| [net-next,v2,9/9] ipv6: add inet6_fill_args |
|
|
|
2018-09-04 |
Christian Brauner |
|
New |
| [net-next,v2,8/9] ipv4: add inet_fill_args |
|
|
|
2018-09-04 |
Christian Brauner |
|
New |
| [net-next,v2,7/9] rtnetlink: s/IFLA_IF_NETNSID/IFLA_TARGET_NETNSID/g |
|
|
|
2018-09-04 |
Christian Brauner |
|
New |
| [net-next,v2,6/9] if_link: add IFLA_TARGET_NETNSID alias |
|
|
|
2018-09-04 |
Christian Brauner |
|
New |
| [net-next,v2,5/9] rtnetlink: move type calculation out of loop |
|
|
|
2018-09-04 |
Christian Brauner |
|
New |
| [net-next,v2,4/9] ipv6: enable IFA_TARGET_NETNSID for RTM_GETADDR |
|
|
|
2018-09-04 |
Christian Brauner |
|
New |
| [net-next,v2,3/9] ipv4: enable IFA_TARGET_NETNSID for RTM_GETADDR |
|
|
|
2018-09-04 |
Christian Brauner |
|
New |
| [net-next,v2,2/9] if_addr: add IFA_TARGET_NETNSID |
|
|
|
2018-09-04 |
Christian Brauner |
|
New |
| [net-next,v2,1/9] rtnetlink: add rtnl_get_net_ns_capable() |
|
|
|
2018-09-04 |
Christian Brauner |
|
New |
| [v5,5/5] samples: add an example of seccomp user trap |
|
|
|
2018-08-28 |
Tycho Andersen |
|
New |
| [v5,4/5] seccomp: add support for passing fds via USER_NOTIF |
|
|
|
2018-08-28 |
Tycho Andersen |
|
New |
| [v5,3/5] seccomp: add a way to get a listener fd from ptrace |
|
|
|
2018-08-28 |
Tycho Andersen |
|
New |
| [v5,2/5] seccomp: make get_nth_filter available outside of CHECKPOINT_RESTORE |
1 |
|
|
2018-08-28 |
Tycho Andersen |
|
New |
| [v5,1/5] seccomp: add a return code to trap to userspace |
|
|
|
2018-08-28 |
Tycho Andersen |
|
New |
| [9/9] capability: add cap_set_nsowner() |
|
1 |
|
2018-08-10 |
Christian Brauner |
|
New |
| [8/9] cap_file: handle run- vs buildtime vfs cap support |
|
1 |
|
2018-08-10 |
Christian Brauner |
|
New |
| [7/9] cap_file: save rootid in _fcaps_save() |
|
1 |
|
2018-08-10 |
Christian Brauner |
|
New |
| [6/9] capability: add cap_get_nsowner() |
|
1 |
|
2018-08-10 |
Christian Brauner |
|
New |
| [5/9] cap_file: initialize rootid in _fcaps_load() |
|
1 |
|
2018-08-10 |
Christian Brauner |
|
New |
| [4/9] cap_file: add new rootid argument |
|
1 |
|
2018-08-10 |
Christian Brauner |
|
New |
| [3/9] cap_file: use struct vfs_ns_cap_data if possible |
|
1 |
|
2018-08-10 |
Christian Brauner |
|
New |
| [2/9] capability: update to new uapi header |
|
1 |
|
2018-08-10 |
Christian Brauner |
|
New |
| [1/9] cap_file: use v3 xattr macros |
|
1 |
|
2018-08-10 |
Christian Brauner |
|
New |
| [v3] cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias() |
2 |
|
|
2018-08-08 |
Amir Goldstein |
|
New |
| [ghau51/ghau40,v4,6/6] libaudit: add support to get the task audit container identifier |
|
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v4,5/6] start normalization containerid support |
|
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v4,4/6] add ausearch containerid support |
|
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v4,3/6] auditctl: add support for AUDIT_CONTID filter |
|
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v4,2/6] AUDIT_CONTAINER message type basic support |
|
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v4,1/6] AUDIT_CONTAINER_OP message type basic support |
|
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,10/10] debug audit: read container ID of a process |
1 |
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,09/10] audit: NETFILTER_PKT: record each container ID associated with a n... |
|
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,08/10] audit: add support for containerid to network namespaces |
|
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,07/10] audit: add containerid filtering |
1 |
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,06/10] audit: add containerid support for tty_audit |
1 |
