Eric W. Biederman 160da84dbb userns: Allow PR_CAPBSET_DROP in a user namespace. ... As the capabilites and capability bounding set are per user namespace properties it is safe to allow changing them with just CAP_SETPCAP permission in the user namespace. Acked-by: Serge Hallyn <serge.hallyn@canonical.com> Tested-by: Richard Weinberger <richard@nod.at> Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>		2013-08-30 17:30:39 -07:00
..
apparmor	apparmor: no need to delay vfree()	2013-05-12 21:31:02 +10:00
integrity	Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security	2013-07-03 14:04:58 -07:00
keys	aio: don't include aio.h in sched.h	2013-05-07 20:16:25 -07:00
selinux	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next	2013-07-09 18:24:39 -07:00
smack	NFS client updates for Linux 3.11	2013-07-09 12:09:43 -07:00
tomoyo	Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2013-05-01 17:51:54 -07:00
yama	yama: Better permission check for ptraceme	2013-03-26 13:17:58 -07:00
capability.c	Merge branch 'for-3.11' of git://linux-nfs.org/~bfields/linux	2013-07-11 10:17:13 -07:00
commoncap.c	userns: Allow PR_CAPBSET_DROP in a user namespace.	2013-08-30 17:30:39 -07:00
device_cgroup.c	device_cgroup: simplify cgroup tree walk in propagate_exception()	2013-05-24 10:55:38 +09:00
inode.c	securityfs: fix object creation races	2012-01-10 10:20:35 -05:00
Kconfig	KEYS: Move the key config into security/keys/Kconfig	2012-05-11 10:56:56 +01:00
lsm_audit.c	LSM: BUILD_BUG_ON if the common_audit_data union ever grows	2012-04-09 12:23:03 -04:00
Makefile	security: Yama LSM	2012-02-10 09:18:52 +11:00
min_addr.c
security.c	NFS: Extend NFS xattr handlers to accept the security namespace	2013-06-08 16:20:17 -04:00