Re: [ovs-dev] Cannot open /dev/vfio/noiommu-0: Permission denied

Leon Goldberg writes: > Hi list, > > I'm trying to integrate ovs-dpdk into oVirt. For testing purposes, I'm > writing a test that looks to run a VM on top of a dpdk port. > > The testing environment consists of nested virtualization: > > Physical machine -> Jenkins CI VM ->

[ovs-dev] [PATCH v2 5/5] rhel: selinux-policy to invoke proper label macros

The rpm doesn't invoke all of the required selinux helpers to enact labeling or relabeling on all versions of Fedora/RHEL. According to: https://fedoraproject.org/wiki/SELinux/IndependentPolicy This commit switches to use the selinux rpm macros which will ensure that all of the labels defined

[ovs-dev] [PATCH v2 1/5] ovs-kmod-ctl: introduce a kernel module load script

Currently, Open vSwitch on linux embeds the logic of loading and unloading kernel modules into the ovs-ctl and ovs-lib script files. This works, but it means that there is no way to leverage extended filesystem attributes to grant fine grain permissions relating to module loading. The split out

[ovs-dev] [PATCH v2 4/5] selinux: introduce domain transitioned kmod helper

This commit uses the previously defined selinux label to transition from the openvswitch_t to openvswitch_load_module_t domain by executing ovs-kmod-ctl that is labelled with openvswitch_load_module_exec_t type. Note that unless the selinux relabel operation is invoked, the script will not be

[ovs-dev] [PATCH v2 3/5] selinux: tag the custom policy version

Since the policy is an intermediate file, it can inherit the policy module version from release version. Suggested-by: Ansis Atteka Signed-off-by: Aaron Conole --- selinux/openvswitch-custom.te.in | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff

[ovs-dev] [PATCH v2 2/5] selinux: create a transition type for module loading

Defines a type 'openvswitch_load_module_t' used exclusively for loading modules. This means that the 'openvswitch_t' domain won't require access to the module loading facility - such access can only happen after transitioning through the 'openvswitch_load_module_exec_t' transition context. A

[ovs-dev] [PATCH v2 0/5] selinux: introduce a transition domain for loading kmods

On linux systems, the initial start of openvswitch attempts to load the openvswitch.ko kernel module. This module allows openvswitch to utilize the kernel datapath. Some of these linux systems, notably Fedora and RHEL, use selinux to enforce additional restrictions on various processes by way of

Re: [ovs-dev] [PATCH net] openvswitch: Don't swap table in nlattr_set() after OVS_ATTR_NESTED is found

From: Stefano Brivio Date: Thu, 3 May 2018 18:13:25 +0200 > If an OVS_ATTR_NESTED attribute type is found while walking > through netlink attributes, we call nlattr_set() recursively > passing the length table for the following nested attributes, if > different from the

Re: [ovs-dev] [PATCH] ovs-vswitchd: Better document that ovs-vswitchd manages its own datapaths.

> On May 3, 2018, at 11:27 PM, Ben Pfaff wrote: > > More explicitly discourage users from managing them themselves. > > Signed-off-by: Ben Pfaff Acked-by: Justin Pettit --Justin ___ dev mailing list

Re: [ovs-dev] Regarding VLAN and source code compilation - Team Please reply !

On 4 May 2018 at 06:20, rakesh kumar wrote: > Hello Team, > > I am very new to ovs, Start with http://docs.openvswitch.org/en/latest/ ___ dev mailing list d...@openvswitch.org

Re: [ovs-dev] [PATCH] rhel: openvswitch-fedora.spec.in: Drop explicit usermod/groupadd deps

Markos Chandras writes: > These dependencies have been moved from the %post to the %pre scriptlet > in f624bf23b62a ("rhel: user/group openvswitch does not exist") and are > already provided by the shadow-utils package so we can simply drop > them. > > Cc: Alan Pevec

[ovs-dev] [PATCH] rhel: openvswitch-fedora.spec.in: Drop explicit usermod/groupadd deps

These dependencies have been moved from the %post to the %pre scriptlet in f624bf23b62a ("rhel: user/group openvswitch does not exist") and are already provided by the shadow-utils package so we can simply drop them. Cc: Alan Pevec Cc: Aaron Conole

[ovs-dev] Suivi votre colis

To proceed to confirm your account information please follow the instructions that will be required: ___ dev mailing list d...@openvswitch.org https://mail.openvswitch.org/mailman/listinfo/ovs-dev

[ovs-dev] Regarding VLAN and source code compilation - Team Please reply !

Hello Team, I am very new to ovs, I wanted to use Ovs with Network Emulator Core Link , and fortunately Core 5.0 has integrated OVS as SDN service . My question is 1. Is it Possible to modify the OVS code to play around VLAN ? if Yes Please give

[ovs-dev] [PATCH] ovs-vswitchd: Better document that ovs-vswitchd manages its own datapaths.

More explicitly discourage users from managing them themselves. Signed-off-by: Ben Pfaff --- lib/dpctl.man | 9 +++-- vswitchd/ovs-vswitchd.8.in | 11 ++- 2 files changed, 13 insertions(+), 7 deletions(-) diff --git a/lib/dpctl.man b/lib/dpctl.man index