repo.or.cz
/
linux-2.6
/
linux-acpi-2.6
/
ibm-acpi-2.6.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
SELINUX: Make selinux cache VFS RCU walks safe
2011-04-26
Eric Paris
SEL
I
NUX: Make selinu
x
cac
h
e
V
FS RCU walk
s
safe
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-05
Eri
c
Paris
inoti
f
y
:
fix dou
b
l
e free/corru
p
t
ion of stuct
u
ser
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-03-03
Eric Pa
r
is
SELinux: impleme
n
t the
n
ew sb_re
m
o
u
nt L
S
M hook
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-03-03
Eric Pa
r
is
LS
M
:
P
ass -o
remount o
p
tions to
t
h
e LSM
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-02-25
Eric Paris
Revert "selinux:
simplify ioctl checkin
g
"
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-02-25
Eric P
a
ris
se
l
inux: dr
o
p unused packet f
l
ow permis
s
ions
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-02-01
E
r
i
c Pa
r
is
S
ELinux: U
s
e dentr
y
name
in new objec
t
lab
e
ling
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-02-01
Eric Pari
s
fs
/
vfs/security: pass last
p
at
h
co
m
pon
e
nt t
o
L
SM on
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-01-10
Eric
P
aris
ext4: ext4_
e
xt_
m
igrate should use NULL n
o
t 0
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-16
Eric Paris
SELi
n
ux:
d
efine
permissions for DCB netlink messages
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-15
Eri
c
Paris
fanot
i
f
y
:
fill
i
n
th
e
meta
d
a
ta_len f
i
e
ld on
struct
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
Eric Paris
selinux: cache s
i
d
t
ab_context_t
o
_
s
i
d
resu
l
ts
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
Eri
c
P
a
ris
fanotify: do no
t
leak us
e
r reference
o
n allo
c
ation
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
Eric Paris
inotify: stop ker
n
el
m
emor
y
l
e
ak on f
i
l
e creation failure
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
Eric Paris
fanotify
:
remove
packed from access response message
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
E
r
ic Paris
f
a
notify
:
d
e
n
y
permissi
o
ns
w
hen no e
v
ent
w
as sent
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-02
E
ric Paris
SELinux:
do
not com
p
u
te t
r
a
nsition labels o
n
mountpoint
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Pa
r
is
SE
L
inux: merge policyd
b
_index_cl
a
sses and polic
y
db_index_others
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Pa
r
is
selinux:
c
o
n
vert part of the
sym_val_to_name array
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric
Pari
s
selinux: convert type_val_
t
o_stru
c
t to flex_
a
rra
y
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eri
c
P
a
ris
flex_array: fix flex
_
a
r
r
ay_put_p
t
r
macro to be valid C
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Paris
SE
L
inux: do not set
a
utom
a
tic i_ino
in selinuxfs
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Paris
s
e
linux: r
e
work
secur
i
ty_n
e
tlbl_s
e
ca
t
tr_to_sid
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Pari
s
SELinux: s
t
anda
r
dize return
c
ode handling in selin
u
x
f
s
.
c
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Pari
s
SELi
n
u
x
: standard
i
z
e return co
d
e handling
i
n
sel
i
n
u
x
f
s
.
c
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Paris
SELinux: standardize return code
handling in policydb
.
c
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-23
Eric
P
aris
SELinux: indicate fata
l
erro
r
i
n compat netfilter code
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-23
E
ric Pa
r
is
SELinux: Only return
n
etlink error whe
n
we know the
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-17
Eric P
a
ris
SEL
i
nux:
r
eturn -ECONNREF
U
S
ED fr
o
m
i
p_pos
t
route to
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-17
Eric Paris
ne
t
work: tcp_connect should return certain e
r
ror
s
up
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-17
E
ric Paris
net
f
ilte
r
: allow hooks to pass error
c
ode
ba
c
k up the
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-15
E
ric Paris
capab
i
lities/syslog: open co
d
e cap_syslog
logic to
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-12
Eric Pari
s
netfilt
e
r
:
NF_HOOK_CO
N
D has wro
n
g
c
onditional
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric
P
a
ris
fanotify: do not recalcul
a
te the mask if t
h
e ignored
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric P
a
ris
fanotify: ignore
e
vents o
n
dire
c
tories unless specifically
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
E
r
ic Paris
fsnotify: r
e
na
m
e FS_IN_IS
D
IR t
o
FS_I
S
DI
R
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
f
anotify:
d
o not se
n
d events
f
o
r
irregular
fil
e
s
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric P
a
ri
s
fanotify: limit
n
um
b
er
of list
e
n
ers per user
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
f
a
notify:
a
llow userspace to
o
verride max marks
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
fa
n
otify: limit
the nu
m
ber of marks in a single fanotify
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
E
r
ic
Par
i
s
f
a
n
o
tify: allow u
s
erspace
t
o
override max queue depth
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Par
i
s
f
s
notify: impleme
n
t
a default m
a
ximum queue depth
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric
Par
i
s
fanotify: ign
o
re fanot
i
f
y
ignore m
a
rks if open
w
ri
t
ers
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Par
i
s
fa
n
ot
i
fy: all
o
w userspace to
flush
all marks
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
f
s
n
o
tify: cal
l
fsnotify_parent in pe
r
m event
s
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric P
a
ris
fs
n
o
t
if
y
:
c
orrect
l
y handle r
e
t
u
r
n codes
f
rom listeners
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
f
anotif
y
: use __aligned
_
u64 in
fanot
i
fy us
e
rsp
a
c
e metadat
a
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
E
r
ic P
a
ris
fanotify: imple
m
ent fanotify listener orde
r
ing
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
fsnotif
y
: impl
e
me
n
t or
d
e
r
i
ng
b
etween
n
otifie
r
s
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
fanotify: a
l
lo
w
fa
n
otify to
b
e built
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
E
r
ic Paris
IMA:
f
i
x
the ToMToU
log
i
c
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric
P
a
ris
I
M
A
:
expl
i
cit IMA i_flag to
r
em
o
v
e
global lock on inode_d
e
lete
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
E
r
ic P
a
ris
IMA: drop refcnt
from ima_i
i
nt_cach
e
s
i
nce it isn't
.
