netfilter: xt_qtaguid: recognize IPV6 interfaces. root is procfs privileged.
authorJP Abgrall <jpa@google.com>
Tue, 9 Aug 2011 18:53:11 +0000 (11:53 -0700)
committerDan Willemsen <dwillemsen@nvidia.com>
Thu, 1 Dec 2011 05:38:59 +0000 (21:38 -0800)
commit1a7647f77e16b1e21cd0076d36f81ff22f9be67c
tree8aad10b49cfa480e507652254a7cb73af60efc03
parentb5db759f080468b498bac9db78a0fe40088685f6
netfilter: xt_qtaguid: recognize IPV6 interfaces. root is procfs privileged.

* Allow tracking interfaces that only have an ipv6 address.
  Deal with ipv6 notifier chains that do NETDEV_UP without the rtnl_lock()
* Allow root all access to procfs ctrl/stats.
  To disable all checks:
    echo 0 > /sys/module/xt_qtaguid/parameters/ctrl_write_gid
    echo 0 > /sys/module/xt_qtaguid/parameters/stats_readall_gid
* Add CDEBUG define to enable pr_debug output specific to
    procfs ctrl/stats access.

Change-Id: I9a469511d92fe42734daff6ea2326701312a161b
Signed-off-by: JP Abgrall <jpa@google.com>
net/netfilter/xt_qtaguid.c