Age | Commit message (Expand) | Author | Files | Lines |
2023-12-12 | file: remove __receive_fd() | Christian Brauner | 1 | -1/+1 |
2023-08-17 | seccomp: Add missing kerndoc notations | Kees Cook | 1 | -4/+10 |
2023-07-17 | seccomp: add the synchronous mode for seccomp_unotify | Andrei Vagin | 1 | -2/+29 |
2023-07-17 | seccomp: don't use semaphore and wait_queue together | Andrei Vagin | 1 | -5/+36 |
2023-04-13 | seccomp: simplify sysctls with register_sysctl_init() | Luis Chamberlain | 1 | -14/+1 |
2023-01-13 | seccomp: fix kernel-doc function name warning | Randy Dunlap | 1 | -1/+1 |
2022-05-03 | seccomp: Add wait_killable semantic to seccomp user notifier | Sargun Dhillon | 1 | -2/+40 |
2022-04-29 | seccomp: Use FIFO semantics to order notifications | Sargun Dhillon | 1 | -1/+1 |
2022-03-28 | Merge tag 'ptrace-cleanups-for-v5.18' of git://git.kernel.org/pub/scm/linux/k... | Linus Torvalds | 1 | -1/+0 |
2022-03-10 | tracehook: Remove tracehook.h | Eric W. Biederman | 1 | -1/+0 |
2022-02-10 | seccomp: Invalidate seccomp mode to catch death failures | Kees Cook | 1 | -0/+10 |
2021-09-01 | Merge branch 'exit-cleanups-for-v5.15' of git://git.kernel.org/pub/scm/linux/... | Linus Torvalds | 1 | -35/+7 |
2021-08-26 | signal/seccomp: Dump core when there is only one live thread | Eric W. Biederman | 1 | -1/+1 |
2021-08-26 | signal/seccomp: Refactor seccomp signal and coredump generation | Eric W. Biederman | 1 | -34/+6 |
2021-08-11 | seccomp: Fix setting loaded filter count during TSYNC | Hsuan-Chi Kuo | 1 | -1/+1 |
2021-06-28 | seccomp: Support atomic "addfd + send reply" | Rodrigo Campos | 1 | -6/+45 |
2021-05-29 | seccomp: Refactor notification handler to prepare for new semantics | Sargun Dhillon | 1 | -14/+16 |
2021-05-03 | Merge branch 'work.file' of git://git.kernel.org/pub/scm/linux/kernel/git/vir... | Linus Torvalds | 1 | -5/+12 |
2021-04-16 | fs: split receive_fd_replace from __receive_fd | Christoph Hellwig | 1 | -5/+12 |
2021-03-30 | seccomp: Fix "cacheable" typo in comments | Cui GaoSheng | 1 | -1/+1 |
2021-02-10 | seccomp: Improve performace by optimizing rmb() | wanghongzhe | 1 | -1/+1 |
2021-01-11 | seccomp: Add missing return in non-void function | Paul Cercueil | 1 | -0/+2 |
2020-12-16 | Merge tag 'seccomp-v5.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 1 | -3/+293 |
2020-12-14 | Merge tag 'core-entry-2020-12-14' of git://git.kernel.org/pub/scm/linux/kerne... | Linus Torvalds | 1 | -3/+3 |
2020-11-20 | Merge branch 'for-linus/seccomp' into for-next/seccomp | Kees Cook | 1 | -3/+2 |
2020-11-20 | seccomp: Remove bogus __user annotations | Jann Horn | 1 | -2/+2 |
2020-11-20 | seccomp/cache: Report cache data through /proc/pid/seccomp_cache | YiFei Zhu | 1 | -0/+59 |
2020-11-20 | seccomp/cache: Add "emulator" to check if filter is constant allow | YiFei Zhu | 1 | -1/+155 |
2020-11-20 | seccomp/cache: Lookup syscall allowlist bitmap for fast path | YiFei Zhu | 1 | -0/+77 |
2020-11-17 | seccomp: Set PF_SUPERPRIV when checking capability | Mickaël Salaün | 1 | -3/+2 |
2020-11-16 | seccomp: Migrate to use SYSCALL_WORK flag | Gabriel Krisman Bertazi | 1 | -3/+3 |
2020-10-08 | seccomp: Make duplicate listener detection non-racy | Jann Horn | 1 | -7/+31 |
2020-09-08 | seccomp: Use current_pt_regs() instead of task_pt_regs(current) | Denis Efremov | 1 | -7/+11 |
2020-09-08 | seccomp: kill process instead of thread for unknown actions | Rich Felker | 1 | -4/+4 |
