On 09/07/15 at 04:54pm, Daniel Borkmann wrote: > On 08/17/2015 11:02 PM, David Miller wrote: > ... > >I would seriously rather see us do an expensive full copy of the SKB > >than to have traffic which is unexpectedly invisible to taps. > > I've been looking into this issue a bit further, so the copy for the > tap seems doable, but while further going through the code to find similar > issues elsewhere, and doing some experiments, it looks like we write > shared info also in some edge-cases of upcalls such as nfqueue or ovs > when mmaped netlink is used for rx. I did a test with nfqueue using > the libmnl mmap branch [1].
Note that OVS does not utilize mmaped netlink even though it has been considered for a while. It is theoretically possible that non-OVS user space user of the OVS netlink API is using it although I'm not aware somebody actually does. We can probably fix this specifically for nfqueue. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
