repo.or.cz
/
linux-2.6
/
kvm.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
security: define round_hint_to_min in !CONFIG_SECURITY
2009-08-17
Eric Paris
security: define round_hint_to
_
min
i
n
!CONFIG_SECURITY
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
Eri
c
P
aris
Sec
u
rity/SELi
n
ux: seper
a
te ls
m
spec
i
fic m
m
a
p
_min_a
d
dr
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
E
ric Par
i
s
SELinux: call cap
_
file_mmap in selinu
x
_fil
e
_mmap
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
Eric Paris
Capabili
t
ies: move cap_file_mmap to com
m
o
nc
a
p
.
c
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
E
r
ic Paris
ino
t
ify: u
s
e
GFP_NO
F
S
und
e
r
potential me
m
or
y
pressure
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Eric Paris
f
sn
o
ti
f
y: fix i
n
ot
i
fy tail
d
rop check
w
ith pat
h
entries
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Er
i
c
Paris
in
o
tify: check filename b
e
fo
r
e dropping repeat event
s
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
E
ric Paris
f
s
not
i
fy
:
use
d
ef_bool in kcon
f
ig in
s
t
e
a
d of letting
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Eric
P
aris
i
n
otif
y
: fix e
r
r
or paths in inotif
y
_update
_
w
a
tc
h
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Eric
P
aris
inotify:
d
o not
leak inode
m
a
rks
in inotify
_
add_watc
h
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Eric
P
aris
inotify: drop user
watch count when
a
wa
t
ch
i
s re
m
oved
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Er
i
c P
a
ris
a
udit: inode watch
e
s
dep
e
nd
o
n CONFIG_A
U
DIT not
C
O
NFIG_AUDIT
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric
P
aris
Audit: clean up all op= output
t
o include str
i
n
g quot
i
ng
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
E
ric
Paris
Au
d
it: move audit_get_nd
c
ompletely into audit_watch
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eri
c
P
a
r
is
a
udit: seperate audit inode watches in
t
o a subfile
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric Pari
s
Audit
:
cle
a
n up
audit_receive_skb
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric Paris
A
udit: clean
u
p netl
i
nk mesg handling
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric P
a
ris
Audit: unify
the printk
o
f a
n
skb
when a
u
ditd n
o
t around
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Er
i
c Paris
Audit
:
dereferenci
n
g krule a
s
if it were
an aud
i
t_watch
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric Paris
A
u
dit: better estimation
o
f
execve record len
g
th
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric
Pa
r
is
Audit: fi
x
audit watc
h
u
s
e after free
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-19
Eric
P
a
r
is
i
n
otify: inotify
_
destro
y
_mark_entry could get cal
l
ed
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
E
ric Paris
f
snotify: allow
gr
o
ups t
o
set freei
n
g_mark to nu
l
l
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
inotify/dnotify: should_send_event
s
houldn't match
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
dnotify
:
d
o
not bo
t
her to
lo
c
k entry->
l
ock
w
hen r
e
ading
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
dno
t
ify:
d
o
no
t
use ?true:false when assigning to a
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eri
c
Pari
s
f
sno
t
ify:
m
o
v
e
ev
e
nts sh
o
uld indicate the
e
vent
w
as
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
inotify: reimplement inoti
f
y
using fsnotify
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
fsnotify:
h
andle filesy
s
tem un
m
ount
s
wi
t
h fsnotify
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric P
a
ris
f
s
no
t
ify: f
s
notif
y
marks on
inodes
pin t
h
e
m
i
n core
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
f
s
notify
:
allow
g
r
o
ups to add priva
t
e data to ev
e
nts
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
fsnot
i
fy: add
c
orrelations betw
e
en even
t
s
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
fsnotify: include pathname
s
with entries when
possible
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric
Pari
s
f
snotify: generic notificat
i
on qu
e
u
e and wa
i
tq
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
dno
t
ify: reimp
l
eme
n
t dnotify u
s
ing f
s
notify
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Pari
s
fsnotify: parent event
n
otification
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Pari
s
f
s
notify
:
add
m
a
rks
t
o
i
nodes so groups can interp
r
e
t
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Pa
r
is
fsn
o
tify:
u
nified f
i
les
y
stem notification backe
n
d
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-02
Eric Paris
SE
L
inux: defi
n
e au
d
it
p
e
rmissions for
a
u
dit tree netlink
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-21
Eric
Paris
IMA: Add
_
_in
i
t notation
t
o ima functions
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-21
Eric P
a
ris
IMA: Minim
a
l I
M
A polic
y
and
b
o
o
t
p
aram
for TCB IMA
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-19
Eric Paris
TPM
:
get_
e
v
e
nt_name stack corrup
t
i
o
n
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-18
E
r
ic
Paris
SELi
n
ux: m
o
v
e SELINU
X
_
M
A
GIC into magic
.
