diff options
Diffstat (limited to 'net/ipv4/ping.c')
| -rw-r--r-- | net/ipv4/ping.c | 22 |
1 files changed, 9 insertions, 13 deletions
diff --git a/net/ipv4/ping.c b/net/ipv4/ping.c index 6232d476f37e..8f3d05424a3e 100644 --- a/net/ipv4/ping.c +++ b/net/ipv4/ping.c | |||
| @@ -185,10 +185,10 @@ exit: | |||
| 185 | return sk; | 185 | return sk; |
| 186 | } | 186 | } |
| 187 | 187 | ||
| 188 | static void inet_get_ping_group_range_net(struct net *net, gid_t *low, | 188 | static void inet_get_ping_group_range_net(struct net *net, kgid_t *low, |
| 189 | gid_t *high) | 189 | kgid_t *high) |
| 190 | { | 190 | { |
| 191 | gid_t *data = net->ipv4.sysctl_ping_group_range; | 191 | kgid_t *data = net->ipv4.sysctl_ping_group_range; |
| 192 | unsigned int seq; | 192 | unsigned int seq; |
| 193 | 193 | ||
| 194 | do { | 194 | do { |
| @@ -203,19 +203,13 @@ static void inet_get_ping_group_range_net(struct net *net, gid_t *low, | |||
| 203 | static int ping_init_sock(struct sock *sk) | 203 | static int ping_init_sock(struct sock *sk) |
| 204 | { | 204 | { |
| 205 | struct net *net = sock_net(sk); | 205 | struct net *net = sock_net(sk); |
| 206 | gid_t group = current_egid(); | 206 | kgid_t group = current_egid(); |
| 207 | gid_t range[2]; | ||
| 208 | struct group_info *group_info = get_current_groups(); | 207 | struct group_info *group_info = get_current_groups(); |
| 209 | int i, j, count = group_info->ngroups; | 208 | int i, j, count = group_info->ngroups; |
| 210 | kgid_t low, high; | 209 | kgid_t low, high; |
| 211 | 210 | ||
| 212 | inet_get_ping_group_range_net(net, range, range+1); | 211 | inet_get_ping_group_range_net(net, &low, &high); |
| 213 | low = make_kgid(&init_user_ns, range[0]); | 212 | if (gid_lte(low, group) && gid_lte(group, high)) |
| 214 | high = make_kgid(&init_user_ns, range[1]); | ||
| 215 | if (!gid_valid(low) || !gid_valid(high) || gid_lt(high, low)) | ||
| 216 | return -EACCES; | ||
| 217 | |||
| 218 | if (range[0] <= group && group <= range[1]) | ||
| 219 | return 0; | 213 | return 0; |
| 220 | 214 | ||
| 221 | for (i = 0; i < group_info->nblocks; i++) { | 215 | for (i = 0; i < group_info->nblocks; i++) { |
| @@ -845,7 +839,9 @@ static void ping_format_sock(struct sock *sp, struct seq_file *f, | |||
| 845 | bucket, src, srcp, dest, destp, sp->sk_state, | 839 | bucket, src, srcp, dest, destp, sp->sk_state, |
| 846 | sk_wmem_alloc_get(sp), | 840 | sk_wmem_alloc_get(sp), |
| 847 | sk_rmem_alloc_get(sp), | 841 | sk_rmem_alloc_get(sp), |
| 848 | 0, 0L, 0, sock_i_uid(sp), 0, sock_i_ino(sp), | 842 | 0, 0L, 0, |
| 843 | from_kuid_munged(seq_user_ns(f), sock_i_uid(sp)), | ||
| 844 | 0, sock_i_ino(sp), | ||
| 849 | atomic_read(&sp->sk_refcnt), sp, | 845 | atomic_read(&sp->sk_refcnt), sp, |
| 850 | atomic_read(&sp->sk_drops), len); | 846 | atomic_read(&sp->sk_drops), len); |
| 851 | } | 847 | } |