On Wed, Apr 04, 2018 at 11:57:52PM +0200, Jan Scheurich wrote: > Currently, OVS snoops any ARP or ND packets in any bridge and populates > the tunnel neighbor cache with the retrieved data. For instance, when > ARP reply originated by a tenant is received on an overlay bridge, the > ARP packet is snooped and tunnel neighbor cache is filled with tenant > addresses, however only actual tunnel neighbor data should be stored > there. In worst case tunnel peer data could be overwritten in the cache. > > This series resolves the issue by limiting the range of ARP and ND > packets being snooped to only those that are addressed to potential > local tunnel endpoints. > > v3 -> v4: > - Rebased to master (commit 4b337e489b) > - Failing unit test case with v3 fixed by commit 8f0e86f84 > - Improved commit messages
Thank you for the bug fixes. I applied this series to master. _______________________________________________ dev mailing list d...@openvswitch.org https://mail.openvswitch.org/mailman/listinfo/ovs-dev
