From: Jouni Malinen <jouni@codeaurora.org>
To: David Miller <davem@davemloft.net>
Cc: netdev@vger.kernel.org, Kyeyoon Park <kyeyoonp@codeaurora.org>,
Jouni Malinen <jouni@codeaurora.org>
Subject: [PATCH v2 2/3] bridge: Selectively prevent bridge port flooding for proxy ARP
Date: Thu, 5 Feb 2015 11:54:22 +0200 [thread overview]
Message-ID: <1423130063-18323-2-git-send-email-jouni@codeaurora.org> (raw)
In-Reply-To: <1423130063-18323-1-git-send-email-jouni@codeaurora.org>
From: Kyeyoon Park <kyeyoonp@codeaurora.org>
Rather than completely blocking the bridge port flooding when
BR_PROXYARP is enabled, selectively prevent bridge port flooding for the
proxy ARP relevant frames. This is done by marking the "skb" with this
info when proxy ARP code executes.
Signed-off-by: Kyeyoon Park <kyeyoonp@codeaurora.org>
Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
---
v2: Address Stephen's comment on mixing && and & without parens
net/bridge/br_forward.c | 3 ++-
net/bridge/br_input.c | 6 +++++-
net/bridge/br_private.h | 1 +
3 files changed, 8 insertions(+), 2 deletions(-)
diff --git a/net/bridge/br_forward.c b/net/bridge/br_forward.c
index f96933a..0b156aa 100644
--- a/net/bridge/br_forward.c
+++ b/net/bridge/br_forward.c
@@ -186,7 +186,8 @@ static void br_flood(struct net_bridge *br, struct sk_buff *skb,
continue;
/* Do not flood to ports that enable proxy ARP */
- if (p->flags & BR_PROXYARP)
+ if ((p->flags & BR_PROXYARP) &&
+ BR_INPUT_SKB_CB(skb)->proxyarp_replied)
continue;
prev = maybe_deliver(prev, p, skb, __packet_hook);
diff --git a/net/bridge/br_input.c b/net/bridge/br_input.c
index b2afa17..c3640d8 100644
--- a/net/bridge/br_input.c
+++ b/net/bridge/br_input.c
@@ -68,6 +68,8 @@ static void br_do_proxy_arp(struct sk_buff *skb, struct net_bridge *br,
u8 *arpptr, *sha;
__be32 sip, tip;
+ BR_INPUT_SKB_CB(skb)->proxyarp_replied = false;
+
if (dev->flags & IFF_NOARP)
return;
@@ -105,9 +107,11 @@ static void br_do_proxy_arp(struct sk_buff *skb, struct net_bridge *br,
}
f = __br_fdb_get(br, n->ha, vid);
- if (f && f->dst && (f->dst->flags & BR_PROXYARP))
+ if (f && f->dst && (f->dst->flags & BR_PROXYARP)) {
arp_send(ARPOP_REPLY, ETH_P_ARP, sip, skb->dev, tip,
sha, n->ha, sha);
+ BR_INPUT_SKB_CB(skb)->proxyarp_replied = true;
+ }
neigh_release(n);
}
diff --git a/net/bridge/br_private.h b/net/bridge/br_private.h
index de09199..c32e279 100644
--- a/net/bridge/br_private.h
+++ b/net/bridge/br_private.h
@@ -305,6 +305,7 @@ struct br_input_skb_cb {
#endif
u16 frag_max_size;
+ bool proxyarp_replied;
#ifdef CONFIG_BRIDGE_VLAN_FILTERING
bool vlan_filtered;
--
1.9.1
next prev parent reply other threads:[~2015-02-05 9:55 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-02-05 9:54 [PATCH v2 1/3] bridge: Base the BR_PROXYARP decision on the target port flag Jouni Malinen
2015-02-05 9:54 ` Jouni Malinen [this message]
2015-02-05 9:54 ` [PATCH v2 3/3] bridge: Allow proxy ARP for unicast ARP requests Jouni Malinen
2015-02-08 5:59 ` [PATCH v2 1/3] bridge: Base the BR_PROXYARP decision on the target port flag David Miller
2015-02-09 19:54 ` Jouni Malinen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1423130063-18323-2-git-send-email-jouni@codeaurora.org \
--to=jouni@codeaurora.org \
--cc=davem@davemloft.net \
--cc=kyeyoonp@codeaurora.org \
--cc=netdev@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).