index
:
kernel/git/torvalds/linux.git
master
Linux kernel source tree
Linus Torvalds
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
security
/
commoncap.c
Age
Commit message (
Expand
)
Author
Files
Lines
2023-11-12
lsm: mark the lsm_id variables are marked as static
Paul Moore
1
-1
/
+1
2023-11-12
LSM: Identify modules by more than name
Casey Schaufler
1
-1
/
+7
2023-09-13
lsm: constify 'file' parameter in security_bprm_creds_from_file()
Khadija Kamran
1
-2
/
+2
2023-08-08
lsm: constify the 'target' parameter in security_capget()
Khadija Kamran
1
-1
/
+1
2023-05-25
lsm: fix a number of misspellings
Paul Moore
1
-10
/
+10
2023-03-20
selinux: remove the runtime disable functionality
Paul Moore
1
-1
/
+1
2023-03-01
capability: just use a 'u64' instead of a 'u32[2]' array
Linus Torvalds
1
-27
/
+22
2023-01-19
fs: port vfs{g,u}id helpers to mnt_idmap
Christian Brauner
1
-6
/
+3
2023-01-19
fs: port privilege checking helpers to mnt_idmap
Christian Brauner
1
-3
/
+2
2023-01-19
fs: port xattr to mnt_idmap
Christian Brauner
1
-27
/
+30
2023-01-19
fs: port ->permission() to pass mnt_idmap
Christian Brauner
1
-2
/
+3
2022-12-13
Merge tag 'lsm-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
1
-13
/
+9
2022-12-12
Merge tag 'fs.vfsuid.conversion.v6.2' of git://git.kernel.org/pub/scm/linux/k...
Linus Torvalds
1
-25
/
+26
2022-11-18
lsm,fs: fix vfs_getxattr_alloc() return type and caller error paths
Paul Moore
1
-12
/
+10
2022-10-28
capabilities: fix potential memleak on error path from vfs_getxattr_alloc()
Gaosheng Cui
1
-2
/
+4
2022-10-26
caps: use type safe idmapping helpers
Christian Brauner
1
-25
/
+26
2021-12-05
fs: support mapped mounts of mapped filesystems
Christian Brauner
1
-5
/
+4
2021-12-03
fs: use low-level mapping helpers
Christian Brauner
1
-5
/
+8
2021-12-03
fs: move mapping helpers
Christian Brauner
1
-0
/
+1
2021-04-27
Merge tag 'fixes-v5.13' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...
Linus Torvalds
1
-18
/
+34
2021-04-15
security: commoncap: clean up kernel-doc comments
Randy Dunlap
1
-17
/
+33
2021-03-24
security: commoncap: fix -Wstringop-overread warning
Arnd Bergmann
1
-1
/
+1
2021-03-12
Revert 95ebabde382c ("capabilities: Don't allow writing ambiguous v3 file cap...
Eric W. Biederman
1
-11
/
+1
2021-02-23
Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kerne...
Linus Torvalds
1
-20
/
+88
2021-02-22
Merge branch 'userns-for-v5.12' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
1
-1
/
+11
2021-01-28
cap: fix conversions on getxattr
Miklos Szeredi
1
-24
/
+43
2021-01-24
commoncap: handle idmapped mounts
Christian Brauner
1
-13
/
+49
2021-01-24
xattr: handle idmapped mounts
Tycho Andersen
1
-3
/
+3
2021-01-24
acl: handle idmapped mounts
Christian Brauner
1
-7
/
+38
2021-01-24
capability: handle idmapped mounts
Christian Brauner
1
-2
/
+3
2020-12-29
capabilities: Don't allow writing ambiguous v3 file capabilities
Eric W. Biederman
1
-1
/
+11
2020-12-14
vfs: move cap_convert_nscap() call into vfs_setxattr()
Miklos Szeredi
1
-2
/
+1
2020-05-29
exec: Compute file based creds only once
Eric W. Biederman
1
-11
/
+13
2020-05-29
exec: Add a per bprm->file version of per_clear
Eric W. Biederman
1
-1
/
+1
2020-05-27
Merge commit a4ae32c71fe9 ("exec: Always set cap_ambient in cap_bprm_set_creds")
Eric W. Biederman
1
-0
/
+1
2020-05-26
exec: Always set cap_ambient in cap_bprm_set_creds
Eric W. Biederman
1
-0
/
+1
2020-05-21
exec: Convert security_bprm_set_creds into security_bprm_repopulate_creds
Eric W. Biederman
1
-5
/
+4
2019-07-09
Merge branch 'next-lsm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...
