| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <200910141404.37882.atis@mikrotik.com> Date: Wed, 14 Oct 2009 14:04:37 +0300 From: Atis Elsts <atis@...rotik.com> To: steve@...gwyn.com Cc: Maciej Żenczykowski <zenczykowski@...il.com>, David Miller <davem@...emloft.net>, netdev@...r.kernel.org, panther@...abit.hu, eric.dumazet@...il.com, brian.haley@...com Subject: Re: [PATCH] Add sk_mark route lookup support for IPv4 listening sockets, and for IPv4 multicast forwarding On Wednesday 14 October 2009 12:27:43 steve@...gwyn.com wrote: > > The mark is supposed to be a generic thing, not just for routing > lookups, it can be used for classification, etc as well. In general, sounds like a good idea, but IMHO exactly this could be a problem. skb->mark is already used for a lot of things. What if I am setting the mark by a firewall rule in prerouting chain, and matching it by a postrouting rule? If routing lookup was changing the mark, then my setup would break. Perhaps one more field could be added dst_entry? The field would be filled from route's table (if "setmark" for that route was specified). The use of that field would be similar to tclassid (e.g matching in firewall), except that it would also be used in routing lookups, if set. > I would > expect to see such a thing used for maybe specifying a VLAN or > a reference to an MPLS label stack, or something similar too, > > Steve. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists