Re: [PATCH net-next] ipv4: enable route flushing in network namespaces

From: David Ahern
Date: Mon Jun 24 2019 - 15:49:42 EST

Next message: Thiago Jung Bauermann: "Re: [PATCH v11 01/13] MODSIGN: Export module signature definitions"
Previous message: John Stultz: "[PATCH v6 3/5] dma-buf: heaps: Add system heap to dmabuf heaps"
In reply to: Christian Brauner: "[PATCH net-next] ipv4: enable route flushing in network namespaces"
Next in thread: Christian Brauner: "Re: [PATCH net-next] ipv4: enable route flushing in network namespaces"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 6/24/19 7:29 AM, Christian Brauner wrote:
> Tools such as vpnc try to flush routes when run inside network
> namespaces by writing 1 into /proc/sys/net/ipv4/route/flush. This
> currently does not work because flush is not enabled in non-initial
> network namespaces.
> Since routes are per network namespace it is safe to enable
> /proc/sys/net/ipv4/route/flush in there.
>
> Link: https://github.com/lxc/lxd/issues/4257
> Signed-off-by: Christian Brauner <christian.brauner@xxxxxxxxxx>
> ---
> net/ipv4/route.c | 12 ++++++++----
> 1 file changed, 8 insertions(+), 4 deletions(-)
>

why not teach vpnc to use rtnetlink and then add a flush option to
RTM_DELROUTE?

Next message: Thiago Jung Bauermann: "Re: [PATCH v11 01/13] MODSIGN: Export module signature definitions"
Previous message: John Stultz: "[PATCH v6 3/5] dma-buf: heaps: Add system heap to dmabuf heaps"
In reply to: Christian Brauner: "[PATCH net-next] ipv4: enable route flushing in network namespaces"
Next in thread: Christian Brauner: "Re: [PATCH net-next] ipv4: enable route flushing in network namespaces"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]