[NET]: Make socket creation namespace safe.

This patch passes in the namespace a new socket should be created in and has the socket code do the appropriate reference counting. By virtue of this all socket create methods are touched. In addition the socket create methods are modified so that they will fail if you attempt to create a socket in a non-default network namespace. Failing if we attempt to create a socket outside of the default network namespace ensures that as we incrementally make the network stack network namespace aware we will not export functionality that someone has not audited and made certain is network namespace safe. Allowing us to partially enable network namespaces before all of the exotic protocols are supported. Any protocol layers I have missed will fail to compile because I now pass an extra parameter into the socket creation code. [ Integrated AF_IUCV build fixes from Andrew Morton... -DaveM ] Signed-off-by: Eric W. Biederman <ebiederm@xmission.com> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Eric W. Biederman <ebiederm@xmission.com> 2007-10-09 02:24:22 -0400
committer: David S. Miller <davem@sunset.davemloft.net> 2007-10-10 19:49:07 -0400
commit: 1b8d7ae42d02e483ad94035cca851e4f7fbecb40 (patch)
tree: 81f8cc0ee49ef99cc67dfed3dc7b7ecb510abf8b /drivers
parent: 457c4cbc5a3dde259d2a1f15d5f9785290397267 (diff)
3 files changed, 9 insertions, 6 deletions
diff --git a/drivers/net/pppoe.c b/drivers/net/pppoe.c
index ee8ce195c538..53fcee26d6ae 100644
--- a/drivers/net/pppoe.c
+++ b/drivers/net/pppoe.c
@@ -477,12 +477,12 @@ static struct proto pppoe_sk_proto = {
 * Initialize a new struct sock.
 *
 **********************************************************************/
-static int pppoe_create(struct socket *sock)
+static int pppoe_create(struct net *net, struct socket *sock)
 {
        int error = -ENOMEM;
        struct sock *sk;
-        sk = sk_alloc(PF_PPPOX, GFP_KERNEL, &pppoe_sk_proto, 1);
+        sk = sk_alloc(net, PF_PPPOX, GFP_KERNEL, &pppoe_sk_proto, 1);
        if (!sk)
                goto out;
diff --git a/drivers/net/pppol2tp.c b/drivers/net/pppol2tp.c
index 2eb424ba58e5..921d4ef6d14b 100644
--- a/drivers/net/pppol2tp.c
+++ b/drivers/net/pppol2tp.c
@@ -1411,12 +1411,12 @@ static struct proto pppol2tp_sk_proto = {
 /* socket() handler. Initialize a new struct sock.
 */
-static int pppol2tp_create(struct socket *sock)
+static int pppol2tp_create(struct net *net, struct socket *sock)
 {
        int error = -ENOMEM;
        struct sock *sk;
-        sk = sk_alloc(PF_PPPOX, GFP_KERNEL, &pppol2tp_sk_proto, 1);
+        sk = sk_alloc(net, PF_PPPOX, GFP_KERNEL, &pppol2tp_sk_proto, 1);
        if (!sk)
                goto out;
diff --git a/drivers/net/pppox.c b/drivers/net/pppox.c
index 25c52b55c38f..c6898c1fc54d 100644
--- a/drivers/net/pppox.c
+++ b/drivers/net/pppox.c
@@ -104,10 +104,13 @@ int pppox_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
 EXPORT_SYMBOL(pppox_ioctl);
-static int pppox_create(struct socket *sock, int protocol)
+static int pppox_create(struct net *net, struct socket *sock, int protocol)
 {
        int rc = -EPROTOTYPE;
+        if (net != &init_net)
+                return -EAFNOSUPPORT;
        if (protocol < 0 || protocol > PX_MAX_PROTO)
                goto out;
@@ -123,7 +126,7 @@ static int pppox_create(struct socket *sock, int protocol)
            !try_module_get(pppox_protos[protocol]->owner))
                goto out;
-        rc = pppox_protos[protocol]->create(sock);
+        rc = pppox_protos[protocol]->create(net, sock);
        module_put(pppox_protos[protocol]->owner);
 out:
author	Eric W. Biederman <ebiederm@xmission.com>	2007-10-09 02:24:22 -0400
committer	David S. Miller <davem@sunset.davemloft.net>	2007-10-10 19:49:07 -0400
commit	1b8d7ae42d02e483ad94035cca851e4f7fbecb40 (patch)
tree	81f8cc0ee49ef99cc67dfed3dc7b7ecb510abf8b /drivers
parent	457c4cbc5a3dde259d2a1f15d5f9785290397267 (diff)