Linus Torvalds
1
-3
/
+3
2019-07-07
security/commoncap: Use xattr security prefix len
Carmeli Tamir
1
-2
/
+2
2019-06-11
security: Make capability_hooks static
YueHaibing
1
-1
/
+1
2019-05-30
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
Thomas Gleixner
1
-6
/
+1
2019-03-07
Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi...
Linus Torvalds
1
-0
/
+2
2019-02-25
LSM: Update function documentation for cap_capable
Micah Morton
1
-1
/
+1
2019-01-25
audit: add support for fcaps v3
Richard Guy Briggs
1
-0
/
+2
2019-01-10
LSM: generalize flag passing to security_capable
Micah Morton
1
-8
/
+9
2019-01-08
capability: Initialize as LSM_ORDER_FIRST
Kees Cook
1
-1
/
+8
2018-12-12
security: audit and remove any unnecessary uses of module.h
Paul Gortmaker
1
-1
/
+0
2018-09-04
Merge tag 'v4.19-rc2' into next-general
James Morris
1
-1
/
+1
2018-08-29
security/capabilities: remove check for -EINVAL
Christian Brauner
1
-3
/
+0
2018-08-11
cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias()
Eddie.Horng
1
-1
/
+1
2018-05-24
capabilities: Allow privileged user in s_user_ns to set security.* xattrs
Eric W. Biederman
1
-2
/
+6
2018-04-10
commoncap: Handle memory allocation failure.
Tetsuo Handa
1
-0
/
+2
2018-01-02
capabilities: fix buffer overread on very short xattr
Eric Biggers
1
-12
/
+9
2017-11-13
Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
1
-65
/
+128
2017-10-20
capabilities: audit log other surprising conditions
Richard Guy Briggs
1
-7
/
+22
2017-10-20
capabilities: fix logic for effective root or real root
Richard Guy Briggs
1
-3
/
+2
2017-10-20
capabilities: invert logic for clarity
Richard Guy Briggs
1
-4
/
+4
2017-10-20
capabilities: remove a layer of conditional logic
Richard Guy Briggs
1
-13
/
+10
2017-10-20
capabilities: move audit log decision to function
Richard Guy Briggs
1
-20
/
+30
2017-10-20
capabilities: use intuitive names for id changes
Richard Guy Briggs
1
-6
/
+22
2017-10-20
capabilities: use root_priveleged inline to clarify logic
Richard Guy Briggs
1
-2
/
+4
2017-10-20
capabilities: rename has_cap to has_fcap
Richard Guy Briggs
1
-10
/
+10
2017-10-20
capabilities: intuitive names for cap gain status
Richard Guy Briggs
1
-7
/
+11
2017-10-20
capabilities: factor out cap_bprm_set_creds privileged root
Richard Guy Briggs
1
-28
/
+48
2017-10-19
commoncap: move assignment of fs_ns to avoid null pointer dereference
Colin Ian King
1
-1
/
+2
2017-09-24
Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
1
-3
/
+3
2017-09-23
security: fix description of values returned by cap_inode_need_killpriv
Stefan Berger
1
-3
/
+3
2017-09-11
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...
Linus Torvalds
1
-21
/
+256
2017-09-01
Introduce v3 namespaced file capabilities
Serge E. Hallyn
1
-19
/
+251
2017-08-01
commoncap: Move cap_elevated calculation into bprm_set_creds
Kees Cook
1
-42
/
+10
2017-08-01
commoncap: Refactor to remove bprm_secureexec hook
Kees Cook
1
-4
/
+8
2017-07-20
security: Use user_namespace::level to avoid redundant iterations in cap_capa...
Kirill Tkhai
1
-2
/
+5
2017-03-06
security: mark LSM hooks as __ro_after_init
James Morris
1
-1
/
+1
2017-02-23
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...
