rtime.felk.cvut.cz Git - can-eth-gw-linux.git/commit

author	Eric W. Biederman <ebiederm@xmission.com>
	Fri, 16 Nov 2012 03:03:08 +0000 (03:03 +0000)
committer	David S. Miller <davem@davemloft.net>
	Mon, 19 Nov 2012 01:33:00 +0000 (20:33 -0500)
commit	cb99050305f0ffed0d0ee0d95f1d6645af4d3237
tree	e9e215981cf3ad1487c5d5ede58bc34c0f97ddb1	tree \| snapshot
parent	df008c91f83583e662ac54aee00004afc3f1894d	commit \| diff

net: Allow userns root to control the network bridge code.

Allow an unpriviled user who has created a user namespace, and then
created a network namespace to effectively use the new network
namespace, by reducing capable(CAP_NET_ADMIN) and
capable(CAP_NET_RAW) calls to be ns_capable(net->user_ns,
CAP_NET_ADMIN), or capable(net->user_ns, CAP_NET_RAW) calls.

Allow setting bridge paramters via sysfs.

Allow all of the bridge ioctls:
BRCTL_ADD_IF
BRCTL_DEL_IF
BRCTL_SET_BRDIGE_FORWARD_DELAY
BRCTL_SET_BRIDGE_HELLO_TIME
BRCTL_SET_BRIDGE_MAX_AGE
BRCTL_SET_BRIDGE_AGING_TIME
BRCTL_SET_BRIDGE_STP_STATE
BRCTL_SET_BRIDGE_PRIORITY
BRCTL_SET_PORT_PRIORITY
BRCTL_SET_PATH_COST
BRCTL_ADD_BRIDGE
BRCTL_DEL_BRDIGE

Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

net/bridge/br_ioctl.c		diff \| blob \| history
net/bridge/br_sysfs_br.c		diff \| blob \| history
net/bridge/br_sysfs_if.c		diff \| blob \| history