summaryrefslogtreecommitdiff
path: root/security/commoncap.c
AgeCommit message (Expand)Author
2021-03-12Revert 95ebabde382c ("capabilities: Don't allow writing ambiguous v3 file cap...Eric W. Biederman
2021-02-23Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds
2021-02-22Merge branch 'userns-for-v5.12' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds
2021-01-28cap: fix conversions on getxattrMiklos Szeredi
2021-01-24commoncap: handle idmapped mountsChristian Brauner
2021-01-24xattr: handle idmapped mountsTycho Andersen
2021-01-24acl: handle idmapped mountsChristian Brauner
2021-01-24capability: handle idmapped mountsChristian Brauner
2020-12-29capabilities: Don't allow writing ambiguous v3 file capabilitiesEric W. Biederman
2020-12-14vfs: move cap_convert_nscap() call into vfs_setxattr()Miklos Szeredi
2020-05-29exec: Compute file based creds only onceEric W. Biederman
2020-05-29exec: Add a per bprm->file version of per_clearEric W. Biederman
2020-05-27Merge commit a4ae32c71fe9 ("exec: Always set cap_ambient in cap_bprm_set_creds")Eric W. Biederman
2020-05-26exec: Always set cap_ambient in cap_bprm_set_credsEric W. Biederman
2020-05-21exec: Convert security_bprm_set_creds into security_bprm_repopulate_credsEric W. Biederman
2019-07-09Merge branch 'next-lsm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...Linus Torvalds
2019-07-07security/commoncap: Use xattr security prefix lenCarmeli Tamir
2019-06-11security: Make capability_hooks staticYueHaibing
2019-05-30treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152Thomas Gleixner
2019-03-07Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds
2019-02-25LSM: Update function documentation for cap_capableMicah Morton
2019-01-25audit: add support for fcaps v3Richard Guy Briggs
2019-01-10LSM: generalize flag passing to security_capableMicah Morton
2019-01-08capability: Initialize as LSM_ORDER_FIRSTKees Cook
2018-12-12security: audit and remove any unnecessary uses of module.hPaul Gortmaker
2018-09-04Merge tag 'v4.19-rc2' into next-generalJames Morris
2018-08-29security/capabilities: remove check for -EINVALChristian Brauner
2018-08-11cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias()Eddie.Horng
2018-05-24capabilities: Allow privileged user in s_user_ns to set security.* xattrsEric W. Biederman
2018-04-10commoncap: Handle memory allocation failure.Tetsuo Handa
2018-01-02capabilities: fix buffer overread on very short xattrEric Biggers
2017-11-13Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds
2017-10-20capabilities: audit log other surprising conditionsRichard Guy Briggs
2017-10-20capabilities: fix logic for effective root or real rootRichard Guy Briggs
2017-10-20capabilities: invert logic for clarityRichard Guy Briggs
2017-10-20capabilities: remove a layer of conditional logicRichard Guy Briggs
2017-10-20capabilities: move audit log decision to functionRichard Guy Briggs
2017-10-20capabilities: use intuitive names for id changesRichard Guy Briggs
2017-10-20capabilities: use root_priveleged inline to clarify logicRichard Guy Briggs
2017-10-20capabilities: rename has_cap to has_fcapRichard Guy Briggs
2017-10-20capabilities: intuitive names for cap gain statusRichard Guy Briggs
2017-10-20capabilities: factor out cap_bprm_set_creds privileged rootRichard Guy Briggs
2017-10-19commoncap: move assignment of fs_ns to avoid null pointer dereferenceColin Ian King
2017-09-24Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds
2017-09-23security: fix description of values returned by cap_inode_need_killprivStefan Berger
2017-09-11Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds
2017-09-01Introduce v3 namespaced file capabilitiesSerge E. Hallyn
2017-08-01commoncap: Move cap_elevated calculation into bprm_set_credsKees Cook
2017-08-01commoncap: Refactor to remove bprm_secureexec hookKees Cook
2017-07-20security: Use user_namespace::level to avoid redundant iterations in cap_capa...Kirill Tkhai