repo.or.cz
/
pohmelfs.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
lib: add kstrto*_from_user()
2011-05-25
Eri
c
Paris
xatt
r
.
h
:
expose string defi
n
es to u
s
ers
p
ac
e
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-05-25
Eric Paris
t
mpfs: implement ge
n
eric xattr support
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-05-12
Eric
Paris
SELinux:
delete
d
ebuggi
n
g printks from filename_trans
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
E
r
ic
P
ari
s
fl
e
x
_
arra
y
s
: allow z
e
r
o length
f
lex arrays
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric Paris
flex_array: flex_arr
a
y_prealloc takes a number of eleme
n
ts
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
E
ric Paris
SELinu
x
: pass las
t
pat
h
comp
o
nent in may_create
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
E
ric Paris
SELinux: in
t
roduce path_ha
s
_per
m
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric
Paris
flex_array: allow 0 le
n
gth el
e
ments
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric Paris
flex_
a
r
r
ays: allow zero length flex arrays
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric Paris
flex_a
r
ray
:
flex_arr
a
y_prealloc takes a num
b
er
o
f elements
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric Paris
SELinux: pass last
pa
t
h compon
e
nt
i
n
may_c
r
eate
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric Pari
s
SELinux: put n
a
me bas
e
d crea
t
e rules in a hashtable
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric Paris
S
ELinux: gener
i
c
hashtab e
n
t
ry counter
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric Paris
SELinux: calculate and print hashtab stats with a
g
e
neric
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric Pa
r
is
SELinux: s
k
ip f
i
lena
m
e trans ru
l
es if ttype d
o
es
not
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eric Paris
SELinu
x
: rename fi
l
ename_co
m
pute_type argument to
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-28
Eri
c
Paris
SELinux: fi
x
c
omment to state
filename_compute_type
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-26
Eric Pa
r
i
s
SELINUX: Make
s
elin
u
x
cac
h
e
VF
S
R
C
U walks
safe
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-25
Er
i
c
P
aris
SMACK: s
m
ack_file
_
l
o
ck can use th
e
s
t
ruct path
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-25
Eri
c
Par
i
s
LSM: separat
e
LSM
_
AUD
I
T_DATA_DENTRY f
r
om LS
M
_AUDIT_DAT
A
_PAT
H
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-25
Eric
Pari
s
LSM
:
split L
S
M_AUD
I
T_DATA_FS into
_
PATH and _INODE
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-25
Eric Pari
s
SELINUX: Make selinux
c
ache V
F
S RCU walks safe
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-25
E
r
ic Paris
SELinux
:
securi
t
y_
r
ea
d
_policy should t
a
k
e
a size_t
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-25
E
r
ic
Par
i
s
SEL
i
nux: sile
n
ce b
u
ild warning when !CO
N
F
IG_BUG
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-20
Eric Paris
SELinux:
d
elet
e
debugging printks from filena
m
e_trans
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-05
E
ric Paris
ino
t
ify:
f
ix double free
/
corru
p
tion
of stuct user
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-04
Eric Pa
r
is
capab
i
lities: delete all CAP_INI
T
m
a
cros
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-04
Eric Paris
capab
i
lities: delete unused cap_set_fu
l
l
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-04
Eric Paris
capa
b
ilities: do
n
ot drop CAP_SE
T
PCAP f
r
om the
i
nitial
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-04
E
ri
c
Paris
c
a
pa
b
ilities: do not special case exec
of i
n
i
t
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-04
E
ric Paris
capabilit
e
s: allow the applica
t
i
o
n
o
f
capability limits
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-04-01
Eric Paris
SEL
i
n
u
x: update git tree in MAINT
A
INERS
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-03-03
Eric Paris
SEL
i
nux: i
m
plement the new sb_
r
emount LSM h
o
ok
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-03-03
Eric Paris
LSM: Pass -o remount
opti
o
n
s
to the LSM
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-02-25
Er
i
c
P
a
ris
Revert "se
l
inux: simplify ioc
t
l checkin
g
"
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-02-25
Eric P
a
ri
s
selinux: dr
o
p unused packet flow perm
i
ssions
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-02-01
Er
i
c Paris
SELinux: Use dentry
name in new object la
b
el
i
ng
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-02-01
Eric
Paris
fs/vfs/security:
pa
s
s last
p
a
t
h component to LSM on
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2011-01-10
E
ric Paris
ext4: ext4_ext_m
i
grate should use NULL not 0
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-16
E
ric
Paris
SELinux: define
pe
r
missions fo
r
DCB net
l
ink messages
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-15
Eric Paris
fano
t
ify: fill
i
n
the metad
a
ta_
l
en field on struct
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
Er
i
c Paris
selinux: cache sidtab_c
o
nt
e
xt_
t
o
_sid results
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
E
r
i
c Paris
fanotify:
do no
t
l
eak user re
f
er
e
nce on allocation
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
Eri
c
Paris
i
n
ot
i
fy: stop kernel mem
o
ry leak on file creation failure
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
Eric Paris
fanotify:
r
emove pa
c
ked from access r
e
sponse me
s
sa
g
e
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-07
Eric Par
i
s
fano
t
i
f
y
:
deny p
e
rmissions when no
e
vent w
a
s sent
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-12-02
E
r
i
c
Paris
SE
L
inux: do not comp
u
te t
r
a
nsiti
o
n
labels on mountpoint
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eri
c
Paris
SELinux
:
m
erg
e
p
o
licydb_in
d
ex_classes a
n
d policyd
b
_
i
ndex_
o
ther
s
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Paris
selinux: c
o
nv
e
rt par
t
of the sym_val_to_nam
e
arr
a
y
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric
P
aris
selinux: convert type_val_to_struc
t
t
o
fl
e
x_array
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Pa
r
is
flex
_
array: fix fle
x
_array_put
_
ptr
macro
t
o be v
a
lid C
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
E
r
ic Paris
SELinux: do not
s
e
t au
t
omatic i_ino i
n
se
l
inu
x
fs
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Paris
seli
n
ux: re
w
o
rk secu
r
ity_net
l
b
l
_
secattr_t
o
_sid
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
E
r
ic Pari
s
SELinu
x
: standardize
r
eturn
c
ode handling
in
s
elinu
x
fs
.
