index
:
kernel/git/pavel/linux-cip.git
linux-4.19.y
linux-4.19.y-cip
linux-4.19.y-cip-rebase
linux-4.19.y-cip-rt
linux-4.19.y-cip-rt-rebase
linux-4.4.y
linux-4.4.y-cip
linux-4.4.y-cip-rebase
linux-4.4.y-cip-rt
linux-4.4.y-cip-rt-rebase
master
v4.19.50-rt22-cip3-rebase
v4.4.179-rt181-cip34-rebase
Pavel Machek's fork of linux-cip.git
Pavel Machek
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
security
/
commoncap.c
Age
Commit message (
Expand
)
Author
Files
Lines
2016-02-25
ptrace: use fsuid, fsgid, effective creds for fs access checks
Jann Horn
1
-1
/
+6
2015-09-04
capabilities: add a securebit to disable PR_CAP_AMBIENT_RAISE
Andy Lutomirski
1
-1
/
+2
2015-09-04
capabilities: ambient capabilities
Andy Lutomirski
1
-10
/
+92
2015-05-12
LSM: Switch to lists of hooks
Casey Schaufler
1
-8
/
+33
2015-04-15
VFS: security/: d_backing_inode() annotations
David Howells
1
-3
/
+3
2015-01-25
file->f_path.dentry is pinned down for as long as the file is open...
Al Viro
1
-5
/
+1
2014-11-19
kill f_dentry uses
Al Viro
1
-1
/
+1
2014-07-24
CAPABILITIES: remove undefined caps from all processes
Eric Paris
1
-0
/
+3
2014-07-24
commoncap: don't alloc the credential unless needed in cap_task_prctl
Tetsuo Handa
1
-42
/
+30
2013-08-30
capabilities: allow nice if we are privileged
Serge Hallyn
1
-4
/
+4
2013-08-30
userns: Allow PR_CAPBSET_DROP in a user namespace.
Eric W. Biederman
1
-1
/
+1
2013-02-26
kill f_vfsmnt
Al Viro
1
-1
/
+1
2012-12-14
Fix cap_capable to only allow owners in the parent user namespace to have caps.
Eric W. Biederman
1
-8
/
+17
2012-05-31
split ->file_mmap() into ->mmap_addr()/->mmap_file()
Al Viro
1
-18
/
+3
2012-05-31
split cap_mmap_addr() out of cap_file_mmap()
Al Viro
1
-9
/
+23
2012-05-23
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...
Linus Torvalds
1
-25
/
+36
2012-05-04
Merge tag 'v3.4-rc5' into next
James Morris
1
-0
/
+6
2012-05-03
userns: Convert capabilities related permsion checks
Eric W. Biederman
1
-15
/
+26
2012-05-03
userns: Store uid and gid values in struct cred with kuid_t and kgid_t types
Eric W. Biederman
1
-2
/
+1
2012-04-26
userns: Simplify the user_namespace by making userns->creator a kuid.
Eric W. Biederman
1
-2
/
+3
2012-04-19
security: fix compile error in commoncap.c
Jonghwan Choi
1
-0
/
+1
2012-04-18
fcaps: clear the same personality flags as suid when fcaps are used
Eric Paris
1
-0
/
+5
2012-04-14
Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from granting privs
Andy Lutomirski
1
-2
/
+5
2012-04-07
userns: Add an explicit reference to the parent user namespace
Eric W. Biederman
1
-1
/
+1
2012-04-07
userns: Use cred->user_ns instead of cred->user->user_ns
Eric W. Biederman
1
-7
/
+7
2012-02-14
security: trim security.h
Al Viro
1
-0
/
+1
2012-01-14
Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-security
Linus Torvalds
1
-17
/
+7
2012-01-05
security: remove the security_netlink_recv hook as it is equivalent to capable()
Eric Paris
1
-8
/
+0
2012-01-05
capabilities: remove the task from capable LSM hook entirely
Eric Paris
1
-9
/
+7
2011-08-16
capabilities: initialize has_cap
Serge Hallyn
1
-1
/
+1
2011-08-12
capabilities: do not grant full privs for setuid w/ file caps + no effective ...
