search

aporeto-inc / trireme-lib

Simple, scalable and secure application segmentation
https://trireme.io
Apache License 2.0
300 stars 51 forks source link

Fix target network ACLs #878

Closed dstiliadis closed 5 years ago

dstiliadis commented 5 years ago

When packets don't match target networks, never send them to user space,.

dstiliadis commented 5 years ago

/build - automatically fired by gogo with following PRs and commit SHAs v1.0.0

[
  {
    "project": "",
    "component": "trireme-lib",
    "pr-id": "878",
    "commit-sha": "774a210e06aadc4caf21aa8f650921df6161f243"
  },
  {
    "project": "",
    "component": "enforcerd",
    "pr-id": "1397",
    "commit-sha": "78d95b94e363613dab308654e6f0666ba69451f1"
  }
]
dstiliadis commented 5 years ago

/build - automatically fired by gogo with following PRs and commit SHAs v1.0.0

[
  {
    "project": "",
    "component": "enforcerd",
    "pr-id": "1397",
    "commit-sha": "78d95b94e363613dab308654e6f0666ba69451f1"
  },
  {
    "project": "",
    "component": "trireme-lib",
    "pr-id": "878",
    "commit-sha": "c6e7869241cea83fbe078a0088c9ea86d4d1a4e4"
  }
]
codecov[bot] commented 5 years ago

Codecov Report

Merging #878 into release-3.11.0 will increase coverage by 0.37%. The diff coverage is n/a.

Impacted file tree graph

@@                Coverage Diff                 @@
##           release-3.11.0     #878      +/-   ##
==================================================
+ Coverage           55.55%   55.92%   +0.37%     
==================================================
  Files                 105      105              
  Lines               10657    10858     +201     
==================================================
+ Hits                 5920     6072     +152     
- Misses               4154     4173      +19     
- Partials              583      613      +30
Impacted Files Coverage Δ
controller/internal/processmon/processmon.go 77.12% <ø> (-0.38%) :arrow_down:
...ontroller/internal/supervisor/iptablesctrl/acls.go 60.8% <0%> (-1.63%) :arrow_down:
controller/internal/supervisor/supervisor.go 71.62% <0%> (+3.39%) :arrow_up:
...oller/internal/supervisor/iptablesctrl/iptables.go 64.81% <0%> (+3.69%) :arrow_up:
monitor/internal/docker/monitor.go 51.37% <0%> (+3.84%) :arrow_up:

Continue to review full report at Codecov.

Legend - Click here to learn more Δ = absolute <relative> (impact), ø = not affected, ? = missing data Powered by Codecov. Last update 8028404...c6e7869. Read the comment docs.

sibicramesh commented 5 years ago

/build - automatically fired by gogo with following PRs and commit SHAs v1.0.0

[
  {
    "project": "",
    "component": "trireme-lib",
    "pr-id": "878",
    "commit-sha": "c6e7869241cea83fbe078a0088c9ea86d4d1a4e4"
  },
  {
    "project": "",
    "component": "enforcerd",
    "pr-id": "1397",
    "commit-sha": "5934b53a83f7ef5a3b00a80536e4033ed677e47d"
  }
]