Thread (3 messages) 3 messages, 3 authors, 2017-11-01

Re: [PATCH net-next v2] ipv4: fix validate_source for VRF setup

From: David Miller <davem@davemloft.net>
Date: 2017-11-01 12:27:11 

From: Paolo Abeni <pabeni@redhat.com>
Date: Tue, 31 Oct 2017 14:32:38 +0100

David reported breakages of VRF scenarios due to the
commit 6e617de84e87 ("net: avoid a full fib lookup when rp_filter is
disabled."): the local addresses based test is too strict when VRFs
are in place.

With this change we fall-back to a full lookup when custom fib rules
are in place; so that we address the VRF use case and possibly other
similar issues in non trivial setups.

v1 -> v2:
 - fix build breakage when CONFIG_IP_MULTIPLE_TABLES is not defined,
   reported by the kbuild test robot

Reported-by: David Ahern <redacted>
Fixes: 6e617de84e87 ("net: avoid a full fib lookup when rp_filter is disabled.")
Signed-off-by: Paolo Abeni <pabeni@redhat.com>
Applied.
Keyboard shortcuts
hback out one level
jnext message in thread
kprevious message in thread
ldrill in
Escclose help / fold thread tree
?toggle this help