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,05/10] audit: add support for non-syscall auxiliary records |
1 |
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,04/10] audit: add containerid support for ptrace and signals |
1 |
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,03/10] audit: log container info of syscalls |
2 |
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,02/10] audit: add container id |
2 |
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [ghak90,(was,ghak32),V4,01/10] audit: collect audit task parameters |
|
|
|
2018-07-31 |
Richard Guy Briggs |
|
New |
| [net-next,v3,8/8] bridge: make sure objects belong to container's owner |
|
|
|
2018-07-20 |
Tyler Hicks |
|
New |
| [net-next,v3,7/8] net: create reusable function for getting ownership info of sysfs inodes |
|
|
|
2018-07-20 |
Tyler Hicks |
|
New |
| [net-next,v3,6/8] net-sysfs: make sure objects belong to container's owner |
|
|
|
2018-07-20 |
Tyler Hicks |
|
New |
| [net-next,v3,5/8] net-sysfs: require net admin in the init ns for setting tx_maxrate |
|
|
|
2018-07-20 |
Tyler Hicks |
|
New |
| [net-next,v3,4/8] driver core: set up ownership of class devices in sysfs |
|
1 |
|
2018-07-20 |
Tyler Hicks |
|
New |
| [net-next,v3,3/8] kobject: kset_create_and_add() - fetch ownership info from parent |
|
1 |
|
2018-07-20 |
Tyler Hicks |
|
New |
| [net-next,v3,2/8] sysfs, kobject: allow creating kobject belonging to arbitrary users |
|
|
|
2018-07-20 |
Tyler Hicks |
|
New |
| [net-next,v3,1/8] kernfs: allow creating kernfs objects with arbitrary uid/gid |
|
|
|
2018-07-20 |
Tyler Hicks |
|
New |
| [net-next,v2,7/7] bridge: make sure objects belong to container's owner |
|
|
|
2018-07-13 |
Tyler Hicks |
|
New |
| [net-next,v2,6/7] net: Create reusable function for getting ownership info of sysfs inodes |
|
|
|
2018-07-13 |
Tyler Hicks |
|
New |
| [net-next,v2,5/7] net-sysfs: make sure objects belong to contrainer's owner |
|
|
|
2018-07-13 |
Tyler Hicks |
|
New |
| [net-next,v2,4/7] driver core: set up ownership of class devices in sysfs |
|
1 |
|
2018-07-13 |
Tyler Hicks |
|
New |
| [net-next,v2,3/7] kobject: kset_create_and_add() - fetch ownership info from parent |
|
1 |
|
2018-07-13 |
Tyler Hicks |
|
New |
| [net-next,v2,2/7] sysfs, kobject: allow creating kobject belonging to arbitrary users |
|
1 |
|
2018-07-13 |
Tyler Hicks |
|
New |
| [net-next,v2,1/7] kernfs: allow creating kernfs objects with arbitrary uid/gid |
|
|
|
2018-07-13 |
Tyler Hicks |
|
New |
| ipv4: Return EINVAL when ping_group_range sysctl doesn't map to user ns |
|
|
|
2018-07-05 |
Tyler Hicks |
|
New |
| Revert "vfs: Allow userns root to call mknod on owned filesystems." |
|
|
|
2018-07-05 |
Christian Brauner |
|
New |
| [v4,1/4] seccomp: add a return code to trap to userspace |
|
|
|
2018-06-22 |
Jann Horn via Containers |
|
New |
| [v4,4/4] seccomp: add support for passing fds via USER_NOTIF |
|
|
|
2018-06-21 |
Tycho Andersen |
|
New |
| [v4,3/4] seccomp: add a way to get a listener fd from ptrace |
|
|
|
2018-06-21 |
Tycho Andersen |
|
New |
| [v4,2/4] seccomp: make get_nth_filter available outside of CHECKPOINT_RESTORE |
|
|
|
2018-06-21 |
Tycho Andersen |
|
New |
| [v4,1/4] seccomp: add a return code to trap to userspace |
|
|
|
2018-06-21 |
Tycho Andersen |
|
New |
| [v2] proc: Simplify and fix proc by removing the kernel mount |
|
|
1 |
2018-06-17 |
Eric W. Biederman |
|
New |
| [CFT] proc: Simplify and fix proc by removing the kernel mount |
|
|
|
2018-06-16 |
Eric W. Biederman |
|
New |
| [v3,1/1] shiftfs: uid/gid shifting bind mount |
|
|
|
2018-06-15 |
James Bottomley |
|
New |
| shiftfs status and future development |
|
|
|
2018-06-15 |
Seth Forshee |
|
New |
| [merged] selftests: uevent filtering |
|
|
|
2018-06-09 |
Christian Brauner |
|
New |
