git.openpandora.org / pandora-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3f551f9) | patch
af_unix: Allow SO_PEERCRED to work across namespaces.
authorEric W. Biederman <ebiederm@xmission.com>
Sun, 13 Jun 2010 03:30:14 +0000 (03:30 +0000)
committerDavid S. Miller <davem@davemloft.net>
Wed, 16 Jun 2010 21:55:55 +0000 (14:55 -0700)
commit109f6e39fa07c48f580125f531f46cb7c245b528
tree9ec97679c227394a44ebede5768f92d970cea6ebtree | snapshot
parent3f551f9436c05a3b5eccdd6e94733df5bb98d2a5commit | diff
af_unix: Allow SO_PEERCRED to work across namespaces.

Use struct pid and struct cred to store the peer credentials on struct
sock.  This gives enough information to convert the peer credential
information to a value relative to whatever namespace the socket is in
at the time.

This removes nasty surprises when using SO_PEERCRED on socket
connetions where the processes on either side are in different pid and
user namespaces.

Signed-off-by: Eric W. Biederman <ebiederm@xmission.com>
Acked-by: Daniel Lezcano <daniel.lezcano@free.fr>
Acked-by: Pavel Emelyanov <xemul@openvz.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
include/net/sock.h diff | blob | history
net/core/sock.c diff | blob | history
net/unix/af_unix.c diff | blob | history
Pandora Kernel Repository