repo.or.cz
/
linux-2.6
/
verdex.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
IMA: iint put in ima_counts_get and put
2009-08-27
Eric Pa
r
is
IM
A
: iint put in ima_counts_get and put
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
Eric Paris
inot
i
fy: start
watch descriptor count at 1
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
Eric Paris
i
notify: tail dro
p
in
o
t
i
fy q_overflo
w
events
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
E
r
ic Paris
notify: unus
e
d
eve
n
t private r
a
ce
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
Eri
c
P
a
r
is
s
ecur
i
ty
:
define roun
d
_hint_to_min
i
n !CONFIG
_
S
ECURITY
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
Eric Paris
Security/S
E
Li
n
ux: sepera
t
e lsm specific mmap
_
min_ad
d
r
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
Eric Paris
S
ELinux: call cap_file_mma
p
in se
l
in
u
x_file_mma
p
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-08-17
Eric Paris
Capabilities:
m
ove cap_
f
ile_mmap to commoncap
.
c
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Eric Par
i
s
inotify: use GFP_NO
F
S unde
r
potential m
e
mory pre
s
su
r
e
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
E
r
i
c
P
aris
fsnotif
y
:
fix ino
t
ify tail drop check w
i
th pa
t
h entries
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Eric Paris
inotify: ch
e
ck filena
m
e
b
e
fore dropping rep
e
at e
v
e
n
t
s
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
E
r
ic
P
aris
fsnotify: us
e
def_bool in kconfig instea
d
of l
e
tting
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Er
i
c Paris
inotify: fix error paths in ino
t
ify_update_w
a
tc
h
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Eri
c
Paris
inotify: do not
l
eak
inod
e
marks
in inotify_
a
dd_w
a
tch
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-07-21
Er
i
c
P
aris
i
n
oti
f
y: drop user
w
atch cou
n
t w
h
e
n
a watch is r
e
moved
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eri
c
Paris
audit: in
o
de wa
t
che
s
depend on CONFIG_AUDIT not CONFIG_AUDIT
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
E
ric Paris
Audit: clea
n
up all o
p
= output to
i
nclude s
t
ring qu
o
ting
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric
Paris
Audit:
m
ove audit_get_nd completely into audit_watch
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric
P
a
ris
audit: sepe
r
ate audit i
n
ode watches
into
a subfile
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
E
ric Pari
s
Au
d
it: clean up audit_recei
v
e_skb
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric Paris
Audit: cleanup ne
t
link mesg handling
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Er
i
c
Par
i
s
A
udit
:
uni
f
y the printk
of an s
k
b
when auditd
n
o
t around
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric Pa
r
i
s
Audit: d
e
refe
r
encing
krule as if it were an a
u
di
t
_wa
t
ch
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric Par
i
s
Audit: bett
e
r
estimation of e
x
ecve record length
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-24
Eric Par
i
s
Audit
:
fix audit
w
atch us
e
after free
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-19
Eric Paris
inotify: inotif
y
_de
s
troy_mark_e
n
try coul
d
get called
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
fsno
t
ify
:
a
l
low groups to
s
et freeing_mark to nu
l
l
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
E
r
ic
P
ari
s
inotify/d
n
otify: should_send_event shouldn
'
t match
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
E
ric Paris
dnotif
y
:
do
n
ot
bother to lock entry->lock when re
a
d
i
n
g
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
E
ric Pa
r
is
dnotify: do not use ?
t
rue:false when
ass
i
gning t
o
a
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eri
c
P
aris
fsno
t
ify: mov
e
events sh
o
uld
indicat
e
t
he e
v
ent w
a
s
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Er
i
c
P
ar
i
s
in
o
tif
y
: reimplement inotify usin
g
f
s
n
oti
f
y
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Par
i
s
fsnotify
:
handle filesystem unmounts with fsnotify
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Par
i
s
fsno
t
ify: fsnoti
f
y
marks on inodes pin them in core
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
fsn
o
tify: allow groups to add private data to events
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric
Paris
fsnot
i
fy: add cor
r
elations between events
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
fsnotify:
i
nclude pat
h
n
am
e
s with entries when p
o
ss
i
b
le
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eri
c
Paris
f
s
notify:
g
eneri
c
notifi
c
a
tion queue
and waitq
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
E
r
ic Paris
dnotify: reim
p
lement dnotify us
i
ng fsnotify
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
E
ric Paris
fsnotify: parent event n
o
tification
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric
Pari
s
fsnoti
f
y:
a
d
d
marks to
i
nodes
so groups can inter
p
ret
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-11
Eric Paris
fsnotify: unified
f
ilesystem notification backend
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-06-02
Eric Par
i
s
S
E
Lin
u
x
:
d
efine audit permissions
f
o
r au
d
it tree netlin
k
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-21
Eric Paris
IMA: Add __init n
o
ta
t
ion to
i
ma
f
u
n
ctions
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-21
Eric
Paris
IMA: Mi
n
ima
l
I
MA policy and
boot
p
aram for TCB
I
MA
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-19
Er
i
c Paris
TPM
:
get_event_name sta
c
k corrup
t
ion
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-18
E
ric Paris
SELin
u
x
: move SEL
I
NUX_MAGIC
i
nto m
a
gic
.
