Re: [PATCH v2 2/4] tcp: md5: Allow MD5SIG_FLAG_IFINDEX with ifindex=0

From: David Ahern
Date: Wed Oct 13 2021 - 23:09:52 EST

Next message: Fenglin Wu: "Re: [RESEND PATCH v1 3/9] spmi: pmic-arb: check apid against limits before calling irq handler"
Previous message: menglong8 . dong: "[PATCH] hotfix: make sysfs of unbound kworker cpumask more clever"
In reply to: Leonard Crestez: "[PATCH v2 2/4] tcp: md5: Allow MD5SIG_FLAG_IFINDEX with ifindex=0"
Next in thread: Leonard Crestez: "Re: [PATCH v2 2/4] tcp: md5: Allow MD5SIG_FLAG_IFINDEX with ifindex=0"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 10/13/21 12:50 AM, Leonard Crestez wrote:
> Multiple VRFs are generally meant to be "separate" but right now md5
> keys for the default VRF also affect connections inside VRFs if the IP
> addresses happen to overlap.
>
> So far the combination of TCP_MD5SIG_IFINDEX with tcpm_ifindex == 0

TCP_MD5SIG_IFINDEX does not exist in net-next and it was not added by
patch 1 or this patch.

Next message: Fenglin Wu: "Re: [RESEND PATCH v1 3/9] spmi: pmic-arb: check apid against limits before calling irq handler"
Previous message: menglong8 . dong: "[PATCH] hotfix: make sysfs of unbound kworker cpumask more clever"
In reply to: Leonard Crestez: "[PATCH v2 2/4] tcp: md5: Allow MD5SIG_FLAG_IFINDEX with ifindex=0"
Next in thread: Leonard Crestez: "Re: [PATCH v2 2/4] tcp: md5: Allow MD5SIG_FLAG_IFINDEX with ifindex=0"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]