[ovs-git] [openvswitch/ovs] fabab8: ovn-northd: LR respond ARP from valid subnet only.

GitHub noreply at github.com
Mon Aug 27 16:51:49 UTC 2018


  Branch: refs/heads/branch-2.9
  Home:   https://github.com/openvswitch/ovs
  Commit: fabab8bc10ba260dc3d1a2dfe112e95a78f075aa
      https://github.com/openvswitch/ovs/commit/fabab8bc10ba260dc3d1a2dfe112e95a78f075aa
  Author: Han Zhou <zhouhan at gmail.com>
  Date:   2018-08-27 (Mon, 27 Aug 2018)

  Changed paths:
    M ovn/northd/ovn-northd.8.xml
    M ovn/northd/ovn-northd.c
    M tests/ovn.at

  Log Message:
  -----------
  ovn-northd: LR respond ARP from valid subnet only.

Currently ovn LR datapath responds ARP requests even if the ARP
requestor's src IP doesn't belong to the LR port's subnets. This
may generate unnecessary ARP responses and there could also be
security concerns. This patch restricts the ARP response only if
the requestor's IP matches the LR port's subnets.

Signed-off-by: Han Zhou <hzhou8 at ebay.com>
Signed-off-by: Ben Pfaff <blp at ovn.org>


  Commit: 9b2b68660e9a939a82e9142f25ba0f7942188925
      https://github.com/openvswitch/ovs/commit/9b2b68660e9a939a82e9142f25ba0f7942188925
  Author: Han Zhou <zhouhan at gmail.com>
  Date:   2018-08-27 (Mon, 27 Aug 2018)

  Changed paths:
    M ovn/northd/ovn-northd.8.xml
    M ovn/northd/ovn-northd.c
    M tests/ovn.at

  Log Message:
  -----------
  ovn-northd: Support learning neighbor from ARP request.

Current LR dynamic ARP learning support only ARP responses. If a
IP-MAC binding is learned, it will not get updated even if a host
send a GARP *request* to inform the new binding. This patch supports
learning neighbor changes from ARP requests, including GARP requests.

Signed-off-by: Han Zhou <hzhou8 at ebay.com>
Signed-off-by: Ben Pfaff <blp at ovn.org>


Compare: https://github.com/openvswitch/ovs/compare/3c6f60b2525a...9b2b68660e9a
      **NOTE:** This service has been marked for deprecation: https://developer.github.com/changes/2018-04-25-github-services-deprecation/

      Functionality will be removed from GitHub.com on January 31st, 2019.


More information about the git mailing list