mirrors/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-09-12 13:55:32 +00:00
Code Issues Releases Wiki Activity
linux-stable/security/safesetid
History
Jann Horn 71a98971b9 LSM: SafeSetID: fix userns handling in securityfs 
Looking at current_cred() in write handlers is bad form, stop doing that.

Also, let's just require that the write is coming from the initial user
namespace. Especially SAFESETID_WHITELIST_FLUSH requires privilege over all
namespaces, and SAFESETID_WHITELIST_ADD should probably require it as well.

Signed-off-by: Jann Horn <jannh@google.com>
Signed-off-by: Micah Morton <mortonm@chromium.org>
2019-07-15 08:07:19 -07:00
..
Kconfig treewide: Add SPDX license identifier - Makefile/Kconfig 2019-05-21 10:50:46 +02:00
lsm.c LSM: SafeSetID: refactor safesetid_security_capable() 2019-07-15 08:06:58 -07:00
lsm.h LSM: SafeSetID: refactor policy hash table 2019-07-15 08:05:48 -07:00
Makefile
securityfs.c LSM: SafeSetID: fix userns handling in securityfs 2019-07-15 08:07:19 -07:00