user/sven/linux.git/kernel/capability.c, branch v2.6.12.2

[PATCH] Make lots of things static

2005-03-12T00:40:56Z

This is a megarollup of ~60 patches which give various things static scope. Signed-off-by: Adrian Bunk Signed-off-by: Andrew Morton Signed-off-by: Linus Torvalds

[PATCH] Lock initializer cleanup (Core)

2005-01-08T06:09:06Z

Kernel core files converted to use the new lock initializers. Signed-off-by: Thomas Gleixner Acked-by: Ingo Molnar Signed-off-by: Andrew Morton Signed-off-by: Linus Torvalds

[PATCH] capset returns -EPERM when pid==current->pid

2005-01-04T13:10:06Z

In the current kernel/capability.c:sys_capset() code, permission is denied if CAP_SETPCAP is not held and pid is positive. pid=0 means use the current process, and this is allowed. But using the current process' pid is not allowed. The man page for capsetp simply says that CAP_SETPCAP is required to use this function, and does not mention the exception for pid=0. The current behavior seems inconsistent. The attached patch also allows a process to call capset() on itself. Signed-off-by: Chris Wright Signed-off-by: Andrew Morton Signed-off-by: Linus Torvalds

[PATCH] properly split capset_check+capset_set

2005-01-04T13:09:53Z

The attached patch removes checks from kernel/capability.c which are redundant with cap_capset_check() code, and moves the capset_check() calls to immediately before the capset_set() calls. This allows capset_check() to accurately check the setter's permission to set caps on the target. Please apply. Signed-off-by: Serge Hallyn Signed-off-by: Chris Wright Signed-off-by: Stephen Smalley Signed-off-by: Andrew Morton Signed-off-by: Linus Torvalds

[PATCH] add missing linux/syscalls.h includes

2004-10-18T15:54:02Z

I found that the prototypes for sys_waitid and sys_fcntl in don't match the implementation. In order to keep all prototypes in sync in the future, now include the header from each file implementing any syscall. Signed-off-by: Arnd Bergmann Signed-off-by: Andrew Morton Signed-off-by: Linus Torvalds

[PATCH] fixed pidhashing patch

2004-09-02T07:42:48Z

This patch fixes strange and obscure pid implementation in current kernels: - it removes calling of put_task_struct() from detach_pid() under tasklist_lock. This allows to use blocking calls in security_task_free() hooks (in __put_task_struct()). - it saves some space = 5*5 ints = 100 bytes in task_struct - it's smaller and tidy, more straigthforward and doesn't use any knowledge about pids using and assignment. - it removes pid_links and pid_struct doesn't hold reference counters on task_struct. instead, new pid_structs and linked altogether and only one of them is inserted in hash_list. Signed-off-by: Kirill Korotaev (kksx@mail.ru) Signed-off-by: William Irwin Signed-off-by: Linus Torvalds

o kernel/ksyms.c: move remaining EXPORT_SYMBOLs, remove this file from the tree

2003-10-07T20:54:04Z

[PATCH] converting cap_set_pg() to for_each_task_pid()

2002-12-18T06:58:27Z

cap_set_pg() wants to find all processes in a given process group. This converts it to use for_each_task_pid().

Merge

2002-11-24T07:31:02Z

[PATCH] remove duplicated assignment from sys_capget.

2002-11-19T11:01:48Z

This removes the code from cap_sysget that fills out the capability set being returned to userspace. The module handles this in a policy specific way. This updates the dummy.c module to fill in return data according to superuser policy, and also disables setting capabilities in superuser policy.