diff options
author | Eric W. Biederman <ebiederm@xmission.com> | 2012-11-16 03:03:09 +0000 |
---|---|---|
committer | David S. Miller <davem@davemloft.net> | 2012-11-18 20:33:00 -0500 |
commit | 276996fda0f33bd5e5e028c426f852ecd119372b (patch) | |
tree | f26b522e2ad3775b31b1ecc45c50a4ac9120988a /virt/kvm | |
parent | cb99050305f0ffed0d0ee0d95f1d6645af4d3237 (diff) | |
download | op-kernel-dev-276996fda0f33bd5e5e028c426f852ecd119372b.zip op-kernel-dev-276996fda0f33bd5e5e028c426f852ecd119372b.tar.gz |
net: Allow the userns root to control vlans.
Allow an unpriviled user who has created a user namespace, and then
created a network namespace to effectively use the new network
namespace, by reducing capable(CAP_NET_ADMIN) and
capable(CAP_NET_RAW) calls to be ns_capable(net->user_ns,
CAP_NET_ADMIN), or capable(net->user_ns, CAP_NET_RAW) calls.
Allow the vlan ioctls:
SET_VLAN_INGRESS_PRIORITY_CMD
SET_VLAN_EGRESS_PRIORITY_CMD
SET_VLAN_FLAG_CMD
SET_VLAN_NAME_TYPE_CMD
ADD_VLAN_CMD
DEL_VLAN_CMD
Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'virt/kvm')
0 files changed, 0 insertions, 0 deletions