Re: [PATCH v2 bpf-next 3/9] bpf: Hooks for sys_bind

2018-03-29 Thread Alexei Starovoitov
On 3/29/18 4:06 PM, Daniel Borkmann wrote: On 03/28/2018 05:41 AM, Alexei Starovoitov wrote: [...] diff --git a/net/ipv4/af_inet.c b/net/ipv4/af_inet.c index e8c7fad8c329..2dec266507dc 100644 --- a/net/ipv4/af_inet.c +++ b/net/ipv4/af_inet.c @@ -450,6 +450,13 @@ int inet_bind(struct socket

Re: [PATCH v2 bpf-next 3/9] bpf: Hooks for sys_bind

2018-03-29 Thread Daniel Borkmann
On 03/28/2018 05:41 AM, Alexei Starovoitov wrote: [...] > diff --git a/net/ipv4/af_inet.c b/net/ipv4/af_inet.c > index e8c7fad8c329..2dec266507dc 100644 > --- a/net/ipv4/af_inet.c > +++ b/net/ipv4/af_inet.c > @@ -450,6 +450,13 @@ int inet_bind(struct socket *sock, struct sockaddr > *uaddr, int

[PATCH v2 bpf-next 3/9] bpf: Hooks for sys_bind

2018-03-27 Thread Alexei Starovoitov
From: Andrey Ignatov == The problem == There is a use-case when all processes inside a cgroup should use one single IP address on a host that has multiple IP configured. Those processes should use the IP for both ingress and egress, for TCP and UDP traffic. So TCP/UDP servers