search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
first · prev · next
TOMOYO: Fix wrong domainname validation.
2011-04-05 Eric Parisinotify: fix double free/corruption of stuct user
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-04-04 Eric Pariscapabilities: delete all CAP_INIT macros
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-04-04 Eric Pariscapabilities: delete unused cap_set_full
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-04-04 Eric Pariscapabilities: do not drop CAP_SETPCAP from the initial...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-04-04 Eric Pariscapabilities: do not special case exec of init
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-04-04 Eric Pariscapabilites: allow the application of capability limits...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-03-03 Eric ParisSELinux: implement the new sb_remount LSM hook
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-03-03 Eric ParisLSM: Pass -o remount options to the LSM
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-02-25 Eric ParisRevert "selinux: simplify ioctl checking"
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-02-25 Eric Parisselinux: drop unused packet flow permissions
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-02-01 Eric ParisSELinux: Use dentry name in new object labeling
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-02-01 Eric Parisfs/vfs/security: pass last path component to LSM on...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2011-01-10 Eric Parisext4: ext4_ext_migrate should use NULL not 0
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-12-16 Eric ParisSELinux: define permissions for DCB netlink messages
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-12-15 Eric Parisfanotify: fill in the metadata_len field on struct...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-12-07 Eric Parisselinux: cache sidtab_context_to_sid results
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-12-07 Eric Parisfanotify: do not leak user reference on allocation...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-12-07 Eric Parisinotify: stop kernel memory leak on file creation failure
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-12-07 Eric Parisfanotify: remove packed from access response message
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-12-07 Eric Parisfanotify: deny permissions when no event was sent
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-12-02 Eric ParisSELinux: do not compute transition labels on mountpoint...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-30 Eric ParisSELinux: merge policydb_index_classes and policydb_index_others
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-30 Eric Parisselinux: convert part of the sym_val_to_name array...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-30 Eric Parisselinux: convert type_val_to_struct to flex_array
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-30 Eric Parisflex_array: fix flex_array_put_ptr macro to be valid C
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-30 Eric ParisSELinux: do not set automatic i_ino in selinuxfs
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-30 Eric Parisselinux: rework security_netlbl_secattr_to_sid
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-30 Eric ParisSELinux: standardize return code handling in selinuxfs.c
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-30 Eric ParisSELinux: standardize return code handling in selinuxfs.c
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-30 Eric ParisSELinux: standardize return code handling in policydb.c
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-23 Eric ParisSELinux: indicate fatal error in compat netfilter code
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-23 Eric ParisSELinux: Only return netlink error when we know the...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-17 Eric ParisSELinux: return -ECONNREFUSED from ip_postroute to...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-17 Eric Parisnetwork: tcp_connect should return certain errors up...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-17 Eric Parisnetfilter: allow hooks to pass error code back up the...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-15 Eric Pariscapabilities/syslog: open code cap_syslog logic to...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-11-12 Eric Parisnetfilter: NF_HOOK_COND has wrong conditional
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: do not recalculate the mask if the ignored...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: ignore events on directories unless specifically...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfsnotify: rename FS_IN_ISDIR to FS_ISDIR
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: do not send events for irregular files
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: limit number of listeners per user
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: allow userspace to override max marks
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: limit the number of marks in a single fanotify...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: allow userspace to override max queue depth
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfsnotify: implement a default maximum queue depth
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: ignore fanotify ignore marks if open writers
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: allow userspace to flush all marks
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfsnotify: call fsnotify_parent in perm events
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfsnotify: correctly handle return codes from listeners
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: use __aligned_u64 in fanotify userspace metadata
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: implement fanotify listener ordering
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfsnotify: implement ordering between notifiers
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-28 Eric Parisfanotify: allow fanotify to be built
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: fix the ToMToU logic
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: explicit IMA i_flag to remove global lock on inode_delete
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: drop refcnt from ima_iint_cache since it isn't...
Signed-off-by: Eric Paris <eapris@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: only allocate iint when needed
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: move read counter into struct inode
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: use i_writecount rather than a private counter
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: use inode->i_lock to protect read and write counters
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: convert internal flags from long to char
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: use unsigned int instead of long for counters
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: drop the inode opencount since it isn't needed...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-26 Eric ParisIMA: use rbtree instead of radix tree for inode information...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Parissecmark: fix config problem when CONFIG_NF_CONNTRACK_SECMARK...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Parisselinux: implement mmap on /selinux/policy
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric ParisSELinux: allow userspace to read policy back out of...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric ParisSELinux: drop useless (and incorrect) AVTAB_MAX_SIZE
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric ParisSELinux: deterministic ordering of range transition...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Pariskernel: roundup should only reference arguments once
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Pariskernel: rounddown helper function
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Parissecmark: export secctx, drop secmark in procfs
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Parisconntrack: export lsm context rather than internal...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Parissecurity: secid_to_secctx returns len when data is...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Parissecmark: make secmark object handling generic
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Parissecmark: do not return early if there was no error
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-20 Eric Parisselinux: type_bounds_sanity_check has a meaningless...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-15 Eric Paristypes.h: define __aligned_u64 and expose to userspace
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-10-12 Eric Parisfanotify: disable fanotify syscalls
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-28 Eric Parisfsnotify: drop two useless bools in the fnsotify main...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-28 Eric Parisfsnotify: fix list walk order
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-23 Eric Parisfanotify: flush outstanding perm requests on group...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-23 Eric Parisfsnotify: fix ignored mask handling between inode and...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-23 Eric Parisfanotify: add MAINTAINERS entry
Signed-off-by: Eric Paris <eparis@redhat.com
 commit | commitdiff | tree
2010-08-23 Eric Parisfsnotify: reset used_inode and used_vfsmount on each...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-23 Eric Parisfanotify: do not dereference inode_mark when it is...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-10 Eric Parisflex_array: add helpers to get and put to make pointers...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-02 Eric Parisselinux: convert the policy type_attr_map to flex_array
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-02 Eric ParisSELinux: Move execmod to the common perms
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-02 Eric Parisselinux: place open in the common file perms
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-02 Eric ParisSELinux: special dontaudit for access checks
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-02 Eric Parissecurity: make LSMs explicitly mask off permissions
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-02 Eric Parisvfs: re-introduce MAY_CHDIR
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-02 Eric ParisSELinux: break ocontext reading into a separate function
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-02 Eric ParisSELinux: move genfs read to a separate function
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-08-02 Eric ParisSELinux: seperate range transition rules to a seperate...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-07-28 Eric Parisfanotify: use both marks when possible
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-07-28 Eric Parisfsnotify: pass both the vfsmount mark and inode mark
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2010-07-28 Eric Parisfsnotify: walk the inode and vfsmount lists simultaneously
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
next
Linux 2.6 ibm-acpi/thinkpad-acpi driver git tree