review.tizen.org Git - sdk/emulator/emulator-kernel.git/commit

author	Lukasz Pawelczyk <l.pawelczyk@samsung.com>
	Fri, 10 May 2019 11:46:22 +0000 (13:46 +0200)
committer	Manish Rathod <manish.r@samsung.com>
	Tue, 10 Sep 2019 12:06:57 +0000 (12:06 +0000)
commit	0d84ea3570c90a7cbf57e6922b7ae021b040923b
tree	d726977666fad397f538b8cbbfdfd80161f1cf01	tree \| snapshot
parent	9110996f48dacff93d18a45c5ce76a89f44f98b1	commit \| diff

netfilter: xt_owner: Add supplementary groups option

The XT_OWNER_SUPPL_GROUPS flag causes GIDs specified with XT_OWNER_GID
to be also checked in the supplementary groups of a process.

f_cred->group_info cannot be modified during its lifetime and f_cred
holds a reference to it so it's safe to use.

Signed-off-by: Lukasz Pawelczyk <l.pawelczyk@samsung.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
backport from mainline to apply supplementary groups on netfilter

Change-Id: I900d03042c82b4d5f13dec7695e4b1eba7f2aa74
(cherry picked from commit e7a26f2b0e8021c9415f0b92caf9538974720855)

include/uapi/linux/netfilter/xt_owner.h		diff \| blob \| history
net/netfilter/xt_owner.c		diff \| blob \| history