| Message ID | 201706201714.v5KHEgZK003998@finist_cl7.x64_64.work.ct |
|---|---|
| State | New |
| Series | "netfilter: allow adding matches from the container initial user namespace" |
| Headers | show
Delivered-To: criupatchwork@gmail.com Received: from gmail-imap.l.google.com [64.233.162.108] by patchwork.criu.org with IMAP (fetchmail-6.3.26) for <root@localhost> (single-drop); Wed, 21 Jun 2017 02:17:09 +0200 (CEST) Received: by 10.100.181.138 with SMTP id r10csp1420660pjb; Tue, 20 Jun 2017 10:17:13 -0700 (PDT) X-Received: by 10.84.133.226 with SMTP id f89mr37096539plf.55.1497979033876; Tue, 20 Jun 2017 10:17:13 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1497979033; cv=none; d=google.com; s=arc-20160816; b=Af/BA5GmrGdSevlRtDQD6rK1GesaHi469LiZ69DaIZfvnbwnYAwoz6/eafG9bOz5YV lwlmfNbtIh3fdzSFigeukl/p8wgqZwUVyR9dDXZx9mAGj9Xdf/35DkPyC3oz6iylbWxZ eU52FzRhJkKM8jkP0XRbfVDVYEOZJIFFhQSChCUB4apudK0D0WvT70NvDRbqnQ7+xVb1 7NPPmOlMMnq4aU3MfF8K7nrNaNlzswkwRzVG/9JoUNmcCVKm1v8RcrXsvc8ebJImh/Ly q9M71kdVngmydnGz8mUfQkTASyDLXRtgqZwqnzxwqZtCbvzWkvViNzVPUBSsxqxpF/iX YSgA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:list-subscribe:list-help :list-post:list-archive:list-unsubscribe:list-id:precedence:subject :cc:spamdiagnosticmetadata:spamdiagnosticoutput:mime-version :in-reply-to:to:from:message-id:date:arc-authentication-results; bh=358b/AQFLTjnyrhOgiXAUFQAHya04o978CV+su/nWV4=; b=ftqL0Ez5VwO+4z/ZZLzCPQJiUZz+gdIJc/C5hHBsqrWiXWji9zOQOTmGfO3kVgXTU2 8UKlYAJGxazn4nfrDMWdSqZwzqj2BRHn6+Bkey0s0kAwT0FEhCM8bDfkUAqYwmLzIyLn XQhWTCENU4rOBpoWqeHtwJ+CODkv5V7R3BqaAa3cSR0tADdc4r5/voyvdFX8RWaGaZHL I/sQC0g8fjSJ1n4Yd2mf5hsKa1RJUdqDVvv51Suqjk/XGZIprNDsI0ZHXPnl5pKV6lMf UL/aScnNg5oZdCmaUo4n1iTVpLKURSqlg61ib/cj1PuCe+ntpg/WiE6GvEs5rH2QBV4v TNmw== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of devel-bounces@openvz.org designates 195.214.232.140 as permitted sender) smtp.mailfrom=devel-bounces@openvz.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=virtuozzo.com Return-Path: <devel-bounces@openvz.org> Received: from mail.openvz.org (mail.openvz.org. [195.214.232.140]) by mx.google.com with ESMTPS id z67si694433pff.139.2017.06.20.10.17.04 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 20 Jun 2017 10:17:13 -0700 (PDT) Received-SPF: pass (google.com: domain of devel-bounces@openvz.org designates 195.214.232.140 as permitted sender) client-ip=195.214.232.140; Authentication-Results: mx.google.com; spf=pass (google.com: domain of devel-bounces@openvz.org designates 195.214.232.140 as permitted sender) smtp.mailfrom=devel-bounces@openvz.