review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Lukasz Pawelczyk <l.pawelczyk@samsung.com>
	Fri, 10 May 2019 11:46:22 +0000 (13:46 +0200)
committer	Hoegeun Kwon <hoegeun.kwon@samsung.com>
	Mon, 4 Nov 2019 09:00:55 +0000 (18:00 +0900)
commit	e9aab876784d3422d3c585cb1b4880ce64ee91b9
tree	9125c2a9a86f1e3b3d03e2af707dcf2c2c01e333	tree \| snapshot
parent	c4924957f18ecf5d1bc25094da18760026c5b579	commit \| diff

netfilter: xt_owner: Add supplementary groups option

The XT_OWNER_SUPPL_GROUPS flag causes GIDs specified with XT_OWNER_GID
to be also checked in the supplementary groups of a process.

f_cred->group_info cannot be modified during its lifetime and f_cred
holds a reference to it so it's safe to use.

Signed-off-by: Lukasz Pawelczyk <l.pawelczyk@samsung.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
[sw0312.kim: backport from mainline to apply supplementary groups on netfilter]
Signed-off-by: Seung-Woo Kim <sw0312.kim@samsung.com>
Change-Id: I7a21fc112cde77ae708b84d4b48c8aee339a7642

include/uapi/linux/netfilter/xt_owner.h		diff \| blob \| history
net/netfilter/xt_owner.c		diff \| blob \| history