| [net-next,2/2,merged] netns: restrict uevents] |
|
|
|
2018-06-09 |
Christian Brauner |
|
New |
| [net-next,1/2,merged] uevent: add alloc_uevent_skb() helper |
|
|
|
2018-06-09 |
Christian Brauner |
|
New |
| [ghau51/ghau40,v3,6/6] libaudit: add support to get the task audit container identifier |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v3,5/6] start normalization containerid support |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v3,4/6] add ausearch containerid support |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v3,3/6] auditctl: add support for AUDIT_CONTID filter |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v3,2/6] AUDIT_CONTAINER message type basic support |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [ghau51/ghau40,v3,1/6] AUDIT_CONTAINER_ID message type basic support |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,10/10] rfkill: fix spelling mistake contidion to condition |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,09/10] debug audit: read container ID of a process |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,08/10] audit: NETFILTER_PKT: record each container ID associated with... |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,07/10] audit: add support for containerid to network namespaces |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,06/10] audit: add containerid filtering |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,05/10] audit: add containerid support for tty_audit |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,04/10] audit: add support for non-syscall auxiliary records |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,03/10] audit: add containerid support for ptrace and signals |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,02/10] audit: log container info of syscalls |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [RFC,ghak90,(was,ghak32),V3,01/10] audit: add container id |
|
|
|
2018-06-06 |
Richard Guy Briggs |
|
New |
| [v3,4/4] seccomp: add support for passing fds via USER_NOTIF |
|
|
|
2018-05-31 |
Tycho Andersen |
|
New |
| [v3,3/4] seccomp: add a way to get a listener fd from ptrace |
|
|
|
2018-05-31 |
Tycho Andersen |
|
New |
| [v3,2/4] seccomp: make get_nth_filter available outside of CHECKPOINT_RESTORE |
|
|
|
2018-05-31 |
Tycho Andersen |
|
New |
| [v3,1/4] seccomp: add a return code to trap to userspace |
|
|
|
2018-05-31 |
Tycho Andersen |
|
New |
| fuse: Allow fully unprivileged mounts |
|
|
|
2018-05-29 |
Eric W. Biederman |
|
New |
| [REVIEW,v2,3/6] fs: Allow superblock owner to replace invalid owners of inodes |
2 |
|
|
2018-05-23 |
Eric W. Biederman |
|
New |
| [REVIEW,6/6] fs: Allow CAP_SYS_ADMIN in s_user_ns to freeze and thaw filesystems |
1 |
|
|
2018-05-23 |
Eric W. Biederman |
|
New |
| [REVIEW,5/6] capabilities: Allow privileged user in s_user_ns to set security.* xattrs |
2 |
|
|
2018-05-23 |
Eric W. Biederman |
|
New |
| [REVIEW,4/6] fs: Allow superblock owner to access do_remount_sb() |
3 |
|
|
2018-05-23 |
Eric W. Biederman |
|
New |
| [REVIEW,3/6] fs: Allow superblock owner to replace invalid owners of inodes |
1 |
|
|
2018-05-23 |
Eric W. Biederman |
|
New |
| [REVIEW,2/6] vfs: Allow userns root to call mknod on owned filesystems. |
2 |
|
|
2018-05-23 |
Eric W. Biederman |
|
New |
| [REVIEW,1/6] vfs: Don't allow changing the link count of an inode with an invalid uid or gid |
2 |
|
|
2018-05-23 |
Eric W. Biederman |
|
New |
| [RFC] bpf: tracing: new helper bpf_get_current_cgroup_ino |
|
|
|
2018-05-23 |
Y Song |
|
New |
| [v2,4/4] seccomp: add support for passing fds via USER_NOTIF |
|
|
|
2018-05-17 |
Tycho Andersen |
|
New |
| [v2,3/4] seccomp: add a way to get a listener fd from ptrace |
|
|
|
2018-05-17 |
Tycho Andersen |
|
New |