Skip to content

Commit

Permalink
netfilter: x_tables: allow to use default cgroup match
Browse files Browse the repository at this point in the history 
There's actually no good reason why we cannot use cgroup id 0,
so lets just remove this artificial barrier.

Reported-by: Alexey Perevalov <a.perevalov@samsung.com>
Signed-off-by: Daniel Borkmann <dborkman@redhat.com>
Tested-by: Alexey Perevalov <a.perevalov@samsung.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
  • Loading branch information
Daniel Borkmann authored and Pablo Neira Ayuso committed Aug 19, 2014
1 parent 8993cf8 commit caa8ad9
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion net/netfilter/xt_cgroup.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,7 +31,7 @@ static int cgroup_mt_check(const struct xt_mtchk_param *par)
if (info->invert & ~1)
return -EINVAL;

return info->id ? 0 : -EINVAL;
return 0;
}

static bool
Expand Down

0 comments on commit caa8ad9

Please sign in to comment.