mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
synced 2025-01-10 23:29:46 +00:00
[NETFILTER]: nfnetlink_log: include GID in netlink message
Similar to Maciej Soltysiak's ipt_LOG patch, include GID in addition to UID in netlink message. Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: David S. Miller <davem@davemloft.net>
This commit is contained in:
parent
0dfedd2874
commit
76aa1ce139
@ -47,6 +47,7 @@ enum nfulnl_attr_type {
|
|||||||
NFULA_UID, /* user id of socket */
|
NFULA_UID, /* user id of socket */
|
||||||
NFULA_SEQ, /* instance-local sequence number */
|
NFULA_SEQ, /* instance-local sequence number */
|
||||||
NFULA_SEQ_GLOBAL, /* global sequence number */
|
NFULA_SEQ_GLOBAL, /* global sequence number */
|
||||||
|
NFULA_GID, /* group id of socket */
|
||||||
|
|
||||||
__NFULA_MAX
|
__NFULA_MAX
|
||||||
};
|
};
|
||||||
|
@ -467,9 +467,11 @@ __build_packet_message(struct nfulnl_instance *inst,
|
|||||||
read_lock_bh(&skb->sk->sk_callback_lock);
|
read_lock_bh(&skb->sk->sk_callback_lock);
|
||||||
if (skb->sk->sk_socket && skb->sk->sk_socket->file) {
|
if (skb->sk->sk_socket && skb->sk->sk_socket->file) {
|
||||||
__be32 uid = htonl(skb->sk->sk_socket->file->f_uid);
|
__be32 uid = htonl(skb->sk->sk_socket->file->f_uid);
|
||||||
|
__be32 gid = htons(skb->sk->sk_socket->file->f_gid);
|
||||||
/* need to unlock here since NLA_PUT may goto */
|
/* need to unlock here since NLA_PUT may goto */
|
||||||
read_unlock_bh(&skb->sk->sk_callback_lock);
|
read_unlock_bh(&skb->sk->sk_callback_lock);
|
||||||
NLA_PUT_BE32(inst->skb, NFULA_UID, uid);
|
NLA_PUT_BE32(inst->skb, NFULA_UID, uid);
|
||||||
|
NLA_PUT_BE32(inst->skb, NFULA_GID, gid);
|
||||||
} else
|
} else
|
||||||
read_unlock_bh(&skb->sk->sk_callback_lock);
|
read_unlock_bh(&skb->sk->sk_callback_lock);
|
||||||
}
|
}
|
||||||
@ -564,6 +566,7 @@ nfulnl_log_packet(unsigned int pf,
|
|||||||
#endif
|
#endif
|
||||||
+ nla_total_size(sizeof(u_int32_t)) /* mark */
|
+ nla_total_size(sizeof(u_int32_t)) /* mark */
|
||||||
+ nla_total_size(sizeof(u_int32_t)) /* uid */
|
+ nla_total_size(sizeof(u_int32_t)) /* uid */
|
||||||
|
+ nla_total_size(sizeof(u_int32_t)) /* gid */
|
||||||
+ nla_total_size(plen) /* prefix */
|
+ nla_total_size(plen) /* prefix */
|
||||||
+ nla_total_size(sizeof(struct nfulnl_msg_packet_hw))
|
+ nla_total_size(sizeof(struct nfulnl_msg_packet_hw))
|
||||||
+ nla_total_size(sizeof(struct nfulnl_msg_packet_timestamp));
|
+ nla_total_size(sizeof(struct nfulnl_msg_packet_timestamp));
|
||||||
|
Loading…
x
Reference in New Issue
Block a user