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=virtuozzo.com Received: from mail.openvz.org (localhost [127.0.0.1]) by mail.openvz.org (8.14.4/8.14.4) with ESMTP id v5KHEwhJ007632; Tue, 20 Jun 2017 20:14:58 +0300 Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-ve1eur01lp0240.outbound.protection.outlook.com [213.199.154.240]) by mail.openvz.org (8.14.4/8.14.4) with ESMTP id v5KHEra2007619 for <devel@openvz.org>; Tue, 20 Jun 2017 20:14:53 +0300 Received: from DB6PR0801CA0027.eurprd08.prod.outlook.com (2603:10a6:4:2::37) by AM4PR08MB2787.eurprd08.prod.outlook.com (2603:10a6:205:d::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1178.14; Tue, 20 Jun 2017 17:14:44 +0000 Received: from HE1EUR01FT030.eop-EUR01.prod.protection.outlook.com (2a01:111:f400:7e1f::208) by DB6PR0801CA0027.outlook.office365.com (2603:10a6:4:2::37) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1178.14 via Frontend Transport; Tue, 20 Jun 2017 17:14:44 +0000 Authentication-Results: spf=pass (sender IP is 195.214.232.25) smtp.mailfrom=virtuozzo.com; openvz.org; dkim=none (message not signed) header.d=none; openvz.org; dmarc=pass action=none header.from=virtuozzo.com; Received-SPF: Pass (protection.outlook.com: domain of virtuozzo.com designates 195.214.232.25 as permitted sender) receiver=protection.outlook.com; client-ip=195.214.232.25; helo=relay.sw.ru; Received: from relay.sw.ru (195.214.232.25) by HE1EUR01FT030.mail.protection.outlook.com (10.152.0.170) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_RSA_WITH_AES_256_CBC_SHA) id 15.1.1178.14 via Frontend Transport; Tue, 20 Jun 2017 17:14:43 +0000 Received: from finist_cl7.x64_64.work.ct (msk-vpn.virtuozzo.com [195.214.232.6]) by relay.sw.ru (8.13.4/8.13.4) with ESMTP id v5KHEgWN027490 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 20 Jun 2017 20:14:42 +0300 (MSK) Received: from finist_cl7.x64_64.work.ct (localhost [127.0.0.1]) by finist_cl7.x64_64.work.ct (8.14.7/8.14.7) with ESMTP id v5KHEgWa003999; Tue, 20 Jun 2017 21:14:42 +0400 Received: (from khorenko@localhost) by finist_cl7.x64_64.work.ct (8.14.7/8.14.7/Submit) id v5KHEgZK003998; Tue, 20 Jun 2017 21:14:42 +0400 Date: Tue, 20 Jun 2017 21:14:42 +0400 Message-ID: <201706201714.v5KHEgZK003998@finist_cl7.x64_64.work.ct> X-Authentication-Warning: finist_cl7.x64_64.work.ct: khorenko set sender to khorenko@virtuozzo.com using -f From: Konstantin Khorenko <khorenko@virtuozzo.com> To: Stanislav Kinsburskiy <skinsbursky@virtuozzo.com> In-Reply-To: <20170605180523.25364.25395.stgit@localhost.localdomain> X-EOPAttributedMessage: 0 X-Forefront-Antispam-Report: CIP:195.214.232.25; IPV:CAL; SCL:-1; CTRY:RU; EFV:NLI; SFV:SKN; SFS:; DIR:INB; SFP:; SCL:-1; SRVR:AM4PR08MB2787; H:relay.sw.ru; FPR:; SPF:None; LANG:en; X-Microsoft-Exchange-Diagnostics: 1; HE1EUR01FT030; 1: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 MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 3b1a12fe-f7ae-427e-70d0-08d4b7ffd863 X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(8251501002)(2017030254075)(201703131423075)(201703031133081)(201702281549075); SRVR:AM4PR08MB2787; X-Microsoft-Exchange-Diagnostics: 1; AM4PR08MB2787; 3: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 X-MS-TrafficTypeDiagnostic: AM4PR08MB2787: X-Microsoft-Exchange-Diagnostics: 1; AM4PR08MB2787; 