]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3732bb1) | patch
[NETFILTER] nfnetlink: unconditionally require CAP_NET_ADMIN
authorHarald Welte <laforge@netfilter.org>
Mon, 14 Nov 2005 23:24:59 +0000 (15:24 -0800)
committerDavid S. Miller <davem@davemloft.net>
Mon, 14 Nov 2005 23:24:59 +0000 (15:24 -0800)
commit739de852376a2f0642c68e99b521c2b869e4f929
treec76e0ba522d34c8b3021bf0f012632f7877f5281tree | snapshot
parent3732bb121a6553c3766c7187c1f8111791070619commit | diff
[NETFILTER] nfnetlink: unconditionally require CAP_NET_ADMIN

This patch unconditionally requires CAP_NET_ADMIN for all nfnetlink
messages.  It also removes the per-message cap_required field, since all
existing subsystems use CAP_NET_ADMIN for all their messages anyway.

Patrick McHardy owes me a beer if we ever need to re-introduce this.

Signed-off-by: Harald Welte <laforge@netfilter.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
include/linux/netfilter/nfnetlink.h diff | blob | history
net/ipv4/netfilter/ip_conntrack_netlink.c diff | blob | history
net/netfilter/nfnetlink.c diff | blob | history
net/netfilter/nfnetlink_log.c diff | blob | history
net/netfilter/nfnetlink_queue.c diff | blob | history
Linux Kernel Source Tree.