2020-09-08 | seccomp: don't leave dangling ->notif if file allocation fails | Tycho Andersen | 1 | -3/+8 |
2020-09-08 | seccomp: don't leak memory when filter install races | Tycho Andersen | 1 | -3/+10 |
2020-07-14 | seccomp: Introduce addfd ioctl to seccomp user notifier | Sargun Dhillon | 1 | -2/+173 |
2020-07-10 | seccomp: Use -1 marker for end of mode 1 syscall list | Kees Cook | 1 | -5/+5 |
2020-07-10 | seccomp: Fix ioctl number for SECCOMP_IOCTL_NOTIF_ID_VALID | Kees Cook | 1 | -0/+9 |
2020-07-10 | seccomp: Use pr_fmt | Kees Cook | 1 | -1/+2 |
2020-07-10 | seccomp: notify about unused filter | Christian Brauner | 1 | -5/+39 |
2020-07-10 | seccomp: Lift wait_queue into struct seccomp_filter | Christian Brauner | 1 | -6/+6 |
2020-07-10 | seccomp: release filter after task is fully dead | Christian Brauner | 1 | -25/+37 |
2020-07-10 | seccomp: rename "usage" to "refs" and document | Christian Brauner | 1 | -9/+10 |
2020-07-10 | seccomp: Add find_notification helper | Sargun Dhillon | 1 | -26/+27 |
2020-07-10 | seccomp: Report number of loaded filters in /proc/$pid/status | Kees Cook | 1 | -0/+3 |
2020-04-27 | sysctl: pass kernel pointers to ->proc_handler | Christoph Hellwig | 1 | -1/+1 |
2020-03-31 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next | Linus Torvalds | 1 | -3/+1 |
2020-03-29 | seccomp: Add missing compat_ioctl for notify | Sven Schnelle | 1 | -0/+1 |
2020-03-04 | seccomp: allow TSYNC and USER_NOTIF together | Tycho Andersen | 1 | -4/+10 |
2020-02-24 | bpf: Use bpf_prog_run_pin_on_cpu() at simple call sites. | David Miller | 1 | -3/+1 |
2020-01-02 | seccomp: Check that seccomp_notif is zeroed out by the user | Sargun Dhillon | 1 | -0/+7 |
2019-10-10 | seccomp: add SECCOMP_USER_NOTIF_FLAG_CONTINUE | Christian Brauner | 1 | -6/+22 |
2019-05-29 | signal: Remove the signal number and task parameters from force_sig_info | Eric W. Biederman | 1 | -1/+1 |
2019-05-07 | Merge tag 'audit-pr-20190507' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 1 | -2/+2 |
2019-05-07 | Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 1 | -1/+1 |
2019-04-29 | Merge tag 'seccomp-v5.1-rc8' of git://git.kernel.org/pub/scm/linux/kernel/git... | Linus Torvalds | 1 | -2/+15 |
2019-04-25 | seccomp: Make NEW_LISTENER and TSYNC flags exclusive | Tycho Andersen | 1 | -2/+15 |
2019-04-23 | seccomp: fix up grammar in comment | Tycho Andersen | 1 | -1/+1 |
2019-04-05 | syscalls: Remove start and number from syscall_get_arguments() args | Steven Rostedt (Red Hat) | 1 | -1/+1 |
2019-03-20 | syscall_get_arch: add "struct task_struct *" argument | Dmitry V. Levin | 1 | -2/+2 |
2019-03-07 | Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 1 | -2/+2 |
2019-02-22 | seccomp, bpf: disable preemption before calling into bpf prog | Alexei Starovoitov | 1 | -0/+2 |
2019-01-22 | Merge tag 'v5.0-rc3' into next-general | James Morris | 1 | -0/+4 |
2019-01-15 | seccomp: fix UAF in user-trap code | Tycho Andersen | 1 | -0/+4 |
2019-01-10 | LSM: generalize flag passing to security_capable | Micah Morton | 1 | -2/+2 |
2018-12-13 | seccomp: fix poor type promotion | Tycho Andersen | 1 | -2/+1 |
2018-12-11 | seccomp: add a return code to trap to userspace | Tycho Andersen | 1 | -2/+446 |
2018-12-11 | seccomp: switch system call argument type to void * | Tycho Andersen | 1 | -4/+4 |
