lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Thu, 3 Nov 2022 23:15:05 +0000 From: Vladimir Oltean <vladimir.oltean@....com> To: Ido Schimmel <idosch@...dia.com> CC: "netdev@...r.kernel.org" <netdev@...r.kernel.org>, "bridge@...ts.linux-foundation.org" <bridge@...ts.linux-foundation.org>, "davem@...emloft.net" <davem@...emloft.net>, "kuba@...nel.org" <kuba@...nel.org>, "pabeni@...hat.com" <pabeni@...hat.com>, "edumazet@...gle.com" <edumazet@...gle.com>, "roopa@...dia.com" <roopa@...dia.com>, "razor@...ckwall.org" <razor@...ckwall.org>, "netdev@...io-technology.com" <netdev@...io-technology.com>, "mlxsw@...dia.com" <mlxsw@...dia.com> Subject: Re: [PATCH net-next 2/2] selftests: forwarding: Add MAC Authentication Bypass (MAB) test cases On Tue, Nov 01, 2022 at 09:39:22PM +0200, Ido Schimmel wrote: > From: "Hans J. Schultz" <netdev@...io-technology.com> > > Add four test cases to verify MAB functionality: > > * Verify that a locked FDB entry can be generated by the bridge, > preventing a host from communicating via the bridge. Test that user > space can clear the "locked" flag by replacing the entry, thereby > authenticating the host and allowing it to communicate via the bridge. > > * Test that an entry cannot roam to a locked port, but that it can roam > to an unlocked port. > > * Test that MAB can only be enabled on a port that is both locked and > has learning enabled. > > * Test that locked FDB entries are flushed from a port when MAB is > disabled. > > Signed-off-by: Hans J. Schultz <netdev@...io-technology.com> > Signed-off-by: Ido Schimmel <idosch@...dia.com> > --- Reviewed-by: Vladimir Oltean <vladimir.oltean@....com>
Powered by blists - more mailing lists