Linus Torvalds
1
-2
/
+3
2017-01-24
exec: Remove LSM_UNSAFE_PTRACE_CAP
Eric W. Biederman
1
-1
/
+1
2017-01-24
exec: Test the ptracer's saved cred to see if the tracee can gain caps
Eric W. Biederman
1
-1
/
+2
2017-01-24
exec: Don't reset euid and egid when the tracee has CAP_SETUID
Eric W. Biederman
1
-1
/
+1
2017-01-19
LSM: Add /sys/kernel/security/lsm
Casey Schaufler
1
-1
/
+2
2016-10-07
xattr: Add __vfs_{get,set,remove}xattr helpers
Andreas Gruenbacher
1
-15
/
+10
2016-06-24
fs: Treat foreign mounts as nosuid
Andy Lutomirski
1
-1
/
+7
2016-06-24
fs: Limit file caps to the user namespace of the super block
Seth Forshee
1
-0
/
+2
2016-05-17
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...
Linus Torvalds
1
-3
/
+3
2016-04-22
security: Introduce security_settime64()
Baolin Wang
1
-1
/
+1
2016-04-11
->getxattr(): pass dentry and inode as separate arguments
Al Viro
1
-3
/
+3
2016-01-20
ptrace: use fsuid, fsgid, effective creds for fs access checks
Jann Horn
1
-1
/
+6
2015-09-04
capabilities: add a securebit to disable PR_CAP_AMBIENT_RAISE
Andy Lutomirski
1
-1
/
+2
2015-09-04
capabilities: ambient capabilities
Andy Lutomirski
1
-10
/
+92
2015-05-12
LSM: Switch to lists of hooks
Casey Schaufler
1
-8
/
+33
2015-04-15
VFS: security/: d_backing_inode() annotations
David Howells
1
-3
/
+3
2015-01-25
file->f_path.dentry is pinned down for as long as the file is open...
Al Viro
1
-5
/
+1
2014-11-19
kill f_dentry uses
Al Viro
1
-1
/
+1
2014-07-24
CAPABILITIES: remove undefined caps from all processes
Eric Paris
1
-0
/
+3
2014-07-24
commoncap: don't alloc the credential unless needed in cap_task_prctl
Tetsuo Handa
1
-42
/
+30
2013-08-30
capabilities: allow nice if we are privileged
Serge Hallyn
1
-4
/
+4
2013-08-30
userns: Allow PR_CAPBSET_DROP in a user namespace.
Eric W. Biederman
1
-1
/
+1
2013-02-26
kill f_vfsmnt
Al Viro
1
-1
/
+1
2012-12-14
Fix cap_capable to only allow owners in the parent user namespace to have caps.
Eric W. Biederman
1
-8
/
+17
2012-05-31
split ->file_mmap() into ->mmap_addr()/->mmap_file()
Al Viro
1
-18
/
+3
2012-05-31
split cap_mmap_addr() out of cap_file_mmap()
Al Viro
1
-9
/
+23
2012-05-23
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...
Linus Torvalds
1
-25
/
+36
2012-05-04
Merge tag 'v3.4-rc5' into next
James Morris
1
-0
/
+6
2012-05-03
userns: Convert capabilities related permsion checks
Eric W. Biederman
1
-15
/
+26
2012-05-03
userns: Store uid and gid values in struct cred with kuid_t and kgid_t types
Eric W. Biederman
1
-2
/
+1
2012-04-26
userns: Simplify the user_namespace by making userns->creator a kuid.
Eric W. Biederman
1
-2
/
+3
2012-04-19
security: fix compile error in commoncap.c
Jonghwan Choi
1
-0
/
+1
2012-04-18
fcaps: clear the same personality flags as suid when fcaps are used
Eric Paris
1
-0
/
+5
2012-04-14
Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from granting privs
Andy Lutomirski
1
-2
/
+5
2012-04-07
userns: Add an explicit reference to the parent user namespace
Eric W. Biederman
1
-1
/
+1
2012-04-07
userns: Use cred->user_ns instead of cred->user->user_ns
Eric W. Biederman
1
-7
/
+7
2012-02-14
security: trim security.h
Al Viro
1
-0
/
+1
2012-01-14
Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-security
Linus Torvalds
1
-17
/
+7
2012-01-05
security: remove the security_netlink_recv hook as it is equivalent to capable()
Eric Paris
1
-8
/
+0
2012-01-05
capabilities: remove the task from capable LSM hook entirely
Eric Paris
1
-9
/
+7
2011-08-16
capabilities: initialize has_cap
Serge Hallyn
1
-1
/
+1
2011-08-12
capabilities: do not grant full privs for setuid w/ file caps + no effective ...
