www.infradead.org Git - users/jedix/linux-maple.git/commit

author	Michal Koutný <mkoutny@suse.com>
	Tue, 1 Apr 2025 11:57:30 +0000 (13:57 +0200)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Thu, 24 Apr 2025 14:04:02 +0000 (16:04 +0200)
commit	3ba0032afea888d0edebf5ece3c6b36417189b63
tree	f439d17632f4e05814b64b838ef93eb4902e0d25	tree
parent	f4293c2baf6faa5f1a1638bcce698ed88d0d396e	commit \| diff

netfilter: xt_cgroup: Make it independent from net_cls

The xt_group matching supports the default hierarchy since commit
c38c4597e4bf3 ("netfilter: implement xt_cgroup cgroup2 path match").
The cgroup v1 matching (based on clsid) and cgroup v2 matching (based on
path) are rather independent. Downgrade the Kconfig dependency to
mere CONFIG_SOCK_GROUP_DATA so that xt_group can be built even without
CONFIG_NET_CLS_CGROUP for path matching.
Also add a message for users when they attempt to specify any clsid.

Link: https://lists.opensuse.org/archives/list/kernel@lists.opensuse.org/thread/S23NOILB7MUIRHSKPBOQKJHVSK26GP6X/
Cc: Jan Engelhardt <ej@inai.de>
Cc: Florian Westphal <fw@strlen.de>
Signed-off-by: Michal Koutný <mkoutny@suse.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

net/netfilter/Kconfig		diff \| blob \| history
net/netfilter/xt_cgroup.c		diff \| blob \| history