25:1vrjWcpRuATxXzVCWKuHv9lPjDAsMscce3iDpENAnjDN69dO2dOuZgJQEF8EW6DDVA/aH7dfP/NB7VWGCya6n06FPAGGtIfdNFqqpYjOf/s+iZGeTpFPKkHX1IAOFZHi6wrg1UjXWoSIiU2JY8doq+VYSI1VQVtSV76WD6yvpIfVZ2/mMKpCfbOmIcawitfJHXoo+3dkjXQ2w+aRoabqrjjpBZAbocuLYbCqA7a15NOrFOz30bD0H+49PyiHRoZOLSuaSPWlMVmNXxaHWfESDZ03RDpS68Hg5gWiYNipRZ+RC5YuATR+SPZ1Wg0wbwS2eMMWeUbEWvKyYnlL3+bhvE+pJ2mgEUp3Rs++OTDoP4BLPeNhDrPE0lfhDhrU/tZVrRhVaJMnrPMoFfYJ7KwlgSJ72IIEMyoQYNUaruFZ6RY3mrk5/wkOhWofJvRAmJ7pL7cX7YUAD7ZuUnt0Ihj9O9yK2PSdjlVQnZGcIUUzz30=; 31:2jnNXY2MVB1M+XCEOttfEf1KXSdU7u8aa06BAHApFKIOuMFG7uf36S4+pew/KIPDo8P69MEe6ksO4jbIa+iSmWzxX/JFDE9Af3nKdLI+xbeilV6dTP5912+cXCZkbadR0qkxDPkXT4mK2f1kLsrGGVZGIXNwDKU7tdipiA/RvGNzSFqWs/nEdjFMkRghJAuFLebDCENVPGbtt+2+pIY5kwUWAdwCBn0g0+s0Y1Fixrew0CTQ9D6mFsFT8t6dSVnp7+SFfXoNoiFoszss3tvBYisqCmc44CSJmyZ3BJsvvy03TOUIbi5xws4bR2HO9hfr X-Microsoft-Exchange-Diagnostics: 1; AM4PR08MB2787; 20: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 X-Exchange-Antispam-Report-Test: UriScan:(215187933766430); X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(9101521199)(601004)(2401047)(13021025)(8121501046)(13013025)(10201501046)(100000703101)(100105400095)(93006095)(93004095)(3002001)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:AM4PR08MB2787; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:AM4PR08MB2787; X-Microsoft-Exchange-Diagnostics: 1; AM4PR08MB2787; 4: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 X-Microsoft-Exchange-Diagnostics: 1; AM4PR08MB2787; 23:Yq1LWgkk7Req0XM7tS6g+bUVjI5jf7d4O+EFIhoAyX/YDOBNYtbNpzgBjdJE+zlvOakF28YqD4V36oqF6++VT6qxpxRXZBIvplzBcJaedgBa0h4E2qpxgpGWdCFadbZ+rnJyxY1ZaxU0HUSQXq5Aje8McRzxmbGd7o+vKaozdjTGdWtyAPThCkIp5lU5aBgj X-Microsoft-Exchange-Diagnostics: 1; AM4PR08MB2787; 6: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 X-Microsoft-Exchange-Diagnostics: 1; AM4PR08MB2787; 5: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; 24:nYWtX4anFFz6xh9ziLvuK7DoNGJTsVcN0A+AJcgCdgFLYb2KzDoe8KXatZC8Jq3S5J1goHiobycCpktEfoj/qUzHvena4sy4XozvXtqFfMc= SpamDiagnosticOutput: 1:2 SpamDiagnosticMetadata: 2b2090aae5154f77b71484475de18b04 X-Microsoft-Exchange-Diagnostics: 1; AM4PR08MB2787; 7:/gBC7g58EzOGtmi+p4bQBxG9ahv1vw9Kb81LXHXo7kYCXhbPvUxVtw3L7QwvKdZOPppt/NCM5oPN1j0WVMM9SFKyMdRKm9iPawXEVBTHl3EHqrFUnorkzO0jsChk8y1FN4berD2P6JEMwlfFhE/Tec5wk6gKKmsG7gFOXxtPuY5DFv7ouwF/0mQDJgztsSyHVn3gOzShJakdYaBGy9+jcWgpI1tCmDRxukMXwdXi44AiEux7438+oakAXRMou+0gm3Jb9bppDhoBt0z1OegaAQtSFRC/FiqgGjEdah7afQH2ynThjT0wkWrJ9I/QFHFVMeFQT2Hq5zb7FabJrLUyyIRsYzl8vXd8z69UX75h0BjY2Ev4UXmtiXi0Cn4bHuxZ4EcKiVzpZToP/rODNF57RkE4l6tXkM4iVC+JSe/i8aRONM/bv+jalTb3Dp4uPviOGK4+K8bSzMXp36Et1rT1W3B6sJvldjR4+q8m2leHFqwJaYZMKq0MszDjEI4fOIB8IDKP+H/HfGZxPBNt0adewjys0YGc59smY5UOi0JDPYyX0hHdacM2v4W+tHeRYus/f84bYLG22nlRJcIlaGKQQ/oVFxZdsCKYU1ofluc69Gy7ICxp0UFT08oJGhADj5RgVMaQCGe3jioVXiglb7Ks30Mh7Dy6sWT24DlbPLQX3Uj18B/peD0TzayfPq4CKMFO1Dli8cFCVr8HXti3o4E2Ipvx71Y82Ds9IhwKh1949nYvX3NCe7ZC/dRlYeBvEj7DE2A6yJvouqk/uy9b4ZPjhbi0/w9HSd2Fs1pKvzr1TvrlW3B9aTpQzZ7D03JAljVliGu5sY5fHIkJbpzhEeZrHXnMA70xQ2GqDylOgHaa1/w= X-Microsoft-Exchange-Diagnostics: 1; AM4PR08MB2787; 