summaryrefslogtreecommitdiff
path: root/net/mpls
diff options
context:
space:
mode:
authorYiFei Zhu <zhuyifei@google.com>2022-09-09 03:49:39 +0300
committerMartin KaFai Lau <martin.lau@kernel.org>2022-09-09 20:40:45 +0300
commit0ffe2412531e95a309d7f0bfe985fc4ca4d39de8 (patch)
tree2c391b0f14d8bdbc1af1726182486400a8151e5a /net/mpls
parent665f5d3577ef43e929d59cf39683037887c351bf (diff)
downloadlinux-0ffe2412531e95a309d7f0bfe985fc4ca4d39de8.tar.xz
bpf: Invoke cgroup/connect{4,6} programs for unprivileged ICMP ping
Usually when a TCP/UDP connection is initiated, we can bind the socket to a specific IP attached to an interface in a cgroup/connect hook. But for pings, this is impossible, as the hook is not being called. This adds the hook invocation to unprivileged ICMP ping (i.e. ping sockets created with SOCK_DGRAM IPPROTO_ICMP(V6) as opposed to SOCK_RAW. Logic is mirrored from UDP sockets where the hook is invoked during pre_connect, after a check for suficiently sized addr_len. Signed-off-by: YiFei Zhu <zhuyifei@google.com> Link: https://lore.kernel.org/r/5764914c252fad4cd134fb6664c6ede95f409412.1662682323.git.zhuyifei@google.com Signed-off-by: Martin KaFai Lau <martin.lau@kernel.org>
Diffstat (limited to 'net/mpls')
0 files changed, 0 insertions, 0 deletions