Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD]

[PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Nicolas Dichtel <hidden> · 2015-01-26
[PATCH net 1/2] caif: remove wrong dev_net_set() call · Nicolas Dichtel <hidden> · 2015-01-26
Re: [PATCH net 1/2] caif: remove wrong dev_net_set() call · Nicolas Dichtel <hidden> · 2015-01-27
Re: [PATCH net 1/2] caif: remove wrong dev_net_set() call · Bjørn Mork <bjorn@mork.no> · 2015-01-27
Re: [PATCH net 1/2] caif: remove wrong dev_net_set() call · Nicolas Dichtel <hidden> · 2015-01-27
Re: [PATCH net 1/2] caif: remove wrong dev_net_set() call · Nicolas Dichtel <hidden> · 2015-01-28
[PATCH net 2/2] vxlan: setup the right link netns in newlink hdlr · Nicolas Dichtel <hidden> · 2015-01-26
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Alexander Aring <alex.aring@gmail.com> · 2015-01-27
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Nicolas Dichtel <hidden> · 2015-01-27
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Alexander Aring <alex.aring@gmail.com> · 2015-01-27
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Alexander Aring <alex.aring@gmail.com> · 2015-01-27
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Nicolas Dichtel <hidden> · 2015-01-27
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Alexander Aring <alex.aring@gmail.com> · 2015-01-27
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Nicolas Dichtel <hidden> · 2015-01-27
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Alexander Aring <alex.aring@gmail.com> · 2015-01-27
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Nicolas Dichtel <hidden> · 2015-01-28
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · David Miller <davem@davemloft.net> · 2015-01-29
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Arvid Brodin <hidden> · 2015-01-30
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Nicolas Dichtel <hidden> · 2015-02-02
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Arvid Brodin <hidden> · 2015-02-04
Re: [PATCH net 0/2] netns: audit netdevice creation with IFLA_NET_NS_[PID|FD] · Nicolas Dichtel <hidden> · 2015-02-05

From: Alexander Aring <alex.aring@gmail.com>
Date: 2015-01-27 14:06:44

Hi,

On Tue, Jan 27, 2015 at 02:28:47PM +0100, Nicolas Dichtel wrote:
...

quoted

With the check of "!net_eq(src_net, &init_net)" we need to be sure
that the wpan interface is always in "init_net". This means we need
definitely a dev->features |= NETIF_F_NETNS_LOCAL; somewhere in [0].

To adding "dev->features |= NETIF_F_NETNS_LOCAL;" for a 6LoWPAN interface,
I am not sure about this. I didn't test it yet and it will not break
anything, but we will lost the support for making net namespaces stuff
inside the IPv6/(netfilter) stack.

Adding NETIF_F_NETNS_LOCAL does not mean that the netdevice can be used only
in init_net, this flag means that the netdevice cannot be moved to another
netns. You can still create a netdevice in another netns (if wpan0 is in netns
foo):

$ ip netns exec foo ip link add link wpan0 name lowpan0 type lowpan

I don't know how wpan0 is created and if this interface can be created directly
in another netns than init_net.

no it can't. The wpan0 interface can be created via the 802.15.4
userspace tools and we don't have such option for namespaces. It
should be always to init_net while creation.

quoted


Summarize:

I would add the dev->features |= NETIF_F_NETNS_LOCAL; while wpan
interface generation and add only the !net_eq(src_net, &init_net) check
above. I suppose that src_net is the net namespace from "underlaying"
interface wpan by calling:

$ ip link add link wpan0 name lowpan0 type lowpan

No. src_net is the netns where the ip command is launched. With this patch, my

ah, and when no "ip netns" is given it's default to init_net?


Okay, then I agree with that both interfaces should be set

dev->features |= NETIF_F_NETNS_LOCAL

because both interfaces should started with "init_net" as default
namespace. For wpan interface this should always be in "init_net",
because we don't set anything while creation.

For 6LoWPAN interface this should also always in the same namespace like
the wpan interface and not diffrent namespace between link (wpan) and
virtual (6LoWPAN) interface.

Do you agree with that?

- Alex

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help