <linux-kernel@...r.kernel.org>,
	netdev <netdev@...r.kernel.org>, zhuyj <zyjzyj2000@...il.com>,
	"Tao, Yue" <Yue.Tao@...driver.com>,
	Alexandre Dietsch <alexandre.dietsch@...driver.com>
Subject: ipv4: net namespace does not inherit network configurations

Hi,all

I did a test on kernel3.16 rc6:

root@...u1:~# echo 1 > /proc/sys/net/ipv6/conf/all/forwarding
root@...u1:~# echo 1 > /proc/sys/net/ipv4/conf/all/forwarding
root@...u1:~# ip netns list
root@...u1:~# ip netns add fib1
root@...u1:~# ip netns exec fib1 bash
root@...u1:~# cat /proc/sys/net/ipv6/conf/all/forwarding
0
root@...u1:~# cat /proc/sys/net/ipv4/conf/all/forwarding
1

The behavior of ipv4 and ipv6 is very inconsistent. I checked
the kernel source code. I found that from this patch
[ipv6: fix bad free of addrconf_init_net], the above difference
appeared.

Since a net namespace is independent to another. That is, there
is no any relationship between the net namespaces. So the behavior
of ipv4 is not correct.

Based on this patch [ipv6: fix bad free of addrconf_init_net], I made
a new patch to fix this problem on ipv4.

Any reply is appreciated.

Zhu Yanjun

View attachment "0001-ipv4-net-namespace-does-not-inherit-network-configur.patch" of type "text/x-patch" (2155 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