.
.
Signed-off-by:
Eric Paris
<eapris@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric Paris
IMA: only allocate iint w
h
en needed
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
E
r
ic Paris
IMA: move read
c
ounte
r
into
s
t
r
uct
i
n
ode
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric P
a
ris
IMA: use i_writecount
r
a
th
e
r
t
han a p
r
ivate counter
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric
P
a
r
is
I
MA: use
i
node->i
_
lock to p
r
otec
t
re
a
d and write coun
t
ers
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric Paris
IMA: convert internal fl
a
g
s
from long to ch
a
r
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eri
c
P
a
r
is
IMA: use unsigned int instead of l
o
ng for count
e
rs
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eri
c
Paris
I
M
A: drop the inode opencount since
i
t
i
s
n't needed
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric
Par
i
s
IMA:
use rbtree
instead of
radix tr
e
e fo
r
in
o
de infor
m
ation
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Par
i
s
se
c
mar
k
: fix config problem w
h
en CON
F
I
G
_
N
F
_CONNTRAC
K
_SECMARK
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
selinux:
i
mplemen
t
mmap on /s
e
l
i
nux/polic
y
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric
Paris
S
ELin
u
x: all
o
w userspa
c
e to read poli
c
y
b
ack ou
t
of
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
SELinu
x
: drop useless (and incorrect)
A
VT
A
B
_MAX_SIZE
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
SE
L
in
u
x: determi
n
istic orde
r
ing of range transi
t
i
on
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
kern
e
l: r
o
undup sh
o
uld
only
refe
r
e
nc
e
argume
n
ts once
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Pa
r
is
kernel
:
ro
u
nddow
n
helper function
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
s
e
c
mark: exp
o
rt secctx, drop secma
r
k in proc
f
s
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
conntrack: e
x
port l
s
m context rather than int
e
rnal
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
securi
t
y
: secid_to_secctx retur
n
s len when data
is
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
E
ric Paris
sec
m
ark
:
make
secmark object h
a
ndling generic
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eri
c
Pa
r
is
secmark:
d
o
n
ot retu
r
n early
if there was
n
o
error
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eri
c
Paris
sel
i
nux: t
y
pe_bound
s
_s
a
ni
t
y_check has a meaningl
e
s
s
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-15
E
r
ic
P
aris
types
.
h
:
d
efin
e
__aligned_u64 and expose to us
e
rspac
e
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-12
E
ric Paris
fanot
i
fy: di
s
able fanotif
y
syscalls
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-28
Eric
P
ari
s
fsnotify: drop two useless bo
o
l
s
i
n th
e
f
n
sotify main
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-28
Eric
P
a
r
is
f
snotify: fi
x
l
i
st walk or
d
er
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-23
Eric Paris
fanotify: flush
outstanding p
e
rm requ
e
sts on
g
rou
p
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-23
Eric Paris
fsno
t
ify: fix ignored mask hand
l
ing betw
e
en inode
a
nd
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-23
Eric Paris
f
a
notify: add MAINTAIN
E
RS entry
Signed-off-by:
Eric Paris
<eparis@redhat.com
commit
|
commitdiff
|
tree
2010-08-23
Eric Paris
fsnotify: reset used_inode and used
_
vf
s
mo
u
nt on each
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-23
Eri
c
Paris
f
anot
i
f
y: do not dereference ino
d
e
_
mark
when it i
s
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-10
Eric
Paris
flex_array: add help
e
rs to g
e
t and
put
t
o make
p
oin
t
ers
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-02
Eric
P
a
r
is
selinux
:
convert the policy t
y
p
e
_attr_map to flex_array
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-02
E
ric Paris
SE
L
inux: Move execm
o
d
to the c
o
mmon p
e
r
ms
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-02
Eric Paris
sel
i
nux: place open in the common file perm
s
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-02
E
ric Paris
SELinux: special dontaudit for
access checks
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-02
E
ric Paris
s
e
curity: make LSMs
exp
l
icitly mask off
p
ermissions
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-02
Eric Par
i
s
vfs: re-introduce MAY_CHDIR
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-02
E
ric Pari
s
SE
L
inux: break ocontext reading into a separa
t
e function
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-02
Eric Paris
S
ELinux: move g
e
n
fs read to a separate f
u
nction
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-08-02
Eric Pa
r
is
SELi
n
ux:
s
eperate
range t
r
ansition rules to a seperate
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-07-28
Eric Paris
fanotify: use bot
h
m
a
r
k
s
when possib
l
e
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-07-28
Er
i
c
Paris
fsnot
i
fy: pass both the vfsmount mark and inode mark
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-07-28
Eric Pari
s
fsnotify: walk the inod
e
and vfsmount
lists simulta
n
eously
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-07-28
E
ric Par
i
s
fs
n
otify: rework ignored ma
r
k flush
i
ng
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-07-28
Eric Paris
fsnoti
f
y: r
e
move globa
l
fs
n
otify groups lists
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-07-28
Er
i
c Paris
fs
n
otif
y
:
r
emo
v
e
g
roup->mask
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-07-28
Eric Pa
r
is
fsnotify: remove the global
m
asks
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
next