[Devel] [PATCH RHEL COMMIT] ve/bridge: handle netlink messages AF_BRIDGE / RTM_[GSD]ETLINK sent from inside a Container
Konstantin Khorenko
khorenko at virtuozzo.com
Tue Oct 12 16:18:25 MSK 2021
The commit is pushed to "branch-rh9-5.14.vz9.1.x-ovz" and will appear at https://src.openvz.org/scm/ovz/vzkernel.git
after ark-5.14
------>
commit 42c87f7e88975f1ff3ed8c8efe30458a11d16a15
Author: Vasily Averin <vvs at virtuozzo.com>
Date: Tue Oct 12 16:18:25 2021 +0300
ve/bridge: handle netlink messages AF_BRIDGE / RTM_[GSD]ETLINK sent from inside a Container
Weave network pluging for Kubernetes configures bridge via netlink,
so need to allow appropriate netlink messages if sent inside a
Container.
https://jira.sw.ru/browse/PSBM-92107
Signed-off-by: Konstantin Khorenko <khorenko at virtuozzo.com>
(cherry picked from vz7 commit e7c862d58164 ("ve/bridge: handle netlink messages
AF_BRIDGE / RTM_[GSD]ETLINK sent from inside a Container"))
Signed-off-by: Vasily Averin <vvs at virtuozzo.com>
Signed-off-by: Cyrill Gorcunov <gorcunov at virtuozzo.com>
---
kernel/ve/ve.c | 3 +++
1 file changed, 3 insertions(+)
diff --git a/kernel/ve/ve.c b/kernel/ve/ve.c
index af46a9b597df..4b4310dd3bfc 100644
--- a/kernel/ve/ve.c
+++ b/kernel/ve/ve.c
@@ -175,6 +175,9 @@ int vz_security_family_check(struct net *net, int family, int type)
case RTM_NEWNEIGH:
case RTM_DELNEIGH:
case RTM_GETNEIGH:
+ case RTM_GETLINK:
+ case RTM_DELLINK:
+ case RTM_SETLINK:
return 0;
}
fallthrough;
More information about the Devel
mailing list