On Mon, Nov 13, 2017 at 10:35 PM, Jiri Pirko <j...@resnulli.us> wrote: > > Okay. What about my question? Should we allow adding an action mirred > pointing to a netdev in another netns? I think it would make sense in > case we consider movement of mirred device legit.
I don't think it is possible to add an action pointing to any netdev in other netns in current code base, you just can't find it. Moving a netdev after linking it to an action is different, if you want to argue this using above question. Because we allow other "linking" netdev to be moved too, like a tunnel device on top of a physical one (this is why we have netnsid). The "linking" of a mirred action might not be as strong as a tunnel device "linking", but the idea is pretty much similar, I don't see anything fundamentally wrong.
