Owner match misnaming
Amin Azez
azez at ufomechanic.net
Mon Jul 11 14:12:52 CEST 2005
Jan Engelhardt wrote:
> Hi,
>
>
> |OWNER match v1.3.1 options:
> |[!] --uid-owner userid Match local uid
> |[!] --gid-owner groupid Match local gid
>
> After analyzing the kernel part because some packets obviously did not match
> my rules, I notice that these are in reality the socket owner's uid, and not
> the process's uid.
>
> I already started a patch to add process [ug]{,e,s,fs}id to the owner
> kernel and user modules, but according to the comments in the kernel code,
> they would just be as SMP-unsafe as the pid/sid/comm code.
>
> Ideas? Why, after all, is this the case?
> BTW,
> /* files->file_lock can not be used in a BH */
> a BH is a buffer head, at least in the linux kernel...
I think BH means bottom-half, referring to the work-side of an
interrupt. I read
http://library.n0i.net/linux-unix/administration/unreliable-guides/kernel-locking/lklockingguide.html
or http://www.kernel.org/pub/linux/kernel/people/rusty/kernel-locking/
They talk about the differnt contraints and BH
Azez
More information about the netfilter-devel
mailing list