Zhi Li
1
-6
/
+10
2011-04-04
capabilities: do not special case exec of init
Eric Paris
1
-9
/
+4
2011-03-23
userns: allow ptrace from non-init user namespaces
Serge E. Hallyn
1
-8
/
+32
2011-03-23
userns: security: make capabilities relative to the user namespace
Serge E. Hallyn
1
-7
/
+31
2011-03-16
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6
Linus Torvalds
1
-2
/
+1
2011-03-03
netlink: kill eff_cap from struct netlink_skb_parms
Patrick McHardy
1
-2
/
+1
2011-02-02
time: Correct the *settime* parameters
Richard Cochran
1
-1
/
+1
2010-11-15
capabilities/syslog: open code cap_syslog logic to fix build failure
Eric Paris
1
-21
/
+0
2010-11-12
Restrict unprivileged access to kernel syslog
Dan Rosenberg
1
-0
/
+2
2010-10-21
security: remove unused parameter from security_task_setscheduler()
KOSAKI Motohiro
1
-4
/
+1
2010-08-17
Make do_execve() take a const filename pointer
David Howells
1
-1
/
+1
2010-04-23
security: whitespace coding style fixes
Justin P. Mattock
1
-2
/
+2
2010-04-20
Security: Fix the comment of cap_file_mmap()
wzt.wzt@gmail.com
1
-1
/
+1
2010-02-05
syslog: clean up needless comment
Kees Cook
1
-1
/
+0
2010-02-04
syslog: use defined constants instead of raw numbers
Kees Cook
1
-2
/
+3
2010-02-04
syslog: distinguish between /proc/kmsg and syscalls
Kees Cook
1
-1
/
+6
2009-11-24
remove CONFIG_SECURITY_FILE_CAPABILITIES compile option
Serge E. Hallyn
1
-70
/
+2
2009-10-20
security: remove root_plug
James Morris
1
-1
/
+1
2009-08-06
Security/SELinux: seperate lsm specific mmap_min_addr
Eric Paris
1
-1
/
+1
2009-08-06
Capabilities: move cap_file_mmap to commoncap.c
Eric Paris
1
-0
/
+30
2009-06-25
security: rename ptrace_may_access => ptrace_access_check
Ingo Molnar
1
-2
/
+2
2009-05-08
Merge branch 'master' into next
James Morris
1
-1
/
+0
2009-04-09
cap_prctl: don't set error to 0 at 'no_change'
Serge E. Hallyn
1
-1
/
+0
2009-04-03
don't raise all privs on setuid-root file with fE set (v2)
Serge E. Hallyn
1
-0
/
+32
2009-01-07
Merge branch 'next' into for-linus
James Morris
1
-15
/
+14
2009-01-07
CRED: Fix regression in cap_capable() as shown up by sys_faccessat() [ver #3]
David Howells
1
-15
/
+14
2009-01-07
Revert "CRED: Fix regression in cap_capable() as shown up by sys_faccessat() ...