2018-12-11 | seccomp: hoist struct seccomp_data recalculation higher | Tycho Andersen | 1 | -6/+6 |
2018-10-24 | Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 1 | -2/+2 |
2018-10-03 | signal: Distinguish between kernel_siginfo and siginfo | Eric W. Biederman | 1 | -3/+3 |
2018-09-06 | seccomp: remove unnecessary unlikely() | Igor Stoppa | 1 | -2/+2 |
2018-06-06 | Merge tag 'audit-pr-20180605' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 1 | -36/+90 |
2018-05-08 | seccomp: Don't special case audited processes when logging | Tyler Hicks | 1 | -10/+7 |
2018-05-08 | seccomp: Audit attempts to modify the actions_logged sysctl | Tyler Hicks | 1 | -9/+49 |
2018-05-08 | seccomp: Configurable separator for the actions_logged string | Tyler Hicks | 1 | -6/+7 |
2018-05-08 | seccomp: Separate read and write code for actions_logged sysctl | Tyler Hicks | 1 | -22/+38 |
2018-05-05 | seccomp: Move speculation migitation control to arch code | Thomas Gleixner | 1 | -13/+2 |
2018-05-05 | seccomp: Add filter flag to opt-out of SSB mitigation | Kees Cook | 1 | -8/+11 |
2018-05-05 | seccomp: Use PR_SPEC_FORCE_DISABLE | Thomas Gleixner | 1 | -1/+1 |
2018-05-03 | seccomp: Enable speculation flaw mitigations | Kees Cook | 1 | -0/+17 |
2018-02-22 | Merge tag 'seccomp-v4.16-rc3' of https://git.kernel.org/pub/scm/linux/kernel/... | James Morris | 1 | -2/+4 |
2018-02-21 | ptrace, seccomp: tweak get_metadata behavior slightly | Tycho Andersen | 1 | -2/+4 |
2018-01-31 | Merge branch 'next-seccomp' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 1 | -30/+76 |
2018-01-22 | signal: Replace memset(info,...) with clear_siginfo for clarity | Eric W. Biederman | 1 | -1/+1 |
2017-11-28 | ptrace, seccomp: add support for retrieving seccomp metadata | Tycho Andersen | 1 | -0/+33 |
2017-11-28 | seccomp: hoist out filter resolving logic | Tycho Andersen | 1 | -32/+45 |
2017-11-07 | Merge branch 'linus' into locking/core, to resolve conflicts | Ingo Molnar | 1 | -0/+1 |
2017-11-02 | License cleanup: add SPDX GPL-2.0 license identifier to files with no license | Greg Kroah-Hartman | 1 | -0/+1 |
2017-10-24 | locking/barriers: Convert users of lockless_dereference() to READ_ONCE() | Will Deacon | 1 | -1/+1 |
2017-10-10 | seccomp: make function __get_seccomp_filter static | Colin Ian King | 1 | -1/+1 |
2017-09-27 | seccomp: fix the usage of get/put_seccomp_filter() in seccomp_get_filter() | Oleg Nesterov | 1 | -7/+16 |
2017-08-14 | seccomp: Implement SECCOMP_RET_KILL_PROCESS action | Kees Cook | 1 | -2/+7 |
2017-08-14 | seccomp: Introduce SECCOMP_RET_KILL_PROCESS | Kees Cook | 1 | -6/+16 |
2017-08-14 | seccomp: Rename SECCOMP_RET_KILL to SECCOMP_RET_KILL_THREAD | Kees Cook | 1 | -18/+21 |
2017-08-14 | seccomp: Action to log before allowing | Tyler Hicks | 1 | -5/+18 |
2017-08-14 | seccomp: Filter flag to log all actions except SECCOMP_RET_ALLOW | Tyler Hicks | 1 | -6/+20 |
2017-08-14 | seccomp: Sysctl to configure actions that are allowed to be logged | Tyler Hicks | 1 | -3/+168 |
2017-08-14 | seccomp: Operation for checking if an action is available | Tyler Hicks | 1 | -0/+26 |
2017-08-14 | seccomp: Sysctl to display available actions | Tyler Hicks | 1 | -0/+51 |
2017-08-14 | seccomp: Provide matching filter for introspection | Kees Cook | 1 | -3/+15 |
2017-06-26 | seccomp: Switch from atomic_t to recount_t | Kees Cook | 1 | -5/+5 |
