Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / mainline / linux / refs/heads/master / security / commoncap.c
  1. bd30336 fs: support mapped mounts of mapped filesystems by Christian Brauner · 3 years, 1 month ago
  2. 4472071 fs: use low-level mapping helpers by Christian Brauner · 3 years, 1 month ago
  3. a793d79 fs: move mapping helpers by Christian Brauner · 3 years, 1 month ago
  4. acd3d28 Merge tag 'fixes-v5.13' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 3 years, 8 months ago
  5. 049ae60 security: commoncap: clean up kernel-doc comments by Randy Dunlap · 3 years, 9 months ago
  6. 82e5d8c security: commoncap: fix -Wstringop-overread warning by Arnd Bergmann · 3 years, 9 months ago
  7. 3b0c2d3 Revert 95ebabde382c ("capabilities: Don't allow writing ambiguous v3 file capabilities") by Eric W. Biederman · 3 years, 10 months ago
  8. 7d6beb7 Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kernel/git/brauner/linux by Linus Torvalds · 3 years, 10 months ago
  9. 7b0b78d Merge branch 'userns-for-v5.12' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace by Linus Torvalds · 3 years, 10 months ago
  10. f2b00be cap: fix conversions on getxattr by Miklos Szeredi · 4 years ago
  11. 71bc356 commoncap: handle idmapped mounts by Christian Brauner · 4 years ago
  12. c7c7a1a1 xattr: handle idmapped mounts by Tycho Andersen · 4 years ago
  13. e65ce2a acl: handle idmapped mounts by Christian Brauner · 4 years ago
  14. 0558c1b capability: handle idmapped mounts by Christian Brauner · 4 years ago
  15. 95ebabd capabilities: Don't allow writing ambiguous v3 file capabilities by Eric W. Biederman · 4 years ago
  16. 7c03e2c vfs: move cap_convert_nscap() call into vfs_setxattr() by Miklos Szeredi · 4 years ago
  17. 56305aa exec: Compute file based creds only once by Eric W. Biederman · 4 years, 7 months ago
  18. a786832 exec: Add a per bprm->file version of per_clear by Eric W. Biederman · 4 years, 7 months ago
  19. e32f887 Merge commit a4ae32c71fe9 ("exec: Always set cap_ambient in cap_bprm_set_creds") by Eric W. Biederman · 4 years, 7 months ago
  20. a4ae32c exec: Always set cap_ambient in cap_bprm_set_creds by Eric W. Biederman · 4 years, 7 months ago
  21. 112b714 exec: Convert security_bprm_set_creds into security_bprm_repopulate_creds by Eric W. Biederman · 4 years, 8 months ago
  22. 9d22167 Merge branch 'next-lsm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 5 years ago
  23. c5eaab1 security/commoncap: Use xattr security prefix len by Carmeli Tamir · 5 years ago
  24. d1c5947 security: Make capability_hooks static by YueHaibing · 6 years ago
  25. 2874c5f treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152 by Thomas Gleixner · 6 years ago
  26. be37f21 Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit by Linus Torvalds · 6 years ago
  27. e88ed48 LSM: Update function documentation for cap_capable by Micah Morton · 6 years ago
  28. 2fec30e audit: add support for fcaps v3 by Richard Guy Briggs · 6 years ago
  29. c1a85a0 LSM: generalize flag passing to security_capable by Micah Morton · 6 years ago
  30. d117a15 capability: Initialize as LSM_ORDER_FIRST by Kees Cook · 6 years ago
  31. 876979c security: audit and remove any unnecessary uses of module.h by Paul Gortmaker · 6 years ago
  32. e42f6f9 Merge tag 'v4.19-rc2' into next-general by James Morris · 6 years ago
  33. 4408e300a security/capabilities: remove check for -EINVAL by Christian Brauner · 6 years ago
  34. 355139a cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias() by Eddie.Horng · 6 years ago
  35. b1d749c5 capabilities: Allow privileged user in s_user_ns to set security.* xattrs by Eric W. Biederman · 8 years ago
  36. 1f57817 commoncap: Handle memory allocation failure. by Tetsuo Handa · 7 years ago
  37. dc32b5c capabilities: fix buffer overread on very short xattr by Eric Biggers · 7 years ago
  38. 55b3a0c Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 7 years ago
  39. dbbbe11 capabilities: audit log other surprising conditions by Richard Guy Briggs · 7 years ago
  40. 588fb2c capabilities: fix logic for effective root or real root by Richard Guy Briggs · 7 years ago
  41. c0d1ade capabilities: invert logic for clarity by Richard Guy Briggs · 7 years ago
  42. 02ebbaf capabilities: remove a layer of conditional logic by Richard Guy Briggs · 7 years ago
  43. 9fbc2c7 capabilities: move audit log decision to function by Richard Guy Briggs · 7 years ago
  44. 81a6a01 capabilities: use intuitive names for id changes by Richard Guy Briggs · 7 years ago
  45. 9304b46 capabilities: use root_priveleged inline to clarify logic by Richard Guy Briggs · 7 years ago
  46. fc7eadf capabilities: rename has_cap to has_fcap by Richard Guy Briggs · 7 years ago
  47. 4c7e715 capabilities: intuitive names for cap gain status by Richard Guy Briggs · 7 years ago
  48. db1a892 capabilities: factor out cap_bprm_set_creds privileged root by Richard Guy Briggs · 7 years ago
  49. 76ba89c7 commoncap: move assignment of fs_ns to avoid null pointer dereference by Colin Ian King · 7 years ago
