Re: [PATCH v5 net-next 1/6] net: bridge: add locked entry fdb flag to extend locked port feature

From: netdev
Date: Mon Aug 29 2022 - 08:25:48 EST

Next message: Greg Kroah-Hartman: "[PATCH 5.19 026/158] nfc: pn533: Fix use-after-free bugs caused by pn532_cmd_timeout"
Previous message: David Hildenbrand: "Re: [PATCH 1/6] mm/gup: introduce pin_user_page()"
In reply to: netdev: "Re: [PATCH v5 net-next 1/6] net: bridge: add locked entry fdb flag to extend locked port feature"
Next in thread: netdev: "Re: [PATCH v5 net-next 1/6] net: bridge: add locked entry fdb flag to extend locked port feature"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2022-08-27 13:30, Nikolay Aleksandrov wrote:

@@ -879,6 +888,10 @@ void br_fdb_update(struct net_bridge *br, struct net_bridge_port *source,
&fdb->flags)))
clear_bit(BR_FDB_ADDED_BY_EXT_LEARN,
&fdb->flags);
+ if (source->flags & BR_PORT_MAB)
+ set_bit(BR_FDB_ENTRY_LOCKED, &fdb->flags);
+ else
+ clear_bit(BR_FDB_ENTRY_LOCKED, &fdb->flags);

Please add a test for that bit and only then change it.

Okay, I have revised this part now. I hope that it is suitable?

@@ -749,6 +756,10 @@ void br_fdb_update(struct net_bridge *br, struct net_bridge_port *source,
&fdb->flags)))
clear_bit(BR_FDB_ADDED_BY_EXT_LEARN,
&fdb->flags);
+ /* Allow roaming from an unauthorized port to an
+ * authorized port */
+ if (unlikely(test_bit(BR_FDB_ENTRY_LOCKED, &fdb->flags)))
+ clear_bit(BR_FDB_ENTRY_LOCKED, &fdb->flags);
}

if (unlikely(test_bit(BR_FDB_ADDED_BY_USER, &flags)))

Next message: Greg Kroah-Hartman: "[PATCH 5.19 026/158] nfc: pn533: Fix use-after-free bugs caused by pn532_cmd_timeout"
Previous message: David Hildenbrand: "Re: [PATCH 1/6] mm/gup: introduce pin_user_page()"
In reply to: netdev: "Re: [PATCH v5 net-next 1/6] net: bridge: add locked entry fdb flag to extend locked port feature"
Next in thread: netdev: "Re: [PATCH v5 net-next 1/6] net: bridge: add locked entry fdb flag to extend locked port feature"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]