h
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-14
Eric
Paris
IMA: do
not mea
s
ure eve
r
y
t
hing opened by root by
d
e
faul
t
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-14
Eric
P
ari
s
IMA: re
m
ove read
p
ermissions on the ima policy file
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-13
Eric
Pa
r
is
T
P
M
:
get_event_
n
ame stack co
r
ruption
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-12
E
ric
Paris
s
e
curityfs: securityfs_
r
emove
sh
o
uld handle IS
_
E
R
R
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-12
Eric Paris
IMA: open all files
O_LARGE
F
ILE
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-12
Er
i
c Paris
IMA: Handle
d
entry_op
e
n failures
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-05-12
Eric Paris
IMA: use current_
c
red()
i
ns
t
ead of current->cred
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-29
Eric
P
aris
SELinux
:
dr
o
p
se
c
o
n
d
ary_ops-
>
sy
s
ctl
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-29
E
ric P
a
ri
s
mutex: add
a
t
omic_dec
_
a
n
d_m
u
t
e
x_lock()
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-06
Eric Pa
r
is
mutex: a
d
d atom
i
c_dec
_
and_mutex_
l
ock()
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-05
E
r
ic Paris
Audit: remov
e
space
s
from au
d
it_lo
g
_
d_path
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-05
Eric Pa
r
is
audit:
audi
t
_set_
a
uditable
d
e
fined b
u
t not used
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-05
Eric P
a
ris
audit:
inc
o
rrect ref counting
i
n audit tree tag_chunk
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-04-02
E
r
ic Paris
Btrfs: introduce btrfs_s
h
ow_op
t
io
n
s
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-03-09
Eric Paris
SELinu
x
: ino
d
e_doi
n
it_with_
d
ent
r
y
dr
o
p no dentry p
r
in
t
k
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-03-05
Eric P
a
r
i
s
SELinux: new
p
e
rmission
b
e
twee
n
tty
audit and au
d
it
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-03-05
Eric Pa
r
is
SEL
i
nux:
o
p
e
n
p
erm for sock f
i
les
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
E
ric
P
aris
SELin
u
x: con
v
ert the avc
cache hash
l
ist to an hli
s
t
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric Paris
SELinux: code rea
d
a
b
ility w
i
t
h
a
vc_
c
ache
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric
P
aris
SELinux
:
remove unu
s
ed
av
.
decided fiel
d
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric Paris
SELinux:
m
ore care
f
ul
use of avd in avc_
h
as_perm_noaudit
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
E
r
i
c Pa
r
is
SELinux: remove the
u
nused ae
.
used
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Er
i
c Paris
SELi
n
ux: check seqno when updating an a
v
c_node
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric Paris
S
EL
i
nux: NULL term
i
nate al co
n
tex
t
s from disk
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eric Paris
SELinu
x
:
b
etter p
r
intk when file
with inva
l
id labe
l
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-02-13
Eri
c
Paris
SELinux: call capabilities code directory
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-01-27
Eric Par
i
s
tty_open
c
a
n
r
eturn
t
o
userspace holding t
t
y_mutex
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-01-05
Eric Paris
s
ys_execve
and s
y
s_use
l
ib do not
call into fsnotify
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2009-01-05
Eri
c
Paris
SELi
n
u
x
: shrink sizeof av_in
h
ert selinux_cl
a
s
s
_p
e
rm
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-12-31
Eric Paris
filesy
s
t
e
m notification
:
cr
e
ate fs/notif
y
to contain
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-12-09
Eric P
a
ris
[P
A
T
C
H
]
A
u
d
it: make
audit=0 actuall
y
tu
r
n off audit
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-14
E
ric P
a
ris
capabiliti
e
s: d
e
fine get_vfs_caps_
f
r
o
m
_disk
w
hen file
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
E
ric Paris
Curr
e
nt
l
y SELin
u
x
jumps t
h
rough some ugly hoops to
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Paris
T
he oomkil
l
er
c
alc
u
lations make de
c
isions b
a
sed on
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Pari
s
Add a n
e
w ca
p
able
interface t
h
at will be use
d
by systems
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Paris
Capabil
i
tie
s
: BUG when
an
in
v
alid capability is reque
s
t
e
d
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
E
ri
c
P
aris
When the capset syscall
is use
d
it is
n
o
t possib
l
e
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric
Par
i
s
A
n
y time fc
a
ps
or a setuid a
p
p under SECURE_NOROOT
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric Paris
This patch will p
r
int cap
_
permitt
e
d and
cap_i
n
heri
t
able
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric
Paris
This patc
h
add
a
generic cpu endian caps
structure
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-11
Eric
Paris
Document the ord
e
r
of argu
m
en
t
s for cap_iss
u
bset
.
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-08
Eri
c
Paris
SELinux:
Us
e
unknown perm handli
n
g
to
handle unkn
o
wn
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-11-04
Eric Paris
SEL
i
nux:
h
old ta
s
k
l
ist_lock and siglock while wa
k
i
ng
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-10-31
Eric Paris
S
ELi
n
u
x: properl
y
handle empty tty_
f
i
l
es l
i
s
t
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-10-30
Eric
P
aris
SELinux: ch
e
c
k
open pe
r
ms in
d
e
ntry_open not in
o
de_per
m
ission
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-09-03
Eric Paris
SELin
u
x: memor
y
leak i
n
sec
u
r
ity
_
context
_
to_sid_c
o
re
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-08-28
Eric Paris
securityf
s
: do not depend on C
O
NFIG_
S
ECUR
I
TY
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-08-01
Eric Pari
s
[
P
A
TCH] Audit:
Collect
signal info whe
n
SIGUSR2 is
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-29
E
ric Paris
SELinux: /proc/mounts shoul
d
show what it can
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
Eric Paris
L
S
M/SELinux: sho
w
LSM
m
ount opti
o
ns
in
/proc/mount
s
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
Eric Pari
s
SELinux:
a
llow
f
stype unknown t
o
p
o
licy to use xattrs
.
.
.
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
E
r
ic Paris
SELinux: more use
r
friendly unknown
handling pri
n
tk
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
2008-07-14
Eric Paris
SELinux: drop loa
d
_mutex in security_load
_
policy
Signed-off-by: Eric Paris <
eparis@redhat.com
>
commit
|
commitdiff
|
tree
next