git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Eyal Birger <eyal.birger@gmail.com>
	Thu, 18 Aug 2022 07:41:18 +0000 (10:41 +0300)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 8 Sep 2022 09:23:57 +0000 (11:23 +0200)
commit	ca41835c753aca5068553ce92702cced704c5d45
tree	3023f0674989e4278bd9fbea8cede138f89af0de	tree
parent	257f1447d7c245b81e23fa2ee932c737232c29ac	commit \| diff

ip_tunnel: Respect tunnel key's "flow_flags" in IP tunnels

[ Upstream commit 7ec9fce4b31604f8415136a4c07f7dc8ad431aec ]

Commit 451ef36bd229 ("ip_tunnels: Add new flow flags field to ip_tunnel_key")
added a "flow_flags" member to struct ip_tunnel_key which was later used by
the commit in the fixes tag to avoid dropping packets with sources that
aren't locally configured when set in bpf_set_tunnel_key().

VXLAN and GENEVE were made to respect this flag, ip tunnels like IPIP and GRE
were not.

This commit fixes this omission by making ip_tunnel_init_flow() receive
the flow flags from the tunnel key in the relevant collect_md paths.

Fixes: b8fff748521c ("bpf: Set flow flag to allow any source IP in bpf_tunnel_key")
Signed-off-by: Eyal Birger <eyal.birger@gmail.com>
Signed-off-by: Daniel Borkmann <daniel@iogearbox.net>
Reviewed-by: Paul Chaignon <paul@isovalent.com>
Link: https://lore.kernel.org/bpf/20220818074118.726639-1-eyal.birger@gmail.com
Signed-off-by: Sasha Levin <sashal@kernel.org>

drivers/net/ethernet/mellanox/mlxsw/spectrum_span.c		diff \| blob \| blame \| history
include/net/ip_tunnels.h		diff \| blob \| blame \| history
net/ipv4/ip_gre.c		diff \| blob \| blame \| history
net/ipv4/ip_tunnel.c		diff \| blob \| blame \| history