Zhi Li
1
-6
/
+10
2011-04-04
capabilities: do not special case exec of init
Eric Paris
1
-9
/
+4
2011-03-23
userns: allow ptrace from non-init user namespaces
Serge E. Hallyn
1
-8
/
+32
2011-03-23
userns: security: make capabilities relative to the user namespace
Serge E. Hallyn
1
-7
/
+31
2011-03-16
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6
Linus Torvalds
1
-2
/
+1
2011-03-03
netlink: kill eff_cap from struct netlink_skb_parms
Patrick McHardy
1
-2
/
+1
2011-02-02
time: Correct the *settime* parameters
Richard Cochran
1
-1
/
+1
2010-11-15
capabilities/syslog: open code cap_syslog logic to fix build failure
Eric Paris
1
-21
/
+0
2010-11-12
Restrict unprivileged access to kernel syslog
Dan Rosenberg
1
-0
/
+2
2010-10-21
security: remove unused parameter from security_task_setscheduler()
KOSAKI Motohiro
1
-4
/
+1
2010-08-17
Make do_execve() take a const filename pointer
David Howells
1
-1
/
+1
2010-04-23
security: whitespace coding style fixes
Justin P. Mattock
1
-2
/
+2
2010-04-20
Security: Fix the comment of cap_file_mmap()
wzt.wzt@gmail.com
1
-1
/
+1
2010-02-05
syslog: clean up needless comment
Kees Cook
1
-1
/
+0
2010-02-04
syslog: use defined constants instead of raw numbers
Kees Cook
1
-2
/
+3
2010-02-04
syslog: distinguish between /proc/kmsg and syscalls
Kees Cook
1
-1
/
+6
2009-11-24
remove CONFIG_SECURITY_FILE_CAPABILITIES compile option
Serge E. Hallyn
1
-70
/
+2
2009-10-20
security: remove root_plug
James Morris
1
-1
/
+1
2009-08-06
Security/SELinux: seperate lsm specific mmap_min_addr
Eric Paris
1
-1
/
+1
2009-08-06
Capabilities: move cap_file_mmap to commoncap.c
Eric Paris
1
-0
/
+30
2009-06-25
security: rename ptrace_may_access => ptrace_access_check
Ingo Molnar
1
-2
/
+2
2009-05-08
Merge branch 'master' into next
James Morris
1
-1
/
+0
2009-04-09
cap_prctl: don't set error to 0 at 'no_change'
Serge E. Hallyn
1
-1
/
+0
2009-04-03
don't raise all privs on setuid-root file with fE set (v2)
Serge E. Hallyn
1
-0
/
+32
2009-01-07
Merge branch 'next' into for-linus
James Morris
1
-15
/
+14
2009-01-07
CRED: Fix regression in cap_capable() as shown up by sys_faccessat() [ver #3]
David Howells
1
-15
/
+14
2009-01-07
Revert "CRED: Fix regression in cap_capable() as shown up by sys_faccessat() ...
James Morris
1
-29
/
+13
2009-01-05
inode->i_op is never NULL
Al Viro
1
-3
/
+3
2009-01-05
CRED: Fix regression in cap_capable() as shown up by sys_faccessat() [ver #2]
David Howells
1
-13
/
+29
2008-11-15
capabilities: define get_vfs_caps_from_disk when file caps are not enabled
Eric Paris
1
-0
/
+6
2008-11-14
CRED: Prettify commoncap.c
David Howells
1
-52
/
+248
2008-11-14
CRED: Make execve() take advantage of copy-on-write credentials
David Howells
1
-76
/
+76
2008-11-14
CRED: Inaugurate COW credentials
David Howells
1
-140
/
+125
2008-11-14
CRED: Use RCU to access another task's creds and to release a task's own creds
David Howells
1
-24
/
+40
2008-11-14
CRED: Wrap current->cred and a few other accessors
David Howells
1
-1
/
+1
2008-11-14
CRED: Separate task security context from task_struct
David Howells
1
-76
/
+85
2008-11-14
CRED: Constify the kernel_cap_t arguments to the capset LSM hooks
David Howells
1
-4
/
+6
2008-11-14
CRED: Neuter sys_capset()
David Howells
1
-21
/
+8
2008-11-14
