userns: Convert group_info values from gid_t to kgid_t.

As a first step to converting struct cred to be all kuid_t and kgid_t values convert the group values stored in group_info to always be kgid_t values. Unless user namespaces are used this change should have no effect. Acked-by: Serge Hallyn <serge.hallyn@canonical.com> Signed-off-by: Eric W. Biederman <ebiederm@xmission.com>
author: Eric W. Biederman <ebiederm@xmission.com> 2011-11-14 15:56:38 -0800
committer: Eric W. Biederman <ebiederm@xmission.com> 2012-05-03 03:27:21 -0700
commit: ae2975bc3476243b45a1e2344236d7920c268f38 (patch)
tree: e4b2a8472f6047734b6e7e2bdc994375b2790323 /net/sunrpc/auth_gss
parent: 22d917d80e842829d0ca0a561967d728eb1d6303 (diff)
1 files changed, 6 insertions, 1 deletions
diff --git a/net/sunrpc/auth_gss/svcauth_gss.c b/net/sunrpc/auth_gss/svcauth_gss.c
index 1600cfb1618c..28b62dbb6d1e 100644
--- a/net/sunrpc/auth_gss/svcauth_gss.c
+++ b/net/sunrpc/auth_gss/svcauth_gss.c
@@ -41,6 +41,7 @@
 #include <linux/types.h>
 #include <linux/module.h>
 #include <linux/pagemap.h>
+#include <linux/user_namespace.h>
 
 #include <linux/sunrpc/auth_gss.h>
 #include <linux/sunrpc/gss_err.h>
@@ -470,9 +471,13 @@ static int rsc_parse(struct cache_detail *cd,
 		status = -EINVAL;
 		for (i=0; i<N; i++) {
 			gid_t gid;
+			kgid_t kgid;
 			if (get_int(&mesg, &gid))
 				goto out;
-			GROUP_AT(rsci.cred.cr_group_info, i) = gid;
+			kgid = make_kgid(&init_user_ns, gid);
+			if (!gid_valid(kgid))
+				goto out;
+			GROUP_AT(rsci.cred.cr_group_info, i) = kgid;
 		}
 
 		/* mech name */
author	Eric W. Biederman <ebiederm@xmission.com>	2011-11-14 15:56:38 -0800
committer	Eric W. Biederman <ebiederm@xmission.com>	2012-05-03 03:27:21 -0700
commit	ae2975bc3476243b45a1e2344236d7920c268f38 (patch)
tree	e4b2a8472f6047734b6e7e2bdc994375b2790323 /net/sunrpc/auth_gss
parent	22d917d80e842829d0ca0a561967d728eb1d6303 (diff)