repo.or.cz
/
linux-2.6
/
btrfs-unstable.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
SELinux: Add network ingress and egress control permission checks
2008-01-29
Pa
u
l M
o
ore
SE
L
inux: Add net
w
or
k
ingress and
egress
control
p
erm
i
ssion
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul M
o
ore
Net
L
ab
e
l
:
Add
a
uditing to
t
h
e
s
t
atic labeling mechanis
m
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul
M
oore
NetLa
b
el:
Introdu
c
e static network
l
abels for unlabeled
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul
Moor
e
SELinux: Allo
w
NetLabe
l
to directl
y
cache SIDs
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
SE
L
i
n
ux: En
a
ble dynamic en
a
ble/di
s
able of
the net
w
ork
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moor
e
SELi
n
ux: Bett
e
r in
t
e
gr
a
t
i
o
n between peer
l
a
belin
g
subsyste
m
s
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
SELi
n
u
x
:
A
d
d a new
p
eer c
l
as
s
and permissions to th
e
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
P
a
ul Moore
SELinux
:
Add a
c
apabili
t
i
es
bitmap
t
o
S
E
L
inux policy
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul Mo
o
re
SELinux
:
A
dd a network node
c
aching mechanism
s
imila
r
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul Mo
o
re
SELinux:
Only store the n
e
twork i
n
terface's ifin
d
ex
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul
Moore
S
E
Li
n
u
x
: Convert the
n
e
tif
code
to us
e
ifindex
v
alues
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Pa
u
l Moore
NetLab
e
l
: Add IP address family
i
nform
a
tion to the
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
NetLabel:
A
dd secid token s
u
pport to the Ne
t
Label secat
t
r
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Pau
l
Moore
NetLabel: Co
n
s
o
lidate the LSM do
m
a
i
n
mapping/
h
ashing
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
P
aul Moore
NetLabel: Cleanup t
h
e LS
M
do
m
ain
hash functions
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
NetLabel: Remov
e
unneed
e
d RCU read locks
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-26
Stephen S
m
alle
y
selin
u
x: fix
labeling of /p
r
o
c/
n
et ino
d
es
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-25
Eamon Wa
l
sh
selinux: make mls_compute_s
i
d always pol
y
instantiate
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-25
Jan Engelhard
t
se
c
urit
y
/
s
e
linux: consti
f
y function
p
ointer tables
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-25
David
H
o
wells
s
e
curity
:
a
dd a
s
ecctx_to_secid() hook
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-25
J
a
mes Morris
security
:
call secu
r
ity_file_
p
ermissi
o
n
fro
m
rw_verify_area
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-25
H
.
Peter
Anvin
security
:
remove secu
r
ity_sb_pos
t
_
mountroot hook
Cc: James Morris <
jmorris@namei.org
>
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-25
J
a
me
s
Mor
r
is
Security: rem
o
ve security
.
h incl
u
de from mm
.
h
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-25
Ric
h
a
rd Knu
t
s
s
on
Security: r
e
move security_file_mm
a
p hook s
p
arse-wa
r
nings
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-25
E
r
ic Par
i
s
S
e
cur
i
ty:
a
dd get, se
t
, an
d
c
l
on
i
n
g
of superblock sec
u
rity
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-25
J
oe Perches
s
ec
u
rity/selinux: Add mi
s
sing "space"
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2008-01-21
Paul Moore
s
e
l
i
nux: fix
m
emory
leak in
n
e
tl
a
bel code
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-12-05
Eric Paris
VM/Se
c
u
rity: add security hoo
k
to do_brk
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-12-05
Eric Pari
s
S
e
cu
r
ity: round
mmap hint addr
e
ss
abov
e
mma
p
_min_addr
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-12-05
Er
i
c
P
aris
security: protect from
stack expantio
n
into low vm
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-12-05
Eric Par
i
s
Security: allow c
a
pable check to
permit
m
m
ap or l
o
w
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-12-05
S
tep
h
e
n
Smalley
S
E
L
inux: detect dead bo
o
leans
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-12-05
Stephen Smalley
SELinux: do not cl
e
a
r f_o
p
when removing
e
ntrie
s
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-11-16
Eric
P
aris
SELi
n
u
x
: ret
u
rn
E
O
P
N
O
TSUPP
n
ot EN
O
TSUPP
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-11-07
Stephe
n
Smalley
S
EL
i
nux: add m
o
r
e va
l
idity c
h
ecks on policy
load
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-10-22
Eric Par
i
s
SELinux: a
l
w
ays check
SIGCHLD in selin
u
x_task_wait
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-10-16
KaiGa
i
Kohei
SELinux: kill
s
warnin
g
s in Improve SEL
i
n
ux pe
r
forma
n
ce
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-10-16
K
ai
G
ai Kohei
SE
L
inux: imp
r
o
ve performance w
h
en A
V
C mis
s
es
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-10-16
Er
i
c Paris
SELinux: policy selectabl
e
handling of unknown classes
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-10-16
Y
u
ichi Na
k
amura
SELinux: Improve re
a
d/w
r
ite performan
