| Commit message (Expand) | Author | Age | Files | Lines |
* | Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 2019-03-07 | 1 | -0/+2 |
|\ |
|
| * | audit: add support for fcaps v3 | Richard Guy Briggs | 2019-01-25 | 1 | -0/+2 |
* | | LSM: Update function documentation for cap_capable | Micah Morton | 2019-02-26 | 1 | -1/+1 |
* | | LSM: generalize flag passing to security_capable | Micah Morton | 2019-01-10 | 1 | -8/+9 |
* | | capability: Initialize as LSM_ORDER_FIRST | Kees Cook | 2019-01-08 | 1 | -1/+8 |
|/ |
|
* | security: audit and remove any unnecessary uses of module.h | Paul Gortmaker | 2018-12-12 | 1 | -1/+0 |
* | Merge tag 'v4.19-rc2' into next-general | James Morris | 2018-09-04 | 1 | -1/+1 |
|\ |
|
| * | cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias() | Eddie.Horng | 2018-08-11 | 1 | -1/+1 |
* | | security/capabilities: remove check for -EINVAL | Christian Brauner | 2018-08-29 | 1 | -3/+0 |
|/ |
|
* | capabilities: Allow privileged user in s_user_ns to set security.* xattrs | Eric W. Biederman | 2018-05-24 | 1 | -2/+6 |
* | commoncap: Handle memory allocation failure. | Tetsuo Handa | 2018-04-11 | 1 | -0/+2 |
* | capabilities: fix buffer overread on very short xattr | Eric Biggers | 2018-01-02 | 1 | -12/+9 |
* | Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 2017-11-13 | 1 | -65/+128 |
|\ |
|
| * | capabilities: audit log other surprising conditions | Richard Guy Briggs | 2017-10-20 | 1 | -7/+22 |
| * | capabilities: fix logic for effective root or real root | Richard Guy Briggs | 2017-10-20 | 1 | -3/+2 |
| * | capabilities: invert logic for clarity | Richard Guy Briggs | 2017-10-20 | 1 | -4/+4 |
| * | capabilities: remove a layer of conditional logic | Richard Guy Briggs | 2017-10-20 | 1 | -13/+10 |
| * | capabilities: move audit log decision to function | Richard Guy Briggs | 2017-10-20 | 1 | -20/+30 |
| * | capabilities: use intuitive names for id changes | Richard Guy Briggs | 2017-10-20 | 1 | -6/+22 |
| * | capabilities: use root_priveleged inline to clarify logic | Richard Guy Briggs | 2017-10-20 | 1 | -2/+4 |
| * | capabilities: rename has_cap to has_fcap | Richard Guy Briggs | 2017-10-20 | 1 | -10/+10 |
| * | capabilities: intuitive names for cap gain status | Richard Guy Briggs | 2017-10-20 | 1 | -7/+11 |
| * | capabilities: factor out cap_bprm_set_creds privileged root | Richard Guy Briggs | 2017-10-20 | 1 | -28/+48 |
* | | commoncap: move assignment of fs_ns to avoid null pointer dereference | Colin Ian King | 2017-10-19 | 1 | -1/+2 |
|/ |
|
* | Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 2017-09-24 | 1 | -3/+3 |
|\ |
|
| * | security: fix description of values returned by cap_inode_need_killpriv | Stefan Berger | 2017-09-24 | 1 | -3/+3 |
* | | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi... | Linus Torvalds | 2017-09-12 | 1 | -21/+256 |
|\ \ |
|
| * | | Introduce v3 namespaced file capabilities | Serge E. Hallyn | 2017-09-01 | 1 | -19/+251 |
| * | | security: Use user_namespace::level to avoid redundant iterations in cap_capa... | Kirill Tkhai | 2017-07-20 | 1 | -2/+5 |
| |/ |
|
* | | commoncap: Move cap_elevated calculation into bprm_set_creds | Kees Cook | 2017-08-01 | 1 | -42/+10 |
* | | commoncap: Refactor to remove bprm_secureexec hook | Kees Cook | 2017-08-01 | 1 | -4/+8 |
|/ |
|
* | security: mark LSM hooks as __ro_after_init | James Morris | 2017-03-06 | 1 | -1/+1 |
* | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi... | Linus Torvalds | 2017-02-24 | 1 | -2/+3 |
|\ |
|
| * | exec: Remove LSM_UNSAFE_PTRACE_CAP | Eric W. Biederman | 2017-01-24 | 1 | -1/+1 |
| * | exec: Test the ptracer's saved cred to see if the tracee can gain caps | Eric W. Biederman | 2017-01-24 | 1 | -1/+2 |
| * | exec: Don't reset euid and egid when the tracee has CAP_SETUID | Eric W. Biederman | 2017-01-24 | 1 | -1/+1 |
* | | LSM: Add /sys/kernel/security/lsm | Casey Schaufler | 2017-01-19 | 1 | -1/+2 |
|/ |
|
* | xattr: Add __vfs_{get,set,remove}xattr helpers | Andreas Gruenbacher | 2016-10-08 | 1 | -15/+10 |
* | fs: Treat foreign mounts as nosuid | Andy Lutomirski | 2016-06-24 | 1 | -1/+7 |
* | fs: Limit file caps to the user namespace of the super block | Seth Forshee | 2016-06-24 | 1 | -0/+2 |
* | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir... | Linus Torvalds | 2016-05-17 | 1 | -3/+3 |
|\ |
|
| * | ->getxattr(): pass dentry and inode as separate arguments | Al Viro | 2016-04-11 | 1 | -3/+3 |
* | | security: Introduce security_settime64() | Baolin Wang | 2016-04-22 | 1 | -1/+1 |
|/ |
|
* | ptrace: use fsuid, fsgid, effective creds for fs access checks | Jann Horn | 2016-01-21 | 1 | -1/+6 |
* | capabilities: add a securebit to disable PR_CAP_AMBIENT_RAISE | Andy Lutomirski | 2015-09-05 | 1 | -1/+2 |
* | capabilities: ambient capabilities | Andy Lutomirski | 2015-09-05 | 1 | -10/+92 |
* | LSM: Switch to lists of hooks | Casey Schaufler | 2015-05-12 | 1 | -8/+33 |
* | VFS: security/: d_backing_inode() annotations | David Howells | 2015-04-15 | 1 | -3/+3 |
* | file->f_path.dentry is pinned down for as long as the file is open... | Al Viro | 2015-01-26 | 1 | -5/+1 |
* | kill f_dentry uses | Al Viro | 2014-11-19 | 1 | -1/+1 |