  50. a302824 Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security by Linus Torvalds · 7 years ago
  51. ab5348c security: fix description of values returned by cap_inode_need_killpriv by Stefan Berger · 7 years ago
  52. dd198ce Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace by Linus Torvalds · 7 years ago
  53. 8db6c34 Introduce v3 namespaced file capabilities by Serge E. Hallyn · 8 years ago
  54. ee67ae7 commoncap: Move cap_elevated calculation into bprm_set_creds by Kees Cook · 7 years ago
  55. 46d98eb commoncap: Refactor to remove bprm_secureexec hook by Kees Cook · 7 years ago
  56. 64db4c7 security: Use user_namespace::level to avoid redundant iterations in cap_capable() by Kirill Tkhai · 8 years ago
  57. ca97d93 security: mark LSM hooks as __ro_after_init by James Morris · 8 years ago
  58. f1ef09f Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace by Linus Torvalds · 8 years ago
  59. 9227dd2 exec: Remove LSM_UNSAFE_PTRACE_CAP by Eric W. Biederman · 8 years ago
  60. 2052313 exec: Test the ptracer's saved cred to see if the tracee can gain caps by Eric W. Biederman · 8 years ago
  61. 7016942 exec: Don't reset euid and egid when the tracee has CAP_SETUID by Eric W. Biederman · 8 years ago
  62. d69dece5 LSM: Add /sys/kernel/security/lsm by Casey Schaufler · 8 years ago
  63. 5d6c319 xattr: Add __vfs_{get,set,remove}xattr helpers by Andreas Gruenbacher · 8 years ago
  64. 380cf5b fs: Treat foreign mounts as nosuid by Andy Lutomirski · 9 years ago
  65. d07b846 fs: Limit file caps to the user namespace of the super block by Seth Forshee · 9 years ago
  66. 7f427d3 Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs by Linus Torvalds · 9 years ago
  67. 457db29 security: Introduce security_settime64() by Baolin Wang · 9 years ago
  68. ce23e64 ->getxattr(): pass dentry and inode as separate arguments by Al Viro · 9 years ago
  69. caaee62 ptrace: use fsuid, fsgid, effective creds for fs access checks by Jann Horn · 9 years ago
  70. 746bf6d capabilities: add a securebit to disable PR_CAP_AMBIENT_RAISE by Andy Lutomirski · 9 years ago
  71. 5831905 capabilities: ambient capabilities by Andy Lutomirski · 9 years ago
  72. b1d9e6b LSM: Switch to lists of hooks by Casey Schaufler · 10 years ago
  73. c6f493d VFS: security/: d_backing_inode() annotations by David Howells · 10 years ago
  74. f4a4a8b file->f_path.dentry is pinned down for as long as the file is open... by Al Viro · 10 years ago
  75. b583043 kill f_dentry uses by Al Viro · 10 years ago
  76. 7d8b6c6 CAPABILITIES: remove undefined caps from all processes by Eric Paris · 10 years ago
  77. 6d6f332 commoncap: don't alloc the credential unless needed in cap_task_prctl by Tetsuo Handa · 10 years ago
  78. f54fb86 capabilities: allow nice if we are privileged by Serge Hallyn · 11 years ago
  79. 160da84 userns: Allow PR_CAPBSET_DROP in a user namespace. by Eric W. Biederman · 11 years ago
  80. 182be68 kill f_vfsmnt by Al Viro · 12 years ago
  81. 520d9ea Fix cap_capable to only allow owners in the parent user namespace to have caps. by Eric W. Biederman · 12 years ago
  82. e546785 split ->file_mmap() into ->mmap_addr()/->mmap_file() by Al Viro · 13 years ago
  83. d007794 split cap_mmap_addr() out of cap_file_mmap() by Al Viro · 13 years ago
  84. 644473e Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace by Linus Torvalds · 13 years ago
  85. 898bfc1 Merge tag 'v3.4-rc5' into next by James Morris · 13 years ago
  86. 18815a1 userns: Convert capabilities related permsion checks by Eric W. Biederman · 13 years ago
  87. 078de5f userns: Store uid and gid values in struct cred with kuid_t and kgid_t types by Eric W. Biederman · 13 years ago
  88. 783291e userns: Simplify the user_namespace by making userns->creator a kuid. by Eric W. Biederman · 13 years ago
  89. 51b79be security: fix compile error in commoncap.c by Jonghwan Choi · 13 years ago
  90. d52fc5d fcaps: clear the same personality flags as suid when fcaps are used by Eric Paris · 13 years ago
  91. 259e5e6 Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from granting privs by Andy Lutomirski · 13 years ago
  92. aeb3ae9 userns: Add an explicit reference to the parent user namespace by Eric W. Biederman · 13 years ago
  93. c4a4d60 userns: Use cred->user_ns instead of cred->user->user_ns by Eric W. Biederman · 13 years ago
  94. 4040153 security: trim security.h by Al Viro · 13 years ago
  95. c49c41a Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-security by Linus Torvalds · 13 years ago
  96. fd77846 security: remove the security_netlink_recv hook as it is equivalent to capable() by Eric Paris · 13 years ago
  97. 6a9de49 capabilities: remove the task from capable LSM hook entirely by Eric Paris · 13 years ago
  98. 7d8db18 capabilities: initialize has_cap by Serge Hallyn · 13 years ago
  99. 4d49f67 capabilities: do not grant full privs for setuid w/ file caps + no effective caps by Zhi Li · 13 years ago
  100. 4bf2ea7 capabilities: do not special case exec of init by Eric Paris · 14 years ago