summaryrefslogtreecommitdiff
path: root/kernel/user_namespace.c
AgeCommit message (Expand)AuthorFilesLines
2014-12-10userns: Only allow the creator of the userns unprivileged mappingsEric W. Biederman1-2/+4
2014-12-10userns: Check euid no fsuid when establishing an unprivileged uid mappingEric W. Biederman1-1/+1
2014-12-10userns: Don't allow unprivileged creation of gid mappingsEric W. Biederman1-4/+0
2014-12-10userns: Don't allow setgroups until a gid mapping has been setablishedEric W. Biederman1-0/+14
2014-12-06userns: Document what the invariant required for safe unprivileged mappings.Eric W. Biederman1-1/+3
2014-12-04copy address of proc_ns_ops into ns_commonAl Viro1-0/+1
2014-12-04new helpers: ns_alloc_inum/ns_free_inumAl Viro1-2/+2
2014-12-04make proc_ns_operations work with struct ns_common * instead of void *Al Viro1-9/+3
2014-12-04switch the rest of proc_ns_operations to working with &...->nsAl Viro1-5/+9
2014-12-04common object embedded into various struct ....nsAl Viro1-3/+3
2014-08-09proc: constify seq_operationsFabian Frederick1-3/+3
2014-06-07kernel/user_namespace.c: kernel-doc/checkpatch fixesFabian Frederick1-13/+20
2014-04-15user namespace: fix incorrect memory barriersMikulas Patocka1-6/+5
2014-04-04kernel: audit/fix non-modular users of module_init in core codePaul Gortmaker1-1/+1
2014-02-20user_namespace.c: Remove duplicated word in commentBrian Campbell1-1/+1
2013-09-24KEYS: Add per-user_namespace registers for persistent per-UID kerberos cachesDavid Howells1-0/+6
2013-09-08Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-2/+0
2013-08-27userns: Better restrictions on when proc and sysfs can be mountedEric W. Biederman1-2/+0
2013-08-09userns: limit the maximum depth of user_namespace->parent chainOleg Nesterov1-0/+4
2013-08-07userns: unshare_userns(&cred) should not populate cred on failureOleg Nesterov1-4/+9
2013-05-02Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-1/+1
2013-05-02proc: Split the namespace stuff out into linux/proc_ns.hDavid Howells1-1/+1
2013-04-15userns: Changing any namespace id mappings should require privilegesAndy Lutomirski1-3/+3
2013-04-15userns: Check uid_map's opener's fsuid, not the current fsuidAndy Lutomirski1-2/+2
2013-04-15userns: Don't let unprivileged users trick privileged users into setting the ...Eric W. Biederman1-4/+8
2013-03-27userns: Restrict when proc and sysfs can be mountedEric W. Biederman1-0/+2
2013-03-27userns: Don't allow creation if the user is chrootedEric W. Biederman1-0/+9
2013-03-14userns: Don't allow CLONE_NEWUSER | CLONE_FSEric W. Biederman1-0/+4
2013-01-27userns: Allow any uid or gid mappings that don't overlap.Eric W. Biederman1-6/+39
2013-01-27userns: Avoid recursion in put_user_nsEric W. Biederman1-8/+9
2012-12-15userns: Fix typo in description of the limitation of userns_installEric W. Biederman1-1/+1
2012-11-20proc: Usable inode numbers for the namespace file descriptors.Eric W. Biederman1-0/+15
2012-11-20userns: For /proc/self/{uid,gid}_map derive the lower userns from the struct ...Eric W. Biederman1-2/+10
2012-11-20userns: Implement unshare of the user namespaceEric W. Biederman1-0/+15
2012-11-20userns: Implent proc namespace operationsEric W. Biederman1-17/+73
2012-11-20userns: Allow setting a userns mapping to your current uid.Eric W. Biederman1-0/+15
2012-09-18userns: Add kprojid_t and associated infrastructure in projid.hEric W. Biederman1-1/+127
2012-05-03userns: Store uid and gid values in struct cred with kuid_t and kgid_t typesEric W. Biederman1-2/+2
2012-04-26userns: Rework the user_namespace adding uid/gid mapping supportEric W. Biederman1-41/+504
2012-04-26userns: Simplify the user_namespace by making userns->creator a kuid.Eric W. Biederman1-22/+20
2012-04-08userns: Disassociate user_struct from the user_namespace.Eric W. Biederman1-5/+1
2012-04-08userns: Start out with a full set of capabilities.Eric W. Biederman1-0/+9
2012-04-08userns: Add an explicit reference to the parent user namespaceEric W. Biederman1-7/+6
2012-04-08cred: Refcount the user_ns pointed to by the cred.Eric W. Biederman1-3/+5
2012-04-08userns: Use cred->user_ns instead of cred->user->user_nsEric W. Biederman1-2/+2
2011-10-31kernel: Map most files to use export.h instead of module.hPaul Gortmaker1-1/+1
2011-01-13user_ns: improve the user_ns on-the-slab packagingPavel Emelyanov1-3/+12
2010-06-17user_ns: Introduce user_nsmap_uid and user_ns_map_gid.Eric W. Biederman1-0/+44
2010-05-21kref: remove kref_setNeilBrown1-2/+2
2009-02-28Fix recursive lock in free_uid()/free_user_ns()David Howells1-4/+17