search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
first · prev · next
Currently SELinux jumps through some ugly hoops to not audit a capbility
2008-11-11 Eric ParisCurrently SELinux jumps through some ugly hoops to...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-11 Eric ParisThe oomkiller calculations make decisions based on...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-11 Eric ParisAdd a new capable interface that will be used by systems...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-11 Eric ParisCapabilities: BUG when an invalid capability is requested
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-11 Eric ParisWhen the capset syscall is used it is not possible...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-11 Eric ParisAny time fcaps or a setuid app under SECURE_NOROOT...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-11 Eric ParisThis patch will print cap_permitted and cap_inheritable...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-11 Eric ParisThis patch add a generic cpu endian caps structure...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-11 Eric ParisDocument the order of arguments for cap_issubset. ...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-08 Eric ParisSELinux: Use unknown perm handling to handle unknown...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-11-04 Eric ParisSELinux: hold tasklist_lock and siglock while waking...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-10-31 Eric ParisSELinux: properly handle empty tty_files list
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-10-30 Eric ParisSELinux: check open perms in dentry_open not inode_permission
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-09-03 Eric ParisSELinux: memory leak in security_context_to_sid_core
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-08-28 Eric Parissecurityfs: do not depend on CONFIG_SECURITY
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-08-01 Eric Paris[PATCH] Audit: Collect signal info when SIGUSR2 is...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-07-29 Eric ParisSELinux: /proc/mounts should show what it can
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-07-14 Eric ParisLSM/SELinux: show LSM mount options in /proc/mounts
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-07-14 Eric ParisSELinux: allow fstype unknown to policy to use xattrs...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-07-14 Eric ParisSELinux: more user friendly unknown handling printk
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-07-14 Eric ParisSELinux: drop load_mutex in security_load_policy
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-07-14 Eric ParisSELinux: fix off by 1 reference of class_to_string...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-07-14 Eric ParisSELinux: keep the code clean formating and syntax
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-05-16 Eric Parisnfs/lsm: make NFSv4 set LSM mount options
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-28 Eric ParisAudit: MAINTAINERS update
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-28 Eric ParisAudit: increase the maximum length of the key field
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-28 Eric ParisAudit: standardize string audit interfaces
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-28 Eric ParisAudit: stop deadlock from signals under load
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-28 Eric ParisAudit: save audit_backlog_limit audit messages in case...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-28 Eric ParisAudit: collect sessionid in netlink messages
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-28 Eric ParisAudit: end printk with newline
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: include/security.h whitespace, syntax, and...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: policydb.h whitespace, syntax, and other cleanups
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: mls_types.h whitespace, syntax, and other...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: mls.h whitespace, syntax, and other cleanups
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: hashtab.h whitespace, syntax, and other cleanups
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: context.h whitespace, syntax, and other cleanups
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: ss/conditional.h whitespace, syntax, and other...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: selinux/include/security.h whitespace, syntax...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: objsec.h whitespace, syntax, and other cleanups
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: netlabel.h whitespace, syntax, and other cleanups
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-27 Eric ParisSELinux: avc_ss.h whitespace, syntax, and other cleanups
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-22 Eric ParisSELinux: no BUG_ON(!ss_initialized) in selinux_clone_mnt_opts
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: one little, two little, three little whitespaces...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: cleanup on isle selinuxfs.c
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric Parischanging whitespace for fun and profit: policydb.c
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: whitespace and formating fixes for hooks.c
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: clean up printks
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: sidtab.c whitespace, syntax, and static declaractio...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: services.c whitespace, syntax, and static...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: mls.c whitespace, syntax, and static declaraction...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: hashtab.c whitespace, syntax, and static declaracti...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: ebitmap.c whitespace, syntax, and static declaracti...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: conditional.c whitespace, syntax, and static...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: avtab.c whitespace, syntax, and static declaraction...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: xfrm.c whitespace, syntax, and static declaraction...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: nlmsgtab.c whitespace, syntax, and static...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: netnode.c whitespace, syntax, and static declaracti...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: netlink.c whitespace, syntax, and static declaracti...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: netlabel.c whitespace, syntax, and static...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-21 Eric ParisSELinux: netif.c whitespace, syntax, and static declaraction...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-18 Eric ParisSELinux: turn mount options strings into defines
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-18 Eric Parisselinux: introduce permissive types
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-18 Eric ParisSELinux: requesting no permissions in avc_has_perm_noaudit...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-18 Eric ParisSELinux: create new open permission
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-04-09 Eric ParisSELinux: don't BUG if fs reuses a superblock
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-03-18 Eric Paris[PATCH] export sessionid alongside the loginuid in...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-03-05 Eric ParisNFS: use new LSM interfaces to explicitly set mount...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-03-05 Eric ParisLSM/SELinux: Interfaces to allow FS to control mount...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-03-01 Eric Paris[RFC] AUDIT: do not panic when printk loses messages
 commit | commitdiff | tree
2008-02-19 Eric ParisAudit: use == not = in if statements
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-06 Eric Parissecurity: allow Kconfig to set default mmap_min_addr...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] ratelimit printk messages audit
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] create context if auditing was ever enabled
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] clean up audit_receive_msg()
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] make audit=0 really stop audit messages
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] break large execve argument logging into smaller...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] include audit type in audit message when using...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] do not panic on exclude messages in audit_log_pid_co...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] Add End of Event record
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] add session id to audit messages
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] collect uid, loginuid, and comm in OBJ_PID...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-02-01 Eric Paris[AUDIT] return EINTR not ERESTART*
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-01-25 Eric ParisSecurity: add get, set, and cloning of superblock security...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2008-01-21 Eric Parisrfkill: call rfkill_led_trigger_unregister() on error
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-12-05 Eric ParisVM/Security: add security hook to do_brk
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-12-05 Eric ParisVM/Security: add security hook to do_brk
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-12-05 Eric ParisSecurity: round mmap hint address above mmap_min_addr
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-12-05 Eric Parissecurity: protect from stack expantion into low vm...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-12-05 Eric ParisSecurity: allow capable check to permit mmap or low...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-11-16 Eric ParisSELinux: return EOPNOTSUPP not ENOTSUPP
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-10-22 Eric ParisSELinux: always check SIGCHLD in selinux_task_wait
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-10-16 Eric ParisSELinux: policy selectable handling of unknown classes...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-09-19 Eric ParisSELinux: fix array out of bounds when mounting with...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-07-22 Eric Paris[PATCH] allow audit filtering on bit & operations
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-07-12 Eric Parissecurity: Protection for exploiting null dereference...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-07-12 Eric Parisselinux: introduce schedule points in policydb_destroy()
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-03-08 Eric Paris[IPSEC]: xfrm audit hook misplaced in pfkey_delete...
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-03-08 Eric Paris[IPSEC]: Add xfrm policy change auditing to pfkey_spdget
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
2007-03-08 Eric Paris[IPSEC]: xfrm_policy delete security check misplaced
Signed-off-by: Eric Paris <eparis@redhat.com>
 commit | commitdiff | tree
next
Support for the Chinese Samsung S3C2440 based development boards