2017-06-26 | seccomp: Clean up core dump logic | Kees Cook | 1 | -3/+3 |
2017-03-02 | sched/headers: Prepare for new header dependencies before moving code to <lin... | Ingo Molnar | 1 | -0/+1 |
2017-02-23 | seccomp: Only dump core when single-threaded | Kees Cook | 1 | -5/+8 |
2017-01-23 | seccomp: dump core when using SECCOMP_RET_KILL | Mike Frysinger | 1 | -8/+21 |
2016-12-14 | Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/... | Linus Torvalds | 1 | -4/+3 |
2016-11-27 | bpf: drop unnecessary context cast from BPF_PROG_RUN | Daniel Borkmann | 1 | -1/+1 |
2016-11-01 | seccomp: Fix documentation | Mickaël Salaün | 1 | -4/+3 |
2016-08-30 | seccomp: Fix tracer exit notifications during fatal signals | Kees Cook | 1 | -4/+8 |
2016-08-04 | tree-wide: replace config_enabled() with IS_ENABLED() | Masahiro Yamada | 1 | -3/+3 |
2016-06-14 | seccomp: recheck the syscall after RET_TRACE | Kees Cook | 1 | -3/+18 |
2016-06-14 | seccomp: remove 2-phase API | Kees Cook | 1 | -88/+41 |
2016-06-14 | seccomp: Add a seccomp_data parameter secure_computing() | Andy Lutomirski | 1 | -2/+2 |
2016-05-19 | Merge branch 'upstream' of git://git.linux-mips.org/pub/scm/ralf/upstream-linus | Linus Torvalds | 1 | -10/+3 |
2016-05-13 | secomp: Constify mode1 syscall whitelist | Matt Redfearn | 1 | -2/+2 |
2016-05-13 | seccomp: Get compat syscalls from asm-generic header | Matt Redfearn | 1 | -8/+1 |
2016-05-04 | seccomp: Fix comment typo | Mickaël Salaün | 1 | -1/+1 |
2016-03-22 | seccomp: check in_compat_syscall, not is_compat_task, in strict mode | Andy Lutomirski | 1 | -2/+2 |
2016-01-27 | seccomp: always propagate NO_NEW_PRIVS on tsync | Jann Horn | 1 | -11/+11 |
2015-10-27 | seccomp, ptrace: add support for dumping seccomp filters | Tycho Andersen | 1 | -1/+75 |
2015-10-05 | bpf, seccomp: prepare for upcoming criu support | Daniel Borkmann | 1 | -2/+2 |
2015-07-20 | Merge tag 'seccomp-next' of git://git.kernel.org/pub/scm/linux/kernel/git/kee... | James Morris | 1 | -5/+12 |
2015-07-15 | seccomp: swap hard-coded zeros to defined name | Kees Cook | 1 | -1/+1 |
2015-07-15 | seccomp: add ptrace options for suspend/resume | Tycho Andersen | 1 | -0/+8 |
2015-07-15 | seccomp: Replace smp_read_barrier_depends() with lockless_dereference() | Pranith Kumar | 1 | -4/+3 |
2015-05-09 | seccomp, filter: add and use bpf_prog_create_from_user from seccomp | Daniel Borkmann | 1 | -30/+12 |
2015-05-09 | seccomp: simplify seccomp_prepare_filter and reuse bpf_prepare_filter | Nicolas Schichan | 1 | -46/+22 |
2015-02-17 | seccomp: cap SECCOMP_RET_ERRNO data to MAX_ERRNO | Kees Cook | 1 | -1/+3 |
2014-10-14 | Merge branch 'x86-seccomp-for-linus' of git://git.kernel.org/pub/scm/linux/ke... | Linus Torvalds | 1 | -81/+171 |
2014-09-05 | net: bpf: make eBPF interpreter images read-only | Daniel Borkmann | 1 | -4/+3 |
2014-09-03 | seccomp: Allow arch code to provide seccomp_data | Andy Lutomirski | 1 | -13/+19 |
2014-09-03 | seccomp: Refactor the filter callback and the API | Andy Lutomirski | 1 | -66/+124 |
2014-09-03 | seccomp,x86,arm,mips,s390: Remove nr parameter from secure_computing | Andy Lutomirski | 1 | -19/+45 |
2014-08-11 | seccomp: Replace BUG(!spin_is_locked()) with assert_spin_lock | Guenter Roeck | 1 | -5/+5 |
2014-08-06 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next | Linus Torvalds | 1 | -10/+10 |
2014-08-02 | net: filter: split 'struct sk_filter' into socket and bpf parts | Alexei Starovoitov | 1 | -5/+5 |
