Differential D19757

if_bridge(4): Complete bpf auditing of local traffic over the bridge
ClosedPublic
Actions

Authored by kevans on Mar 29 2019, 7:17 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Wed, Nov 5, 6:15 AM

	Unknown Object (File)
	Wed, Nov 5, 3:56 AM

	Unknown Object (File)
	Tue, Nov 4, 6:46 AM

	Unknown Object (File)
	Sat, Oct 25, 7:44 AM

	Unknown Object (File)
	Tue, Oct 21, 1:55 AM

	Unknown Object (File)
	Mon, Oct 20, 6:12 AM

	Unknown Object (File)
	Thu, Oct 16, 4:20 AM

	Unknown Object (File)
	Tue, Oct 14, 4:04 PM

View All 91 Files

Subscribers

Details

Reviewers

kp
philip

Commits

rS348346: if_bridge(4): Complete bpf auditing of local traffic over the bridge

Summary

There were two remaining "gaps" in auditing local bridge traffic with bpf(4):

Locally originated outbound traffic from a member interface is invisible to the bridge's bpf(4) interface. Inbound traffic locally destined to a member interface is invisible to the member's bpf(4) interface.

I call these "gaps" because they don't affect conventional bridge setups. Alas, being able to establish an audit trail of all locally destined traffic for setups that can function like this is surely not a bad thing.

Diff Detail

Repository

rS FreeBSD src repository - subversion

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

kevans created this revision.Mar 29 2019, 7:17 PM

Herald added subscribers: ae, imp. · View Herald TranscriptMar 29 2019, 7:17 PM

Harbormaster completed remote builds in B23389: Diff 55601.Mar 29 2019, 7:17 PM

kp accepted this revision.Mar 30 2019, 4:53 PM

This revision is now accepted and ready to land.Mar 30 2019, 4:53 PM

Closed by commit rS348346: if_bridge(4): Complete bpf auditing of local traffic over the bridge (authored by kevans). · Explain WhyMay 29 2019, 1:08 AM

This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

Path

Size

head/

sys/

net/

12 lines

Diff 58018

head/sys/net/if_bridge.c

Loading...