diff options
author | Nayana Bidari <nybidari@google.com> | 2020-05-12 12:14:56 -0700 |
---|---|---|
committer | Nayana Bidari <nybidari@google.com> | 2020-05-12 12:20:47 -0700 |
commit | 27b1f19cabe04effbb37fa6a680b65987b379313 (patch) | |
tree | 057b99f838d1588cb8b5944c49cdef3f6522510e /pkg/sentry/mm/procfs.go | |
parent | 06ded1c4372d4871f0581c7090957935d93cd50e (diff) |
iptables: support gid match for owner matching.
- Added support for matching gid owner and invert flag for uid
and gid.
$ iptables -A OUTPUT -p tcp -m owner --gid-owner root -j ACCEPT
$ iptables -A OUTPUT -p tcp -m owner ! --uid-owner root -j ACCEPT
$ iptables -A OUTPUT -p tcp -m owner ! --gid-owner root -j DROP
- Added tests for uid, gid and invert flags.
Diffstat (limited to 'pkg/sentry/mm/procfs.go')
0 files changed, 0 insertions, 0 deletions