linux-stable

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-09-14 06:35:12 +00:00

History

Linus Torvalds 0f75ef6a9c Keyrings ACL -----BEGIN PGP SIGNATURE----- iQIVAwUAXRyyVvu3V2unywtrAQL3xQ//eifjlELkRAPm2EReWwwahdM+9QL/0bAy e8eAzP9EaphQGUhpIzM9Y7Cx+a8XW2xACljY8hEFGyxXhDMoLa35oSoJOeay6vQt QcgWnDYsET8Z7HOsFCP3ZQqlbbqfsB6CbIKtZoEkZ8ib7eXpYcy1qTydu7wqrl4A AaJalAhlUKKUx9hkGGJTh2xvgmxgSJkxx3cNEWJQ2uGgY/ustBpqqT4iwFDsgA/q fcYTQFfNQBsC8/SmvQgxJSc+reUdQdp0z1vd8qjpSdFFcTq1qOtK0qDdz1Bbyl24 hAxvNM1KKav83C8aF7oHhEwLrkD+XiYKixdEiCJJp+A2i+vy2v8JnfgtFTpTgLNK 5xu2VmaiWmee9SLCiDIBKE4Ghtkr8DQ/5cKFCwthT8GXgQUtdsdwAaT3bWdCNfRm DqgU/AyyXhoHXrUM25tPeF3hZuDn2yy6b1TbKA9GCpu5TtznZIHju40Px/XMIpQH 8d6s/pg+u/SnkhjYWaTvTcvsQ2FB/vZY/UzAVyosnoMBkVfL4UtAHGbb8FBVj1nf Dv5VjSjl4vFjgOr3jygEAeD2cJ7L6jyKbtC/jo4dnOmPrSRShIjvfSU04L3z7FZS XFjMmGb2Jj8a7vAGFmsJdwmIXZ1uoTwX56DbpNL88eCgZWFPGKU7TisdIWAmJj8U N9wholjHJgw= =E3bF -----END PGP SIGNATURE----- Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs Pull keyring ACL support from David Howells: "This changes the permissions model used by keys and keyrings to be based on an internal ACL by the following means: - Replace the permissions mask internally with an ACL that contains a list of ACEs, each with a specific subject with a permissions mask. Potted default ACLs are available for new keys and keyrings. ACE subjects can be macroised to indicate the UID and GID specified on the key (which remain). Future commits will be able to add additional subject types, such as specific UIDs or domain tags/namespaces. Also split a number of permissions to give finer control. Examples include splitting the revocation permit from the change-attributes permit, thereby allowing someone to be granted permission to revoke a key without allowing them to change the owner; also the ability to join a keyring is split from the ability to link to it, thereby stopping a process accessing a keyring by joining it and thus acquiring use of possessor permits. - Provide a keyctl to allow the granting or denial of one or more permits to a specific subject. Direct access to the ACL is not granted, and the ACL cannot be viewed" * tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs: keys: Provide KEYCTL_GRANT_PERMISSION keys: Replace uid/gid/perm permissions checking with an ACL		2019-07-08 19:56:57 -07:00
..
certs	cfg80211: ship certificates as hex files	2017-12-19 09:28:01 +01:00
.gitignore	cfg80211: implement regdb signature checking	2017-10-11 14:24:24 +02:00
ap.c	cfg80211: call disconnect_wk when AP stops	2019-02-01 11:12:50 +01:00
chan.c	cfg80211: add some missing fall through annotations	2018-12-18 13:15:08 +01:00
core.c	Various fixes, all over:	2019-06-14 09:36:51 -07:00
core.h	Merge remote-tracking branch 'net-next/master' into mac80211-next	2019-02-22 13:48:13 +01:00
debugfs.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
debugfs.h	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
ethtool.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
ibss.c	nl80211: Add SOCKET_OWNER support to JOIN_IBSS	2018-03-29 10:36:22 +02:00
Kconfig	treewide: Add SPDX license identifier - Makefile/Kconfig	2019-05-21 10:50:46 +02:00
lib80211.c	treewide: Add SPDX license identifier for more missed files	2019-05-21 10:50:45 +02:00
lib80211_crypt_ccmp.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 501	2019-06-19 17:09:56 +02:00
lib80211_crypt_tkip.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 501	2019-06-19 17:09:56 +02:00
lib80211_crypt_wep.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 501	2019-06-19 17:09:56 +02:00
Makefile	wireless: Skip directory when generating certificates	2019-05-14 10:27:57 +02:00
mesh.c	nl80211: Add SOCKET_OWNER support to JOIN_MESH	2018-03-29 10:38:24 +02:00
mlme.c	cfg80211: Report Association Request frame IEs in association events	2019-02-22 13:35:09 +01:00
nl80211.c	Various fixes, all over:	2019-06-14 09:36:51 -07:00
nl80211.h	cfg80211: Report Association Request frame IEs in association events	2019-02-22 13:35:09 +01:00
ocb.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
of.c	cfg80211: support ieee80211-freq-limit DT property	2017-01-06 14:01:13 +01:00
pmsr.c	cfg80211: report measurement start TSF correctly	2019-06-14 15:46:33 +02:00
radiotap.c	cfg80211: add radiotap VHT info to rtap_namespace_sizes	2016-02-24 09:04:41 +01:00
rdev-ops.h	cfg80211: add support to probe unexercised mesh link	2019-04-26 13:02:11 +02:00
reg.c	keys: Replace uid/gid/perm permissions checking with an ACL	2019-06-27 23:03:07 +01:00
reg.h	cfg80211: restore regulatory without calling userspace	2019-02-11 15:46:29 +01:00
scan.c	cfg80211: use BIT_ULL in cfg80211_parse_mbssid_data()	2019-06-14 15:46:33 +02:00
sme.c	cfg80211: call disconnect_wk when AP stops	2019-02-01 11:12:50 +01:00
sysfs.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 432	2019-06-05 17:37:16 +02:00
sysfs.h	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
trace.c
trace.h	cfg80211: add support to probe unexercised mesh link	2019-04-26 13:02:11 +02:00
util.c	cfg80211: util: fix bit count off by one	2019-06-14 15:46:33 +02:00
wext-compat.c	cfg80211: remove redundant zero check on variable 'changed'	2019-04-26 13:02:11 +02:00
wext-compat.h	treewide: Add SPDX license identifier for missed files	2019-05-21 10:50:45 +02:00
wext-core.c	net: Don't take rtnl_lock() in wireless_nlevent_flush()	2018-03-29 13:47:53 -04:00
wext-priv.c
wext-proc.c	proc: introduce proc_create_net{,_data}	2018-05-16 07:24:30 +02:00
wext-sme.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
wext-spy.c