| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20200422084459.0d31a65b@hermes.lan> Date: Wed, 22 Apr 2020 08:44:59 -0700 From: Stephen Hemminger <stephen@...workplumber.org> To: netdev@...r.kernel.org Subject: Re: [Bug 207401] New: vrf fwmark socket Looks like user error, not a bug. On Wed, 22 Apr 2020 12:37:04 +0000 bugzilla-daemon@...zilla.kernel.org wrote: > https://bugzilla.kernel.org/show_bug.cgi?id=207401 > > Bug ID: 207401 > Summary: vrf fwmark socket > Product: Networking > Version: 2.5 > Kernel Version: 5.5.11 > Hardware: All > OS: Linux > Tree: Mainline > Status: NEW > Severity: normal > Priority: P1 > Component: IPV4 > Assignee: stephen@...workplumber.org > Reporter: 1455793380@...com > Regression: No > > add rule: > #ip ru a fwmark 10000 table 10000 pref 900 > > and then add vrf and salve interface > #ip link add vrf-1 type vrf table 10 > #ip link set dev vrf-1 up > #ip link set dev ens19 master vrf-1 > > write a program socket bind mark 10000 to match the rule > setsockopt(entry->fd, SOL_SOCKET, SO_MARK, &mark, sizeof(mark)); > > add ip and add route in table 10000 > # ip a a 5.5.5.5/24 dev ens20 > # ip r a 5.5.5.0/24 dev ens20 scope link table 10000 > if I set src addr, then can't add this route > > visit the server,success > #curl --interface 5.5.5.100 > but if I use the mark, my program can't visit the server > kernel can't find my socket? return RST! >
Powered by blists - more mailing lists