repo.or.cz
/
linux-2.6.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
CRED: Wrap task credential accesses in the UNIX socket protocol
2008-10-29
Paul Moore
net
l
ab
e
l: Fi
x
compi
l
er w
a
rning
s
in netlabel_m
g
mt
.
c
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Pa
u
l Moore
netlab
e
l
: Add con
f
iguratio
n
support for local lab
e
ling
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
P
aul
M
oore
cipso: Add s
u
pport for nativ
e
l
oc
a
l labeling and fixup
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Paul Moore
n
e
t
l
a
b
e
l
:
C
h
anges to th
e
NetLabel secu
r
ity
a
ttributes
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
P
a
ul
M
oore
s
elinux:
C
a
che NetL
a
bel
s
ecattrs in t
h
e sock
e
t'
s
secu
r
ity
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Paul Moore
s
e
li
n
ux: Set socket
NetLabel based on connection en
d
point
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Pa
u
l Moore
netlabe
l
: Add
f
un
c
tionali
t
y to set the securit
y
a
t
tributes
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Pa
u
l Moore
netlabel: Add network addre
s
s s
e
lectors to the
Ne
t
Labe
l
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
P
aul
Moore
netlabel: Add
a generic way to
create o
r
dered linked
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Paul
Moor
e
n
etlabel: Re
p
lace protocol/Ne
t
Labe
l
l
inking
with refrerenc
e
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Paul Mo
o
re
sma
c
k: Fix missing calls t
o
netlbl_skb
u
ff_err()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Paul Moo
r
e
selinux: Fix missing cal
l
s to netlbl_skbuff_err()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
P
a
ul
M
oore
s
elinux: Fix a problem in
secur
i
ty
_
netl
b
l_sid_to_seca
t
t
r()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
P
aul Moore
selinux:
Be
t
ter local/forward check in seli
n
ux_i
p
_postroute()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Pa
u
l Moore
n
etlabel: Remove un
n
eede
d
in-kernel API
functions
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Paul Moore
s
elin
u
x: Cor
r
ectly hand
l
e IPv4 pack
e
t
s on
IPv6
socke
t
s
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
P
a
ul M
o
ore
s
e
l
inu
x
: Cle
a
nup t
h
e NetLabel glu
e
c
ode
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-10
Paul Moore
n
e
tlabel: Fi
x
some spars
e
warnings
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-03
Paul Moore
s
e
l
inux
:
Fix an uninitialized
v
ari
a
ble BUG
/
panic in
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-10-03
Paul Moore
s
e
linux: Fix an uninitialized variable BUG/panic in
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-06-28
P
aul
M
oore
n
etlabel: Fix a prob
l
em when d
u
mping th
e
default I
P
v6
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-04-27
Paul Moor
e
SE
L
inux: Fi
x
a
RCU free
p
roblem wit
h
the
netport cache
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-04-27
Paul Moore
S
E
Linux: Made ne
t
node cache adds faster
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-04-18
Paul
Moore
SELi
n
ux
:
Add n
e
tw
o
rk port SID cache
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-04-18
Paul Moore
SELinux: Correct
the
N
etLab
e
l
l
o
cking for the sk_se
c
urity_struct
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-04-13
Paul Moore
LSM
:
Make the La
b
eled I
P
s
ec ho
o
ks
more stack friendly
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-04-13
Paul Moore
Net
L
a
b
el: Allow passing
t
h
e LSM dom
a
in as a share
d
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-03-01
P
a
ul Moore
[PATCH]
A
u
d
it: Fix the f
o
rmat type for size_t variables
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-02-06
Paul Moore
SELinux
:
Rem
o
ve security_g
e
t_policycaps()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-02-05
Paul Moore
Ne
t
Label: introduce a
new ker
n
e
l
c
o
nfiguration API
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-02-01
Pau
l
M
o
ore
[SELinu
x
]: F
i
x double free
in sel
i
nux_netlbl_sock_
s
e
t
s
i
d()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul
M
oore
S
ELinux: Ad
d
wa
r
n
i
ng messages on
n
e
twork denial d
u
e
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
SELinux
:
Add net
w
ork ingress and egress control permission
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
Net
L
abe
l
