 David Howells
|
a6f76f23d2
CRED: Make execve() take advantage of copy-on-write credentials
|
16 年 前 |
|
David Howells
|
d84f4f992c
CRED: Inaugurate COW credentials
|
16 年 前 |
|
David Howells
|
c69e8d9c01
CRED: Use RCU to access another task's creds and to release a task's own creds
|
16 年 前 |
|
David Howells
|
86a264abe5
CRED: Wrap current->cred and a few other accessors
|
16 年 前 |
|
David Howells
|
b6dff3ec5e
CRED: Separate task security context from task_struct
|
16 年 前 |
|
David Howells
|
15a2460ed0
CRED: Constify the kernel_cap_t arguments to the capset LSM hooks
|
16 年 前 |
|
David Howells
|
1cdcbec1a3
CRED: Neuter sys_capset()
|
16 年 前 |
|
David Howells
|
b103c59883
CRED: Wrap task credential accesses in the capabilities code
|
16 年 前 |
 Eric Paris
|
06112163f5
Add a new capable interface that will be used by systems that use audit to
|
16 年 前 |
|
Eric Paris
|
3fc689e96c
Any time fcaps or a setuid app under SECURE_NOROOT is used to result in a
|
16 年 前 |
|
Eric Paris
|
c0b004413a
This patch add a generic cpu endian caps structure and externally available
|
16 年 前 |
 Serge E. Hallyn
|
1f29fae297
file capabilities: add no_file_caps switch (v4)
|
16 年 前 |
|
Serge Hallyn
|
3318a386e4
file caps: always start with clear bprm->caps_*
|
16 年 前 |
|
Serge E. Hallyn
|
de45e806a8
file capabilities: uninline cap_safe_nice
|
16 年 前 |
|
David Howells
|
5cd9c58fbe
security: Fix setting of PF_SUPERPRIV by __capable()
|
16 年 前 |
 Andrew G. Morgan
|
5459c164f0
security: protect legacy applications from executing with insufficient privilege
|
17 年 前 |
 Stephen Smalley
|
006ebb40d3
Security: split proc ptrace checking into read vs. attach
|
17 年 前 |
|
Andrew G. Morgan
|
1209726ce9
security: filesystem capabilities: fix CAP_SETPCAP handling
|
17 年 前 |
|
David Howells
|
8f0cfa52a1
xattr: add missing consts to function arguments
|
17 年 前 |
|
Andrew G. Morgan
|
3898b1b4eb
capabilities: implement per-process securebits
|
17 年 前 |
 Harvey Harrison
|
dd6f953adb
security: replace remaining __FUNCTION__ occurrences
|
17 年 前 |
 Serge Hallyn
|
aedb60a67c
file capabilities: remove cap_task_kill()
|
17 年 前 |
|
Serge E. Hallyn
|
094972840f
file capabilities: simplify signal check
|
17 年 前 |
|
Serge E. Hallyn
|
3b7391de67
capabilities: introduce per-process capability bounding set
|
17 年 前 |
|
Andrew Morgan
|
e338d263a7
Add 64-bit capability support to the kernel
|
17 年 前 |
 Andrew Morton
|
8f6936f4d2
revert "capabilities: clean up file capability reading"
|
17 年 前 |
|
Andrew G. Morgan
|
a6dbb1ef2f
Fix filesystem capability support
|
17 年 前 |
|
Serge E. Hallyn
|
8ec2328f11
file capabilities: don't prevent signaling setuid root programs
|
17 年 前 |
|
Serge E. Hallyn
|
91ad997a34
file capabilities: allow sigcont within session
|
17 年 前 |
|
Serge E. Hallyn
|
b68680e473
capabilities: clean up file capability reading
|
17 年 前 |
