linux/net at 965475acca2cbcc1d748a8b6a05f8c7cf57d075a - linux - MyRedstone

Kernel/linux

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2025-01-09 14:50:19 +00:00

History

Tyler Hicks d6e0d30644 net: Use ns_capable_noaudit() when determining net sysctl permissions

The capability check should not be audited since it is only being used
to determine the inode permissions. A failed check does not indicate a
violation of security policy but, when an LSM is enabled, a denial audit
message was being generated.

The denial audit message caused confusion for some application authors
because root-running Go applications always triggered the denial. To
prevent this confusion, the capability check in net_ctl_permissions() is
switched to the noaudit variant.

BugLink: https://launchpad.net/bugs/1465724

Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Acked-by: Serge E. Hallyn <serge.hallyn@ubuntu.com>
Signed-off-by: James Morris <james.l.morris@oracle.com>

2016-06-06 20:16:22 +10:00

..

6lowpan: move mac802154 header

2016-04-13 10:41:10 +02:00

remove lots of IS_ERR_VALUE abuses

2016-05-27 15:26:11 -07:00

…

vlan: Propagate MAC address to VLANs

2016-05-31 11:56:48 -07:00

appletalk: fix erroneous return value

2016-02-18 14:59:34 -05:00

net/atm: sk_err_soft must be positive

2016-05-23 13:51:10 -07:00

ax25: add link layer header validation function

2016-03-09 22:13:01 -05:00

batman-adv: initialize ELP orig address on secondary interfaces

2016-05-18 11:49:44 +08:00

Bluetooth: fix power_on vs close race

2016-05-13 16:50:23 +02:00

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2016-05-09 15:59:24 -04:00

net: caif: fix misleading indentation

2016-03-14 13:09:50 -04:00

sock: enable timestamping using control messages

2016-04-04 15:50:30 -04:00

libceph: use %s instead of %pE in dout()s

2016-05-30 23:00:23 +02:00

net: pktgen: Call destroy_hrtimer_on_stack()

2016-05-31 11:44:08 -07:00

net/dcb: make dcbnl.c explicitly non-modular

2015-10-09 07:52:27 -07:00

dccp: do not assume DCCP code is non preemptible

2016-05-02 17:02:25 -04:00

decnet: Do not build routes to devices without decnet private data.

2016-04-10 23:01:30 -04:00

KEYS: Add a facility to restrict new links into a keyring

2016-04-11 22:37:37 +01:00

dsa: Rename switch chip data to cd

2016-05-11 19:36:28 -04:00

eth: Pull header from first fragment via eth_get_headlen

2016-02-24 13:58:05 -05:00

net/hsr: Use setup_timer and mod_timer.

2016-05-16 14:00:43 -04:00

ieee802154: fix logic error in ieee802154_llsec_parse_dev_addr

2016-05-29 22:36:25 -07:00

ipv4: Fix non-initialized TTL when CONFIG_SYSCTL=n

2016-05-23 14:32:06 -07:00

fou: fix IPv6 Kconfig options

2016-05-31 14:07:49 -07:00

…

TTY and Serial driver update for 4.7-rc1

2016-05-20 20:57:27 -07:00

af_iucv: Validate socket address length in iucv_sock_bind()

2016-01-19 14:21:08 -05:00

kcm: fix a signedness in kcm_splice_read()

2016-05-19 11:26:51 -07:00

af_key: fix two typos

2015-10-23 03:05:19 -07:00

net: l2tp: Make l2tp_ip6 namespace aware

2016-05-30 00:03:53 -07:00

net: l3mdev: Allow send on enslaved interface

2016-05-09 22:33:52 -04:00

net/lapb: tuse %*ph to dump buffers

2016-05-29 22:33:25 -07:00

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2016-05-09 15:59:24 -04:00

Some more work for 4.7, notably:

2016-05-12 11:46:58 -04:00

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next

2016-03-19 10:05:34 -07:00

gso: Remove arbitrary checks for unsupported GSO

2016-05-20 18:03:15 -04:00

net: define gso types for IPx over IPv4 and IPv6

2016-05-20 18:03:15 -04:00

netlabel: fix a problem with netlbl_secattr_catmap_setrng()

2016-04-05 16:10:47 -04:00

netlink: Fix dump skb leak/double free

2016-05-16 22:05:15 -04:00

netfilter: Remove spurios included of netfilter.h

2015-06-18 21:14:32 +02:00

nfc: nci: Add nci_nfcc_loopback to the nci core

2016-05-04 01:48:16 +02:00

openvswitch: update checksum in {push,pop}_mpls

2016-05-31 13:51:42 -07:00

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2016-04-23 18:51:33 -04:00

sock: struct proto hash function may error

2016-02-11 03:54:14 -05:00

Merge tag 'qcom-soc-for-4.7-2' into net-next

2016-05-17 14:11:19 -04:00

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2016-05-20 20:01:26 -07:00

rfkill: Use switch to demux userspace operations

2016-04-05 10:48:53 +02:00

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2015-06-24 02:58:51 -07:00

Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security

2016-05-19 09:21:36 -07:00

net sched actions: policer missing timestamp processing

2016-05-24 16:23:23 -07:00

sctp: sctp_diag should dump sctp socket type

2016-05-31 11:59:06 -07:00

NFS client updates for Linux 4.7

2016-05-26 10:33:33 -07:00

switchdev: pass pointer to fib_info instead of copy

2016-05-17 13:58:49 -04:00

tipc: fix potential null pointer dereferences in some compat functions

2016-05-25 12:33:52 -07:00

constify security_path_{mkdir,mknod,symlink}

2016-03-28 00:47:27 -04:00

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2016-05-09 15:59:24 -04:00

net:wimax: Fix doucble word "the the" in networking.xml

2015-08-09 22:43:52 -07:00

mm/page_ref: use page_ref helper instead of direct modification of _count

2016-05-19 19:12:14 -07:00

net: fix a kernel infoleak in x25 module

2016-05-09 22:45:33 -04:00

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2016-05-09 15:59:24 -04:00

compat.c

…

Kconfig

bpf: add generic constant blinding for use in jits

2016-05-16 13:49:32 -04:00

Makefile

net: Add Qualcomm IPC router

2016-05-08 23:46:14 -04:00

socket.c

fs: poll/select/recvmmsg: use timespec64 for timeout events

2016-05-19 19:12:14 -07:00

sysctl_net.c

net: Use ns_capable_noaudit() when determining net sysctl permissions

2016-06-06 20:16:22 +10:00