| [RFC,0/1] mount: universally disallow mounting over symlinks |
|
|
1 |
2020-01-01 |
Al Viro |
|
New |
| [RFC,0/1] mount: universally disallow mounting over symlinks |
|
|
|
2020-01-01 |
Al Viro |
|
New |
| [ghau51/ghau40,v8,14/14] libaudit: add support to get and set capcontid on a task |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,13/14] auditctl: add a config parameter to limit the contid netns count |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,12/14] auditctl: add a config parameter to limit the contid nesting depth |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,11/14] ausearch: convert contid to comma/carrat-sep cnode/clist |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,10/14] ausearch: convert contid to comma/carrat-sep list |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,09/14] contid: interpret correctly CONTAINER_ID contid field csv |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,08/14] add support for audit_signal_info2 |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,07/14] signal_info: only print context if it is available. |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,06/14] libaudit: add support to get the task audit container identifier |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,05/14] start normalization containerid support |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,04/14] add ausearch containerid support |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,03/14] auditctl: add support for AUDIT_CONTID filter |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,02/14] AUDIT_CONTAINER_ID message type basic support |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v8,01/14] AUDIT_CONTAINER_OP message type basic support |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,16/16] audit: add capcontid to set contid outside init_user_ns |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,15/16] audit: check contid count per netns and add config param limit |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,14/16] audit: check contid depth and add limit config param |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,13/16] audit: track container nesting |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,12/16] audit: contid check descendancy and nesting |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,11/16] audit: add support for containerid to network namespaces |
1 |
1 |
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,10/16] audit: add containerid filtering |
2 |
1 |
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,09/16] audit: add containerid support for user records |
1 |
1 |
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,08/16] audit: add support for non-syscall auxiliary records |
2 |
1 |
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,07/16] audit: add contid support for signalling the audit daemon |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,06/16] audit: log container info of syscalls |
3 |
1 |
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,05/16] audit: log drop of contid on exit of last task |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,04/16] audit: convert to contid list to check for orch/engine ownership |
|
|
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,03/16] audit: read container ID of a process |
2 |
1 |
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,02/16] audit: add container id |
3 |
1 |
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [ghak90,V8,01/16] audit: collect audit task parameters |
1 |
1 |
|
2019-12-31 |
Richard Guy Briggs |
|
New |
| [RFC,1/1] mount: universally disallow mounting over symlinks |
|
|
|
2019-12-30 |
Aleksa Sarai |
|
New |
| [v7,3/3] test: Add test for pidfd getfd |
|
|
|
2019-12-26 |
Sargun Dhillon |
|
New |
| [v7,2/3] pid: Introduce pidfd_getfd syscall |
|
|
|
2019-12-26 |
Sargun Dhillon |
|
New |
| [v7,1/3] vfs, fdtable: Add get_task_file helper |
1 |
|
|
2019-12-26 |
Sargun Dhillon |
|
New |
| [v6,3/3] test: Add test for pidfd getfd |
|
|
|
2019-12-23 |
Sargun Dhillon |
|
New |
| [v6,2/3] pid: Introduce pidfd_getfd syscall |
|
|
|
2019-12-23 |
Sargun Dhillon |
|
New |
| [v6,1/3] vfs, fdtable: Add get_task_file helper |
1 |
|
|
2019-12-23 |
Sargun Dhillon |
|
New |
| [v5,3/3] test: Add test for pidfd getfd |
|
|
|
2019-12-20 |
Sargun Dhillon |
|
New |
| [v5,2/3] pid: Introduce pidfd_getfd syscall |
|
|
|
2019-12-20 |
Sargun Dhillon |
|
New |
| [v5,1/3] vfs, fdtable: Add get_task_file helper |
|
|
|
2019-12-20 |
Sargun Dhillon |
|
New |
| [v2,2/2] uapi: split openat2(2) definitions from fcntl.h |
|
|
|
2019-12-20 |
Aleksa Sarai |
|
New |
| [v2,1/2] openat2: drop open_how->__padding field |
1 |
|
|
2019-12-20 |
Aleksa Sarai |
|
New |
| [2/2] openat2: drop open_how->__padding field |
|
|
|
2019-12-19 |
Aleksa Sarai |
|
New |
| [1/2] uapi: split openat2(2) definitions from fcntl.h |
|
|
|
2019-12-19 |
Aleksa Sarai |
|
New |
| [2/2] openat2: drop open_how->__padding field |
1 |
|
|
2019-12-19 |
Aleksa Sarai |
|
New |
| [1/2] uapi: split openat2(2) definitions from fcntl.h |
|
|
|
2019-12-19 |
Aleksa Sarai |
|
New |
| [v4,5/5] test: Add test for pidfd getfd |
|
|
|
2019-12-18 |
Sargun Dhillon |
|
New |
| [v4,4/5] samples: Add example of using pidfd getfd in conjunction with user trap |
|
|
|
2019-12-18 |
Sargun Dhillon |
|
New |
| [v4,3/5] samples: split generalized user-trap code into helper file |
|
|
|
2019-12-18 |
