review.tizen.org Git - platform/kernel/linux-exynos.git/commit

author	Lukasz Pawelczyk <l.pawelczyk@samsung.com>
	Fri, 10 May 2019 11:46:22 +0000 (13:46 +0200)
committer	Seung-Woo Kim <sw0312.kim@samsung.com>
	Wed, 3 Jul 2019 10:01:35 +0000 (19:01 +0900)
commit	e3bd7e7ec6cf1d9661f3cdc7f31231b29913cabc
tree	878cb60ac5ab6b3deec8b200478817f333585f50	tree \| snapshot
parent	8d40f3e556f9473254b6ac1dc0c0f564f1cdcd08	commit \| diff

netfilter: xt_owner: Add supplementary groups option

The XT_OWNER_SUPPL_GROUPS flag causes GIDs specified with XT_OWNER_GID
to be also checked in the supplementary groups of a process.

f_cred->group_info cannot be modified during its lifetime and f_cred
holds a reference to it so it's safe to use.

Signed-off-by: Lukasz Pawelczyk <l.pawelczyk@samsung.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
[sw0312.kim: backport from mainline to apply supplementary groups on netfilter]
Signed-off-by: Seung-Woo Kim <sw0312.kim@samsung.com>
Change-Id: Ie2e4c64388b4c64794ebc73de9bacf206eb46173

include/uapi/linux/netfilter/xt_owner.h		diff \| blob \| history
net/netfilter/xt_owner.c		diff \| blob \| history