20:Z/+CFMPNKO/SmQtp8f+CHOgMU8Q6744WwqHQw61qORWFJ+yCUACgeJ0m4R6zXnTFck5H6eWiVJcUgABN0A42OcET8kiwwdj3pakUZVUksy3AmaMY3f9+AApM9xi9wfCJty6rk0g1tFT8eas+Fdz9VFF2c/zvqhojSRR0SSnGSxI= X-OriginatorOrg: virtuozzo.com X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 Jun 2017 17:14:43.6959 (UTC) X-MS-Exchange-CrossTenant-Id: 0bc7f26d-0264-416e-a6fc-8352af79c58f X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=0bc7f26d-0264-416e-a6fc-8352af79c58f; Ip=[195.214.232.25]; Helo=[relay.sw.ru] X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR08MB2787 X-MS-Exchange-CrossPremises-OriginalClientIPAddress: 195.214.232.25 X-MS-Exchange-CrossPremises-SCL: -1 X-MS-Exchange-CrossPremises-AuthSource: HE1EUR01FT030.eop-EUR01.prod.protection.outlook.com X-MS-Exchange-CrossPremises-AuthAs: Anonymous X-MS-Exchange-CrossPremises-TransportTrafficType: Email X-MS-Exchange-CrossPremises-TransportTrafficSubType: X-MS-Exchange-CrossPremises-Antispam-ScanContext: DIR:Originating; SFV:SKN; SKIP:0; X-MS-Exchange-CrossPremises-Processed-By-Journaling: Journal Agent X-OrganizationHeadersPreserved: AM4PR08MB2787.eurprd08.prod.outlook.com Cc: OpenVZ devel <devel@openvz.org> Subject: [Devel] [PATCH RHEL7 COMMIT] ve/netfilter: allow adding matches from the container initial user namespace X-BeenThere: devel@openvz.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: OpenVZ development <devel.openvz.org> List-Unsubscribe: <https://lists.openvz.org/mailman/options/devel>, <mailto:devel-request@openvz.org?subject=unsubscribe> List-Archive: <http://lists.openvz.org/pipermail/devel/> List-Post: <mailto:devel@openvz.org> List-Help: <mailto:devel-request@openvz.org?subject=help> List-Subscribe: <https://lists.openvz.org/mailman/listinfo/devel>, <mailto:devel-request@openvz.org?subject=subscribe> Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: devel-bounces@openvz.org Errors-To: devel-bounces@openvz.org |
diff --git a/net/netfilter/xt_owner.c b/net/netfilter/xt_owner.c index 79558fe..942cce1 100644 --- a/net/netfilter/xt_owner.c +++ b/net/netfilter/xt_owner.c @@ -83,7 +83,7 @@ static int owner_check(const struct xt_mtchk_param *par) /* For now only allow adding matches from the initial user namespace */ if ((info->match & (XT_OWNER_UID|XT_OWNER_GID)) && - (current_user_ns() != &init_user_ns)) + !current_user_ns_initial()) return -EINVAL; return 0; }
The commit is pushed to "branch-rh7-3.10.0-514.16.1.vz7.32.x-ovz" and will appear at https://src.openvz.org/scm/ovz/vzkernel.git after rh7-3.10.0-514.16.1.vz7.32.10 ------> commit d31486fd251b73aba7cf8922d6683727d5cf1217 Author: Stanislav Kinsburskiy <skinsbursky@virtuozzo.com> Date: Tue Jun 20 21:14:42 2017 +0400 ve/netfilter: allow adding matches from the container initial user namespace https://jira.sw.ru/browse/PSBM-43609 Signed-off-by: Stanislav Kinsburskiy <skinsbursky@virtuozzo.com> Acked-by: Kirill Tkhai <ktkhai@virtuozzo.com> --- net/netfilter/xt_owner.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)