h
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-14
Eric
P
aris
IMA: do n
o
t
measure everything op
e
ned by root by default
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-14
Eric Paris
IMA: re
m
ove read per
m
ission
s
o
n the
i
ma polic
y
file
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-13
Eric
P
aris
TPM
:
get_ev
e
nt_name stack corruption
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-12
Eric
Paris
securityfs: secur
i
t
yf
s
_remove should h
a
ndle IS_ERR
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-12
Er
i
c
P
aris
I
MA: open all
files O_LARGEFILE
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-12
Eric
Paris
IMA: H
a
ndle dentry_o
p
en failures
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-12
E
r
ic Paris
IMA: us
e
current_cred()
in
s
tead of curren
t
->c
r
e
d
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-29
Eri
c
Paris
SELinux:
d
rop second
a
ry_
o
ps
-
>sysctl
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-29
Eric Paris
mutex: add atomic_dec
_
and_m
u
tex_lock()
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-06
Eric Paris
m
u
t
ex:
a
d
d
atomic_
d
ec_and_mu
t
e
x
_lo
c
k()
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-05
Eric Paris
A
udit: rem
o
v
e spaces from audit_log_d_path
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-05
Eric Paris
audit
:
a
udit
_
s
e
t_auditable define
d
but no
t
used
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-05
Eric Paris
audit: incorrect ref cou
n
ting in a
u
dit tr
e
e
t
ag_chunk
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-02
Eric Pari
s
Btrfs: introduce btrfs_sho
w
_options
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-03-09
Eric Paris
SELinux:
inode_do
i
nit_with_de
n
try drop no den
t
ry print
k
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-03-05
Eric Paris
S
E
Linux:
n
ew permission between tty audit
a
nd audit
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-03-05
Eri
c
Paris
SELinux:
open p
e
rm f
o
r sock
files
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric Paris
SELinux: convert
t
he avc cac
h
e ha
s
h list
t
o
an hl
i
st
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Er
i
c Paris
SELinux: code readability with avc_cache
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric
Paris
SELinux: rem
o
v
e unu
s
ed
av
.
decided field
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric
P
aris
SELin
u
x: more ca
r
eful
u
se o
f
avd
i
n avc_has_pe
r
m
_
noaudit
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric Paris
S
ELinux: remov
e
the
u
nused
ae
.
used
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric Pari
s
SELinux:
c
heck seqno
when updatin
g
an avc_n
o
de
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
E
r
ic
P
a
ris
S
ELinux
:
NULL term
i
n
ate al contexts from d
i
sk
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
E
ric
Paris
SELinux:
better printk wh
e
n
file
with inv
a
lid label
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric Paris
SELi
n
ux:
c
al
l
ca
p
abiliti
e
s code directory
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-01-27
Er
i
c Par
i
s
tty_ope
n
can ret
u
rn to userspac
e
holding
t
ty_mutex
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-01-05
E
r
ic Paris
sys_execve and sys_
u
selib do
n
o
t
c
all
into fsnotify
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-01-05
Eric
P
aris
SELinux: shri
n
k
si
z
eof a
v
_inhert
selinu
x
_
c
lass_p
e
rm
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-12-31
Eric Paris
f
ilesystem n
o
t
i
fication:
create fs/notify to contain
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-12-09
E
ric Paris
[PATCH]
Audit: ma
k
e audit=
0
actu
a
lly turn off a
u
dit
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-14
Eric
P
a
ris
ca
p
a
bilities: d
e
fine get_vf
s
_
caps_fro
m
_disk when file
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Paris
Currently SELinux j
u
mps
t
h
rough some ugly hoops to
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Pa
r
is
Th
e
o
omk
i
ller ca
l
cul
a
tions make
d
ec
i
si
o
ns based on
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Pa
r
is
A
dd a
new capable i
n
terface
t
hat will be used
b
y
system
s
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Paris
Capabilities: BU
G
whe
n
a
n invalid capability is requested
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Paris
Wh
e
n the c
a
pset syscal
l
is used
it is n
o
t p
o
ss
i
b
le
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Pa
r
is
Any time fcaps or
a setuid app under SECURE_N
O
ROOT
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Er
i
c Par
i
s
This pa
t
c
h
w
ill print cap_permitte
d
and
cap_inh
e
ritab
l
e
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
E
r
i
c Paris
This patch add a generic cpu end
i
a
n
caps
structure
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Paris
Document the o
r
de
r
of argume
n
ts for c
a
p_is
s
u
bset
.
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-08
Eric Paris
SELin
u
x: Use unkn
o
w
n
perm handling
t
o handl
e
unknown
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-04
Eric Paris
S
EL
i
nux: hold taskl
i
s
t
_lock an
d
s
iglock while waking
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-10-31
Eric Paris
SELi
n
ux: pr
o
p
e
rly
ha
n
dle empty tty_files l
i
st
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-10-30
Eric Paris
S
E
Linux: check open perms in d
e
ntry_open not inod
e
_
permi
s
sion
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-09-03
E
r
ic Paris
SELinux:
m
emory leak in securi
t
y_context_
t
o
_sid
_
core
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-08-28
Eric Paris
securityfs: do not d
e
pen
d
on
CONFIG_
S
E
CURITY
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-08-01
Eric Paris
[P
A
T
CH]
A
ud
i
t
:
Collec
t
signa
l
info when SI
G
USR2
is
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-29
Eri
c
Paris
SELinux: /pr
o
c/mounts shou
l
d show what it can
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
Eric Paris
LS
M
/SELin
u
x:
show
L
S
M m
o
unt o
p
tions in /proc/mounts
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
Eric Paris
SELinu
x
: allow
f
s
t
ype unknown to p
o
licy to use xattrs
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
Eric Paris
SELinux: more
user frie
n
dly unkn
o
wn handling print
k
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
Eric Paris
SELinux: drop load_mutex i
n
secur
i
t
y
_l
o
ad_p
o
licy
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
Eric Paris
SELinux
:
fix of
f
by 1 refer
e
nce of c
l
ass_to_string
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
Eric Paris
SELinu
x
: keep the code clean f
o
rmatin
g
and syntax
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-05-16
Eric Par
i
s
nfs/lsm: make NF
S
v4 set LS
M
moun
t
o
pt
i
o
ns
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-04-28
Eric Pari
s
A
u
dit: MAINTAINERS update
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
next