Sargun Dhillon |
|
New |
| [v4,2/5] pid: Add PIDFD_IOCTL_GETFD to fetch file descriptors from processes |
|
|
|
2019-12-18 |
Sargun Dhillon |
|
New |
| [v4,1/5] vfs, fdtable: Add get_task_file helper |
|
|
|
2019-12-18 |
Sargun Dhillon |
|
New |
| [v3,1/4] vfs, fdtable: Add get_task_file helper |
|
|
|
2019-12-17 |
Sargun Dhillon |
|
New |
| [v3,4/4] samples: Add example of using pidfd getfd in conjunction with user trap |
|
|
|
2019-12-17 |
Sargun Dhillon |
|
New |
| [v3,3/4] samples: split generalized user-trap code into helper file |
|
|
|
2019-12-17 |
Sargun Dhillon |
|
New |
| [v3,2/4] pid: Add PIDFD_IOCTL_GETFD to fetch file descriptors from processes |
|
|
|
2019-12-17 |
Sargun Dhillon |
|
New |
| [v8,1/1] ns: add binfmt_misc to the user namespace |
1 |
|
1 |
2019-12-16 |
Laurent Vivier |
|
New |
| openat2: switch to __attribute__((packed)) for open_how |
|
|
|
2019-12-15 |
Aleksa Sarai |
|
New |
| openat2: switch to __attribute__((packed)) for open_how |
|
|
|
2019-12-13 |
Aleksa Sarai |
|
New |
| [v2,1/4] vfs, fdtable: Add get_task_file helper |
|
|
|
2019-12-09 |
Oleg Nesterov |
|
New |
| [v2,4/4] samples: Add example of using PTRACE_GETFD in conjunction with user trap |
|
|
|
2019-12-09 |
Sargun Dhillon |
|
New |
| [v2,3/4] samples: split generalized user-trap code into helper file |
|
|
|
2019-12-09 |
Sargun Dhillon |
|
New |
| [v2,2/4] ptrace: add PTRACE_GETFD request to fetch file descriptors from tracees |
|
|
|
2019-12-09 |
Sargun Dhillon |
|
New |
| [v2,1/4] vfs, fdtable: Add get_task_file helper |
|
|
|
2019-12-09 |
Sargun Dhillon |
|
New |
| [v18,13/13] Documentation: path-lookup: include new LOOKUP flags |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,12/13] selftests: add openat2(2) selftests |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,11/13] open: introduce openat2(2) syscall |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,10/13] namei: LOOKUP_{IN_ROOT, BENEATH}: permit limited ".." resolution |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,09/13] namei: LOOKUP_IN_ROOT: chroot-like scoped resolution |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,08/13] namei: LOOKUP_BENEATH: O_BENEATH-like scoped resolution |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,07/13] namei: LOOKUP_NO_XDEV: block mountpoint crossing |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,06/13] namei: LOOKUP_NO_MAGICLINKS: block magic-link resolution |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,05/13] namei: LOOKUP_NO_SYMLINKS: block symlink resolution |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,04/13] namei: allow set_root() to produce errors |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,03/13] namei: allow nd_jump_link() to produce errors |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,02/13] nsfs: clean-up ns_get_path() signature to return int |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [v18,01/13] namei: only return -ECHILD from follow_dotdot_rcu() |
|
|
|
2019-12-06 |
Aleksa Sarai |
|
New |
| [RFC] ptrace: add PTRACE_GETFD request |
|
|
|
2019-12-05 |
Sargun Dhillon |
|
New |
| [v15,3/9] namei: LOOKUP_NO_XDEV: block mountpoint crossing |
|
|
|
2019-11-13 |
Al Viro |
|
New |
| [PATCHv8,34/34] selftests/timens: Check for right timens offsets after fork and exec |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,33/34] selftests/timens: Add a simple perf test for clock_gettime() |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,32/34] selftests/timens: Add timer offsets test |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,31/34] selftests/timens: Add procfs selftest |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,30/34] selftests/timens: Add a test for clock_nanosleep() |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,29/34] selftests/timens: Add a test for timerfd |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,28/34] selftests/timens: Add Time Namespace test for supported clocks |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,27/34] fs/proc: Introduce /proc/pid/timens_offsets |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,26/34] x86/vdso: Zap vvar pages on switch a time namspace |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,25/34] x86/vdso: On timens page fault prefault also VVAR page |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,24/34] x86/vdso: Handle faults on timens page |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,23/34] time: Allocate per-timens vvar page |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,22/34] x86/vdso: Add timens page |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,21/34] x86/vdso: Provide vdso_data offset on vvar_page |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,20/34] lib/vdso: Prepare for time namespace support |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,19/34] x86/vdso: Restrict splitting VVAR VMA |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,18/34] fs/proc: Respect boottime inside time namespace for /proc/uptime |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,17/34] posix-timers: Make clock_nanosleep() time namespace aware |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,16/34] hrtimers: Prepare hrtimer_nanosleep() for time namespaces |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |
| [PATCHv8,15/34] alarmtimer: Make nanosleep time namespace aware |
|
|
|
2019-11-12 |
Jann Horn via Containers |
|
New |