| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <m13avz6ujf.fsf@ebiederm.dsl.xmission.com> Date: Thu, 25 Oct 2007 10:14:28 -0600 From: ebiederm@...ssion.com (Eric W. Biederman) To: David Miller <davem@...emloft.net> Cc: jeff@...zik.org, netdev@...r.kernel.org, Patrick McHardy <kaber@...sh.net> Subject: Re: on the topic of alternate MAC addresses David Miller <davem@...emloft.net> writes: > From: Jeff Garzik <jeff@...zik.org> > Date: Tue, 23 Oct 2007 22:25:05 -0400 > >> hmmmm. Using ethtool isn't a big deal, but IMO you probably want more >> than just an exported list for the usage you described... it sounds >> like some sort of reservation system should be used, to note which MAC >> addresses are [not] in use? >> >> Then a virt client -- or anyone who wants multiple unicast addresses for >> whatever reason -- can let other clients to avoid MAC addresses 1, 7, or >> 13 (random examples). > > I see your point. > > However, it's not the virt clients that do this, it's the control > node (aka: domain 0) which has to manage these things. > > It has to manage all of the global hardware resources and allocate > them out to itself and the clients anyways. > > And this is why I think it's sufficient to just publish the list of > MAC addresses from the driver, and leave the allocation and policy > to the userland virtualizatin daemon running on the control node. > > Let me know if you still disagree. On the per interface level we know the set of used mac addresses in the uc_list. At least at a per interface level we should already have this information, and this is where we care because duplicates at that could cause problems. Duplicate mac addresses across interfaces on the same machine should generally be a don't care. Although there may some cases we don't mind. Currently drivers like macvlan that care today call random_ether_addr(). I think it would make sense to convenience kernel function that picked the next available unicast address for an interface that was not on the uc_list, (called random_ether_adder if there was not such address) and called dev_unicast_add to let the driver receive it and to keep other people from using it. Exporting that information with ethtool to handle the strange cases makes sense. But it looks like there are easy cases that don't need that help. Eric - To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists