 Al Viro
|
182be68478
kill f_vfsmnt
|
12 years ago |
 Eric W. Biederman
|
520d9eabce
Fix cap_capable to only allow owners in the parent user namespace to have caps.
|
12 years ago |
|
Al Viro
|
e5467859f7
split ->file_mmap() into ->mmap_addr()/->mmap_file()
|
13 years ago |
|
Al Viro
|
d007794a18
split cap_mmap_addr() out of cap_file_mmap()
|
13 years ago |
 Linus Torvalds
|
644473e9c6
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace
|
13 years ago |
 James Morris
|
898bfc1d46
Merge tag 'v3.4-rc5' into next
|
13 years ago |
|
Eric W. Biederman
|
18815a1808
userns: Convert capabilities related permsion checks
|
13 years ago |
|
Eric W. Biederman
|
078de5f706
userns: Store uid and gid values in struct cred with kuid_t and kgid_t types
|
13 years ago |
|
Eric W. Biederman
|
783291e690
userns: Simplify the user_namespace by making userns->creator a kuid.
|
13 years ago |
 Jonghwan Choi
|
51b79bee62
security: fix compile error in commoncap.c
|
13 years ago |
 Eric Paris
|
d52fc5dde1
fcaps: clear the same personality flags as suid when fcaps are used
|
13 years ago |
 Andy Lutomirski
|
259e5e6c75
Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from granting privs
|
13 years ago |
|
Eric W. Biederman
|
aeb3ae9da9
userns: Add an explicit reference to the parent user namespace
|
13 years ago |
|
Eric W. Biederman
|
c4a4d60379
userns: Use cred->user_ns instead of cred->user->user_ns
|
13 years ago |
 Al Viro
|
4040153087
security: trim security.h
|
13 years ago |
|
Linus Torvalds
|
c49c41a413
Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-security
|
13 years ago |
|
Eric Paris
|
fd77846152
security: remove the security_netlink_recv hook as it is equivalent to capable()
|
13 years ago |
|
Eric Paris
|
6a9de49115
capabilities: remove the task from capable LSM hook entirely
|
13 years ago |
 Serge Hallyn
|
7d8db1808a
capabilities: initialize has_cap
|
14 years ago |
 Zhi Li
|
4d49f6710b
capabilities: do not grant full privs for setuid w/ file caps + no effective caps
|
14 years ago |
|
Eric Paris
|
4bf2ea77db
capabilities: do not special case exec of init
|
14 years ago |
 Serge E. Hallyn
|
8409cca705
userns: allow ptrace from non-init user namespaces
|
14 years ago |
|
Serge E. Hallyn
|
3486740a4f
userns: security: make capabilities relative to the user namespace
|
14 years ago |
|
Linus Torvalds
|
7a6362800c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6
|
14 years ago |
 Patrick McHardy
|
01a16b21d6
netlink: kill eff_cap from struct netlink_skb_parms
|
14 years ago |
 Richard Cochran
|
1e6d767924
time: Correct the *settime* parameters
|
14 years ago |
|
Eric Paris
|
12b3052c3e
capabilities/syslog: open code cap_syslog logic to fix build failure
|
14 years ago |
 Dan Rosenberg
|
eaf06b241b
Restrict unprivileged access to kernel syslog
|
14 years ago |
 KOSAKI Motohiro
|
b0ae198113
security: remove unused parameter from security_task_setscheduler()
|
14 years ago |
 David Howells
|
d7627467b7
Make do_execve() take a const filename pointer
|
15 years ago |