: Add auditing to the sta
t
ic labeling mecha
n
ism
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
NetLabel: Introduce static n
e
t
w
ork label
s
for unlabeled
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
P
aul M
o
ore
SELi
n
u
x
: Al
l
o
w N
e
t
Label to directly
ca
c
he SIDs
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
SEL
i
nux: Enable dynamic en
a
ble/
d
isable of the net
w
ork
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
SELinux: Better in
t
egration between peer
labeling subsystems
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
SELinux:
Add a new
p
eer class and perm
i
s
s
ions to the
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
P
a
ul Moore
S
E
L
i
nu
x
: Add a capabilit
i
es
b
i
t
m
ap to SELinu
x
policy
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul
Moo
r
e
SELinu
x
:
Add a network node caching mec
h
anism
si
m
ilar
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
SELinux:
O
n
ly store the netwo
r
k interface's
i
f
ind
e
x
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moo
r
e
SELinux: Convert th
e
netif code to
use ifindex v
a
lues
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Mo
o
re
N
e
tLabel:
A
d
d
IP
a
dd
r
ess fami
l
y informat
i
on to the
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Pa
u
l Moore
NetLabel: Add secid token
support
t
o t
h
e NetLabel secat
t
r
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
N
etLabel: Consolidat
e
t
h
e
L
S
M
domain
m
apping/hashing
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
NetLabel: Clea
n
up the LSM
domain h
a
sh funct
i
on
s
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
NetL
a
bel:
R
e
move unneede
d
RCU read locks
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-28
Paul Mo
o
re
[XFRM]:
D
r
o
p packet
s
when replay counter
would ove
r
flow
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-28
Pa
u
l Moor
e
[XFRM]: RFC43
0
3
compliant auditing
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-28
Pa
u
l
M
oore
[XFRM]: Assort
e
d
I
Psec fixups
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-28
Paul Moor
e
[IPSEC
]
:
SPD aud
i
ting
fix to
i
n
c
lude the netmask/prefix
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-21
Paul Moore
s
elinux: fix mem
o
ry leak in
n
e
tlab
e
l code
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-09
Paul Moore
[
N
ET]: C
l
one
the sk_buff
'iif
'
field in
_
_skb_clone
(
)
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-12-20
Paul M
o
o
re
[X
F
R
M]: Audit function argum
e
nts mis
o
rdere
d
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-12-14
P
a
ul Moore
[XFRM]: Display the audit
e
d SPI
v
a
l
ue in host byt
e
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-10-26
Paul M
o
ore
[Net
L
a
b
el]: correct
usa
g
e
o
f R
C
U
locking
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-10-10
Pau
l
Moore
[CIP
S
O]: r
e
move duplic
a
ted
code in th
e
cipso_v4_
*
_geta
t
tr
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-08-08
Paul Moo
r
e
[Ne
t
L
a
bel]: add missing rcu
_
derefer
e
nce() calls in
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-08-02
Pa
u
l M
o
ore
Net/Security: fix memory lea
k
s f
r
om secu
r
ity_secid
_
to_secctx()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-08-02
Paul
M
o
o
re
S
E
Linux: r
e
move redundant pointer chec
k
s before
c
alling
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-08-02
Pau
l
Moore
SELi
n
ux: re
s
tore
p
r
oper
NetLa
b
el cachi
n
g beha
v
ior
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-07-19
Paul Moore
SELinux
:
us
e
SECINITSI
D
_NETMSG inst
e
ad of
S
ECINI
T
SID_UNLABEL
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-07-19
Paul
Moore
SELinux: enable dynamic
a
ctivation/deactivation of
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-07-12
Paul Moore
SELinux
:
u
s
e SECINITSID_NETM
S
G instead of SECINITS
I
D
_
UNLABE
L
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-06-08
Paul Mo
o
re
[C
I
PSO]: Fi
x
several unal
i
gned k
e
rnel
acces
s
es
i
n
t
he
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-06-08
P
aul Moore
[NetLabel
]
: c
o
n
s
olidate the s
t
ruct soc
k
et/sock han
d
ling
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moore
SELinux: move security_skb_extl
b
l_sid()
o
u
t of the
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moo
r
e
SELinux: rename selinux_netlabel
.