c
e
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-10-16
Y
uichi Naka
m
ur
a
SELinux: tun
e
avtab
to reduce memo
r
y
u
s
age
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-09-19
Eric P
a
ris
SELinux: fix array o
u
t
of
bounds when mou
n
ting with
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-08-02
Paul Moore
Net/Securi
t
y: fix memory lea
k
s from security_secid_to_se
c
c
t
x()
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-08-02
Pa
u
l Moore
SELinux: remove redunda
n
t pointer checks before calling
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-08-02
Paul Moore
SE
L
inu
x
: restore
p
r
oper NetL
a
bel cac
h
in
g
beh
a
vior
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-25
Venkat Yekki
r
ala
SEL
i
n
u
x: null-te
r
m
inat
e
conte
x
t
s
t
r
i
ng in selinux_xfrm_sec_c
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-23
Jesper Juhl
SELinux: fi
x
memor
y
leak
i
n se
c
urity_ne
t
lbl_cache_add()
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-19
P
aul Moore
SELinux: use
SECINITSID_NE
T
MSG instead
o
f SECINITSID_UNLABEL
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-19
Paul
M
oor
e
SELinux: ena
b
l
e dynamic activatio
n
/deactivation of
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
A
d
rian Bunk
s
ecurity: unexport mmap_
m
in
_
addr
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
Paul M
o
o
r
e
SELinux: use SECINITS
I
D
_
NETMSG instead of SECINITSID_UNLABEL
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
E
r
ic Paris
s
e
c
uri
t
y: P
r
ot
e
ction for
exploiting
null de
r
eference
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
Tobias Oed
SELi
n
ux: Use %lu for inode
-
>
i
_no wh
e
n printing avc
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
S
te
p
hen Smalley
SEL
i
nux: allow
preemption between tr
a
nsi
t
ion permission
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
Eric Paris
selinu
x
: introduce
sch
e
dul
e
p
o
ints in
policyd
b
_d
e
stroy()
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
Christopher J
.
PeBeni
t
o
se
l
in
u
x: a
d
d selinuxfs structur
e
for object c
l
ass discovery
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
Christopher J
.
Pe
B
enito
se
l
inux: chan
g
e
s
el_make_dir()
t
o specify inode counter
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
Christopher J
.
PeBenito
selinux: r
e
name sel
_
remove_bools() for
more
g
ene
r
a
l
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-07-12
C
hristopher J
.
PeBen
i
to
sel
i
nux: ad
d
s
u
pport for q
u
erying object
class
e
s and
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
Stephen
S
malley
seli
n
ux: preserv
e
boole
a
n values acros
s
policy
reloads
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
James Carter
s
elinux: c
h
ange number
i
ng of boo
l
ean direc
t
ory inodes
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
James Carter
s
e
linux: remove unused e
n
um
e
ration constant from selinuxfs
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
J
a
mes Car
t
er
selinu
x
: expl
i
citl
y
number all selinuxfs inode
s
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
Ja
m
es Carter
s
el
i
n
ux: export initial SID
c
ontexts via selin
u
xfs
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
St
e
phen Smalley
selinux: remove use
r
l
and security class and pe
r
m
i
ssion
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moore
SELinu
x
: mov
e
se
c
urity_skb_extlbl_sid() out of the
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
S
t
e
phe
n
Sm
a
lley
M
A
INTAINERS:
u
p
d
a
te
s
el
i
nux entr
y
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moore
SELinux: rename selinux_netlabel
.
h to netlabel
.
h
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moore
SELin
u
x: extract th
e
NetLabel
S
E
L
i
nux suppo
r
t f
r
om
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moore
N
etLabel: convert
a BUG_ON
i
n
t
he
CIPSO code
to a r
u
ntime
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moore
N
etL
a
bel
:
c
leanup and document CIPSO constant
s
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-02-26
S
tephen S
m
alley
Always in
i
tiali
z
e scontext
a
n
d
scontext_len
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-02-26
E
r
ic Paris
Reassign pr
i
ntk le
v
els in selin
u
x kernel code
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2007-01-08
Venkat Y
e
kkirala
seli
n
u
x
:
Delete mls
_
cop
y
_c
o
n
tex
t
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2006-11-28
Chad Sellers
SELi
n
ux:
v
a
li
d
ate ker
n
el object classes and permiss
i
ons
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2006-11-28
Chad Se
l
ler
s
SELinux: ensure
k
e
y
s
co
n
stant
i
n hashtab_se
a
r
c
h
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2006-11-28
Chad Sell
e
rs
SELinux: export ob
j
e
c
t class and permis
s
ion defin
i
tions
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2006-11-28
Chad Se
l
lers
SELinux: remove cur
r
ent object class and permiss
i
on
.
.
.
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree
2006-11-27
Akinobu
M
i
t
a
selinux:
f
ix
dentry_open() e
r
r
or check
Cc: James Morris <
jmorris@namei.org
>
Signed-off-by: James Morris <
jmorris@namei.org
>
commit
|
commitdiff
|
tree