lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date:	Sun, 17 Jul 2011 17:21:12 +0200
From:	David Lamparter <equinox@...c24.net>
To:	"Eric W. Biederman" <ebiederm@...ssion.com>
Cc:	Rémi Denis-Courmont <remi@...lab.net>,
	Chris Friesen <cbf123@...l.usask.ca>, netdev@...r.kernel.org
Subject: Re: recommended way to support duplicate IP addresses on different
 VLANs?

On Fri, Jul 15, 2011 at 05:24:54PM -0700, Eric W. Biederman wrote:
> "Rémi Denis-Courmont" <remi@...lab.net> writes:
> > Namespace file descriptors if/when they get accepted.
> 
> For reference.
> 
> The namespace file descriptor code is in 3.0.  setns is present in the
> latest glibc.  And the iproute support is just finishing up.
> 
> What doesn't exist at the moment is a handy socketat library
> function to make it a userspace program that uses multiple network
> namespaces trivial.  But that is only a few lines of code.

A few lines of code that can be found at
http://git.spaceboyz.net/equinox/vrf-tools.git/

pptpd already supports it, an OpenVPN patch is in the repo.

I'm updating it to match the paths used by "ip netns" over the next
few days.


-David

P.S.: Eric, there is no way to recognise a namespace descriptor as
such from userspace, other than trying setns()?
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists