review.tizen.org Git - platform/core/security/nether.git/commit

author	r.kubiak <r.kubiak@samsung.com>
	Thu, 24 Mar 2016 13:37:14 +0000 (14:37 +0100)
committer	Zbigniew Jasinski <z.jasinski@samsung.com>
	Wed, 6 Apr 2016 10:05:57 +0000 (12:05 +0200)
commit	9e953f0d0ae419416e37ca93d90c1c2d22d1cdbf
tree	388597c0c513f3331cc8cb3411e7646b3a472034	tree \| snapshot
parent	1def8cec17569950aa0868c913477b78406f3910	commit \| diff

nether internal logic follow up

- mark is always int32_t and -1 means that
  no packet marking is done, and the packet
  should go through normal iptables rules

- when not copying packet, address and port
  are zeroed to indicate this in logs

- the builtin privilege for cynara is used
  unless specified in the policy file or
  on the command line NETHER_CYNARA_INTERNET_PRIVILEGE

- new command line parameters for cynara
  backend are "policy" - defines the path
  of the policy file  and "privname" - defines
  the default privilege to use when doing
  cynara checks

Change-Id: I1b4a91685af7f27fff162317a63e15a2d1b7319c
Signed-off-by: Zbigniew Jasinski <z.jasinski@samsung.com>

conf/CMakeLists.txt		diff \| blob \| history
conf/file.policy	[moved from conf/nether.policy with 100% similarity]	blob \| history
conf/systemd/nether.service		diff \| blob \| history
conf/systemd/nether.service.in		diff \| blob \| history
include/nether_CynaraBackend.h		diff \| blob \| history
include/nether_Netlink.h		diff \| blob \| history
include/nether_Types.h		diff \| blob \| history
packaging/nether.spec		diff \| blob \| history
src/CMakeLists.txt		diff \| blob \| history
src/nether_CynaraBackend.cpp		diff \| blob \| history
src/nether_Netlink.cpp		diff \| blob \| history