h to netlabel
.
h
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
P
aul Mo
o
re
SELinux: ex
t
ract t
h
e NetLabe
l
SELinux support fro
m
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moo
r
e
NetLab
e
l: convert
a BUG_ON
i
n the
C
I
P
SO code to a runtime
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moore
N
e
t
L
abel: cleanup and document CIPSO c
o
nstants
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-03-12
Paul Moore
[
N
etLabel]: parse the CIP
S
O r
a
n
g
ed tag on incoming
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-03-03
Paul
Moore
[Net
L
abel]: Ve
r
ify sensitivity lev
e
l has a valid CIPSO
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-01-09
P
aul Moore
[
I
NET]: style updates for t
h
e inet_soc
k
->
i
s
_icsk assig
n
ment
f
ix
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-01-09
Paul Moore
NetLabel: correct CIPSO tag hand
l
ing w
h
en add
i
ng ne
w
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-01-09
Paul Moore
Ne
t
Label: c
o
r
r
ect locking in
s
elinux_netlbl_socket
_
setsid()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-01-09
Paul Moore
[I
N
ET]: Fix incorre
c
t "inet_sock
-
>
i
s_ics
k
" ass
i
gnment
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-22
Paul M
o
o
r
e
NetLabel: correct
l
y fill in u
n
use
d
CIPSOv4
l
evel an
d
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-22
Paul Moore
N
e
t
Lab
e
l: perfor
m
inp
u
t
validat
i
on earlier on CIPSOv4
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-07
Paul Moore
[NE
T
LIK]:
A
dd a poin
t
er to the Generic Netl
i
nk w
i
ki
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
P
aul M
o
ore
NetLabel
:
add the ra
n
ged
tag to
t
he CIPSOv4 prot
o
col
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
P
aul Moore
Ne
t
Label: add the enumerated
tag to the
CIPS
O
v4
p
r
otocol
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
N
e
tLab
e
l:
c
onvert to
a
n
e
x
tensibile/sparse category
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
NetLa
b
el: honor the aud
i
t_enabled f
l
ag
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moo
r
e
S
ELinux:
p
eer secid
consolidatio
n
f
o
r
exter
n
al networ
k
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
N
etLabe
l
: SELinux cleanup
s
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moo
r
e
Ne
t
Label: use cipso_v4_doi_search
(
) for local CIP
S
O
v
4
.
.
.
Signed-of-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
N
e
t
L
abel: use
t
he correct CIPSOv4 M
L
S label limits
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul
Mo
o
re
NetLabel:
r
eturn the correct error for translated CIPSOv4
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
P
aul Moore
N
etLabel:
fixup th
e
handling
o
f CIPSOv4 tags to al
l
ow
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul
Moore
NetL
a
bel: a
d
d t
a
g verification when adding new CIPSOv4
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
Net
L
ab
e
l: check f
o
r a CIPSOv4 option
b
efore
we do call
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
NetLabel: make netlbl_lsm_secattr
s
truct
e
asier/quicker
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
P
a
ul Moore
NetLabel: c
h
ange netl
b
l_secattr_init() to return void
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
NetLabel: convert the unlabel
e
d
acc
e
p
t flag t
o
use R
C
U
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
NetLabel: use
gfp_t instead of
int where
i
t makes sens
e
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-11-06
Paul Mo
o
re
[
NETLABEL
]
: Fix
build f
a
ilure
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-10-30
P
a
u
l M
o
o
re
[
N
etLabe
l
]: protect the C
I
PSOv4
socket option
f
rom
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-10-16
P
a
ul Moore
NetLabe
l
: the CIPSOv4 passthrough mapping
d
oes not
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
next