leandrof/linux
1
0
Fork 0
forked from Minki/linux
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2bd8dbbf22
linux/security/apparmor
History
John Johansen 2bd8dbbf22 apparmor: add ns being viewed as a param to policy_view_capable() 
Prepare for a tighter pairing of user namespaces and apparmor policy
namespaces, by making the ns to be viewed available and checking
that the user namespace level is the same as the policy ns level.

This strict pairing will be relaxed once true support of user namespaces
lands.

Signed-off-by: John Johansen <john.johansen@canonical.com>
2017-01-16 01:18:39 -08:00
..
include apparmor: add ns being viewed as a param to policy_view_capable() 2017-01-16 01:18:39 -08:00
.gitignore AppArmor: remove af_names.h from .gitignore 2012-09-01 08:35:34 -07:00
apparmorfs.c apparmor: allow introspecting the policy namespace name 2017-01-16 01:18:37 -08:00
audit.c apparmor: split apparmor policy namespaces code into its own file 2017-01-16 00:42:15 -08:00
capability.c apparmor: fix capability to not use the current task, during reporting 2013-10-29 21:33:37 -07:00
context.c apparmor: rename replacedby to proxy 2017-01-16 01:18:19 -08:00
crypto.c apparmor: fix SECURITY_APPARMOR_HASH_DEFAULT parameter handling 2016-07-27 17:39:26 +10:00
domain.c apparmor: name null-XXX profiles after the executable 2017-01-16 01:18:30 -08:00
file.c apparmor: use designated initializers 2017-01-15 20:00:32 -08:00
ipc.c apparmor: fix capability to not use the current task, during reporting 2013-10-29 21:33:37 -07:00
Kconfig apparmor: add debug assert AA_BUG and Kconfig to control debug info 2017-01-16 01:18:24 -08:00
lib.c apparmor: update policy_destroy to use new debug asserts 2017-01-16 01:18:27 -08:00
lsm.c apparmor: add ns being viewed as a param to policy_view_capable() 2017-01-16 01:18:39 -08:00
Makefile apparmor: rename sid to secid 2017-01-16 00:42:17 -08:00
match.c apparmor: add a default null dfa 2017-01-16 01:18:34 -08:00
nulldfa.in apparmor: add a default null dfa 2017-01-16 01:18:34 -08:00
path.c apparmor: internal paths should be treated as disconnected 2016-07-12 08:43:10 -07:00
policy_ns.c apparmor: track ns level so it can be used to help in view checks 2017-01-16 01:18:36 -08:00
policy_unpack.c apparmor: add a default null dfa 2017-01-16 01:18:34 -08:00
policy.c apparmor: add ns being viewed as a param to policy_view_capable() 2017-01-16 01:18:39 -08:00
procattr.c apparmor: allow ns visibility question to consider subnses 2017-01-16 01:18:22 -08:00
resource.c apparmor: allow SYS_CAP_RESOURCE to be sufficient to prlimit another task 2016-07-12 08:43:10 -07:00
secid.c apparmor: rename sid to secid 2017-01-16 00:42:17 -08:00