Re: [PATCH] netfilter: Record uid and gid in xt_AUDIT

From: Richard Weinberger
Date: Thu Oct 10 2024 - 16:10:02 EST

Next message: Jiri Olsa: "[PATCHv6 bpf-next,perf/core 00/16] uprobe, bpf: Add session support"
Previous message: Vitaliy Shevtsov: "[PATCH 6.1] ASoC: Intel: sof_realtek_common: set ret = 0 as initial value"
In reply to: Jan Engelhardt: "Re: [PATCH] netfilter: Record uid and gid in xt_AUDIT"
Next in thread: Florian Westphal: "Re: [PATCH] netfilter: Record uid and gid in xt_AUDIT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am Donnerstag, 10. Oktober 2024, 15:48:27 CEST schrieb Florian Westphal:
> Richard Weinberger <richard@xxxxxxxxxxxxx> wrote:
> > Am Mittwoch, 9. Oktober 2024, 23:33:45 CEST schrieb Florian Westphal:
> > > There is no need to follow ->file backpointer anymore, see
> > > 6acc5c2910689fc6ee181bf63085c5efff6a42bd and
> > > 86741ec25462e4c8cdce6df2f41ead05568c7d5e,
> > > "net: core: Add a UID field to struct sock.".
> >
> > Oh, neat!

I gave sock_net_uid() a try, but I kinda fail.

Maybe I have wrong expectations.
e.g. I expected that sock_net_uid() will return 1000 when
uid 1000 does something like: unshare -Umr followed by a veth connection
to the host (initial user/net namespace).
Shouldn't on the host side a forwarded skb have a ->dev that belongs uid
1000's net namespace?

Thanks,
//richard

--
sigma star gmbh | Eduard-Bodem-Gasse 6, 6020 Innsbruck, AUT
UID/VAT Nr: ATU 66964118 | FN: 374287y

Next message: Jiri Olsa: "[PATCHv6 bpf-next,perf/core 00/16] uprobe, bpf: Add session support"
Previous message: Vitaliy Shevtsov: "[PATCH 6.1] ASoC: Intel: sof_realtek_common: set ret = 0 as initial value"
In reply to: Jan Engelhardt: "Re: [PATCH] netfilter: Record uid and gid in xt_AUDIT"
Next in thread: Florian Westphal: "Re: [PATCH] netfilter: Record uid and gid in xt_AUDIT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]