git.baikalelectronics.ru Git - kernel.git/commit

author	Joe Stringer <joe@wand.net.nz>
	Fri, 30 Nov 2018 23:32:20 +0000 (15:32 -0800)
committer	Alexei Starovoitov <ast@kernel.org>
	Sat, 1 Dec 2018 01:17:38 +0000 (17:17 -0800)
commit	b78286a7f2216b128dc4e0671cb1defb837eb5b8
tree	fef0cee90ee0a015b24c8916c6ccb3983b47d688	tree \| snapshot
parent	4486bbd62d8d837d59aa2bb8ed281c126ed3b1bd	commit \| diff

bpf: Support sk lookup in netns with id 0

David Ahern and Nicolas Dichtel report that the handling of the netns id
0 is incorrect for the BPF socket lookup helpers: rather than finding
the netns with id 0, it is resolving to the current netns. This renders
the netns_id 0 inaccessible.

To fix this, adjust the API for the netns to treat all negative s32
values as a lookup in the current netns (including u64 values which when
truncated to s32 become negative), while any values with a positive
value in the signed 32-bit integer space would result in a lookup for a
socket in the netns corresponding to that id. As before, if the netns
with that ID does not exist, no socket will be found. Any netns outside
of these ranges will fail to find a corresponding socket, as those
values are reserved for future usage.

Signed-off-by: Joe Stringer <joe@wand.net.nz>
Acked-by: Nicolas Dichtel <nicolas.dichtel@6wind.com>
Acked-by: Joey Pabalinas <joeypabalinas@gmail.com>
Signed-off-by: Alexei Starovoitov <ast@kernel.org>

include/uapi/linux/bpf.h		diff \| blob \| history
net/core/filter.c		diff \| blob \| history
tools/include/uapi/linux/bpf.h		diff \| blob \| history
tools/testing/selftests/bpf/bpf_helpers.h		diff \| blob \| history
tools/testing/selftests/bpf/test_sk_lookup_kern.c		diff \| blob \| history