Code Review / vpp.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: c711bd0) | patch
ip: set fib_index before exiting input ACL node 85/34785/3
authorArthur de Kerhor <arthurdekerhor@gmail.com>
Wed, 22 Dec 2021 09:58:30 +0000 (10:58 +0100)
committerBeno�t Ganne <bganne@cisco.com>
Tue, 8 Mar 2022 15:38:14 +0000 (15:38 +0000)
commit1031098b903e6eb4bca4d268350795e6827abdda
treeaa9e0e2311521dca46b4a79d26a6ec4f1669f9cctree | snapshot
parentc711bd08c89c406f7040e28196390efcc01596cdcommit | diff
ip: set fib_index before exiting input ACL node

While setting an ACL, a user can specify the adjacency to follow after
the input ACL node. Thus, we may skip a lookup and enter directly a
local node (ex: ip4_local). To prevent the local source check from
failing, we need to specify the fib index. And, we have to do it just
before exiting the input ACL node because the l2_classify object
is overlapping with the fib_index in the vnet_buffer_opaque_t struct.
We could have added a padding to avoid this overlap but there is no
place for that in the structure.

Type: fix

Signed-off-by: Arthur de Kerhor <arthurdekerhor@gmail.com>
Change-Id: I383c36e4aec08d181f966f28565aefed950d2a74
src/vnet/ip/ip_in_out_acl.c diff | blob | history
Vector Packet Processing