review.tizen.org Git - platform/kernel/linux-rpi3.git/commit

author	Lukasz Pawelczyk <l.pawelczyk@samsung.com>
	Fri, 10 May 2019 11:46:22 +0000 (13:46 +0200)
committer	Seung-Woo Kim <sw0312.kim@samsung.com>
	Thu, 4 Jul 2019 12:43:17 +0000 (12:43 +0000)
commit	11e73f751371dc2a2b3a9e9a8d3bf568d0ba7adb
tree	2fa074ff777e4b5523722244d1fee1be741c024f	tree \| snapshot
parent	986793fd7f354927b0aa2c336cc9d3089d157aac	commit \| diff

netfilter: xt_owner: Add supplementary groups option

The XT_OWNER_SUPPL_GROUPS flag causes GIDs specified with XT_OWNER_GID
to be also checked in the supplementary groups of a process.

f_cred->group_info cannot be modified during its lifetime and f_cred
holds a reference to it so it's safe to use.

Signed-off-by: Lukasz Pawelczyk <l.pawelczyk@samsung.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
[sw0312.kim: backport from mainline to apply supplementary groups on netfilter]
Signed-off-by: Seung-Woo Kim <sw0312.kim@samsung.com>
Change-Id: I7a21fc112cde77ae708b84d4b48c8aee339a7642

include/uapi/linux/netfilter/xt_owner.h		diff \| blob \| history
net/netfilter/xt_owner.c		diff \| blob \| history