Skip to content

Commit 2479c2c

Browse files
davem330davem330
committed
Merge branch 'rtnetlink-enable-IFLA_IF_NETNSID-for-RTM_DELLINK-RTM_SETINK'
Christian Brauner says: ==================== rtnetlink: enable IFLA_IF_NETNSID for RTM_{DEL,SET}LINK Based on the previous discussion this enables passing a IFLA_IF_NETNSID property along with RTM_SETLINK and RTM_DELLINK requests. The patch for RTM_NEWLINK will be sent out in a separate patch since there are more corner-cases to think about. Changelog 2018-01-24: * Preserve old behavior and report -ENODEV when either ifindex or ifname is provided and IFLA_GROUP is set. Spotted by Wolfgang Bumiller. ==================== Signed-off-by: David S. Miller <[email protected]>
2 parents 3e3ab9c + b61ad68 commit 2479c2c

File tree

1 file changed

+75
-21
lines changed

1 file changed

+75
-21
lines changed

net/core/rtnetlink.c

Lines changed: 75 additions & 21 deletions
Original file line numberDiff line numberDiff line change
@@ -1902,6 +1902,49 @@ struct net *rtnl_link_get_net(struct net *src_net, struct nlattr *tb[])
19021902
}
19031903
EXPORT_SYMBOL(rtnl_link_get_net);
19041904

1905+
/* Figure out which network namespace we are talking about by
1906+
* examining the link attributes in the following order:
1907+
*
1908+
* 1. IFLA_NET_NS_PID
1909+
* 2. IFLA_NET_NS_FD
1910+
* 3. IFLA_IF_NETNSID
1911+
*/
1912+
static struct net *rtnl_link_get_net_by_nlattr(struct net *src_net,
1913+
struct nlattr *tb[])
1914+
{
1915+
struct net *net;
1916+
1917+
if (tb[IFLA_NET_NS_PID] || tb[IFLA_NET_NS_FD])
1918+
return rtnl_link_get_net(src_net, tb);
1919+
1920+
if (!tb[IFLA_IF_NETNSID])
1921+
return get_net(src_net);
1922+
1923+
net = get_net_ns_by_id(src_net, nla_get_u32(tb[IFLA_IF_NETNSID]));
1924+
if (!net)
1925+
return ERR_PTR(-EINVAL);
1926+
1927+
return net;
1928+
}
1929+
1930+
static struct net *rtnl_link_get_net_capable(const struct sk_buff *skb,
1931+
struct net *src_net,
1932+
struct nlattr *tb[], int cap)
1933+
{
1934+
struct net *net;
1935+
1936+
net = rtnl_link_get_net_by_nlattr(src_net, tb);
1937+
if (IS_ERR(net))
1938+
return net;
1939+
1940+
if (!netlink_ns_capable(skb, net->user_ns, cap)) {
1941+
put_net(net);
1942+
return ERR_PTR(-EPERM);
1943+
}
1944+
1945+
return net;
1946+
}
1947+
19051948
static int validate_linkmsg(struct net_device *dev, struct nlattr *tb[])
19061949
{
19071950
if (dev) {
@@ -2164,17 +2207,14 @@ static int do_setlink(const struct sk_buff *skb,
21642207
const struct net_device_ops *ops = dev->netdev_ops;
21652208
int err;
21662209

2167-
if (tb[IFLA_NET_NS_PID] || tb[IFLA_NET_NS_FD]) {
2168-
struct net *net = rtnl_link_get_net(dev_net(dev), tb);
2210+
if (tb[IFLA_NET_NS_PID] || tb[IFLA_NET_NS_FD] || tb[IFLA_IF_NETNSID]) {
2211+
struct net *net = rtnl_link_get_net_capable(skb, dev_net(dev),
2212+
tb, CAP_NET_ADMIN);
21692213
if (IS_ERR(net)) {
21702214
err = PTR_ERR(net);
21712215
goto errout;
21722216
}
2173-
if (!netlink_ns_capable(skb, net->user_ns, CAP_NET_ADMIN)) {
2174-
put_net(net);
2175-
err = -EPERM;
2176-
goto errout;
2177-
}
2217+
21782218
err = dev_change_net_namespace(dev, net, ifname);
21792219
put_net(net);
21802220
if (err)
@@ -2515,9 +2555,6 @@ static int rtnl_setlink(struct sk_buff *skb, struct nlmsghdr *nlh,
25152555
if (err < 0)
25162556
goto errout;
25172557

2518-
if (tb[IFLA_IF_NETNSID])
2519-
return -EOPNOTSUPP;
2520-
25212558
if (tb[IFLA_IFNAME])
25222559
nla_strlcpy(ifname, tb[IFLA_IFNAME], IFNAMSIZ);
25232560
else
@@ -2602,36 +2639,53 @@ static int rtnl_dellink(struct sk_buff *skb, struct nlmsghdr *nlh,
26022639
struct netlink_ext_ack *extack)
26032640
{
26042641
struct net *net = sock_net(skb->sk);
2605-
struct net_device *dev;
2642+
struct net *tgt_net = net;
2643+
struct net_device *dev = NULL;
26062644
struct ifinfomsg *ifm;
26072645
char ifname[IFNAMSIZ];
26082646
struct nlattr *tb[IFLA_MAX+1];
26092647
int err;
2648+
int netnsid = -1;
26102649

26112650
err = nlmsg_parse(nlh, sizeof(*ifm), tb, IFLA_MAX, ifla_policy, extack);
26122651
if (err < 0)
26132652
return err;
26142653

2615-
if (tb[IFLA_IF_NETNSID])
2616-
return -EOPNOTSUPP;
2617-
26182654
if (tb[IFLA_IFNAME])
26192655
nla_strlcpy(ifname, tb[IFLA_IFNAME], IFNAMSIZ);
26202656

2657+
if (tb[IFLA_IF_NETNSID]) {
2658+
netnsid = nla_get_s32(tb[IFLA_IF_NETNSID]);
2659+
tgt_net = get_target_net(NETLINK_CB(skb).sk, netnsid);
2660+
if (IS_ERR(tgt_net))
2661+
return PTR_ERR(tgt_net);
2662+
}
2663+
2664+
err = -EINVAL;
26212665
ifm = nlmsg_data(nlh);
26222666
if (ifm->ifi_index > 0)
2623-
dev = __dev_get_by_index(net, ifm->ifi_index);
2667+
dev = __dev_get_by_index(tgt_net, ifm->ifi_index);
26242668
else if (tb[IFLA_IFNAME])
2625-
dev = __dev_get_by_name(net, ifname);
2669+
dev = __dev_get_by_name(tgt_net, ifname);
26262670
else if (tb[IFLA_GROUP])
2627-
return rtnl_group_dellink(net, nla_get_u32(tb[IFLA_GROUP]));
2671+
err = rtnl_group_dellink(tgt_net, nla_get_u32(tb[IFLA_GROUP]));
26282672
else
2629-
return -EINVAL;
2673+
goto out;
26302674

2631-
if (!dev)
2632-
return -ENODEV;
2675+
if (!dev) {
2676+
if (tb[IFLA_IFNAME] || ifm->ifi_index > 0)
2677+
err = -ENODEV;
2678+
2679+
goto out;
2680+
}
2681+
2682+
err = rtnl_delete_link(dev);
2683+
2684+
out:
2685+
if (netnsid >= 0)
2686+
put_net(tgt_net);
26332687

2634-
return rtnl_delete_link(dev);
2688+
return err;
26352689
}
26362690

26372691
int rtnl_configure_link(struct net_device *dev, const struct ifinfomsg *ifm)

0 commit comments

Comments
 (0)