lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:	Fri, 2 Dec 2011 13:32:26 -0500
From:	Mathieu Trudel-Lapierre <mathieu.tl@...il.com>
To:	netdev <netdev@...r.kernel.org>
Subject: net.ipv*.conf.all.* sysctls

Hi,

Rehashing something that's I've found quite a few times in a quick
search in the archives, but still a little unclear to me.

As previously discussed here and as I could test on my system (Ubuntu
3.2.0-2.5-generic 3.2.0-rc3), seems like the net.ipv6.conf.all sysctls
aren't actually being propagated to all devices. Is this indeed an
issue and something that needs to be fixed, or are these settings
really expected to be used as "global" parameters?

I've done a simple test: after applying
net.ipv6.conf.all.use_tempaddr=2 and
net.ipv6.conf.default.use_tempaddr=2 to sysctl.conf and rebooting, I
still see the value for
net.ipv6.conf.eth0.use_tempaddr as 0, while other devices (wlan0) are
properly set to 2. This is most likely caused by eth0 being
initialized prior to the sysctl.conf file being read and applied.

Connecting to a wired network still shows the interface eth0 as not
using temporary addresses, which should be happening if "all" is
really meant as a global value to override what might be set
per-interface.

Besides fixing up sysctls to be applied early enough to affect eth0 as
well on my system; isn't there something else that needs to be done to
clarify and fix the /all/ settings? I believe either the documentation
and actual functionality needs to be fixed to be a global value and
override per-interface values, or the functionality needs to be
corrected to propagate values to the underlying interfaces.

Am I missing something here? I'm totally new to kernel development,
but would be happy to provide simple patches once the expected
behaviour is clarified.

Regards,

Mathieu Trudel-Lapierre <mathieu.tl@...il.com>
Freenode: cyphermox, Jabber: mathieu.tl@...il.com
4096R/EE018C93 1967 8F7D 03A1 8F38 732E  FF82 C126 33E1 EE01 8C93
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