On 14 October 2015 at 17:34, Pravin Shelar wrote:
> On Wed, Oct 14, 2015 at 11:10 AM, Joe Stringer wrote:
>> If OVS receives a packet from another namespace, then the packet should
>> be scrubbed. However, people have already begun to rely on the behaviour
>> that skb->mark is preserved across na
On Wed, Oct 14, 2015 at 11:10 AM, Joe Stringer wrote:
> If OVS receives a packet from another namespace, then the packet should
> be scrubbed. However, people have already begun to rely on the behaviour
> that skb->mark is preserved across namespaces, so retain this one field.
>
> This is mainly t
If OVS receives a packet from another namespace, then the packet should
be scrubbed. However, people have already begun to rely on the behaviour
that skb->mark is preserved across namespaces, so retain this one field.
This is mainly to address information leakage between namespaces when
using OVS