c
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric Paris
SEL
i
nux:
standardi
z
e retu
r
n code h
a
ndling i
n
sel
i
n
uxfs
.
c
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-30
Eric
Par
i
s
SELinux: standardiz
e
r
e
turn code h
a
ndling in
policy
d
b
.
c
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-23
Eric Paris
SELi
n
ux: indicate fa
t
al err
o
r in
c
ompat ne
t
filter
c
o
de
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-23
E
ric
P
a
ris
SELinux:
O
nl
y
return netlink e
r
ror when
w
e know the
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-17
E
r
ic Paris
SELinux: return -ECONNREF
U
SED fr
o
m
i
p
_
postroute to
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-17
Eric
Pari
s
ne
t
work: tcp_connect sh
o
uld r
e
turn certain
errors u
p
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-17
Eric Paris
n
e
tfi
l
ter: allow hook
s
to p
a
ss erro
r
code back up the
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-15
E
ric Pari
s
ca
p
abiliti
e
s/syslog: ope
n
c
ode c
a
p_syslog logic to
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-11-12
Eric Pari
s
n
etfilter: N
F
_HO
O
K_COND
has wrong c
o
nditional
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eri
c
Par
i
s
fanot
i
fy: do
n
o
t recalculate
t
he mask if the
i
gno
r
e
d
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
fanotify: ignore events on dir
e
c
t
ories
u
n
l
ess spe
c
i
fical
l
y
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
E
ric
Paris
fsnotify: rename
FS_
I
N_IS
D
IR t
o
FS_IS
D
I
R
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eri
c
Pa
r
is
f
anotif
y
: do n
o
t send events for irregular files
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
E
ric Paris
fanotify: limit n
u
mber of listeners per user
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Er
i
c Paris
f
a
no
t
if
y
: allow userspa
c
e
t
o override max marks
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
E
r
ic Paris
fano
t
ify: li
m
it
th
e
n
u
mber of mar
k
s in a single fanotify
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
fanotify: allow usersp
a
ce t
o
o
verr
i
de max queu
e
d
e
p
t
h
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
E
r
i
c
Paris
fsnotify:
implement a defa
u
lt maximum queu
e
dep
t
h
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
fanotify: ignore
f
anotify ignore marks if
open writers
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
fanotify: allow u
s
er
s
pace
t
o f
l
ush all marks
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
fsnot
i
fy: call
fsn
o
t
i
fy_parent in perm
eve
n
ts
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
E
r
ic Paris
fsnotify:
c
orrectly han
d
le return co
d
es from
liste
n
ers
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Par
i
s
fano
t
ify: use __a
l
igned_u64 in
fan
o
tify userspace metad
a
ta
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric Paris
fanotify:
i
m
plement fa
n
otify listener o
r
der
i
ng
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
Eric
Paris
fsnotify: implement orderi
n
g be
t
ween noti
f
ie
r
s
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-28
E
r
ic Paris
fanotify
:
all
o
w
fanotify to
b
e built
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric Paris
IM
A
: fix the
T
oMToU logi
c
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric
Paris
IMA: explicit
IMA
i_fla
g
to remove gl
o
bal lock
on inode_d
e
lete
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric Paris
IMA:
d
rop ref
c
nt from ima_iint_
c
ache since
it is
n
'
t
.
.
.
Signed-off-by:
Eric Paris
<eapris@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
E
ric
P
ar
i
s
I
MA: only all
o
cate iint wh
e
n neede
d
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
E
r
ic Par
i
s
IM
A
: m
o
ve
read
c
o
u
nter in
t
o struct
i
nod
e
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric Pari
s
I
M
A: u
s
e i_write
c
o
u
n
t
rathe
r
than a privat
e
counter
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Er
i
c Paris
I
M
A
: use in
o
de->i_lock
t
o prot
e
ct read and write counters
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
E
r
ic Pari
s
IMA: conve
r
t
internal flags from
long to char
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric Paris
IMA: use unsigned int instead
o
f lon
g
f
or
count
e
rs
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric Paris
IM
A
: dro
p
t
he inode openco
u
n
t
since it isn't needed
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-26
Eric Pa
r
is
IM
A
: use rbtree
instead of radix tre
e
for inod
e
information
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
s
ecmark: fix config problem when C
O
NFIG_NF_CONNTRACK_SECMAR
K
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
selinux: implement
m
map on /seli
n
ux/policy
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
S
E
Linux: allow usersp
a
ce to read polic
y
back out of
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
S
ELinux: drop useless (and
incorrect)
A
VTAB_MAX_SIZE
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eri
c
P
a
ris
S
ELinux
:
de
t
erminis
t
ic o
r
dering of ran
g
e transiti
o
n
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
E
r
ic Paris
kernel
:
roundup should only reference
ar
g
uments once
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
E
r
i
c
P
aris
kernel:
rounddown helper fun
c
tion
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
s
e
cmark
:
export secct
x
, d
r
op secmark in procfs
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
2010-10-20
Eric Paris
co
n
ntrack: export lsm cont
e
xt rather
t
han in
t
ernal
.
.
.
Signed-off-by:
Eric Paris
<eparis@redhat.com>
commit
|
commitdiff
|
tree
next