2014-08-02 | net: filter: rename sk_convert_filter() -> bpf_convert_filter() | Alexei Starovoitov | 1 | -2/+2 |
2014-08-02 | net: filter: rename sk_chk_filter() -> bpf_check_classic() | Alexei Starovoitov | 1 | -2/+2 |
2014-07-24 | net: filter: rename 'struct sock_filter_int' into 'struct bpf_insn' | Alexei Starovoitov | 1 | -1/+1 |
2014-07-18 | seccomp: implement SECCOMP_FILTER_FLAG_TSYNC | Kees Cook | 1 | -1/+134 |
2014-07-18 | seccomp: allow mode setting across threads | Kees Cook | 1 | -11/+25 |
2014-07-18 | seccomp: introduce writer locking | Kees Cook | 1 | -1/+15 |
2014-07-18 | seccomp: split filter prep from check and apply | Kees Cook | 1 | -30/+67 |
2014-07-18 | sched: move no_new_privs into new atomic flags | Kees Cook | 1 | -1/+1 |
2014-07-18 | seccomp: add "seccomp" syscall | Kees Cook | 1 | -5/+50 |
2014-07-18 | seccomp: split mode setting routines | Kees Cook | 1 | -23/+48 |
2014-07-18 | seccomp: extract check/assign mode helpers | Kees Cook | 1 | -4/+18 |
2014-07-18 | seccomp: create internal mode-setting function | Kees Cook | 1 | -2/+14 |
2014-06-12 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next | Linus Torvalds | 1 | -51/+59 |
2014-06-06 | kernel/seccomp.c: kernel-doc warning fix | Fabian Frederick | 1 | -2/+2 |
2014-06-01 | net: filter: get rid of BPF_S_* enum | Daniel Borkmann | 1 | -42/+41 |
2014-05-21 | net: filter: cleanup invocation of internal BPF | Alexei Starovoitov | 1 | -4/+2 |
2014-05-15 | seccomp: JIT compile seccomp filter | Alexei Starovoitov | 1 | -9/+20 |
2014-04-16 | seccomp: fix memory leak on filter attach | Kees Cook | 1 | -0/+2 |
2014-04-14 | seccomp: fix populating a0-a5 syscall args in 32-bit x86 BPF | Daniel Borkmann | 1 | -9/+8 |
2014-04-12 | Merge git://git.infradead.org/users/eparis/audit | Linus Torvalds | 1 | -2/+2 |
2014-04-03 | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo... | Linus Torvalds | 1 | -1/+1 |
2014-03-31 | net: filter: rework/optimize internal BPF interpreter's instruction set | Alexei Starovoitov | 1 | -61/+58 |
2014-03-20 | syscall_get_arch: remove useless function arguments | Eric Paris | 1 | -2/+2 |
2014-02-28 | kernel: Mark function as static in kernel/seccomp.c | Rashika Kheria | 1 | -1/+1 |
2013-03-26 | seccomp: allow BPF_XOR based ALU instructions. | Nicolas Schichan | 1 | -0/+2 |
2012-10-02 | seccomp: Make syscall skipping and nr changes more consistent | Andy Lutomirski | 1 | -3/+10 |
2012-04-18 | seccomp: fix build warnings when there is no CONFIG_SECCOMP_FILTER | Will Drewry | 1 | -4/+9 |
2012-04-14 | ptrace,seccomp: Add PTRACE_SECCOMP support | Will Drewry | 1 | -0/+16 |
2012-04-14 | seccomp: Add SECCOMP_RET_TRAP | Will Drewry | 1 | -0/+26 |
2012-04-14 | seccomp: add SECCOMP_RET_ERRNO | Will Drewry | 1 | -10/+32 |
2012-04-14 | seccomp: remove duplicated failure logging | Kees Cook | 1 | -14/+1 |
2012-04-14 | seccomp: add system call filtering using BPF | Will Drewry | 1 | -18/+378 |
2012-01-17 | seccomp: audit abnormal end to a process due to seccomp | Eric Paris | 1 | -0/+2 |
2009-03-02 | x86-64: seccomp: fix 32/64 syscall hole | Roland McGrath | 1 | -3/+4 |
2007-07-16 | make seccomp zerocost in schedule | Andrea Arcangeli | 1 | -0/+3 |
2007-07-16 | move seccomp from /proc to a prctl | Andrea Arcangeli | 1 | -0/+26 |
2005-04-16 | Linux-2.6.12-rc2v2.6.12-rc2 | Linus Torvalds | 1 | -0/+56 |