James Morris
1
-29
/
+13
2009-01-05
inode->i_op is never NULL
Al Viro
1
-3
/
+3
2009-01-05
CRED: Fix regression in cap_capable() as shown up by sys_faccessat() [ver #2]
David Howells
1
-13
/
+29
2008-11-15
capabilities: define get_vfs_caps_from_disk when file caps are not enabled
Eric Paris
1
-0
/
+6
2008-11-14
CRED: Prettify commoncap.c
David Howells
1
-52
/
+248
2008-11-14
CRED: Make execve() take advantage of copy-on-write credentials
David Howells
1
-76
/
+76
2008-11-14
CRED: Inaugurate COW credentials
David Howells
1
-140
/
+125
2008-11-14
CRED: Use RCU to access another task's creds and to release a task's own creds
David Howells
1
-24
/
+40
2008-11-14
CRED: Wrap current->cred and a few other accessors
David Howells
1
-1
/
+1
2008-11-14
CRED: Separate task security context from task_struct
David Howells
1
-76
/
+85
2008-11-14
CRED: Constify the kernel_cap_t arguments to the capset LSM hooks
David Howells
1
-4
/
+6
2008-11-14
CRED: Neuter sys_capset()
David Howells
1
-21
/
+8
2008-11-14
CRED: Wrap task credential accesses in the capabilities code
David Howells
1
-12
/
+18
2008-11-11
Add a new capable interface that will be used by systems that use audit to
Eric Paris
1
-4
/
+4
2008-11-11
Any time fcaps or a setuid app under SECURE_NOROOT is used to result in a
Eric Paris
1
-1
/
+22
2008-11-11
This patch add a generic cpu endian caps structure and externally available
Eric Paris
1
-58
/
+71
2008-11-06
file capabilities: add no_file_caps switch (v4)
Serge E. Hallyn
1
-0
/
+3
2008-11-01
file caps: always start with clear bprm->caps_*
Serge Hallyn
1
-3
/
+3
2008-09-27
file capabilities: uninline cap_safe_nice
Serge E. Hallyn
1
-1
/
+1
2008-08-14
security: Fix setting of PF_SUPERPRIV by __capable()
David Howells
1
-7
/
+17
2008-07-24
security: protect legacy applications from executing with insufficient privilege
Andrew G. Morgan
1
-49
/
+59
2008-07-14
Security: split proc ptrace checking into read vs. attach
Stephen Smalley
1
-1
/
+2
2008-07-04
security: filesystem capabilities: fix CAP_SETPCAP handling
Andrew G. Morgan
1
-3
/
+10
2008-04-29
xattr: add missing consts to function arguments
David Howells
1
-3
/
+3
2008-04-28
capabilities: implement per-process securebits
Andrew G. Morgan
1
-9
/
+94
2008-04-18
security: replace remaining __FUNCTION__ occurrences
Harvey Harrison
1
-2
/
+2
2008-03-20
file capabilities: remove cap_task_kill()
Serge Hallyn
1
-40
/
+0
2008-02-23
file capabilities: simplify signal check
Serge E. Hallyn
1
-1
/
+1
2008-02-05
capabilities: introduce per-process capability bounding set
Serge E. Hallyn
1
-17
/
+27
2008-02-05
Add 64-bit capability support to the kernel
Andrew Morgan
1
-30
/
+57
2008-02-05
revert "capabilities: clean up file capability reading"
Andrew Morton
1
-15
/
+8
2008-01-21
Fix filesystem capability support
Andrew G. Morgan
1
-3
/
+10
2007-11-29
file capabilities: don't prevent signaling setuid root programs
Serge E. Hallyn
1
-0
/
+9
2007-11-14
file capabilities: allow sigcont within session
Serge E. Hallyn
1
-0
/
+4
2007-10-22
capabilities: clean up file capability reading
Serge E. Hallyn
1
-8
/
+15
2007-10-19
pid namespaces: define is_global_init() and is_container_init()
Serge E. Hallyn
1
-1
/
+2
2007-10-18
V3 file capabilities: alter behavior of cap_setpcap
Andrew Morgan
1
-5
/
+54
2007-10-17
security/ cleanups
Adrian Bunk
1
-21
/
+0
2007-10-17
Implement file posix capabilities
Serge E. Hallyn
1
-16
/
+228
2007-10-17
security: Convert LSM into a static interface
James Morris
1
-3
/
+0
2007-08-22
fix NULL pointer dereference in __vm_enough_memory()
Alan Cox
1
-2
/
+2
2007-07-19
coredump masking: reimplementation of dumpable using two flags
Kawai, Hidehiro
1
-1
/
+1
2007-05-08
header cleaning: don't include smp_lock.h when not used
Randy Dunlap
1
-1
/
+0
2006-09-29
[PATCH] pidspace: is_init()
Sukadev Bhattiprolu
1
-1
/
+1
2006-06-30
Remove obsolete #include <linux/config.h>
Jörn Engel
1
-1
/
+0
2006-06-29
[NETLINK]: Encapsulate eff_cap usage within security framework.
Darrel Goeddel
1
-2
/
+2
2006-03-25
[PATCH] make cap_ptrace enforce PTRACE_TRACME checks
Chris Wright
1
-2
/
+2
2006-01-11
[PATCH] move capable() to capability.h
Randy.Dunlap
1
-0
/
+1
2005-06-23
[PATCH] setuid core dump
Alan Cox
1
-1
/
+1
2005-04-16
Linux-2.6.12-rc2
v2.6.12-rc2
Linus Torvalds
1
-0
/
+345