• Eric W. Biederman's avatar
    userns: Use kgids for sysctl_ping_group_range · 7064d16e
    Eric W. Biederman authored
    - Store sysctl_ping_group_range as a paire of kgid_t values
      instead of a pair of gid_t values.
    - Move the kgid conversion work from ping_init_sock into ipv4_ping_group_range
    - For invalid cases reset to the default disabled state.
    
    With the kgid_t conversion made part of the original value sanitation
    from userspace understand how the code will react becomes clearer
    and it becomes possible to set the sysctl ping group range from
    something other than the initial user namespace.
    
    Cc: Vasiliy Kulikov <segoon@openwall.com>
    Acked-by: default avatarDavid S. Miller <davem@davemloft.net>
    Signed-off-by: default avatarEric W. Biederman <ebiederm@xmission.com>
    7064d16e
sysctl_net_ipv4.c 20.4 KB