git.samba.org / sfrench / cifs-2.6.git / search
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
security/selinux: fix SECURITY_LSM_NATIVE_LABELS on reused superblock
2019-03-11 J. Bruce Fieldssecurity/selinux: fix SECURITY_LSM_NATIVE_LABELS on...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-03-11 Xin Longselinux: add the missing walk_size + len check in selinux_sc...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-02-05 Stephen Smalleyselinux: fix avc audit messages
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-01-28 Ondrej Mosnacekselinux: replace BUG_ONs with WARN_ONs in avc.c
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-01-25 Ondrej Mosnacekselinux: log invalid contexts in AVCs
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-01-25 Ondrej Mosnacekselinux: replace some BUG_ON()s with a WARN_ON()
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-01-25 Ondrej Mosnacekselinux: inline some AVC functions used only once
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-01-11 Ondrej Mosnacekselinux: do not override context on context mounts
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-01-11 Ondrej Mosnacekselinux: never allow relabeling on context mounts
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-01-11 Stephen Smalleyselinux: stop passing MAY_NOT_BLOCK to the AVC upon...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2019-01-11 Stephen Smalleyselinux: avoid silent denials in permissive mode under...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-12-14 YueHaibingaudit: remove duplicated include from audit.c
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-12-05 Ondrej Mosnacekselinux: overhaul sidtab to fix bug and improve performance
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-12-05 Ondrej Mosnacekselinux: use separate table for initial SID lookup
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-12-04 Richard Guy Briggsaudit: shorten PATH cap values when zero
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-29 Paul Mooreselinux: add support for RTM_NEWCHAIN, RTM_DELCHAIN...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-26 Paul Mooreaudit: use current whenever possible
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-26 Paul Mooreaudit: minimize our use of audit_log_format()
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-26 Alexey Dobriyanselinux: make "selinux_policycap_names[]" const char *
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-26 Ondrej Mosnacekselinux: always allow mounting submounts
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-20 Ondrej Mosnacekselinux: refactor sidtab conversion
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-19 Richard Guy Briggsaudit: remove WATCH and TREE config options
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-19 Petr VorelDocumentation: Update SELinux reference policy URL
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-19 Richard Guy Briggsaudit: use session_info helper
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-19 Richard Guy Briggsaudit: localize audit_log_session_info prototype
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-14 Paul Mooreselinux: fix non-MLS handling in mls_context_to_sid()
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-13 Ondrej Mosnacekselinux: check length properly in SCTP bind hook
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Use 'mark' name for fsnotify_mark variables
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Replace chunk attached to mark instead of replacing...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Simplify locking around untag_chunk()
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Drop all unused chunk nodes during deletion
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Guarantee forward progress of chunk untagging
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Allocate fsnotify mark independently of chunk
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Provide helper for dropping mark's chunk reference
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Remove pointless check in insert_hash()
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Factor out chunk replacement code
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Make hash table insertion safe against concurrent...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Embed key into chunk
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Fix possible tagging failures
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit: Fix possible spurious -ENOSPC error
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-12 Jan Karaaudit_tree: Remove mark->lock locking
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-05 Richard Guy Briggsaudit: print empty EXECVE args
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-11-05 Ondrej Mosnacekselinux: policydb - fix byte order and alignment issues
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-10-10 Paul MooreMAINTAINERS: update the SELinux mailing list location
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-09-13 Tetsuo Handaselinux: Add __GFP_NOWARN to allocation at str_read()
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-09-05 Jann Hornselinux: refactor mls_context_to_sid() and make it...
As suggested by Paul Moore, change mls_context_to_sid() so...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-09-04 Stephen Smalleyselinux: fix mounting of cgroup2 under older policies
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-08-07 nixiaomingselinux: cleanup dentry and inodes on error in selinuxfs
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-07-30 Yi Wangaudit: fix potential null dereference 'context->module...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-07-18 Ronny Chevalieraudit: fix use-after-free in audit_add_watch
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-07-17 Eric Biggersselinux: constify write_op[]
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-07-17 Paul Mooreaudit: use ktime_get_coarse_real_ts64() for timestamps
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-07-03 Arnd Bergmannaudit: use ktime_get_coarse_ts64() for time access
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-29 Jann Hornselinux: move user accesses in selinuxfs out of locked...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-28 Richard Guy Briggsaudit: simplify audit_enabled check in audit_watch_log_rule_...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-28 Richard Guy Briggsaudit: check audit_enabled in audit_tree_log_remove_rule()
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-28 Ondrej Mosnáčekcred: conditionally declare groups-related functions
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in netnode
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in avc
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in netif
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in netport
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in sidtab
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in netlink
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in selinuxfs
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in services
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in avtab
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in hooks
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in policydb
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in ebitmap
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 peter enderborgselinux: Cleanup printk logging in conditional
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 Richard Guy Briggsaudit: eliminate audit_enabled magic number comparison
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 Richard Guy Briggsaudit: rename FILTER_TYPE to FILTER_EXCLUDE
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 Ondrej Mosnáčekaudit: Fix extended comparison of GID/EGID
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 Richard Guy Briggsaudit: tie ANOM_ABEND records to syscall
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 Richard Guy Briggsaudit: tie SECCOMP records to syscall
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-19 Ondrej Mosnáčekaudit: allow other filter list types for AUDIT_EXE
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-06-18 Paul MooreMAINTAINERS: update the LSM and SELinux subsystems
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-30 Sachin Groverselinux: KASAN: slab-out-of-bounds in xattr_getsecurity
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-21 Ondrej Mosnáčekaudit: Fix wrong task in comparison of session ID
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-18 Richard Guy Briggsaudit: use existing session info function
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-17 Richard Guy Briggsaudit: normalize loginuid read access
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-17 Richard Guy Briggsaudit: use new audit_context access funciton for seccomp_act...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-14 Richard Guy Briggsaudit: use inline function to set audit context
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-14 Richard Guy Briggsaudit: use inline function to get audit context
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-14 Richard Guy Briggsaudit: convert sessionid unset to a macro
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-14 Alexey Kodanevselinux: correctly handle sa_family cases in selinux_sctp_bi...
Suggested-by: Paul Moore <paul@paul-moore.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-14 Alexey Kodanevselinux: fix address family in bind() and connect(...
Suggested-by: Paul Moore <paul@paul-moore.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-14 Alexey Kodanevselinux: add AF_UNSPEC and INADDR_ANY checks to selinux_sock...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-08 Tyler Hicksseccomp: Don't special case audited processes when...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-08 Tyler Hicksseccomp: Audit attempts to modify the actions_logged...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-08 Tyler Hicksseccomp: Configurable separator for the actions_logged...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-05-08 Tyler Hicksseccomp: Separate read and write code for actions_logged...
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-04-24 Ondrej Mosnáčekaudit: allow not equal op for audit by executable
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-04-20 Richard Guy Briggsaudit: add syscall information to FEATURE_CHANGE records
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-04-17 Richard Guy Briggsaudit: normalize MAC_POLICY_LOAD record
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-04-17 Richard Guy Briggsaudit: normalize MAC_STATUS record
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-04-16 Souptick Joardersecurity: selinux: Change return type to vm_fault_t
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-03-21 Richard Guy Briggsaudit: add refused symlink to audit_names
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-03-21 Richard Guy Briggsaudit: remove path param from link denied function
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
2018-03-20 Stephen Smalleyselinux: wrap AVC state
Signed-off-by: Paul Moore <paul@paul-moore.com>
 commit | commitdiff | tree
next
Unnamed repository; edit this file 'description' to name the repository.