lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Sat, 26 Sep 2020 12:35:19 -0700 (PDT) From: David Miller <davem@...emloft.net> To: kuba@...nel.org Cc: netdev@...r.kernel.org, fabf@...net.be Subject: Re: [PATCH net-next] Revert "vxlan: move encapsulation warning" From: Jakub Kicinski <kuba@...nel.org> Date: Fri, 25 Sep 2020 18:56:04 -0700 > This reverts commit 546c044c9651e81a16833806feff6b369bb5de33. > > Nothing prevents user from sending frames to "external" VxLAN devices. > In fact kernel itself may generate icmp chatter. > > This is fine, such frames should be dropped. > > The point of the "missing encapsulation" warning was that > frames with missing encap should not make it into vxlan_xmit_one(). > And vxlan_xmit() drops them cleanly, so let it just do that. > > Without this revert the warning is triggered by the udp_tunnel_nic.sh > test, but the minimal repro is: > > $ ip link add vxlan0 type vxlan \ > group 239.1.1.1 \ > dev lo \ > dstport 1234 \ > external > $ ip li set dev vxlan0 up > > [ 419.165981] vxlan0: Missing encapsulation instructions > [ 419.166551] WARNING: CPU: 0 PID: 1041 at drivers/net/vxlan.c:2889 vxlan_xmit+0x15c0/0x1fc0 [vxlan] > > Signed-off-by: Jakub Kicinski <kuba@...nel.org> Applied, thanks Jakub.
Powered by blists - more mailing lists