net: Enable a userns root rtnl calls that are safe for unprivilged users
- Only allow moving network devices to network namespaces you have CAP_NET_ADMIN privileges over. - Enable creating/deleting/modifying interfaces - Enable adding/deleting addresses - Enable adding/setting/deleting neighbour entries - Enable adding/removing routes - Enable adding/removing fib rules - Enable setting the forwarding state - Enable adding/removing ipv6 address labels - Enable setting bridge parameter Signed-off-by:"Eric W. Biederman" <ebiederm@xmission.com> Signed-off-by:
David S. Miller <davem@davemloft.net>
Showing
- net/bridge/br_netlink.c 0 additions, 3 deletionsnet/bridge/br_netlink.c
- net/core/fib_rules.c 0 additions, 6 deletionsnet/core/fib_rules.c
- net/core/neighbour.c 0 additions, 9 deletionsnet/core/neighbour.c
- net/core/rtnetlink.c 4 additions, 9 deletionsnet/core/rtnetlink.c
- net/ipv4/devinet.c 0 additions, 6 deletionsnet/ipv4/devinet.c
- net/ipv4/fib_frontend.c 0 additions, 6 deletionsnet/ipv4/fib_frontend.c
- net/ipv6/addrconf.c 0 additions, 6 deletionsnet/ipv6/addrconf.c
- net/ipv6/addrlabel.c 0 additions, 3 deletionsnet/ipv6/addrlabel.c
- net/ipv6/route.c 0 additions, 6 deletionsnet/ipv6/route.c
Please register or sign in to comment