Re: [PATCH v2 net-next 0/3] bpf: share helpers between tracing and networking

From: Alexei Starovoitov
Date: Mon Jun 15 2015 - 23:29:11 EST

Next message: juncheng bai: "Re: [PATCH RFC] storage:rbd: make the size of request is equal to the, size of the object"
Previous message: Paul Gortmaker: "Re: [PATCH] drivers/cpufreq: include <module.h> for modular exynos-cpufreq.c code"
In reply to: David Miller: "Re: [PATCH v2 net-next 0/3] bpf: share helpers between tracing and networking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 6/15/15 4:01 PM, David Miller wrote:

Although I agree with the sentiment that this thing can cause
surprising results and can be asking for trouble.

If someone wants to filter traffic "by UID" they might make
a simple ingress TC ebpf program using these new interfaces
and expect it to work.

But the UID their program will see will be the UID of whatever
randomly happened to be executing when the packet was received
and processed.

yes, you're right. Such tc filters will be incorrect.
Will send a partial revert disallowing them in tc.

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: juncheng bai: "Re: [PATCH RFC] storage:rbd: make the size of request is equal to the, size of the object"
Previous message: Paul Gortmaker: "Re: [PATCH] drivers/cpufreq: include <module.h> for modular exynos-cpufreq.c code"
In reply to: David Miller: "Re: [PATCH v2 net-next 0/3] bpf: share helpers between tracing and networking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]