CRED: Wrap task credential accesses in the capabilities code
David Howells
1
-12
/
+18
2008-11-11
Add a new capable interface that will be used by systems that use audit to
Eric Paris
1
-4
/
+4
2008-11-11
Any time fcaps or a setuid app under SECURE_NOROOT is used to result in a
Eric Paris
1
-1
/
+22
2008-11-11
This patch add a generic cpu endian caps structure and externally available
Eric Paris
1
-58
/
+71
2008-11-06
file capabilities: add no_file_caps switch (v4)
Serge E. Hallyn
1
-0
/
+3
2008-11-01
file caps: always start with clear bprm->caps_*
Serge Hallyn
1
-3
/
+3
2008-09-27
file capabilities: uninline cap_safe_nice
Serge E. Hallyn
1
-1
/
+1
2008-08-14
security: Fix setting of PF_SUPERPRIV by __capable()
David Howells
1
-7
/
+17
2008-07-24
security: protect legacy applications from executing with insufficient privilege
Andrew G. Morgan
1
-49
/
+59
2008-07-14
Security: split proc ptrace checking into read vs. attach
Stephen Smalley
1
-1
/
+2
2008-07-04
security: filesystem capabilities: fix CAP_SETPCAP handling
Andrew G. Morgan
1
-3
/
+10
2008-04-29
xattr: add missing consts to function arguments
David Howells
1
-3
/
+3
2008-04-28
capabilities: implement per-process securebits
Andrew G. Morgan
1
-9
/
+94
2008-04-18
security: replace remaining __FUNCTION__ occurrences
Harvey Harrison
1
-2
/
+2
2008-03-20
file capabilities: remove cap_task_kill()
Serge Hallyn
1
-40
/
+0
2008-02-23
file capabilities: simplify signal check
Serge E. Hallyn
1
-1
/
+1
2008-02-05
capabilities: introduce per-process capability bounding set
Serge E. Hallyn
1
-17
/
+27
2008-02-05
Add 64-bit capability support to the kernel
Andrew Morgan
1
-30
/
+57
2008-02-05
revert "capabilities: clean up file capability reading"
Andrew Morton
1
-15
/
+8
2008-01-21
Fix filesystem capability support
Andrew G. Morgan
1
-3
/
+10
2007-11-29
file capabilities: don't prevent signaling setuid root programs
Serge E. Hallyn
1
-0
/
+9
2007-11-14
file capabilities: allow sigcont within session
Serge E. Hallyn
1
-0
/
+4
2007-10-22
capabilities: clean up file capability reading
Serge E. Hallyn
1
-8
/
+15
2007-10-19
pid namespaces: define is_global_init() and is_container_init()
Serge E. Hallyn
1
-1
/
+2
2007-10-18
V3 file capabilities: alter behavior of cap_setpcap
Andrew Morgan
1
-5
/
+54
2007-10-17
security/ cleanups
Adrian Bunk
1
-21
/
+0
2007-10-17
Implement file posix capabilities
Serge E. Hallyn
1
-16
/
+228
2007-10-17
security: Convert LSM into a static interface
James Morris
1
-3
/
+0
2007-08-22
fix NULL pointer dereference in __vm_enough_memory()
Alan Cox
1
-2
/
+2
2007-07-19
coredump masking: reimplementation of dumpable using two flags
Kawai, Hidehiro
1
-1
/
+1
2007-05-08
header cleaning: don't include smp_lock.h when not used
Randy Dunlap
1
-1
/
+0
2006-09-29
[PATCH] pidspace: is_init()
Sukadev Bhattiprolu
1
-1
/
+1
2006-06-30
Remove obsolete #include <linux/config.h>
Jörn Engel
1
-1
/
+0
2006-06-29
[NETLINK]: Encapsulate eff_cap usage within security framework.
Darrel Goeddel
1
-2
/
+2
2006-03-25
[PATCH] make cap_ptrace enforce PTRACE_TRACME checks
Chris Wright
1
-2
/
+2
2006-01-11
[PATCH] move capable() to capability.h
Randy.Dunlap
1
-0
/
+1
2005-06-23
[PATCH] setuid core dump
Alan Cox
1
-1
/
+1
2005-04-16
Linux-2.6.12-rc2
v2.6.12-rc2
Linus Torvalds
1
-0
/
+345